Kevin Kosh

NEW POD TIME! 🚨 GitLab’s explosive look at North Korea’s “Contagious Interview” APT operation, a fresh batch of already-exploited Ivanti and Dell zero-days, and thoughts on addictive AI coding agents affecting human purpose. (Presented by @tlpblack.bsky.social)

LISTEN pod.link/1414525622

Wynn Resorts confirms data stolen after ShinyHunters threats : Security pros question assurances as company offers staff credit monitoring

No Wynn situation: Resort org confirms breach of staff data, "confirms" bad guys have deleted, tacitly confirms that it paid the ransom. Skepticism ensues. www.theregister.com/2026/02/25/w...

Marquis sues firewall provider SonicWall, alleges security failings with its firewall backup led to ransomware attack | TechCrunch Fintech giant Marquis is suing its firewall provider SonicWall, claiming that an earlier breach with SonicWall allowed hackers to deploy ransomware on Marquis' network.

Marquis de Shade: the claim of SonicWall's culpability in breach related ransomware attacks gets spicier with a formal lawsuit techcrunch.com/2026/02/24/m...

ShinyHunters allegedly drove off with 1.7M CarGurus records : Latest in a rash of grab-and-leak data incidents

Car-Gru: Here's the plan. I target the car company. I breach the car company. I grab the car company data. I sit on the data until Feb 20th. www.theregister.com/2026/02/18/s...

VulnCheck Raises $25 Million in Series B Funding to Scale Vulnerability Intelligence Vulnerability intelligence company VulnCheck has raised $25 million in Series B funding to meet demand for its solutions.

Cut the Check!: vuln management platform snags new funding www.securityweek.com/vulncheck-ra...

Password managers' promise that they can't see your vaults isn't always true Contrary to what password managers say, a server compromise can mean game over.

Some...shall pass: Researchers find that the chances of compromising a password manager isn't high, but it's not "zero". arstechnica.com/security/202...

Canada Goose investigating as hackers leak 600K customer records ShinyHunters, a well-known data extortion group, claims to have stolen more than 600,000 Canada Goose customer records containing personal and payment-related data. Canada Goose told BleepingComputer ...

Silly Goose: Shinyhunters squawking about 600K cust records from premium outerwear brand. Vendor claims no evidence of compromise, and that the gaggle of data likely was migrated from an external source. www.bleepingcomputer.com/news/securit...

New Data Tool Helps Orgs Prioritize Exploited Flaws Smarter KEV Collider combines data from multiple open source vulnerability frameworks to help cybersecurity teams assess which issues need their attention first.

Vuln prioritization continues to be a massive hurdle.
@darkreading.bsky.social explores how our KEVology report + KEV Collider tool help solve "triage fatigue" by turning CISA KEV into an actionable roadmap.

Thanks for the deep dive, @robertlemos.bsky.social!

www.darkreading.com/threat-intel...

LLMs Hijacked, Monetized in 'Operation Bizarre Bazaar' LLMs and MCPs have been hijacked at scale and the unauthorized access sold for profit in Operation Bizarre Bazaar.

How Bizarre, How Bazaar...: Researchers reveal the workings and monetization of a campaign that focuses mainly on self-hosted LLM infrastructure, going after LLMs and MCPs. www.securityweek.com/llms-hijacke...

Fintech firm Marquis blames hack at firewall provider SonicWall for its data breach | TechCrunch The fintech giant said it plans to "seek recoupment of any expenses" from its firewall provider SonicWall after a 2025 data breach exposed customer firewall configurations.

...tear down this Wall!: Finserv firm evaluating ways to open up a path to "seek compensation" from firewall vendor related to a late 2025 breach, where the vendor had seemingly kept the true extent of the breach...walled off. techcrunch.com/2026/01/29/f...

Under Armour says it's 'aware' of data breach claims after 72M customer records were posted online | TechCrunch TechCrunch obtained a sample of the stolen data, which contained names, email addresses, dates of birth, and the user's approximate geographic location. Under Armour confirmed some sensitive informati...

Armour piercing: actor claims to have gotten Under fitness retailer's defenses and stolen PII on 72M customers. Company is "aware" of the claims. techcrunch.com/2026/01/22/u...

Grubhub confirms hackers stole data in recent security breach Food delivery platform Grubhub has confirmed a recent data breach after hackers accessed its systems, with sources telling BleepingComputer the company is now facing extortion demands.

Git your Grub-by hands off...: Food delivery co delivers news of a breach, but leaves mystery meat details absent including connections to the Salesforce driven attacks. www.bleepingcomputer.com/news/securit...

Petco confirms security lapse exposed customers’ personal data | TechCrunch The pet company has published almost no details about what happened, who was affected, and what personal data was exposed.

Wagging the Dog: Petco discloses that an app "setting" allowed certain data to get off the leash.
techcrunch.com/2025/12/05/p...

This Gov & Beyond episode, the team hosts Breaking Defense’s Publisher and Managing Director, David Smith, and the publication’s Editor in Chief, Aaron Mehta to talk about what goes on in the largest news organization dedicated to defense.

Tune in here: w2comm.com/gov-beyond-d...

‘End-to-end encrypted’ smart toilet camera is not actually end-to-end encrypted | TechCrunch Kohler, the makers of a smart toilet camera, can access customers' data stored on its servers, and can use customers’ bowl pictures to train AI.

Encraption: It seems the end-to-end ass-et security claims of a smart toilet end at your own backend, and are worth pretty much what comes out. techcrunch.com/2025/12/03/e...

W2 Communications was proud to serve as a sponsor of the SpaceNews' 2025 ICON Awards! Our team had a great time recognizing and celebrating the excellence and innovation of the space community over the past year. Congratulations to this year's honorees!

Communications programs are often measured by interview and coverage counts. Our new blog explains why securing these results requires methodically building relationships with journalists, and how communicators can establish these connections. w2comm.com/how-to-estab...

Fortinet Woes Continue With Another WAF Zero-Day Flaw A second zero-day vulnerability in Fortinet's web application firewall (WAF) line has raised more questions about the vendor's disclosure practices.

-net loss: Firewall vendor discloses 2nd zero day in less than a week, prompting questions of gross disclosure practices. www.darkreading.com/vulnerabilit...

𝗜𝗻𝘁𝗿𝗼𝗱𝘂𝗰𝗶𝗻𝗴... 𝘁𝗵𝗲 𝗘𝗰𝗵𝗼 𝗔𝘄𝗮𝗿𝗱𝘀! 🏆✨

It’s about time that we recognize the excellent journalists who bring clarity to the fast-moving, complex world of the U.S. Public Sector- from Federal to State & Local to Education.

Stay tuned for more information coming soon! theechoawards.com

You're good, but just a reminder.

Lawmakers say stolen police logins are exposing Flock surveillance cameras to hackers | TechCrunch Flock said around 3% of its law enforcement customers do not use multi-factor authentication, potentially leaving dozens of law enforcement agency accounts open to compromise and improper access.

Sheep: Police plate reader tech maker Flock reaches 97% MFA enablement after FTC accuses them of not being good shepherds of customer security with default controls. 3% have "reasons". Woof. techcrunch.com/2025/11/03/l...

Heed the call of the Tacos....

F5 Says Nation-State Hackers Stole Source Code and Vulnerability Data F5 was recently targeted by state-sponsored threat actors who managed to steal sensitive information from the company’s systems.

Refresh...Refresh...Refresh: F5 reports that nation state actors maintained long-term, persistent access to systems that revealed source code, vuln data and even some customer config and implementation data www.securityweek.com/f5-blames-na...

(Open) House Party: Envious of "party people"? Don't be. Partiful apparently lets you join, since location data of user-uploaded images is invitingly there for the taking... photos.https://techcrunch.com/2025/10/04/event-startup-partiful-wasnt-stripping-gps-locations-from-user-uploaded-photos/

SonicWall: 100% of Firewall Backups Were Breached SonicWall said the breach affected firewall configuration files for all customers using SonicWall’s cloud backup service — up from a previous 5% estimate.

SonicBoom: network security vendor's breach estimates shatter the sound (security) barrier, speeding from 5% to 100% of customers affected by a "cloud backup file incident"that exposed encrypted credentials and backup firewall configuration files. www.darkreading.com/cyberattacks...

Jaguar Land Rover Operations 'Severely Disrupted' by Cyberattack British automobile manufacturer Jaguar Land Rover (JLR) is scrambling to restore applications and operations that were impacted by a cyberattack.

One if by Land...: British automaker sees another significant ransomware attack, marking number two this year for the company, and the Jaguar maker is unable to outrun a significant operational outage. www.securityweek.com/jaguar-land-...

Dutch prosecution service attack keeps speed cameras offline : Who knew zero-days could be so useful to highway speedsters?

Screeching halt: speed cameras crash across the Netherlands due to a cyberattack on the Dutch Public Prosecution Service exploiting Citrix vulns. www.theregister.com/2025/08/15/c...

Nearly 2,000 MCP Servers Possess No Security Whatsoever Authentication in MCP — the backbone of agentic AI — is optional, and nobody's implementing it. Instead, they're allowing any passing attackers full control of their servers.

End of Line: AI customers seem without a CLU as nearly all MCP servers are exposed with no authentication checks of any kind www.darkreading.com/vulnerabilit...

750,000 Impacted by Data Breach at The Alcohol & Drug Testing Service The Alcohol & Drug Testing Service (TADTS) says personal information was stolen in a July 2024 ransomware attack.

High and Dry: Alcohol and Drug Testing Service gets smoked by ransomware gang, losing PII on more than 750K individuals. www.securityweek.com/750000-impac...

McDonald’s AI Hiring Bot Exposed Millions of Applicants’ Data to Hackers Who Tried the Password ‘123456’ Basic security flaws left the personal info of tens of millions of McDonald’s job-seekers vulnerable on the “McHire” site built by AI software firm Paradox.ai.

Not lovin it...: Researchers find an unhappy meal of 64 million records containing candidate chats with McDonald's AI hiring chatbot, driving thru the data with a kids meal password of 123456. www.wired.com/story/mcdona...