Porn bombing the celestial zoom room and Astro Oblivion, FreePBX, GitHub, OWASP, Promptlock, Claude Aaran Leyland, and More, on this edition of the Security Weekly News.

Show Notes: https://securityweekly.com/swn-507

Rob Allen joins us to discuss the importance of security research teams, and some cool stuff they've worked on. Then, in the Security News:

• Flipper Zero, unlocking cars: The saga continues
• The one where they stole the vulnerabilities
• ESP32 Bus Pirates
• AI will weaponize everything, maybe
• What are in-the-wild exploits?
• Docker and security boundaries, and other such lies
• AI-powered ransomeware
• BadCAM, BadUSB, and novel defenses
• 5G sniffers
• Jeff breaks down all the breach reports
• AI in your browser is a bad idea
• And How to rob a hotel - a nod to the way hacking used to be

This segment is sponsored by ThreatLocker. Visit https://securityweekly.com/threatlocker to learn more about them!

Show Notes: https://securityweekly.com/psw-889

Securing top-tier cybersecurity leadership is not just a necessity but a significant challenge, especially when working within budget constraints. Should you hire a full-time CISO or outsource to a vCISO provider?

Brian Haugli, CEO at SideChannel, joins BSW to discuss how organizations can hire a Virtual CISO (vCISO) to benefit from their expertise without the costs and resource requirements of a full-time hire. Brian will share:

• Current vCISO trends
• What to look for in vCISO services
• Who fits/doesn't fit as a vCISO

vCISOs can be an effective solution for organizations that need to enhance their security program or respond to a breach, but know what to look for. If you're in the market for vCISO services or want to become a vCISO, don't miss this interview.

In the leadership and communications segment, Boards should bear ultimate responsibility for cybersecurity, From WannaCry to AI: How CISOs Became Strategic Leaders, The Best Leaders Edit What They Say Before They Say It, and more!

Show Notes: https://securityweekly.com/bsw-410

Naughty RBG, Docker, RDP, SBOMS, Kullback-Leibler, Oneflip, Youtube, Josh Marpet, and more on the Security Weekly News.

Show Notes: https://securityweekly.com/swn-506

The EU Cyber Resilience Act joins the long list of regulations intended to improve the security of software delivered to users. Emily Fox and Roman Zhukov share their experience education regulators on open source software and educating open source projects on security. They talk about creating a baseline for security that addresses technical items, maintaining projects, and supporting project owners so they can focus on their projects.

Segment resources:

• github.com/ossf/wg-globalcyberpolicy
• github.com/orcwg
• baseline.openssf.org

Show Notes: https://securityweekly.com/asw-345

Interview with Harish Peri from Okta

Oktane Preview: building frameworks to secure our Agentic AI future

Like it or not, Agentic AI and protocols like MCP and A2A are getting pushed as the glue to take business process automation to the next level. Giving agents the power and access they need to accomplish these lofty goals is going to be challenging, from a security perspective.

How do put AI agents in the position to perform broad tasks autonomously without granting them all the privileges? How do we avoid making AI agents a gold mine for attackers - the first place they stop once they hack into our companies? These are some examples of the questions Okta aims to answer at this year’s Oktane event, and we aim to kick off the conversations a little early - with this interview!

Segment Resources:

• Check out securityweekly.com/oktane for all our live coverage during the event this year!
• More information about the event and how you can attend can be found here: https://www.okta.com/oktane/
• AI at Work 2025: Securing the AI-powered workforce

Topic - Indirect Prompt Injection Getting Out of Hand

Reports of indirect prompt injection issues have been around for a while. Of particular note was Michael Bargury's Living off Microsoft Copilot presentation from Black Hat USA 2024. Simply sending an email to a Copilot user could make bad stuff happen.

Now, at Black Hat 2025, we've got more: the ability to plunder any data resource connected to ChatGPT (they call these integrations "Connectors") from Tamir Ishay Sharbat at Zenity Labs. The research is titled AgentFlayer: ChatGPT Connectors 0click Attack.

Looks like Google Jules is also vulnerable to what the Embrace the Red blog is calling invisible prompts. Sourcegraph's Amp Code is also vulnerable to the same attack, which encodes instructions to make them invisible.

What's really going to ruffle feathers is the fact that all these companies know this stuff is possible, but don't seem to be able to figure out how to prevent it. Ideally, we'd want to be able to distinguish between intended instruction and instructions injected via attachments or some other means outside of the prompt box. I guess that's easier said than done?

News

Finally, in the enterprise security news,

1. Drones are coming for you… to help?
2. One of the most powerful botnets ever goes down
3. Phishing training is still pointless
4. Microsoft sets an alarm on its phone for 8 years from now to do post-quantum stuff
5. vulns galore in commercial ZTNA apps
6. GenAI projects are struggling to make it to production
7. Adblockers could be made illegal - in Germany
8. Windows is getting native Agentic support
9. Automating bug discovery AND remediation?
10. Public service announcement: time is running out for Windows 10

All that and more, on this episode of Enterprise Security Weekly.

Show Notes: https://securityweekly.com/esw-421

Humans wiped out by 2040, Okta, Elastic, Bad Bots, Berserk Bear, Siemens, Philip K. Dick, Aaran Leyland, and More, on this edition of the Security Weekly News.

Show Notes: https://securityweekly.com/swn-505

This segment is sponsored by Flashpoint. Visit https://securityweekly.com/flashpoint to learn more about them!

Recent leaks tied to LockBit and Black Basta have exposed the inner workings of two of the most notorious ransomware groups—revealing their tactics, negotiation strategies, and operational infrastructure. For defenders, this rare window into adversary behavior offers critical intelligence to strengthen incident response and prevention strategies. In this interview, we'll break down what these leaks reveal and how security teams can use this intelligence to proactively harden their defenses, including:

• Key takeaways from the LockBit and Black Basta leaks—and what they confirm about ransomware operations
• How leaked playbooks, chats, and toolkits can inform detection and response
• Practical steps to defend against modern ransomware tactics in 2025

In the security news:

• Practical exploit code
• Old vulnerabilities, new attackers
• AI and web scraping - the battle continues
• 0-Days: You gotta prove it
• WinRAR 0-Day
• LLM patch diffing
• $20 million bug bounty
• Your APT is showing
• Hacking from the routers
• Its that easy eh?
• NIST guidance on AI
• Words have meaning
• Developers knowingly push vulnerable code
• My Hackberry PI post is live: https://eclypsium.com/blog/build-the-ultimate-cyberdeck-hackberry-pi/

Resources:

• Inside the LockBit Leak: Rare Insights Into Their Operations: https://flashpoint.io/blog/inside-the-lockbit-leak/?utmcampaign=WBHostedSCMedia2025&utmsource=SCMedia&utmmedium=email&sfcampaign_id=701Rc00000S48bZIAR
• 2025 Ransomware Survival Guide: https://flashpoint.io/resources/e-book/2025-ransomware-survival-guide/?utmcampaign=WBHostedSCMedia2025&utmsource=SCMedia&utmmedium=email&sfcampaign_id=701Rc00000S48bZIAR
• AI and Threat Intelligence: The Defenders’ Guide https://go.flashpoint.io/ai-and-threat-intelligence-guide?utmcampaign=WBHostedSCMedia2025&utmsource=SCMedia&utmmedium=email&sfcampaign_id=701Rc00000S48bZIAR

Show Notes: https://securityweekly.com/psw-888

The industry is obsessed with vulnerabilities. From vulnerability assessment to vulnerability management to exposure management and even zero days, we love to talk about vulnerabilities. But what about misconfiguration? By definition it's a vulnerability or weakness, but it doesn't have a CVE (common vulnerability enumeration). Should we ignore it?

Danny Jenkins, CEO and Founder at ThreatLocker, joins BSW to discuss why misconfigurations matter. Simply, you can prevent many cyberattacks by eliminating your misconfigurations. That's why ThreatLocker released Defense Against Configurations (DAC). Danny will discuss the benefits of DAC, including:

• Immediate visibility into system misconfigurations before they become vulnerabilities
• Compliance transparency, showing exactly where systems fall short of industry standards
• One unified view, with filters by criticality, system, and framework
• Actionable insights, updated weekly and delivered straight to customers’ inboxes

Segment Resources:

• https://www.threatlocker.com/press-release/threatlocker-launches-dac-empowering-organizations-with-real-time-visibility-into-configuration-risks-and-compliance-gaps
• https://www.threatlocker.com/platform/defense-against-configurations

This segment is sponsored by ThreatLocker. Visit https://securityweekly.com/threatlocker to learn more about them!

In the leadership and communications segment, CEO Blind Spots That Put Your Company at Risk, The CISO Mindset Shift: From Risk Defender to Business Accelerator in the Age of AI, When “Yes, and…” Backfires, and more!

Show Notes: https://securityweekly.com/bsw-409

The cult of Doug, Crime, Pipemagic, Clickfix, Cats in Space, Uncle Silvio, Josh Marpet, and more on the Security Weekly News.

Show Notes: https://securityweekly.com/swn-504

A smaller attack surface should lead to a smaller list of CVEs to track, which in turn should lead to a smaller set of vulns that you should care about. But in practice, keeping something like a container image small has a lot of challenges in terms of what should be considered minimal. Neil Carpenter shares advice and anecdotes on what it takes to refine a container image and to change an org's expectations that every CVE needs to be fixed.

Show Notes: https://securityweekly.com/asw-344

Interview with Snehal Antani - Rethinking Risk-Based Vulnerability Management

Vulnerability management is broken. Organizations basically use math to turn a crappy list into a slightly less crappy list, and the hardest part of the job as a CIO is deciding what NOT to fix. There has to be a better way, and there is...

Segment Resources:

• https://horizon3.ai/intelligence/blogs/vulnerability-management-is-broken-there-is-a-better-way/

This segment is sponsored by Horizon3.ai. Visit https://securityweekly.com/horizon3 to learn more about them!

Topic - Andy Ellis's Black Hat Expo Experience

Andy Ellis visited every booth at Black Hat. Every. Single. One. He wrote up what he learned and we discuss his findings!

https://www.duha.co/state-of-security-vendors-blackhat-2025/

News

Finally, in the enterprise security news,

1. Tons of handy new and free tools!
2. is cybersecurity really at the latter stages of consolidation?
3. new books
4. is our obsession with risk quantification hurting our credibility?
5. AI trends
6. is there an impending AI layoff-pocalypse?
7. we explain the kids’ favorite new term: Clanker

All that and more, on this episode of Enterprise Security Weekly.

Show Notes: https://securityweekly.com/esw-420

Creepy chatbots, Fortinet, CISA, Agentic AI, FIDO, EDR, Aaran Leyland, and More on this episode of the Security Weekly News.

Show Notes: https://securityweekly.com/swn-503

We kick things off with a deep dive into the Hackberry PI and how to build one. Then in the security news:

• Will Perplexity buy Chrome?
• ESP32 Bus Pirates
• Poisoned telemetry
• Docker image security
• Fully Open Source Quantum Sensors
• Securing your car, Flippers, and show me the money
• Bringing your printer and desktop to Starbucks
• Paying a ransom? You need approval
• AI: Shield or Spear?
• No authentication? That's a problem
• Transient Bugs: A realistic threat?
• You can run Linux
• And who still uses AOL dial-up?

Show Notes: https://securityweekly.com/psw-887

As brands grow more digital, the threats grow more personal. Attackers impersonate executives, spin up fake websites, and leak sensitive data — hurting business reputations and breaking customer trust. How do you defend your organization's reputation and customers' trust?

Santosh Nair, Co-Founder and CTO at Styx Intelligence, joins Business Security Weekly to discuss how to defend trust and reputation in the age of AI. Santosh will cover both the company and executive challenges of defending against the latest AI attacks, including:

• Impersonations and Deepfakes
• Employee Scams
• Financial Fraud

Segment Resources: - https://styxintel.com/blog/what-is-brand-protection/ - https://styxintel.com/blog/brand-impersonation-hurts-business/ - https://styxintel.com/blog/social-engineering-tactics/

In the leadership and communications section, Mind the overconfidence gap: CISOs and staff don’t see eye to eye on security posture, Your AI Strategy Needs More Than a Single Leader, Avoid These Communication Breakdowns When Launching Strategic Initiatives, and more!

Show Notes: https://securityweekly.com/bsw-408

300 Baud, Buddy Hackett Nudes, Dell, badUSB, Exchange, Erlang/OTP, Josh Marpet, and more on the Security Weekly News.

Show Notes: https://securityweekly.com/swn-502

Open source software is a massive contribution that provides everything from foundational frameworks to tiny single-purpose libraries. We walk through the dimensions of trust and provenance in the software supply chain with Janet Worthington. And we discuss how even with new code generated by LLMs and new terms like slopsquatting, a lot of the most effective solutions are old techniques.

Resources

• https://www.forrester.com/blogs/make-no-mistake-software-is-a-supply-chain-and-its-under-attack/
• https://www.forrester.com/report/the-future-of-software-supply-chain-security/RES184050

Show Notes: https://securityweekly.com/asw-343

Topic Segment - What's new at Black Hat?

We're coming live from hacker summer camp 2025, so it seemed appropriate to share what we've seen and heard so far at this year's event. Adrian's on vacation, so this episode is featuring Jackie McGuire and Ayman Elsawah!

News Segment

Then, in the enterprise security news,

1. Tons of funding!
2. SentinelOne picks up an AI security company weeks after Palo Alto closes the Protect AI deal
3. Vendors shove AI agents into everything they’ve got
4. Why SOC analysts ignore your playbooks
5. NVIDA pinkie swears to China: no back doors!
6. ChatGPT was allowing shared chat sessions to be indexed and crawled by search engines like Google
7. Who is gonna secure all this vibe code?
8. Who is gonna triage all these hallucinated bug reports?
9. Perplexity and Cloudflare duke it out
10. When you try to scrub your shady past off the Internet, it might just make things worse.

All that and more, on this episode of Enterprise Security Weekly.

Show Notes: https://securityweekly.com/esw-419

Hello and welcome to security weekly news, episode 501, on Aug 8, 2025.

This week we have, SonicWall, Confidential Informants Exposed, Cisco Vishing, Perplexity vs robots.txt, Microsoft’s Project Ire, Meta–Flo Jury Verdict, GPT‑5 Lands, TeaOnHer Data Leak, Josh Marpet, and more on the Security Weekly News..

Show Notes: https://securityweekly.com/swn-501

• Why should hate AI
• When firmware attacks
• The 300 second breach
• Old ways still work, AI might help
• And so begins the crawler wars
• Turn off your SonicWall VPN
• Your Pie may be wrapped in PII
• Attackers will find a way
• Signed kernel drivers
• D-Link on the KEV
• Rasperry PIs attack
• Stealthy LoRa
• LLM's don't commit code, people do
• Jame's Bond style rescue with drones
• SRAM has no chill
• In the full view of the public...

Show Notes: https://securityweekly.com/psw-886

Recent findings of AI ecosystem insecurities and attacks show the importance of needing AI governance in the supply chain. And this supply chain is rapidly expanding to include not only open-source software but also collaborative platforms where custom models, agents, prompts, and other AI resources are used. And with this expansion of third-party AI component and services use comes an expanded security threat often not included in traditional supply chain management processes. It's time to update our supply chain management process to include AI governance. Easier said than done.

In this Say Easy, Do Hard segment, we invite three CISOs to discuss the challenges of AI and the supply chain, including:

• Data privacy concerns
• Flaws and malicious code in AI dependencies
• Lack of security tools to test for AI
• Vibe coding risks

and more. But we also do the hard part, by discussing the changes needed to your supply chain management process to address these concerns.

Show Notes: https://securityweekly.com/bsw-407

MFA Bypass, SonicWall, BIOS Shade, Sex Toys, FBI Warnings, Claude vs GPT-5, Josh Marpet, and more on the Security Weekly News.

Show Notes: https://securityweekly.com/swn-500

Maintaining code is a lot more than keeping dependencies up to date. It involved everything from keeping old code running to changing frameworks to even changing implementation languages. Jonathan Schneider talks about the engineering considerations of refactoring and rewriting code, why code maintenance is important to appsec, and how to build confidence that adding automation to a migration results in code that has the same workflows as before.

Resources

• https://docs.openrewrite.org
• https://github.com/openrewrite

Then, instead of our usual news segment, we do a deep dive on some recent vulns NVIDIA's Triton Inference Server disclosed by Trail of Bits' Will Vandevanter. Will talks about the thought process and tools that go into identify potential vulns, the analysis in determining whether they're exploitable, and the disclosure process with vendors. He makes the important point that even if something doesn't turn out to be a vuln, there's still benefit to the learning process and gaining experience in seeing the different ways that devs design software. Of course, it's also more fun when you find an exploitable vuln -- which Will did here!

Resources

• https://nvidia.custhelp.com/app/answers/detail/a_id/5687
• https://github.com/triton-inference-server/server
• https://blog.trailofbits.com/2025/07/31/hijacking-multi-agent-systems-in-your-pajamas/
• https://blog.trailofbits.com/2025/07/28/we-built-the-security-layer-mcp-always-needed/

Show Notes: https://securityweekly.com/asw-342

The Weekly Enterprise News (segments 1 and 2)

This week, we’ve had to make some last minute adjustments, so we’re going to do the news first, split into two segments.

This week, we’re discussing:

1. Some interesting funding
2. Two acquisitions - one picked up for $250M, the other slightly larger, at $25 BILLION
3. Interesting new companies!
4. On the 1 year anniversary of that thing that happened, Crowdstrike would like to assure you that they’re REALLY making sure that thing never happens again
5. Flipping the script
6. How researchers rooted Copilot, but not really
7. talks to check out at Hacker Summer Camp
8. detection engineering tips
9. the Cloud Security Alliance has a new AI Controls Matrix
10. sending in the National Guard to handle a breach!
11. and how to read an AI press release

Interview: Guillaume Ross on Building Security from Scratch

Guillaume shares his experiences building security from scratch at Canadian FinTech, Finaptic. Imagine the situation: you're CISO, and literally NOTHING is in place yet. No policies, no controls, no GRC processes. Where do you start? What do you do first? Are there things you can get away with that would be impossible in older, well-established financial firms?

Show Notes: https://securityweekly.com/esw-418

Pipes, Thorium, Excel, Weird Ports, ATM Hillbilly Cannibal Attack, Lambdas, National Guard, AIs, Aaran Leyland, and More on this episode of the Security Weekly News.

Show Notes: https://securityweekly.com/swn-499