Vigyata.AI
Is this your channel?

Risky Business (836): You can't patch the bugpocalypse

1.3K views· 43 likes· 61:50· May 6, 2026

🛍️ Products Mentioned (18)

US officials weigh cutting deadlines to fix digital flaws amid worries over AI-powered hacking, sources say | Reuters

Available on reuters

British cyber agency warns of looming ‘patch wave’ as AI speeds flaw discovery | The Record from Recorded Future News

Available on therecord

Federal agencies must patch cPanel bug by Sunday, CISA says | The Record from Recorded Future News

Available on therecord

cPanel zero-day exploited for months before patch release (CVE-2026-41940) - Help Net Security

Available on helpnetsecurity

The most severe Linux threat to surface in years catches the world flat-footed - Ars Technica

Available on arstechnica

New MOVEit vulnerabilities prompt urgent patch warning | Cybersecurity Dive

Available on cybersecuritydive

US and allies urge ‘careful adoption’ of AI agents | Cybersecurity Dive

Available on cybersecuritydive

careful_adoption_of_agentic_ai_services.pdf

Available on cyber

User just tricked Grok and Bankrbot to send tokens with Morse code - Cryptopolitan

Available on cryptopolitan

Finding Zero-Days with Any Model

Available on provos

Nicholas Carlini, Anthropic - Risky Business Media

Available on risky

Trellix investigating breach of source code repository | Cybersecurity Dive

Available on cybersecuritydive

Popular DAEMON Tools software compromised | Securelist

Available on securelist

The Monitoring Tool with a Built-in Reverse Shell | Huntress

Available on huntress

Hackers earning millions from hijacked cargo, FBI says | The Record from Recorded Future News

Available on therecord

Congress punts FISA renewal to June | The Record from Recorded Future News

Available on therecord

Cops Use Apple Data And Car Bluetooth To Identify Crypto Robbery Suspect

Available on forbes

Stewart Baker, outspoken voice on cybersecurity and national security law, dies at 78 | IAPP

Available on iapp

On this week’s show, Patrick Gray and James Wilson are joined by special guest co-host Brad Arkin. They discuss the week’s cybersecurity news, including: * The US Government says we just have to patch faster, but… * Bugs in cPanel, MoveIt and all Linux distributions this week show that patching alone isn’t enough * James gets mad about lame AI Agent adoption advice from the US and Australian Governments * James Kettle and Niels Provos both showed us that any model can find 0day like Mythos * And the cyber-assisted theft of cargo results in an astonishing loss of $725 million dollars This week’s show is sponsored by SpecterOps. Their CTO, Jared Atkinson, chats to Pat about the big changes in the threat landscape, brought about by AI, that are causing a pivot away from detection and remediation, and toward prevention. Show notes: Exclusive: US officials weigh cutting deadlines to fix digital flaws amid worries over AI-powered hacking, sources say | Reuters https://www.reuters.com/legal/litigation/us-officials-weigh-cutting-deadlines-fix-digital-flaws-amid-worries-over-ai-2026-05-01/ British cyber agency warns of looming ‘patch wave’ as AI speeds flaw discovery | The Record from Recorded Future News https://therecord.media/british-cyber-ai-patch-wave Federal agencies must patch cPanel bug by Sunday, CISA says | The Record from Recorded Future News https://therecord.media/cisa-orders-federal-agencies-to-patch-cpanel-bug cPanel zero-day exploited for months before patch release (CVE-2026-41940) - Help Net Security https://www.helpnetsecurity.com/2026/04/30/cpanel-zero-day-vulnerability-cve-2026-41940-exploited/#:~:text=Share-,cPanel%20zero%2Dday%20exploited%20for%20months%20before%20patch%20release%20(CVE,been%20abusing%20it%20even%20earlier. The most severe Linux threat to surface in years catches the world flat-footed - Ars Technica https://arstechnica.com/security/2026/04/as-the-most-severe-linux-threat-in-years-surfaces-the-world-scrambles/ New MOVEit vulnerabilities prompt urgent patch warning | Cybersecurity Dive https://www.cybersecuritydive.com/news/moveit-vulnerabilities-authentication-bypass-privilege-escalation/819187/ US and allies urge ‘careful adoption’ of AI agents | Cybersecurity Dive https://www.cybersecuritydive.com/news/ai-agents-security-guidance-australia-us/819076/ careful_adoption_of_agentic_ai_services.pdf https://www.cyber.gov.au/sites/default/files/2026-05/careful_adoption_of_agentic_ai_services.pdf User just tricked Grok and Bankrbot to send tokens with Morse code - Cryptopolitan https://www.cryptopolitan.com/user-tricked-grok-bankrbot-to-send-tokens/ Finding Zero-Days with Any Model https://www.provos.org/p/finding-zero-days-with-any-model/ (1872) Sponsored: James Kettle built an AI hacker - YouTube https://www.youtube.com/watch?v=GdFG85oCWFI Feature Interview: Nicholas Carlini, Anthropic - Risky Business Media https://risky.biz/RBFEATURES16/ Trellix investigating breach of source code repository | Cybersecurity Dive https://www.cybersecuritydive.com/news/trellix-investigating-breach-source-code-repository/819327/ Popular DAEMON Tools software compromised | Securelist https://securelist.com/tr/daemon-tools-backdoor/119654/ Komari Red: The Monitoring Tool with a Built-in Reverse Shell | Huntress https://www.huntress.com/blog/komari-c2-agent-abuse Hackers earning millions from hijacked cargo, FBI says | The Record from Recorded Future News https://therecord.media/hackers-earning-millions-from-hijacked-cargo-fbi Congress punts FISA renewal to June | The Record from Recorded Future News https://therecord.media/congress-punts-fisa-renewal-to-june Cops Use Apple Data And Car Bluetooth To Identify Crypto Robbery Suspect https://www.forbes.com/sites/the-wiretap/2026/05/05/apple-subpoena-and-car-bluetooth-help-cops-unmask-crypto-robber-suspect/ Stewart Baker, outspoken voice on cybersecurity and national security law, dies at 78 | IAPP https://iapp.org/news/a/stewart-baker-outspoken-voice-on-cybersecurity-and-national-security-law-dies-at-78

🎬 More from Risky Business Media