Risky Business

Risky Business #811 -- F5 is the tip of the crap software iceberg

Listen Later

In this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:

  • China has been rummaging in F5’s networks for a couple of years
  • Meanwhile China tries to deflect by accusing the NSA of hacking its national timing system
  • Salesforce hackers use their stolen data trove to dox NSA, ICE employees
  • Crypto stealing, proxy-deploying, blockchain-C2-ing VS Code worm charms us with its chutzpah
  • Adam gets humbled by new Linux-capabilities backdoor trick
  • Microsoft ignores its own guidance on avoiding BinaryFormatter, gets WSUS owned.

    • This episode is sponsored by Push Security. Co-founder and Chief Product Officer Jacques Louw joins to talk through how Push traced a LinkedIn phishing campaign targeting CEOs, and the new logging capabilities that proved critical to understanding it.

    This episode is also available on Youtube.

    Show notes
    • Why the F5 Hack Created an ‘Imminent Threat’ for Thousands of Networks | WIRED
    • Breach at US-based cybersecurity provider F5 blamed on China, sources say | Reuters
    • Network security devices endanger orgs with ’90s era flaws | CSO Online
    • China claims it caught US attempting cyberattack on national time center | The Record from Recorded Future News
    • Hackers Dox Hundreds of DHS, ICE, FBI, and DOJ Officials
    • Hackers Say They Have Personal Data of Thousands of NSA and Other Government Officials
    • ICE amps up its surveillance powers, targeting immigrants and antifa - The Washington Post
    • John Bolton Indictment Provides Interesting Details About Hack of His AOL Account and Extortion Attempt
    • US court orders spyware company NSO to stop targeting WhatsApp, reduces damages | Reuters
    • Apple alerts exploit developer that his iPhone was targeted with government spyware | TechCrunch
    • A New Attack Lets Hackers Steal 2-Factor Authentication Codes From Android Phones | WIRED
    • GlassWorm: First Self-Propagating Worm Using Invisible Code Hits OpenVSX Marketplace | Koi Blog
    • European police bust network selling thousands of phone numbers to scammers | The Record from Recorded Future News
    • Stephan Berger on X: "We recently took over an APT investigation from another forensic company. While reviewing analysis reports from the other company, we discovered that the attackers had been active in the network for months and had deployed multiple backdoors. One way they could regain root" / X
    • Linux Capabilities Revisited | dfir.ch
    • CVE-2025-59287 WSUS Remote Code Execution | HawkTrace
    • TARmageddon (CVE-2025-62518): RCE Vulnerability Highlights the Challenges of Open Source Abandonware | Edera Blog
    • Browser threat detection & response | Push Security | Push Security
    • How Push stopped a high risk LinkedIn spear-phishing attack
      • ...more
      View all episodesView all episodes
      Download on the App Store
      Risky BusinessBy Patrick Gray
      • 4.6
      • 4.6
      • 4.6
      • 4.6
      • 4.6

      4.6

      364 ratings

      More shows like Risky Business

      View all
      Hacked by Hacked

      Hacked

      184 Listeners

      Security Now (Audio) by TWiT

      Security Now (Audio)

      2,000 Listeners

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

      370 Listeners

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

      638 Listeners

      CyberWire Daily by N2K Networks

      CyberWire Daily

      1,018 Listeners

      Smashing Security by Graham Cluley

      Smashing Security

      322 Listeners

      Click Here by Recorded Future News

      Click Here

      417 Listeners

      Darknet Diaries by Jack Rhysider

      Darknet Diaries

      8,010 Listeners

      Cybersecurity Today by Jim Love

      Cybersecurity Today

      175 Listeners

      Hacking Humans by N2K Networks

      Hacking Humans

      314 Listeners

      CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

      CISO Series Podcast

      189 Listeners

      Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

      Defense in Depth

      73 Listeners

      Cyber Security Headlines by CISO Series

      Cyber Security Headlines

      134 Listeners

      Risky Bulletin by risky.biz

      Risky Bulletin

      44 Listeners

      Hacker And The Fed by Chris Tarbell & Hector Monsegur

      Hacker And The Fed

      169 Listeners