Chris and Hector break down a Russian-linked zero-day exploit targeting WinRAR users, why stolen browser cookies bypass MFA, the economic motives behind security features (or lack thereof), and Hector’s nostalgic farewell to AOL dial-up. Join our new Patreon! ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.patreon.com/c/hackerandthefed⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ Send HATF your questions at ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠questions@hackerandthefed.com

Chris and Hector break down the ransomware attack on Ingram Micro, exposing how a missing MFA on a VPN led to a massive breach. They also dig into the Department of Defense’s new CMMC rules and sound off on Microsoft’s $30 charge for Windows 10 security updates. Join our new Patreon! ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.patreon.com/c/hackerandthefed⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ Send HATF your questions at ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠questions@hackerandthefed.com

Chris and Hector unpack a big week, they dive into the info-stealing malware hidden inside Steam games, break down how it works, who it targets, and why you should care. Also on the docket, the Pentagon’s rush to secure IT supply chains, and a California broadband subsidy clash that sparks a classic Hector rant. Join our new Patreon! ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.patreon.com/c/hackerandthefed⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ Send HATF your questions at ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠questions@hackerandthefed.com

Chris and Hector dive into alarming cyber incidents shaking the U.S. government and military. They break down the massive National Guard network compromise by Chinese-linked group Salt Typhoon and the shocking revelation that Microsoft allowed Chinese engineers indirect access to Defense Department systems. Plus, they preview their upcoming Patreon series on the top 10 hacks of all time. Join our new Patreon! ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.patreon.com/c/hackerandthefed⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ Send HATF your questions at ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠questions@hackerandthefed.com

Chris and Hector then discuss the McDonald’s AI hiring bot breach caused by a weak password, the risks of AI in HR, and why cybersecurity basics still matter. They also touch on hacker penalties in the UK, a hack targeting a security researcher, and answer a listener’s email about a dam breach in Norway. Join our new Patreon! ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.patreon.com/c/hackerandthefed⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ Send HATF your questions at ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠questions@hackerandthefed.com

Chris and Hector break down the massive Qantas Airlines data breach, expose the growing threat of ransomware negotiation scams, and discuss a dam hack in Norway that had potentially disastrous consequences. They get into real-world advice on 2FA bypass scams, the importance of network segmentation, and a candid look at why critical infrastructure hacks are so dangerous. Join our new Patreon! ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.patreon.com/c/hackerandthefed⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ Send HATF your questions at ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠questions@hackerandthefed.com

Chris and Hector dive deep into the latest waves of cybercrime, from the FBI’s battle with the Scattered Spider group targeting airlines, to takedowns of notorious data breach forums. The duo break down government responses, the real risks for average people, and share honest, hard-won advice for young hackers. Join our new Patreon! ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.patreon.com/c/hackerandthefed⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ Send HATF your questions at ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠questions@hackerandthefed.com

Chris and Hector break down major cyber attacks, from SIM swaps to insider breaches. They expose weak MFA, vendor failures, and the real cost of outdated systems. They also highlight how even small actions (like a single employee recognizing a phishing attempt) can prevent disaster. Join our new Patreon! ⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.patreon.com/c/hackerandthefed⁠⁠⁠⁠⁠⁠⁠⁠⁠ Send HATF your questions at ⁠⁠⁠⁠⁠⁠⁠⁠⁠questions@hackerandthefed.com

Chris and Hector dive into Europe's move to take back digital control with DNS4EU, questions the integrity of Telegram amid Russian FSB connections, and reflect on turning points in their own journeys. Join our new Patreon! ⁠⁠⁠⁠⁠⁠⁠⁠https://www.patreon.com/c/hackerandthefed⁠⁠⁠⁠⁠⁠⁠⁠ Send HATF your questions at ⁠⁠⁠⁠⁠⁠⁠⁠questions@hackerandthefed.com

Chris and Hector unpack Trump’s new cybersecurity order, contractor reliance in government, and the looming risks of quantum computing — with some shoutouts and listener questions along the way. Join our new Patreon! ⁠⁠⁠⁠⁠⁠⁠https://www.patreon.com/c/hackerandthefed⁠⁠⁠⁠⁠⁠⁠ Send HATF your questions at ⁠⁠⁠⁠⁠⁠⁠questions@hackerandthefed.com

This week, Chris and Hector tackle a massive breach at Coinbase, insider threats in India, and a shady delay in reporting. They also explore how state actors are silently hijacking home routers, and why LexisNexis is the latest data broker to drop the ball. Join our new Patreon! ⁠⁠⁠⁠⁠⁠https://www.patreon.com/c/hackerandthefed⁠⁠⁠⁠⁠⁠ Send HATF your questions at ⁠⁠⁠⁠⁠⁠questions@hackerandthefed.com

Chris and Hector break down a wild crypto kidnapping, supply chain sabotage in U.S. infrastructure, and the growing cyber risks of imported tech. Plus, shoutouts and real talk from the front lines of cybersecurity. Join our new Patreon! ⁠⁠⁠⁠⁠https://www.patreon.com/c/hackerandthefed⁠⁠⁠⁠⁠ Send HATF your questions at ⁠⁠⁠⁠⁠questions@hackerandthefed.com

Chris and Hector break down recent crypto security breaches, including Coinbase’s insider-driven data leak and the SEC’s SIM swap hack. They explore the rise of “Zishing” (Zoom phishing), deepfake scams, and the real-world dangers facing crypto holders. Join our new Patreon! ⁠⁠⁠⁠https://www.patreon.com/c/hackerandthefed⁠⁠⁠⁠ Send HATF your questions at ⁠⁠⁠⁠questions@hackerandthefed.com

Chris and Hector dive into the recent breach of the LockBit ransomware gang and what it reveals about operational security failures—even among hackers. They discuss the fallout from the Pegasus spyware scandal, with NSO Group ordered to pay $168 million, and explore the troubling reliance on vulnerable federal contractors. Plus, Hector delivers one of his signature rants—this time on who’s really watching the watchers. Join our new Patreon! ⁠⁠⁠https://www.patreon.com/c/hackerandthefed⁠⁠⁠ Send HATF your questions at ⁠⁠⁠questions@hackerandthefed.com

Chris and Hector react to Joe Rogan’s take on the Ross Ulbricht case, break down the $1B Disney Slack data breach, and explain why passkeys are the next big thing in cybersecurity. Join our new Patreon! ⁠⁠https://www.patreon.com/c/hackerandthefed⁠⁠ Send HATF your questions at ⁠⁠questions@hackerandthefed.com

Chris and Hector break down the 2025 Mandiant threat report, expose rising cyberattack trends, rant about bad CISOs, and discuss a wild case of a cybersecurity CEO caught installing malware in a hospital. Join our new Patreon! ⁠https://www.patreon.com/c/hackerandthefed⁠ Send HATF your questions at ⁠questions@hackerandthefed.com

Chris Tarbell and Hector Monsegur dive into the near-shutdown of the CVE system, a whistleblower’s wild claims about the Doge agency and Russian logins, and why the future of cybersecurity depends on more entrepreneurs stepping up. Sharp takes, tech insights, and signature banter throughout. Join our new Patreon! https://www.patreon.com/c/hackerandthefed Send HATF your questions at questions@hackerandthefed.com

Hector’s back from Miami, rubber ducky giveaways in tow, and diving deep into a wild week of cyber news—from Elon Musk’s Starlink bug bounty to a stealthy year-long breach of U.S. bank regulators. The guys unpack major incidents including a Stuxnet-style espionage campaign in Ukraine, AI-powered spear phishing, and yet another haunting update in the LastPass hack saga. But the real fireworks come in Hector’s rant, where he slams the cybersecurity industry's political silence and calls out its leaders for cowardice. Join our new Patreon! https://www.patreon.com/c/hackerandthefed

This week on Hacker in the Fed, Chris and Hector dive into the chaos of the last few weeks in cybersecurity. From Oracle’s alleged breach cover-up and legal trouble to the ongoing threat of North Korean IT infiltration, the guys break down the biggest stories making waves. They also reveal new details behind the infamous Caesars and MGM ransomware attacks — including how one hacker was caught — and share updates on changes coming to the podcast, including a new Patreon!

This week on Hacker in the Fed, Hector shares his recent travels, including a trip to Chicago, while Chris discusses his AI presentation and the evolving concerns around artificial intelligence. They break down the security risks in telecom networks, the dangers of unsecured cloud storage, and the legal gray areas of independent security research. Plus, a special listener shoutout, a discussion on quantum computing’s impact on cybersecurity, and Hector’s weekly rant on the confusing jargon in the cybersecurity industry. Send HATF your questions at questions@hackerandthefed.com.