<p>This episode covers a CISA contractor’s accidental exposure of AWS GovCloud credentials and internal system details on GitHub, the FBI’s efforts to patch vulnerable routers, and a critical NGINX vulnerability with public proof-of-concept code. The team also discusses Microsoft’s handling of a disputed Azure Backup security finding, the challenges of vulnerability disclosure and CVE assignment, and GitHub’s ban of security researcher Nightmare Eclipse following the publication of unpatched Windows vulnerability research.</p><p>Join us LIVE on Mondays, 4:30pm EST.<br>A weekly Podcast with BHIS and Friends. We discuss notable Infosec, and infosec-adjacent news stories gathered by our community news team.<br><a href="https://www.youtube.com/@BlackHillsInformationSecurity">https://www.youtube.com/@BlackHillsInformationSecurity</a></p><p>Chat with us on Discord! - <br><a href="https://discord.gg/bhis">https://discord.gg/bhis</a><br>🔴live-chat</p><p><br><strong>Chapters</strong><br></p><ul><li>(00:00) - PreShow Banter™ — Getting to Chili's</li> <li>(05:45) - GitHub bans vindictive security researcher - 2026-05-26</li> <li>(07:09) - Story # 1: CISA Admin Leaked AWS GovCloud Keys on Github</li> <li>(10:45) - Story # 2 - PoC Code Published for Critical NGINX Vulnerability</li> <li>(12:53) - Story # 3 - Anthropic’s restricted Claude Mythos model may be coming to Claude Code</li> <li>(16:16) - Story # 4 - The FBI just remotely reset thousands of home and small office routers – and your TP-Link could be on the hitlist</li> <li>(22:37) - Story # 5 - Drupal to Release Emergency Core Security Updates Amid Fears of Rapid Exploitation</li> <li>(25:52) - Story # 6 - Microsoft rejects critical Azure vulnerability report, no CVE issued</li> <li>(28:09) - Story # 7 - GitHub bans vindictive security researcher dropping Windows zero-days: “I will make sure your bones are shattered”</li> <li>(30:41) - Story # 8a - A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale</li> <li>(32:16) - Story # 8b - TeamPCP breached GitHub’s internal codebase via poisoned VS Code extension</li> <li>(35:21) - Story # 10 - Ubiquiti patches three max severity UniFi OS vulnerabilities</li> <li>(37:51) - Story # 11 - Pizza Hut's AI system caused 'cascading' problems and $100M in damages, franchisee alleges in new suit</li> <li>(43:55) - Story # 12 - Data Leak at German Hospital</li> <li>(45:00) - Story # 13 - Microsoft shuts down illegal code-signing operation used by ransomware crims to mask their malware</li> <li>(47:50) - Story # 14 - Chicken News</li> <li>(50:07) - Story # 15 - New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC released</li> <li>(51:04) - Story # 15b - Might someone pass along that Crowdstrike and Nessus are having a moment?</li> </ul><br><strong>Links</strong><br>Story # 1 - <a href="https://krebsonsecurity.com/2026/05/cisa-admin-leaked-aws-govcloud-keys-on-github/">CISA Admin Leaked AWS GovCloud Keys on Github</a><br>Story # 2 - <a href="https://www.securityweek.com/poc-code-published-for-critical-nginx-vulnerability/">PoC Code Published for Critical NGINX Vulnerability</a><br>Story # 3 - <a href="https://www.bleepingcomputer.com/news/artificial-intelligence/anthropics-restricted-claude-mythos-model-may-be-coming-to-claude-code/">Anthropic’s restricted Claude Mythos model may be coming to Claude Code</a><br>Story # 4 - <a href="https://www.techradar.com/pro/security/the-fbi-just-remotely-reset-thousands-of-home-and-small-office-routers-and-your-tp-link-could-be-on-the-hitlist">The FBI just remotely reset thousands of home and small office routers – and your TP-Link could be on the hitlist</a><br>Story # 5 - <a href="https://www.cxodigitalpulse.com/drupal-to-release-emergency-core-security-updates-amid-fears-of-rapid-exploitation/">Drupal to Release Emergency Core Security Updates Amid Fears of Rapid Exploitation</a><br>Story # 6 - <a href="https://www.bleepingcomputer.com/news/security/microsoft-rejects-critical-azure-vulnerability-report-no-cve-issued/">Microsoft rejects critical Azure vulnerability report, no CVE issued</a><br>Story # 7 - <a href="https://cybernews.com/security/github-bans-researcher-releasing-windows-zero-days/">GitHub bans vindictive security researcher dropping Windows zero-days: “I will make sure your bones are shattered”</a><br>Story # 8a - <a href="https://www.wired.com/story/teampcp-software-supply-chain-attack-spree-github/">A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale</a><br>Story # 8b - <a href="https://www.helpnetsecurity.com/2026/05/20/github-breached-teampcp/">TeamPCP breached GitHub’s internal codebase via poisoned VS Code extension</a><br>Story # 10 - <a href="https://www.bleepingcomputer.com/news/security/ubiquiti-patches-three-max-severity-unifi-os-vulnerabilities/">Ubiquiti patches three max severity UniFi OS vulnerabilities</a><br>Story # 11 - <a href="https://www.businessinsider.com/pizza-hut-ai-system-dragontail-lawsuit-franchisee-2026-5">Pizza Hut’s AI system caused ‘cascading’ problems and $100M in damages, franchisee alleges in new suit</a><br>Story # 12 - <a href="https://www.unimed.de/presse/">Data Leak at German Hospital</a><br>Story # 13 - <a href="https://www.theregister.com/security/2026/05/19/microsoft-disrupts-alleged-malware-signing-operation-used-by-ransomware-gangs/5243013">Microsoft shuts down illegal code-signing operation used by ransomware crims to mask their malware</a><br>Story # 14 - <a href="https://www.reddit.com/r/Brooklyn/comments/1tnue9q/chicken_found_in_east_williamsburg_escaped/">Chicken News</a><br>Story # 15 - <a href="https://www.bleepingcomputer.com/news/microsoft/new-windows-miniplasma-zero-day-exploit-gives-system-access-poc-released/">New Windows ‘MiniPlasma’ zero-day exploit gives SYSTEM access, PoC released</a><br>Story # 15b - <a href="https://www.reddit.com/r/crowdstrike/comments/1tmf1gh/might_someone_pass_along_that_crowdstrike_and/">Might someone pass along that Crowdstrike and Nessus are having a moment?</a><p><strong><strong>Creators &amp; Guests</strong> <ul> <li><a href="https://bhisnews.transistor.fm/people/alethe-denis">Alethe Denis</a> - Guest</li> <li><a href="https://bhisnews.transistor.fm/people/corey-ham">Corey Ham</a> - Host</li> <li><a href="https://bhisnews.transistor.fm/people/wade-wells">Wade Wells</a> - Host</li> <li><a href="https://bhisnews.transistor.fm/people/bronwen-aker">Bronwen Aker</a> - Host</li> <li><a href="https://bhisnews.transistor.fm/people/meagan-bentley">Meagan Bentley</a> - Producer</li> <li><a href="https://bhisnews.transistor.fm/people/hayden-covington">Hayden Covington</a> - Host</li> </ul><br><a href="https://www.youtube.com/watch?v=cZ-eqtMjCiE" title="Click here to watch this episode on YouTube.">Click here to watch this episode on YouTube.</a><br> </strong></p><p><strong><a href="https://share.transistor.fm/s/ee39b81e/transcript" title="Click here to view the episode transcript.">Click here to view the episode transcript.</a><br> </strong></p><p><strong>🔗 Register for FREE Infosec Webcasts, Anti-casts &amp; Summits </strong></p><p><a href="https://poweredbybhis.com/">https://poweredbybhis.com</a></p><p><br>Brought to you by:</p><p><strong>Black Hills Information Security </strong></p><p><a href="https://www.blackhillsinfosec.com/">https://www.blackhillsinfosec.com</a></p><p><br></p><p><strong>Antisyphon Training</strong></p><p><a href="https://www.antisyphontraining.com/">https://www.antisyphontraining.com/</a></p><p><br></p><p><strong>Active Countermeasures</strong></p><p><a href="https://www.activecountermeasures.com/">https://www.activecountermeasures.com</a></p><p><br></p><p><strong>Wild West Hackin Fest</strong></p><p><a href="https://wildwesthackinfest.com/">https://wildwesthackinfest.com</a></p>

Talkin' Bout [Infosec] News

Black Hills Information Security

GitHub bans vindictive security researcher - 2026-05-26

MAY 30, 202662 MIN
Talkin' Bout [Infosec] News

GitHub bans vindictive security researcher - 2026-05-26

MAY 30, 202662 MIN

Description

This episode covers a CISA contractor’s accidental exposure of AWS GovCloud credentials and internal system details on GitHub, the FBI’s efforts to patch vulnerable routers, and a critical NGINX vulnerability with public proof-of-concept code. The team also discusses Microsoft’s handling of a disputed Azure Backup security finding, the challenges of vulnerability disclosure and CVE assignment, and GitHub’s ban of security researcher Nightmare Eclipse following the publication of unpatched Windows vulnerability research.Join us LIVE on Mondays, 4:30pm EST.A weekly Podcast with BHIS and Friends. We discuss notable Infosec, and infosec-adjacent news stories gathered by our community news team.https://www.youtube.com/@BlackHillsInformationSecurityChat with us on Discord! - https://discord.gg/bhis🔴live-chatChapters(00:00) - PreShow Banter™ — Getting to Chili's (05:45) - GitHub bans vindictive security researcher - 2026-05-26 (07:09) - Story # 1: CISA Admin Leaked AWS GovCloud Keys on Github (10:45) - Story # 2 - PoC Code Published for Critical NGINX Vulnerability (12:53) - Story # 3 - Anthropic’s restricted Claude Mythos model may be coming to Claude Code (16:16) - Story # 4 - The FBI just remotely reset thousands of home and small office routers – and your TP-Link could be on the hitlist (22:37) - Story # 5 - Drupal to Release Emergency Core Security Updates Amid Fears of Rapid Exploitation (25:52) - Story # 6 - Microsoft rejects critical Azure vulnerability report, no CVE issued (28:09) - Story # 7 - GitHub bans vindictive security researcher dropping Windows zero-days: “I will make sure your bones are shattered” (30:41) - Story # 8a - A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale (32:16) - Story # 8b - TeamPCP breached GitHub’s internal codebase via poisoned VS Code extension (35:21) - Story # 10 - Ubiquiti patches three max severity UniFi OS vulnerabilities (37:51) - Story # 11 - Pizza Hut's AI system caused 'cascading' problems and $100M in damages, franchisee alleges in new suit (43:55) - Story # 12 - Data Leak at German Hospital (45:00) - Story # 13 - Microsoft shuts down illegal code-signing operation used by ransomware crims to mask their malware (47:50) - Story # 14 - Chicken News (50:07) - Story # 15 - New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC released (51:04) - Story # 15b - Might someone pass along that Crowdstrike and Nessus are having a moment? LinksStory # 1 - CISA Admin Leaked AWS GovCloud Keys on GithubStory # 2 - PoC Code Published for Critical NGINX VulnerabilityStory # 3 - Anthropic’s restricted Claude Mythos model may be coming to Claude CodeStory # 4 - The FBI just remotely reset thousands of home and small office routers – and your TP-Link could be on the hitlistStory # 5 - Drupal to Release Emergency Core Security Updates Amid Fears of Rapid ExploitationStory # 6 - Microsoft rejects critical Azure vulnerability report, no CVE issuedStory # 7 - GitHub bans vindictive security researcher dropping Windows zero-days: “I will make sure your bones are shattered”Story # 8a - A Hacker Group Is Poisoning Open Source Code at an Unprecedented ScaleStory # 8b - TeamPCP breached GitHub’s internal codebase via poisoned VS Code extensionStory # 10 - Ubiquiti patches three max severity UniFi OS vulnerabilitiesStory # 11 - Pizza Hut’s AI system caused ‘cascading’ problems and $100M in damages, franchisee alleges in new suitStory # 12 - Data Leak at German HospitalStory # 13 - Microsoft shuts down illegal code-signing operation used by ransomware crims to mask their malwareStory # 14 - Chicken NewsStory # 15 - New Windows ‘MiniPlasma’ zero-day exploit gives SYSTEM access, PoC releasedStory # 15b - Might someone pass along that Crowdstrike and Nessus are having a moment?Creators & Guests Alethe Denis - Guest Corey Ham - Host Wade Wells - Host Bronwen Aker - Host Meagan Bentley - Producer Hayden Covington - Host Click here to watch this episode on YouTube. Click here to view the episode transcript. 🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits https://poweredbybhis.comBrought to you by:Black Hills Information Security https://www.blackhillsinfosec.comAntisyphon Traininghttps://www.antisyphontraining.com/Active Countermeasureshttps://www.activecountermeasures.comWild West Hackin Festhttps://wildwesthackinfest.com