This week, Javvad Malik and Erich Kron unpack a fresh pile of cyber mayhem containing equal parts fascinating, frustrating, and “you couldn’t make this up if you tried”.

EU Blames Ransomware for Airport Check-In Chaos: The EU’s cyber agency has officially confirmed what everyone suspected: ransomware was behind the massive airport meltdown. Great, now someone please confirm when luggage will show up again.

And in other news…

Airport Cyber Arrest: Authorities nabbed a man allegedly behind attacks that disrupted airport systems across Europe. Flights were delayed, passengers got cranky, and IT staff was probably crying into their coffee. Turns out, ransomware doesn’t just ruin files, it ruins holidays. That was fast though.

Deepfakes Go Corporate: Two-thirds of businesses report being hit with deepfake scams. Fake execs, bogus invoices, and AI-generated voices that sound “just enough like the boss” to drain your accounts. Technology: still helping criminals scale their hustle, although that seems like high number. Let’s talk about that.

Jaguar Land Rover’s Production Nightmare: JLR’s cyber shutdown drags on as ministers huddle with suppliers to stop the bleeding. Yes folks, like many of the vehicles they sell, they are STILL broken. Nothing like a supply chain crisis to remind us that “smart factories” can be dumb when ransomware shows up.

Expect a mix of snark, practical security takeaways, and a few sighs of disbelief as we connect the dots between these incidents and what they mean for CISOs, SOC analysts, and anyone who still thinks cyber risk is “just an IT problem.”

Stories from the show:

Man arrested in connection with cyber-attack on airports https://www.bbc.com/news/articles/c62ldxyj431o

Deepfake Attacks Hit Two-Thirds of Businesses https://www.infosecurity-magazine.com/news/deepfake-attacks-hit-twothirds-of/

JLR shutdown extended again as ministers meet suppliers https://www.bbc.com/news/articles/c15kpxnn2p2o

EU’s cyber agency blames ransomware as Euro airport check-in chaos continues https://www.theregister.com/2025/09/22/eus_cyber_agency_confirms_ransomware/

Javvad Malik and Erich Kron are back with tea, shade, and tech news, taking on three fresh cyber disasters that are making folks sweat:

JLR’s Cyber Chaos: A hack shut down Jaguar Land Rover’s IT & production lines, and now its supply chain workers are being told to apply for Universal Credit. When “just a hack” looks more like a national employment crisis.

Teenagers + Scattered Spider = TfL Attack Fallout: Two teens are now charged for allegedly being part of the Scattered Spider crew that hacked Transport for London last August. From Oyster cards to APIs—this one’s got lots of teeth.

SonicWall: “Oops, Backups Leaked (a Little Bit)”: Under 5% of SonicWall users impacted by exposed firewall backup prefs. Credentials were encrypted but still, enough info was accessible to give attackers a run for their money. Reset everything. Like now.

Buckle up: we’ll laugh, we’ll cringe, and we’ll figure out what this means for real people doing real work in security.

---------------------------------------------------------------------------- Stories from the show:

JLR hack could see thousands laid off - MP https://www.bbc.com/news/articles/cwyrqxj3eqqo

U.K. Arrests Two Teen Scattered Spider Hackers Linked to August 2024 TfL Cyber Attack https://thehackernews.com/2025/09/uk-arrest-two-teen-scattered-spider.html

SonicWall Urges Password Resets After Cloud Backup Breach Affecting Under 5% of Customers https://thehackernews.com/2025/09/sonicwall-urges-password-resets-after.html

In this week’s episode, Javvad Malik and Erich Kron wade through the latest cybersecurity soap opera where silence, spin, and shady stats take center stage:

• 61% of U.S. companies claim they’ve been hit by insider breaches. Is this a shocking revelation… or just the result of someone finally checking the logs?

• CISOs are under growing pressure to zip it about incidents. Because nothing says “strong security posture” like sweeping breaches under the rug and hoping the auditors don’t trip over the lump.

• Hackers are holding Google’s data hostage unless two threat intel employees get the boot. Extortion? Performance review outsourcing? You decide.

• Meanwhile in the UK, the government sat on a secret breach review for two years before sheepishly releasing it. Because transparency apparently has an expiration date.

Grab your headphones as we unpack what these stories really mean for security leaders, why “insider risk” is the boogeyman of the week, and how the industry’s favorite strategy still seems to be: “Shh… maybe they won’t notice.”