This week on The Awareness Angle, Anthony Davis and Luke Pettigrew dig into everything from privacy holes in the UK’s Online Safety Act to deepfake diet scams and a ransomware payout denied over missing MFA. It’s a mix of policy, people, and pure cyber weirdness you won’t want to miss.
🇬🇧 UK Online Safety Act – New age verification rules put privacy on the line, with overseas firms handling sensitive data, no clear safeguards, and easy VPN workarounds.
🖥️ Microsoft Recall Risks – Despite Microsoft’s reassurances, Recall can still capture passwords, credit card details, and private chats—data that’s stored locally and vulnerable if your device is compromised.
💰 Hamilton’s Insurance Nightmare – A ransomware recovery claim denied because the city hadn’t implemented MFA as required by their cyber policy.
🛡️ Proton Authenticator Launch – Free, privacy-first 2FA app with encryption, cross-device sync, and no ads or tracking.
🛍️ Deepfake Diet Scams – Fake online health stores use AI-generated before/after shots and impersonate real dietitians to push unregulated products.
📞 Google Salesforce Breach – Voice phishing used to gain CRM access, proving social engineering still outpaces many technical controls.
🎧 Pandora Data Breach – Third-party platform compromise exposed customer names and emails—possible link to ShinyHunters.
📱 WhatsApp Scam Takedowns – 6.8M accounts shut down in six months, many tied to organised crime networks in Southeast Asia.
🖥️ Old Tech Risks – From Windows Server 2003 to WEP Wi-Fi, outdated systems are still in active use, posing massive security risks.
📧 Reply-All Apocalypse – The 2016 NHS mass email storm shows how human error can grind operations to a halt.
🕵️♂️ North Korean IT Workers – Thousands of covert contractors using fake IDs to funnel foreign pay back to the DPRK regime.
💬 Community & Social Reactions – From phishing test backlash to TikTok debates, we dive into what people are really saying about security awareness.
If you want the week’s big cyber stories distilled into practical takeaways—with a side of eyebrow-raising human behaviour—this one’s got it all.
🕒 Timestamps
00:00:00 – Intro & studio update
00:03:08 – VPN chaos & Online Safety Act
00:06:05 – Labour’s VPN warning
00:08:57 – Sims beat facial recognition
00:11:10 – Spotify’s age checks
00:12:42 – Funny VPN reel
00:16:08 – YouTube uses AI to guess age
00:17:16 – Google AI search shake-up
00:21:10 – Lovense email leak
00:23:31 – Copilot Mode & privacy
00:27:05 – Allianz breach
00:29:28 – St. Paul ransomware
00:32:53 – NASCAR ransom
00:35:31 – Orange France hack
00:36:42 – QR code TikTok goes viral
00:39:47 – Copilot Vision backlash
00:42:19 – CybSafe SebDB 4.0
00:44:42 – Free maturity model tool
00:48:58 – SANS Summit preview
00:52:53 – Shoutout to Dan Connolly
00:55:08 – Phishing test horror story
01:01:09 – Bin chaos = bad UX
01:04:40 – Bird audio encryption
01:08:58 – Fable Security debut
📩 For links, videos, and the newsletter – head to riskycreative.com
💬 Check Out This Episode's Discussion Points
📧 hello@riskycreative.com
🔗 riskycreative.com
🎵 Our Intro & Outro Song (© 16! by falling forever)
License: https://creativecommons.org/licenses/by/4.0
