Register for FREE Infosec Webcasts, Anti-casts & Summits –

https://poweredbybhis.com

00:00 - PreShow Banter™ — It’s 8ft skeleton season.

02:18 - BHIS - Talkin’ Bout [infosec] News 2025-09-02

03:07 - Story # 1: Salesloft breached to steal OAuth tokens for Salesforce data-theft attacks

07:35 - Story # 2: DSLRoot, Proxies, and the Threat of ‘Legal Botnets’

13:46 - Story # 3: Attackers Abuse Velociraptor Forensic Tool to Deploy Visual Studio Code for C2 Tunneling

17:44 - Story # 4: Ransomware crooks knock Swedish municipalities offline for measly sum of $168K

19:39 - Story # 5: As crippling cyberattack against Nevada continues, Lombardo says ‘we’re working through it.’

20:56 - Story # 6: Citrix forgot to tell you CVE-2025–6543 has been used as a zero day since May 2025

22:43 - Story # 7: NetScaler ADC and NetScaler Gateway Security Bulletin for CVE-2025-7775, CVE-2025-7776 and CVE-2025-8424

25:20 - Story # 8: First known AI-powered ransomware uncovered by ESET Research

30:00 - Story # 9: In the rush to adopt hot new tech, security is often forgotten. AI is no exception

32:06 - Story # 10: TransUnion suffers data breach impacting over 4.4 million people

34:17 - Story # 11: ChickenSec FollowUp: Artificial Intelligence: The other AI

35:20 - Story # 12: They weren’t lovin’ it - hacker cracks McDonald’s security in quest for free nuggets, and it was apparently not too tricky

39:29 - Identify the birds you see or hear with Merlin Bird ID

40:04 - Story # 13: Detecting and countering misuse of AI: August 2025

51:31 - Story # 14: I’m a Stanford student. A Chinese agent tried to recruit me as a spy

Register for FREE Infosec Webcasts, Anti-casts & Summits –

https://poweredbybhis.com

00:00 - PreShow Banter™ — Canadian Chicken

02:01 - The AI Bubble BHIS - Talkin’ Bout [infosec] News 2025-08-25

02:23 - Story # 1: Congressman proposes bringing back letters of marque for cyber privateers

09:27 - Story # 2: SIM-Swapper, Scattered Spider Hacker Gets 10 Years

12:43 - Story # 3: Developer jailed for taking down employer’s network with kill switch malware

16:33 - Story # 4: Agentic Browser Security: Indirect Prompt Injection in Perplexity Comet

20:42 - The Utopia Chronicles

23:20 - Story # 5: “Unstoppable Power Surges”: China’s Quantum Processor Outspeeds Supercomputers by 1 Quadrillion and Triggers US Intelligence Panic

28:47 - Story # 6: Bank forced to rehire workers after lying about chatbot productivity, union says

41:21 - Story # 7: It Took Many Years And Billions Of Dollars, But Microsoft Finally Invented A Calculator That Is Wrong Sometimes

43:41 - Story # 8: Copilot Broke Your Audit Log, but Microsoft Won’t Tell You

46:33 - Story # 9: Russian state-sponsored espionage group Static Tundra compromises unpatched end-of-life network devices

49:24 - Story # 10 : Zero-Day Clickjacking Flaws Found in Password Managers Used by Millions

53:12 - Story # 11: Cybersecurity training doesn’t work: time wasted with no impact, study finds

59:07 - ChickenSec: Artificial Intelligence: The other AI

Register for FREE Infosec Webcasts, Anti-casts & Summits –

https://poweredbybhis.com

00:00 - PreShow Banter™ — The gif that keeps on giffing

01:46 - Cyberattack Bricks Speed Cameras – BHIS - Talkin’ Bout [infosec] News 2025-08-18

02:39 - Story # 1: Perplexity made a sky-high $34.5 billion bid for Google Chrome — a bold and unusual move in the midst of antitrust scrutiny

07:16 - Story # 2: Exclusive: US embeds trackers in AI chip shipments to catch diversions to China, sources say

10:22 - Story # 3: How we found TeaOnHer spilling users’ driver’s licenses in less than 10 minutes

12:17 - Story # 4: Cisco discloses maximum-severity defect in firewall software

13:56 - Story # 5: Data Dump From APT Actor Yields Clues to Attacker Capabilities

19:13 - Story # 6: Russian cyberattack in the Netherlands leaves speed cameras offline indefinitely

23:30 - Story # 7: HTTP/2 MadeYouReset Vulnerability Enables Massive DDoS Attacks

24:51 - Story # 8: LAPD Eyes ‘GeoSpy’, an AI Tool That Can Geolocate Photos in Seconds

29:05 - Story # 9: Manpower discloses data breach affecting nearly 145,000 people

34:51 - Story # 10: Hacker Offers to Sell 15.8 Million Plain-Text PayPal Credentials On Dark Web Forum

35:34 - Story # 11: The First Federal Cybersecurity Disaster of Trump 2.0 Has Arrived

40:54 - Story # 12: New Clever Phishing Attack Uses Japanese Character “ん” to Mimic Forward Slash “/”

46:28 - Story # 13: Fortinet warns of FortiSIEM pre-auth RCE flaw with exploit in the wild

48:13 - Story # 14: Plex warns users to patch security vulnerability immediately

50:53 - ChickenSec: Noble Foods using soil mapping technology at organic egg farm