North Korea's $285M Crypto Heist, China Breaches FBI System, Delve Faces New Allegations

North Korea's $285M Crypto Heist, China Breaches FBI System, Delve Faces New Allegations

Author: Jim Love April 7, 2026 Duration: 16:12
Cybersecurity Today
NewsTechnology

Host David Shiple covers major cybersecurity news: investigators attribute a record $285 million April 1 hack of crypto platform Drift Protocol to North Korea, describing a three-week setup involving a fake "Carbon Vote Token," wash trading to inflate value, social engineering to pre-approve backdoored transactions, Drift's removal of a timelock, and rapid collateralized withdrawals that crashed Drift's token and are now tracked by TRM Labs; the report notes North Korea's 2025 crypto theft total of $2.5B and lifetime total surpassing $7B after this incident, alongside mention of a North Korea-linked supply-chain compromise of the widely used Axios package. Stryker Medical says it has fully recovered from a March 11 Iran-linked wiper attack that used a compromised admin account and Microsoft Intune, prompting Microsoft guidance on multi-admin approval for wipes. The FBI labels a suspected China-linked breach of a U.S. surveillance system a "major incident," likening it to the 2024 Salt Typhoon campaign, while Sen. Mark Warner cites staffing cuts and leadership turmoil at CISA. TechCrunch reports embattled compliance startup Delve faces new claims it repackaged an open-source tool (Sim Studio) as its own "Pathways," as Delve denies broader fraud allegations, says it was targeted by a malicious actor, and Y Combinator cuts ties.

Cybersecurity Today  would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.  You can find them at Meter.com/cst

00:00 Headlines And Sponsor
00:54 North Korea Crypto Heist
01:16 How The Drift Hack Worked
03:20 Bigger DPRK Crypto Trend
04:24 Stryker Wiper Recovery
06:39 China Breach Major Incident
08:38 Policy And Staffing Fallout
09:37 Delve Startup In Crisis
10:29 Stolen Software Allegations
13:12 Delve Fights Back YC Cuts Ties
14:35 Wrap Up And Thanks
15:12 Sponsor Message Meter

00:00 Headlines And Sponsor
00:54 North Korea Crypto Heist
01:16 How The Drift Hack Worked
03:20 Bigger DPRK Crypto Trend
04:24 Stryker Wiper Recovery
06:39 China Breach Major Incident
08:38 Policy And Staffing Fallout
09:37 Delve Startup In Crisis
10:29 Stolen Software Allegations
13:12 Delve Fights Back YC Cuts Ties
14:35 Wrap Up And Thanks
15:12 Sponsor Message Meter


Every morning, Jim Love sifts through the noise of the digital world to bring you a clear, concise briefing on what actually matters. Cybersecurity Today isn't about fearmongering; it's about practical awareness. You'll hear straightforward analysis of the most recent attacks targeting companies, from sophisticated ransomware campaigns to stealthy data theft. Jim breaks down the implications of major breach disclosures, explaining not just what was stolen, but how it happened and who is affected. The focus remains on actionable intelligence-concrete steps and strategic thinking that can help protect your organization's data and infrastructure. This daily podcast serves as an essential filter for IT professionals, business leaders, and anyone responsible for digital assets, transforming complex threats into understandable insights. Tune in for a grounded perspective on navigating an online landscape where the risks are constantly evolving, and the need for clear, timely information has never been greater.
Author: Language: English Episodes: 100

Official website RSS
linkedin
Cybersecurity Today
Podcast Episodes
Vercel Breach Started With AI Tool [not-audio_url] [/not-audio_url]

Duration: 10:42
Vercel Supply-Chain Breach via AI Tool, Meta Sued Over Scam Ads, and Ransomware Surges with "The Gentleman" David Shipley covers new details on the Vercel breach, which began when an employee used the third-party AI tool…
Security Researcher Goes To War Against Microsoft [not-audio_url] [/not-audio_url]

Duration: 20:47
Microsoft Under Fire, NIST Scales Back NVD, FortiSandbox Critical Bugs, Vercel Breach Claims, Scattered Spider Member Pleads Guilty Host David Shipley covers five major stories: researcher "Chaotic Eclipse" publicly rele…
Cybersecurity Today Month in Review of March/April 2026 [not-audio_url] [/not-audio_url]

Duration: 1:02:21
Cybersecurity Today Month-in-Review: RSAC AI Hype, Agentic Risks, Mythos Claims, and Real-World Resilience Jim Love hosts a delayed March month-in-review with panelists David Shipley and Laura Payne, starting with RSAC t…
Cisco Warns Webex Customers Of Critical SSO Problem [not-audio_url] [/not-audio_url]

Duration: 12:41
WebEx SSO Vulnerability, booking.com Reservation Hijacking Risks, Windows Recall Scrutiny, and AI Vishing-as-a-Service Host Jim Love reports that Cisco disclosed a critical WebEx vulnerability (CVE-2026-2184) affecting S…
North Korean Spies DM You On Facebook [not-audio_url] [/not-audio_url]

Duration: 19:55
Android Mirax RAT, North Korea's Friend-Request Hacks, Adobe PDF Zero-Day, and FBI Phishing Takedown | Cybersecurity Today David Shipley covers multiple trust-based cyber threats: Mirax Android malware pushed via Meta ad…
Banks Panic As Anthropic Mythos Exposes Software Vulnerabilties [not-audio_url] [/not-audio_url]

Duration: 19:13
Mythos Sparks Urgent Bank Meetings, AI Shrinks Exploit Windows, CEO Phishing Beats MFA + Crypto Fraud Bust Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a co…
Cisco Breached: Source Code Stolen - Cybersecurity Today [not-audio_url] [/not-audio_url]

Duration: 15:03
Cisco Source Code Stolen in Trivy Fallout, Axios Supply Chain Attack, and Active Exploitation of Fortinet and Citrix Flaws David Shipley reports multiple major security incidents: attackers used credentials stolen in the…

12345...10»