Security Weekly Podcast Network (Audio)

AI: No One Is Safe - PSW #912

Feb 5, 2026
They dig into supply-chain sabotage like the Notepad++ update compromise and why update attestation matters. A signed Windows driver that neutralizes EDR gets unpacked. Exposed LLM endpoints and insecure agent designs spark AI security concern. Cyber attacks on VPNs, NAS, and critical infrastructure are examined alongside residential proxy abuse fueling large-scale scanning.
Ask episode
AI Snips
Chapters
Transcript
Episode notes
ADVICE

Treat Updates As Untrusted Channels

  • Validate update channels and use cryptographic signatures to verify software updates at the endpoint.
  • Pay third parties to attest updates or run binary analysis to detect tampering before deploying updates.
ANECDOTE

Notepad++ Repo Compromise

  • Notepad++'s update mechanism was abused and attackers poisoned official repositories for months.
  • The compromise persisted because update servers and repos were themselves breached.
INSIGHT

Signed Drivers Aren't Absolute Trust

  • Windows' driver-signing exceptions can let revoked or expired certificates still load kernel drivers.
  • That legacy behavior makes signed forensic drivers effective tools for disabling EDRs.
Get the Snipd Podcast app to discover more snips from this episode
Get the app