About this episode
Three Buddy Problem - Episode 55: A SharePoint zero-day exploit chain from Pwn2Own Berlin becomes a full-blown security crisis with Chinese nation-state actors exploiting vulnerabilities that Microsoft struggled to patch properly, leading to trivial bypasses and a cascade of new CVEs. The timeline is messy, the patches are faulty, and ransomware groups are lining up to join the party.
We also revisit the ProPublica bombshell about Microsoft's "digital escorts" and U.S. government data exposure to Chinese adversaries and the company's "oops, we will stop" response. Plus, trusting Google's Big Sleep AI claims and a cautionary tale about AI agents gone rogue that wiped out a production database.
Cast: Juan Andres Guerrero-Saade, Ryan Naraine and Costin Raiu.Links:Transcript (unedited, AI-generated)Three Buddy Problem LIVE at Black HatTBP at Countermeasures 2025CODE WHITE GmbH ToolShell exploitMicrosoft guidance for SharePoint vulnerability CVE-2025-53770Kaspersky on ToolShell: A story of five Sharepoint vulnsRyan's EkoParty keynote on Microsoft cultureMicrosoft Disrupting active exploitation of on-prem SharePoint flawsSentinelLabs on Sharepoint zero-day in-the-wild
