We’ve got a slightly different edition of the show this week – Alex Stamos is filling in for Adam Boileau this week in the news slot.

Most of you know him as Facebook’s recently departed chief security officer. Alex also served as the CSO at Yahoo for a time, but his security career stretches back a long way. He co-founded iSEC Partners back in 2004, and before that he did some time with @Stake.

The @Stake mafia is everywhere.

These days Alex is an adjunct professor at Stanford University. He joined me to talk about the week’s security news, as well as to have a chat about the Edward Snowden disclosures, five years on.

This week’s show is brought to you by Thinkst Canary, big thanks to them for that. And instead of one of their staff being on the show this week in the sponsor chair, they asked me to interview this week’s sponsor guest, their customer, Mike Ruth, a security engineer with Cruise Automation.

Mike did a presentation at a conference called QCon recently all about automating the deployment of canary tokens at scale using some nifty CI/CD tricks. He’ll be joining us after the news to tell us all about that.

Items discussed in this week’s news:

NSO Group busted to selling to Saudi Arabia

NSO malware targets Mexican journalists

Edward Snowden claims NSO connection in Khashoggi case

Australia’s AA Bill latest

npm supply-chain attack targets Bitcoiners

Guardian reports Manafort met Assange, denials, lawsuits flying already

UK parliament seizes Facebook documents

Uber fined over 2016 breach coverup

UK cops decline to charge bug reporter

USPS finally fixes data exposure after Krebs intervention

Rowhammer attack bypasses ECC protections

Bloomberg is investigating its own reporting on Supermicro

Magecart is everywhere

Google, Mozilla plan browser access to file systems

Links to everything that we discussed are below and you can follow Patrick or Alex on Twitter if that’s your thing.