Darnley's Cyber Café

Hosted by Darnley's Cyber Café

Technology Business NewsInterviews guests

Website RSS feed

Episodes

227

Latest episode

Jun 2026

Language

EN-CA

About the show

Darnley's Cyber Café is your go-to cybersecurity and IT security podcast, available everywhere you listen. Each episode, we brew up fresh conversations on cybersecurity, IT security, business, technology, and the geopolitical forces shaping our digital world: from data breaches and ransomware to privacy, surveillance, and emerging threats. Whether you're commuting, at your desk, or just unwinding after a long day, there's always a seat at the café. Pull up a chair, pour your java — not script — and join the conversation that keeps the digitally aware one step ahead. Follow and subscribe wherever you get your podcasts, and never miss an episode. The café is always open and knowledge is your power.

Listen to episodes

60 recent

June 10, 2026Episode 5523 min

LinkedIn Espionage: Five Eyes Warns China Is Running Spy Recruitment on Job Boards

A job offer lands in your inbox on LinkedIn. The company checks out. The money is fine... All they need is a short report on geopolitics or defence policy.You just got flagged by the People's Liberation Army.In this episode we talk about in June 2026, the FBI, MI5, and the intelligence agencies of Canada, Australia, and New Zealand issued what they called an unprecedented joint warning: China's military intelligence services are running systematic recruitment operations on professional networking platforms... targeting anyone with access to government, military, or foreign-policy information.We break down the cycle, who is being targeted, the payment mechanics, and practical actionable steps to protect yourself, your clearance and professional network. Listen here or on your podcast platform. Click here to send future episode recommendationSupport the showSubscribe now to Darnley's Cyber Cafe and stay informed on the latest developments in the ever-evolving digital landscape.

June 3, 2026Episode 5422 min

Ghost Session: The Zero-Click WhatsApp Takeover Nobody Saw Coming

iPhone users across iOS 16 are having their WhatsApp accounts hijacked...without clicking anything, without approving a login, and without any new device appearing in their Linked Devices list. In this episode, we break down how the attack chain works, why iOS 16 is the specific target surface, what the broader shift of zero-click exploits into financially motivated crime actually means, and what you can and cannot do to protect yourself. If you or someone you know is on an unpatched iPhone, take a listen. Click here to send future episode recommendationSupport the showSubscribe now to Darnley's Cyber Cafe and stay informed on the latest developments in the ever-evolving digital landscape.

May 27, 2026Episode 5317 min

Your AI Told You to Download That. It Was a Trap

Your AI chatbot just recommended a software download. You clicked it...along with a GPU cryptominer running silently in the background.Darnley breaks down Microsoft Defender Experts' latest findings on a sophisticated cryptojacking campaign that evolved beyond traditional SEO poisoning into AI search result poisoning, a new delivery technique that turns your trusted AI tools into malware recommendation engines. In this episode, we cover how the attack works from ZIP download to process hollowed miner, why high end GPU owners are deliberately targeted, and the six concrete steps every listener can take today to stop trusting links blindly; whether they come from Google, ChatGPT, or anything in between.The tools are getting smarter. So should we... Listen now. Click here to send future episode recommendationSupport the showSubscribe now to Darnley's Cyber Cafe and stay informed on the latest developments in the ever-evolving digital landscape.

May 20, 2026Episode 5221 min

When The Vendor Gets Hacked, You Pay The Price

In May 2026, NYC Health + Hospitals, the largest public health system in the USA, disclosed months long data breach affecting 1.8 million people. Stealing data such as medical records, Social security numbers, passport details, geo-location data, and biometric information. In this episode, Darnley breaks down exactly how third party vendor breaches work, what each category of stolen data means, and why biometric theft is forever. We deliver a 10-step protection playbook to stay protected now and into the future. Click here to send future episode recommendationSupport the showSubscribe now to Darnley's Cyber Cafe and stay informed on the latest developments in the ever-evolving digital landscape.

May 14, 2026Episode 6126 min

AI Doesn't Ask for Permission: Agentic AI Is a National Security Problem

Five Eyes intelligence agencies: CISA, NCSC, CCC, ASD, and NCSC just published their first ever coordinated security guidance on agentic AI, and the message is clear: autonomous AI systems are already operating inside critical infrastructure with excessive access and insufficient governance, and the consequences of getting this wrong are a national security threat. In this episode of Darnley's Cyber Café, we break down the five risk categories the Five Eyes flagged, walk through the exact attack scenario outlined in the guidance document, and connect the dots. Whether you're an IT professional navigating governance gaps, a business owner weighing agentic AI adoption, or a privacy-conscious individual wondering what autonomous AI in the organizations you trust means for your data ... this episode delivers the threat picture and the actionable controls you need. Click here to send future episode recommendationSupport the showSubscribe now to Darnley's Cyber Cafe and stay informed on the latest developments in the ever-evolving digital landscape.

May 6, 2026Episode 5012 min

The Training Trap: Why Cyber Awareness Isn't Making You Safer

Your organization spent money on cybersecurity training. Someone still clicked the link. In this episode of Darnley's Cyber Café, we break down why most security awareness programs fail to change behaviour, and why the gap between knowing about a threat and actually being ready for it is exactly where attackers operate. Drawing on research from ETH Zurich, real-world breach data, and the 2025 Marks & Spencer cyberattack, this episode unpacks the compliance checkbox model, the rise of AI powered phishing, and the vishing surge that most organizations are completely ignoring. What you can do about it today, whether you're running a security team or a five-person business. Click here to send future episode recommendationSupport the showSubscribe now to Darnley's Cyber Cafe and stay informed on the latest developments in the ever-evolving digital landscape.

April 29, 2026Episode 4921 min

Bitwarden CLI Hacked? The Supply Chain Attack That Targeted 250K Developers

On April 22, 2026, the Bitwarden CLI, used in CI/CD pipelines at tens of thousands of organizations, was weaponized for exactly 93 minutes. In this episode, Darnley walks through the anatomy of the supply chain attack that compromised bitwarden cli version 2026.4.0: how the threat group exploited a compromised Checkmarx GitHub Action to inject credential-stealing malware into Bitwarden's npm publishing pipeline, what the worm actually stole, how it self-propagated by republishing victims own npm packages, and why the fact that "no vault data was compromised" misses the point...Packed with practical technical guidance on pipeline hardening, package pinning, least-privilege, and the one npm setting that could have blocked this attack entirely...this episode is essential listening for developers, IT security teams, and anyone responsible for a software supply chain who need to hear it. Click here to send future episode recommendationSupport the showSubscribe now to Darnley's Cyber Cafe and stay informed on the latest developments in the ever-evolving digital landscape.

April 22, 2026Episode 4827 min

Why Cybersecurity Startups Are Being Targeted? What That Means For Your Business?

The company you hired to protect you just got hacked. That is not a hypothetical, it is the defining threat pattern of the past 18 months. In this episode Darnley breaks down why cybersecurity vendors, including some of the most recognized names in the space, have become the highest-value targets for threat actors, how a single vendor compromise translates directly into a supply chain breach affecting hundreds or thousands of downstream clients, and what every business needs to do before signing another security contract. Featuring real-world case vendors including SolarWinds, Okta, CrowdStrike, Sisense, and the 2026 eScan compromise, plus a practical vendor vetting playbook and a hard look at why infrastructure-level privacy matters more.Listen hereClick here to send future episode recommendationSupport the showSubscribe now to Darnley's Cyber Cafe and stay informed on the latest developments in the ever-evolving digital landscape.

April 15, 2026Episode 4719 min

Smart Weapons: How AI Is Rewriting the Attacker's Playbook

The attacker's toolkit just got a significant upgrade, and most businesses haven't caught up. In this episode of Darnley's Cyber Café, Darnley breaks down how AI is reshaping offensive cyber operations across two fronts: AI-generated spear phishing and deepfake social engineering that bypasses conventional awareness training, and AI-assisted vulnerability discovery that is compressing the window between a flaw existing and a flaw being exploited. Featuring documented real-world cases including the 2024 Hong Kong deepfake video call fraud, the emergence of WormGPT and FraudGPT on dark web forums, and Google DeepMind's AI-discovered zero-day in SQLite. This episode grounds the conversation in what's actually happening in the wild. Plus five concrete defensive measures that move the needle against AI-powered threats, from updated security awareness training to zero trust architecture. If your security posture was built for the threat landscape of three years ago, this episode is a wake-up call. Tune in, and know what you're actually up against before its too late.Click here to send future episode recommendationSupport the showSubscribe now to Darnley's Cyber Cafe and stay informed on the latest developments in the ever-evolving digital landscape.

April 8, 2026Episode 4627 min

Digital Exhaust: The Trail You Leave Online Without Knowing It

Your digital footprint is bigger than you think, and most of it was never intentional.In this Episode of Darnley's Cyber Café, Darnley breaks down digital exhaust: the passive data trail generated by your everyday online activity, from browser fingerprinting and mobile advertising IDs to smart home surveillance and metadata exposure. This episode covers who's collecting your data, how it's being used against you, and why app-level privacy tools aren't enough. Whether you're a privacy-conscious individual, a small business owner, or an IT professional trying to justify a stronger security posture, this episode gives you the framework, and the actionable steps to start reducing your exposure today.Tune in, unwind, and stop leaving exhaust.Click here to send future episode recommendationSupport the showSubscribe now to Darnley's Cyber Cafe and stay informed on the latest developments in the ever-evolving digital landscape.

Is this your show?

Claim this listing to keep it up to date, reach guests who want to pitch you, and manage bookings with Guestify.

Claim this listing

More Technology podcasts

SowGrow Marketing Council

sgmc

BusinessMarketing

Toldjya Finance Podcast

Zac Huish, Cameron Cooke, and Paul Lamb

BusinessInvesting

Darnley&#39;s Cyber Café