Now Playing
Tata-Apple IP Theft, Stryker Wiper & Cisco Unified CM Zero-Day
Audio is available on Spreaker — see link below.
630GB of Apple manufacturing schematics stolen via Tata Electronics, Iranian wiper malware shuts down Stryker across 79 countries, and a live Cisco Unified CM zero-day is dropping webshells in enterprise networks. Today's briefing also covers the Klue-to-LastPass OAuth chain attack, ShinyHunters' $65M Telus demand, and a critical patch wave hitting Nginx, PostgreSQL, and FortiGate.
Audio is available on Spreaker — see link below.
Six hundred and thirty gigabytes of Apple manufacturing data is now in attacker hands. That's the headline this cycle, and the implications reach well beyond one vendor.
The Stryker attack tells a different story, and it's worth separating clearly from the extortion model most listeners are familiar with. The Handala hacktivist group, linked to Iranian state-aligned actors, deployed wiper malware against the medical device company.
On the vulnerability front, the most urgent item is Cisco Unified Communications Manager. CVE-2026-20230, an SSRF flaw, is being actively exploited in the wild to drop webshells and achieve remote code execution.
Two other developments deserve attention this cycle, and they're connected by a common thread. ShinyHunters claims to have stolen nearly one petabyte from Telus Digital, with a sixty-five million dollar ransom demand attached.
This week's patch load is heavy. Emergency RCE flaws in Nginx and a privilege escalation vulnerability in PostgreSQL require immediate updates across RHEL, Ubuntu, Debian, and Oracle Linux.
What ties this cycle together is vendor infrastructure as the primary attack surface. The Tata breach, the Klue-to-LastPass chain, the FortiGate campaign: all three reached their ultimate targets through third parties.
Chapter summary auto-generated from the verified script. Listen to the full episode for the complete content.