Dec 8, 2025 | Podcast
https://www.bleepingcomputer.com/news/security/react2shell-flaw-exploited-to-breach-30-orgs-77k-ip-addresses-vulnerable Security researchers have sounded the alarm over the critical React2Shell remote code execution vulnerability (CVE-2025-55182), which affects over...
Dec 5, 2025 | Podcast
https://www.itnews.com.au/news/asx-outage-caused-by-security-software-upgrade-622331 The Australian Securities Exchange (ASX) has faced yet another setback in its ongoing technology overhaul, as a recent outage on its announcement platform was caused by a security...
Dec 5, 2025 | Posts
Had a great session earlier this month with fellow security practitioners. What was meant to be a discussion across three topics quickly turned into a deep dive on the first two and honestly, that’s the best kind of problem to have. It was great hearing everyone’s...
Dec 4, 2025 | Podcast
https://trufflesecurity.com/blog/scanning-5-6-million-public-gitlab-repositories-for-secrets Thousands of sensitive developer secrets have been inadvertently exposed through public GitLab repositories. The investigation, conducted by the Checkmarx security team, found...
Dec 3, 2025 | Podcast
https://www.afp.gov.au/news-centre/media-release/wa-man-jailed-stealing-intimate-material-and-using-evil-twin-wifi A WA man who was responsible for carrying out “evil twin” WiFi attacks on airline passengers has been sentenced to seven years in prison. The...
Dec 2, 2025 | Podcast
https://www.wiz.io/blog/shai-hulud-2-0-aftermath-ongoing-supply-chain-attack Security researchers have uncovered a widespread malware campaign targeting the popular npm package repository. Dubbed “Shai Hulud 2.0,” the attack is estimated to have exposed up...
Dec 1, 2025 | Podcast
https://pushsecurity.com/blog/uncovering-a-calendly-themed-phishing-campaign There’s a new phishing campaign that leverages fake Calendly invitations to hijack ad manager accounts. The attack targets users of popular platforms like Facebook, Google, and Microsoft Ads,...
Nov 28, 2025 | Podcast
https://www.ic3.gov/PSA/2025/PSA251125 The Federal Bureau of Investigation (FBI) has issued a warning about the alarming rise in account takeover fraud schemes, urging the public to be vigilant against social engineering techniques perpetrated through texts, calls,...
Nov 27, 2025 | Podcast
https://www.akamai.com/blog/security/bot-management-agentic-era In the rapidly evolving landscape of cybersecurity, a new breed of bots, known as “agentic bots,” is posing a significant challenge to businesses and security professionals. These bots,...
Nov 26, 2025 | Podcast
https://krebsonsecurity.com/2025/11/is-your-android-tv-streaming-box-part-of-a-botnet Security experts are warning consumers about the potential dangers lurking behind the seemingly affordable “Superbox” media streaming devices sold at major retailers like...
