May 06, 2026

Risky Business #836 -- You can't patch the bugpocalypse

1 hour 1 minute

On this week’s show, Patrick Gray and James Wilson are joined by special guest co-host Brad Arkin. They discuss the week’s cybersecurity news, including:

The US Government says we just have to patch faster, but…

Bugs in cPanel, MoveIt and all Linux distributions this week show that patching alone isn’t enough

James gets mad about lame AI Agent adoption advice from the US and Australian Governments

James Kettle and Niels Provos both showed us that any model can find 0day like Mythos

And the cyber-assisted theft of cargo results in an astonishing loss of $725 million dollars

This week’s show is sponsored by SpecterOps. Their CTO, Jared Atkinson, chats to Pat about the big changes in the threat landscape, brought about by AI, that are causing a pivot away from detection and remediation, and toward prevention.

This episode is also available on Youtube.

Show notes

Exclusive: US officials weigh cutting deadlines to fix digital flaws amid worries over AI-powered hacking, sources say | Reuters

British cyber agency warns of looming ‘patch wave’ as AI speeds flaw discovery | The Record from Recorded Future News

Federal agencies must patch cPanel bug by Sunday, CISA says | The Record from Recorded Future News

cPanel zero-day exploited for months before patch release (CVE-2026-41940) - Help Net Security

The most severe Linux threat to surface in years catches the world flat-footed - Ars Technica

New MOVEit vulnerabilities prompt urgent patch warning | Cybersecurity Dive

US and allies urge ‘careful adoption’ of AI agents | Cybersecurity Dive

careful_adoption_of_agentic_ai_services.pdf

User just tricked Grok and Bankrbot to send tokens with Morse code - Cryptopolitan

Finding Zero-Days with Any Model

(1872) Sponsored: James Kettle built an AI hacker - YouTube

Feature Interview: Nicholas Carlini, Anthropic - Risky Business Media

Trellix investigating breach of source code repository | Cybersecurity Dive

Popular DAEMON Tools software compromised | Securelist

Komari Red: The Monitoring Tool with a Built-in Reverse Shell | Huntress

Hackers earning millions from hijacked cargo, FBI says | The Record from Recorded Future News

Congress punts FISA renewal to June | The Record from Recorded Future News

Cops Use Apple Data And Car Bluetooth To Identify Crypto Robbery Suspect

Stewart Baker, outspoken voice on cybersecurity and national security law, dies at 78 | IAPP

...more

View all episodes

By Risky Business Media

4.6

364364 ratings

May 06, 2026

Risky Business #836 -- You can't patch the bugpocalypse

1 hour 1 minute

On this week’s show, Patrick Gray and James Wilson are joined by special guest co-host Brad Arkin. They discuss the week’s cybersecurity news, including:

The US Government says we just have to patch faster, but…

Bugs in cPanel, MoveIt and all Linux distributions this week show that patching alone isn’t enough

James gets mad about lame AI Agent adoption advice from the US and Australian Governments

James Kettle and Niels Provos both showed us that any model can find 0day like Mythos

And the cyber-assisted theft of cargo results in an astonishing loss of $725 million dollars

This episode is also available on Youtube.

Show notes

Exclusive: US officials weigh cutting deadlines to fix digital flaws amid worries over AI-powered hacking, sources say | Reuters

British cyber agency warns of looming ‘patch wave’ as AI speeds flaw discovery | The Record from Recorded Future News

Federal agencies must patch cPanel bug by Sunday, CISA says | The Record from Recorded Future News

cPanel zero-day exploited for months before patch release (CVE-2026-41940) - Help Net Security

The most severe Linux threat to surface in years catches the world flat-footed - Ars Technica

New MOVEit vulnerabilities prompt urgent patch warning | Cybersecurity Dive

US and allies urge ‘careful adoption’ of AI agents | Cybersecurity Dive

careful_adoption_of_agentic_ai_services.pdf

User just tricked Grok and Bankrbot to send tokens with Morse code - Cryptopolitan

Finding Zero-Days with Any Model

(1872) Sponsored: James Kettle built an AI hacker - YouTube

Feature Interview: Nicholas Carlini, Anthropic - Risky Business Media

Trellix investigating breach of source code repository | Cybersecurity Dive

Popular DAEMON Tools software compromised | Securelist

Komari Red: The Monitoring Tool with a Built-in Reverse Shell | Huntress

Hackers earning millions from hijacked cargo, FBI says | The Record from Recorded Future News

Congress punts FISA renewal to June | The Record from Recorded Future News

Cops Use Apple Data And Car Bluetooth To Identify Crypto Robbery Suspect

Stewart Baker, outspoken voice on cybersecurity and national security law, dies at 78 | IAPP

...more

More shows like Risky Business

View all

Hacked

187 Listeners

Security Now (Audio)

2,011 Listeners

Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

372 Listeners

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

651 Listeners

CyberWire Daily

1,028 Listeners

Smashing Security

317 Listeners

Click Here

418 Listeners

Darknet Diaries

8,077 Listeners

Cybersecurity Today

175 Listeners

Hacking Humans

315 Listeners

CISO Series Podcast

195 Listeners

Defense in Depth

73 Listeners

Cybersecurity Headlines

139 Listeners

Risky Bulletin

45 Listeners

Hacker And The Fed

168 Listeners

Share Risky Business #836 -- You can't patch the bugpocalypse

Sign up to save your podcasts

Risky Business #836 -- You can't patch the bugpocalypse

Risky Business #836 -- You can't patch the bugpocalypse

More shows like Risky Business

Hacked

Security Now (Audio)

Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

CyberWire Daily

Smashing Security

Click Here

Darknet Diaries

Cybersecurity Today

Hacking Humans

CISO Series Podcast

Defense in Depth

Cybersecurity Headlines

Risky Bulletin

Hacker And The Fed