Robosawmill, Gentleman, Vercel, GitHub, Claude, RS232, Josh Marpet, and More... - SWN #574
Get the full intelligence
Search transcripts, export clips, track mentions, and explore all topics from “Robosawmill, Gentleman, Vercel, GitHub, Claude, RS232, Josh Marpet, and More... - SWN #574” inside PodZeus.
A robot outperformed every human runner in a half marathon in Beijing, finishing in 50 minutes and 26 seconds—faster than the current human world record—highlighting the growing capabilities of AI-driven machines. Meanwhile, the ransomware-as-a-service group 'The Gentleman' has expanded rapidly, compromising over 320 victims and leveraging domain admin access to deploy ransomware via group policy objects, a tactic that underscores the critical need for zero trust security. In another alarming trend, attackers are abusing GitHub's content delivery network to distribute malware through legitimate-looking user attachments, while serial-to-IP converters—often overlooked in OT environments—are exposing nearly 20,000 devices worldwide to remote code execution. The article also explores a paradigm shift in financial security: NACHA now demands banks track not just authentication and authorization, but the *intent* behind transactions to combat AI-powered scams like romance and pig butchering schemes, raising ethical and technical questions about mental state verification in banking. These developments signal a future where security is no longer just about protecting systems, but understanding human behavior—and even machine intent. The episode also delivers sharp satire on corporate culture, with Doug White warning against mandatory AI tool adoption in the workplace, comparing forced use of tools like Claude to being 'forced to let Mark crash on your couch.
Robots are now outperforming humans in physical endurance, with a robot winning a half marathon in 50:26—faster than the human world record.
The 'Gentleman' ransomware group uses domain admin access and group policy objects to deploy malware at scale, compromising 320+ victims in 2026.
Attackers are abusing GitHub’s CDN to distribute malware via legitimate-looking user attachments, exploiting trust in open-source platforms.
NACHA is requiring banks to verify transaction intent—not just authentication—to combat AI-driven scams like romance and pig butchering schemes.
Nearly 20,000 serial-to-IP converters are exposed online, creating a massive attack surface for remote code execution in OT and legacy systems.
…and 3 more takeaways available in PodZeus
Welcome to Security Weekly News #574
Doug White kicks off the 574th episode with a humorous intro, referencing weather, folklore, and a playful jab at Alan Parsons, setting a satirical yet informative tone for the week's security news.
The Gentleman Ransomware: A Commercialized Cybercrime Empire
“The gentleman operation has claimed about 320 victims with most of those attacks just being this year.”
Attackers Use Domain Admin Access and MimiKatz to Deploy Ransomware
“They used a group policy object, which caused the ransomware to pop up simultaneously because with a group policy object, you could literally have it install something.”
Vercel’s Supply Chain Breach and the Need for Incident Response Plans
Vercel disclosed a third-party compromise that led to data theft, highlighting the urgent need for organizations to have tested incident response plans before crises occur.
Pre-Advisory Exploitation: The 11-Day Lead Time Gap
“The implication would be that if you're just relying on Cisco or Palo Alto or whomever that provides your edge equipment to send you official guidance, it may well be too late.”
“It won and it was faster, better, and stronger than all the other runners.”
“They used a group policy object, which caused the ransomware to pop up simultaneously because with a group policy object, you could literally have it install something.”
“These zips had a malware loader and an info stealer in the zip file. And what they did was they were using legitimate GitHub content delivery network to host and distribute the malware.”
Host
Guest
The Gentleman
other
NACHA
organization
Claude
other
Vercel
organization
RS232
other
Josh Marpet
person
MimiKatz
product
CalSay
product
Bridge Break
other
DexterBot, Darksword, Eviltokens, Tubular Bells, Claude, Drift, Gmail, Josh Marpet... - SWN #569
Security Weekly News (Audio) • 32m • 4/3/2026
Staypuft, Claude, One Pixel, deepfakes, Raccoon, BOFH, Satoshi Nakamoto, Josh Marpet. - SWN #571
Security Weekly News (Audio) • 30m • 4/10/2026
Zuckbot, Rockstar, Klaude, Browsers Galore, Microsoft 365, ATC, Kieran Human and more - Kieran Human - SWN #572
Security Weekly News (Audio) • 36m • 4/14/2026
Dougbot, RedSun, ATHR, Vishing, Cisco, Google, Chrome, Severance, Shor, Josh Marpet.. - SWN #573
Security Weekly News (Audio) • 33m • 4/17/2026
Scylla &Charybdis, Kyber, Trigonia, Namastex, GitHub, Crypto, Cables, Aaran Leyland - SWN #575
Security Weekly News (Audio) • 32m • 4/24/2026
Get the full intelligence
Search transcripts, export clips, track mentions, and explore all topics from “Robosawmill, Gentleman, Vercel, GitHub, Claude, RS232, Josh Marpet, and More... - SWN #574” inside PodZeus.
Start discovering podcast insights today
Start with a 7-day trial and explore a growing catalog of popular podcasts. No credit card required.
No credit card required • 7-day trial • Cancel anytime