Hiding in plain sight with vibe coding.

Jun 14, 2025

Hiding in plain sight with vibe coding.

This week, Dave is joined by ⁠Ziv Karliner⁠, ⁠Pillar Security⁠’s Co-Founder and CTO, sharing details on their work on "New Vulnerability in GitHub Copilot and Cursor: How Hackers Can Weaponize Code Agents." Vibe Coding - where developers use AI assistants like GitHub Copilot and Cursor to generate code almost instantly - has become central to how enterprises build software today. But while it’s turbo-charging development, it’s also introducing new and largely unseen cyber threats. The team at Pillar Security identified a novel attack vector, the ⁠"Rules File Backdoor"⁠, which allows attackers to manipulate these platforms into generating malicious code. It represents a new class of supply chain attacks that weaponizes AI itself, where the malicious code suggestions blend seamlessly with legitimate ones, bypassing human review and security tools.

Research Saturday

Hiding in plain sight with vibe coding.

Jun 14, 2025

Hiding in plain sight with vibe coding.

This week, Dave is joined by ⁠Ziv Karliner⁠, ⁠Pillar Security⁠’s Co-Founder and CTO, sharing details on their work on "New Vulnerability in GitHub Copilot and Cursor: How Hackers Can Weaponize Code Agents." Vibe Coding - where developers use AI assistants like GitHub Copilot and Cursor to generate code almost instantly - has become central to how enterprises build software today. But while it’s turbo-charging development, it’s also introducing new and largely unseen cyber threats. The team at Pillar Security identified a novel attack vector, the ⁠"Rules File Backdoor"⁠, which allows attackers to manipulate these platforms into generating malicious code. It represents a new class of supply chain attacks that weaponizes AI itself, where the malicious code suggestions blend seamlessly with legitimate ones, bypassing human review and security tools.

Research Saturday

Cybersecurity News

Week that Was

Jun 14, 2025

Spyware industry news. Patch Tuesday notes.

UK calls for blood donors following last year's cyberattack. United Natural Foods disrupted by cyberattack. Trump Administration amends cybersecurity policies.

CyberWire Daily

Jun 13, 2025

Cloudflare’s cloudy day resolved.

Cloudflare says yesterday’s widespread outage was not caused by a cyberattack. Predator mobile spyware remains highly active. Microsoft is investigating ongoing Microsoft 365 authentication services issues. An account takeover campaign targets Entra ID users by abusing a popular pen testing tool. Palo Alto Networks documents a JavaScript obfuscation method dubbed “JSFireTruck.” Trend Micro and Mitel patch multiple high-severity vulnerabilities. CISA issues multiple advisories. My Hacking Humans cohost Joe Carrigan joins us to discuss linkless recruiting scams. Uncle Sam wants an AI chatbot.

Daily Briefing

Jun 13, 2025

Google Cloud outage knocks major services offline.

Citizen Lab documents use of Paragon's Graphite spyware against Apple devices. Intellexa's Predator continues operations despite sanctions.

The FAIK Files

Jun 13, 2025

Is AI Getting Too Real?

On this week's show: OpenAI's models are reportedly resisting human commands to shut down. A controversial new research paper questions whether AI systems actually "think" or just create an illusion of reasoning. How generative AI exploits the same psychological triggers as gambling—"just one more prompt, bro!" Google's VEO-3 and ElevenLabs 3 are creating deepfakes so convincing they're fooling both people and detection systems.

Caveat

Jun 12, 2025

Italy and paragon have ended their relationship.

Getty involved in a landmark UK copyright case.

CyberWire Daily

Jun 12, 2025

Scam operations disrupted across Asia.

Interpol’s Operation Secure dismantles a major cybercrime network, and Singapore takes down scam centers. GitLab patches multiple vulnerabilities in its DevSecOps platform. Researchers unveil a covert method for exfiltrating data using smartwatches. EchoLeak allows for data exfiltration from Microsoft Copilot. Journalists are confirmed targets of Paragon’s Graphite spyware. France calls for comments on tracking pixels. Fog ransomware operators deploy an unusual mix of tools. Skeleton Spider targets recruiters by posing as job seekers on LinkedIn and Indeed. Erie Insurance suffers ongoing outages following a cyberattack. Our N2K Lead Analyst Ethan Cook shares insights on Trump’s antitrust policies. DNS neglect leads to AI subdomain exploits.

Daily Briefing

Jun 12, 2025

Law enforcement disrupts scam operations across Asia.

Law enforcement disrupts scam operations across Asia. Stealth Falcon APT exploited Windows zero-day. Erie Insurance confirms cyberattack.

Threat Vector

Jun 12, 2025

Secure Your Summer: Top Cyber Myths, Busted

In this episode of Threat Vector, ⁠David Moulton⁠ talks with ⁠Lisa Plaggemier⁠, Executive Director of the ⁠National Cybersecurity Alliance⁠. Lisa shares insights from this year’s “Oh Behave!” report and dives into why cybersecurity habits remain unchanged—even when we know better. From password reuse to misunderstood AI risks, Lisa explains how emotion, storytelling, and system design all play a role in protecting users. Learn why secure-by-design is the future, how storytelling can reshape behavior, and why facts alone won’t change minds. This episode is a must-listen for CISOs, security leaders, and anyone working to reduce human risk at scale.

Caveat

Jun 12, 2025

The art of the breakup: Trump’s antitrust surge.

This week on Caveat, Dave and Ben welcome back N2K’s own ⁠⁠Ethan Cook⁠⁠ for our latest policy deep dive segment. As a trusted expert in law, privacy, and surveillance, Ethan is joining the show regularly to provide in-depth analysis on the latest policy developments shaping the cybersecurity and legal landscape.

Hacking Humans

Jun 12, 2025

Managing online security throughout the decades.

This week, our hosts⁠⁠⁠⁠⁠⁠⁠ ⁠Dave Bittner⁠, ⁠⁠⁠⁠⁠⁠Joe Carrigan⁠⁠⁠⁠⁠⁠, and ⁠⁠⁠⁠⁠⁠Maria Varmazis⁠⁠⁠⁠⁠⁠ (also host of the ⁠⁠⁠⁠⁠⁠T-Minus⁠⁠⁠⁠⁠⁠ Space Daily show) are sharing the latest in social engineering scams, phishing schemes, and criminal exploits that are making headlines. We start off with some more chicken follow up, this week, delving into malware-related chicken names. Dave’s got the story of Brevard-based Health First Health Plans teaming up with the FBI to warn consumers about a nationwide medical insurance scam where victims pay upfront for fake coverage and end up stuck with huge medical bills. Maria shares the story on how a recent April 2025 survey reveals that while most US consumers feel confident identifying scams and rely on traditional security measures like strong passwords and two-factor authentication, many still experience scam attempts and data breaches, with real-time threat detection emerging as the most valued feature in security products. Joe shares a personal story about how he was mildly got, got—tricked, that is—he thought he was filling out a quick survey for a waiter, but it actually ended up as a Google review. It's a reminder of how AI and tech are blurring the lines in everyday interactions, and how easily people can get tripped up by these evolving processes. The catch of the day this week is from the Scams sub-Reddit, and Dave reads a text from a scammer claiming to have information on his doing drugs at his old work place.

story

Jun 12, 2025

Policy Deep Dive: Revisiting Antitrust

In this special policy series, the Caveat team is taking a deep dive into key topic areas that are likely to generate notable conversations and political actions throughout the next administration.

story

Jun 11, 2025

AI: Cybersecurity’s three-headed beast.

Matt Radolec, VP - Incident Response, Cloud Operations & SE EU at Varonis, joins Dave Bittner on the CyberWire Daily podcast for a sponsored Industry Voices interview. Matt explores the triple threat AI poses to cybersecurity—fueling business innovation, strengthening defenses, and empowering attackers—while sharing key findings from Varonis' State of Data Security report on data exposure in the AI era.

Load More