Sign up to save your podcasts
Or
Share Patch Fatigue & Laptop Farms
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Patch Fatigue & Laptop Farms
**Hosts**
- Professor CyberRisk
- Cyber Cowboy
**Live Cyber Maps**
- Bitdefender Threat Map: https://threatmap.bitdefender.com/
- Check Point Threat Map: https://threatmap.checkpoint.com/
- Kaspersky Cyber Threat Map: https://cybermap.kaspersky.com/
- Talos Intelligence ebc_spam Map: https://talosintelligence.com/ebc_spam
**Episode Information** _Title:_ Patch Fatigue & Laptop Farms _Episode Number:_ 315 (3x15)
**Overview** This week, we explore the weakening foundation of global vulnerability databases, Microsoft’s massive patch release, a North Korean infiltration campaign, Rust-based malware targeting gamers, and a silent threat to developer ecosystems. From CI pipelines to “laptop farms,” threat actors are getting creative — and we’re unpacking what it means for the future of cybersecurity.
**Guest Information** None this episode
**Top Stories** 🔸 _Global Vulnerability Databases Are Cracking_ NVD’s 25K+ vulnerability backlog and CVE’s near-collapse signal deep trouble. CISA’s “Vulnrichment” aims to decentralize enrichment, but public trust is deteriorating. → Why It Matters:
- C 🔗 https://www.iwebbs.com/newsletter/july-2025-cybersecurity-newsletter/
🔸 _Microsoft Patches 130 Flaws — No Zero-Days_ July’s Patch Tuesday resolved 130 vulnerabilities including a wormable SPNEGO flaw (CVSS 9.8). Zero-day drought continues, with RCE and escalation attacks surging. → Why It Matters:
-” 🔗 https://www.cybersecurity-review.com/news-july-2025/
🔸 _North Korean IT Worker Scheme Dismantled_ DOJ busted a sprawling DPRK operation using fake identities to infiltrate 100+ U.S. companies. 21 “laptop farms” across 14 states fueled $900K in crypto funding. → Why It Matters:
-” 🔗 https://www.iwebbs.com/newsletter/july-2025-cybersecurity-newsletter/
🔸 _Myth Stealer Targets Gamers & Browsers_ Rust-based malware spreads via fake cheat tools, collecting credentials and autofill data. A free Telegram drop evolved into a full MaaS operation. → Why It Matters:
- 🔗 https://www.secmentis.com/news/
🔸 _CI Flaw in Open VSX Threatens Millions of Devs_ A flaw in Open VSX Registry’s CI pipeline exposed millions of VS Code users to silent compromise. Platforms like Gitpod and Google Cloud Shell were at risk. → Why It Matters:
- https://www.iwebbs.com/newsletter/july-2025-cybersecurity-newsletter/
**Additional Cybersecurity News – Titles and URLs** None this episode
**Resources & Links** None this episode
**Call to Action**
- Subscribe: Stay updated on cybersecurity threats.
- Leave a Review: Let us know what you think.
- Join the Conversation: Follow our community and ask questions.
**Sponsor (if applicable)** No sponsors this episode
**Podcast Socials & Website**
- Website: https://www.youvealreadybeenhacked.com
- X: @professorcyberrisk
- YouTube: https://www.youtube.com/@YABHPodcast
- Discord/Community Forum: coming soon
View all episodes
By Professor CyberRisk
5
33 ratings
**Hosts**
- Professor CyberRisk
- Cyber Cowboy
**Live Cyber Maps**
- Bitdefender Threat Map: https://threatmap.bitdefender.com/
- Check Point Threat Map: https://threatmap.checkpoint.com/
- Kaspersky Cyber Threat Map: https://cybermap.kaspersky.com/
- Talos Intelligence ebc_spam Map: https://talosintelligence.com/ebc_spam
**Episode Information** _Title:_ Patch Fatigue & Laptop Farms _Episode Number:_ 315 (3x15)
**Overview** This week, we explore the weakening foundation of global vulnerability databases, Microsoft’s massive patch release, a North Korean infiltration campaign, Rust-based malware targeting gamers, and a silent threat to developer ecosystems. From CI pipelines to “laptop farms,” threat actors are getting creative — and we’re unpacking what it means for the future of cybersecurity.
**Guest Information** None this episode
**Top Stories** 🔸 _Global Vulnerability Databases Are Cracking_ NVD’s 25K+ vulnerability backlog and CVE’s near-collapse signal deep trouble. CISA’s “Vulnrichment” aims to decentralize enrichment, but public trust is deteriorating. → Why It Matters:
- C 🔗 https://www.iwebbs.com/newsletter/july-2025-cybersecurity-newsletter/
🔸 _Microsoft Patches 130 Flaws — No Zero-Days_ July’s Patch Tuesday resolved 130 vulnerabilities including a wormable SPNEGO flaw (CVSS 9.8). Zero-day drought continues, with RCE and escalation attacks surging. → Why It Matters:
-” 🔗 https://www.cybersecurity-review.com/news-july-2025/
🔸 _North Korean IT Worker Scheme Dismantled_ DOJ busted a sprawling DPRK operation using fake identities to infiltrate 100+ U.S. companies. 21 “laptop farms” across 14 states fueled $900K in crypto funding. → Why It Matters:
-” 🔗 https://www.iwebbs.com/newsletter/july-2025-cybersecurity-newsletter/
🔸 _Myth Stealer Targets Gamers & Browsers_ Rust-based malware spreads via fake cheat tools, collecting credentials and autofill data. A free Telegram drop evolved into a full MaaS operation. → Why It Matters:
- 🔗 https://www.secmentis.com/news/
🔸 _CI Flaw in Open VSX Threatens Millions of Devs_ A flaw in Open VSX Registry’s CI pipeline exposed millions of VS Code users to silent compromise. Platforms like Gitpod and Google Cloud Shell were at risk. → Why It Matters:
- https://www.iwebbs.com/newsletter/july-2025-cybersecurity-newsletter/
**Additional Cybersecurity News – Titles and URLs** None this episode
**Resources & Links** None this episode
**Call to Action**
- Subscribe: Stay updated on cybersecurity threats.
- Leave a Review: Let us know what you think.
- Join the Conversation: Follow our community and ask questions.
**Sponsor (if applicable)** No sponsors this episode
**Podcast Socials & Website**
- Website: https://www.youvealreadybeenhacked.com
- X: @professorcyberrisk
- YouTube: https://www.youtube.com/@YABHPodcast
- Discord/Community Forum: coming soon