Dec 1, 2025 | Podcast
https://pushsecurity.com/blog/uncovering-a-calendly-themed-phishing-campaign There’s a new phishing campaign that leverages fake Calendly invitations to hijack ad manager accounts. The attack targets users of popular platforms like Facebook, Google, and Microsoft Ads,...
Nov 28, 2025 | Podcast
https://www.ic3.gov/PSA/2025/PSA251125 The Federal Bureau of Investigation (FBI) has issued a warning about the alarming rise in account takeover fraud schemes, urging the public to be vigilant against social engineering techniques perpetrated through texts, calls,...
Nov 27, 2025 | Podcast
https://www.akamai.com/blog/security/bot-management-agentic-era In the rapidly evolving landscape of cybersecurity, a new breed of bots, known as “agentic bots,” is posing a significant challenge to businesses and security professionals. These bots,...
Nov 26, 2025 | Podcast
https://krebsonsecurity.com/2025/11/is-your-android-tv-streaming-box-part-of-a-botnet Security experts are warning consumers about the potential dangers lurking behind the seemingly affordable “Superbox” media streaming devices sold at major retailers like...
Nov 25, 2025 | Speaking
What a way to wrap up the year. Tuesday’s SecTalks Legends panel with Josh, moderated by Pedram, was honestly one of the most fun and insightful sessions of 2025.Had a blast jamming on “Surviving the Security–Engineering Collision”. Everything from why security...
Nov 25, 2025 | Podcast
https://www.nytimes.com/2025/11/22/business/bank-data-hack.html In a significant cybersecurity breach, a technology vendor that serves hundreds of banks and lenders, SitusAMC, has been the subject of a large-scale hack. The incident has raised concerns among some of...
Nov 24, 2025 | Podcast
https://www.itnews.com.au/news/singapore-orders-apple-google-to-prevent-government-spoofing-on-messaging-platforms-622055 In a move to combat scams, the Singapore police have ordered tech giants Apple and Google to prevent the spoofing of government agencies on their...
Nov 21, 2025 | Podcast
https://socket.dev/blog/npm-malware-campaign-uses-adspect-cloaking-to-deliver-malicious-redirects Researchers have uncovered a concerning trend of malicious NPM packages that are abusing the Adspect cloud-based service to bypass security measures and lead unsuspecting...
Nov 20, 2025 | Podcast
https://www.itnews.com.au/news/optus-takes-826000-hit-for-anti-scam-breaches-621882 In a significant blow to Australia’s second-largest telecommunications provider, Optus has been slapped with an $826,000 fine by the Australian Communications and Media Authority...
Nov 19, 2025 | Speaking
Did a keynote presentation at the Sydney AI Security Summit where I spoke about Lessons from the software supply chain and what they teach us about securing AI. Just as we don’t assume that open source components are always safe, we shouldn’t also assume...
