Three Buddy Problem - Episode 53: We dig into news of the first-ever arrest of a Chinese intelligence-linked hacker in Italy, unpack the mystery behind HAFNIUM and how they somehow got their hands on the same Microsoft Exchange zero-days that researcher Orange Tsai discovered - was it coincidence, inside access, or something more sinister?

Plus, China's massive cyber capabilities pipeline, ‘theCom’ teenagers arrested in the UK after ransomware binge, and spyware attacks against Russian organizations.

Cast: Juan Andres Guerrero-Saade, Ryan Naraine and Costin Raiu.

Links:

• Transcript (unedited, AI-generated)
• US Gov: Prolific Chinese state-sponsored contract hacker arrested
• Microsoft: HAFNIUM targeting Exchange Servers with 0-day exploits
• Microsoft Exchange Server Attack Timeline
• YouTube: Orange Tsai on ProxyLogon
• Crash (exploit) and burn: Securing the offensive cyber supply chain to counter China in cyberspace
• The Growing Role of Cyber Militias in China’s Network Warfare Force Structure
• NCA arrest four for attacks on M&S, Co-op and Harrods
• Four arrested by UK police over ransomware attacks on M&S, Co-op and Harrods
• Cyberattack deals blow to Russian firmware used to repurpose civilian drones for Ukraine war
• Cyberattack deals blow to Russian firmware used to repurpose civilian drones for Ukraine war
• Batavia spyware targeting Russian organizations
• Chainalysis: First-ever crypto seizure in Greece
• Ringzer0 COUNTERMEASURE — Three Buddy Problem discount code for training: CM25-3BUDDY
• LABScon 2025