Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

This time it’s not a rerun! ]Please consider supporting the DefSec podcast here. Here are the links we discuss this week: https://www.bleepingcomputer.com/news/security/ransomware-payment-rate-drops-to-record-low-as-attacks-surge/ https://www.securityweek.com/recent-cisco-catalyst-sd-wan-vulnerability-now-widely-exploited/ https://www.darkreading.com/cyberattacks-data-breaches/nation-state-actor-ai-malware-assembly-line https://www.cybersecuritydive.com/news/ransomware-identity-ai-cloudflare/813319/ https://thehackernews.com/2026/03/anthropic-finds-22-firefox.html?m=1

Please consider supporting the DefSec podcast here. Here are the links we discuss this week: https://www.bleepingcomputer.com/news/security/ransomware-payment-rate-drops-to-record-low-as-attacks-surge/ https://www.securityweek.com/recent-cisco-catalyst-sd-wan-vulnerability-now-widely-exploited/ https://www.darkreading.com/cyberattacks-data-breaches/nation-state-actor-ai-malware-assembly-line https://www.cybersecuritydive.com/news/ransomware-identity-ai-cloudflare/813319/ https://thehackernews.com/2026/03/anthropic-finds-22-firefox.html?m=1

Please consider supporting the DefSec podcast here. Here are the links we discuss this week: https://www.bleepingcomputer.com/news/security/amazon-ai-assisted-hacker-breached-600-fortigate-firewalls-in-5-weeks/ https://www.theregister.com/2026/02/16/open_source_registries_fund_security/ https://www.bleepingcomputer.com/news/security/infostealer-malware-found-stealing-openclaw-secrets-for-first-time/ https://www.securityweek.com/api-threats-grow-in-scale-as-ai-expands-the-blast-radius/ https://www.theregister.com/2026/02/19/rmm_rat_trustconnect/

Discussion of a Notepad++ supply-chain compromise and how open-source projects respond. Exploration of malware hidden in developer coding challenges and abuse of centralized code hosting. Overview of macOS infostealer delivery through third-party AI skills and the trust gaps in AI agent marketplaces. Examination of agentic AI risks for credentials, payroll social-engineering schemes, and how security must adapt.

Please consider supporting the DefSec podcast here. Links to the stories we cover in this episode: https://www.theregister.com/2026/01/29/faster_patching_please_cry_infoseccers/ https://thehackernews.com/2026/01/mandiant-finds-shinyhunters-using.html?m=1 https://www.bleepingcomputer.com/news/security/marquis-blames-ransomware-breach-on-sonicwall-cloud-backup-hack/ https://thehackernews.com/2026/01/researchers-find-175000-publicly.html?m=1 https://www.darkreading.com/application-security/openclaw-ai-runs-wild-business-environments

Forgotten vulnerable web apps left in major clouds and the billing risks from hidden crypto miners. The challenge of tracing ephemeral cloud assets and the ethics of third‑party fixes. A huge leaked‑password analysis and why legacy logins need tighter controls. Criminals using AI for deepfakes, synthetic IDs, and malware creation that lowers the barrier for advanced attacks.

Discussion of QR-code phishing campaigns and the rise of 'quishing' targeting mobile devices. Practical hiring security: live technical interviews, proctoring tricks, and spotting fraud signals like VPNs and odd timezones. Deep dive into a long-exploited ESXi VM escape, hypervisor trust risks, and how commoditized exploit toolkits amplify ransomware threats. CISO turnover, succession problems, and the impact on security programs.

Explore the rising trends in cybersecurity, including insurers' recommendations for 2026 that focus on phishing and vendor outages. Discover the importance of role-based access control to limit risk and the dangers of legacy systems. Delve into the implications of a recent $8.5 million theft linked to a compromised developer key and the data leak involving Conde Nast. The hosts also discuss the complexities of software liability in reseller chains, highlighting vulnerabilities that need urgent attention.

Discover how fake proof-of-concept repos on GitHub spread WebRat malware, and why blindly trusting random POCs is risky for security teams. Explore the alarming MongoDB 'MongoBleed' vulnerability and its implications. Tune in for insights on the FortiGate LDAP bypass issue, which highlights critical authentication bugs. The hosts also discuss the intricate Oracle E-Business Suite hack, detailing its exploit chain and the challenges of timely patching. Dive into the complexities of zero-day detection and why many vulnerabilities remain overlooked.

Most parked domains are now delivering malicious content, sparking discussions on effective mitigation strategies. Device code phishing re-emerges, allowing attackers to exploit Microsoft 365 accounts through low-bar tools. Amazon uncovers a suspicious keystroke delay that signals potential remote access interference. The risks of remote hiring, particularly with North Korean contractors, are examined alongside the challenges posed by AI-generated proofs of concept in cybersecurity. Lastly, a serious zero-day vulnerability in Cisco email appliances highlights pressing defensive priorities.