The Cybersecurity Defenders Podcast Malicious geopolitical cyber activity, cyberattacks tied to conflict in Iran, open source supply chain attack & AI autonomous espionage / Intel Chat [#306]
Mar 30, 2026
Conversation about a surge in malicious cyber activity linked to the Iran conflict. Discussion of large-scale open source supply chain compromises across GitHub, NPM, PyPI and Docker Hub. Examination of destructive wiper threats and recommendations for access controls and immutable backups. Exploration of AI coding agents used for autonomous espionage and how defenses must adapt.
AI Snips
Chapters
Transcript
Episode notes
Hosts Met Working A B-Sides Booth Years Ago
- Matt Bromley and Christopher Luft first met at RSA/B-Sides several years ago and worked a B-Sides booth together.
- They shared that origin story to explain their long-running collaboration and podcast chemistry.
Hacktivist Claims Create A Reputational Fog
- Hacktivist claims create a reputational fog that forces defenders to react.
- Nasir Security mostly breached contractors, not primary energy firms, yet used real documents to amplify perceived impact.
Contractor Breaches Fuel Inflated Major Firm Claims
- Attack claims against major firms often stem from contractor breaches used for BEC and account takeover.
- Nasir Security obtained project docs from contractors, not primary energy firms, enabling plausible-sounding but inflated breach narratives.