Home Podcasts Risky Bulletin
Risky Bulletin

Risky Bulletin

Risky Business Media 100 Episodes Jul 3, 2026

Regular cybersecurity news updates from the Risky Business team.

Episodes

Risky Bulletin: FatFs bugs enable physical access attacks on a load of devices Jul 3, 2026 560 FatFs bugs enable physical access attacks on industrial equipment, a clever password spraying attack bypasses M365 MFA, an AI agent is deploying ransomware in live attacks, and a webinar platform sues two security firms over bad IOCs. Show notes Risky Bulleti
Srsly Risky Biz: America won't beat the distillation ecosystem Jul 2, 2026 1802 Tom Uren and James Wilson talk about Chinese AI labs stealing the special sauce of American AI models in ‘distillation attacks’. These attacks are fed by a grey market in which Chinese consumers buy access to American models, where one of the byproducts is logs of user requests and responses. These make wonderful inputs into distillation attacks and the whole market
Risky Bulletin: Researcher drops giant cache of zero-days Jul 1, 2026 585 An anonymous researcher has dropped a giant cache of zero-day exploits, a sensitive DHS network got hacked, the US Supreme Court restricts geofence warrants, and security firm Huntress has denied accusations of a malicious insider. Show notes Risky Bulletin:
Between Two Nerds: Set cyberspace ablaze Jun 30, 2026 2348 In this edition of Between Two Nerds, Tom Uren and The Grugq discuss whether cyber organisations should actually be separated from Signals Intelligence organisations. The Grugq argues that having cyber expertise subordinate to intelligence collection means that many opportunities are never explored. This episode is also available on YouTube.
Risky Bulletin: White House asks OpenAI to restrict GPT 5.6 Jun 29, 2026 448 The White House asks OpenAI to keep a tight grip on ChatGPT 5.6, the US Secret Service made some appalling OpSec mistakes, AMD has reintroduced a CPU security feature after consumer backlash, and an Iranian APT operator has been arrested in Montenegro. Show notes
Sponsored: Corelight’s blueprint for AI-era defence Jun 29, 2026 1167 In this sponsored interview James Wilson chats with Corelight’s VP of Product Vijit Nair about defence strategies for the AI era. When agents can find and exploit vulnerabilities at machine speed, you need to balance between proactive and reactive measures. On the proactive side, you need modelling of assets and threats. On the reactive side you’ll need telemetry so
Risky Bulletin: Operation Endgame dismantles Amadey and StealerC Jun 26, 2026 615 Law enforcement dismantles two more malware operations, Japan’s army used infected USB drives, Anthropic accuses Alibaba of distillation attacks, and Australia finds “digital dynamite” on critical networks. Show notes Risky Bulletin: Law enforcement agencies
Srsly Risky Biz: Open weight models make the Mythos debate moot Jun 25, 2026 1708 Tom Uren and James Wilson talk about the Five Eyes cyber security agencies warning about the arrival of AI-enabled cyber threats. The call-to-action is driven by the recognition that it is no longer possible to limit AI’s offensive cyber security capabilities to benign actors. The genie is out of the bottle, regardless of export controls on frontier models. They als
Risky Bulletin: FortiBleed hacks involved a lot of traffic sniffing Jun 24, 2026 523 The FortiBleed hacks are worse than a credentials leak, a new White House executive order sets out a hard 2031 post quantum cryptography deadline, Meta leaks employee keystroke data, and a third of Samsung and LG TVs act as proxies. Show notes Risky Bulletin:
Sponsored: Trail of Bits and OpenAI patch the planet Jun 23, 2026 1107 In this sponsored interview James Wilson chats with Trail of Bits founder and CEO Dan Guido about its newly announced partnership with OpenAI. Together, they’ve started a new initiative called “Patch the Planet” to support open source maintainers. Being an open source maintainer is more difficult than ever. Just using frontier models to keep up with all the bug repo
Between Two Nerds: The PRC vs AI Jun 23, 2026 2122 In this edition of Between Two Nerds Tom Uren and The Grugq discuss the idea that the People’s Republic of China has mobilised its influence operations against the construction of US data centres and its build out of AI capacity. This episode is also available on YouTube. Show notes
Risky Bulletin: Klue breach impacts security firms Jun 22, 2026 488 A data breach at business analytics platform Klue spreads to security firms, a hacker breaches Brazil’s national alert system, North Koreans are behind the Mastra supply chain attack, and a new, unfixable vulnerability has been found in Apple’s A12 and A13 chips. Show notes

Recommended