Cover image of show Crestvale Newsroom

Crestvale Newsroom

Podcast by Crestvale

English

Business

Limited Offer

1 month for 9 kr.

Then 99 kr. / monthCancel anytime.

  • 20 hours of audiobooks / month
  • Podcasts only on Podimo
  • All free podcasts
Get Started

About Crestvale Newsroom

Crestvale Newsroom is a short-form podcast breaking down what’s happening across business, finance, and technology, and why it actually matters. Each episode focuses on signal over noise, helping operators, founders, and decision-makers stay informed without chasing headlines.

All episodes

162 episodes

episode ServiceNow unauth API bug exposed enterprise data artwork

ServiceNow unauth API bug exposed enterprise data

Send us Fan Mail [https://www.buzzsprout.com/2602483/fan_mail/new] A quiet fix to a ServiceNow API exposure is raising a louder question about trust in the SaaS control plane. When systems that power identity, tickets, and internal context leak without authentication, the blast radius extends far beyond a single tool. This episode breaks down why delayed disclosure changes your response window, and why you should treat core SaaS platforms and build systems as breach critical. It also looks at how autonomous ransomware is compressing attack timelines, and why internet exposed orchestration tools are becoming high value entry points. We also cover the NetNut proxy disruption, the rise of supply chain to ransomware pipelines, and signals from Alibaba, CISA, Visa, and Microsoft 365. Learn more at https://crestvale.io Support the show [https://www.buzzsprout.com/2602483/support]

Yesterday - 6 min
episode CISA adds SharePoint RCE CVE-2026-45659 to KEV artwork

CISA adds SharePoint RCE CVE-2026-45659 to KEV

Send us Fan Mail [https://www.buzzsprout.com/2602483/fan_mail/new] A critical SharePoint vulnerability is now under active exploitation, while regulators are making it clear that inaccurate security claims can carry legal consequences. At the same time, attackers are turning edge device flaws into repeatable ransomware entry points, and major platforms are reshaping how security intelligence is delivered. This episode breaks down what these shifts mean in practice. From emergency patching decisions to the growing legal weight of compliance frameworks, the environment is changing from both sides. Security leaders are being pushed to move faster operationally while also proving that controls are actually in place. We also cover FortiBleed's role in ransomware campaigns, Visa's move into threat intelligence, and what it signals about the merging of fraud and cybersecurity. Learn more at https://crestvale.io Support the show [https://www.buzzsprout.com/2602483/support]

3 Jul 2026 - 6 min
episode Tomcat auth bypass breaks security-constraint protections artwork

Tomcat auth bypass breaks security-constraint protections

Send us Fan Mail [https://www.buzzsprout.com/2602483/fan_mail/new] Authentication controls failing silently is a different kind of risk. Today's episode breaks down how newly disclosed Apache Tomcat vulnerabilities allowed attackers to bypass protections that teams believed were enforced, and why this changes how you validate access controls. For security and IT leaders, the shift is clear. Configuration is no longer proof of enforcement. You need to test real access paths, verify behavior, and assume gaps exist until proven otherwise. At the same time, active exploitation of an Oracle E-Business Suite flaw shows how quickly attackers move once patches are released, while new federal deadlines on post-quantum cryptography turn long-term planning into near-term operational work. We also cover Zscaler's move into AI agent control planes and what it signals about identity in autonomous systems, along with several other key developments shaping the threat landscape. Learn more at https://crestvale.io Support the show [https://www.buzzsprout.com/2602483/support]

2 Jul 2026 - 6 min
episode EY grads accused of PM bank snooping artwork

EY grads accused of PM bank snooping

Send us Fan Mail [https://www.buzzsprout.com/2602483/fan_mail/new] Today's episode focuses on a quiet but critical failure point: access control. A real-world incident involving contractor access to sensitive financial data shows how authorization gaps, not external attackers, are often the weakest link. For security and IT leaders, this is a shift in where risk lives. Insider misuse, third-party exposure, and inherited liability from vendors are becoming more consequential than perimeter threats. From financial filings to endpoint security, the common thread is clear. If you do not tightly control who can access what, and when, you are carrying unseen risk. We also cover a major IRS liability ruling, active ransomware exploitation of a Windows privilege escalation flaw, and key signals from across the security landscape. Learn more at https://crestvale.io Support the show [https://www.buzzsprout.com/2602483/support]

1 Jul 2026 - 6 min
episode ACSC warns FortiBleed: rotate creds, enforce MFA artwork

ACSC warns FortiBleed: rotate creds, enforce MFA

Send us Fan Mail [https://www.buzzsprout.com/2602483/fan_mail/new] Credential-based security is breaking in multiple directions at once. Old passwords are being reused to breach networks, unpatched ERP systems are getting exploited in the wild, and attackers are shifting toward token theft that bypasses traditional login defenses entirely. For security and IT leaders, this is a shift from protecting logins to continuously validating identity across sessions, systems, and now AI-driven actors. The common thread is clear: identity is the new control plane, and gaps in credential hygiene, patching, and token visibility are turning into real-world incidents. This episode also covers a major Oracle EBS vulnerability under active exploitation, the rise of device-code phishing attacks targeting Microsoft environments, and new funding aimed at rebuilding IAM for AI agents. Learn more at https://crestvale.io Support the show [https://www.buzzsprout.com/2602483/support]

30 Jun 2026 - 6 min
En fantastisk app med et enormt stort udvalg af spændende podcasts. Podimo formår virkelig at lave godt indhold, der takler de lidt mere svære emner. At der så også er lydbøger oveni til en billig pris, gør at det er blevet min favorit app.
En fantastisk app med et enormt stort udvalg af spændende podcasts. Podimo formår virkelig at lave godt indhold, der takler de lidt mere svære emner. At der så også er lydbøger oveni til en billig pris, gør at det er blevet min favorit app.
Rigtig god tjeneste med gode eksklusive podcasts og derudover et kæmpe udvalg af podcasts og lydbøger. Kan varmt anbefales, om ikke andet så udelukkende pga Dårligdommerne, Klovn podcast, Hakkedrengene og Han duo 😁 👍
Podimo er blevet uundværlig! Til lange bilture, hverdagen, rengøringen og i det hele taget, når man trænger til lidt adspredelse.

Choose your subscription

Most popular

Limited Offer

Premium

20 hours of audiobooks

  • Podcasts only on Podimo

  • No ads in Podimo shows

  • Cancel anytime

1 month for 9 kr.
Then 99 kr. / month

Get Started

Premium Plus

Unlimited audiobooks

  • Podcasts only on Podimo

  • No ads in Podimo shows

  • Cancel anytime

Start 30 days free trial
Then 129 kr. / month

Start for free

Only on Podimo

Popular audiobooks

Get Started

1 month for 9 kr. Then 99 kr. / month. Cancel anytime.