Register for FREE Infosec Webcasts, Anti-casts & Summits –

https://poweredbybhis.com

00:00 - PreShow Banter™ — Pre Stream Appropriate

03:39 - N. Korean Remote Workers are at it Again! – BHIS - Talkin’ Bout [infosec] News 2025-07-07

05:41 - Story # 1: Fortune 500 Cyber Spending Pays Off: Large Enterprise Risk Falls 33% Despite Rising Threats

20:01 - Story # 2: Jasper Sleet: North Korean remote IT workers’ evolving tactics to infiltrate organizations

25:49 - Story # 2b: Engineer caught juggling multiple startup jobs is a cautionary tale of ‘extreme’ hustle culture, experts say

34:47 - Story # 3: Taking SHELLTER: a commercial evasion framework abused in- the- wild

42:15 - Story # 3b: Statement Regarding Recent Misuse of Shellter Elite and Elastic Security Labs’ Handling

46:58 - Story # 4: Ingram Micro outage caused by SafePay ransomware attack

49:45 - Story # 5: Germany asks Google, Apple to remove DeepSeek AI from app stores

53:13 - Story # 6: This Call of Duty game just hit Xbox Game Pass, but it’s infested with RCE hackers — I’d take cover and avoid playing until there’s a fix

Register for FREE Infosec Webcasts, Anti-casts & Summits –

https://poweredbybhis.com

Chapters:

00:00 - PreShow Banter™ — Names on Cups

01:39 - Year of the [European Union] Linux Desktop Finally Arrives? | BHIS - Talkin’ Bout [infosec] News 2025-06-30

03:34 - Story # 1: You should probably delete any sensitive screenshots you have in your phone right now.

10:55 - Story # 2: Ongoing Campaign Abuses Microsoft 365’s Direct Send to Deliver Phishing Emails

14:07 - Story # 3: The year of the European Union Linux desktop may finally arrive

24:46 - Story # 4: Restricted data once again leaked on War Thunder forums

27:04 - Story # 5: Scale AI Leaks Meta, Google, xAI Confidential Files Through ‘Incredibly Janky’ Document Practices

31:47 - Story # 6: French police reportedly arrest suspected BreachForums administrators

34:22 - Story # 7: Another Wave: North Korean Contagious Interview Campaign Drops 35 New Malicious npm Packages

39:41 - Story # 8: CitrixBleed 2: Electric Boogaloo — CVE-2025–5777

42:16 - Story # 9: Millions of Brother Printers Hit by Critical, Unpatchable Bug

47:05 - Story # 10: Canada orders China’s Hikvision to close Canadian operations

50:13 - Story # 11: US House bans WhatsApp on staff devices over security concerns

53:17 - ChickenSec: Chickens are becoming 3rd most popular pet: Tractor Supply CEO

56:34 - Story # 12: Norway Dam Hacked, Valve Opened But No Danger

58:11 - Review your calendar invites!

Register for Free, Live webcasts & summits:

https://poweredbybhis.com

00:00 - PreShow Banter™ — Explaining the Muppets

03:09 - Iran Shuts Down It's Own Internet- BHIS - Talkin’ Bout [infosec] News 2025-06-23

04:52 - Story # 1: Iran’s government says it shut down internet to protect against cyberattacks

20:20 - Story # 2: Iranian bank linked to revolutionary guard hit by ‘cyber attack’

22:11 - Story # 3: Hackers switch to targeting U.S. insurance companies

23:32 - Story # 3b: Statement: Erie Insurance Information Security Incident (June 23)

33:33 - Story # 4: No, the 16 billion credentials leak is not a new data breach

43:23 - Story # 5: ‘Water Curse’ Targets Infosec Pros via Poisoned GitHub Repositories

47:09 - Story # 6: CISA Reveals ‘Pattern’ of Ransomware Attacks Against SimpleHelp RMM

48:49 - Story # 7: Report Links Los Pollos and RichAds to Malware Traffic Operations

58:29 - Story # 8: Minnesota lawmaker’s alleged killer had list of data broker websites in car, FBI says

Register for Free, Live webcasts & summits:

https://poweredbybhis.com

00:00 - PreShow Banter™ — Government Linux

04:16 - Denmark is Done with Teams! - Talkin’ Bout [infosec] News 2025-06-16

05:02 - Story # 1: ‘We’re done with Teams’: German state hits uninstall on Microsoft

17:34 - Story # 1b: Denmark Wants to Dump Microsoft Software for Linux, LibreOffice

18:14 - Story # 2: Zero-click AI data leak flaw uncovered in Microsoft 365 Copilot

25:50 - Story # 3: Fog ransomware attacks use employee monitoring tool to break into business networks

30:25 - Story # 4: Expired Discord Invites Hijacked for Stealthy Malware Attacks

34:00 - Story # 5: SmartAttack uses smartwatches to steal data from air-gapped systems

40:25 - Story # 6: Mirai Botnets Exploiting Wazuh Security Platform Vulnerability

44:47 - Story # 7: Google Cloud and Cloudflare hit by widespread service outages

48:04 - Story # 8: UNFI cyberattack shuts down network and leaves Whole Foods and others in limbo

50:34 - Story # 9: New SharePoint Phishing Attacks Using Lick Deceptive Techniques

51:08 - Story # 10: US-backed Israeli company’s spyware used to target European journalists, Citizen Lab finds

53:32 - Story # 11: Five Zero-Days, 15 Misconfigurations Found in Salesforce Industry Cloud

Register for Free, Live webcasts & summits:

https://poweredbybhis.com

00:00 - PreShow Banter™ — Time to Bake

05:12 - Chatbot Tells Addict to Take Drugs - Talkin’ Bout [infosec] News 2025-05-06

06:08 - Story # 1: Meta and Yandex are de-anonymizing Android users’ web browsing identifiers

12:55 - Story # 2: Therapy Chatbot Tells Recovering Addict to Have a Little Meth as a Treat

16:11 - Story # 3: The Cost of a Call: From Voice Phishing to Data Extortion

26:56 - Story # 4: Questions Swirl Around ConnectWise Flaw Used in Attacks

27:40 - Story # 4b: ConnectWise email

35:28 - Story # 5: Critical Cisco ISE Auth Bypass Flaw Impacts Cloud Deployments on AWS, Azure, and OCI

39:27 - Story # 6: Misconfigured HMIs Expose US Water Systems to Anyone With a Browser

52:20 - Story # 7: Fact Sheet: President Donald J. Trump Reprioritizes Cybersecurity Efforts to Protect America

Register for Free, Live webcasts & summits:

https://poweredbybhis.com

00:00 - PreShow Banter™ — natural MSG

05:31 - Victoria’s Secrets are Compromised - Talkin’ Bout [infosec] News 2025-06-02

06:31 - Story # 1: Authors Are Accidentally Leaving AI Prompts In their Novels

08:36 - Story # 1b: This Latest AI Book Debacle Is A Disturbing Part Of A Growing Trend

09:41 - Story # 2: Developer Builds Tool That Scrapes YouTube Comments, Uses AI to Predict Where Users Live

10:48 - Story # 2b: AI-powered OSINT tool profiles YouTube users, raising privacy concerns

15:55 - Story # 2c: Researchers Dump 2 Billion Scraped Discord Messages Online

20:28 - Story # 3: Vending-Bench: A Benchmark for Long-Term Coherence of Autonomous Agents

21:02 - Story # 3b: An AI Goes Insane, Emails FBI Over $2 (YouTube)

26:55 - Story # 4: The UK will totally replace two-thirds of junior civil servants with AI chatbots, says the chatbot

27:27 - Story # 4b: Reeves confirms 15% cut to Civil Service running costs

29:29 - Story # 5: ConnectWise Breached, ScreenConnect Customers Targeted

31:28 - LOLRMM - a curated list of Remote Monitoring and Management (RMM) tools that could potentially be abused by threat actors.

35:34 - Story # 6: New Windows RAT Evades Detection for Weeks Using Corrupted DOS and PE Headers

36:19 - Story # 7: US intelligence employee arrested for alleged double-dealing of classified info

40:12 - Story # 8: Victoria’s Secret takes down website after security incident

45:43 - Story # 9: Microsoft and CrowdStrike partner to link hacking group names

46:59 - Story # 10: Zscaler Acquisition of Red Canary

49:57 - Story # 11: Most of CISA’s senior leaders are leaving the agency

51:22 - Story # 12: Telegram announces partnership with Musk’s xAI

51:32 - Story # 13: Google warns of Vietnam-based hackers using bogus AI video generators to spread malware

Register for Free, Live webcasts & summits:

https://poweredbybhis.com

00:00 - PreShow Banter™ — I just want Jorts!

05:42 - Blackmailing A.I. - Talkin’ Bout [infosec] News 2025-05-27

07:01 - Story # 1: Experimental drones developed to neutralize mass shooters, disable weapons

11:29 - Story # 2: How a global malware operation was taken down from a federal court in Georgia

13:50 - Story # 3: Judge allows Workday AI bias lawsuit to proceed as collective action

15:23 - Marker 17

19:25 - Story # 4: Anthropic’s new AI model turns to blackmail when engineers try to take it offline

32:19 - Story # 5: TeleMessage customers include DC Police, Andreessen Horowitz, JP Morgan, and hundreds more

34:53 - Story # 6: TikTok videos now push infostealer malware in ClickFix attacks

36:57 - Story # 7: Beware, Coinbase users. Crypto thieves are taking fingers now

40:56 - Story # 8: Signal now blocks Microsoft Recall screenshots on Windows 11

43:16 - Story # 9: Suspected InfoStealer Malware Data Breach Exposed 184 Million Logins and Passwords

44:54 - Story # 10: Google Chrome’s Built-in Manager Lets Users Update Breached Passwords with One Click

48:09 - Story # 11: Russian military hackers ‘Fancy Bear’ target Western aid supply chains to Ukraine, NSA report says

50:13 - Story # 12: Google Gemini AI assistant coming to new cars in 2025, starting with Volvo

54:17 - Story # 13: Hacker Conference HOPE Says U.S. Immigration Crackdown Caused Massive Crash in Ticket Sales

56:55 - Story # 13b: [HOPE_16] International Travel Tips

Register for Free, Live webcasts & summits:

https://poweredbybhis.coma

00:00 - PreShow Banter™ — Twiddle Me This

02:04 - WORLDS FIRST CPU Ransomware! - Talkin’ Bout [infosec] News 2025-05-19

03:10 - Story # 1: Coinbase - Standing Up to Extortionists

11:26 - Story # 2: World’s first CPU-level ransomware

15:09 - Story # 3: New Intel CPU flaws leak sensitive data from privileged memory

19:04 - Story # 4: After latest kidnap attempt, crypto types tell crime bosses: Transfers are traceable

21:39 - Story # 5: Chinese ‘kill switches’ found hidden in US solar farms

27:52 - Story # 6: Congress proposes 10-year ban on state AI regulations

31:41 - Story # 7: Hackers Abuse Copilot AI in SharePoint to Steal Passwords and Sensitive Data

36:02 - Story # 8: European Vulnerability Database Launches Amid US CVE Chaos

37:32 - Story # 9: 89 million Steam accounts reportedly leaked. Change your password now.

40:06 - Story # 10: Hackers Now Targeting US Retailers After UK Attacks, Google

41:11 - Story # 11: How the Signal Knockoff App TeleMessage Got Hacked in 20 Minutes

43:08 - Story # 11b: DDoSecrets publishes 410 GB of heap dumps, hacked from TeleMessage’s archive server

47:12 - ChickenSec: ‘A Minecraft Movie’ Viral TikTok Trend Wreaks Havoc In Theaters

51:20 - Story # 12: Education giant Pearson hit by cyberattack exposing customer data