FCC, Github, MiniShai-hulud, Stated of Supply Chain, Itron, CRA, NIS2, and more!! - PSW #927
From Paul's Security Weekly (Video) by Paul Asadoorian
May 21, 2026 · 2h 2m
About this episode
The episode covers various security news topics including FCC router bans, Github supply chain concerns, and compliance deadlines for CRA and NIS2.
In the security news this week: FCC router bans and the hidden firmware update problem Why extending support timelines actually improves security Github supply chain concerns and the evolving SBOM ecosystem CRA and NIS2 compliance deadlines are getting very real The EU Cyber Resilience Act's 24-hour vulnerability disclosure requirement Security regulation: vertical vs horizontal compliance models Vehicle-to-load EV systems powering homes during outages Solar, batteries, AI farms, and the future economics of electricity Data centers consuming regional power grids BitLocker "Yellow Key" fallout and large-scale remediation challenges AI-generated PowerShell fixes and the rise of vibe scripting Linux kernel exploits, module jail, and default deny strategies Medical biometric data theft and why fingerprints are terrible passwords Interpol cybercrime operations across the MENA region OT security, connected vehicles, and accepting real-world risk The crew also discusses threat intelligence obligations under the CRA, the operational realities of patching at enterprise scale, the economics of secure-by-default systems, and why making security cheaper than insecurity might finally move the…
People in this episode
Host: Paul Asadoorian
Topics covered
- security news
- supply chain
- compliance
- vulnerability disclosure
- OT security
- threat intelligence
- enterprise patching
Keywords
- FCC
- Github
- supply chain
- NIS2
- CRA
- vulnerability disclosure
- BitLocker
- AI
- OT security
- biometric data
Mentioned in this episode
Organizations: FCC, Github, Itron, CRA, NIS2, EU Cyber Resilience Act, Interpol
Products: MiniShai-hulud, BitLocker, PowerShell, Linux kernel, AI farms, vehicle-to-load EV systems, biometric data
Places: MENA region
More episodes of Paul's Security Weekly (Video)
- Trolling Microsoft With Vulnerabilities - PSW #930 · June 11, 2026 · 2h 3m
- Security Researchers Are Threat Actors - PSW #929 · June 4, 2026 · 2h 2m
- Linux Supply Chain How-To - PSW #928 · May 28, 2026 · 2h 4m
- You're not going to patch your way out of this - PSW #926 · May 14, 2026 · 2h 3m
- Getting Rid of Your VPN - Rob Allen - PSW #925 · May 7, 2026 · 2h 5m
- FIRESTARTER - PSW #924 · April 30, 2026 · 2h 2m
Explore listener stats, chart rankings, contacts and more on the Paul's Security Weekly (Video) podcast page.