Displaying items 1-10 of 74 in total of Three Buddy Problem with the tag "apt research".
-
From Epstein to Notepad++: Redactions, Zero-Days and Supply Chain Attacks
February 8th, 2026 | 2 hrs 17 mins
ai, apt research, automation, cyberespionage, nation-state, ransomware, zero-day
(Presented by Thinkst Canary. Most Companies find out way too late that they’ve been breached. Thinkst Canary changes this. Deploy Canaries and Canarytokens in minutes and then forget about them. Attackers tip their hand by touching ’em giving you the one alert, when it matters. With 0 admin overhead and almost no false-positives, Canaries are deployed (and loved) on all 7 continents.)
Three Buddy Problem - Episode 84: We process the cybersecurity fallout from the latest Epstein document dump, focusing on why redactions fail in the AI era and how quickly modern tools can unravel them. The conversation moves from sloppy redaction practices and exploit mythology to harder questions about ethics, accountability, and silence within the infosec community.
Plus, inside the Notepad++ supply-chain compromise attributed to a known Chinese APT, Microsoft’s security executive changes, Anthropic's AI-driven vulnerability discovery, China-linked network implants, and Lockdown Mode thwarting FBI investigators.
Cast: Ryan Naraine, Costin Raiu and Juan Andres Guerrero-Saade.
-
A destructive cyberattack in Poland raises NATO 'red-line' questions
January 30th, 2026 | 2 hrs 53 mins
ai, apt research, cyberespionage, nation-state, ransomware, zero-day
(Presented by Material Security: We protect your company’s most valuable materials -- the emails, files, and accounts that live in your Google Workspace and Microsoft 365 cloud offices).
Three Buddy Problem - Episode 83: Poland's CERT documents a rare, explicit wiper attack on civilians in a NATO country, including detailed attribution of a Russian government op targeting the electric grid in the heart of winter. We examine why this crosses a long-avoided threshold, why attribution suddenly matters again, and what it says about pre-positioned access, vendor insecurity, and the shrinking gap between cyber operations and acts of war.
Plus, another Fortinet fiasco, a new batch of Ivanti zero-days under attack, an emergency patch from Microsoft and the return of the mysterious KasperSekrets account.
Cast: Ryan Naraine, Costin Raiu and Juan Andres Guerrero-Saade.
-
Cheap, AI-generated zero-days and the real meaning of ‘advanced’ malware
January 23rd, 2026 | 2 hrs 9 mins
ai, apt research, cyberespionage, nation-state, ransomware, zero-day
(Presented by Material Security: We protect your company’s most valuable materials -- the emails, files, and accounts that live in your Google Workspace and Microsoft 365 cloud offices).
Three Buddy Problem - Episode 82: We parse news that China-linked VoidLink is a malware framework created entirely by AI and the collapsing line between elite APT operations and everyday threat actors.
Plus, a new Sean Heelan essay on low-cost exploit generation and why “AI guardrails” are mostly a comforting myth; AI slop overwhelming bug bounty programs; CISA's new Brickstorm YARA rules; and fresh research on a wiper-malware found in Russian attacks against Poland's electricity sector.
Cast: Ryan Naraine, Costin Raiu and Juan Andres Guerrero-Saade.
-
Google Pixel 'zero-click' exploit caused by AI, mysterious Poland grid attacks, China bans US cybersecurity software
January 16th, 2026 | 2 hrs 24 mins
ai, apt research, cyberespionage, government, nation-state, ransomware, zero-day
(Presented by Material Security: We protect your company’s most valuable materials -- the emails, files, and accounts that live in your Google Workspace and Microsoft 365 cloud offices).
Three Buddy Problem - Episode 81: We dissect New York Times reporting on the "precision" of US cyber operations in Venezuela, the competing narratives around offensive cyber capabilities and "letters of marque" for private hackers. Plus, a mysterious failed cyber attack on Poland's power grid, internet blackouts in Iran (with fascinating DNS telemetry revealing Chinese bank traffic and Russian website spikes), and news of China's ban on US/Israeli cybersecurity software.
We also cover Check Point's research on "VoidLink" (is it a successor to ShadowPad?), Microsoft's threat intelligence sharing practices, and Google Project Zero's disclosure of zero-click vulnerabilities caused by AI-powered transcription features.
Cast: Ryan Naraine, Costin Raiu and Juan Andres Guerrero-Saade.
-
Hamid Kashfi on the situation in Iran; Did cyber cause Venezuela blackouts?
January 9th, 2026 | 2 hrs 13 mins
ai, apt research, cyberespionage, cyberwar, nation-state, ransomware, zero-day
(Presented by Material Security: We protect your company’s most valuable materials -- the emails, files, and accounts that live in your Google Workspace and Microsoft 365 cloud offices).
Three Buddy Problem - Episode 80: Researcher Hamid Kashfi returns to unpack Iran’s latest unrest, separating economic reality from propaganda while examining how information control, cyber pressure, and state surveillance are shaping events on the ground.
Plus, did cyber make the lights go out in Venezuela?
Cast: Hamid Kashfi, Ryan Naraine, Costin Raiu and Juan Andres Guerrero-Saade.
-
A special mailbag episode with book recommendations
January 2nd, 2026 | 3 hrs 1 min
ai, apt research, cyberespionage, nation-state, ransomware, zero-day
(Presented by Material Security: We protect your company’s most valuable materials -- the emails, files, and accounts that live in your Google Workspace and Microsoft 365 cloud offices).
Three Buddy Problem - Episode 79: We cover MongoBleed (CVE‑2025‑14847), exposed MongoDB deployments, and the sad realization that zero-day attacks are a normal, everyday occurrence. Plus, AI’s expanding role and misuse across products and workflows, proximity attacks against Bluetooth audio devices, spyware sanctions de-listings, and ransomware economics.
In a special mailbag segment, we give our book recommendations and respond to common questions from the listeners.
Cast: Ryan Naraine, Costin Raiu and Juan Andres Guerrero-Saade.
-
Quiet Wins, Loud Failures: A Year-End Cybersecurity Reckoning
December 26th, 2025 | 3 hrs 19 mins
ai, apt research, cyberespionage, nation-state, ransomware, zero-day
(Presented by ThreatLocker: Allow what you need. Block everything else by default, including ransomware and rogue code).
Three Buddy Problem - Episode 78: We close out the year with a no-budget, no-permission awards show, spotlighting the cybersecurity stories that actually mattered.
Plus, a bizarre polygraph scandal at CISA, Chinese APT research dumps, ransomware pre-notification hiccups, foreign drone bans, and the growing gap between cyber theater and real operational value.
Cast: Ryan Naraine, Costin Raiu and Juan Andres Guerrero-Saade.
-
What's behind US gov push to 'privatize' offensive cyber operations?
December 20th, 2025 | 2 hrs 1 min
ai, apt research, cyberespionage, nation-state, ransomware, zero-day
(Presented by ThreatLocker: Allow what you need. Block everything else by default, including ransomware and rogue code).
Three Buddy Problem - Episode 77: New React2Shell data from Microsoft, fresh Apple and Cisco zero-days already in the wild, and state-linked campaigns from Russia and China that show a merging of espionage, crime, and infrastructure disruption.
Plus, the US government's push to enlist private firms in offensive hacking, letters of marque for cartels, new discovery of spyware used against journalists in Belarus, and Amazon catching North Koreans via keystroke latency.
Cast: Ryan Naraine, Costin Raiu and Juan Andres Guerrero-Saade.
-
Legal corruption, React2Shell exploitation, dual-use AI risks
December 11th, 2025 | 2 hrs 12 mins
ai, apt research, cyberespionage, nation-state, ransomware, zero-day
(Presented by ThreatLocker: Allow what you need. Block everything else by default, including ransomware and rogue code).
Three Buddy Problem - Episode 76: On the show this week, Costin walks through how a single Romanian documentary kick-started nationwide protests, exposing how corruption can be perfectly legal when the law itself is gamed, and why this moment feels different, darker, and more consequential than past flare-ups.
Plus, news on the React-to-Shell exploitation wave overwhelming the internet, why patching is structurally hard, and how APTs and criminals are converging on the same fragile dependency chain. Along the way, they take aim at Microsoft’s shrinking transparency, the limits of vendor trust, and what it really means when defenders are told (again) to just patch and pray.
Cast: Ryan Naraine, Costin Raiu and Juan Andres Guerrero-Saade.
-
APTs pounce on React2Shell; BRICKSTORM backdoors; .gov surveillance
December 6th, 2025 | 1 hr 41 mins
ai, apt research, cyberespionage, nation-state, ransomware, zero-day
(Presented by ThreatLocker: Allow what you need. Block everything else by default, including ransomware and rogue code).
Three Buddy Problem - Episode 75: We dig into a CVSS 10/10 unauthenticated RCE bug causing chaos across the internet and early signs that Chinese APTs are already launching exploits, the cascading patch chaos, and a long tail of malware intrusions to come.
Plus, commentary on Chrome’s telemetry collection, Microsoft and the "SFI success story," newest BRICKSTORM backdoor intrusions, the US national security strategy, Anthropic's AI popping smart-contract bugs, a secret FBI ransomware-hunting unit getting weird, and a pair of sad stories in the security community.
Cast: Ryan Naraine, Costin Raiu and Juan Andres Guerrero-Saade.