Best Breach Analysis Podcasts (2025)

1
SANS Stormcast Wednesday, November 26th, 2025: Attacks Against Messaging; Passwords in Random Websites; Fluentbit Vuln; #thanksgiving 6:07

Play Pause

38m ago6:07

6:07

Spyware Allows Cyber Threat Actors to Target Users of Messaging Applications Spyware attacks messaging applications in part by triggering vulnerabilities in messaging applications but also by deploying tools like keystroke loggers and screenshot applications. https://www.cisa.gov/news-events/alerts/2025/11/24/spyware-allows-cyber-threat-actors-targ…

1
Audit-Proof Your Strategy: 6 HIPAA Compliance Secrets | Medcurity Podcast 118 6:38

4d ago6:38

6:38

There’s a big gap between organizations that walk confidently into an audit and those that scramble the moment OCR asks for documentation. This episode breaks down six practical steps that make the difference. You’ll hear about the quiet, everyday habits that keep HIPAA programs steady, defensible, and ready when it matters. Find out more about Med…

1
SANS Stormcast Tuesday, November 25th, 2025: URL Mapping and Authentication; SHA1-Hulud; Hacklore 6:11

3h ago6:11

6:11

Conflicts between URL mapping and URL based access control. Mapping different URLs to the same script, and relying on URL based authentication at the same time, may lead to dangerous authentication and access control gaps. https://isc.sans.edu/diary/Conflicts%20between%20URL%20mapping%20and%20URL%20based%20access%20control./32518 Sha1-Hulud, The Se…

1
SANS Stormcast Monday, November 24th, 2025: CSS Padding in Phishing; Oracle Identity Manager Scans Update; 4:59

1h ago4:59

4:59

Use of CSS stuffing as an obfuscation technique? Phishing sites stuff their HTML with benign CSS code. This is likely supposed to throw of simple detection engines https://isc.sans.edu/diary/Use%20of%20CSS%20stuffing%20as%20an%20obfuscation%20technique%3F/32510 Critical Oracle Identity Manager Flaw Possibly Exploited as Zero-Day Early exploit attem…

1
SANS Stormcast Friday, November 21st, 2025: Oracle Idendity Manager Scans; SonicWall DoS Vuln; Adam Wilson (@sans_edu) reducing prompt injection. 14:09

2d ago14:09

14:09

Oracle Identity Manager Exploit Observation from September (CVE-2025-61757) We observed some exploit attempts in September against an Oracle Identity Manager vulnerability that was patched in October, indicating that exploitation may have occurred prior to the patch being released. https://isc.sans.edu/diary/Oracle%20Identity%20Manager%20Exploit%20…

1
The Weekly Breach Breakdown Podcast: A(I) House of Cards – ChatGPT Issues Impact Users - S6E36 4:04

10d ago4:04

4:04

Welcome to the Identity Theft Resource Center's Weekly Breach Breakdown for November 21, 2025. I'm Alex Achten, Senior Director of Communications & Media Relations for the ITRC. Thanks to Sentilink for supporting the ITRC and this podcast. A house of cards can look super cool when constructed well! However, while they may appear majestic to the eye…

1
SANS Stormcast Thursday, November 20th, 2025: Unicode Issues; FortiWeb More Vulns; DLink DIR-878 Vuln; Operation WrtHug and ASUS Routers 6:34

3d ago6:34

6:34

Unicode: It is more than funny domain names. Unicode can cause a number of issues due to odd features like variance selectors and text direction issues. https://isc.sans.edu/diary/Unicode%3A%20It%20is%20more%20than%20funny%20domain%20names./32472 FortiWeb Multiple OS command injection in API and CLI A second silently patched vulnerability in FortiW…

1
How AI Is Shaping Modern Security with Mike Armistead | Medcurity Podcast 117 37:41

10d ago37:41

37:41

Mike Armistead joins the Medcurity Podcast to discuss the gap between security spending and meaningful outcomes. With decades building and leading cybersecurity companies, he offers a direct look at what actually improves security programs in practice. The conversation with Joe Gellatly covers where AI supports security work and where it falls shor…

1
SANS Stormcast Wednesday, November 19th, 2025: Kong Tuke; Cloudflare Outage 4:38

4d ago4:38

4:38

KongTuke Activity This diary investigates how a recent Kong Tuke infections evolved all the way from starting with a ClickFix attack. https://isc.sans.edu/diary/KongTuke%20activity/32498 Cloudflare Outage Cloudflare suffered a large outage today after an oversized configuration file was loaded into its bot protection service https://x.com/dok2001 G…

1
SANS Stormcast Tuesday, November 18th, 2025: Binary Expression Decoding. Tea NPM Pollution; IBM AIX NIMSH Vulnerability 4:58

5d ago4:58

4:58

Decoding Binary Numeric Expressions Didier updated his number to hex script to support simple arithmetic operations in the text. https://isc.sans.edu/diary/Decoding%20Binary%20Numeric%20Expressions/32490 Tea Token NPM Pollution The NPM repository was hit with around 150,000 submissions that did not contain any useful contributions, but instead atte…

1
SANS Stormcast Monday, November 17th, 2025: New(isch) Fortiweb Vulnerability; Finger and ClickFix 7:10

6d ago7:10

7:10

Fortiweb Vulnerability Fortinet, with significant delay, acknowledged a recently patched vulnerability after exploit attempts were seen publicly. https://isc.sans.edu/diary/Honeypot+FortiWeb+CVE202564446+Exploits/32486 https://labs.watchtowr.com/when-the-impersonation-function-gets-used-to-impersonate-users-fortinet-fortiweb-auth-bypass/ https://fo…

1
SANS Stormcast Friday, November 14th, 2025: SmartApeSG and ClickFix; Formbook Obfuscation Tricks; Sudo-rs Vulnerabilities; SANS Holiday Hack Challenge 10:09

9d ago10:09

10:09

SmartApeSG campaign uses ClickFix page to push NetSupport RAT A detailed analysis of a recent SamtApeSG campaign taking advantage of ClickFix https://isc.sans.edu/diary/32474 Formbook Delivered Through Multiple Scripts An analysis of a recent version of Formbook showing how it takes advantage of multiple obfuscation tricks https://isc.sans.edu/diar…

1
The Weekly Breach Breakdown Podcast: Finding NIMO – The Hidden Identity Threats Inside Your Organization - S6E35 3:50

17d ago3:50

3:50

Welcome to the Identity Theft Resource Center’s (ITRC) Weekly Breach Breakdown for November 14, 2025. I’m Tim Walden, and thanks to SentiLink for their support of the podcast and the ITRC. Each week, we look at the most recent events and trends related to data security and privacy. This week, we’re talking about something that rarely makes headline…

1
SANS Stormcast Thursday, November 13th, 2025: OWASP Top 10 Update; Cisco/Citrix Exploits; Test post quantum readiness 6:33

10d ago6:33

6:33

OWASP Top 10 2025 Release Candidate OWASP published a release candidate for the 2025 version of its Top 10 list https://owasp.org/Top10/2025/0x00_2025-Introduction/ Citrix/Cisco Exploitation Details Amazon detailed how Citrix and Cisco vulnerabilities were used by advanced actors to upload webshells https://aws.amazon.com/blogs/security/amazon-disc…

1
Absolute Popgoes - FNaF: Popgoes Arcade & myPOPGOES Review (Shadow Scrying) 53:00

17d ago53:00

53:00

In this episode, we are taking a venture in the Five Nights at Freddy's Fan Game Initiative and exploring the origins, gameplay, and lore behind Popgoes Arcade, myPOPGOES, and the broader Popgoes universe. Has this fan-driven project, which has earned Scott Cawthon’s seal of approval, carved out its own identity within the FNaF legacy? Or have dela…

1
The One Thing You Should Check Off Before 2026 | Medcurity Podcast 116 7:07

18d ago7:07

7:07

The year-end rush is coming, and there's one compliance requirement that shouldn't wait until December. This episode breaks down a HIPAA expectation that trips up organizations of every size, what regulators actually mean when they say "current," and why starting now gives you room to do it right instead of scrambling at the last minute. If you've …

1
SANS Stormcast Wednesday, November 12th, 2025: Microsoft Patch Tuesday; Gladinet Triofox Vulnerability; SAP Patches 6:03

17d ago6:03

6:03

Microsoft Patch Tuesday for November 2025 https://isc.sans.edu/diary/Microsoft+Patch+Tuesday+for+November+2025/32468/ Gladinet Triofox Vulnerability Triofox uses the host header in lieu of proper access control, allowing an attacker to access the page managing administrators by simply setting the host header to localhost. https://cloud.google.com/b…

1
Webinar: Your Actual HIPAA Requirements | Medcurity Podcast 115 50:50

18d ago50:50

50:50

HIPAA isn’t a moving target—it’s a framework that still defines how patient data must be protected in 2025 and beyond. This episode features our full webinar, Your Actual HIPAA Requirements, presented by Jordan Scherich, Lead Business Analyst at Medcurity. She breaks down what regulators expect right now, how upcoming Security Rule updates will cha…

1
SANS Stormcast Tuesday, November 11th, 2025: 3CX Related Scans; Watchguard Default Password; 7:25

12d ago7:25

7:25

It isn t always defaults: Scans for 3CX Usernames Our honeypots detected scans for usernames that may be related to 3CX business phone systems https://isc.sans.edu/diary/It%20isn%27t%20always%20defaults%3A%20Scans%20for%203CX%20usernames/32464 Watchguard Default Password Controversy A CVE number was assigned to a default password commonly used in W…

1
SANS Stormcast Monday, November 10th, 2025: Code Repo Requests; Time Delayed ICS Attacks; Encrypted LLM Traffic Sidechannel Attacks 7:06

13d ago7:06

7:06

Honeypot Requests for Code Repository Attackers continue to scan websites for source code repositories. Keep your repositories outside your document root and proactively scan your own sites. https://isc.sans.edu/diary/Honeypot%3A%20Requests%20for%20%28Code%29%20Repositories/32460 Malicious NuGet Packages Deliver Time-Delayed Destructive Payloads Ne…

1
Are You Ready For The Next Health Data Attack? | Medcurity Podcast 114 9:43

22d ago9:43

9:43

Most incident response plans aren’t tested until it’s too late. This episode walks through what “ready” actually looks like in healthcare: knowing where PHI lives, keeping your Security Risk Analysis current, setting clear roles, and practicing real scenarios so teams don’t freeze when it matters. We cover fast detection, clean containment, and sma…

1
SANS Stormcast Friday, November 7th, 2025: PowerShell Log Correlation; RondoBox Disected; Google Chrome and Cisco Patches 5:31

16d ago5:31

5:31

Binary Breadcrumbs: Correlating Malware Samples with Honeypot Logs Using PowerShell [Guest Diary] Windows, with PowerShell, has a great scripting platform to match common Linux/Unix command line utilities. https://isc.sans.edu/diary/Binary%20Breadcrumbs%3A%20Correlating%20Malware%20Samples%20with%20Honeypot%20Logs%20Using%20PowerShell%20%5BGuest%20…

1
The Weekly Breach Breakdown Podcast: The Great AI Manipulation - Fake Content Fools Systems - S6E34 4:16

23d ago4:16

4:16

Welcome to the Identity Theft Resource Center’s (ITRC) Weekly Breach Breakdown for November 7, 2025. I’m Tatiana Cuadras, Communications Assistant for the ITRC. Thanks to SentiLink for their support of the podcast and the ITRC. Each week, we look at the most recent events and trends related to data security and privacy. This week, we discuss how ar…

1
SANS Stormcast Thursday, November 6th, 2025: Domain API Update; Teams Spoofing; VShell Report 5:43

17d ago5:43

5:43

Updates to Domainname API Some updates to our domainname API will make it more flexible and make it easier and faster to get the complete dataset. https://isc.sans.edu/diary/Updates%20to%20Domainname%20API/32452 Microsoft Teams Impersonation and Spoofing Vulnerabilities Checkpoint released details about recently patched spoofing and impersonation v…

1
Episode 41 - The Bobbiedots (Part I: Men At Work Arc / Tales From The Pizzaplex) 1:15:01

25d ago1:15:01

1:15:01

Abe’s work life at the Freddy Fazbear’s Mega Pizzaplex has always been a struggle, namely because it's also his home life. Surviving on scraps of pizza and long hours to care for his ill mother. When he finally earns a promotion and a coveted luxury apartment at Fazplex Towers, it seems like his luck is changing… until he discovers he’ll be sharing…

1
SANS Stormcast Wednesday, November 5th, 2025: Apple Patches; Exploits against Trucking and Logistic; Google Android Patches 6:29

18d ago6:29

6:29

Apple Patches Everything, Again Apple released a minor OS upgrade across its lineup, fixing a number of security vulnerabilities. https://isc.sans.edu/diary/Apple%20Patches%20Everything%2C%20Again/32448 Remote Access Tools Used to Compromise Trucking and Logistics Attackers infect trucking and logistics companies with regular remote management tool…

1
SANS Stormcast Tuesday, November 4th, 2025: XWiki SolrSearch Exploits and Rapper Feud; AMD Zen 5 RDSEED Bug; More Malicious Open VSX Extensions 6:56

19d ago6:56

6:56

XWiki SolrSearch Exploit Attempts CVE-2025-24893 We have detected a number of exploit attempts against XWiki taking advantage of a vulnerability that was added to the KEV list on Friday. https://isc.sans.edu/diary/XWiki%20SolrSearch%20Exploit%20Attempts%20%28CVE-2025-24893%29%20with%20link%20to%20Chicago%20Gangs%20Rappers/32444 AMD Zen 5 Random Num…

1
SANS Stormcast Monday, November 3rd, 2025: Port 8530/8531 Scans; BADCANDY Webshells; Open VSX Security Improvements 6:26

20d ago6:26

6:26

Scans for WSUS: Port 8530/8531 TCP, CVE-2025-59287 We did observe an increase in scans for TCP ports 8530 and 8531. These ports are associated with WSUS and the scans are likely looking for servers vulnerable to CVE-2025-59287 https://isc.sans.edu/diary/Scans%20for%20Port%208530%208531%20%28TCP%29.%20Likely%20related%20to%20WSUS%20Vulnerability%20C…

1
The Fraudian Slip Podcast: Identity Theft Resource Center – 2025 Consumer Impact Report - S6E10 23:38

30d ago23:38

23:38

Welcome to the Fraudian Slip, the Identity Theft Resource Center’s (ITRC) podcast, where we talk about all things identity theft, fraud and scams that impact people and businesses. This week, we published our 2025 Consumer Impact Report by ITRC.Typically, on this podcast, we’d introduce a topic, a guest expert, and our CEO, Eva Velasquez. This mont…

1
SANS Stormcast Friday, October 31st, 2025: Bug Bounty Headers; Exchange hardening; MOVEIt vulnerability 6:19

23d ago6:19

6:19

X-Request-Purpose: Identifying "research" and bug bounty related scans? Our honeypots captured a few requests with bug bounty specific headers. These headers are meant to make it easier to identify requests related to bug bounty, and they are supposed to identify the researcher conducting the scans https://isc.sans.edu/diary/X-Request-Purpose%3A%20…

1
SANS Stormcast Thursday, October 30th, 2025: Memory Only Filesystems Forensics; Azure Outage; docker-compose patch 6:07

24d ago6:07

6:07

How to Collect Memory-Only Filesystems on Linux Systems Getting forensically sound copies of memory-only file systems on Linux can be tricky, as tools like dd do not work. https://isc.sans.edu/diary/How%20to%20collect%20memory-only%20filesystems%20on%20Linux%20systems/32432 Microsoft Azure Front Door Outage Today, Microsoft s Azure Front Door servi…

1
SANS Stormcast Wednesday, October 29th, 2025: Invisible Subject Character Phishing; Tomcat PUT Vuln; BIND9 Spoofing Vuln PoC 8:04

25d ago8:04

8:04

Phishing with Invisible Characters in the Subject Line Phishing emails use invisible UTF-8 encoded characters to break up keywords used to detect phishing (or spam). This is aided by mail clients not rendering some characters that should be rendered. https://isc.sans.edu/diary/A%20phishing%20with%20invisible%20characters%20in%20the%20subject%20line…

1
SANS Stormcast Tuesday, October 28th, 2025: Bytes over DNS; Unifi Access Vuln; OpenAI Atlas Prompt Injection 6:17

26d ago6:17

6:17

Bytes over DNS Didiear investigated which bytes may be transmitted as part of a hostname in DNS packets, depending on the client resolver and recursive resolver constraints https://isc.sans.edu/diary/Bytes%20over%20DNS/32420 Unifi Access Vulnerability Unifi fixed a critical vulnerability in it s Access product https://community.ui.com/releases/Secu…

1
The $610 Million Poly Network Hack: The Greatest Heist That Never Was 32:52

1M ago32:52

32:52

The $610 Million Poly Network Hack: The Greatest Heist That Never Was In one of the most shocking moments in crypto history, a lone hacker exploited a vulnerability in Poly Network’s cross-chain protocol—draining over $610 million in digital assets across Ethereum, Binance Smart Chain, and Polygon. Then, in a twist no one saw coming… they gave it a…

1
SANS Stormcast Monday, October 27th, 2025: Bilingual Phishing; Kaitai Struct WebIDE 6:20

27d ago6:20

6:20

Bilingual Phishing for Cloud Credentials Guy observed identical phishing messages in French and English attempting to phish cloud credentials https://isc.sans.edu/diary/Phishing%20Cloud%20Account%20for%20Information/32416 Kaitai Struct WebIDE The binary file analysis tool Kaitai Struct is now available in a web only version https://isc.sans.edu/dia…

1
What’s Hidden in Your Vendor Ecosystem? | Medcurity Podcast 113 5:37

1M ago5:37

5:37

Your organization doesn’t operate alone—and neither does your risk. In this episode, we look at how vendors, business associates, and service providers can quietly impact your HIPAA compliance and security. From overlooked contracts to outdated risk reviews, even trusted partners can become weak links if they’re not managed well. Hear what good ven…

1
SANS Stormcast Friday, October 24th, 2025: Android Infostealer; SessionReaper Exploited; BIND/unbound DNS Spoofing fix; WSUS Exploit 6:25

1M ago6:25

6:25

Infostealer Targeting Android Devices This infostealer, written in Python, specifically targets Android phones. It takes advantage of Termux to gain access to data and exfiltrates it via Telegram. https://isc.sans.edu/diary/Infostealer%20Targeting%20Android%20Devices/32414 Attackers exploit recently patched Adobe Commerce Vulnerability CVE-2025-542…

1
The Weekly Breach Breakdown Podcast: The Stolen Goods – Pixnapping Target Android Devices - S6E33 3:48

1M ago3:48

3:48

Welcome to the Identity Theft Resource Center's (ITRC’s) Weekly Breach Breakdown for October 24, 2025. I'm Tatiana Cuadras, Communications Assistant for the ITRC. Thanks to Sentilink for supporting the ITRC and this podcast. Each week, we look at the most recent events and trends related to data security and privacy. Today, we will discuss pixnappi…

1
SANS Stormcast Thursday, October 23rd, 2025: Blue Angle Software Exploit; Oracle CPU; Rust tar library vulnerability. 7:28

1M ago7:28

7:28

webctrl.cgi/Blue Angel Software Suite Exploit Attempts. Maybe CVE-2025-34033 Variant? Our honeypots detected attacks that appear to exploit CVE-2025-34033 or a similar vulnerability in the Blue Angle Software Suite. https://isc.sans.edu/diary/webctrlcgiBlue+Angel+Software+Suite+Exploit+Attempts+Maybe+CVE202534033+Variant/32410 Oracle Critical Patch…

1
SANS Stormcast Wednesday, October 22nd, 2025: NTP Pool; Xubuntu Compromise; Squid Vulnerability; Lanscope Vuln; 6:37

1M ago6:37

6:37

What time is it? Accuracy of pool.ntp.org. How accurate and reliable is pool.ntp.org? Turns out it is very good! https://isc.sans.edu/diary/What%20time%20is%20it%3F%20Accuracy%20of%20pool.ntp.org./32390 Xubuntu Compromise The Xubuntu website was compromised last weekend and served malware https://floss.social/@bluesabre/115401767635718361 Squid Pro…

1
SANS Stormcast Tuesday, October 21st, 2025: Syscall() Obfuscation; AWS down; Beijing Time Attack 9:17

1M ago9:17

9:17

Using Syscall() for Obfuscation/Fileless Activity Fileless malware written in Python can uses syscall() to create file descriptors in memory, evading signatures. https://isc.sans.edu/diary/Using%20Syscall%28%29%20for%20Obfuscation%20Fileless%20Activity/32384 AWS Outages AWS has had issues most of the day on Monday, affecting numerous services. http…

1
SANS Stormcast Monday, October 20th, 2025: Malicious Tiktok; More Google Ad Problems; Satellite Insecurity 6:14

1M ago6:14

6:14

TikTok Videos Promoting Malware InstallationTikTok Videos Promoting Malware Installation Tiktok videos advertising ways to obtain software like Photoshop for free will instead trick users into downloading https://isc.sans.edu/diary/TikTok%20Videos%20Promoting%20Malware%20Installation/32380 Google Ads Advertise Malware Targeting MacOS Developers Hun…

1
Why You Shouldn’t Wait on Your Security Risk Analysis | Medcurity Podcast 112 5:04

1M ago5:04

5:04

The Security Risk Analysis isn’t just another compliance task. It’s the foundation of your HIPAA program and the proof that you’re protecting patient data. In this episode, hear why now—not January—is the time to get it done. Recent OCR fines show that organizations of every size are still being penalized for missing or outdated SRAs. Waiting costs…

1
SANS Stormcast Friday, October 17th, 2025: New Slack Workspace; Cisco SNMP Exploited; BIOS Backdoor; @sans_edu reseach: Active Defense 21:28

1M ago21:28

21:28

New DShield Support Slack Workspace Due to an error on Salesforce s side, we had to create a new Slack Workspace for DShield support. https://isc.sans.edu/diary/New%20DShield%20Support%20Slack/32376 Attackers Exploiting Recently Patched Cisco SNMP Flaw (CVE-2025-20352) Trend Micro published details explaining how attackers took advantage of a recen…

1
The Weekly Breach Breakdown Podcast: NSA Popup Warning - What If You See a Suspicious Popup? - S6E32 2:53

1M ago2:53

2:53

Welcome to the Identity Theft Resource Center’s (ITRC’s) Weekly Breach Breakdown for October 17, 2025. I’m Tim Walden, Communications Leader for the ITRC. Thanks to Sentilink for supporting the ITRC and this podcast. Each week, we look at the most recent events and trends related to data security and privacy. Today we’re talking about a serious NSA…

1
SANS Stormcast Thursday, October 16th, 2025: Clipboard Image Stealer; F5 Compromise; Adobe Updates; SAP Patchday 8:40

1M ago8:40

8:40

Clipboard Image Stealer Xavier presents an infostealer in Python that steals images from the clipboard. https://isc.sans.edu/diary/Clipboard%20Pictures%20Exfiltration%20in%20Python%20Infostealer/32372 F5 Compromise F5 announced a wide-ranging compromise today. Source code and information about unpatched vulnerabilities were stolen. https://my.f5.co…

1
Episode 40 - What If... (Part IXX: Security Breach Epilogue) 1:20:41

2M ago1:20:41

1:20:41

The finale of Five Nights at Freddy’s: Security Breach is here! When 6 AM strikes in the Freddy Fazbear's Pizzaplex, Gregory faces a life-changing choice: escape to save himself, or stay with Glamrock Freddy to uncover the truth behind Vanessa and Vanny. But no matter which path he takes, does the story really end? Or is the conclusion to Security …

1
SANS Stormcast Wednesday, October 15th, 2025: Microsoft Patchday; Ivanti Advisory; Fortinet Patches 6:22

2M ago6:22

6:22

Microsoft Patch Tuesday Microsoft not only released new patches, but also the last patches for Windows 10, Office 2016, Office 2019, Exchange 2016 and Exchange 2019. https://isc.sans.edu/diary/Microsoft%20Patch%20Tuesday%20October%202025/32368 Ivanti Advisory Ivanti released an advisory with some mitigation steps users can take until the recently m…

1
SANS Stormcast Tuesday, October 14th, 2025: ESAFENET Scans; Payroll Priates; MSFT Edge IE Mode 6:02

2M ago6:02

6:02

Scans for ESAFENET CDG V5 We do see some increase in scans for the Chinese secure document management system, ESAFENET. https://isc.sans.edu/diary/Heads%20Up%3A%20Scans%20for%20ESAFENET%20CDG%20V5%20/32364 Investigating targeted payroll pirate attacks affecting US universities Microsoft wrote about how payroll pirates redirect employee paychecks vi…

1
The $25 Million Arup Deepfake: AI's Most Convincing Con 40:49

2M ago40:49

40:49

The $25 Million Arup Deepfake: AI's Most Convincing Con In a world where AI can mimic voices and faces perfectly, even the most secure companies can fall victim. The Arup Deepfake Hack shocked the corporate world when attackers used AI-generated video of the company’s CFO to trick an employee into wiring $25 million to a fraudulent account. This wa…