Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com

00:00 - PreShow Banter™ — National Chicken Wing Day

04:16 - BHIS - Talkin’ Bout [infosec] News 2025-07-28

05:30 - Story # 1: Bad vibes: How an AI agent coded its way to disaster

08:40 - Story # 1b: Replit goes rogue, deletes entire database.

15:44 - Story # 2: A major AI training data set contains millions of examples of personal data

26:05 - Story # 3: Women Dating Safety App ‘Tea’ Breached, Users’ IDs Posted to 4chan

33:19 - Story # 4:A Startup is Selling Data Hacked from Peoples’ Computers to Debt Collectors

40:28 - Story # 5: Clorox Sues IT Provider Cognizant For Simply Giving Employee Password to Hackers

49:46 - Story # 6: Businesses banned from paying hackers’ ransoms to target cybercrime

57:38 - SharePoint Follow Up

Register for FREE Infosec Webcasts, Anti-casts & Summits –

https://poweredbybhis.com

00:00 - PreShow Banter™ — PaintBallers

03:55 - BHIS - Talkin’ Bout [infosec] News 2025-07-21

04:21 - Story # 1: Microsoft 0-day Mass Exploitation

09:39 - Story # 2: Replit AI went rogue, deleted a company’s entire database, then hid it and lied about it

13:15 - Story # 3: ‘All US forces must now assume their networks are compromised’ after Salt Typhoon breach

18:08 - Story # 4: After FBI Warning, Alaska Airlines Grounded; Salt Typhoon Suspected

20:45 - Story # 5: FBI Cybersecurity Breach Led to Murders of Informants in El Chapo Case

21:54 - Story # 5b: FBI’s Report

29:57 - Story # 6: Google fixes actively exploited sandbox escape zero day in Chrome

31:30 - Story # 7: Exploited Wing file transfer bug risks ‘total server compromise,’ CISA warns

32:33 - Story # 8: CitrixBleed 2 situation update — everybody already got owned

33:01 - Story # 9: At Least 750 US Hospitals Faced Disruptions During Last Year’s CrowdStrike Outage, Study Finds

46:14 - Story # 10: Amazon Ring Doorbell May 28 Mass Hacking Claim Goes Viral

48:56 - jdbgmgr.exe virus hoax

51:52 - Story # 11: HPE warns of hardcoded passwords in Aruba access points

Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com

00:00 - PreShow Banter™ — Traditional Finger

00:21 - BHIS - Talkin’ Bout [infosec] News 2025-07-14

01:29 - Story # 1: ‘123456’ password exposed chats for 64 million McDonald’s job chatbot applications

22:12 - Story # 2: Employee gets $920 for credentials used in $140 million bank heist

33:50 - Story # 3: Microsoft laying off about 9,000 employees in latest round of cuts

37:21 - Story # 5: Scammy YouTube Ads

46:31 - Story # 6: New ServiceNow flaw lets attackers enumerate restricted data

Register for FREE Infosec Webcasts, Anti-casts & Summits –

https://poweredbybhis.com

00:00 - PreShow Banter™ — Pre Stream Appropriate

03:39 - N. Korean Remote Workers are at it Again! – BHIS - Talkin’ Bout [infosec] News 2025-07-07

05:41 - Story # 1: Fortune 500 Cyber Spending Pays Off: Large Enterprise Risk Falls 33% Despite Rising Threats

20:01 - Story # 2: Jasper Sleet: North Korean remote IT workers’ evolving tactics to infiltrate organizations

25:49 - Story # 2b: Engineer caught juggling multiple startup jobs is a cautionary tale of ‘extreme’ hustle culture, experts say

34:47 - Story # 3: Taking SHELLTER: a commercial evasion framework abused in- the- wild

42:15 - Story # 3b: Statement Regarding Recent Misuse of Shellter Elite and Elastic Security Labs’ Handling

46:58 - Story # 4: Ingram Micro outage caused by SafePay ransomware attack

49:45 - Story # 5: Germany asks Google, Apple to remove DeepSeek AI from app stores

53:13 - Story # 6: This Call of Duty game just hit Xbox Game Pass, but it’s infested with RCE hackers — I’d take cover and avoid playing until there’s a fix

Register for FREE Infosec Webcasts, Anti-casts & Summits –

https://poweredbybhis.com

Chapters:

00:00 - PreShow Banter™ — Names on Cups

01:39 - Year of the [European Union] Linux Desktop Finally Arrives? | BHIS - Talkin’ Bout [infosec] News 2025-06-30

03:34 - Story # 1: You should probably delete any sensitive screenshots you have in your phone right now.

10:55 - Story # 2: Ongoing Campaign Abuses Microsoft 365’s Direct Send to Deliver Phishing Emails

14:07 - Story # 3: The year of the European Union Linux desktop may finally arrive

24:46 - Story # 4: Restricted data once again leaked on War Thunder forums

27:04 - Story # 5: Scale AI Leaks Meta, Google, xAI Confidential Files Through ‘Incredibly Janky’ Document Practices

31:47 - Story # 6: French police reportedly arrest suspected BreachForums administrators

34:22 - Story # 7: Another Wave: North Korean Contagious Interview Campaign Drops 35 New Malicious npm Packages

39:41 - Story # 8: CitrixBleed 2: Electric Boogaloo — CVE-2025–5777

42:16 - Story # 9: Millions of Brother Printers Hit by Critical, Unpatchable Bug

47:05 - Story # 10: Canada orders China’s Hikvision to close Canadian operations

50:13 - Story # 11: US House bans WhatsApp on staff devices over security concerns

53:17 - ChickenSec: Chickens are becoming 3rd most popular pet: Tractor Supply CEO

56:34 - Story # 12: Norway Dam Hacked, Valve Opened But No Danger

58:11 - Review your calendar invites!

Register for Free, Live webcasts & summits:

https://poweredbybhis.com

00:00 - PreShow Banter™ — Explaining the Muppets

03:09 - Iran Shuts Down It's Own Internet- BHIS - Talkin’ Bout [infosec] News 2025-06-23

04:52 - Story # 1: Iran’s government says it shut down internet to protect against cyberattacks

20:20 - Story # 2: Iranian bank linked to revolutionary guard hit by ‘cyber attack’

22:11 - Story # 3: Hackers switch to targeting U.S. insurance companies

23:32 - Story # 3b: Statement: Erie Insurance Information Security Incident (June 23)

33:33 - Story # 4: No, the 16 billion credentials leak is not a new data breach

43:23 - Story # 5: ‘Water Curse’ Targets Infosec Pros via Poisoned GitHub Repositories

47:09 - Story # 6: CISA Reveals ‘Pattern’ of Ransomware Attacks Against SimpleHelp RMM

48:49 - Story # 7: Report Links Los Pollos and RichAds to Malware Traffic Operations

58:29 - Story # 8: Minnesota lawmaker’s alleged killer had list of data broker websites in car, FBI says

Register for Free, Live webcasts & summits:

https://poweredbybhis.com

00:00 - PreShow Banter™ — Government Linux

04:16 - Denmark is Done with Teams! - Talkin’ Bout [infosec] News 2025-06-16

05:02 - Story # 1: ‘We’re done with Teams’: German state hits uninstall on Microsoft

17:34 - Story # 1b: Denmark Wants to Dump Microsoft Software for Linux, LibreOffice

18:14 - Story # 2: Zero-click AI data leak flaw uncovered in Microsoft 365 Copilot

25:50 - Story # 3: Fog ransomware attacks use employee monitoring tool to break into business networks

30:25 - Story # 4: Expired Discord Invites Hijacked for Stealthy Malware Attacks

34:00 - Story # 5: SmartAttack uses smartwatches to steal data from air-gapped systems

40:25 - Story # 6: Mirai Botnets Exploiting Wazuh Security Platform Vulnerability

44:47 - Story # 7: Google Cloud and Cloudflare hit by widespread service outages

48:04 - Story # 8: UNFI cyberattack shuts down network and leaves Whole Foods and others in limbo

50:34 - Story # 9: New SharePoint Phishing Attacks Using Lick Deceptive Techniques

51:08 - Story # 10: US-backed Israeli company’s spyware used to target European journalists, Citizen Lab finds

53:32 - Story # 11: Five Zero-Days, 15 Misconfigurations Found in Salesforce Industry Cloud

Register for Free, Live webcasts & summits:

https://poweredbybhis.com

00:00 - PreShow Banter™ — Time to Bake

05:12 - Chatbot Tells Addict to Take Drugs - Talkin’ Bout [infosec] News 2025-05-06

06:08 - Story # 1: Meta and Yandex are de-anonymizing Android users’ web browsing identifiers

12:55 - Story # 2: Therapy Chatbot Tells Recovering Addict to Have a Little Meth as a Treat

16:11 - Story # 3: The Cost of a Call: From Voice Phishing to Data Extortion

26:56 - Story # 4: Questions Swirl Around ConnectWise Flaw Used in Attacks

27:40 - Story # 4b: ConnectWise email

35:28 - Story # 5: Critical Cisco ISE Auth Bypass Flaw Impacts Cloud Deployments on AWS, Azure, and OCI

39:27 - Story # 6: Misconfigured HMIs Expose US Water Systems to Anyone With a Browser

52:20 - Story # 7: Fact Sheet: President Donald J. Trump Reprioritizes Cybersecurity Efforts to Protect America