Bug bounties: the good and the bad of compute...

It's developer conference season, and one of the themes so far has been big swings at AI apps. We've seen Gemini Spark, Microsoft Scout, and so many other attempts to figure out what people, and companies, actually want their AI to do. Nilay and David discuss their experiences wi ...  Show more

Microsoft's commitment to AI is not news. Copilot has been everywhere for... a while now. But at this week's Build developer conference, the company made clear that it wants — and needs — to be a bigger player in the space. The Verge's Tom Warren joins David to talk about the new ...  Show more

Ivanti products are under active zero-day exploitation. Phemedrone is a new open-source info-stealer. Bishop Fox finds exposed SonicWall firewalls. GitLab and VMware patch critical vulnerabilities. The Secret Service foils a phishing scam. Europol shuts down a cryptojacking campa ...  Show more

How do the North Koreans get away with it? They do run their cyber ops like a creepy start-up business. A spoofing vulnerability is discovered in Windows CryptoAPI. Python-based malware is distributed via phishing. MacOS may have a reputation for threat-resistance, but users shou ...  Show more

The Five Eyes, alongside a couple of allies, issue a LockBit advisory. AI aids in proofreading phishing attacks. Anonymous Sudan mounts nuisance-level DDoS attacks against US companies. France alleges a disinformation campaign conducted by Russian actors. KillNet says it's partne ...  Show more

In today’s podcast, we talk through the ramifications of Android encryption issues. Experts consider the implications of D-Link vulnerabilities for IoT security. The Wendy’s paycard breach has gotten much bigger. Familiar exploits circulate in the wild, and Mac backdoors make a c ...  Show more