Risky Business

Risky Business #777 -- It's SonicWall's turn

Listen Later

Coming to you from the same room in Risky Business headquarters Patrick Gray and Adam Boileau discuss the week’s cybersecurity news. They talk through:

  • Sonicwall firewalls hand out remote code exec like candy
  • Mastercard make a slapstick-grade mistake with their DNS
  • The data breach at PowerSchool and other niche SaaS providers
  • Academic research proposes taking down Europe’s power grid
  • Apple CPUs get a new speculative execution side channel
  • And much, much more.

    • This week’s episode is sponsored by Push Security, who make an identity security product that runs inside browsers. Luke Jennings joins to discuss some of the pitfalls of federated authentication, like attackers using unexpected identity providers to log in to your apps.

    This episode is also available on Youtube.

    Show notes
    • SonicWall warns hackers targeting critical vulnerability in SMA 1000 series appliances | Cybersecurity Dive
    • MasterCard DNS Error Went Unnoticed for Years – Krebs on Security
    • Data breach hitting PowerSchool looks very, very bad - Ars Technica
    • OpenAI rival DeepSeek limits registration after ‘large-scale malicious attacks’ | The Record from Recorded Future News
    • Hackers imitate Kremlin-linked group to target Russian entities | The Record from Recorded Future News
    • UK to examine undersea cable vulnerability as Russian spy ship spotted in British waters | The Record from Recorded Future News
    • Questions grow over whether Baltic Sea cable damage was sabotage or accidental | The Record from Recorded Future News
    • Researchers say new attack could take down the European power grid - Ars Technica
    • At least $69 million stolen from crypto platform Phemex in suspected cyberattack | The Record from Recorded Future News
    • BreachForums admin to be resentenced after appeals court slams supervised release | The Record from Recorded Future News
    • Apple chips can be hacked to leak secrets from Gmail, iCloud, and more - Ars Technica
    • Apple fixes zero-day flaw affecting all devices | TechCrunch
    • I’m Lovin’ It: Exploiting McDonald’s APIs to hijack deliveries and order food for a penny
    • Government websites vanish under Trump, from the Constitution to DEI
    • Trail of Bits: Director, Technical Marketing
    • Push Security: Security Researcher (remote in the USA)
    • A new class of phishing: Verification phishing and cross-IdP impersonation
      • ...more
      View all episodesView all episodes
      Download on the App Store
      Risky BusinessBy Risky Business Media
      • 4.6
      • 4.6
      • 4.6
      • 4.6
      • 4.6

      4.6

      364 ratings

      More shows like Risky Business

      View all
      Hacked by Hacked

      Hacked

      187 Listeners

      Security Now (Audio) by TWiT

      Security Now (Audio)

      2,011 Listeners

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

      372 Listeners

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

      651 Listeners

      CyberWire Daily by N2K Networks

      CyberWire Daily

      1,028 Listeners

      Smashing Security by Graham Cluley

      Smashing Security

      317 Listeners

      Click Here by Recorded Future News

      Click Here

      418 Listeners

      Darknet Diaries by Jack Rhysider

      Darknet Diaries

      8,077 Listeners

      Cybersecurity Today by Jim Love

      Cybersecurity Today

      175 Listeners

      Hacking Humans by N2K Networks

      Hacking Humans

      315 Listeners

      CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

      CISO Series Podcast

      195 Listeners

      Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

      Defense in Depth

      73 Listeners

      Cybersecurity Headlines by CISO Series

      Cybersecurity Headlines

      139 Listeners

      Risky Bulletin by Risky Business Media

      Risky Bulletin

      45 Listeners

      Hacker And The Fed by Chris Tarbell & Hector Monsegur

      Hacker And The Fed

      168 Listeners