Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com

00:00 - PreShow Banter™ — Unnatural European Fridges

03:34 - The Entra ID Cross-Tenant Vulnerability Discovery – BHIS - Talkin’ Bout [infosec] News 2025-09-22

04:14 - Story # 1: One Token to rule them all - obtaining Global Admin in every Entra ID tenant via Actor tokens

21:32 - Story # 2: Shai-Hulud: Self-Replicating Worm Compromises 500+ NPM Packages

40:50 - OSSPREY – NPM Package @Ctrl/Tinycolor Compromised: Shai Hulud Malware Targets Secrets and Persistence

51:41 - Story # 3: Verified Steam game steals streamer’s cancer treatment donations

57:16 - Story # 4: Heathrow warns of second day of disruption after cyber-attack

• (00:00 ) - PreShow Banter™ — Unnatural European Fridges


• (03:07 ) - The Entra ID Cross-Tenant Vulnerability Discovery – BHIS - Talkin' Bout [infosec] News 2025-09-22


• (03:45 ) - Story # 1: One Token to rule them all - obtaining Global Admin in every Entra ID tenant via Actor tokens


• (20:09 ) - Story # 2: Shai-Hulud: Self-Replicating Worm Compromises 500+ NPM Packages


• (38:51 ) - OSSPREY – NPM Package @Ctrl/Tinycolor Compromised: Shai Hulud Malware Targets Secrets and Persistence


• (49:28 ) - Story # 3: Verified Steam game steals streamer's cancer treatment donations


• (54:51 ) - Story # 4: Heathrow warns of second day of disruption after cyber-attack