Claim OwnershipRisky Business
Subscribed: 10,746Played: 283,979
Subscribe
© Copyright Risky Business Media 2007-2026
Description
Risky Business is a weekly information security podcast featuring news and in-depth interviews with industry luminaries. Launched in February 2007, Risky Business is a must-listen digest for information security pros. With a running time of approximately 50-60 minutes, Risky Business is pacy; a security podcast without the waffle.
583 Episodes
Reverse
On this week’s show, Patrick Gray, Adam Boileau and James WIlson discuss the week’s cybersecurity news. They cover:
Low skill actors compromise 600 Fortinets with AI-generated playbooks
Anthropic calls out Chinese AI firms over model distillation
Meta’s director of AI safety tells her ClawdBot not to delete her mail… so of course it does
Peter Williams cops 7 years in jail for selling L3 Harris Trenchant’s exploits to Russia
Ivanti got hacked in 2021 via… bugs in Ivanti
This episode is sponsored by line-rate network capture system Corelight. CEO Brian Dye joins to discuss what AI can do for defenders, and what it can’t.
This episode is also available on Youtube.
There’s a lethal trifecta of AI risks: access to private data, exposure to untrusted content, and external communication. In this conversation, Risky Business host Patrick Gray chats with Josh Devon, the co-founder of Sondera, about how to best address these risks.
There is no magic solution to this problem. AI models mix code and data, are non-deterministic, and are crawling around all over your enterprise data and APIs as you read this.
But in this sponsored interview, Josh outlines how we can start to wrap our hands around the problem.
This episode is also available on Youtube.
On this week’s show, Patrick Gray, Adam Boileau and James WIlson discuss the week’s cybersecurity news. They cover:
Palo Alto threat researchers want to attribute to China, but management says shush
An increasing proportion of ransomware is data extortion. Is this good?
Cambodia says it’s going to dismantle scam compounds
CISA sufferers through yet another shutdown
Google Gemini’s training secrets are being systematically harvested to improve other LLMs
Academics assess SaaS password managers’ resilience against a malicious server
This episode is sponsored by SSO-firewall integration vendor Knocknoc. Chief exec Adam Pointon joins to talk about the latest in defences… which is to say Knocknoc for Solaris/Sparc and HPUX on PA-RISC?! Okay also that other little known OS… Windows.
This episode is also available on Youtube.
On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:
Microsoft reshuffles security leadership. It doesn’t spark joy.
Russia is hacking the Winter Olympics. Again. But y tho?
China-linked groups are keeping busy, hacking telcos in Norway, Singapore and dozens of others
Campaigns underway targeting Ivanti, BeyondTrust and SolarWinds products
An unknown hero blocks 23/tcp on the US internet backbone
And James Wilson pops into talk about Claude’s go at a C compiler
This week’s episode is sponsored by Ent.AI, an AI startup that isn’t quite ready to tell us all what they’re doing. But nevertheless, founder Brandon Dixon joins to discuss AI’s role in security. Where does language-based understanding take us that previous methods couldn’t?
This episode is also available on Youtube.
Patrick Gray and Adam Boileau are joined by the newest guy on the Risky Business Media team, James WIlson. They discuss the week’s cybersecurity news, including:
Notepad++ update supply chain attack has been attributed to China
The AI agent future is even more stupid than expected; behold the OpenClaw/Clawdbot/Moltbook mess
The Epstein files claim he had a personal hacker?
Microsoft is finally getting ready to (think about starting to begin to) disable NTLM by default
The usual bugs in the usual things! Ivanti, Fortinet, and Solarwinds. Again.
Telco hides a free trip in its privacy policy, someone actually reads it and wins!
This weeks’s episode is sponsored by opensource IDP platform Authentik. CEO Fletcher Heisler talks to Pat about their new endpoint agent that can enforce device posture policies during login.
This episode is also available on Youtube.
In this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news. They discuss:
La France is tres sérieux about ditching US productivity software
China’s Salt Typhoon was snooping on Downing Street
Trump wields the mighty DISCOMBOBULATOR
ESET says the Polish power grid wiper was Russia’s GRU Sandworm crew
US cyber institutions CISA and NIST are struggling
Voice phishing for MFA bypass is getting even more polished
This episode is sponsored by Sublime Security. Brian Baskin is one of the team behind Sublime’s 2026 Email Threat Research report. He joins to talk through what they see of attackers’ use of AI, as well as the other trends of the year.
This episode is also available on Youtube.
In this week’s show, Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, joined by a special guest. BBC World Cyber Correspondent Joe Tidy is a long time listener and he pops in for a ride-along in the news segment plus a chat about his new book.
This week news includes:
Did the US cyber Venezuela’s power grid, or do they just want us to think they coulda?
US govt might boycott the RSAC Conference ‘cause Jen Easterly being CEO makes them mad
MS Patch Tuesday fixes CVSS5.5 bug and … stops you shutting down
Wiz pulls off cloud stunt hack that ends with control of everyone’s AWS console
Millions of Bluetooth devices that use Google’s Fast Pairing will pair with anyone, any time
GNU inet-tools’ telnetd parties like it’s 2007, and brings -f root unauthed remote login back
Thinkst is this week’s sponsor, and long time friend of the show Haroon Meer joins. As always they’re polishing their Canary tokens - adding breadcrumbs to lead you to them - but they’re also a bunch of giant nerds who now run South Africa’s Computer Olympiad.
This episode is also available on Youtube.
Risky Business returns for 2026! Patrick Gray and Adam Boileau talk through the week’s cybersecurity news, including:
Santa brings hackers MongoDB memory leaks for Christmas
Vercel pays out a million bucks to improve its React2Shell WAF defences
39C3 delivers; the pink Power Ranger deletes nazis, while a catgirl ruins GnuPG
Cambodian scam compound kingpin gets extradited to China, and we don’t think it’ll go well for him
Krebs picks apart the Kimwolf botnet and residential proxy networks
So many healthcare data leaks that we have a roundup section
This week’s episode is sponsored by Airlock Digital. The founders of the application allow-listing vendor, David Cottingham and Daniel Schell, discuss Microsoft’s ClickOnce .NET app packaging, and how attackers have been abusing it to load code. Airlock hates it when you load code!
This episode is also available on Youtube.
In this special documentary episode, Patrick Gray and Amberleigh Jack take a historical dive into hacking in the 1980s. Through the words of those that were there, they discuss life on the ARPANET, the 414s hacking group, the Morris Worm, the vibe inside the NSA and a parallel hunt for German hackers happening at a similar time to Cliff Stoll’s famous Cuckoo’s Egg story.
This podcast features the memories of:
Jon Callas, former principal software engineer at Digital Equipment Corporation
Mark Rasch, Morris Worm prosecutor
Timothy Winslow, former 414 hacker
Greg Chartrand, author of Cracking the Cuckoos Egg and
Tony Sager, former NSA
How the World Got Owned is produced in partnership with SentinelOne.
1In the final show of 2025, Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:
React2Shell attacks continue, surprising no one
The unholy combination of OAuth consent phishing, social engineering and Azure CLI
Venezuela’s state oil firm gets ransomware’d, blames US… but what if it really is a US cyber op?!
Russian junk-hacktivist gets indicted for cybering critical… err… a car wash and a fountain
Microsoft finally turns RC4 off by default in Active Directory Kerberos
Traefik’s TLS verify=on … turns it off, whoopsie 🤡
This week’s episode is sponsored by Sublime Security, makers of an email filtering solution that’s up for dealing with modern problems. Founder and CEO Josh Kamdjou joins to talk about calendar invite phishing, and the extra steps they’ve had to take to reach into people’s calendars and fix the mess.
The Risky Business weekly show is taking holiday break, and will return on 14 January for its twentieth year! Good luck out there, internet friends.
This episode is also available on Youtube.
In this sponsored Soap Box edition of the Risky Business podcast, Patrick Gray chats with Jared Atkinson, CTO of SpecterOps, about BloodHound OpenGraph.
OpenGraph enumerates attack paths across platforms and services, not just your primary directories.
A compromised GitHub account to on-prem AD compromise attack path? It’s a thing, and OpenGraph will find it.
Cross-platform attack path enumeration! So good!
This episode is also available on Youtube.
In this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:
There’s a CVSS 10/10 remote code exec in the React javascript server. JS server? U wot mate?
China is out popping shells with it
Linux adds support for PCIe bus encryption
Amnesty International says Intellexa can just TeamViewer into its customers’ surveillance systems
…and a Belgian murder suspect complains that GrapheneOS’s duress wipe feature failed him?
This week’s episode is sponsored by Kroll Cyber. Simon Onyons is Managing Director at Kroll’s Cyber and Data Resilience arm, and he discusses a problem near to many of our hearts. Just how do you explain cyber risk to the board?
This episode is also available on Youtube.
In this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news. It’s a quiet week with Thanksgiving in the US, but there’s always some cyber to talk about:
Airbus rolls out software updates after a cosmic ray bitflips an A320 into a dive
Krebs tracks down a Scattered Lapsus$ Hunters teen through the usual poor opsec…
… as Wired publishes an opsec guide for teens.
Microsoft decides its login portal is worth a Content Security Policy
South Korean online retailer data breach covers 65% of the country
This week’s episode is sponsored by Nebulock. Founder and CEO Damien Lewke joins to talk through their work bringing more SIgma threat detection rules to MacOS.
This episode is also available on Youtube.
In this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:
Salesforce partner Gainsight has customer data stolen
Crowdstrike fires insider who gave hackers screenshots of internal systems
Australian Parliament turns off wifi and bluetooth in fear of of visiting Chinese bigwigs
Shai-Hulud npm/Github worm is back, and rm -rf’ier than ever
SEC gives up on Solarwinds lawsuit
Dog eats cryptographer’s key material
This week’s episode is sponsored by runZero. HD Moore pops in to talk about how they’re integrating runZero with Bloodhound-style graph databases. He also discusses uses for driving runZero’s tools with an AI, plus the complexities of shipping AI when the company has a variety of deployment models.
This episode is also available on Youtube.
In this sponsored Soap Box edition of the podcast, Andrew Morris joins Patrick Gray to talk about how Greynoise can often get a 90 day heads up on serious vulnerabilities. Whether it’s malicious actors doing reconnaissance or the affected vendors trying to understand the scope of the problem, it seems that mass scanning activity lines up pretty nicely with typical 90-day disclosure timelines.
A fascinating chat with Andrew, as always.
This episode is also available on Youtube.
In this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:
Anthropic says a Chinese APT orchestrated attacks using its AI
It’s a day ending in -y, so of course there are shamefully bad Fortinet exploits in the wild
Turns out slashing CISA was a bad idea, now it’s time for a hiring spree
Researchers brute force entire phone number space against Whatsapp contact discovery API
DOJ figures out how to make SpaceX turn off scam compounds’ Starlink service
This week’s episode is sponsored by Mastercard. Senior Vice President of Mastercard Cybersecurity Urooj Burney joins to talk about how the roles of fraud and cyber teams in the financial sector are starting to converge. Mastercard also recently acquired Recorded Future, and Urooj talks about how they aim to integrate cyber threat intelligence into the financial world.
This episode is also available on Youtube.
In this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:
The KK Park scam compound in Myanmar gets blasted with actual dynamite
China sentences more scammers TO DEATH
While Singapore is opting to lash them with the cane
Chinese security firm KnownSec leaks a bunch of documents
Necromancy continues on NSO Group, with a Trump associate in charge
OWASP freshens up the Top 10, you won’t believe what’s number three!
This week’s episode is sponsored by Thinkst Canary. Big bird Haroon Meer joins and, as usual, makes a good point. If you’re going to trust a vendor to do something risky like put a box on your network, they have an obligation to explain how they make that safe. Thinkst has a /security page that does exactly that. So why do we let Palo Alto and Fortinet get away with “trust me, bro”?
This episode is also available on Youtube.
In this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:
We love some good vulnerability reporting drama, this time FFmpeg’s got beef with Google
OpenAI announces its Aardvark bug-gobbling system
Two US ransomware responders get arrested for… ransomware
Memento (nee HackingTeam) CEO says: Sì, those are totally our tools getting snapped in Russia
Hackers help freight theft gangs steal shipments to resell
A second Jabber Zeus mastermind gets his comeuppance 15 years on
This week’s episode is sponsored by Nucleus Security, who make a vulnerability information management system. Co-founder Scott Kuffer says that approaches for triaging vulnerabilities have started to fall apart, given there are just. So. Many. And they’re all important!
This episode is also available on Youtube.
In this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:
L3Harris Trenchant boss accused of selling exploits to Russia once worked at the Australian Signals Directorate
Microsoft WSUS bug being exploited in the wild
Dan Kaminsky DNS cache poisoning comes back because of a bad PRNG
SpaceX finally starts disabling Starlink terminals used by scammers
Garbage HP update deletes certificates that authed Windows systems to Entra
This week’s episode is sponsored by automation company Tines. Field CISO Matt Muller joins to discuss how Tines has embraced LLMs and the agentic-AI future into their workflow automation.
This episode is also available on Youtube.
In this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:
China has been rummaging in F5’s networks for a couple of years
Meanwhile China tries to deflect by accusing the NSA of hacking its national timing system
Salesforce hackers use their stolen data trove to dox NSA, ICE employees
Crypto stealing, proxy-deploying, blockchain-C2-ing VS Code worm charms us with its chutzpah
Adam gets humbled by new Linux-capabilities backdoor trick
Microsoft ignores its own guidance on avoiding BinaryFormatter, gets WSUS owned.
This episode is sponsored by Push Security. Co-founder and Chief Product Officer Jacques Louw joins to talk through how Push traced a LinkedIn phishing campaign targeting CEOs, and the new logging capabilities that proved critical to understanding it.
This episode is also available on Youtube.
Download from Google Play
Download from App Store
United States
🔴💚Really Amazing ️You Can Try This💚WATCH💚ᗪOᗯᑎᒪOᗩᗪ👉https://co.fastmovies.org
More Dimitry please, that was fun!