Patch Fatigue & Laptop Farms

https://is1-ssl.mzstatic.com/image/thumb/Podcasts124/v4/d4/83/7f/d4837fde-2ae4-220f-e4d9-ed9296f4a5ae/mza_11743321888039662568.jpg/600x600bb.jpg

You've Already Been Hacked

Professor CyberRisk

97 episodes

3 days ago

A Cybersecurity Podcast for the Rest of Us In a world of evolving cyber threats, You’ve Already Been Hacked breaks down cybersecurity for everyone—from experts to everyday users. Hosted by Professor CyberRisk and Cyber Cowboy, we tackle major cyber attacks, emerging threats, and real-world security strategies. Each episode offers expert analysis, case studies, and actionable tips to help listeners stay ahead of hackers and digital risks.

Technology

RSS

All content for You've Already Been Hacked is the property of Professor CyberRisk and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Technology

https://d3t3ozftmdmh3i.cloudfront.net/production/podcast_uploaded/6322878/6322878-1593961948748-3f2e264965a88.jpg

Patch Fatigue & Laptop Farms

You've Already Been Hacked

31 minutes 48 seconds

3 months ago

Patch Fatigue & Laptop Farms

**Hosts**

- Professor CyberRisk

- Cyber Cowboy

**Live Cyber Maps**

- Bitdefender Threat Map: https://threatmap.bitdefender.com/

- Check Point Threat Map: https://threatmap.checkpoint.com/

- Kaspersky Cyber Threat Map: https://cybermap.kaspersky.com/

- Talos Intelligence ebc_spam Map: https://talosintelligence.com/ebc_spam

**Episode Information** _Title:_ Patch Fatigue & Laptop Farms _Episode Number:_ 315 (3x15)

**Overview** This week, we explore the weakening foundation of global vulnerability databases, Microsoft’s massive patch release, a North Korean infiltration campaign, Rust-based malware targeting gamers, and a silent threat to developer ecosystems. From CI pipelines to “laptop farms,” threat actors are getting creative — and we’re unpacking what it means for the future of cybersecurity.

**Guest Information** None this episode

**Top Stories** 🔸 _Global Vulnerability Databases Are Cracking_ NVD’s 25K+ vulnerability backlog and CVE’s near-collapse signal deep trouble. CISA’s “Vulnrichment” aims to decentralize enrichment, but public trust is deteriorating. → Why It Matters:

- C 🔗 https://www.iwebbs.com/newsletter/july-2025-cybersecurity-newsletter/

🔸 _Microsoft Patches 130 Flaws — No Zero-Days_ July’s Patch Tuesday resolved 130 vulnerabilities including a wormable SPNEGO flaw (CVSS 9.8). Zero-day drought continues, with RCE and escalation attacks surging. → Why It Matters:

-” 🔗 https://www.cybersecurity-review.com/news-july-2025/

🔸 _North Korean IT Worker Scheme Dismantled_ DOJ busted a sprawling DPRK operation using fake identities to infiltrate 100+ U.S. companies. 21 “laptop farms” across 14 states fueled $900K in crypto funding. → Why It Matters:

-” 🔗 https://www.iwebbs.com/newsletter/july-2025-cybersecurity-newsletter/

🔸 _Myth Stealer Targets Gamers & Browsers_ Rust-based malware spreads via fake cheat tools, collecting credentials and autofill data. A free Telegram drop evolved into a full MaaS operation. → Why It Matters:

- 🔗 https://www.secmentis.com/news/

🔸 _CI Flaw in Open VSX Threatens Millions of Devs_ A flaw in Open VSX Registry’s CI pipeline exposed millions of VS Code users to silent compromise. Platforms like Gitpod and Google Cloud Shell were at risk. → Why It Matters:

- https://www.iwebbs.com/newsletter/july-2025-cybersecurity-newsletter/

**Additional Cybersecurity News – Titles and URLs** None this episode

**Resources & Links** None this episode

**Call to Action**

- Subscribe: Stay updated on cybersecurity threats.

- Leave a Review: Let us know what you think.

- Join the Conversation: Follow our community and ask questions.

**Sponsor (if applicable)** No sponsors this episode

**Podcast Socials & Website**

- Website: https://www.youvealreadybeenhacked.com

- X: @professorcyberrisk

- YouTube: https://www.youtube.com/@YABHPodcast

- Discord/Community Forum: coming soon