Artemis Astronaut's Bad Outlooks - 2026-04-06
Get the full intelligence
Search transcripts, export clips, track mentions, and explore all topics from “Artemis Astronaut's Bad Outlooks - 2026-04-06” inside PodZeus.
In this episode of Talkin' Bout [Infosec] News, the hosts dive into a mix of cybersecurity headlines and absurd tech humor, starting with the recent Axios NPM supply chain attack that exploited social engineering to compromise a major JavaScript library. The discussion highlights how attackers posed as company founders to trick developers into updating software, leading to a remote access payload. The team emphasizes the broader risks of supply chain attacks across open-source ecosystems like NPM, React, and Angular, stressing the need for version locking and checksum validation. The conversation shifts to the Artemis 2 mission, where astronauts reportedly struggled with two non-functional Microsoft Outlooks, prompting jokes about the inescapable nature of Outlook’s poor reputation. The episode also covers the leak of Anthropic’s Cloud Code source code due to a misconfigured developer file, sparking debates about open-source versus proprietary AI development. Other topics include a U.S. government mobile hacking tool (Karuna) exploiting outdated iOS versions, a Border Patrol data breach involving door codes posted on Quizlet, and the FBI’s major breach affecting surveillance systems. The hosts wrap up with a philosophical take on cybersecurity, teasing Doc’s upcoming webinar on 'The 14 Absolute Truths of Cybersecurity,' which challenges the notion that security is a job title, arguing instead that it’s a mindset. The episode blends technical depth with irreverent humor, poking fun at everything from AI-generated content to space toilets and chicken safety vests.
Supply chain attacks like the Axios compromise highlight the dangers of social engineering and the need for strict version control and checksums in open-source dependencies.
The Artemis 2 mission’s reliance on outdated software like Microsoft Outlook underscores the irony of using legacy systems in high-stakes environments.
The leak of Anthropic’s Cloud Code source code reveals the risks of AI-driven development and the debate over whether AI tools should be open source.
Misconfigurations in developer environments (e.g., publishing map files) can lead to massive code leaks, emphasizing the need for secure CI/CD practices.
The Border Patrol’s use of Quizlet for storing door codes is a cautionary tale about poor security hygiene and the dangers of sharing sensitive data on public platforms.
…and 3 more takeaways available in PodZeus
Chair Vibes and Cyberpunk Aesthetics
The episode opens with a humorous segment about office chairs, including Secret Lab's cyberpunk skins, magnetic armrests, and the absurdity of earning 'chair bucks' through malware. The hosts joke about ergonomic luxuries and the irony of needing a headrest while working as a hacker.
Axios NPM Supply Chain Attack: A Social Engineering Masterclass
“The social engineering part, like having a complete Slack already put together. We've talked about doing this. If it was before AI, like I would think this was more impressive. But nowadays I'm like, all right, you just tell AI to spin you up a Slack server that has everything in it and it would be a little bit easier.”
The Artemis 2 Outlook Debacle and Space Tech Realities
“The only reason I would want to leave earth is to leave outlook behind. I don't want to leave earth if I have to take outlook with me. I'm not leaving earth, I'm just going to stay.”
Cloud Code Leak and the Rise of AI-Driven Development
“The only reason that Cloud Code is capable of outputting valid JSON is because if the text prompt suggests it should be JSON, then it enters a special loop at the main engine that just validates against the JSON schema and then feeds the data back with the error into itself in a loop until it is valid JSON.”
Border Patrol, Quizlet, and the Perils of Poor Security Hygiene
“They held guns to their head and be like, tell me the code! Pop quiz, idiot! What's the code? I guarantee you, like, the way it got on there, someone had Quizlet on their phone, right? And they're just going over slides on their phone when, like, anytime they're in line, they're stuck in traffic.”
“Security isn't even what we do. For those who had attended Wild West Hacking Fest, what, San Diego three years ago now? I did a presentation there that security isn't what you do. premise behind it, thinking behind it is all around the 14 absolute inescapable truths of cybersecurity.”
“The only reason I would want to leave earth is to leave outlook behind. I don't want to leave earth if I have to take outlook with me. I'm not leaving earth, I'm just going to stay.”
“If I'm not actively suffering right now, maybe that's why I'm suffering because of the eyes. Thank you to my eyes. My that's not enough. That's not enough. You got to be buying GPUs and sending them straight to the server farms.”
Hosts
Guest
Corey Hamm
person
AI
other
NPM
product
Ralph
person
JavaScript
other
Bronwyn
person
Wade
person
Doc
person
Axios
product
Anthropic
organization
FCC Blocks Foreign-Made Routers – 2026-03-30
Talkin' Bout [Infosec] News • 1h 7m • 4/1/2026
Anthropic’s Project Glasswing is an Infosec Turning Point – 2026-04-13
Talkin' Bout [Infosec] News • 1h 6m • 4/14/2026
Tim Cook Announces Apple CEO Exit - 2026-04-20
Talkin' Bout [Infosec] News • 1h 4m • 4/22/2026
Get the full intelligence
Search transcripts, export clips, track mentions, and explore all topics from “Artemis Astronaut's Bad Outlooks - 2026-04-06” inside PodZeus.
Start discovering podcast insights today
Start with a 7-day trial and explore a growing catalog of popular podcasts. No credit card required.
No credit card required • 7-day trial • Cancel anytime