Cybersecurity Today

Microsoft's dispute with a former security researcher takes a dramatic turn as the company raises the possibility of criminal action over the publication of proof-of-concept code for unpatched zero-day vulnerabilities. David Shipley examines the escalating conflict between Microsoft and "Nightmare Eclipse," the criticism from prominent security researchers including Kevin Beaumont and Katie Moussouris, and what the controversy could mean for the future of vulnerability disclosure.
Cybersecurity Today would like to thank Material Security for sponsoring this podcast. Material Security provides faster, more complete detection and response for email, identity, and data threats inside Google Workspace and Microsoft 365. You can contact them at material[dot]security.
The episode also explores a new category of insider risk after U.S. prosecutors charged Google security engineer Michael Spagnuolo with allegedly using confidential Google search trend data to earn more than $1.2 million on the prediction market Polymarket. The case highlights how prediction markets may create unexpected incentives around non-financial corporate information.
Also covered: active exploitation of Palo Alto Networks' GlobalProtect VPN authentication bypass vulnerability CVE-2026-0257, now added to CISA's Known Exploited Vulnerabilities (KEV) catalogue, and a malware campaign that abuses legitimate ChatGPT sharing pages and Google Ads to trick users into downloading malicious software. Researchers also report similar abuse of Anthropic's Claude Artifacts feature.
Chapters
00:00 Top Headlines Rundown
00:26 Microsoft vs Zero-Day Researcher
01:28 Responsible Disclosure Fallout
03:32 Why This Dispute Matters
04:32 Polymarket Insider Trading Case
06:07 Prediction Markets Create New Insider Risks
06:55 Palo Alto VPN Authentication Bypass
08:25 ChatGPT Pages Used to Deliver Malware
09:51 Wrap Up and Sign Off
Cybersecurity Today is Canada's leading daily cybersecurity news podcast, covering ransomware, vulnerabilities, nation-state threats, cybercrime, security research, privacy, and critical infrastructure security.
#Cybersecurity #Microsoft #PaloAltoNetworks #ChatGPT #OpenAI #Google #Polymarket #ThreatIntelligence #InfoSec #CyberSecurityToday

As concerns about artificial intelligence move from theory to reality, a growing public backlash is beginning to take shape.
In this episode of Project Synapse, Jim Love, Marcel Gagné, and John Pinard explore the rise of the AI "techlash" and the growing fears around job displacement, economic inequality, data centre expansion, and AI-driven cybersecurity risks.
The discussion covers warnings from AI researchers about workforce disruption, public resistance to AI adoption, the economics behind massive AI infrastructure investments, and emerging concerns around AI-powered vulnerability discovery and critical infrastructure security.
The panel also examines Canada's encryption backdoor debate, the future of decentralized communications, Google's new Omni avatar technology, and Marcel's experiment building a personal AI assistant using local Gemma models.
Whether you're optimistic about AI or increasingly skeptical, this conversation explores the opportunities, risks, and difficult questions shaping the next phase of the AI era.
CHAPTERS
00:00 Cold Open and Credits
00:55 The AI Techlash Begins
03:05 Yann LeCun on the Limits of LLMs
05:26 Could 30% of Jobs Disappear?
07:56 Youth Employment and Economic Risk
10:18 Universal Basic Income and Social Supports
11:59 The Myth of Replacement Jobs
14:12 Is AI Dumbing Down Culture?
17:33 Wealth Concentration and AI Power
19:20 The Work Humans Still Do Best
21:45 Greed, Incentives, and Reality
22:33 Pope Leo on Human-Centred AI
26:03 Celebrity Backlash Against AI
27:22 Data Centres, Costs, and AI Economics
30:41 Climate Change Parallels and AI Growth
33:04 Blame Technology or Leadership?
33:52 Solar-Powered Homes and Energy Policy
34:48 The AI Cover Art Controversy
37:29 Fighting AI Slop Online
38:58 AI-Powered Vulnerability Discovery
41:33 The Maple Syrup Cyberattack Story
46:36 Canada's Encryption Backdoor Debate
51:13 The Future of Smartphone Mesh Networks
52:53 Google's Omni Avatar Video Demo
01:03:51 Building a Personal Nexus Agent
01:08:27 Small AI Models Running Locally
01:09:49 Wrap Up and Discord
#ProjectSynapse #ArtificialIntelligence #AIJobs #DataCentres #Cybersecurity #GenerativeAI #MachineLearning #TechPodcast #TechNews #ChatGPT #Gemma #AIBacklash

Host David Shipley speaks with cybersecurity professional Cheryl Biswas about her journey into the industry and why she believes Arctic sovereignty must be viewed as a cybersecurity challenge as much as a geopolitical one.
Biswas traces her path from political science and a help desk role at CP Rail to cybersecurity, inspired by the discovery of the Stuxnet malware and the global security community that formed around it. She discusses her experiences speaking at BSides Las Vegas, attending DEF CON, helping build a major Canadian bank's threat intelligence program, and recently earning her Certified Information Systems Security Professional (CISSP) designation.
The conversation then shifts north. As Canada invests billions in Arctic defence, communications, transportation, and critical infrastructure, Biswas explains how every new connected system can create new cyber risks. The discussion covers threats to satellites, navigation systems used by ships and aircraft, undersea communications cables, government services, healthcare, energy systems, and the fragile supply chains that support northern communities.
They also explore why collaboration with northern and Indigenous communities is essential, the importance of improving connectivity across the Arctic, and how Canada can work more closely with international partners to strengthen resilience in one of the world's most strategically important regions.
Cheryl also shares advice for newcomers to cybersecurity and discusses the kind of strategic threat intelligence and research work she hopes to pursue in the future.
Chapters
00:00 Weekend Show Kickoff
00:46 Cheryl's Cyber Origin Story
02:30 Stuxnet and Hacker Community
04:06 From BSides to DEF CON
05:10 Threat Intelligence Career Today
05:50 Arctic Sovereignty Meets Cyber
07:41 Canada's Arctic Reality Check
10:14 Why Cyber Matters Up North
12:07 Maritime and Navigation Risks
15:50 Undersea Cables and Fragile Supply
19:55 Solutions, Collaboration and Technology
24:22 Talk Feedback and How to Connect
25:42 Dream Role and Advice to Newcomers
29:16 Closing Reflections and Sendoff
#Cybersecurity #ArcticSovereignty #Canada #CriticalInfrastructure #ThreatIntelligence #CISSP #CyberSecurityToday #DavidShipley #DEFCON #BSides #ArcticSecurity #NationalSecurity #CriticalInfrastructureProtection #ThreatIntel #CyberRisk

CISA has ordered U.S. federal civilian agencies to urgently patch an actively exploited critical Drupal SQL injection vulnerability (CVE-2026-9082) affecting PostgreSQL-backed Drupal deployments, after Imperva reported more than 15,000 attack attempts across 65 countries. Microsoft has confirmed a strange Windows Server 2016 update issue where KB5087537 can break domain controller discovery when server hostnames are exactly 15 characters long, raising more questions about patch reliability as update complexity grows.
Google has joined a coalition opposing Canada's proposed lawful access legislation, Bill C-22, warning that secret ministerial orders, possible encryption risks, and mandatory metadata retention could weaken security rather than improve it. Critics point to the Salt Typhoon telecom espionage campaign as evidence that lawful intercept systems themselves can become prime targets.
Also in this episode: Check Point says Iran-linked threat group Nimbus Manticore has deployed new malware tools including MiniFast and MiniJunk V2, with researchers noting signs that MiniFast may have been developed with AI-assisted coding techniques. The campaign used SEO poisoning and fake Oracle SQL Developer downloads to lure victims.
Timestamps:
00:00 Top Headlines Rundown
00:27 Emergency Drupal Patch Order
02:22 Microsoft Server Update Bug
04:02 Canada Lawful Access Battle
05:18 Google's Security Concerns
06:25 Salt Typhoon Lessons
07:35 Iran-Linked AI Malware
09:26 SEO Poisoning Attack
10:09 Wrap Up and Sign Off

Is AI about to trigger a cybersecurity vulnerability explosion?
In this episode of Cybersecurity Today, David Shipley examines what some researchers are calling the early signs of a "vulnerability apocalypse" as Anthropic's Claude-powered Project Glasswing identifies thousands of potential software flaws at machine speed.
The episode breaks down the real numbers behind the hype: over 10,000 candidate vulnerabilities flagged, 1,726 confirmed high or critical findings, 97 patched issues, and the growing concern that AI-driven bug hunting could overwhelm already stretched security teams. One example: a critical WolfSSL certificate forgery vulnerability (CVE-2026-5194, CVSS 9.1).
Also in this episode: Canadian authorities arrest Ottawa suspect Jacob Butler, also known as "Dort," allegedly linked to the Kim Wolf botnet operation blamed for nearly 30 terabits-per-second distributed denial-of-service (DDoS) attacks and more than 25,000 incidents.
We also cover active exploitation of a Ghost CMS SQL injection vulnerability (CVE-2026-26980), with attackers reportedly compromising hundreds of websites using ClickFix malware lures, including high-profile targets.
And finally, an Iran-linked cyber espionage campaign dubbed "Screening Serpents" uses highly personalised fake recruitment approaches to target aerospace, defence, and telecom professionals with new remote access malware.
If you work in cybersecurity, infrastructure, or IT leadership, this is one to watch.
00:00 Vunpocalypse Headlines
00:28 AI Finds Vulnerabilities
01:32 False Positives and Costs
02:39 WolfSSL Critical CVE
03:51 Patch Volume Pressure
04:28 Kim Wolf Botnet Arrest
05:13 Botnet Scale and Swatting
06:48 International Takedowns
07:41 Ghost CMS Mass Exploits
09:07 ClickFix Infection Chain
10:25 How to Remediate Ghost
10:39 Iran Spear Phishing Ops
12:51 Closing and Sign Off
#Cybersecurity #CyberSecurityToday #AIsecurity #GhostCMS #DDoS #CyberEspionage #Anthropic #ClaudeAI #IranCyberThreat #InfoSec