EPISODE · Jul 12, 2025 · 31 MIN
Patch Fatigue & Laptop Farms
from You've Already Been Hacked · host Professor CyberRisk
**Hosts**- Professor CyberRisk - Cyber Cowboy **Live Cyber Maps**- Bitdefender Threat Map: https://threatmap.bitdefender.com/ - Check Point Threat Map: https://threatmap.checkpoint.com/ - Kaspersky Cyber Threat Map: https://cybermap.kaspersky.com/ - Talos Intelligence ebc_spam Map: https://talosintelligence.com/ebc_spam **Episode Information** _Title:_ Patch Fatigue & Laptop Farms _Episode Number:_ 315 (3x15)**Overview** This week, we explore the weakening foundation of global vulnerability databases, Microsoft’s massive patch release, a North Korean infiltration campaign, Rust-based malware targeting gamers, and a silent threat to developer ecosystems. From CI pipelines to “laptop farms,” threat actors are getting creative — and we’re unpacking what it means for the future of cybersecurity.**Guest Information** None this episode **Top Stories** 🔸 _Global Vulnerability Databases Are Cracking_ NVD’s 25K+ vulnerability backlog and CVE’s near-collapse signal deep trouble. CISA’s “Vulnrichment” aims to decentralize enrichment, but public trust is deteriorating. → Why It Matters:- C 🔗 https://www.iwebbs.com/newsletter/july-2025-cybersecurity-newsletter/ 🔸 _Microsoft Patches 130 Flaws — No Zero-Days_ July’s Patch Tuesday resolved 130 vulnerabilities including a wormable SPNEGO flaw (CVSS 9.8). Zero-day drought continues, with RCE and escalation attacks surging. → Why It Matters:-” 🔗 https://www.cybersecurity-review.com/news-july-2025/ 🔸 _North Korean IT Worker Scheme Dismantled_ DOJ busted a sprawling DPRK operation using fake identities to infiltrate 100+ U.S. companies. 21 “laptop farms” across 14 states fueled $900K in crypto funding. → Why It Matters:-” 🔗 https://www.iwebbs.com/newsletter/july-2025-cybersecurity-newsletter/ 🔸 _Myth Stealer Targets Gamers & Browsers_ Rust-based malware spreads via fake cheat tools, collecting credentials and autofill data. A free Telegram drop evolved into a full MaaS operation. → Why It Matters:- 🔗 https://www.secmentis.com/news/ 🔸 _CI Flaw in Open VSX Threatens Millions of Devs_ A flaw in Open VSX Registry’s CI pipeline exposed millions of VS Code users to silent compromise. Platforms like Gitpod and Google Cloud Shell were at risk. → Why It Matters:- https://www.iwebbs.com/newsletter/july-2025-cybersecurity-newsletter/ **Additional Cybersecurity News – Titles and URLs** None this episode**Resources & Links** None this episode**Call to Action**- Subscribe: Stay updated on cybersecurity threats. - Leave a Review: Let us know what you think. - Join the Conversation: Follow our community and ask questions. **Sponsor (if applicable)** No sponsors this episode**Podcast Socials & Website**- Website: https://www.youvealreadybeenhacked.com - X: @professorcyberrisk - YouTube: https://www.youtube.com/@YABHPodcast - Discord/Community Forum: coming soon
What this episode covers
**Hosts**- Professor CyberRisk - Cyber Cowboy **Live Cyber Maps**- Bitdefender Threat Map: https://threatmap.bitdefender.com/ - Check Point Threat Map: https://threatmap.checkpoint.com/ - Kaspersky Cyber Threat Map: https://cybermap.kaspersky.com/ - Talos Intelligence ebc_spam Map: https://talosintelligence.com/ebc_spam **Episode Information** _Title:_ Patch Fatigue & Laptop Farms _Episode Number:_ 315 (3x15)**Overview** This week, we explore the weakening foundation of global vulnerability databases, Microsoft’s massive patch release, a North Korean infiltration campaign, Rust-based malware targeting gamers, and a silent threat to developer ecosystems. From CI pipelines to “laptop farms,” threat actors are getting creative — and we’re unpacking what it means for the future of cybersecurity.**Guest Information** None this episode **Top Stories** 🔸 _Global Vulnerability Databases Are Cracking_ NVD’s 25K+ vulnerability backlog and CVE’s near-collapse signal deep trouble. CISA’s “Vulnrichment” aims to decentralize enrichment, but public trust is deteriorating. → Why It Matters:- C 🔗 https://www.iwebbs.com/newsletter/july-2025-cybersecurity-newsletter/ 🔸 _Microsoft Patches 130 Flaws — No Zero-Days_ July’s Patch Tuesday resolved 130 vulnerabilities including a wormable SPNEGO flaw (CVSS 9.8). Zero-day drought continues, with RCE and escalation attacks surging. → Why It Matters:-” 🔗 https://www.cybersecurity-review.com/news-july-2025/ 🔸 _North Korean IT Worker Scheme Dismantled_ DOJ busted a sprawling DPRK operation using fake identities to infiltrate 100+ U.S. companies. 21 “laptop farms” across 14 states fueled $900K in crypto funding. → Why It Matters:-” 🔗 https://www.iwebbs.com/newsletter/july-2025-cybersecurity-newsletter/ 🔸 _Myth Stealer Targets Gamers & Browsers_ Rust-based malware spreads via fake cheat tools, collecting credentials and autofill data. A free Telegram drop evolved into a full MaaS operation. → Why It Matters:- 🔗 https://www.secmentis.com/news/ 🔸 _CI Flaw in Open VSX Threatens Millions of Devs_ A flaw in Open VSX Registry’s CI pipeline exposed millions of VS Code users to silent compromise. Platforms like Gitpod and Google Cloud Shell were at risk. → Why It Matters:- https://www.iwebbs.com/newsletter/july-2025-cybersecurity-newsletter/ **Additional Cybersecurity News – Titles and URLs** None this episode**Resources & Links** None this episode**Call to Action**- Subscribe: Stay updated on cybersecurity threats. - Leave a Review: Let us know what you think. - Join the Conversation: Follow our community and ask questions. **Sponsor (if applicable)** No sponsors this episode**Podcast Socials & Website**- Website: https://www.youvealreadybeenhacked.com - X: @professorcyberrisk - YouTube: https://www.youtube.com/@YABHPodcast - Discord/Community Forum: coming soon
NOW PLAYING
Patch Fatigue & Laptop Farms
No transcript for this episode yet
Similar Episodes
Mar 19, 2026 ·34m
Feb 18, 2026 ·11m
Feb 11, 2026 ·45m
Nov 12, 2025 ·35m
Oct 17, 2025 ·40m