The Defensive Line Podcast
The Defensive Line Weekly is a weekly intelligence briefing for blue teamers and security leaders — the stories that matter most, with clear implications and practical defensive actions. This podcast is the audio version of the weekly Defensive Line Substack newsletter, bringing the same curated analysis to your ears. Voices are AI generated, but the analysis and script is human curated. Topic 1: South Staffordshire Water — 22 Months Undetected * ICO enforcement notice [https://ico.org.uk/action-weve-taken/enforcement/2026/05/south-staffordshire-plc-and-south-staffordshire-water-plc/] * The Record [https://therecord.media/uk-water-company-had-hackers-lurking-for-years] * BleepingComputer [https://www.bleepingcomputer.com/news/security/uk-fines-water-supplier-13m-for-exposing-data-of-664k-customers/] * Help Net Security [https://www.helpnetsecurity.com/2026/05/11/ico-south-staffordshire-cyberattack-fine/] * Computer Weekly [https://www.computerweekly.com/news/366642957/ICO-fines-Cl0p-victim-South-Staffs-Water-over-data-breach] Topic 2: BlackFile — Vishing and Real-Time AitM * Google Threat Intelligence Group (GTIG) [https://cloud.google.com/blog/topics/threat-intelligence/blackfile-vishing-extortion-operation/] * Push Security [https://pushsecurity.com/blog/inside-criminal-phishing-panel] Topic 3: Mini Shai-Hulud — npm Supply Chain Worm * TanStack postmortem [https://tanstack.com/blog/npm-supply-chain-compromise-postmortem] * OpenAI disclosure [https://openai.com/index/our-response-to-the-tanstack-npm-supply-chain-attack/] * StepSecurity (TanStack) [https://www.stepsecurity.io/blog/mini-shai-hulud-is-back-a-self-spreading-supply-chain-attack-hits-the-npm-ecosystem] * Socket (TanStack) [https://socket.dev/blog/tanstack-npm-packages-compromised-mini-shai-hulud-supply-chain-attack] * StepSecurity (node-ipc) [https://www.stepsecurity.io/blog/node-ipc-npm-supply-chain-attack] * The Record [https://therecord.media/openai-asks-macos-users-to-update-after-tanstack-npm-supply-chain-attack] * The Hacker News (TanStack) [https://thehackernews.com/2026/05/tanstack-supply-chain-attack-hits-two.html] * The Hacker News (node-ipc) [https://thehackernews.com/2026/05/stealer-backdoor-found-in-3-node-ipc.html] Honourable Mentions * Cisco Security Advisory CVE-2026-20182 [https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-rpa2-v69WY2SW] * Rapid7 (Cisco SD-WAN) [https://www.rapid7.com/blog/post/ve-cve-2026-20182-critical-authentication-bypass-cisco-catalyst-sd-wan-controller-fixed/] * Cisco Talos (SD-WAN exploitation) [https://blog.talosintelligence.com/sd-wan-ongoing-exploitation/] * Microsoft Security — Kazuar/Secret Blizzard [https://www.microsoft.com/en-us/security/blog/] Subscribe to The Defensive Line on Substack [https://thedefensiveline.substack.com] for the full weekly written edition. This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit thedefensiveline.substack.com [https://thedefensiveline.substack.com?utm_medium=podcast&utm_campaign=CTA_1]
25 episodios
Comentarios
0Sé la primera persona en comentar
¡Regístrate ahora y únete a la comunidad de The Defensive Line Podcast!