In this episode, Mark and Diana discuss the U.S. government’s $10 million bounty on Russian FSB hackers, the discovery of undetected SVG phishing files, and new warnings from the Czech Republic about technology that transmits data to China. They explore how AI could be misused for autonomous ransomware, the evolution of CastleRAT malware, and the growing abuse of X’s Grok AI to spread malicious links. The conversation also covers Microsoft’s enforcement of multi-factor authentication in Azure, Wealthsimple’s recent data breach, and ransomware attacks that hit healthcare providers. Finally, they dive into the WhatsApp flaw now listed in CISA’s Known Exploited Vulnerabilities and examine the expanding impact of the Salesforce Salesloft Drift supply chain breach affecting major cybersecurity firms.
