Apr 24, 2026 | Podcast
The zero-days are numbered Mozilla has announced a groundbreaking collaboration with Anthropic that leveraged advanced AI models to identify and fix 271 security vulnerabilities in Firefox 150, marking a potential paradigm shift in software security. The Firefox team...
Apr 23, 2026 | Podcast
https://securelist.com/fakewallet-cryptostealer-ios-app-store/119474 China’s Apple App Store has been compromised by a wave of fraudulent cryptocurrency wallet applications designed to steal users’ digital assets, according to recent security research....
Apr 22, 2026 | Podcast
https://www.bleepingcomputer.com/news/security/microsoft-teams-increasingly-abused-in-helpdesk-impersonation-attacks Cybercriminals are increasingly exploiting Microsoft Teams to conduct sophisticated helpdesk impersonation attacks, using the trusted business...
Apr 21, 2026 | Podcast
https://support.apple.com/en-us/127002 Apple has released a security update to address a significant privacy flaw in iOS that prevented notification data from being properly deleted even after users removed the notifications. The bug allowed sensitive information...
Apr 20, 2026 | Podcast
https://www.ghacks.net/2026/04/21/claude-desktop-silently-installs-browser-extension-files-for-browsers-not-installed Anthropic’s Claude Desktop application has come under scrutiny after users discovered it silently installs browser extension files on systems,...
Apr 17, 2026 | Podcast
https://openai.com/index/scaling-trusted-access-for-cyber-defense OpenAI has unveiled GPT-5.4-Cyber, a variant of its latest flagship model GPT-5.4, specifically optimised for defensive cybersecurity use cases, arriving days after rival Anthropic released its own...
Apr 16, 2026 | Podcast
Someone Bought 30 WordPress Plugins and Planted a Backdoor in All of Them. More than 30 WordPress plugins belonging to the EssentialPlugin suite have been found to contain malicious backdoor code, affecting products with hundreds of thousands of active installations...
Apr 15, 2026 | Podcast
https://pluto.security/blog/mcp-bug-nginx-security-vulnerability-cvss-9-8 A critical authentication bypass vulnerability in Nginx UI, tracked as CVE-2026-33032, is now being actively exploited in the wild, allowing remote attackers to seize complete control of web...
Apr 14, 2026 | Speaking
Had a great time guest lecturing last week at UNSW Business School for INFS5907. The brief was to share some real-world perspectives on how AI is reshaping the management side of cybersecurity, from decision-making and prioritisation through to operating models, risk...
Apr 14, 2026 | Podcast
https://helpx.adobe.com/security/products/acrobat/apsb26-43.html Adobe has released an emergency security update to address a critical vulnerability in Acrobat and Acrobat Reader, tracked as CVE-2026-34621, which has been exploited in zero-day attacks since at least...
