PLAY PODCASTS
#205 - Intel Chat: OPSEC FAIL, Manifest Confusion & Github Actions
Season 4 · Episode 205

#205 - Intel Chat: OPSEC FAIL, Manifest Confusion & Github Actions

The Cybersecurity Defenders Podcast · Christopher

April 1, 202529m 35s

Audio is streamed directly from the publisher (podcast.wistia.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.

Original episode page

Show Notes

In this episode of The Cybersecurity Defenders Podcast, we discuss some cutting-edge intel coming out of LimaCharlie's community.

  • On March 24, The Atlantic’s editor-in-chief Jeffrey Goldberg reported a significant OPSEC failure involving U.S. Secretary of Defense Pete Hegseth, who allegedly sent him detailed U.S. military plans over Signal—an encrypted messaging app—on March 15.
  • A newly discovered supply chain attack on the npm ecosystem is targeting developers by backdooring local packages through a process known as “manifest confusion.”
  • Unit 42 researchers at Palo Alto Networks have uncovered an ongoing software supply chain attack targeting GitHub repositories via malicious GitHub Actions workflows.
← All episodes of The Cybersecurity Defenders Podcast