Russia hacks Ukraine war supply lines, Signal blocks Windows screenshots, BadSuccessor vuln disclosure debate

Three Buddy Problem – Episode 47: We unpack a multi-agency report on Russia’s APT28/Fancy Bear hacking and spying on Ukraine war supply lines, CISA’s sloppy YARA rules riddled with false positives, the ethics of full-disclosure after Akamai dropped Windows Server “BadSuccessor” exploit details, and Sekoia’s discovery of thousands of hijacked edge devices repurposed as honeypots.

The back half veers into Microsoft’s resurrected Windows Recall, Signal’s new screenshot-blocking countermeasure, Japan’s fresh legal mandate for pre-emptive cyber strikes, and why appliance vendors like Ivanti keep landing in the headlines.

Along the way you get hot takes on techno-feudalism, Johnny Ive’s rumored AI gadget, and a lively debate over whether publishing exploit code ever helps defenders.

Cast: Juan Andres Guerrero-Saade, Ryan Naraine and Costin Raiu.

Links:

• Transcript (unedited, AI-generated)
• Russian hackers hitting logistics companies supplying Ukraine
• CISA says Russian hackers targeting Ukraine war supply lines
• ViciousTrap: Turning edge devices into honeypots
• BadSuccessor: Abusing dMSA to escalate privileges in Active Directory
• Signal adds anti-screenshot to thwart Windows Recall
• Controversial Windows Recall gets security makeover
• Microsoft’s International Criminal Court blockade
• Japan enacts active cyberdefense law
• UAE recruiting US personnel Displaced by DOGE