Podcast Episodes
Back to Search
Russia hacks Ukraine war supply lines, Signal blocks Windows screenshots, BadSuccessor vuln disclosure debate
Three Buddy Problem - Episode 47: We unpack a multi-agency report on Russia’s APT28/Fancy Bear hacking and spying on Ukraine war supply lines, CISA’s sloppy YARA rules riddled with false positives, t…
Published on 4 months, 2 weeks ago
A Coinbase breach with bribes, rogue contractors and a $20M ransom demand
Three Buddy Problem - Episode 46: We dig into a Coinbase breach headlined by bribes, rogue contractors and a $20 million ransom demand. Plus, (another!) batch of Ivanti and Microsoft zero-days being…
Published on 4 months, 3 weeks ago
JAGS keynote: The intricacies of wartime cyber threat intelligence
Three Buddy Problem - Episode 45: (The buddies are trapped in timezone hell with cross-continent travel this week).
In the meantime, absorb this keynote presented by Juan Andres Guerrero-Saade (JAG-…
Published on 4 months, 4 weeks ago
Signalgate redux, OpenAI's Aardvark, normalizing cyber offense
Three Buddy Problem - Episode 44: We unpack news that US government officials are using an obscure app to archive Signal messages, OpenAI’s new “Aardvark” code-evaluation and reasoning model and lea…
Published on 5 months ago
Thomas Rid joins the show: AI consciousness, TP-Link's China connection, trust in hardware security
Three Buddy Problem - Episode 43: Director of the Alperovitch Institute for Cybersecurity Studies Thomas Rid joins the show for a deep-dive into the philosophical and ethical considerations surround…
Published on 5 months, 1 week ago
China doxxes NSA, CVE's funding crisis, Apple's zero-day troubles
Three Buddy Problem - Episode 42: We dig into news that China secretly fessed up to the Volt Typhoon hacks and followed up with claims that named NSA agents launched advanced cyberattacks against th…
Published on 5 months, 2 weeks ago
NSA director fired, Ivanti's 0day screw-up, backdoor in robot dogs
Three Buddy Problem - Episode 41: Costin and Juanito join the show from Black Hat Asia in Singapore. We discuss Bunnie Huang's keynote on hardware supply chains and a classification system to establi…
Published on 6 months ago
Signalgate and ID management hiccups, PuzzleMaker and Chrome 0days, Lab Dookhtegan returns
Three Buddy Problem - Episode 40: On the show this week, we look at the technical deficiencies and opsec concerns around the use of Signal for ultra-sensitive communications. Plus, some speculation o…
Published on 6 months, 1 week ago
China exposing Taiwan hacks, Paragon spyware and WhatsApp exploits, CISA budget cuts
Three Buddy Problem - Episode 39: Luta Security CEO Katie Moussouris joins the buddies to parse news around a coordinated Chinese exposure of Taiwan APT actors, CitizenLab's report on Paragon spyware…
Published on 6 months, 2 weeks ago
A half-dozen Microsoft zero-days, Juniper router backdoors, advanced bootkit hunting
Three Buddy Problem - Episode 38: On the show this week, we look at a hefty batch of Microsoft zero-days exploited in the wild, iOS 18.3.2 fixing an exploited WebKit bug, a mysterious Unpatched.ai be…
Published on 6 months, 3 weeks ago