Please consider supporting the DefSec podcast here.

Links to the stories we cover in this episode:

https://www.bleepingcomputer.com/news/security/hackers-exploit-security-testing-apps-to-breach-fortune-500-firms/

https://www.securityweek.com/analysis-of-6-billion-passwords-shows-stagnant-user-behavior/

https://www.theregister.com/2026/01/20/group_ib_ai_cycercrime_subscriptions/

https://www.bleepingcomputer.com/news/security/voidlink-cloud-malware-shows-clear-signs-of-being-ai-generated/

https://arstechnica.com/security/2026/01/mandiant-releases-rainbow-table-that-cracks-weak-admin-password-in-12-hours/

Want to be the first to hear our episodes each week? Become a Patreon donor here.

Links to the stories in this episode:

• https://www.theregister.com/2026/01/09/pyongyangs_cyberspies_are_turning_qr/
• https://www.scworld.com/perspective/five-ways-to-conduct-a-more-secure-hiring-process
• https://cybersecuritynews.com/vmware-esxi-exploited-toolkit/
• https://www.darkreading.com/cyber-risk/ciso-succession-crisis-highlights-turnover-amplifies-security-risks

Want to be the first to hear our episodes each week? Become a Patreon donor here.

Links to this week’s stories:

• https://www.darkreading.com/cyber-risk/cybersecurity-tech-recommended-by-cyber-insurer-claims-data
• https://www.bleepingcomputer.com/news/security/trust-wallet-links-85-million-crypto-theft-to-shai-hulud-npm-attack/
• https://www.securityweek.com/hacker-claims-theft-of-40-million-conde-nast-records-after-wired-data-leak/
• https://databreaches.net/2025/12/30/software-company-lacked-downstream-liability-for-data-breach/
• https://techcrunch.com/2025/12/12/home-depot-exposed-access-to-internal-systems-for-a-year-says-researcher/