Risky Business is a weekly information security podcast featuring news and in-depth interviews with industry luminaries. Launched in February 2007, Risky Business is a must-listen digest for information security pros. With a running time of approximately 50-60 minutes, Risky Business is pacy; a security podcast without the waffle.

Risky Business #799 -- Everyone's Sharepoint gets shelled

July 23, 2025 1:13:55 12.67 MB ( 58.31 MB less) Downloads: 0

Risky Biz returns after two weeks off, and there sure is cybersecurity news to catch up on. Patrick Gray and Adam Boileau discuss:

  • Microsoft tried to make outsourcing the Pentagon’s cloud maintenance to China okay (it was not)
  • She shells Sharepoint by the sea-shore (by ‘she’ we mean ‘China’)
  • Four (alleged) Scattered Spider members arrested (and bailed) in the UK
  • Hackers spend $2700 to buy creds for a Brazilian payment system, steal $100M
  • Fortinet has SQLI in the auth header, Citrix mem leak is weaponised, HP hardcodes creds and Sonicwalls get user-moderootkits. Just security vendor things!

This week’s episode is sponsored by Airlock Digital. CEO David Cottingham talks through what it takes to build a mature, resilient management platform for a security critical system.

This episode is also available on Youtube.

Show notes