Security Weekly Podcast Network (Audio) AI Spicy Mode, Steam, Glassworm, Samsung, Stryker, Waymo, Cole Porter, and More - SWN #564
Mar 17, 2026
Reports on malware delivered through Steam updates and a malware strain targeting developers to enable supply-chain attacks. Coverage of a wipe incident using compromised Intune admin access. Discussion of email obfuscation tricks that defeat NLP defenses and a Samsung app causing drive access errors. Stories about Waymo vandalism and debates over a new adult 'spicy' AI mode.
AI Snips
Chapters
Transcript
Episode notes
Do Not Run Untrusted Games On Your Main Machine
- Avoid running untrusted games or apps on your primary system.
- Doug White describes Steam titles that later received malicious auto-updates (e.g., Block Blasters) which turned clean installs into crypto drainers.
Developer Compromise Multiplies Risk Downstream
- Supply-chain attacks target developers to enable downstream compromise of many legitimate apps.
- Glassworm infects developer components to steal credentials, letting attackers poison future releases and updates.
Lock Down Admin Accounts And Intune Permissions
- Protect cloud admin accounts and restrict device management privileges.
- Doug White explains attackers used a compromised global admin in Intune to create new admin accounts and remotely wipe many Stryker-managed devices.