DOS, Seneca the Younger, Outlook, CopyFail, cPanel, QR, Ruby, Go, Talkie, Josh Marpet - SWN #577
Get the full intelligence
Search transcripts, export clips, track mentions, and explore all topics from “DOS, Seneca the Younger, Outlook, CopyFail, cPanel, QR, Ruby, Go, Talkie, Josh Marpet - SWN #577” inside PodZeus.
Microsoft's release of the original MS-DOS 1.00 kernel source code—pre-dating the 'MS-DOS' branding—has reignited interest in computing's foundational era, revealing a system born from a 'Quick and Dirty Operating System' (QDOS) created by Tim Patterson. This ancient code, transcribed from fragile green bar paper due to poor print quality, underscores how far computing has come. Meanwhile, the episode highlights a cascade of modern security threats: a critical Linux kernel vulnerability dubbed 'Copy Fail' that allows local users to escalate to root with a 732-byte Python script, a severe cPanel/WHM authentication bypass affecting 70 million domains, and a surge in QR code phishing attacks that doubled in Q1 2026. Supply chain attacks targeting Ruby and Go packages—masquerading as legitimate libraries—exfiltrate secrets and enable persistent SSH access. The hosts also critique the growing reliance on AI in financial auditing, praising the UK's Financial Reporting Council for its forward-thinking guidance on mitigating AI risks like hallucinations, flawed reasoning, and non-compliant methodologies. A recurring theme is the paradox of modern security: while we’ve advanced technologically, fundamental flaws in identity verification, patch management, and user behavior remain unaddressed.
A 732-byte Python script can exploit the Linux kernel's 'Copy Fail' vulnerability to grant root access, affecting systems since 2017—including Kubernetes and cloud environments.
cPanel and WHM have a critical authentication bypass vulnerability impacting 70 million domains; patch immediately and audit for backdoors.
QR code phishing attacks more than doubled in Q1 2026, with 18.7 million incidents—highlighting the failure of traditional 'check links' advice.
Supply chain attacks using malicious Ruby gems and Go modules steal SSH keys, AWS secrets, and manipulate GitHub Actions workflows.
The UK's Financial Reporting Council released a 60-page AI risk guidance PDF outlining three core risks: deficient output, misuse of output, and non-compliant methodology.
…and 3 more takeaways available in PodZeus
Introduction & Subscriber Milestone
Doug White welcomes listeners to Security Weekly News #577, celebrates reaching 50,000 YouTube subscribers, and teases the episode's topics including DOS, Seneca the Younger, and QR codes.
CISA Orders Patching for NTLM Hash Leak
CISA mandates federal agencies patch a zero-click NTLM hash leak vulnerability, an artifact of an incomplete fix for a remote code execution flaw exploited by Fancy Bear.
Microsoft Outlook Outage & Identity Management Crisis
A Microsoft outage required users to re-enter credentials manually, mimicking phishing tactics and highlighting the failure of current identity verification methods.
Copy Fail: The 732-Byte Linux Root Exploit
“A single 732 byte Python script can edit a set UID binary and obtain root. Yeah. And a lot of Linux distros have shipped out with this since, wait for it, 2017.”
cPanel & WHM Critical Authentication Bypass
“cPanel and WHM are both very important tools and very dangerous tools. Known hosts suggested that this may have been being exploited for at least 30 days.”
“A single 732 byte Python script can edit a set UID binary and obtain root. Yeah. And a lot of Linux distros have shipped out with this since, wait for it, 2017.”
“QR code phishing was indicated as the fastest growing email phishing vector with around 146 increase to around 18 .7 million attacks in”
“The idea here is that if you have a runtime system input risk, if you have a human in a loop who's doing stupid things, if your information quality is a problem, that's GIGO garbage in, garbage out.”
Host
Guest
Doug White
person
Josh Marpet
person
MS-DOS
product
CISA
organization
QDOS
product
GitHub
organization
Fancy Bear
organization
UK Financial Reporting Council
organization
IBM PC 5150
product
Tim Patterson
person
DexterBot, Darksword, Eviltokens, Tubular Bells, Claude, Drift, Gmail, Josh Marpet... - SWN #569
Security Weekly News (Audio) • 32m • 4/3/2026
Staypuft, Claude, One Pixel, deepfakes, Raccoon, BOFH, Satoshi Nakamoto, Josh Marpet. - SWN #571
Security Weekly News (Audio) • 30m • 4/10/2026
Zuckbot, Rockstar, Klaude, Browsers Galore, Microsoft 365, ATC, Kieran Human and more - Kieran Human - SWN #572
Security Weekly News (Audio) • 36m • 4/14/2026
Dougbot, RedSun, ATHR, Vishing, Cisco, Google, Chrome, Severance, Shor, Josh Marpet.. - SWN #573
Security Weekly News (Audio) • 33m • 4/17/2026
Robosawmill, Gentleman, Vercel, GitHub, Claude, RS232, Josh Marpet, and More... - SWN #574
Security Weekly News (Audio) • 32m • 4/21/2026
Get the full intelligence
Search transcripts, export clips, track mentions, and explore all topics from “DOS, Seneca the Younger, Outlook, CopyFail, cPanel, QR, Ruby, Go, Talkie, Josh Marpet - SWN #577” inside PodZeus.
Start discovering podcast insights today
Start with a 7-day trial and explore a growing catalog of popular podcasts. No credit card required.
No credit card required • 7-day trial • Cancel anytime