About this episode
Three Buddy Problem - Episode 67: We discuss the rise of automated red-teaming, Apple’s $2 million exploit chain bounties aimed at outbidding spyware brokers and the iPhone maker's focus on wireless proximity attacks and “tactical suitcase” Wi-Fi exploits. We also hit the news of Paragon spyware targeting European executives and the bizarre story of NSO Group’s supposed US investor buyout.
Plus, an update on Oracle’s zero-day ransomware fiasco, Ivanti’s endless patch delays, the ethics of journalists enabling ransomware operations on leak sites, Europe’s latest failed push for Chat Control, and VirusTotal’s new pricing tiers.
Cast: Juan Andres Guerrero-Saade, Ryan Naraine and Costin Raiu.Links:Transcript (unedited, AI-generated)Apple's new exploit-chain bountiesApple Announces $2 Million Bug Bounty Reward for the Most Dangerous ExploitsParagon Strikes Again: UniCredit CEO Among the TargetsNSO to be acquired by U.S. investorsOracle confirms exploited 0day - CVE-2025-61882Oracle Security Officer commsOracle E-Business Suite CVE-2025-61882 Exploited in Extortion AttacksZDI documents Ivanti 0days waiting for patches
