Bug bounties: the good and the bad of compute...

January brings two things in Vergecast-land: CES, and New Years' Resolutions. We start this episode with a dive into the story of this year's biggest tech show, the Lego Smart Brick, which is either a clever way of thinking about creativity or the end of creativity as we know it. ...  Show more

The theme of CES 2026 is gadgets. It's always gadgets. This year more than most, though, the world's biggest tech show is about how fast the hardware world is moving — and how much work the software, and the AI, have to do to catch up. On stage live at the Brooklyn Bowl in Las Ve ...  Show more

Ivanti products are under active zero-day exploitation. Phemedrone is a new open-source info-stealer. Bishop Fox finds exposed SonicWall firewalls. GitLab and VMware patch critical vulnerabilities. The Secret Service foils a phishing scam. Europol shuts down a cryptojacking campa ...  Show more

How do the North Koreans get away with it? They do run their cyber ops like a creepy start-up business. A spoofing vulnerability is discovered in Windows CryptoAPI. Python-based malware is distributed via phishing. MacOS may have a reputation for threat-resistance, but users shou ...  Show more

The Five Eyes, alongside a couple of allies, issue a LockBit advisory. AI aids in proofreading phishing attacks. Anonymous Sudan mounts nuisance-level DDoS attacks against US companies. France alleges a disinformation campaign conducted by Russian actors. KillNet says it's partne ...  Show more

In today’s podcast, we talk through the ramifications of Android encryption issues. Experts consider the implications of D-Link vulnerabilities for IoT security. The Wendy’s paycard breach has gotten much bigger. Familiar exploits circulate in the wild, and Mac backdoors make a c ...  Show more