Risky Business

Risky Business #791 -- Woof! Copilot for Sharepoint coughs up creds and keys


Listen Later

On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news:

  • Struggling to find that pesky passwords.xlsx in Sharepoint? Copilot has your back!
  • The ransomware ecosystem is finding life a bit tough lately
  • SAP Netweaver bug being used by Chinese APT crew
  • Academics keep just keep finding CPU side-channel attacks
  • And of course… bugs! Asus, Ivanti, Fortinet… and a Nissan LEAF?
  • This week’s episode is sponsored by Resourcely, who will soothe your Terraform pains. Founder and CEO Tracis McPeak joins to talk about how to get from a very red dashboard full of cloud problems to a workable future.

    This episode is also available on Youtube.

    Show notes
    • " rel="noopener noreferrer">Exploiting Copilot AI for SharePoint | Pen Test Partners
    • " rel="noopener noreferrer">MrBruh's Epic Blog
    • " rel="noopener noreferrer">Ransomware group Lockbit appears to have been hacked, analysts say | Reuters
    • " rel="noopener noreferrer">"CONTI LEAK: Video they tried to bury! 6+ Conti members on a private jet. TARGET’s birthday — $10M bounty on his head. Filmed by TARGET himself. Original erased — we kept a copy."
    • " rel="noopener noreferrer">Mysterious hackers who targeted Marks and Spencer's computer systems hint at political allegiance as they warn other tech criminals not to attack former Soviet states
    • " rel="noopener noreferrer">The organizational structure of ransomware groups is evolving rapidly.
    • " rel="noopener noreferrer">SAP NetWeaver exploitation enters second wave of threat activity
    • " rel="noopener noreferrer">China-Nexus Nation State Actors Exploit SAP NetWeaver (CVE-2025-31324) to Target Critical Infrastructures
    • " rel="noopener noreferrer">DOGE software engineer’s computer infected by info-stealing malware
    • " rel="noopener noreferrer">Hackers hijack Japanese financial accounts to conduct nearly $2 billion in trades
    • " rel="noopener noreferrer">FBI and Dutch police seize and shut down botnet of hacked routers
    • " rel="noopener noreferrer">Poland arrests four in global DDoS-for-hire takedown
    • " rel="noopener noreferrer">School districts hit with extortion attempts after PowerSchool breach
    • " rel="noopener noreferrer">EU launches vulnerability database to tackle cybersecurity threats
    • " rel="noopener noreferrer">Training Solo - vusec
    • " rel="noopener noreferrer">Branch Privilege Injection: Exploiting Branch Predictor Race Conditions – Computer Security Group
    • " rel="noopener noreferrer">Remote Exploitation of Nissan Leaf: Controlling Critical Body Elements from the Internet
    • " rel="noopener noreferrer">PSIRT | FortiGuard Labs
    • " rel="noopener noreferrer">EPMM Security Update | Ivanti
      ...more
      View all episodesView all episodes
      Download on the App Store

      Risky BusinessBy Patrick Gray

      • 4.6
      • 4.6
      • 4.6
      • 4.6
      • 4.6

      4.6

      354 ratings


      More shows like Risky Business

      View all
      Security Now (Audio) by TWiT

      Security Now (Audio)

      1,968 Listeners

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

      626 Listeners

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

      364 Listeners

      Hacked by Hacked

      Hacked

      182 Listeners

      CyberWire Daily by N2K Networks

      CyberWire Daily

      1,009 Listeners

      Smashing Security by Graham Cluley & Carole Theriault

      Smashing Security

      312 Listeners

      Click Here by Recorded Future News

      Click Here

      396 Listeners

      Malicious Life by Malicious Life

      Malicious Life

      928 Listeners

      Darknet Diaries by Jack Rhysider

      Darknet Diaries

      7,859 Listeners

      Cybersecurity Today by Jim Love

      Cybersecurity Today

      168 Listeners

      CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

      CISO Series Podcast

      187 Listeners

      Hacking Humans by N2K Networks

      Hacking Humans

      312 Listeners

      Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

      Defense in Depth

      77 Listeners

      Cyber Security Headlines by CISO Series

      Cyber Security Headlines

      117 Listeners

      Risky Bulletin by risky.biz

      Risky Bulletin

      33 Listeners