<?xml version="1.0" encoding="UTF-8" ?>
<?xml-stylesheet href="https://rss.buzzsprout.com/styles.xsl" type="text/xsl"?>
<rss version="2.0" xmlns:itunes="http://www.itunes.com/dtds/podcast-1.0.dtd" xmlns:podcast="https://podcastindex.org/namespace/1.0" xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:psc="http://podlove.org/simple-chapters" xmlns:atom="http://www.w3.org/2005/Atom">
<channel>
  <atom:link href="https://rss.buzzsprout.com/2506052.rss" rel="self" type="application/rss+xml" />
  <atom:link href="https://pubsubhubbub.appspot.com/" rel="hub" xmlns="http://www.w3.org/2005/Atom" />
  <title>The DOT Report</title>

  <lastBuildDate>Thu, 25 Jun 2026 00:00:01 -0400</lastBuildDate>
  <link>https://info.dotsecurity.com/dot-report</link>
  <language>en-us</language>
  <copyright>© 2026 The DOT Report</copyright>
  <podcast:locked>yes</podcast:locked>
    <podcast:guid>97b2d5db-1650-5a43-b87a-dd33701fbf9c</podcast:guid>
  <podcast:txt purpose="verify">social@impactnetworking.com</podcast:txt>
  <itunes:author>DOT Security</itunes:author>
  <itunes:type>episodic</itunes:type>
  <itunes:explicit>false</itunes:explicit>
  <description><![CDATA[<p>The DOT Report podcast covers the biggest headlines in the cybersecurity space each month. Join us as we investigate the larger implications behind cyber incidents, dive into the details of curated stories, and explore the role that cybersecurity plays in modern business.&nbsp;</p>]]></description>
  <generator>Buzzsprout (https://www.buzzsprout.com)</generator>
  <itunes:keywords>cybersecurity, cybersecurity news, cyber security, technology news, tech news</itunes:keywords>
  <itunes:owner>
    <itunes:name>DOT Security</itunes:name>
    <itunes:email>social@impactnetworking.com</itunes:email>
  </itunes:owner>
  <image>
     <url>https://storage.buzzsprout.com/n6we1mckqotxg6bwoptzb3sb6vyq?.jpg</url>
     <title>The DOT Report</title>
     <link>https://info.dotsecurity.com/dot-report</link>
  </image>
  <itunes:image href="https://storage.buzzsprout.com/n6we1mckqotxg6bwoptzb3sb6vyq?.jpg" />
  <itunes:category text="Technology" />
  <item>
    <itunes:title>FIFA World Cup Cyber Threats &amp; Scams, Attackers Target Critical Infrastructure, $4.1B Cybersecurity Deal</itunes:title>
    <title>FIFA World Cup Cyber Threats &amp; Scams, Attackers Target Critical Infrastructure, $4.1B Cybersecurity Deal</title>
    <itunes:summary><![CDATA[The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our June edition covers federal warnings about attackers targeting industrial monitoring systems used across critical infrastructure, growing cyber threat concerns surrounding the 2026 FIFA World Cup, identity visibility challenges highlighted by new research, and Accenture's $4.1 billion investment in operational technology security. We also examine critical NGINX vulnerabilities that prompted eme...]]></itunes:summary>
    <description><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our June edition covers federal warnings about attackers targeting industrial monitoring systems used across critical infrastructure, growing cyber threat concerns surrounding the 2026 FIFA World Cup, identity visibility challenges highlighted by new research, and Accenture&apos;s $4.1 billion investment in operational technology security. We also examine critical NGINX vulnerabilities that prompted emergency patches, the emerging role of AI agents in offensive cyber operations, a massive compilation of 24 billion stolen records, and Kodak&apos;s confirmed breach linked to the ShinyHunters threat group. </p>]]></description>
    <content:encoded><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our June edition covers federal warnings about attackers targeting industrial monitoring systems used across critical infrastructure, growing cyber threat concerns surrounding the 2026 FIFA World Cup, identity visibility challenges highlighted by new research, and Accenture&apos;s $4.1 billion investment in operational technology security. We also examine critical NGINX vulnerabilities that prompted emergency patches, the emerging role of AI agents in offensive cyber operations, a massive compilation of 24 billion stolen records, and Kodak&apos;s confirmed breach linked to the ShinyHunters threat group. </p>]]></content:encoded>
    <enclosure url="https://www.buzzsprout.com/2506052/episodes/19398513-fifa-world-cup-cyber-threats-scams-attackers-target-critical-infrastructure-4-1b-cybersecurity-deal.mp3" length="18719455" type="audio/mpeg" />
    <itunes:author>DOT Security</itunes:author>
    <guid isPermaLink="false">Buzzsprout-19398513</guid>
    <pubDate>Thu, 25 Jun 2026 00:00:00 -0400</pubDate>
    <itunes:duration>1554</itunes:duration>
    <itunes:keywords></itunes:keywords>
    <itunes:season>1</itunes:season>
    <itunes:episode>13</itunes:episode>
    <itunes:episodeType>full</itunes:episodeType>
    <itunes:explicit>false</itunes:explicit>
  </item>
  <item>
    <itunes:title>Canvas Hacked, GitHub Repositories Breached, INTERPOL Arrests 200+</itunes:title>
    <title>Canvas Hacked, GitHub Repositories Breached, INTERPOL Arrests 200+</title>
    <itunes:summary><![CDATA[The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our May edition covers a major breach involving the Canvas learning platform and the controversial response that followed, an INTERPOL operation targeting cybercrime networks across the MENA region, supply chain incidents involving GitHub and Grafana Labs exposing internal development environments and source code, a surge in identity-driven and OAuth-based phishing attacks, a large-scale Android ad...]]></itunes:summary>
    <description><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our May edition covers a major breach involving the Canvas learning platform and the controversial response that followed, an INTERPOL operation targeting cybercrime networks across the MENA region, supply chain incidents involving GitHub and Grafana Labs exposing internal development environments and source code, a surge in identity-driven and OAuth-based phishing attacks, a large-scale Android ad fraud operation, and growing efforts to strengthen critical infrastructure resilience.</p>]]></description>
    <content:encoded><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our May edition covers a major breach involving the Canvas learning platform and the controversial response that followed, an INTERPOL operation targeting cybercrime networks across the MENA region, supply chain incidents involving GitHub and Grafana Labs exposing internal development environments and source code, a surge in identity-driven and OAuth-based phishing attacks, a large-scale Android ad fraud operation, and growing efforts to strengthen critical infrastructure resilience.</p>]]></content:encoded>
    <enclosure url="https://www.buzzsprout.com/2506052/episodes/19254402-canvas-hacked-github-repositories-breached-interpol-arrests-200.mp3" length="15636484" type="audio/mpeg" />
    <itunes:author>DOT Security</itunes:author>
    <guid isPermaLink="false">Buzzsprout-19254402</guid>
    <pubDate>Thu, 28 May 2026 11:00:00 -0400</pubDate>
    <itunes:duration>1298</itunes:duration>
    <itunes:keywords>cybersecurity, github breach, Canvas Hack, cyber breaches, cyber hacks, cyber news, cyber crime</itunes:keywords>
    <itunes:season>1</itunes:season>
    <itunes:episode>12</itunes:episode>
    <itunes:episodeType>full</itunes:episodeType>
    <itunes:explicit>false</itunes:explicit>
  </item>
  <item>
    <itunes:title>AI Vulnerabilities, Global Sporting Events, Groundbreaking Ransomware Case</itunes:title>
    <title>AI Vulnerabilities, Global Sporting Events, Groundbreaking Ransomware Case</title>
    <itunes:summary><![CDATA[The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month.  Our April edition covers concerns around restricted AI systems being accessed outside intended controls, a confirmed breach at Vercel tied to a third-party integration, an international takedown of a global phishing platform, a social engineering-driven breach affecting Hims &amp; Hers, and rising cyber risk tied to global events like the Olympics and World Cup.  Then we’ll get into warn...]]></itunes:summary>
    <description><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. </p><p>Our April edition covers concerns around restricted AI systems being accessed outside intended controls, a confirmed breach at Vercel tied to a third-party integration, an international takedown of a global phishing platform, a social engineering-driven breach affecting Hims &amp; Hers, and rising cyber risk tied to global events like the Olympics and World Cup. </p><p>Then we’ll get into warnings around large-scale hacktivist attacks in the UK, ongoing security gaps across the entertainment industry, and a groundbreaking federal case involving cybersecurity professionals accused of working with ransomware actors.</p>]]></description>
    <content:encoded><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. </p><p>Our April edition covers concerns around restricted AI systems being accessed outside intended controls, a confirmed breach at Vercel tied to a third-party integration, an international takedown of a global phishing platform, a social engineering-driven breach affecting Hims &amp; Hers, and rising cyber risk tied to global events like the Olympics and World Cup. </p><p>Then we’ll get into warnings around large-scale hacktivist attacks in the UK, ongoing security gaps across the entertainment industry, and a groundbreaking federal case involving cybersecurity professionals accused of working with ransomware actors.</p>]]></content:encoded>
    <enclosure url="https://www.buzzsprout.com/2506052/episodes/19100123-ai-vulnerabilities-global-sporting-events-groundbreaking-ransomware-case.mp3" length="13310244" type="audio/mpeg" />
    <itunes:author>DOT Security</itunes:author>
    <guid isPermaLink="false">Buzzsprout-19100123</guid>
    <pubDate>Thu, 30 Apr 2026 10:00:00 -0400</pubDate>
    <itunes:duration>1104</itunes:duration>
    <itunes:keywords></itunes:keywords>
    <itunes:season>1</itunes:season>
    <itunes:episode>11</itunes:episode>
    <itunes:episodeType>full</itunes:episodeType>
    <itunes:explicit>false</itunes:explicit>
  </item>
  <item>
    <itunes:title>Tycoon 2FA Takedown, Microsoft 365 Phishing Campaign, Google Acquires Wiz</itunes:title>
    <title>Tycoon 2FA Takedown, Microsoft 365 Phishing Campaign, Google Acquires Wiz</title>
    <itunes:summary><![CDATA[The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month.  Our March edition covers a device code phishing campaign impacting Microsoft 365 organizations, a hacker sentenced for enabling ransomware attacks, CISA warnings on actively exploited Apple and web application flaws, a DOJ disruption of massive IoT botnets, a new U.S. energy cybersecurity strategy, the takedown of the Tycoon 2FA phishing platform, a cyberattack affecting Stryker, and Google’s...]]></itunes:summary>
    <description><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. </p><p>Our March edition covers a device code phishing campaign impacting Microsoft 365 organizations, a hacker sentenced for enabling ransomware attacks, CISA warnings on actively exploited Apple and web application flaws, a DOJ disruption of massive IoT botnets, a new U.S. energy cybersecurity strategy, the takedown of the Tycoon 2FA phishing platform, a cyberattack affecting Stryker, and Google’s $32 billion acquisition of Wiz. </p>]]></description>
    <content:encoded><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. </p><p>Our March edition covers a device code phishing campaign impacting Microsoft 365 organizations, a hacker sentenced for enabling ransomware attacks, CISA warnings on actively exploited Apple and web application flaws, a DOJ disruption of massive IoT botnets, a new U.S. energy cybersecurity strategy, the takedown of the Tycoon 2FA phishing platform, a cyberattack affecting Stryker, and Google’s $32 billion acquisition of Wiz. </p>]]></content:encoded>
    <enclosure url="https://www.buzzsprout.com/2506052/episodes/18970146-tycoon-2fa-takedown-microsoft-365-phishing-campaign-google-acquires-wiz.mp3" length="14717406" type="audio/mpeg" />
    <itunes:author>DOT Security</itunes:author>
    <guid isPermaLink="false">Buzzsprout-18970146</guid>
    <pubDate>Tue, 07 Apr 2026 11:00:00 -0400</pubDate>
    <itunes:duration>1221</itunes:duration>
    <itunes:keywords></itunes:keywords>
    <itunes:season>1</itunes:season>
    <itunes:episode>10</itunes:episode>
    <itunes:episodeType>full</itunes:episodeType>
    <itunes:explicit>false</itunes:explicit>
  </item>
  <item>
    <itunes:title>Eliasxy Claims Hack on Wendy’s, INTERPOL Operation Leads to Arrests, AI Agents Ignoring Security Boundaries</itunes:title>
    <title>Eliasxy Claims Hack on Wendy’s, INTERPOL Operation Leads to Arrests, AI Agents Ignoring Security Boundaries</title>
    <itunes:summary><![CDATA[The DOT Report reviews the biggest stories and headlines in the cybersecurityspace each month. Our February edition covers an AI-assisted campaign thatcompromised more than 600 FortiGate firewalls worldwide, CISA’s reorganization of itsCybersecurity Division, a Ukrainian national sentenced in a U.S. identity fraud case, aclaimed Wendy’s franchise data breach, a BeyondTrust flaw used to deploy web shells, anINTERPOL operation resulting in multiple cybercrime arrests, malicious fake IPTV appssp...]]></itunes:summary>
    <description><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurityspace each month. Our February edition covers an AI-assisted campaign thatcompromised more than 600 FortiGate firewalls worldwide, CISA’s reorganization of itsCybersecurity Division, a Ukrainian national sentenced in a U.S. identity fraud case, aclaimed Wendy’s franchise data breach, a BeyondTrust flaw used to deploy web shells, anINTERPOL operation resulting in multiple cybercrime arrests, malicious fake IPTV appsspreading Android malware, and new research showing AI agents routinely ignore security</p>]]></description>
    <content:encoded><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurityspace each month. Our February edition covers an AI-assisted campaign thatcompromised more than 600 FortiGate firewalls worldwide, CISA’s reorganization of itsCybersecurity Division, a Ukrainian national sentenced in a U.S. identity fraud case, aclaimed Wendy’s franchise data breach, a BeyondTrust flaw used to deploy web shells, anINTERPOL operation resulting in multiple cybercrime arrests, malicious fake IPTV appsspreading Android malware, and new research showing AI agents routinely ignore security</p>]]></content:encoded>
    <enclosure url="https://www.buzzsprout.com/2506052/episodes/18788889-eliasxy-claims-hack-on-wendy-s-interpol-operation-leads-to-arrests-ai-agents-ignoring-security-boundaries.mp3" length="14355104" type="audio/mpeg" />
    <itunes:author>DOT Security</itunes:author>
    <guid isPermaLink="false">Buzzsprout-18788889</guid>
    <pubDate>Thu, 05 Mar 2026 07:00:00 -0500</pubDate>
    <itunes:duration>1191</itunes:duration>
    <itunes:keywords></itunes:keywords>
    <itunes:season>1</itunes:season>
    <itunes:episode>9</itunes:episode>
    <itunes:episodeType>full</itunes:episodeType>
    <itunes:explicit>false</itunes:explicit>
  </item>
  <item>
    <itunes:title>34 Black Axe Members Arrested, Healthcare Sector Under Cyber Fire</itunes:title>
    <title>34 Black Axe Members Arrested, Healthcare Sector Under Cyber Fire</title>
    <itunes:summary><![CDATA[The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our January edition covers Europol’s arrest of dozens of Black Axe cybercrime members, a newly disclosed attack technique targeting Microsoft Copilot, malicious AI-powered developer tools and browser extensions stealing source code, emerging methods for hacking vehicles and EV infrastructure, an actively exploited email server authentication bypass, a critical flaw in the AWS console that risked bu...]]></itunes:summary>
    <description><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our January edition covers Europol’s arrest of dozens of Black Axe cybercrime members, a newly disclosed attack technique targeting Microsoft Copilot, malicious AI-powered developer tools and browser extensions stealing source code, emerging methods for hacking vehicles and EV infrastructure, an actively exploited email server authentication bypass, a critical flaw in the AWS console that risked build environment compromise, fake AI Chrome extensions harvesting user data, and ongoing healthcare breaches despite strengthened defenses. </p>]]></description>
    <content:encoded><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our January edition covers Europol’s arrest of dozens of Black Axe cybercrime members, a newly disclosed attack technique targeting Microsoft Copilot, malicious AI-powered developer tools and browser extensions stealing source code, emerging methods for hacking vehicles and EV infrastructure, an actively exploited email server authentication bypass, a critical flaw in the AWS console that risked build environment compromise, fake AI Chrome extensions harvesting user data, and ongoing healthcare breaches despite strengthened defenses. </p>]]></content:encoded>
    <enclosure url="https://www.buzzsprout.com/2506052/episodes/18627122-34-black-axe-members-arrested-healthcare-sector-under-cyber-fire.mp3" length="13674763" type="audio/mpeg" />
    <itunes:author>DOT Security</itunes:author>
    <guid isPermaLink="false">Buzzsprout-18627122</guid>
    <pubDate>Thu, 05 Feb 2026 10:00:00 -0500</pubDate>
    <itunes:duration>1134</itunes:duration>
    <itunes:keywords></itunes:keywords>
    <itunes:season>1</itunes:season>
    <itunes:episode>8</itunes:episode>
    <itunes:episodeType>full</itunes:episodeType>
    <itunes:explicit>false</itunes:explicit>
  </item>
  <item>
    <itunes:title>Spyware Firm Leaks, Federal Grant Program Bill</itunes:title>
    <title>Spyware Firm Leaks, Federal Grant Program Bill</title>
    <itunes:summary><![CDATA[Podcast description: The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our December edition covers the two vulnerabilities that Google is actively working to patch, four new phishing kits that have hit the market, the information leaks from Spyware firm Intellexa, a bipartisan bill introduced to reinstate cybersecurity grant programs, the Inotiv breach that exposed personal information and research data, Axis Communication’s commitment to the CISA...]]></itunes:summary>
    <description><![CDATA[<p>Podcast description: The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our December edition covers the two vulnerabilities that Google is actively working to patch, four new phishing kits that have hit the market, the information leaks from Spyware firm Intellexa, a bipartisan bill introduced to reinstate cybersecurity grant programs, the Inotiv breach that exposed personal information and research data, Axis Communication’s commitment to the CISA Secure by Design pledge, and the ongoing campaign targeting Zendesk. </p>]]></description>
    <content:encoded><![CDATA[<p>Podcast description: The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our December edition covers the two vulnerabilities that Google is actively working to patch, four new phishing kits that have hit the market, the information leaks from Spyware firm Intellexa, a bipartisan bill introduced to reinstate cybersecurity grant programs, the Inotiv breach that exposed personal information and research data, Axis Communication’s commitment to the CISA Secure by Design pledge, and the ongoing campaign targeting Zendesk. </p>]]></content:encoded>
    <enclosure url="https://www.buzzsprout.com/2506052/episodes/18458181-spyware-firm-leaks-federal-grant-program-bill.mp3" length="12829925" type="audio/mpeg" />
    <itunes:author>DOT Security</itunes:author>
    <guid isPermaLink="false">Buzzsprout-18458181</guid>
    <pubDate>Thu, 08 Jan 2026 06:00:00 -0500</pubDate>
    <itunes:duration>1064</itunes:duration>
    <itunes:keywords>Cybersecurity News, Cyber News, Cybersecurity</itunes:keywords>
    <itunes:season>1</itunes:season>
    <itunes:episode>7</itunes:episode>
    <itunes:episodeType>full</itunes:episodeType>
    <itunes:explicit>false</itunes:explicit>
  </item>
  <item>
    <itunes:title>5 Plead Guilty in Ongoing Cyber Espionage Case, Jaguar Earnings Down, Train Brakes Compromised</itunes:title>
    <title>5 Plead Guilty in Ongoing Cyber Espionage Case, Jaguar Earnings Down, Train Brakes Compromised</title>
    <itunes:summary><![CDATA[Podcast description: The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our November edition covers the record-breaking 15.72 Tbps DDoS attack mitigated by Microsoft, the guilty pleas of five U.S. citizens in a billion-dollar identity fraud scheme, the SEC’s dismissal of the long-running SolarWinds case, the TamperedChef malware campaign exploiting fake software installers, critical vulnerabilities in railway braking systems, a sophisticated phishi...]]></itunes:summary>
    <description><![CDATA[<p>Podcast description: The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our November edition covers the record-breaking 15.72 Tbps DDoS attack mitigated by Microsoft, the guilty pleas of five U.S. citizens in a billion-dollar identity fraud scheme, the SEC’s dismissal of the long-running SolarWinds case, the TamperedChef malware campaign exploiting fake software installers, critical vulnerabilities in railway braking systems, a sophisticated phishing tool bypassing Microsoft 365 defenses, the cyberattack that hit Jaguar Land Rover’s factories and finances, and finally, the surge in operational technology attacks impacting industrial networks globally. </p>]]></description>
    <content:encoded><![CDATA[<p>Podcast description: The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our November edition covers the record-breaking 15.72 Tbps DDoS attack mitigated by Microsoft, the guilty pleas of five U.S. citizens in a billion-dollar identity fraud scheme, the SEC’s dismissal of the long-running SolarWinds case, the TamperedChef malware campaign exploiting fake software installers, critical vulnerabilities in railway braking systems, a sophisticated phishing tool bypassing Microsoft 365 defenses, the cyberattack that hit Jaguar Land Rover’s factories and finances, and finally, the surge in operational technology attacks impacting industrial networks globally. </p>]]></content:encoded>
    <enclosure url="https://www.buzzsprout.com/2506052/episodes/18295305-5-plead-guilty-in-ongoing-cyber-espionage-case-jaguar-earnings-down-train-brakes-compromised.mp3" length="11043872" type="audio/mpeg" />
    <itunes:author>DOT Security</itunes:author>
    <guid isPermaLink="false">Buzzsprout-18295305</guid>
    <pubDate>Thu, 04 Dec 2025 06:00:00 -0500</pubDate>
    <itunes:duration>915</itunes:duration>
    <itunes:keywords></itunes:keywords>
    <itunes:season>1</itunes:season>
    <itunes:episode>6</itunes:episode>
    <itunes:episodeType>full</itunes:episodeType>
    <itunes:explicit>false</itunes:explicit>
  </item>
  <item>
    <itunes:title>F1 Driver’s PII Accessed through System Flaw, New Herodotus Malware Beats Anti-Fraud Systems, Europol Dismantles SIM Cartel</itunes:title>
    <title>F1 Driver’s PII Accessed through System Flaw, New Herodotus Malware Beats Anti-Fraud Systems, Europol Dismantles SIM Cartel</title>
    <itunes:summary><![CDATA[The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our October issue covers the discovered flaw in the FIA driver portal, the new Android trojan malware dubbed Herodotus, a variety of compromised Google Chrome extensions used in a WhatsApp spam campaign, the theft of millions in the form of gift cards, the certificates Microsoft has recently purged for security reasons, a massive credential harvesting campaign, how Europol shut down a massive SIM f...]]></itunes:summary>
    <description><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our October issue covers the discovered flaw in the FIA driver portal, the new Android trojan malware dubbed Herodotus, a variety of compromised Google Chrome extensions used in a WhatsApp spam campaign, the theft of millions in the form of gift cards, the certificates Microsoft has recently purged for security reasons, a massive credential harvesting campaign, how Europol shut down a massive SIM farm, and lastly, the ‘glassworm’ attack that’s disrupting the supply chain.</p>]]></description>
    <content:encoded><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our October issue covers the discovered flaw in the FIA driver portal, the new Android trojan malware dubbed Herodotus, a variety of compromised Google Chrome extensions used in a WhatsApp spam campaign, the theft of millions in the form of gift cards, the certificates Microsoft has recently purged for security reasons, a massive credential harvesting campaign, how Europol shut down a massive SIM farm, and lastly, the ‘glassworm’ attack that’s disrupting the supply chain.</p>]]></content:encoded>
    <enclosure url="https://www.buzzsprout.com/2506052/episodes/18172226-f1-driver-s-pii-accessed-through-system-flaw-new-herodotus-malware-beats-anti-fraud-systems-europol-dismantles-sim-cartel.mp3" length="9224554" type="audio/mpeg" />
    <itunes:author>DOT Security</itunes:author>
    <guid isPermaLink="false">Buzzsprout-18172226</guid>
    <pubDate>Tue, 11 Nov 2025 12:00:00 -0500</pubDate>
    <itunes:duration>763</itunes:duration>
    <itunes:keywords></itunes:keywords>
    <itunes:season>1</itunes:season>
    <itunes:episode>5</itunes:episode>
    <itunes:episodeType>full</itunes:episodeType>
    <itunes:explicit>false</itunes:explicit>
  </item>
  <item>
    <itunes:title>17,000+ Phishing Domains, Synthetic Identity Fraud, AI Leaking Gmail Data</itunes:title>
    <title>17,000+ Phishing Domains, Synthetic Identity Fraud, AI Leaking Gmail Data</title>
    <itunes:summary><![CDATA[The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month.  Our September report features an examination of the 17,000+ phishing domains that popped up, the arrest of two Scattered Spider hackers, the details of TA558’s most recent campaign, and the ShadowLeak AI flaw leaking Gmail data. Plus, our report this month covers the eruption of synthetic identity fraud, the new file corruption tactic known as FileFix, and how the ransomware HybridPetya bypas...]]></itunes:summary>
    <description><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. </p><p>Our September report features an examination of the 17,000+ phishing domains that popped up, the arrest of two Scattered Spider hackers, the details of TA558’s most recent campaign, and the ShadowLeak AI flaw leaking Gmail data. Plus, our report this month covers the eruption of synthetic identity fraud, the new file corruption tactic known as FileFix, and how the ransomware HybridPetya bypasses secure boot protocols.</p>]]></description>
    <content:encoded><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. </p><p>Our September report features an examination of the 17,000+ phishing domains that popped up, the arrest of two Scattered Spider hackers, the details of TA558’s most recent campaign, and the ShadowLeak AI flaw leaking Gmail data. Plus, our report this month covers the eruption of synthetic identity fraud, the new file corruption tactic known as FileFix, and how the ransomware HybridPetya bypasses secure boot protocols.</p>]]></content:encoded>
    <enclosure url="https://www.buzzsprout.com/2506052/episodes/17965630-17-000-phishing-domains-synthetic-identity-fraud-ai-leaking-gmail-data.mp3" length="13099249" type="audio/mpeg" />
    <itunes:author>DOT Security</itunes:author>
    <guid isPermaLink="false">Buzzsprout-17965630</guid>
    <pubDate>Mon, 06 Oct 2025 12:00:00 -0400</pubDate>
    <itunes:duration>1086</itunes:duration>
    <itunes:keywords></itunes:keywords>
    <itunes:season>1</itunes:season>
    <itunes:episode>4</itunes:episode>
    <itunes:episodeType>full</itunes:episodeType>
    <itunes:explicit>false</itunes:explicit>
  </item>
  <item>
    <itunes:title>QuirkyLoader Spreads Malware, Scattered Spider Member Sentenced, First AI Ransomware Documented</itunes:title>
    <title>QuirkyLoader Spreads Malware, Scattered Spider Member Sentenced, First AI Ransomware Documented</title>
    <itunes:summary><![CDATA[The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our August report features a look into QuirkyLoader, the Scattered Spider hacker sentenced to 10 years in prison, the PromptFix exploit that’s tricking AI platforms, and the GodRAT trojan aimed at trading firms. Then, we’ll get into the charges Ethan Foltz is facing for running a DDoS-for-hire service, the dismantling of a fake ID marketplace known as VerifTools, the zero-click exploit patched by W...]]></itunes:summary>
    <description><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our August report features a look into QuirkyLoader, the Scattered Spider hacker sentenced to 10 years in prison, the PromptFix exploit that’s tricking AI platforms, and the GodRAT trojan aimed at trading firms. Then, we’ll get into the charges Ethan Foltz is facing for running a DDoS-for-hire service, the dismantling of a fake ID marketplace known as VerifTools, the zero-click exploit patched by WhatsApp, and lastly, discuss the first documented AI ransomware. </p>]]></description>
    <content:encoded><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our August report features a look into QuirkyLoader, the Scattered Spider hacker sentenced to 10 years in prison, the PromptFix exploit that’s tricking AI platforms, and the GodRAT trojan aimed at trading firms. Then, we’ll get into the charges Ethan Foltz is facing for running a DDoS-for-hire service, the dismantling of a fake ID marketplace known as VerifTools, the zero-click exploit patched by WhatsApp, and lastly, discuss the first documented AI ransomware. </p>]]></content:encoded>
    <enclosure url="https://www.buzzsprout.com/2506052/episodes/17823303-quirkyloader-spreads-malware-scattered-spider-member-sentenced-first-ai-ransomware-documented.mp3" length="10867078" type="audio/mpeg" />
    <itunes:author>DOT Security</itunes:author>
    <guid isPermaLink="false">Buzzsprout-17823303</guid>
    <pubDate>Wed, 10 Sep 2025 14:00:00 -0400</pubDate>
    <itunes:duration>900</itunes:duration>
    <itunes:keywords></itunes:keywords>
    <itunes:season>1</itunes:season>
    <itunes:episode>3</itunes:episode>
    <itunes:episodeType>full</itunes:episodeType>
    <itunes:explicit>false</itunes:explicit>
  </item>
  <item>
    <itunes:title>NASCAR Breached, Tea Dating App Data Accessed, Dell Breach Reviewed </itunes:title>
    <title>NASCAR Breached, Tea Dating App Data Accessed, Dell Breach Reviewed </title>
    <itunes:summary><![CDATA[The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our July report features a look into the NASCAR breach, how data stored at Tea was accessed, the 1.5 million customers impacted by the Allianz Life breach, and the phishing campaign targeting the Department of Education. This month’s report also covers the Zero-Day flaw that allowed a breach at the US Nuclear Agency, provides an update to the North Korean employment scam, reviews new findings about...]]></itunes:summary>
    <description><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our July report features a look into the NASCAR breach, how data stored at Tea was accessed, the 1.5 million customers impacted by the Allianz Life breach, and the phishing campaign targeting the Department of Education. This month’s report also covers the Zero-Day flaw that allowed a breach at the US Nuclear Agency, provides an update to the North Korean employment scam, reviews new findings about printer security, and all wraps up with an overview of the breach at Dell. </p>]]></description>
    <content:encoded><![CDATA[<p>The DOT Report reviews the biggest stories and headlines in the cybersecurity space each month. Our July report features a look into the NASCAR breach, how data stored at Tea was accessed, the 1.5 million customers impacted by the Allianz Life breach, and the phishing campaign targeting the Department of Education. This month’s report also covers the Zero-Day flaw that allowed a breach at the US Nuclear Agency, provides an update to the North Korean employment scam, reviews new findings about printer security, and all wraps up with an overview of the breach at Dell. </p>]]></content:encoded>
    <enclosure url="https://www.buzzsprout.com/2506052/episodes/17618851-nascar-breached-tea-dating-app-data-accessed-dell-breach-reviewed.mp3" length="11783922" type="audio/mpeg" />
    <itunes:author>DOT Security</itunes:author>
    <guid isPermaLink="false">Buzzsprout-17618851</guid>
    <pubDate>Tue, 05 Aug 2025 12:00:00 -0400</pubDate>
    <itunes:duration>976</itunes:duration>
    <itunes:keywords></itunes:keywords>
    <itunes:season>1</itunes:season>
    <itunes:episode>2</itunes:episode>
    <itunes:episodeType>full</itunes:episodeType>
    <itunes:explicit>true</itunes:explicit>
  </item>
  <item>
    <itunes:title>1,500+ Minecraft Players Infected by Malware, US Seizes $7.74M in Crypto | The DOT Report</itunes:title>
    <title>1,500+ Minecraft Players Infected by Malware, US Seizes $7.74M in Crypto | The DOT Report</title>
    <itunes:summary><![CDATA[The DOT Report is a monthly cybersecurity news series where we cover all the latest headlines and biggest stories.   In our first episode, covering June 2025, we’ll be looking at the $7.74M the US seized in cryptocurrency related to the ongoing North Korean employment scam. Then we’ll discuss how over 1,500 Minecraft players were unwittingly infected with JavaScript Malware, the data wipe feature added to Anubis ransomware, and the 269,000 websites infected by JSFireTruck. Additionally, ...]]></itunes:summary>
    <description><![CDATA[<p>The DOT Report is a monthly cybersecurity news series where we cover all the latest headlines and biggest stories.  </p><p>In our first episode, covering June 2025, we’ll be looking at the $7.74M the US seized in cryptocurrency related to the ongoing North Korean employment scam. Then we’ll discuss how over 1,500 Minecraft players were unwittingly infected with JavaScript Malware, the data wipe feature added to Anubis ransomware, and the 269,000 websites infected by JSFireTruck. Additionally, we’ll look into the recent ban the US House put on WhatsApp for government devices, the ‘call a lawyer’ feature added to Qilin ransomware products, the echo chamber attack compromising large language models, and Scattered Spiders $592 million cyberattack. </p>]]></description>
    <content:encoded><![CDATA[<p>The DOT Report is a monthly cybersecurity news series where we cover all the latest headlines and biggest stories.  </p><p>In our first episode, covering June 2025, we’ll be looking at the $7.74M the US seized in cryptocurrency related to the ongoing North Korean employment scam. Then we’ll discuss how over 1,500 Minecraft players were unwittingly infected with JavaScript Malware, the data wipe feature added to Anubis ransomware, and the 269,000 websites infected by JSFireTruck. Additionally, we’ll look into the recent ban the US House put on WhatsApp for government devices, the ‘call a lawyer’ feature added to Qilin ransomware products, the echo chamber attack compromising large language models, and Scattered Spiders $592 million cyberattack. </p>]]></content:encoded>
    <enclosure url="https://www.buzzsprout.com/2506052/episodes/17430960-1-500-minecraft-players-infected-by-malware-us-seizes-7-74m-in-crypto-the-dot-report.mp3" length="10395862" type="audio/mpeg" />
    <link>https://www.youtube.com/@dot.security</link>
    <itunes:author>DOT Security</itunes:author>
    <guid isPermaLink="false">Buzzsprout-17430960</guid>
    <pubDate>Tue, 01 Jul 2025 12:00:00 -0400</pubDate>
    <itunes:duration>861</itunes:duration>
    <itunes:keywords>Cybersecurity News, Cyber, Minecraft, Ransomeware, Malware</itunes:keywords>
    <itunes:season>1</itunes:season>
    <itunes:episode>1</itunes:episode>
    <itunes:episodeType>full</itunes:episodeType>
    <itunes:explicit>false</itunes:explicit>
  </item>
</channel>
</rss>
