On this week’s show, Patrick Gray and Adam Boileau discusses the week’s security news, including:

• Telegram founder’s arrest in France
• Volt Typhoon 0days some SD-WAN gear
• Russia frets about Ukraine all up in Kursk’s webcams
• Cybercriminals social engineer payment card NFC relay attacks in the wild
• The slow burn of Active Directory name collisions
• And much, much more.

This week’s episode is sponsored by Nucleus Security. Aaron Unterberger joins to discuss how vulnerability management starts out easy, but gets serious very quickly.

You can also watch this week’s show on Youtube.

Show notes

• Pavel Durov: Telegram CEO's arrest part of larger investigation
• Keep Pavel Durov LOCKED UP
• Internet mogul Kim Dotcom to be extradited to the US, NZ justice minister says
• New 0-Day Attacks Linked to China’s ‘Volt Typhoon’ – Krebs on Security
• Oil industry giant Halliburton confirms 'issue' following reported cyberattack
• Seattle airport confronts 4th day of cyberattack outages | Cybersecurity Dive
• Russia calls for restrictions on surveillance cameras, dating apps in cities under attack from Ukraine
• In a Kyiv hangar, Ukraine launches a cyber range for everyone
• U.S. military, on Tinder, says to swipe left on Iran-backed militants - The Washington Post
• CISA officials credit Microsoft security log expansion for improved threat visibility | Cybersecurity Dive
• Suspect in $14 billion cryptocurrency pyramid scheme extradited to China
• Android malware used to steal ATM info from customers at three European banks
• Novel technique allows malicious apps to escape iOS and Android guardrails | Ars Technica
• Local Networks Go Global When Domain Names Collide – Krebs on Security
• Attack tool update impairs Windows computers
• SonicWall pushes patch for critical vulnerability in SonicOS platform | CyberScoop
• “YOLO” is not a valid hash construction