Bug bounties: the good and the bad of compute...

A new era of software development is upon us. Career coders are no longer writing code, but rather managing teams of agents that do the work on their behalf. You can Claude Code your way through seemingly just about any problem. So what does that mean for the software we use, and ...  Show more

David and Nilay bought new computers this week, as the MacBook Neo turned out to be a surprisingly great cheap Apple laptop. The hosts discuss their experiences with the machines, from the processor to the keyboard to the mess that is MacOS Tahoe. After that, they talk about the ...  Show more

Ivanti products are under active zero-day exploitation. Phemedrone is a new open-source info-stealer. Bishop Fox finds exposed SonicWall firewalls. GitLab and VMware patch critical vulnerabilities. The Secret Service foils a phishing scam. Europol shuts down a cryptojacking campa ...  Show more

How do the North Koreans get away with it? They do run their cyber ops like a creepy start-up business. A spoofing vulnerability is discovered in Windows CryptoAPI. Python-based malware is distributed via phishing. MacOS may have a reputation for threat-resistance, but users shou ...  Show more

The Five Eyes, alongside a couple of allies, issue a LockBit advisory. AI aids in proofreading phishing attacks. Anonymous Sudan mounts nuisance-level DDoS attacks against US companies. France alleges a disinformation campaign conducted by Russian actors. KillNet says it's partne ...  Show more

In today’s podcast, we talk through the ramifications of Android encryption issues. Experts consider the implications of D-Link vulnerabilities for IoT security. The Wendy’s paycard breach has gotten much bigger. Familiar exploits circulate in the wild, and Mac backdoors make a c ...  Show more