A special mailbag episode with book recommendations
(Presented by Material Security: We protect your company’s most valuable materials -- the emails, files, and accounts that live in your Google Workspace and Microsoft 365 cloud offices). Three Buddy Problem - Episode 79: We cover MongoBleed (CVE‑2025‑14847), exposed MongoDB deployments, and the sad realization that zero-day attacks are a normal, everyday occurrence. Plus, AI’s expanding role and misuse across products and workflows, proximity attacks against Bluetooth audio devices, spyware sanctions de-listings, and ransomware economics. In a special mailbag segment, we give our book recommendations and respond to common questions from the listeners. Cast: Ryan Naraine, Costin Raiu and Juan Andres Guerrero-Saade.
Audio is streamed directly from the publisher (aphid.fireside.fm) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
(Presented by Material Security: We protect your company’s most valuable materials -- the emails, files, and accounts that live in your Google Workspace and Microsoft 365 cloud offices.)
Three Buddy Problem - Episode 79: We cover MongoBleed (CVE‑2025‑14847), exposed MongoDB deployments, and the sad realization that zero-day attacks are a normal, everyday occurrence. Plus, AI’s expanding role and misuse across products and workflows, proximity attacks against Bluetooth audio devices, spyware sanctions de-listings, and ransomware economics.
In a special mailbag segment, we give our book recommendations and respond to common questions from the listeners.
Cast: Juan Andres Guerrero-Saade, Ryan Naraine and Costin Raiu.
Links:
- Transcript (unedited, AI-generated)
- Sponsored by Material Security
- MongoDB Server Security Update (Dec 2025)
- CVE Record: CVE-2025-14847
- Censys on MongoBleed
- European Space Agency hit by cyberattack
- Security pros plead guilty to ransomware
- US removes sanctions for three execs tied to spyware maker Intellexa
- Bluetooth Headphone Jacking: A Key to Your Phone
- Dan Geer Black Hat 2015 keynote
- Book Review: Infected - A Candid Look at VirusTotal’s Birth and Legacy
- Infected: From Side Project to Google: The Journey Behind VirusTotal
- The Human Factor (Inside the CIA's dysfunctional intelligence culture)
- A Killing Art: The Untold History of Tae Kwon Do
- Thou Shall Prosper: Ten Commandments for Making Money
- Cult of the Dead Cow (by Joseph Menn)
- The Nvidia Way: Jensen Huang and the Making of a Tech Giant
- From Third World to First: The Singapore Story
- Thinking in Systems (PDF)
- AI Superpowers: China, Silicon Valley, and the New World Order
- The Denial of Death: Ernest Becker
- Energy and Civilization: A History by Vaclav Smil
- DeepLearning.AI