On this week’s show Patrick Gray is on holiday so Amberleigh Jack and Adam Boileau hijack the studio to discuss the week’s cybersecurity news, including:

• Hackers learn that trying to coerce a journalist just makes for … a great story?
• A man in his 40s gets arrested over the European airport chaos. Yep, we’re surprised, too.
• Adam fanboys over Watchtowr Labs while bemoaning Fortra.
• Academics pick apart Tile trackers and find them lacking
• CISA tells agencies to patch their damn Cisco gear

This episode is also available on YouTube.

• 'You'll never need to work again': Criminals offer reporter money to hack BBC
• Government to guarantee £1.5bn Jaguar Land Rover loan after cyber shutdown
• Feds Tie ‘Scattered Spider’ Duo to $115M in Ransoms – Krebs on Security
• UK authorities arrest man in connection with cyberattack against aviation vendor | Cybersecurity Dive
• Chinese scammer pleads guilty after UK seizes nearly $7 billion in bitcoin
• Cyberattack on Japanese beer giant Asahi limits shipping, call center operations | The Record from Recorded Future News
• Afghanistan plunged into nationwide internet blackout, disrupting air travel, medical care | The Record from Recorded Future News
• Tile trackers are a stalker's dream, say Georgia Tech researchers
• Intel and AMD trusted enclaves, the backbone of network security, fall to physical attacks - Ars Technica
• Supermicro server motherboards can be infected with unremovable malware - Ars Technica
• China-linked hackers use ‘BRICKSTORM’ backdoor to steal IP | The Record from Recorded Future News
• Another BRICKSTORM: Stealthy Backdoor Enabling Espionage into Tech and Legal Sectors
• Federal agencies given one day to patch exploited Cisco firewall bugs | The Record from Recorded Future News
• Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability
• Is This Bad? This Feels Bad. (Fortra GoAnywhere CVE-2025-10035)
• It Is Bad (Exploitation of Fortra GoAnywhere MFT CVE-2025-10035) - Part 2

On this week’s show Patrick Gray and special guest Rob Joyce discuss the week’s cybersecurity news, including:

• Secret Service raids a SIM farm in New York
• MI6 launches a dark web portal
• Are the 2023 Scattered Spider kids finally getting their comeuppance?
• Production halt continues for Jaguar Land Rover
• GitHub tightens its security after Shai-Hulud worm

This week’s episode is sponsored by Sublime Security. In this week’s sponsor interview, Sublime founder and CEO Josh Kamdjou joins host Patrick Gray to chat about the pros and cons of using agentic AI in an email security platform.

This episode is also available on YouTube

• U.S. Secret Service disrupts telecom network that threatened NYC during U.N. General Assembly
• MI6 launches darkweb portal to recruit foreign spies | The Record from Recorded Future News
• One Token to rule them all - obtaining Global Admin in every Entra ID tenant via Actor tokens | dirkjanm.io
• Github npm changes
• Flights across Europe delayed after cyberattack targets third-party vendor | Cybersecurity Dive
• Major European airports work to restore services after cyberattack on check-in systems | The Record from Recorded Future News
• When “Goodbye” isn’t the end: Scattered LAPSUS$ Hunters hack on | DataBreaches.Net
• UK arrests 2 more alleged Scattered Spider hackers over London transit system breach | Cybersecurity Dive
• Alleged Scattered Spider member turns self in to Las Vegas police | The Record from Recorded Future News
• Las Vegas police arrest minor accused of high-profile 2023 casino attacks | CyberScoop
• DOJ: Scattered Spider took $115 million in ransoms, breached a US court system | The Record from Recorded Future News
• vx-underground on X: "Scattered Spider ransoms company for 964BTC - wtf_thats_alot.jpeg - Document says "Cost of BTC at time was $36M" - $36M / 964BTC = $37.5K - BTC value was $37.5K in November, 2023 - Google "Ransomware, November, 2023" - omfg.exe https://t.co/uv2EzbL5HT" | X
• JLR ‘cyber shockwave ripping through UK industry’ as supplier share price plummets by 55% | The Record from Recorded Future News
• Jaguar Land Rover to extend production pause into October following cyberattack | Cybersecurity Dive
• New plan would give Congress another 18 months to revisit Section 702 surveillance powers | The Record from Recorded Future News
• AI-powered vulnerability detection will make things worse, not better, former US cyber official warns | Cybersecurity Dive

On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:

• Shai-Hulud worm propagates via npm and steals credentials
• Jaguar Land Rover attack may put smaller suppliers out of business
• Leaked data emerges from the vendor behind the Great Firewall of China
• Vastaamo hacker walks free while appeal is underway
• Why is a senator so mad about Kerberos?

This week’s episode is sponsored by Knocknoc. Chief exec Adam Pointon joins to talk through the surprising number of customers that are using Knocknoc’s identity-to-firewall glue to protect internal services and networks.

This week’s episode is also available on Youtube.

• Self-Replicating Worm Hits 180+ Software Packages – Krebs on Security
• Jaguar Land Rover: Some suppliers 'face bankruptcy' due to hack crisis
• Jaguar Land Rover production shutdown could last until November
• U.S. Investors, Trump Close In on TikTok Deal With China - WSJ
• U.S. Investors, Trump Close In on TikTok Deal With China - WSJ
• How China’s Propaganda and Surveillance Systems Really Operate | WIRED
• Mythical Beasts: Diving into the depths of the global spyware market - Atlantic Council
• Hacker convicted of extorting 20,000 psychotherapy victims walks free during appeal | The Record from Recorded Future News
• US national charged in Finnish psychotherapy center extortion | The Record from Recorded Future News
• BreachForums administrator given three-year prison stint after resentencing | The Record from Recorded Future News
• Microsoft, Cloudflare disrupt RaccoonO365 credential stealing tool run by Nigerian national | The Record from Recorded Future News
• Senator blasts Microsoft for making default Windows vulnerable to “Kerberoasting” - Ars Technica
• Exclusive: US warns hidden radios may be embedded in solar-powered highway infrastructure | Reuters
• Israel announces seizure of $1.5M from crypto wallets tied to Iran | TechCrunch