Episode Details

Roblox cheats at work lead to a full corporate breach. Half a million people's health data listed for sale on Alibaba by the researchers trusted to protect it. A $5 Bluetooth tracker in a postcard tracks a NATO warship for 24 hours. The UK government officially says passkeys should replace passwords.

In this episode we break down the Vercel breach, the UK Biobank scandal, a Bluetooth tracker that exposed a $585 million warship, the NCSC's official passkey guidance ahead of World Password Day, plus Rituals Cosmetics, GCHQ's SilentGlass, Claude Desktop's silent browser hooks, a Grafana-branded sextortion scam, and Bitwarden's CLI getting hijacked.

Chapters

00:00 Intro
01:18 Vercel Breach: Roblox Cheats to Customer Data Exposure
06:38 Rituals Cosmetics Loyalty Programme Breach
09:46 UK Biobank Health Data Sold on Alibaba
13:41 GCHQ SilentGlass: Blocking Malware Over HDMI
16:25 Claude Desktop Silently Installs Browser Hooks
24:03 Sextortion Scam Disguised as Grafana Alert
29:15 Bitwarden CLI Hijacked in Supply Chain Attack
31:52 $5 Bluetooth Tracker Exposes NATO Warship
35:44 NCSC: Passkeys Should Replace Passwords
42:50 Security Socials: The HR Hot Take
46:08 Security Socials: Spam Caller Rick Astley Script
48:09 Security Socials: iPhone 17 Pro Stolen
51:56 Security Socials: My Cocoon Airplane Privacy
54:19 Security Socials: GPT Image 2 AI Generation
58:57 Outro

Subscribe to the newsletter for links to every story we discuss:

LinkedIn: https://www.linkedin.com/newsletters/the-awareness-angle-newsletter-7274932363787132928/

Our Intro and Outro Song © 16 by Falling Forever — Bandcamp: https://fallingforever.bandcamp.com/track/16 — Licence: https://creativecommons.org/licenses/by/4.0/