惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

博客园_首页
T
Threat Research - Cisco Blogs
GbyAI
GbyAI
Y
Y Combinator Blog
美团技术团队
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
博客园 - 【当耐特】
S
SegmentFault 最新的问题
IT之家
IT之家
Recent Announcements
Recent Announcements
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
阮一峰的网络日志
阮一峰的网络日志
T
The Blog of Author Tim Ferriss
Martin Fowler
Martin Fowler
Microsoft Azure Blog
Microsoft Azure Blog
V
Visual Studio Blog
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
U
Unit 42
WordPress大学
WordPress大学
博客园 - Franky
L
LangChain Blog
人人都是产品经理
人人都是产品经理
小众软件
小众软件
博客园 - 叶小钗
罗磊的独立博客
酷 壳 – CoolShell
酷 壳 – CoolShell
大猫的无限游戏
大猫的无限游戏
云风的 BLOG
云风的 BLOG
Vercel News
Vercel News
雷峰网
雷峰网
腾讯CDC
Google DeepMind News
Google DeepMind News
博客园 - 三生石上(FineUI控件)
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
Help Net Security
Help Net Security
C
Check Point Blog
Hacker News - Newest:
Hacker News - Newest: "LLM"
N
News and Events Feed by Topic
V2EX - 技术
V2EX - 技术
Application and Cybersecurity Blog
Application and Cybersecurity Blog
Schneier on Security
Schneier on Security
博客园 - 聂微东
A
Arctic Wolf
H
Heimdal Security Blog
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
Recent Commits to openclaw:main
Recent Commits to openclaw:main
T
The Exploit Database - CXSecurity.com
C
Cyber Attacks, Cyber Crime and Cyber Security
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
Google DeepMind News
Google DeepMind News

Risky Business Media

Srsly Risky Biz: Ransomware uses AI to amp up negotiations Fortibleed: The bleeding edge of AI cybercrime Between Two Nerds: Exploits are not cyber power What to do 'til the bugpocalypse gets here Risky Bulletin: NSA Tailored Access Operations is back Sponsored: Why Sublime doesn’t toss AI at every email Srsly Risky Biz: US Supreme Court undermines Section 702 intel Risky Bulletin: DHS IG investigates forced CISA reassignments Soap Box: Using threat hunting to drive detection Between Two Nerds: Why AI has not meant more hacks. Yet. Risky Bulletin: EU official’s phone infected with Pegasus Risky Bulletin: FatFs bugs enable physical access attacks on a load of devices Srsly Risky Biz: America won't beat the distillation ecosystem Risky Bulletin: Researcher drops giant cache of zero-days Risky Business #844 -- China closes AI vulndev gap as USA lifts Fable ban Mythos on your desk? Using local LLMs for code reviews Between Two Nerds: Set cyberspace ablaze Risky Bulletin: White House asks OpenAI to restrict GPT 5.6 Sponsored: Corelight’s blueprint for AI-era defence Risky Bulletin: Operation Endgame dismantles Amadey and StealerC Srsly Risky Biz: Open weight models make the Mythos debate moot Risky Bulletin: FortiBleed hacks involved a lot of traffic sniffing Risky Business #843 -- Fortibleed is kinda awesome, actually Pitching security startups to VCs in the AI era Sponsored: Trail of Bits and OpenAI patch the planet Between Two Nerds: The PRC vs AI Risky Bulletin: Klue breach impacts security firms How using open weight models can blow up in your face Risky Bulletin: Creds for 74,000 Fortinet devices leaked Srsly Risky Biz: Anthropic has artificial, but not emotional, intelligence Risky Bulletin: China arrests Silver Fox cybercrime group suspects Risky Business #842 -- Anthropic needs an adult in the C suite The state of the art in AI model jailbreaks Between Two Nerds: Why NATO and cyber don't mix Risky Bulletin: Arch Linux supply chain attack hits 1,900 packages Sponsored: Ent on using AI to track human behavior on the endpoint Why NPM v12 won’t stop supply chain attacks Risky Bulletin: CISA tightens patching rules amid bug deluge Sponsored: Understanding CI/CD attack paths Srsly Risky Biz: Europe wants to wean itself off US tech Risky Bulletin: Nightmare Eclipse drops fresh 0day Risky Business #841 -- Microsoft gets owned and 0day'd Between Two Nerds: Nerds at NATO Risky Bulletin: RubyGems adds dependency cooldowns to counter supply chain attacks Everything is getting much worse, much faster Soap Box: Detection and response in the AI age Risky Bulletin: EU unveils digital sovereignty plan Srsly Risky Biz: NATO's cyber approach needs to change Risky Bulletin: FSB calls out Western spyware operation Solo podcast: A deep dive on TeamPCP Between Two Nerds: The intelligence cult Risky Bulletin: Recently patched PAN 0day exploited in the wild Sponsored: Inside CISA's disastrous secrets leak Risky Bulletin: Dutch police take down 17m device botnet Risky Bulletin: Iran to reconnect to the Internet Risky Business #839 -- TeamPCP stole GitHub's internal repos How to survive supply chain attacks Risky Bulletin: Mythos has found thousands of critical bugs Sponsored: Teaching AI agents the rules of the road Risky Bulletin: Microsoft ends SMS MFA for personal accounts How the CopyFail disclosure went sideways Risky Business #838 -- GitHub investigates possible breach
Risky Business #840 -- Microsoft walks back researcher threats
James Wilson · 2026-06-03 · via Risky Business Media

Risky Business Podcast

June 03, 2026

Presented by

James Wilson

James Wilson

Technology Editor

Patrick Gray

Patrick Gray

CEO and Publisher

On this week’s show special guest co-host Andy Boyd joins Patrick Gray and James Wilson to discuss the week’s cybersecurity news. Andy is the CEO of REDLattice, which makes the Paragon “intelligence collection and reconnaissance” solution.

They cover:

  • Adversaries are tracking US troop locations with commercially available location data
  • A new Signal phishing campaign is going after message backups
  • 404 Media is suing ICE to get its spyware contract with REDLattice (lol)
  • Microsoft’s tone-deaf response to ‘never justifiable’ zero-day disclosures
  • Mini Shai-Hulud pops up again just as Glassworm gets shattered
  • Much, much more

This week’s episode is sponsored by Authentik, an open source identity platform that you can host yourself. In this week’s sponsor interview Authentik’s CEO Fletcher Heisler joins Patrick Gray to talk about how they’re keeping up with the bugpocalypse, and also the work they’re doing to support identities for AI agents.

This episode is also available on YouTube.

Your browser does not support the audio element.

Risky Business #840 -- Microsoft walks back researcher threats

0:00 / 66:03

Subscribe  

Logo

Authentik Logo

Brought to you by Authentik

Take control of your identity needs with a secure, flexible solution.

Show notes

The Pentagon Knew Enemies Could Track Troops’ Phones for Years. Now They Are | wired.com

U.S. says troops were targeted with location data, as senator warns ad industry is a ‘national security threat’ | TechCrunch Security

DOD location data attachment (Wyden) |

Risky Business #830 -- LiteLLM and security scanner supply chains compromised | Risky Business Media

US has seized nearly $1 billion in crypto from Iran, Bessent says |

Russia claims foreign spy agencies hacked officials' phones | therecord.media

Hackers are trying to steal Signal users’ backups in new wave of phishing attacks | TechCrunch Security

We Sued ICE to Get Its Spyware Contract. The Agency Is Redacting Essentially Everything | Social Signals

Microsoft calls zero-day releases ‘never justifiable’ as researcher threatens to drop more | therecord.media

A shared responsibility: Protecting customers through Coordinated Vulnerability Disclosure | Social Signals

Microsoft says it will not pursue security researchers after zero-day backlash | therecord.media

IBM’s new $5B initiative will help enterprises rapidly patch open-source vulnerabilities | Social Signals

Federal audit reveals NIST’s NVD is plagued by poor planning and duplication | cyberscoop.com

Hackers Used Meta’s AI Support Bot to Seize Instagram Accounts | krebsonsecurity.com

Critical Windows Netlogon RCE flaw now exploited in attacks | BleepingComputer

CISA adds exploited Palo Alto Networks GlobalProtect flaw to KEV | Cybersecurity Dive

Password manager Dashlane says hackers stole some customers’ password vaults | TechCrunch Security

CrowdStrike disrupts Glassworm botnet that preyed on open-source supply chain | cyberscoop.com

Botnet of more than 17 million devices dismantled | arstechnica.com

Chinese-speaking fraud gang could be stealing millions from 2026 World Cup fans | therecord.media

ACCC investigating Olympics ticket scam | ABC

Dozens of Red Hat packages backdoored through its offical NPM channel | arstechnica.com

Solo podcast: A deep dive on TeamPCP - Risky Business Media |

Trump administration releases scaled-back AI executive order | cyberscoop.com

Google security engineer accused of turning confidential search trends into $1.2M win on Polymarket | cyberscoop.com