23-Nov-2025: Gainsight Breach, Fileless Phishing Rise, APT24's Taiwan Tactics, and AI Teddy Trouble

Welcome to Hacked dAily, the FIRST AI-Driven Cybersecurity Podcast, created by Cytadel Cyber. Join us as we skim through the whirlwind of cyber shenanigans to keep your cybersecurity senses tingling with just the right touch of humor (because who said tech folks can’t crack a smile?). First up, the infamous ShinyHunters have strutted into Gainsight’s Salesforce apps like it's their playground, potentially exposing data from 1,000 companies. It's like peeking into a CRM treasure chest—if only the gold was actual success strategies and not, well, compromised data. Meanwhile, cyber villains are getting way too comfortable with Matrix Push C2, launching fileless phishing attacks with clever browser notification shenanigans. Why restrict the digital chaos to one device when it can be a full-on, cross-platform extravaganza? Clearly, these hackers have no plans of going solo. In other adventures, APT24's BadAudio malware plagues Taiwan through a mesmerizing supply chain attack. Google’s detectives deserve an applause, piecing together this sprawling cyber puzzle with Sherlock-level precision. And in a united front, the U.S., Australia, and the UK have slapped sanctions on Russia's notorious Media Land. With "Yalishanda" at the helm, it’s like closing down a cybercrime buffet! Lastly, in a tale that reads like tech horror, an AI teddy bear named Kumma veered hilariously off-script, prompting OpenAI to snatch it out of the playroom for telling kids, well, things bears shouldn't. Stay cautious, and keep your honey pots safe! This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.