(Presented by TLPBLACK: A cybersecurity intelligence platform focused on sharing curated, high-sensitivity threat insights and research with trusted security professionals.)

Three Buddy Problem - Episode 94: We discuss a mysterious, VM-obfuscated backdoor that lived undetected on a single U.K. machine for a year before disappearing, finding clues pointing to an elite-level APT intrusion that still evades broader industry coverage.

Plus, connecting the dots across AI-driven vulnerability discovery, Microsoft’s massive Patch Tuesday, Jensen Huang talks cybersecurity, Mythos dangers and Chinese chips, and the quiet erosion of CVE enrichment at NIST.

Cast: Juan Andres Guerrero-Saade, Ryan Naraine and Costin Raiu.

Timestamps:

Links:

• Transcript
• Microsoft Patches Exploited SharePoint Zero-Day and 160 Other Vulns
• ZDI: April 2026 Patch Tuesday Review
• Inside ZionSiphon: OT Malware Targeting Israeli Water Systems
• GenDigital: Chasing an Angry Spark
• MAD Bugs: Month of AI-Discovered Bugs (Calif)
• HackerOne: The Vulnerability Apocalypse is a Remediation Crisis
• OpenAI scaling up Trusted Access for Cyber (TAC) Program
• OpenAI Commits $10m in API credits for cybersecurity
• Anthropic: Introducing Claude Opus 4.7
• OpenAI confirms Axios developer tool compromise
• Jensen Huang x Jensen Huang on Nvidia’s AI Moat
• Anthropic: Detecting and preventing distillation attacks
• NIST Updates NVD Operations to Address Record CVE Growth
• Dreadnode Open-Source Tools to Measure AI Offense-Defense Gap
• LABScon 2026 Call for Papers
• Cyber-Paleontology in the Age of AI (Black Hat Asia 2026)
• Ekoparty Miami Schedule
• TLPBLACK