When iPhone exploits turn into commodities
Safe Mode Podcast26 Maalis

When iPhone exploits turn into commodities

A sophisticated iPhone exploit kit known as DarkSword has escaped the world of targeted espionage and landed in public view—leaked on GitHub in a form that researchers say is trivial to repurpose and deploy. With the barrier to entry collapsing to “copy, paste, host,” the immediate concern is no longer whether advanced actors can use it, but how quickly criminal groups and opportunistic attackers will operationalize it against the enormous population of out-of-date iOS devices.
 In this episode, Jame’s Michael Covington joins us for a practitioner-level breakdown of what the DarkSword leak changes, who’s exposed, and what defenders can do right now. We dig into the real enterprise blast radius for organizations with BYOD and partially managed fleets, what meaningful detection and response looks like on iOS when visibility is limited, and how to prioritize patch enforcement, quarantine decisions, and Lockdown Mode for high-risk users. We also zoom out to the bigger pattern: highly capable mobile exploitation frameworks (including recent reporting on Coruna) increasingly surfacing outside tightly controlled circles—reshaping the threat model for Apple devices in the enterprise.

In our reporter chat, Greg talks with Matt Kapko on what they heard during their many conversations during their time at the RSAC 2026 Conference.

Tämä jakso on lisätty Podme-palveluun avoimen RSS-syötteen kautta eikä se ole Podmen omaa tuotantoa. Siksi jakso saattaa sisältää mainontaa.

Jaksot(138)

Zero days, zero order: The chaos reshaping vulnerability disclosure

Zero days, zero order: The chaos reshaping vulnerability disclosure

The rules of responsible disclosure were written for a different era — one where humans found bugs, humans reported them, and 90 days felt like plenty of time to patch. That era is over. In this epis...

18 Kesä 40min

Why the autonomous SOC Is the wrong goal

Why the autonomous SOC Is the wrong goal

On this week's episode, we're joined by Mike Nichols, General Manager of Security at Elastic, fresh off the Gartner Security and Risk Summit in the D.C. area, where AI dominated every conversation on ...

11 Kesä 33min

The last layer standing

The last layer standing

What happens when an "assume breach" scenario turns into a total corporate wipeout? In this episode of Safe Mode, host Greg welcomes Brandon Willitts, Director of Cyber Resilience at Everpure, to pull...

4 Kesä 35min

From Two Weeks to Three Days: The KEV Deadline Debate

From Two Weeks to Three Days: The KEV Deadline Debate

Drawing on his experience from his time in government working directly on CISA’s Known Exploited Vulnerabilities (KEV) catalog, Todd Beardsley, VP of Security Research at runZero, explains what it act...

29 Touko 37min

Can specialized security survive Daybreak and Mythos?

Can specialized security survive Daybreak and Mythos?

In this episode, we sit down with Lior Div, CEO of 7AI, at a moment when the ground is shifting under the entire security industry. With AI lowering the barrier to entry for attackers, supply chain co...

21 Touko 38min

Why access brokers have stubbornly remained successful

Why access brokers have stubbornly remained successful

Anna Pham of Huntress joins Safe Mode to discuss the current landscape of initial access brokers and how their tactics continue to support ransomware operations. She explains that attackers are still ...

14 Touko 31min

Can you prove which agent did what?

Can you prove which agent did what?

In this week's episode, Greg Otto talks with Howard Ting, CEO of Opal Security, about the growing security challenges created by AI agents inside the enterprise, especially around identity governance,...

7 Touko 28min

How government and Industry can raise the cost of cybercrime

How government and Industry can raise the cost of cybercrime

Sophos CEO Joe Levy and Director of Government Partnerships Alex Rose join Safe Mode from Washington, D.C. to discuss what meaningful public-private cybersecurity partnership looks like right now—movi...

30 Huhti 43min

Suosittua kategoriassa Politiikka ja uutiset

uutiscast
aikalisa
politiikan-puskaradio
rss-podme-livebox
rss-ootsa-kuullut-tasta
rss-vaalirankkurit-podcast
ootsa-kuullut-tasta-2
otetaan-yhdet
et-sa-noin-voi-sanoo-esittaa
rss-raha-talous-ja-politiikka
tervo-halme
the-ulkopolitist
rss-kaikki-uusiksi
linda-maria
rikosmyytit
rss-mina-ukkola
rss-polikulaari-pitka-kiekko-ja-muut-ts-podcastit
rss-asiastudio
rss-ulkopoditiikkaa
rss-pinnalla