In the Security News:

• Claude leaks source code and new models
• Two really smart people say AI is finding vulnerabilities better than ever
• Windows is using your internet to send updates to strangers
• BIG-IP APM vulnerability - all you need to know
• Linux KVM for the win
• The bus factor and open source
• Axios supply chain breach
• Trimming Grub
• Depotting and hacking e-Motorcycles
• Trivy and Cisco source code leaks
• The FCC ban and What is a router?

Visit https://www.securityweekly.com/psw for all the latest episodes!

Show Notes: https://securityweekly.com/psw-920

In this segment, we will explore some pretty awesome tools for scanning the Internet, with a focus on network edge devices. We'll bring it all together with Claude Code and look at some sample results. Tools include:

• Shodan | Passive recon — query existing scan data for exposed devices, services, and vulns | Passive (API) | Instant (no packets sent)
• ZMap | Host discovery — find live hosts with open ports | L4 (TCP SYN, UDP, ICMP) | Millions of packets/sec
• ZGrab2 | Application-layer handshakes — grab banners, certs, headers | L7 (30+ protocol modules) | Thousands of hosts/sec
• Nerva | Service fingerprinting — identify 140+ protocols with metadata, CPEs, technology stacks | L7 (TCP, UDP, SCTP) | Fast, concurrent
• Nuclei | Template-based vulnerability scanning — default creds, exposed panels, known CVEs | L7 (HTTP, network) | Hundreds of targets/min
• Shannon | Vulnerability exploitation — AI-powered whitebox pentesting of web apps | Application | ~1-1.5 hrs per target
• edgescan.py | Automated pipeline — orchestrates all tools above into a single command | Orchestration | End-to-end

Visit https://www.securityweekly.com/psw for all the latest episodes!

Show Notes: https://securityweekly.com/psw-919

In this episode, we sit down with the Radare community leader, Pancake, the creator of the Radare2 reverse engineering framework. Whether you've never heard of Radare, already use it daily, or are thinking about contributing to its development, this conversation will demystify what makes Radare unique, why thousands of engineers rely on it, and how you can step into the community.

This segment is sponsored by NowSecure. Discover how AI-powered mobile app security testing finds hidden vulns and leaks at https://securityweekly.com/nowsecure.

In the security news:

• The US national cyber strategy
• in the category of dumb laws and 3d printing guns
• Iranian threat analysis
• ESP32 Bus Pirate gets some amazing updates
• I can reset the admin password
• Rick-rolling yourself
• Chrome 0days
• Re-purposing those old Ubiquiti cloud keys
• The new TLS certificate lifecycle
• A Flipper Zero add-on and news on the FlipperOne
• glassword malware
• Do you care about exploits or patching?
• attacking nuclear research centers
• how we uncovered 9 vulnerabilities in IP KVMs
• and hacking your laundry card with Claude

Visit https://www.securityweekly.com/psw for all the latest episodes!

Show Notes: https://securityweekly.com/psw-918

In the security news this week:

• The XZ backdoor documentary
• Zero days - the clock isn't ticking
• Vulnerability Mis-Management
• Reversing traffic light controllers
• Reversing with Claude
• Don't curl to bash!
• Reading CVEs makes my head hurt
• Dumping browser secrets
• I open-sourced a new(ish) tool
• D-LINK exploits
• There is no password
• I control the building
• When old vulnerabilities become new
• Tile is for stalkers
• Hacking AI
• Iran War: What cybersecurity needs to know
• National cyber strategy
• Coruna
• I got phished and I want a refund

Visit https://www.securityweekly.com/psw for all the latest episodes!

Show Notes: https://securityweekly.com/psw-917

In the security news this week:

• Remembering "FX"
• Finding and analyzing Windows drivers
• Network monitoring with Gibson
• the backdoor in your PAM
• The edge is fraying - and attackers have the advantage
• Age verification for Linux?
• Banning AI
• TPMS tracking
• BLE tracking
• weird strings
• Airsnitch
• RESURGE in and on Ivanti
• Attackers using Claude
• Government iPhone hacking kits
• Cisco SD-WAN, Linux, and 2023
• Leakbase leaks
• and Bro, upgrade your solar panel!

Visit https://www.securityweekly.com/psw for all the latest episodes!

Show Notes: https://securityweekly.com/psw-916

First up is a technical segment called "Paul's Linux Hacks". I finally got around to releasing a bunch of scripts and tutorials for Linux that I've created over the years. We'll go over scripts that can give you a supply chain security report and help you update your Arch-based Linux systems and the tutorial for using Linux KVM/Qemu/Libvirt. Repo is here: https://github.com/pasadoorian/Linux_Hacks

Next up is the security news:

• Controlling 7,000 robot vacuums
• Curl finds not all AI is bad
• Palo Alto says "These are not the ties to China you were looking for"
• Bloomberg writes an article that sheds light on Ivanti
• Looking for BLE is a trend
• Don't use AI to generate you passwords
• New research on hacking Samsung TVs
• Its not all about gadgets
• Ring's new bug bounty
• Paul will be voted in as Prime Minister of Denmark?
• Hacking AI, AI does some hacking, and hackers are talking about AI

Visit https://www.securityweekly.com/psw for all the latest episodes!

Show Notes: https://securityweekly.com/psw-915

AI says that this is the show where we turn coffee into threat intelligence and cigar smoke into packet captures. This week:

• a firmware backdoor living its best life inside Android tablets
• a fresh BeyondTrust RCE that already has scanners circling like seagulls over a french fry.
• Lenovo Vantage reminds us that "preinstalled convenience" is just another way to spell "attack surface."
• Texas is taking a swing at TP-Link
• supercomputers with a 20-year-old Munge bug that still has teeth.
• Your AI coding assistant might be quietly squirreling away secrets
• macOS gets a visit from an infostealer delivered as helpful add-ons
• Chrome extensions allegedly spy on millions
• open source maintainers drowning in AI-generated nonsense
• Windows flirting with smartphone-style permission prompts.

Put your passwords in a vault, not in a repo, and stay tuned for Paul's Security Weekly!

Visit https://www.securityweekly.com/psw for all the latest episodes!

Show Notes: https://securityweekly.com/psw-914

In the security news:

• Viral AI prompts
• Things to do in your home security lab
• I can open your garage door
• They call me DKnife
• Beyondtrust RCE
• Cool AI device
• Robots need your body
• Meta is just full of scams, phishing, and malware
• Claude Opus 4.6 found more than 500 high-severity vulnerabilities
• Arista next gen firewalls and command injection
• Secure Boot updates
• The RCE AMD won't fix and why the article went away
• End of support means get it off the network
• Accidentally giving away $44 billion of Bitcoin

Visit https://www.securityweekly.com/psw for all the latest episodes!

Show Notes: https://securityweekly.com/psw-913

In the security news this week:

• Residential proxy abuse is everywhere this week: from Google's takedown of IPIDEA to massive Citrix NetScaler scanning and the Badbox 2.0 botnet
• Supply chain fun time: Notepad++ updates were hijacked
• Attackers set their sights on: Ivanti EPMM, Dell Unity storage, Fortinet VPNs/firewalls, and ASUSTOR NAS devices
• Russian state hackers went after Poland's grid
• Is ICE on a surveillance shopping spree and into hacking anti-ICE apps?
• Ukraine's war-time Starlink problem is turning into a policy and controls experiment
• The AI security theme is alive and well with exposed LLM endpoints, OpenClaw/Moltbot/Moltbook fiasco, and letting anyone hijack agents
• Signed forensic driver for Windows is still an EDR killer
• The Trump administration's rollback of software security attestation
• National Cyber Director Sean Cairncross says: "less regulation, more cooperation."
• Finally, there are some "only in infosec" human stories: * pen testers arrested in Iowa now getting a settlement, * a Google engineer convicted over stolen AI IP, * Booz Allen losing Treasury work over intentional insider leaks, * and an "AI psychosis" saga at an adult-content platform.

Visit https://www.securityweekly.com/psw for all the latest episodes!

Show Notes: https://securityweekly.com/psw-912

This week, we get un-curmudgeoned by Mandy, spending a bunch of time talking about regulations, compliance, and even the US federal government's commitment to cybersecurity internally and with the community at large. We even dive into some Microsoft patches, hacking defunct eScooters, and a lively discussion on ADS-B spoofing!

Visit https://www.securityweekly.com/psw for all the latest episodes!

Show Notes: https://securityweekly.com/psw-911

In the security news:

• Rainbow tables for everyone
• Lilygo releases a new T-Display that looks awesome
• AI generated malware for real
• Detecting BadUSB when its not a dongle
• A telnetd vulnerability
• Google Fast Pair and how I took control of your headset
• Should we make CVE noise?
• Exploiting the Fortinet patch
• DIY data diode
• Bambu NFC reader for your Flipper
• Payloads in PNG files
• Don't leave the lab door open - amazing research and new tool release
• Fixing your breadboards
• Finding vulnerabilities in AI using AI

Then, Rob Allen from ThreatLocker joins us to discuss default allow, and why that is still a really bad idea.

This segment is sponsored by ThreatLocker. Visit https://securityweekly.com/threatlocker to learn more about them!

Visit https://www.securityweekly.com/psw for all the latest episodes!

Show Notes: https://securityweekly.com/psw-910