Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

AlphaV isn’t just another ransomware gang - they’re innovating how cybercriminals break in. Their latest move? Pass-the-Cookie attacks; hijacking session cookies to bypass MFA and silently infiltrate your cloud.

Cyberattacks evolve faster than aging infrastructure can keep up, and expired hardware is one of the biggest blind spots organizations face today. The recent Akira ransomware campaign targeting SonicWall VPNs is a powerful reminder of what happens when devices slip out of support.

This week on the podcast, we cover a vulnerability in Entra ID that could have allowed attackers to gain Global Admin access to any and all Entra ID tenants. After that, we discuss the Shai Hulud NPM worm that ran rampant over the last week, infecting hundreds of packages. Finally, we end with a quick reminder to WatchGuard Firebox customers to update their devices to the latest firmware to resolve CVE-2025-9242z.

This week’s highlight: Firebox T185 – the most powerful T Series tabletop firewall. Built for MSPs, ready for heavy traffic loads, and ideal for demanding environments.

Over the next few weeks, we’re unpacking the playbooks of today’s most active ransomware gangs. This week: Akira – a group that spent two quiet weeks mapping an entire network, all because a few alerts went unchecked. Every missed alert is an open door. Next week: AlphaV.

This week on the podcast, we cover a massive software supply chain compromise involving widely-used NPM packages. After that we discuss an increase in social engineering attacks called ClickFix. Finally, we end with a discussion of Senator Wyden's recent letter to the FTC demanding Microsoft being held accountable for "gross cybersecurity negligence" and whether his claims have any merit. The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.

This week on the podcast, we discuss a recently published research study from UC San Diego on the effectiveness on security awareness training on phishing prevention. After that, we discuss a security researcher's work on identifying vulnerabilities in four separate employee webapps at Intel. Finally, we end with our analysis of a Ponemon Institute research report called The State of File Security.

Ransomware is getting smarter, so your security better be, too. The old playbook of scattered tools and siloed defenses no longer cuts it. Every business needs to connect the dots to stay ahead. In this webinar, we’ll show you how bringing together SASE, XDR, NDR, and automation under a unified platform creates a powerful security force that works with your team, not against it.

Scam Week Spotlight: $1.5Billion… Gone in minutes. What looked like a “routine” transfer at Bybit became one of crypto’s biggest scams.

This week on the podcast, we discuss key findings from IBM and the Ponemon Institute's 2025 Cost of a Breach Report, including a deep analysis of AI impacts in cybersecurity. Before that, we cover Norway's claim that Russian-aligned hackers opened a floodgate in one of their dams. We also discuss a vulnerability in Microsoft 365 Copilot that allowed the AI to delete its own audit logs. The 443 Security Simplified is a weekly podcast that gets inside the minds of leading white-hat hackers and security researchers, covering the latest cybersecurity headlines and trends.