Risky Business #831
Risky Business Podcast
April 01, 2026
Risky Business #831 -- The AI bugpocalypse begins
Presented by
Enterprise Technology Editor
Technology Editor
CEO and Publisher
On this weekās show, Patrick Gray, Adam Boileau and James Wilson discuss the weekās cybersecurity news. They cover:
- Those pesky North Koreans shim a backdoor into a 100M-downloads-a-week npm package
- TeamPCP appear to have ransacked Ciscoās source and cloud environments
- AI is getting legitimately good at being told to ājust go find some 0day in thisā
- Kaspersky says Coruna and Triangulation do share code lineage
- Iranian hackers dump Kash Patelās gmail spool
- Oh, and of course thereās a Citrix Netscaler memory leak being exploited in the wild
This weekās episode is sponsored by Dropzone AI, who make automated AI SOC analysts. Head honcho Ed Wu explains how theyāve built pre-canned āhunt packsā to lead the AI off into your environment to find weird, interesting and security relevant things.
This episode is also available on Youtube.
Brought to you by Dropzone AI
AI SOC Analysts that never sleep. So you can.
Show notes
Google links axios supply chain attack to North Korean group | The Record from Recorded Future News
Cisco source code stolen in Trivy-linked dev environment breach
h0mbre on X: "Claude is somehow better at kernel exploitation than creating meal plans."
Vulnerability Research Is Cooked ā Quarrelsome
MAD Bugs: vim vs emacs vs Claude - Calif
MAD Bugs: Claude Wrote a Full FreeBSD Remote Kernel RCE with Root Shell (CVE-2026-4747)
A Risky Biz Experiment: Hunting for iOS 0day with AI - Risky Business Media
Security leaders say the next two years are going to be 'insane' | CyberScoop
Coruna framework: an exploit kit and ties to Operation Triangulation | Securelist
Apple says no one using Lockdown Mode has been hacked with spyware | TechCrunch
Reverse engineering Appleās silent security fixes - Calif
Meta and YouTube found liable in social media addiction trial
Iranian hackers publish emails allegedly stolen from Kash Patel
Drop Site on X: "IRGC: From now on, for every assassination, an American company will be destroyed"
Citrix NetScaler products confirmed to be under exploitation | Cybersecurity Dive
Using a VPN May Subject You to NSA Spying | WIRED
Post reporters called the White House. Their phones showed āEpstein Island.ā - The Washington Post
How it works
Once you click Generate, Ollama reads this article and crafts 5 comprehension questions. Your answers are graded against the article content ā general knowledge won't be enough. Score 70+ to count toward your certificate.
Questions are cached ā you'll always get the same 5 for this article.