October 29, 2025

Risky Business #812 -- Alleged Trenchant exploit mole is ex-ASD

Listen Later

1 hour 6 minutes

In this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:

L3Harris Trenchant boss accused of selling exploits to Russia once worked at the Australian Signals Directorate

Microsoft WSUS bug being exploited in the wild

Dan Kaminsky DNS cache poisoning comes back because of a bad PRNG

SpaceX finally starts disabling Starlink terminals used by scammers

Garbage HP update deletes certificates that authed Windows systems to Entra

This week’s episode is sponsored by automation company Tines. Field CISO Matt Muller joins to discuss how Tines has embraced LLMs and the agentic-AI future into their workflow automation.

This episode is also available on Youtube.

Show notes

US accuses former L3Harris cyber boss of stealing and selling secrets to Russian buyer | TechCrunch

Attackers bypass patch in deprecated Windows Server update tool | CyberScoop

CVE-2025-59287 WSUS Unauthenticated RCE | HawkTrace

CVE-2025-59287 WSUS Remote Code Execution | HawkTrace

Catching Credential Guard Off Guard - SpecterOps

Cache poisoning vulnerabilities found in 2 DNS resolving apps - Ars Technica

Uncovering Qilin attack methods exposed through multiple cases

Safety on X: "By November 10, we’re asking all accounts that use a security key as their two factor authentication (2FA) method to re-enroll their key to continue accessing X. You can re-enroll your existing security key, or enroll a new one. A reminder: if you enroll a new security key, any" / X

SpaceX disables more than 2,000 Starlink devices used in Myanmar scam compounds | The Record from Recorded Future News

SpaceX: Update Your Inactive Starlink Dishes Now or They'll Be Bricked

How we linked ForumTroll APT to Dante spyware by Memento Labs | Securelist

Former Polish official indicted over spyware purchase | The Record from Recorded Future News

HP OneAgent Update Broke Entra Trust on HP AI Devices

Windows' Built-in OpenSSH for Offensive Security

How Hacked Card Shufflers Allegedly Enabled a Mob-Fueled Poker Scam That Rocked the NBA | WIRED

...more

View all episodes

View all episodes

Download on the App Store

Download on the App Store

Get it on Google Play

Risky Business

By Patrick Gray

4.6

364364 ratings

October 29, 2025

Risky Business #812 -- Alleged Trenchant exploit mole is ex-ASD

Listen Later

1 hour 6 minutes

In this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:

L3Harris Trenchant boss accused of selling exploits to Russia once worked at the Australian Signals Directorate

Microsoft WSUS bug being exploited in the wild

Dan Kaminsky DNS cache poisoning comes back because of a bad PRNG

SpaceX finally starts disabling Starlink terminals used by scammers

Garbage HP update deletes certificates that authed Windows systems to Entra

This week’s episode is sponsored by automation company Tines. Field CISO Matt Muller joins to discuss how Tines has embraced LLMs and the agentic-AI future into their workflow automation.

This episode is also available on Youtube.

Show notes

US accuses former L3Harris cyber boss of stealing and selling secrets to Russian buyer | TechCrunch

Attackers bypass patch in deprecated Windows Server update tool | CyberScoop

CVE-2025-59287 WSUS Unauthenticated RCE | HawkTrace

CVE-2025-59287 WSUS Remote Code Execution | HawkTrace

Catching Credential Guard Off Guard - SpecterOps

Cache poisoning vulnerabilities found in 2 DNS resolving apps - Ars Technica

Uncovering Qilin attack methods exposed through multiple cases

Safety on X: "By November 10, we’re asking all accounts that use a security key as their two factor authentication (2FA) method to re-enroll their key to continue accessing X. You can re-enroll your existing security key, or enroll a new one. A reminder: if you enroll a new security key, any" / X

SpaceX disables more than 2,000 Starlink devices used in Myanmar scam compounds | The Record from Recorded Future News

SpaceX: Update Your Inactive Starlink Dishes Now or They'll Be Bricked

How we linked ForumTroll APT to Dante spyware by Memento Labs | Securelist

Former Polish official indicted over spyware purchase | The Record from Recorded Future News

HP OneAgent Update Broke Entra Trust on HP AI Devices

Windows' Built-in OpenSSH for Offensive Security

How Hacked Card Shufflers Allegedly Enabled a Mob-Fueled Poker Scam That Rocked the NBA | WIRED

...more

More shows like Risky Business

Hacked by Hacked

Hacked

184 Listeners

Security Now (Audio) by TWiT

Security Now (Audio)

2,000 Listeners

Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

370 Listeners

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

638 Listeners

CyberWire Daily by N2K Networks

CyberWire Daily

1,018 Listeners

Smashing Security by Graham Cluley

Smashing Security

322 Listeners

Click Here by Recorded Future News

Click Here

417 Listeners

Darknet Diaries by Jack Rhysider

Darknet Diaries

8,010 Listeners

Cybersecurity Today by Jim Love

Cybersecurity Today

175 Listeners

Hacking Humans by N2K Networks

Hacking Humans

314 Listeners

CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

CISO Series Podcast

189 Listeners

Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

Defense in Depth

73 Listeners

Cyber Security Headlines by CISO Series

Cyber Security Headlines

134 Listeners

Risky Bulletin by risky.biz

Risky Bulletin

44 Listeners

Hacker And The Fed by Chris Tarbell & Hector Monsegur

Hacker And The Fed

169 Listeners