The avforums podcast brings you the latest tech, movie and gaming news, plus special features, interviews and show reports from the world of audio visual home entertainment
…
continue reading
Content provided by Risky.biz and Patrick Gray. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Risky.biz and Patrick Gray or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.
Similar to Risky Business
Technical interviews about software topics.
…
continue reading
The daily cybersecurity news and analysis industry leaders depend on. Published each weekday, the program also includes interviews with a wide spectrum of experts from industry, academia, and research organizations all over the world.
…
continue reading
Tech News Briefing is your guide to what people in tech are talking about. Every weekday, we’ll bring you breaking tech news and scoops from the pros at the Wall Street Journal, insight into new innovations and policy debates, tips from our personal tech team, and exclusive interviews with movers and shakers in the industry.
…
continue reading
Windows Weekly is about more than Windows. Veteran Microsoft insiders Paul Thurrott and Richard Campbell join Leo for a deep dive into the most valuable company in the world. From consumer to enterprise, AI to Xbox, Windows Weekly is the only Microsoft podcast you'll ever need. Records live every Wednesday at 2:00pm Eastern / 11:00am Pacific / 19:00 UTC.
…
continue reading
Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
1
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
Jerry Bell and Andrew Kalat
1k
200
Defensive Security is a weekly information security podcast which reviews recent high profile cyber security breaches, data breaches, malware infections and intrusions to identify lessons that we can learn and apply to the organizations we protect.
…
continue reading
Industry expert Mikah Sargent, brings you interviews from tech journalists who make or break the top stories of the week. Get the freshest perspective and in depth insight into the fast-paced world of technology from Tech News Weekly. Records every Thursday at 2:00pm Eastern / 11:00am Pacific / 19:00 UTC.
…
continue reading
Join Larry Mantle weekdays for lively and in-depth discussions of Los Angeles and Southern California news, politics, science, entertainment, the arts and more. More AirTalk at www.kpcc.org.
…
continue reading
Feel brighter every day with our 20-minute pop-biz news podcast. The 3 business stories you need, with fresh takes you can pretend you came up with — Pairs perfectly with your morning oatmeal ritual. Hosted by Jack Crivici-Kramer & Nick Martell. Formerly known as “Snacks Daily”, Nick and Jack continue their podcast independent from Robinhood.
…
continue reading
Player FM - Podcast App
Go offline with the Player FM app!
Go offline with the Player FM app!
))
Risky Business #818 -- React2Shell is a fun one
Manage episode 523485306 series 1386146
Content provided by Risky.biz and Patrick Gray. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Risky.biz and Patrick Gray or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.
In this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:
- There’s a CVSS 10/10 remote code exec in the React javascript server. JS server? U wot mate?
- China is out popping shells with it
- Linux adds support for PCIe bus encryption
- Amnesty International says Intellexa can just TeamViewer into its customers’ surveillance systems
- …and a Belgian murder suspect complains that GrapheneOS’s duress wipe feature failed him?
This week’s episode is sponsored by Kroll Cyber. Simon Onyons is Managing Director at Kroll’s Cyber and Data Resilience arm, and he discusses a problem near to many of our hearts. Just how do you explain cyber risk to the board?
This episode is also available on Youtube.
Show notes
- Risky Bulletin: APTs go after the React2Shell vulnerability within hours - Risky Business Media
- Guillermo Rauch on X: "React2Shell" / X
- React2Shell-CVE-2025-55182-original-poc/README.md at main · lachlan2k/React2Shell-CVE-2025-55182-original-poc · GitHub
- Hydrogen: Shopify’s headless commerce framework
- Researchers track dozens of organizations affected by React2Shell compromises tied to China’s MSS | The Record from Recorded Future News
- Unveiling WARP PANDA: A New Sophisticated China-Nexus Adversary
- Three hacking groups, two vulnerabilities and all eyes on China | The Record from Recorded Future News
- Risky Bulletin: Linux adds PCIe encryption to help secure cloud servers
- Sean Plankey nomination to lead CISA appears to be over after Thursday vote | CyberScoop
- 🕳 on X: "This guy is complaining that GrapheneOS “failed him”. Showing a Belgian 🇧🇪 police request for an interrogation regarding premeditated murder (as a suspect)." / X
- Sanctioned spyware maker Intellexa had direct access to government espionage victims, researchers say | TechCrunch
- To Catch a Predator: Leak exposes the internal operations of Intellexa’s mercenary spyware - Amnesty International Security Lab
- Is ransomware finally on the decline? Treasury data offers cautious hope | CyberScoop
- UK cyber agency warns LLMs will always be vulnerable to prompt injection | CyberScoop
- In comedy of errors, men accused of wiping gov databases turned to an AI tool - Ars Technica
615 episodes
Share
Manage episode 523485306 series 1386146
Content provided by Risky.biz and Patrick Gray. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Risky.biz and Patrick Gray or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.
In this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:
- There’s a CVSS 10/10 remote code exec in the React javascript server. JS server? U wot mate?
- China is out popping shells with it
- Linux adds support for PCIe bus encryption
- Amnesty International says Intellexa can just TeamViewer into its customers’ surveillance systems
- …and a Belgian murder suspect complains that GrapheneOS’s duress wipe feature failed him?
This week’s episode is sponsored by Kroll Cyber. Simon Onyons is Managing Director at Kroll’s Cyber and Data Resilience arm, and he discusses a problem near to many of our hearts. Just how do you explain cyber risk to the board?
This episode is also available on Youtube.
Show notes
- Risky Bulletin: APTs go after the React2Shell vulnerability within hours - Risky Business Media
- Guillermo Rauch on X: "React2Shell" / X
- React2Shell-CVE-2025-55182-original-poc/README.md at main · lachlan2k/React2Shell-CVE-2025-55182-original-poc · GitHub
- Hydrogen: Shopify’s headless commerce framework
- Researchers track dozens of organizations affected by React2Shell compromises tied to China’s MSS | The Record from Recorded Future News
- Unveiling WARP PANDA: A New Sophisticated China-Nexus Adversary
- Three hacking groups, two vulnerabilities and all eyes on China | The Record from Recorded Future News
- Risky Bulletin: Linux adds PCIe encryption to help secure cloud servers
- Sean Plankey nomination to lead CISA appears to be over after Thursday vote | CyberScoop
- 🕳 on X: "This guy is complaining that GrapheneOS “failed him”. Showing a Belgian 🇧🇪 police request for an interrogation regarding premeditated murder (as a suspect)." / X
- Sanctioned spyware maker Intellexa had direct access to government espionage victims, researchers say | TechCrunch
- To Catch a Predator: Leak exposes the internal operations of Intellexa’s mercenary spyware - Amnesty International Security Lab
- Is ransomware finally on the decline? Treasury data offers cautious hope | CyberScoop
- UK cyber agency warns LLMs will always be vulnerable to prompt injection | CyberScoop
- In comedy of errors, men accused of wiping gov databases turned to an AI tool - Ars Technica
615 episodes
All episodes
×
Welcome to Player FM!
Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.
Similar to Risky Business
The avforums podcast brings you the latest tech, movie and gaming news, plus special features, interviews and show reports from the world of audio visual home entertainment
…
continue reading
Technical interviews about software topics.
…
continue reading
The daily cybersecurity news and analysis industry leaders depend on. Published each weekday, the program also includes interviews with a wide spectrum of experts from industry, academia, and research organizations all over the world.
…
continue reading
Tech News Briefing is your guide to what people in tech are talking about. Every weekday, we’ll bring you breaking tech news and scoops from the pros at the Wall Street Journal, insight into new innovations and policy debates, tips from our personal tech team, and exclusive interviews with movers and shakers in the industry.
…
continue reading
Windows Weekly is about more than Windows. Veteran Microsoft insiders Paul Thurrott and Richard Campbell join Leo for a deep dive into the most valuable company in the world. From consumer to enterprise, AI to Xbox, Windows Weekly is the only Microsoft podcast you'll ever need. Records live every Wednesday at 2:00pm Eastern / 11:00am Pacific / 19:00 UTC.
…
continue reading
Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
1
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
Jerry Bell and Andrew Kalat
1k200
Defensive Security is a weekly information security podcast which reviews recent high profile cyber security breaches, data breaches, malware infections and intrusions to identify lessons that we can learn and apply to the organizations we protect.
…
continue reading
Industry expert Mikah Sargent, brings you interviews from tech journalists who make or break the top stories of the week. Get the freshest perspective and in depth insight into the fast-paced world of technology from Tech News Weekly. Records every Thursday at 2:00pm Eastern / 11:00am Pacific / 19:00 UTC.
…
continue reading
Join Larry Mantle weekdays for lively and in-depth discussions of Los Angeles and Southern California news, politics, science, entertainment, the arts and more. More AirTalk at www.kpcc.org.
…
continue reading
Feel brighter every day with our 20-minute pop-biz news podcast. The 3 business stories you need, with fresh takes you can pretend you came up with — Pairs perfectly with your morning oatmeal ritual. Hosted by Jack Crivici-Kramer & Nick Martell. Formerly known as “Snacks Daily”, Nick and Jack continue their podcast independent from Robinhood.
…
continue reading
Player FM - Podcast App
Go offline with the Player FM app!
Go offline with the Player FM app!
