This week on The Awareness Angle, Anthony Davis and Luke Pettigrew hit episode 52—a year of weekly podcasts—by digging into some of the biggest cyber stories shaking business, government, and everyday users. From billion-record breaches to fake podcast invites delivering malware, it’s another mix of serious lessons and eyebrow-raising human behaviour.

🎉 Free Hoxhunt Cybersecurity Awareness Month videos on AI phishing, deepfakes, and messaging scams. https://hoxhunt.com/cam-toolkit

🗂️ APCS Data Breach – UK background check provider compromised, exposing passports, NI numbers, and driver’s licences. We break down identity risks, government liability, and how reporting muddied the waters.

🤝 SalesLoft / Drift / Salesforce Breach – ShinyHunters claim 1.5B Salesforce records stolen, hitting over 760 companies (including big-name cyber vendors). OAuth token theft shows how fragile supply chains can be.

📦 npm Supply Chain Attack (“Shai-Hulud”) – 187 npm packages hijacked with self-propagating malware, stealing tokens and secrets. GitHub’s slow response raises serious trust questions.

🚗 Jaguar Land Rover Attack – A September 1st ransomware hit halted UK car sales and production, with ripple effects on suppliers and staff. Linked to Scattered Spider—again.

📱 Apple Backports Zero-Day Fix – Even iPhone 6s got patched after targeted attacks. We explain what “zero-day” really means and why it matters beyond the headlines.

🎙️ Fake Podcast Invites – Attackers posing as podcast hosts tricked victims into downloading AMOS Stealer. Media credibility is becoming a new social engineering vector.

🚇 Teenagers Behind TfL Cyber Attack – Two 18–19 year olds caused £39m in disruption. A case study in wasted cyber talent—and organised crime’s youth recruitment problem.

🤖 ShadowLeak vs ChatGPT – Prompt injection attack silently exfiltrated Gmail data from OpenAI’s “Deep Research” agent. Key lesson: don’t hook AI tools directly into sensitive accounts.

📲 TikTok’s Oracle Buyout – Larry Ellison takes 80% ownership in a politically charged deal. But does it actually solve the data-to-China question—or just shift control to another power?

🎭 Lighter Bits – Siri flunks, ChatGPT flexes, and a Trump/Starmer deepfake sparks laughs and awareness lessons.

In short, this all shows how fragile trust really is—whether in supply chains, AI tools, or the platforms we rely on every day.

🕒 Timestamps

00:00 — Introduction & Milestone Celebration

02:57 — Cybersecurity Awareness & Community Engagement

06:00 — Password Manager Vulnerabilities

09:00 — AI Ransomware & the Rise of AI in Cybersecurity

12:01 — Cyber Attacks on Major Corporations

17:20 — Reflections on Cybersecurity Trends

18:37 — Compensation Claims & Data Breaches

22:26 — SalesLoft Drift Breach: Implications & Insights

27:17 — Cyber Awareness & Phishing Campaigns

32:31 — AI, Misinformation & Media Risks

37:41 — Emerging Cybersecurity Threats

📩 For links, videos, and the newsletter – head to ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠riskycreative.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠

💬 ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Check Out This Episode's Discussion Points⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠

📧 ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠hello@riskycreative.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠

🔗⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ riskycreative.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠

🎵 Our Intro & Outro Song (© ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠16! by ⁠falling forever⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠)

License: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://creativecommons.org/licenses/by/4.0⁠⁠