Dougbot, RedSun, ATHR, Vishing, Cisco, Google, Chrome, Severance, Shor, Josh Marpet.. - SWN #573
Get the full intelligence
Search transcripts, export clips, track mentions, and explore all topics from “Dougbot, RedSun, ATHR, Vishing, Cisco, Google, Chrome, Severance, Shor, Josh Marpet.. - SWN #573” inside PodZeus.
A wave of alarming cyber threats is reshaping the security landscape, with researchers exposing critical vulnerabilities in Microsoft Windows and Cisco systems, while cybercriminals deploy AI-powered vishing platforms to automate credential theft. The episode opens with Chaotic Eclipse revealing a new 'Red Sun' zero-day exploit that bypasses even the latest Windows patches, sparking controversy over Microsoft's handling of researcher disclosures. Meanwhile, the ATHR platform demonstrates how AI and human-like agents can conduct sophisticated voice phishing attacks to steal Google, Microsoft, and Coinbase credentials—highlighting a dangerous evolution in social engineering. Cisco's recent patch blitz for Webex and Identity Services Engine vulnerabilities underscores the growing 'bug apocalypse,' where agentic AI accelerates discovery but also amplifies risk. On the privacy front, Google Chrome's failure to block 30+ browser fingerprinting techniques reveals a troubling gap in user protection, while new Android policies attempt to limit app access to contacts and location—though with questionable effectiveness. The show also dives into the destabilizing potential of stablecoins under the new Genius Act, warning of a looming crisis where small banks could collapse from fraudulent stablecoin injections or even deliberate inflation manipulation.
Chaotic Eclipse's 'Red Sun' zero-day exploits Windows 10/11/Server even after latest patches, exposing systemic flaws in Microsoft's vulnerability response.
ATHR's AI-powered vishing platform automates credential theft via realistic human-agent interactions, targeting Google, Microsoft, and Coinbase accounts.
Cisco patched critical Webex and ISE vulnerabilities allowing remote code execution and user impersonation, signaling a surge in high-impact exploits.
Google Chrome lacks protection against 30+ browser fingerprinting techniques, enabling persistent user tracking despite frequent updates.
The Genius Act legalizes stablecoins in banking, but experts warn of systemic risks including bank collapses from fraudulent injections and inflation manipulation.
…and 3 more takeaways available in PodZeus
Red Sun Zero-Day and Researcher Fallout
“I was told personally by them that they would ruin my life and they did. And I'm not sure if I was the only one who had this horrid experience or a few people did, but I think most would just eat it and cut their losses.”
ATHR: The Rise of AI-Powered Vishing
“They walk you through a whole bunch of steps that have it said custom tone personas and so forth tailored to the victim. And of course, in the Google case, they're trying to get you to give up that secret six digit verification code.”
Cisco's Patch Blitz and the Bug Apocalypse
Cisco releases multiple critical patches for Webex and Identity Services Engine, addressing vulnerabilities that allow remote code execution and user impersonation, reflecting a surge in high-impact exploits.
Chrome's Fingerprinting Vulnerability
Google Chrome fails to block 30+ browser fingerprinting techniques, enabling persistent tracking and undermining user privacy despite rapid update cycles.
Stablecoins and the Financial Risk
“I see this as scam artist territory, like writ large. And I see two problems with it in that fashion... some of them are going to get rug pulled and some of them are going to lose everything.”
“I was told personally by them that they would ruin my life and they did. And I'm not sure if I was the only one who had this horrid experience or a few people did, but I think most would just eat it and cut their losses.”
“If you have a mortgage, this may be the right time over the next year or two to pay it off. If you don't have a mortgage, this is going to be when your rent's going to go through the roof.”
“They walk you through a whole bunch of steps that have it said custom tone personas and so forth tailored to the victim. And of course, in the Google case, they're trying to get you to give up that secret six digit verification code.”
Host
Guest
Doug White
person
Josh Marpet
person
Microsoft
organization
Chaotic Eclipse
person
organization
ATHR
organization
Chrome
product
Cisco
organization
Genius Act
other
FDIC
organization
DexterBot, Darksword, Eviltokens, Tubular Bells, Claude, Drift, Gmail, Josh Marpet... - SWN #569
Security Weekly News (Audio) • 32m • 4/3/2026
Staypuft, Claude, One Pixel, deepfakes, Raccoon, BOFH, Satoshi Nakamoto, Josh Marpet. - SWN #571
Security Weekly News (Audio) • 30m • 4/10/2026
Zuckbot, Rockstar, Klaude, Browsers Galore, Microsoft 365, ATC, Kieran Human and more - Kieran Human - SWN #572
Security Weekly News (Audio) • 36m • 4/14/2026
Robosawmill, Gentleman, Vercel, GitHub, Claude, RS232, Josh Marpet, and More... - SWN #574
Security Weekly News (Audio) • 32m • 4/21/2026
Scylla &Charybdis, Kyber, Trigonia, Namastex, GitHub, Crypto, Cables, Aaran Leyland - SWN #575
Security Weekly News (Audio) • 32m • 4/24/2026
Get the full intelligence
Search transcripts, export clips, track mentions, and explore all topics from “Dougbot, RedSun, ATHR, Vishing, Cisco, Google, Chrome, Severance, Shor, Josh Marpet.. - SWN #573” inside PodZeus.
Start discovering podcast insights today
Start with a 7-day trial and explore a growing catalog of popular podcasts. No credit card required.
No credit card required • 7-day trial • Cancel anytime