Risky Business

By Risky Business Media

Risky Business is a weekly information security podcast featuring news and in-depth interviews with industry luminaries. Launched in February 2007, Risky Business is a must-listen digest for informati... more

4.6

364364 ratings

Download on the App Store

Download on the App Store

Get it on Google Play

FAQs about Risky Business:

How many episodes does Risky Business have?

The podcast currently has 648 episodes available.

Risky Business episodes:

June 05, 2026Soap Box: Detection and response in the AI age
In this sponsored Soap Box edition of the Risky Business podcast Patrick Gray chats with Edward Wu, founder of Dropzone, about what AI is doing to detection, response and the SOC more generally.
Dropzone makes AI agents that conduct alert investigations in your SOC, but will the SOC as we know it even exist in the future?
Ed has a deep expertise in SOC tech, having previously led AI/ML detection engineering at Extrahop. This interview is a fantastic look at what the future may bring for detection and response professionals.
This episode is also available on YouTube

Show notes
...more
37min
June 03, 2026Risky Business #840 -- Microsoft walks back researcher threats
On this week’s show special guest co-host Andy Boyd joins Patrick Gray and James Wilson to discuss the week’s cybersecurity news. Andy is the CEO of REDLattice, which makes the Paragon “intelligence collection and reconnaissance” solution.
They cover:
Adversaries are tracking US troop locations with commercially available location data

A new Signal phishing campaign is going after message backups

404 Media is suing ICE to get its spyware contract with REDLattice (lol)

Microsoft’s tone-deaf response to ‘never justifiable’ zero-day disclosures

Mini Shai-Hulud pops up again just as Glassworm gets shattered

Much, much more
This week’s episode is sponsored by Authentik, an open source identity platform that you can host yourself. In this week’s sponsor interview Authentik’s CEO Fletcher Heisler joins Patrick Gray to talk about how they’re keeping up with the bugpocalypse, and also the work they’re doing to support identities for AI agents.
This episode is also available on YouTube.

Show notes
The Pentagon Knew Enemies Could Track Troops’ Phones for Years. Now They Are | wired.com

U.S. says troops were targeted with location data, as senator warns ad industry is a ‘national security threat’ | TechCrunch Security

DOD location data attachment (Wyden) |

Risky Business #830 -- LiteLLM and security scanner supply chains compromised | Risky Business Media

US has seized nearly $1 billion in crypto from Iran, Bessent says |

Russia claims foreign spy agencies hacked officials' phones | therecord.media

Hackers are trying to steal Signal users’ backups in new wave of phishing attacks | TechCrunch Security

We Sued ICE to Get Its Spyware Contract. The Agency Is Redacting Essentially Everything | Social Signals

Microsoft calls zero-day releases ‘never justifiable’ as researcher threatens to drop more | therecord.media

A shared responsibility: Protecting customers through Coordinated Vulnerability Disclosure | Social Signals

Microsoft says it will not pursue security researchers after zero-day backlash | therecord.media

IBM’s new $5B initiative will help enterprises rapidly patch open-source vulnerabilities | Social Signals

Federal audit reveals NIST’s NVD is plagued by poor planning and duplication | cyberscoop.com

Hackers Used Meta’s AI Support Bot to Seize Instagram Accounts | krebsonsecurity.com

Critical Windows Netlogon RCE flaw now exploited in attacks | BleepingComputer

CISA adds exploited Palo Alto Networks GlobalProtect flaw to KEV | Cybersecurity Dive

Password manager Dashlane says hackers stole some customers’ password vaults | TechCrunch Security

CrowdStrike disrupts Glassworm botnet that preyed on open-source supply chain | cyberscoop.com

Botnet of more than 17 million devices dismantled | arstechnica.com

Chinese-speaking fraud gang could be stealing millions from 2026 World Cup fans | therecord.media

ACCC investigating Olympics ticket scam | ABC

Dozens of Red Hat packages backdoored through its offical NPM channel | arstechnica.com

Solo podcast: A deep dive on TeamPCP - Risky Business Media |

Trump administration releases scaled-back AI executive order | cyberscoop.com

Google security engineer accused of turning confidential search trends into $1.2M win on Polymarket | cyberscoop.com
...more
1h 7min
May 27, 2026Risky Business #839 -- TeamPCP stole GitHub's internal repos
On this week’s show Patrick Gray, Adam Boileau and James Wilson discuss the week’s cybersecurity news. They cover:
TeamPCP breached GitHub’s internal repos. Now what?

Some absolute plonker glued Coruna to a hijacked npm package

CISA is worried about about open source and wants third party submissions for KEV

AI infrastructure is “systemically” insecure

Much, much more
This week’s episode is sponsored by allowlisting vendor Airlock Digital. Airlock’s founders David Cottingham and Daniel Schell join Patrick Gray to talk about Microsoft briefly flagging DigitCert’s root certificate as malware. Fun!
This episode is also available on YouTube

Show notes
GitHub confirms being hacked by TeamPCP, says customer data unaffected | therecord.media

Grafana Labs links GitHub environment breach to TanStack npm supply chain attack | Cybersecurity Dive

Coruna Respawned: Compromised art-template npm Package Leads... | Socket

CISA chief frets about open-source vulnerabilities, delayed security improvements | cyberscoop.com

Anthropic: Mythos finds more than 10,000 software flaws in first month | cyberscoop.com

Pardon MIE? | ironPeak Blog

CISA asks cybersecurity community to alert it to vulnerability exploitation | Cybersecurity Dive

Lawmakers Demand Answers as CISA Tries to Contain Data Leak | krebsonsecurity.com

Google publishes exploit code threatening millions of Chromium users | arstechnica.com

Millions of AI agents imperiled by critical vulnerability in open source package | arstechnica.com

Discord migrates all users to end-to-end encryption by default | The Record

Texas AG sues Meta over claims that WhatsApp doesn't provide end-to-end encryption | arstechnica.com

Alleged Kimwolf Botmaster ‘Dort’ Arrested, Charged in U.S. and Canada | krebsonsecurity.com

Iran-linked hackers target key US, allied sectors with sophisticated spear-phishing messages | Cybersecurity Dive

FBI warns about fast-growing phishing kit targeting Microsoft 365 users | cyberscoop.com

Analyzing the rise in device code phishing attacks in 2026 | Push Security

Trump Mobile confirms it exposed customers’ personal data, including phone numbers and home addresses | TechCrunch Security

Kash Patel’s clothing brand website shut down after reports it was hacked | TechCrunch Security

Tulsi Gabbard resigns as US director of national intelligence | Social Signals

When Certificate Trust Fails: The DigiCert Code-Signing Incident and Microsoft Defender False Positive |
...more
1h 1min
May 20, 2026Risky Business #838 -- GitHub investigates possible breach
On this week’s show Patrick Gray, Adam Boileau and James Wilson discuss the week’s cybersecurity news.
They cover:
GitHub announced a possible breach

CISA leaks important creds, keys in public repo

Awful vulnerability in Bitlocker renders it useless without a PIN

So. Many. Patches.

Polish Government urges officials to ditch Signal for mSzyfr

Much, much more
This week’s show is brought to you by Thinkst Canary. Thinkst’s founder, Haroon Meer, is this week’s sponsor guest. He joined James Wilson to talk about how doing “the basics” in security isn’t trivially easy.
This episode is also available on YouTube.

Show notes
GitHub on X: "We are investigating unauthorized access to GitHub’s internal repositories. While we currently have no evidence of impact to customer information stored outside of GitHub’s internal repositories (such as our customers’ enterprises, organizations, and repositories), we are closely" / X

CISA Admin Leaked AWS GovCloud Keys on Github – Krebs on Security

Experts Confirm the Fast16 Malware Was Sabotaging Nuclear Weapons Tests, Likely in Iran

Iran hackers: Hackers have breached tank readers at gas stations; officials suspect Iran is responsible | CNN Politics

War and Data Centers Are Driving Up the Cost of Fiber-Optic Cable

Microsoft on pace to break annual vulnerability record as AI-driven patch wave takes hold | The Record from Recorded Future News

NCSC’s Ollie Whitehouse on surviving the "bugpocalypse" - Risky Business Media

Defense at AI speed: Microsoft’s new multi-model agentic security system tops leading industry benchmark | Microsoft Security Blog

Project Glasswing: what Mythos showed us

Linus Torvalds says AI-powered bug hunters have made Linux security mailing list ‘almost entirely unmanageable’

First public macOS kernel memory corruption exploit on Apple M5

OpenAI launches Daybreak to combat cyber threats | Cybersecurity Dive

Zero-day exploit completely defeats default Windows 11 BitLocker protections - Ars Technica

GitHub - Wack0/bitlocker-attacks: A list of public attacks on BitLocker · GitHub

Catalin Cimpanu: "The Polish government has advi…" - Mastodon

CISA orders all federal agencies to patch exploited bug in Cisco SD-WAN systems by Sunday | The Record from Recorded Future News

CVE-2026-20182: Critical authentication bypass in Cisco Catalyst SD-WAN Controller (FIXED)

Huawei zero-day attack behind last year’s crash of Luxembourg's entire telecoms network | The Record from Recorded Future News

Patch bypass allows hackers to exploit prior flaw in SonicWall SSL-VPN | Cybersecurity Dive

Microsoft disrupts Fox Tempest malware-signing-as-a-service platform tied to ransomware gangs | The Record from Recorded Future News

Streamer Realtime Deepfakes Himself into Mr. Beast, Says He Loves 'Touching Little Boys'
...more
1h 3min
May 15, 2026Soap Box: Where does AI fit into cloud security?
In this sponsored soap box edition of the Risky Business podcast Patrick Gray chats with Toni de la Fuente, the founder of Prowler.
Prowler started off as a bunch of scripts in a trenchcoat, then became an open source cloud security tool, and it’s now a venture-funded cloud security business. In this interview Toni talks us through how AI is changing the game for him as an open source project owner, and as a vendor. In short, reports of the death of IT and security tooling at the hands of frontier models have been greatly exaggerated.
This episode is also available on Youtube.

Show notes
...more
34min
May 13, 2026Risky Business #837 -- GitHub Actions footgun claims TanStack
On this week’s show Patrick Gray, Adam Boileau and James Wilson discuss the week’s cybersecurity news.
They cover:
Mini Shai-Hulud and the TanStack compromise using Github Actions

Instructure pays Canvas elearning platform data extortionists

More Linux privilege escalation 0days!

CISA helping critical infrastructure operators rearchitect their networks so they work offline
This week’s episode is sponsored by email security platform Sublime Security. Bobby Filar chats with Patrick about how agentic AI is being evaluated by buyers in a marketplace that’s experiencing “AI fatigue”.
This episode is also available on Youtube.

Show notes
‘Mini Shai-Hulud’ malware compromises hundreds of open-source packages in sprawling supply-chain attack | CyberScoop

Hardening TanStack After the npm Compromise | TanStack Blog

Canvas Breach Disrupts Schools & Colleges Nationwide – Krebs on Security

Instructure pays ransom after Canvas incident as Congress announces investigation | The Record from Recorded Future News

When DNSSEC goes wrong: how we responded to the .de TLD outage

Adversaries Leverage AI for Vulnerability Exploitation, Augmented Operations, and Initial Access | Google Cloud Blog

Mythos smythos! How to find 0day with lesser models - Risky Business Media

GitHub - V4bel/dirtyfrag · GitHub

retr0.zip

NVD - CVE-2026-42511

Flaw in Claude’s Chrome extension allowed ‘any’ other plugin to hijack victims’ AI | CyberScoop

Ivanti customers confront yet another actively exploited zero-day | CyberScoop

Palo Alto warns of critical software bug used in firewall attacks | The Record from Recorded Future News

Where Have All the Complex Windows Malware and Their Analyses Gone?

Meet Rassvet, Russia’s Answer to Starlink | WIRED

DOJ says ransomware gang tapped into Russian government databases | TechCrunch

Iranian government hackers using Chaos ransomware as cover, researchers say | The Record from Recorded Future News

Foxconn confirms cyberattack impacting North American factories | The Record from Recorded Future News

New CISA initiative aims for critical infrastructure to operate offline during cyberattacks | The Record from Recorded Future News

‘HELLO BOSS’: Inside the Chinese Realtime Deepfake Software Powering Scams Around the World

How to Disable Google's Gemini in Chrome | WIRED

FCC pushes ban on security updates for foreign-made routers, drones to 2029 | The Record from Recorded Future News
...more
1h 6min
May 06, 2026Risky Business #836 -- You can't patch the bugpocalypse
On this week’s show, Patrick Gray and James Wilson are joined by special guest co-host Brad Arkin. They discuss the week’s cybersecurity news, including:
The US Government says we just have to patch faster, but…

Bugs in cPanel, MoveIt and all Linux distributions this week show that patching alone isn’t enough

James gets mad about lame AI Agent adoption advice from the US and Australian Governments

James Kettle and Niels Provos both showed us that any model can find 0day like Mythos

And the cyber-assisted theft of cargo results in an astonishing loss of $725 million dollars
This week’s show is sponsored by SpecterOps. Their CTO, Jared Atkinson, chats to Pat about the big changes in the threat landscape, brought about by AI, that are causing a pivot away from detection and remediation, and toward prevention.
This episode is also available on Youtube.

Show notes
Exclusive: US officials weigh cutting deadlines to fix digital flaws amid worries over AI-powered hacking, sources say | Reuters

British cyber agency warns of looming ‘patch wave’ as AI speeds flaw discovery | The Record from Recorded Future News

Federal agencies must patch cPanel bug by Sunday, CISA says | The Record from Recorded Future News

cPanel zero-day exploited for months before patch release (CVE-2026-41940) - Help Net Security

The most severe Linux threat to surface in years catches the world flat-footed - Ars Technica

New MOVEit vulnerabilities prompt urgent patch warning | Cybersecurity Dive

US and allies urge ‘careful adoption’ of AI agents | Cybersecurity Dive

careful_adoption_of_agentic_ai_services.pdf

User just tricked Grok and Bankrbot to send tokens with Morse code - Cryptopolitan

Finding Zero-Days with Any Model

(1872) Sponsored: James Kettle built an AI hacker - YouTube

Feature Interview: Nicholas Carlini, Anthropic - Risky Business Media

Trellix investigating breach of source code repository | Cybersecurity Dive

Popular DAEMON Tools software compromised | Securelist

Komari Red: The Monitoring Tool with a Built-in Reverse Shell | Huntress

Hackers earning millions from hijacked cargo, FBI says | The Record from Recorded Future News

Congress punts FISA renewal to June | The Record from Recorded Future News

Cops Use Apple Data And Car Bluetooth To Identify Crypto Robbery Suspect

Stewart Baker, outspoken voice on cybersecurity and national security law, dies at 78 | IAPP
...more
1h 2min
May 01, 2026Snake Oilers: Ent AI, Spacewalk and Mondoo
In this edition of the Snake Oilers podcast three vendors stop by to pitch the audience on their products:
Ent AI: Co-founder Brandon Dixon pitched Ent, an intent-aware, AI-powered endpoint security control.

Spacewalk AI: Founders Chris Fuller and Tim Wenzlau pitch Spacewalk, an AI-powered incident response platform.

Mondoo: Co-founder Dominik Richter pitches Mondoo, an AI-powered “service as software” in the vulnerability management space.

This episode is also available on YouTube.

Show notes
...more
44min
April 29, 2026Risky Business #835 -- Why the Fast16 malware is badass
On this week’s show, Patrick Gray and James Wilson are joined by special guest-host Dmitri Alperovitch. They discuss the week’s cybersecurity news, including:
The US government is mad as hell about Chinese firms stealing American AI technology

Dmitri has an opinion or two about the US selling Nvidia chips to China

Speaking of Chinese AI, Kimi’s new 2.6 is very interesting

The US sanctions a Cambodian senator for earning mega bucks through scam compounds

And a ransomware family is promoting itself as being … quantum-safe?
This week’s show is sponsored by Trail of Bits. CEO and co-founder Dan Guido chats to Pat about how private inference works and Trail of Bits’ audit of WhatsApp’s private AI setup.
This episode is also available on Youtube.

Show notes
Exclusive: US State Dept orders global warning about alleged AI thefts by DeepSeek, other Chinese firms | Reuters

moonshotai/Kimi-K2.6 · Hugging Face

Discord Sleuths Gained Unauthorized Access to Anthropic’s Mythos | WIRED

Newly Deciphered Sabotage Malware May Have Targeted Iran’s Nuclear Program—and Predates Stuxnet | WIRED

Hackers deployed wiper malware in destructive attacks on Venezuela’s energy sector | The Record from Recorded Future News

Mystery Around Venezuelan Cyberattack Deepens, with New Discovery of "Highly Destructive" Wiper

Risky Business #819 -- Venezuela (credibly?!) blames USA for wiper attack - Risky Business Media

AI Tools Are Helping Mediocre North Korean Hackers Steal Millions | WIRED

CISA: US agency breached through Cisco vulnerability, FIRESTARTER backdoor allowed access through March | The Record from Recorded Future News

US, UK authorities warn that Firestarter backdoor malware survives patching | Cybersecurity Dive

Surveillance campaigns use commercial surveillance tools to exploit long-known telecom vulnerabilities | CyberScoop

UK regulator closes loophole that allowed rogue companies to track phone users' location | Reuters

US sanctions Cambodian senator for millions earned through scam compounds | The Record from Recorded Future News

Vercel says some of its customers' data was stolen prior to its recent hack | TechCrunch

Supply Chain Security Incident Update

Apple fixes bug that cops used to extract deleted chat messages from iPhones | TechCrunch

Kyle Daigle on X: "Wanted to provide more clarity about this. Yesterday, we had a regression in merge queue behavior where, in some cases, squash or rebase commits were generated from the wrong base state, making earlier changes appear reverted in branch history. 2,804 pull requests out of over 4M" / X

Securing the git push pipeline: Responding to a critical remote code execution vulnerability - The GitHub Blog

One ransomware crew now drives half of all cyber claims: At-Bay | Insurance Business

In a first, a ransomware family is confirmed to be quantum-safe - Ars Technica

What we learned about TEE security from auditing WhatsApp's Private Inference
...more
1h 7min
April 22, 2026Risky Business #834 -- Vercel gets owned, Mozilla dumps hundreds of Mythos bugs
On this week’s show, Patrick Gray and James Wilson are joined by special guest The Grugq. They discuss the week’s cybersecurity news, including:
Vercel got owned, and there’s a few infostealer and compromised employee dots to connect

Mozilla used Mythos to find 271 bugs, which feels like a sign of the bug-pocalypse

Speaking of the bug-pocalypse, is that why NIST is noping out of enriching a bunch of bugs?

The NSA is using Mythos even though the government did that whole Anthropic blacklisting thing

And DDos attacks hit a couple of smaller-player socials
This week’s episode is sponsored by Permiso. Ian Ahl chats to Pat about the subtle signals Permiso uses to detect ShinyHunters-style activity in cloud and on-prem environments.
This episode is also available on Youtube.

Show notes
Vercel April 2026 Security incident

Vercel breach linked to infostealer infection at Context.ai

Vercel confirms breach as hackers claim to be selling stolen data

Matt Johansen: “This is not a good look” | X

NIST limits vulnerability analysis as CVE backlog swells | Cybersecurity Dive

CISA Cyber on X

Ransomware attack continues to disrupt healthcare in London nearly two years later | The Record from Recorded Future News

Lawmakers ponder terrorism designations, homicide charges over hospital ransomware attacks | CyberScoop

In defeat for Trump, House extends electronic spying program for just 10 days | The Record from Recorded Future News

Crypto infrastructure company blames $290 million theft on North Korean hackers | The Record from Recorded Future News

US-sanctioned currency exchange says $15 million heist done by "unfriendly states" - Ars Technica

Hackers are abusing unpatched Windows security flaws to hack into organizations | TechCrunch

Mozilla Used Anthropic’s Mythos to Find and Fix 271 Bugs in Firefox | WIRED

NSA using Anthropic's Mythos despite Defense Department blacklist

Beyond the breach: inside a cargo theft actor’s post-compromise playbook | Proofpoint US

Beware scam messages offering ships safe transit through Hormuz Strait, says security firm | The Straits Times

New Jersey men given lengthy sentences for running North Korean laptop farms | The Record from Recorded Future News

Turns Out We’re Not Alone - Volodymyr Styran

US joins nearly two dozen other countries in striking back against DDoS-for-hire platforms | Cybersecurity Dive

Bluesky blames app outage on ‘sophisticated’ DDoS attack | The Record from Recorded Future News

Mastodon says its flagship server was hit by a DDoS attack | TechCrunch

An IT expert explained under what conditions using a VPN can cause a smartphone to explode
...more
1h 1min

FAQs about Risky Business:

How many episodes does Risky Business have?

The podcast currently has 648 episodes available.

More shows like Risky Business

Hacked by Hacked

Hacked

187 Listeners

Security Now (Audio) by TWiT

Security Now (Audio)

2,011 Listeners

Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

372 Listeners

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

651 Listeners

CyberWire Daily by N2K Networks

CyberWire Daily

1,028 Listeners

Smashing Security by Graham Cluley

Smashing Security

317 Listeners

Click Here by Recorded Future News

Click Here

418 Listeners

Darknet Diaries by Jack Rhysider

Darknet Diaries

8,077 Listeners

Cybersecurity Today by Jim Love

Cybersecurity Today

175 Listeners

Hacking Humans by N2K Networks

Hacking Humans

315 Listeners

CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

CISO Series Podcast

195 Listeners

Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

Defense in Depth

73 Listeners

Cybersecurity Headlines by CISO Series

Cybersecurity Headlines

139 Listeners

Risky Bulletin by Risky Business Media

Risky Bulletin

45 Listeners

Hacker And The Fed by Chris Tarbell & Hector Monsegur

Hacker And The Fed

168 Listeners