Edwin Kwan
  • Home
  • Speaker
  • Podcasts
    • Cyber Bites
    • AppSec Unlocked
    • It’s 5:05 Podcast
  • Journal
  • Publications
Select Page

WhatsApp Phishing Attack Uses Fake Business Documents to Compromise PCs

Jun 25, 2026 | Podcast

https://securelist.com/whatsapp-vbs-rmm-campaign/120290 A phishing campaign targeting WhatsApp users has been uncovered, in which attackers are distributing fake business documents through the platform to trick recipients into executing malware that compromises their...

Anthropic’s Mythos AI Model Found Vulnerabilities in Classified US Government Systems Within Hours

Jun 24, 2026 | Podcast

https://apnews.com/article/anthropic-mythos-ai-classified-systems-vulnerabilities-testing-3e8762c0527c4d8ed657cbe48c84a718 A United States government official has confirmed to the Associated Press that Anthropic’s Mythos artificial intelligence model identified...

Five Eyes Cyber Chiefs Issue Urgent Joint Warning: AI Is Reshaping Cyber Risk Faster Than Anyone Anticipated

Jun 23, 2026 | Podcast

https://www.smh.com.au/technology/act-now-cyber-spy-chiefs-issue-warning-on-ai-threat-20260622-p608z6.html The heads of the Five Eyes cybersecurity agencies have issued a rare joint statement declaring that artificial intelligence is reshaping cyber risk in months...

Fake ABC News Website Scam Using Facebook Ads to Defraud Australians of Hundreds of Thousands of Dollars

Jun 22, 2026 | Podcast

https://www.abc.net.au/news/2026-06-23/fake-abc-website-scam-facebook-ads/106653690 Scammers are running an industrial-scale operation using pixel-perfect clones of the ABC News website, promoted through Facebook advertising, to convince Australians to pour money into...

Passkeys vs Passwords: Readers Debate Whether a Smartphone PIN Can Really Be Safer Than a Complex Password

Jun 19, 2026 | Podcast

https://www.theguardian.com/lifeandstyle/2026/jun/14/readers-reply-experts-say-we-should-use-passkeys-but-can-a-smartphone-pin-really-be-safer-than-a-password A lively reader debate has erupted in The Guardian’s long-running Notes and Queries column after a...

FIFA Bug in World Cup Streaming Infrastructure Opened Door to Remote Takeover

Jun 18, 2026 | Podcast

https://bobdahacker.com/blog/fifa-hack A security vulnerability discovered in FIFA’s digital infrastructure supporting World Cup streaming has been found to expose the platform to remote takeover, raising significant concerns about the cybersecurity posture of...

The Digital Trove: How a Single Hack Exposed One Man’s Entire Life and Why We’re All Vulnerable

Jun 17, 2026 | Podcast

https://nymag.com/intelligencer/article/your-digital-self-is-vulnerable.html The New York Magazine published a fantastic article about how a person who had good security practices had years of personal information exposed. The breach had originated when the person...

A Three-Stage Vulnerability Chain Turning Microsoft 365 Copilot Into a Silent Data Exfiltration Weapon

Jun 16, 2026 | Podcast

https://www.varonis.com/blog/searchleak Varonis Threat Labs has disclosed a critical vulnerability chain dubbed SearchLeak that transforms Microsoft 365 Copilot Enterprise Search into a silent data exfiltration tool, capable of extracting emails, security codes,...

Malicious JetBrains Marketplace Plugins Discovered Stealing AI API Keys from Developers

Jun 15, 2026 | Podcast

https://www.aikido.dev/blog/multiple-jetbrains-ide-plugins-caught-stealing-ai-keys Security researchers have uncovered malicious plugins on the JetBrains Marketplace that have been specifically designed to steal AI API keys from developers, targeting credentials used...

Apple Introduces Automatic Password Changing Feature for Compromised Credentials

Jun 11, 2026 | Podcast

https://www.macrumors.com/2026/06/08/apple-passwords-can-now-automatically-fix-passwords-with-agentic-ai Apple has unveiled a new security feature that will automatically change passwords that have been identified as compromised, marking a significant step forward in...
« Older Entries
Next Entries »

Latest Posts

  • Phishing Campaign Impersonates Major Global Brands to Steal Gmail Credentials
  • China Warns Developers to Uninstall Claude Code Over ‘Backdoor’ Data Collection Fears
  • OpenMandriva Linux Hit by Internal Sabotage Attempt from Former Contributor
  • ACSC Issues Second Warning in Two Months Over Unpatched CMS Vulnerabilities Being Actively Exploited
  • Malicious Websites Are Embedding Hidden Instructions to Hijack AI Agents Through Indirect Prompt Injection

Speaking Events

  • Guest Lecture at UNSW Business School for INFS5907
  • Speaker at Bugcrowd Luncheon
  • Guest Lecture at UNSW
  • Panelist at SecTalks Legends – 2025
  • Keynote Speaker at Sydney AI Security Summit 2025

More Content

  • Articles (26)
  • Podcast (824)
  • Posts (26)
  • Publications (1)
  • Speaking (50)
  • X
  • RSS
Edwin Kwan