Srsly Risky Biz: Why Iran is a scaredy cat cyber chicken
Tom Uren and Patrick Gray discuss warnings about Iranian cyber attacks on US critical infrastructure. Despite many many warnings, there have been no actual attacks and they discuss the reasons why Iran would want to avoid escalatory cyber attacks.
They also talk about how the FBI is struggling to deal with the democratisation of surveillance and data analysis, what the agency calls Ubiquitous Technical Surveillance (UTS). A Department of Justice audit of the FBI’s response finds the threat from UTS is real and that sources have been murdered. But it seems that the FBI just doesn’t care.
This episode is also available on Youtube.
Show notes
--------
17:27
--------
17:27
Risky Bulletin: The US sanctions another Russian bulletproof hosting provider
The US sanctions another Russian bulletproof hosting provider, the International Criminal Court discloses a security breach, the US dismantles 29 North Korean laptop farms, and a Chinese student gets jailed in the UK for SMS blasting.
Show notes
--------
6:39
--------
6:39
Between Two Nerds: Microsoft embraces digital sovereignty
In this edition of Between Two Nerds Tom Uren and The Grugq talk about how Microsoft has embraced digital sovereignty and is bending over backwards to satisfy European tech supply chain concerns.
This episode is also available on Youtube.
Show notes
The New York Times on the ICC
Microsoft's 30 April Brad Smith post
Microsoft's 4 June Brad Smith post
--------
22:13
--------
22:13
Risky Bulletin: Scattered Spider targets the aviation sector
The Scattered Spider group targets the aviation sector, Russia throttles traffic from Cloudflare, a Mexican cartel hired hackers to track an FBI official, and Canada tells Hikvision to cease operations.
Show notes
--------
8:31
--------
8:31
Sponsored: Why Linux is the dark matter of the internet
In this Risky Bulletin sponsor interview Craig Rowland, CEO of Sandfly Security, talks to Tom Uren about the disconnect between how important Linux systems are and how much security attention they get. The pair discuss the variety of reasons that security teams underinvest in protecting Linux.
Show notes
Netherlands