Send us a text

We unpack how AI shifts the security game, from state-backed use of agentic tools to prompt injections that hijack functions and bypass access. We also show how to control Gemini’s training access to your data and outline practical steps to harden AI stacks.

• Anthropic’s disclosure of state actor abuse of agentic AI
• MITRE ATT&CK at machine speed via spawned agents
• When hallucinations blunt attacks and when they don’t
• Prompt injection and second-order function hijacking
• ServiceNow agent exploitation and lessons for guardrails
• Supply chain risk in Ray and distributed AI frameworks
• Practical defenses for data, context, and tool scopes
• How to opt out of Gemini training via myactivity.google.com
• Why ethical AI and transparency build user trust

If you learn something new, share this episode, share it with your friends, share it with a friend. Always please give us a like, a follow

Support the show

Send us a text

We break down urgent patches, a remote‑execution risk on tens of thousands of firewalls, and an AI browser flaw that leaks context. We also flag weaker federal support, a major airline breach, and leave you with a simple checklist to reduce risk now.

• Oracle E‑Business CVE and why fast patching matters
• Cisco firewall remote code execution and CISA’s directive
• Red team vs blue team across physical, social, and cyber
• Apple’s $2M bug bounty and device update urgency
• Government shutdown impact on CISA and data sharing
• AI browser comet jacking and prompt injection risks
• Qantas Salesforce breach and phishing fallout
• A practical weekly security checklist and backups

follow us, hit that like, subscribe, follow, comment, share, do all that

Support the show

Send us a text

Salah and Vivek tackle major ransomware attacks on aviation infrastructure, critical Android security updates, and new California privacy regulations affecting how companies use AI to make decisions about you. They provide practical security advice for protecting yourself in an increasingly complex digital landscape.

• Collins Airspace hit with ransomware causing flight delays and baggage issues across European airports
• Android pushes critical September update fixing 84 vulnerabilities including two actively exploited zero-days
• "Cancel the Hate" app designed to doxx critics ironically exposed its own users' data
• California approves new rules requiring companies to disclose how they use automated decision-making technologies
• Two-factor authentication is essential for securing all your accounts
• Use a password manager to create and store strong, unique passwords
• Regularly audit your apps and revoke unnecessary permissions

Next week we'll dive into whether your private messaging is truly private, examining who might be listening - from companies to nation states. Stay caffeinated, stay private, and keep your silent mode on.

Support the show

Send us a text

Cloaked Review: Privacy Nirvana or Overpriced Hype? In this episode of Silent Mode Cafe, we explore whether Cloaked lives up to its promise of being the ultimate privacy tool or if it’s just another pricey subscription. Cloaked offers features like burner emails, disposable phone numbers, virtual cards, and data removal from broker sites, all designed to safeguard your identity. We break down how it works, highlight its strengths like its all-in-one convenience and data scrubbing power, and address its drawbacks, including its cost and competition from free or cheaper alternatives like Firefox Relay, Privacy.com, and DeleteMe. Is Cloaked worth it for ultimate privacy and convenience? Or are you better off managing multiple tools on your own? Tune in to find out and decide if this “identity firewall” is right for you. Privacy shouldn’t cost a fortune—or should it? Let’s talk!

#virtualcards #privacyapps #onlineprivacy #cloakedreview #emailaliases

CHAPTERS:
00:00 - Intro
00:50 - What is Cloaked? Privacy Protection
01:18 - How Does Cloaked Work? Functionality Explained
04:55 - Pros and Cons of Cloaked
06:36 - Cloaked vs Competitors: Comparison Analysis
09:52 - Is Cloaked Worth It? Value Assessment
11:38 - Outro
12:28 - No Information Sharing: Benefits of Cloaked
12:35 - Stay in Silent Mode: Privacy Features
12:39 - Closing Remarks

Support the show

Send us a text

🚨 Major Samsung Hack Alert! Update your phone NOW to protect yourself from a dangerous Zero-Day vulnerability targeting Samsung Android devices through messaging apps like WhatsApp. In this week's Silent Mode Cafe episode, we’re breaking down the latest cybersecurity threats, including hacks on luxury brands like Gucci and Balenciaga, airport system disruptions, and even breaches impacting smart devices in your home.

Learn how to safeguard your digital life with actionable tips: update your devices, enable two-factor authentication, turn off unnecessary app permissions, and secure your home network by updating your router and smart devices. Don’t let hackers exploit overlooked vulnerabilities—stay one step ahead. Protect your data and keep your devices safe by taking these simple steps today. Stay safe, stay updated, and don’t miss this essential episode!

#cybersecurity #digitalsafety #internetsafetytips #digitalcitizenship #security

CHAPTERS:
00:00 - Major Cyber Incidents
02:53 - Weekly Cybersecurity Tips
05:43 - Golden Cybersecurity Tip of the Week

Support the show

Send us a text

We explore the latest security threats and patches while providing practical advice on keeping your digital life secure with our special guest Firas.

• Android releases patches for 120 flaws including two zero-day vulnerabilities
• Windows issues 80+ fixes during September's Patch Tuesday
• Plex streaming service requires users to reset passwords after data breach
• NPM supply chain attack targets crypto wallets with malicious code in JavaScript libraries
• OAuth token theft at Kiva puts business contacts at risk of phishing
• Facebook Cambridge Analytica settlement payments starting to arrive with scammers taking advantage
• Best practices include updating devices regularly, using two-factor authentication, and avoiding suspicious links
• Golden rule: never click links in messages - always go directly to official websites

Follow us on social media @SilentModeCafe for more privacy and security updates.

Support the show

Send us a text

Digital security has reached a critical point with multiple major breaches threatening user data worldwide. We break down the most pressing threats and provide practical steps to protect yourself without needing technical expertise.

• Google Salesforce breach exposing customer data, leading to sophisticated phishing attempts
• Apple and WhatsApp pushing critical updates to patch vulnerabilities where even photos can hack your phone
• 77 Android apps caught stealing banking details from nearly 20 million installations
• TransUnion credit bureau breach exposing 4.4 million identities and complete credit reports
• AT&T settlement offering up to $7,500 for eligible customers with November 18 deadline
• The rise of "vibe coding" with AI assistance creating apps with serious security vulnerabilities
• Simple solutions like enabling passkeys, freezing credit, and regular app auditing

Keep your devices updated, remove unnecessary apps, freeze your credit, and check if you qualify for the AT&T settlement before the deadline.

Support the show

Send us a text

YouTube's AI now estimates your age based on watch history, potentially blocking content or requiring ID verification if it thinks you're under 18. Data brokers are deliberately hiding opt-out pages from search engines, violating privacy laws while making it difficult for consumers to protect their information.

• Major apps like Facebook, TikTok, and Instagram request a combined 882 permissions, gaining access to cameras, microphones, and location data
• Data brokers including Comscore and Equivia used hidden code to prevent opt-out pages from appearing in Google Search results
• AI tools in education are raising concerns about student data collection and privacy
• Companies face wiretap lawsuits over AI systems recording customer service calls without proper consent
• Recent data breaches affected US federal judiciary systems, Columbia University (870,000 people), Connex Credit Union (172,000 customers), UK MOD subcontractor, French telecom Bouygues (6.4 million customers), Allianz Life Insurance (1.4 million people), and Canadian Parliament
• Social engineering tactics were used in several breaches, highlighting the human element in cybersecurity

Check your app settings monthly and disable unnecessary permissions. For YouTube age restrictions, check your Google account settings and opt out where possible.

Your digital life is under constant scrutiny, with AI algorithms making assumptions about who you are based on your online behavior. YouTube has rolled out a new system that estimates your age from watch history alone – not profile data – and automatically restricts content if it decides you're underage. The concerning part? If the algorithm gets it wrong, you might find yourself locked out of legitimate content or forced to upload government ID just to prove your age.

Data brokers have been caught red-handed trying to keep you from exercising your privacy rights. Over 30 companies including Comscore and Equivia deliberately coded their websites to hide opt-out pages from Google Search, making it nearly impossible for consumers to say "no" to data collection. This deceptive practice likely violates California's privacy laws, prompting Senator Maggie Hassan to set a September 3rd deadline for companies to fix these issues or face consequences.

The permission requests from popular apps have reached staggering levels – a study found that just 20 major applications, including social media platforms like Facebook, TikTok, and Instagram, request a combined 882 permissions from users. These apps want access to everything from your microphone and location to your camera and files. Meanwhile, AI tools are infiltrating classrooms with little oversight, potentially collecting and storing sensitive student data without adequate parental knowledge or consent.

Recent breaches have affected millions: Columbia University (870,000 people), Connex Credit Union (172,000 customers with SSNs and debit card numbers exposed), French telecom Bouygues (6.4 million customers), and even the Canadian Parliament and US federal judiciary systems. These aren't just statistics – they represent real people facing real consequences from data exposure.

Take back control by checking app permissions monthly, using privacy-focused browsers, and being vigilant about what information you share with AI tools. Remember: in the digital world, if you're not paying for the product, you are the product. Stay safe, stay private, and stay curious.

Support the show