This week in the bucket, we go on the defensive.

Connect With Us:

Twitter: @theeffitbucket

Reddit: r/theeffitbucket

E-mail: theeffitbucket@gmail.com

Musical Attribution:

"Limit 70" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/

This week in the bucket, Direct Send causes direct issues, a lively debate among hosts, and a discussion about how recipes should be written.

News Stories for Reference:

"Ongoing Campaign Abuses Microsoft 365’s Direct Send to Deliver Phishing Emails"

https://www.varonis.com/blog/direct-send-exploit

Connect With Us:

Twitter: @theeffitbucket

Reddit: r/theeffitbucket

E-mail: theeffitbucket@gmail.com

Musical Attribution:

"Limit 70" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/

This week in the bucket, Clorox cleans house with their tech support, Design and Development roles in the NICE Framework, and more discussion about the movie Event Horizon than you would think would be featured in a Cybersecurity podcast.

News Stories for Reference:

"Hackers fooled Cognizant help desk, says Clorox in $380M cyberattack lawsuit"

https://www.bleepingcomputer.com/news/security/hackers-fooled-cognizant-help-desk-says-clorox-in-380m-cyberattack-lawsuit/

A Little Something Extra

Dan Chuparkoff on The Heirarchy of Human Expertise:

https://www.linkedin.com/posts/chuparkoff_ai-flips-the-work-pyramid-upside-down-heres-activity-7262524625018920960-gB7S

Millions of Americans have mental and substance use disorders. Find treatment here:

https://findtreatment.gov/ | 1-800-662-4357

Connect With Us:

Twitter: @theeffitbucket

Reddit: r/theeffitbucket

E-mail: theeffitbucket@gmail.com

Musical Attribution:

"Limit 70" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/

This week in the bucket, discussing the Oversight and Governance roles in the NICE Framework.

Connect With Us:

Twitter: @theeffitbucket

Reddit: r/theeffitbucket

E-mail: theeffitbucket@gmail.com

Musical Attribution:

"Limit 70" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/

This week in the bucket, an introduction to the NICE Framework.

References:

"NICE Framework Resource Center | NIST"

https://www.nist.gov/itl/applied-cybersecurity/nice/nice-framework-resource-center

"Job Builder | CyberSN"

https://cybersn.com/public/build-a-job

"CyberSeek"

https://www.cyberseek.org/

"The NICE Framework | CISA"

https://niccs.cisa.gov/tools/nice-framework

Connect With Us:

Twitter: @theeffitbucket

Reddit: r/theeffitbucket

E-mail: theeffitbucket@gmail.com

Musical Attribution:

"Limit 70" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/

This week in the bucket, the largest plaintext password breach in history just happened (unless it didn't), and we introduce a series we will be beginning over the next few episodes.

News Stories for Reference:

"16 Billion Apple, Facebook, Google And Other Passwords Leaked"

https://www.forbes.com/sites/daveywinder/2025/06/20/16-billion-apple-facebook-google-passwords-leaked---change-yours-now/

"The NICE Framework | CISA"

https://niccs.cisa.gov/tools/nice-framework

Connect With Us:

Twitter: @theeffitbucket

Reddit: r/theeffitbucket

E-mail: theeffitbucket@gmail.com

Musical Attribution:

"Limit 70" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/

This week in the bucket, everyone loves fancy cybersecurity tools, but we explore the pitfalls that can occur when they become the entirety of a cybersecurity program.

Connect With Us:

Twitter: @theeffitbucket

Reddit: r/theeffitbucket

E-mail: theeffitbucket@gmail.com

Musical Attribution:

"Limit 70" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/

This week in the bucket, a Cybersec CEO is charged with uploading malware (quite the opposite of what they are meant to do), a dev in Maryland outsources his own job, and a single guy steals 1.1TB of Slack data from the Mouse.

News Stories for Reference:

"CEO of cybersecurity firm charged with installing malware on hospital systems"

https://securityaffairs.com/177020/cyber-crime/ceo-of-cybersecurity-firm-charged-with-installing-malware-on-hospital-systems.html

"Maryland man pleads guilty to outsourcing US govt work to North Korean dev in China"

https://www.theregister.com/2025/04/30/maryland_man_farming_web_dev/

"Hacker 'NullBulge' pleads guilty to stealing Disney's Slack data"

https://www.bleepingcomputer.com/news/security/hacker-nullbulge-pleads-guilty-to-stealing-disneys-slack-data/

Connect With Us:

Twitter: @theeffitbucket

Reddit: r/theeffitbucket

E-mail: theeffitbucket@gmail.com

Musical Attribution:

"Limit 70" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/