Sign up to save your podcasts
Or
Share The AI-powered 10x patch tsunami has arrived. Now what?
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
The AI-powered 10x patch tsunami has arrived. Now what?
(Presented by TLPBLACK: A cybersecurity intelligence platform focused on sharing curated, high-sensitivity threat insights and research with trusted security professionals.)
Three Buddy Problem - Episode 98: We dive back into the fast16 malware discovery with fresh speculation that it's targeting spherical implosion simulations for Iran's nuclear program, and wonder who on earth is qualified to confirm this.
Plus, thoughts on OpenAI's new three-tier cyber access program, Microsoft's MDASH harness, the 10x Patch Tuesday tsunami, Cloudflare's 1,100 layoffs blamed on AI, and why frontier-lab guardrails may just be elaborate security theater.
Cast: Juan Andres Guerrero-Saade, Ryan Naraine and Costin Raiu.
Timestamps:
0:00 - Introductory banter
3:19 - fast16 update: spherical implosion simulations?
9:01 - Manhattan Project precedent — why this matches Iran
12:28 - Who can actually reproduce the FAST 16 attack?
19:32 - Google GTIG's "AI-written" zero-day
22:13 - The rise of AI-backend "silent detections"
25:54 - Guardrails as security theater
38:47 - Are the 10x patch numbers real defense?
43:48 - OpenAI's Trusted Access tiers + Microsoft MDASH
53:35 - End of the ‘patch-and-pray’ model
57:50 - Sean Heelan: strict harnesses can make models worse
1:03:51 - Pwn2Own Berlin overflow and bug-density debate
1:12:24 - Cloudflare's 1,100 layoffs and AI as scapegoat
1:27:42 - RCS encryption, Android Intrusion Logging, Seedworm & Kazuar
Links:
- Transcript
- fast16 malware targeting spherical implosion simulations
- fast16 | Mystery Shadow Brokers Reference Reveals High-Precision Software Sabotage 5 Years Before Stuxnet
- Cracking the Fast16 sabotage malware mystery
- GTIG on AI Exploit Generation Discovery
- iOS 26.5 Security Bulletin
- End-to-end encrypted RCS messaging hits beta
- Android adds 'Intrusion Logging' feature
- Google: Log your Android device activity
- Microsoft MDASH new multi-model agentic security system
- Daybreak | OpenAI for cybersecurity
- Pwn2Own 2026 Capacity Overflow, Hackers Drop 0-Days Solo
- Seedworm: Iran-Linked Hackers Breached Korean Electronics Maker
- Kazuar: Anatomy of a nation-state botnet (Microsoft)
- Ekoparty Miami
- LABScon 2026
- TLPBLACK
View all episodes
By Security Conversations
4.9
6161 ratings
(Presented by TLPBLACK: A cybersecurity intelligence platform focused on sharing curated, high-sensitivity threat insights and research with trusted security professionals.)
Three Buddy Problem - Episode 98: We dive back into the fast16 malware discovery with fresh speculation that it's targeting spherical implosion simulations for Iran's nuclear program, and wonder who on earth is qualified to confirm this.
Plus, thoughts on OpenAI's new three-tier cyber access program, Microsoft's MDASH harness, the 10x Patch Tuesday tsunami, Cloudflare's 1,100 layoffs blamed on AI, and why frontier-lab guardrails may just be elaborate security theater.
Cast: Juan Andres Guerrero-Saade, Ryan Naraine and Costin Raiu.
Timestamps:
0:00 - Introductory banter
3:19 - fast16 update: spherical implosion simulations?
9:01 - Manhattan Project precedent — why this matches Iran
12:28 - Who can actually reproduce the FAST 16 attack?
19:32 - Google GTIG's "AI-written" zero-day
22:13 - The rise of AI-backend "silent detections"
25:54 - Guardrails as security theater
38:47 - Are the 10x patch numbers real defense?
43:48 - OpenAI's Trusted Access tiers + Microsoft MDASH
53:35 - End of the ‘patch-and-pray’ model
57:50 - Sean Heelan: strict harnesses can make models worse
1:03:51 - Pwn2Own Berlin overflow and bug-density debate
1:12:24 - Cloudflare's 1,100 layoffs and AI as scapegoat
1:27:42 - RCS encryption, Android Intrusion Logging, Seedworm & Kazuar
Links:
- Transcript
- fast16 malware targeting spherical implosion simulations
- fast16 | Mystery Shadow Brokers Reference Reveals High-Precision Software Sabotage 5 Years Before Stuxnet
- Cracking the Fast16 sabotage malware mystery
- GTIG on AI Exploit Generation Discovery
- iOS 26.5 Security Bulletin
- End-to-end encrypted RCS messaging hits beta
- Android adds 'Intrusion Logging' feature
- Google: Log your Android device activity
- Microsoft MDASH new multi-model agentic security system
- Daybreak | OpenAI for cybersecurity
- Pwn2Own 2026 Capacity Overflow, Hackers Drop 0-Days Solo
- Seedworm: Iran-Linked Hackers Breached Korean Electronics Maker
- Kazuar: Anatomy of a nation-state botnet (Microsoft)
- Ekoparty Miami
- LABScon 2026
- TLPBLACK
More shows like Three Buddy Problem
View all
Hacked
187 Listeners
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
372 Listeners
Risky Business
371 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
651 Listeners
CyberWire Daily
1,028 Listeners
Smashing Security
317 Listeners
Click Here
418 Listeners
Darknet Diaries
8,077 Listeners
Cybersecurity Today
175 Listeners
Hacking Humans
315 Listeners
CISO Series Podcast
195 Listeners
Defense in Depth
73 Listeners
Cybersecurity Headlines
139 Listeners
Risky Bulletin
45 Listeners
The 404 Media Podcast
398 Listeners