Risky Bulletin

RubyGems disables sign-ups after an attack on staff, Instructure paid the ransom, the Gentlemen ransomware operation gets hacked, and another major supply chain attack on npm (yawn).



Show notes



Risky Bulletin: RubyGems disables sign-ups after attack on staff

In this edition of Between Two Nerds Tom Uren and The Grugq discuss why it makes even more sense for criminal organisations to adopt AI as compared to regular businesses.

This episode is also available on YouTube.



Show notes



Microsoft's 2026 Work Trend Index Annual Report


Cybersecurity Looks Like Proof of Work Now


On the Hunt for FIN7

The FCC relaxes its foreign router ban to allow for security updates, the ShinyHunters group disrupts schools across the globe, a 21-year-old remote code execution bug turns up in FreeBSD, and another Linux privilege escalation bug was disclosed… without a patch.



Show notes



Risky Bulletin: FCC relaxes foreign router ban to allow for security updates

In this sponsored interview Patrick Gray chats with Knocknoc CEO Adam Pointon about their Greynoise integration.

Knocknoc allowlists network connections from users’ IPs after they’ve been through an SSO challenge. It’s great for protecting vulnerable or risky assets that your org has to connect to the internet. But what happens when one of your users tries to authenticate from a bad IP? You probably don’t want to add that one to your allowlist!

Thanks to Knocknoc’s new Greynoise integration, you don’t have to!



Show notes

Palo Alto Networks patches a firewall zero-day, Google patches an Android remote takeover bug, Ivanti also patches one, and a leak exposes Russia’s spy and hacker school.



Show notes



Risky Bulletin: Google patches Android remote takeover bug