The Host Unknown Podcast - Episode 230: A number we all agree upon
Episode Date: November 18, 20255th November 1993: Bugtraq was created by Scott Chasin as a full disclosure vulnerability reporting mailing list at the dawn of the World Wide Web. Bugtraq had an enormous influence on how orgs respon...ded to vuln disclosure and paved the way for a shift which led to bug bounty programs.https://x.com/todayininfosec/status/1986164925039841770 24th October 2002: The worm-like Friendgreet propagated by emailing all Outlook contacts from each computer where it was installed. But THERE WAS A TWIST!The software presented a EULA stating it would do that!They gave fair warning, right!?(EULA = End User License Agreement)https://x.com/todayininfosec/status/1981885412374114601 CyberSlop — meet the new threat actor, MIT and Safe SecurityCybersecurity vendors peddling nonsense isn’t new, but lately we have a new dimension — Generative AI. This has allowed vendors — and educators — to peddle cyberslop for profit.Earlier this year, MIT released a working paper and made a webpage around 80% of ransomware attacks using Generative AILaw passed for scammers, mules to be caned after victims in Singapore lose almost $4b since 2020SINGAPORE – Scammers will get at least six strokes of the cane, with the punishment going up to 24 strokes depending on the severity of the offence.Those to be caned will include syndicate members and recruiters, and those who help them, such as money mules who provide their bank accounts, SIM cards or Singpass credentials.These mules will face discretionary caning of up to 12 strokes.Tweet of the week: https://x.com/phl43/status/1985841184141689196 Come on! Like and bloody well subscribe!
Transcript
Discussion (0)
Very good morning, jents.
It's been a while.
It has been, what, five, six weeks.
I know.
Had a couple of APBs put out.
So that's not a while.
That's just standard cadence, isn't it?
Well, it is since you took over editing, yeah.
Do you not put this on me.
Do not put this on me.
I believe you guys have been traveling.
I mean, I've been here holding the fort as per usual.
But, Tom, you went to a Paradise Island and just stayed in your hotel room.
Yeah, we're not that far from the truth.
I got driven around in a Porsche taken.
Hang on.
This is the intro.
You're listening to the host unknown podcast.
Hello, hello, hello, good morning, good afternoon, good evening from wherever you are joining us.
And welcome, welcome one and all to episode.
It should work soon.
God damn, the drum roll's not working.
230.
It is 230, thank you.
No, it literally is.
I know.
That's what I've been saying.
Yes, I know.
No, I know.
I am the only one that's been consistent with this numbering.
You are not, no, no, I dispute this.
I ran the numbers.
I did a spreadsheet.
And I'm telling you, it is episode 230.
Excel doesn't lie. Anyway, anyway. Jeff, how are you? Where have you been on your travels?
I've been to a few places. I was in Qatar, Saudi. And that's about it.
I felt like there was a longer list there. I feel like I've been traveling more than I actually have.
So Andy's intro at the beginning
I just really didn't do it justice.
No, no, no, no, no.
Although I have a small personal update,
I thought I'd share with you guys.
So I've had my motorbike for about three years.
And last time we spoke,
I told you about how the fascist London police are...
I know where this is going.
You're all going to swap it for a scooter, aren't you?
My daughter gave me away by leaving comments on my TikTok
You are getting a scooter
A maxi scooter
Which is like a
What does it come with wings? Like adhesive wings
What's a maxi scooter?
It's like so you get the regular 1-2-5s
And then maxi-suiters are like
Just bigger engine, bigger bikes
so it's a 350s.
So basically a motorbike.
Why would you not stick with a motorbike?
Because my back really hurts when I'm on the bike for more than a couple of hours.
Yes, yes.
Okay.
Now, frankly, you've got Andy and I on your side because we're also old men.
So we actually appreciate it.
If you just told the truth to begin with...
I wouldn't say I'm an old man.
I'm not like you're...
guys levels that's a good 15 20 years between us you wake up every morning in an existential sweat
of fear and dread you're an old i wake up that's the key you we have to clear jav man how does it
feel to hand back your motorbike card handing it back off well later this today i'm going to hand my bike back
pick up the new one.
Damn, it's that soon.
Yeah, yeah, you know, it's all been planned for a few weeks.
And I didn't consider them.
And then I saw some videos on YouTube.
And there's this older gentleman, like my age, probably.
And he had one of these Honda, he had one of these Honda ADV-350s.
And he took it touring all the way to Greece from the UK.
And you know what?
It's just like, it's got underseat.
Dude, we're not your wife.
You don't have to justify the purchase of us, this is right.
If you're saying you're buying it, cool, buy it.
No, it's just like comfort, practicality.
I'm not going to get more points on my licence.
I can still filter.
It's like, you know, when I sat on it, I thought,
oh, this is going to feel like a pizza delivery bike.
And it does.
It's like handing back a two-seater sports car
and justifying the SUV that you're buying.
The Volvo.
You don't have to justify it to us, man.
It's like a small,
Honda Silver Wing.
You know those big, great big touring ones?
It's so comfortable and so...
No, gold wing.
Goldwing.
Goldwing.
It's like that.
So, Andy, when we meet,
because I'm assuming we're all going to meet
at B-Sides in London, right?
Yes.
Because when we meet,
I've got money on Jav turning up wearing tart and slippers.
Yes.
Something comfortable.
All crocs.
All crocs.
Something comfortable.
Something comfortable.
Yeah.
The crocs would have lining in them, not just the...
Oh yeah, furry crocks, obviously.
Anyway, talking of furry things to put things into, Andy, how are you?
I'm not too bad.
I think since September, I've only been to Budapest, so I've not gone far.
And welcome to the Middle Age Man Privileged Podcast.
I've only been to Bucharest.
A Budapest.
It's a complete different country, yes.
it started with boo
yeah
but no I am off to Mauritius next week
oh very nice
you know up that privilege
yeah I need a bit of sun
so it's uh the weather's turning over here
so I head out for a week
take some time out
where you're staying
uh Grand Bay West is best
uh not Granby
flick on flat
oh flick on flat okay
but I have a complete itinerary
of everything I'm going to do
over the eight days
if I can give you some advice
about your mobile phone when you get there
please do yes
Tell me about this. What do you recommend, Tom?
I recommend. Here's what I recommend.
Reading the notes that your good friend, who's very familiar with Mauritius,
reading the notes before you fly, not after you arrive in the hotel on a Sunday afternoon.
Damn, that would be terrible. I will do that. I will pay attention to what they say
and all the hints and tips that they have to avoid asking questions that have already been answered.
and to avoid not having a phone you can use
in a country you've never been to before
in an area that you have no familiarity whatsoever
and can't get a phone contract until the day after.
Yeah, that sounds terrible.
It's ridiculous, I mean...
If only someone could have pre-warned you.
God, I will make sure I don't suffer that same mistake.
No, no, it's lovely.
It is lovely.
Other than that, how did you enjoy your...
view from the hotel in Mauritius?
The pool was very nice.
Well, I was in Port Louis for most of the time,
because it was a business trip.
You know, we don't all go on these jollies.
It was a business trip, but Portlea itself was quite nice.
I like that.
We've got some nice photos,
including photos of my iris or irises,
which was very unique, never seen that before,
you know, of the coloured parts of your eyes.
Double check, this isn't a sex thing, is it?
You actually mean the iris.
No, iris, no, iris, not anus, iris.
Okay, well, I didn't know if it's like, you know, the way you...
I know the colour of my anus, but seeing the colour of my irisies up close is very good.
So that's weird.
You're very familiar with your anus, but you've never actually noticed your own eyes.
Okay, that says a lot about you.
That's because he gets it reached and they bring out the colour card like you do at B&Q, say which colour?
Yeah.
How would you like your ring colours?
It's either Parisian one.
or Perusian Moonlight, White or Applewhite.
I can't remember.
It's one of the others.
Dear, moving swiftly on to play the Dutch.
And talking of filthy things
that we're going to have to endure
for the next 40 minutes.
Shall we see what we've got coming up for you this week?
This week in Infosake is giving the people
what they asked for.
Rang to the week tells of serious,
no really serious research.
Billy Big Bulls.
Singapore swings at scammers,
but Tom considers it just a Saturday night.
Sorry, who wrote this?
Industry News is the latest and greatest
security news stories from around the world
and tweet of the week
tells the story of French incompetence
which is Brits, we love.
So, let's move on, shall we,
to our favourite part of the show.
It's the part of the show that we like to call.
This week in Infosec.
It is that part of the show where we take a trip down Infosec memory lane with content
liberated from the today and Infosec Twitter account and further afield.
And today we are going back a mere 32 years.
I said a mere 30.
It's gone.
It's not here.
It's not in the list.
It's got.
I don't know what's happened to it.
It's been that long.
Yeah.
To the 5th of November, 1990.
when BugTrack was created by Scott Chasing as a full disclosure vulnerability reporting mailing list
at the dawn of the World Wide Web, BugTrack had an enormous influence on how organizations responded
to vulnerability disclosure and they paved the way for a shift to which led to bug bounty programs.
So let me take you back before CVEEs, this was, before Hacker 1 and before every company had a security at email.
to when the internet still squeaked at you through a modem.
There was this thing that bug track.
So it's basically a public mailing list
where hackers, researchers, cisadmins,
anyone would post new vulnerabilities
for everyone to see.
There was no red tape, no NDAs,
no PR spin,
just raw disclosure.
And this was radical stuff back then.
Because just before BugTrack vulnerabilities
were just quietly passed to vendors
who might take months or years to fix them.
But BugTrack flipped that model.
And if the public knew,
then the vendor was forced to act.
So it did actually just introduce that transparency.
It was messy, it was loud, and it was sometimes chaotic, but it worked.
Organisations suddenly had to care about patching and security became everyone's problem,
not just the vendor's secret.
And obviously, bug track spirit still echoes today in coordinated disclosures,
bug bounty programs, and the culture of show the floor, don't hide it.
Couldn't agree more.
It is.
Yeah, we do like that.
It's interesting about how long ago and how recent it feels at the same time.
Like, when I joined the industry, you started working,
I remember Bug Track was still a thing,
and it was very, like, you know, referenced quite a lot and what have you.
I tell you what really made me feel old.
On Netflix, there's that movie about Blackberry.
It's called Blackberry.
And if you're not seen it.
Oh, okay.
It's such a good film.
it is a really good film and also again it took me through that journey of like it feels so recent yet seems so long ago now yeah
you know without giving it away kind of the final scene or final part of the film is about the release of the iPhone
and we forget quite how much of an impact it made on on that whole mobile phone economy
and how it just sent companies scurry in trying to recover
So I've not seen the film yet, but also I don't think you're going to give anything away
about the fate of Blackberry.
There's going to be people listening, like, what the hell's a Blackberry?
You have no idea.
You mean I should so much, yes?
In the end, Steve Jobs comes and he buys Blackberry.
Yeah, it's right.
No, very, very good film, very good film.
I would check that out.
I've got a longer light coming up, so I might download it.
No, I do. I'd highly recommend it.
Alas, our second story takes us back a mere 23 years to the 24th of October 2002
when the worm-like friend greet propagated by emailing all outlook contacts from each computer
where it was installed.
But there was a twist.
The software presented at a Yula, which is an end-user license agreement stating it would do
exactly that.
So it gave a fair warning that it was going to do this.
gem from the early days of malware at the friend greek worm it spread the old
fashion way emailed a copy of itself to everyone in your Outlook contact so one
infected PC and boom your entire address book got spammed but let's say friend
great actually told you it was gonna do that it came with a proper Euler it literally
said hey by installing this we're gonna email all your friends and people
clicked agree so it wasn't even hiding anything it behaved like a worm
legally it had consent you just signed
where you're right not to be embarrassed in front of your boss, your mum, your dentist.
But it's one of those classic early 2000 moments where, I guess, social engineering met legal
print a self-spreading worm with terms and conditions.
If malware could be a traditional English gentleman, that would be it.
That is it, exactly.
Yes.
I think like, it's going to do unspeakable things to you, but do it politely.
Yes.
You know, companies saw that and they built their entire model.
off that
like Tom's mate
what's his name?
Yes they take
Yes
it's all there
in the agreement
in the license
that you all clicked okay to
so you know
we're not doing anything
legally wrong
so technically it's fine
absolutely
thank you Andy
this week
in Info
covering the warm and fuzzy feeling you get when you pee yourself.
All right, let's go to this week's.
Listen up.
Rent of the week.
It's sad to mother fucking rage.
All right, so there has been a little bit of academic research that has been released recently.
We know that what we find with academia,
universities, etc. is generally when they release a paper, and in our case, in the realm of
cybersecurity, we generally sort of sit up and take notice. They are, how can I put it, you know,
they're well researched, they have all the facts there, they bring a very balanced view,
and actually it brings a very strong, independent set of details, facts, analysis, etc., to the
general conversation that we're faced. And so, you know, universities as a whole are quite well,
revered for this sort of thing.
MIT is one of the foremost universities
when it comes to technology.
So if MIT come and put out a paper about AI,
we should sit up and take notice, right?
Well, there was a recent piece called out,
sorry, there was a recent paper that MIT
and a company called Safe Security,
and that's not uncommon because very often companies will,
you know, certainly in the US,
will help sponsor research, etc.
Yeah, a little bit self-interest,
but it's better to get the paper out there than not.
But somebody has called out that this paper,
that MIT wrote, with the company's safe security,
has stretched the truth a little.
Now, the article argues that the so-called threat actor
of generative AI in ransomware
is being pushed by vendors and institutions
for profit rather than truth.
So here's the thing.
So, NIT and Safe Security published a paper claiming that 80% of ransomware attacks now use generative AI.
It's a very bold claim.
Some might say it would pass the sniff test if you merely went just by the amount of noise you hear from the industry ran AI.
The problem here, though, is that the evidence is thing, to say the least, paper thing.
The methodology that they use to make those claims was weak.
The authors of the paper and the people who are consulting and other people involved
frankly have conflicts of interest and financial ties to the outcome of this paper.
So this paper, it's got MIT's name on the top of it.
The key conflict of interest here between MIT and safe security stuff isn't even disclosed.
Safe security sells AI-based risk solutions.
and MIT's Technical Advisory Board includes someone from safe security.
The paper makes sweeping statements like ransomware groups
which predate generative AI, use gen AI, without any kind of sourcing.
And it gets worse than that.
I think it was Kevin Beaumont, also known as Gossie the Dog.
He picked up on this in quite an extensive article, links in the show notes that nobody reads.
Once people started to call this paper out, Gossie the Dog being one of them,
it was removed and what or at the very least it was relabeled and then but but with its removal
and re-labelling as early research onto the MIT site there was no correction there was no
I guess you could say chain of custody as you were no disclosure of the issues it was purely just
oh oh no this was early research looking for comments that's not research this is basically
marketing to try and scare people. So, you know, we all hear our listeners, many of our listeners,
many of our peers out there, we're defenders and we spend lots of time emphasizing the
fundamentals, getting the basics, you know, patching, hygiene, segmentation, blah, blah, blah,
blah, blah. And then here's a major prestigious institution saying, forget it. Gen AI is going to work
all around that. It's weaponising ransomware. Therefore, you have.
to buy into AI anti-ransomware and just sidesteps all of the basics that can be used.
So yes, so my big thing here is why are we allowing or why are organizations like MIT
doing this thing purely in the interest of profit, not in the interest of research,
and then when being called out, don't even put their hands out and say, you know what,
we got this wrong, we're going to push it back to an early research.
stage, not just relabel it. Absolutely outrageous.
It's, uh, I think the reason for it has something to do with money.
Money!
I know. Money.
Yes, sweet Tom, and let me introduce to this concept called capitalism and the world we live in.
Didn't I make it clear from the last one? I'm a traditional English gentleman.
I shall do unspeakable things, but I will tell you about said unspeakable things.
MIT are just hiding behind credibility and authority of their institution.
They're not, capitalist, yeah, capitalism is fine.
We get that.
That's why companies like Safe Security sponsor papers,
but they have to be utterly open and disclose that.
So how's that different from what Gartner does?
Well, Gartner's not a highly respected academics organization.
It's pure, but Gartner are very open about that.
We take money from people to write reports on stuff.
I guess there's two issues here, yeah.
One is the actual content.
that was published, yeah, and that could be right, wrong.
Yeah.
Now, a lot of people put out a lot of crap anyway.
Like you go to any vendor website, they'll all be pushing for something,
whatever fits their own narrative to sell that thing or what have you.
On the other hand, you've got the integrity of institutions,
which I think is the bigger issue.
I think that's the real issue here.
That's the issue here, yeah.
Yeah, and I think that is a big, scary thing.
But then we are talking about America
where none of the big institutions have got any integrity.
Oh, dear.
In the interest of time, I think we're going to move on
and agree that Java agrees with me.
Yeah, okay.
In the category of most entertaining content, the winners are post unknown.
It's also strange for us because we voted for Lazarus Heist too.
I forgot we did that one.
Uh, Jav, over to you.
So the Billy Big Bulls of the week.
So the Billy Big Bulls this week comes from Singapore,
and they have finally had enough of scammers,
and they're bringing out the.
cane literally they're bringing up the cane so there's a new law that's passed that said that if you're
caught running scams recruiting others or even lending your bank account to help others move stolen
money so aka be a money mule you can now be caned uh like properly that they i saw these videos
they're training these officers with mannequins and like padding like of how to cane properly
And it's six to 24 strokes for the big players, calm down, Tom.
And up to 12.
I know people who go and lend them bank accounts right now over in Singapore for that.
Yeah, yeah, that's it.
There's a whole bunch of like, you know, emo girls on a flight over to Singapore right now,
asking if they can call the policeman daddy.
Stereotype much?
Tell me I'm wrong.
You're a half wrong.
Tom, are you or are you not heading to the airport
after you finish recording this?
Yes.
Okay, that's all we need to get.
Thank you.
As you were, Jeff.
I literally am heading to the airport within an hour of it.
Since 2020, victims in Singapore have lost nearly $4 billion to scams,
which is a huge, huge deal.
So if the government's stance as,
If we can't stop you digitally, we'll remind you physically.
There's also other areas which they're toughening things up.
So tougher penalties for deep fakes, obscene materials and misuse of personal data.
It even removes caning for smaller offences, like blocking a train carriage.
It's basically...
I mean, that was a cane.
That was a canable offence.
So basically they're redeploying resources to where there's.
they needed the most. They're saying like, okay, you caners. Forget about these people
blocking the carriage, now move over to the scammers. You know, will it, the big question is like,
you again, sir, you're going to need to mule money if you want me to do this again.
Exactly, exactly. I'm off the clock. I'm not going to do it without overtime.
The problem with the internet, as most of us know, is other than the Singaporean government,
is that you could be sitting anywhere in the world to run a scam.
Maybe it's a local money meal that might be the most that's going to get caught,
but the overall infrastructure will remain intact, I think.
It's a bit like shutting down a botnet.
You just control, you know, you can't take the whole thing down all the time.
You just try to take down or make it difficult for major parts of the.
system to run. So yeah, Kainin, it sounds old school, well, you know, literally Tom school,
but it's, but you know, I quite like it as a deterrent. It's efficient, it's visible,
and I suppose it sends that very clear message, play stupid games, win stupid prizes. And so
I think I like it
especially if you're a money milting twice
do you know what
do you know what
I agree with you
I agree with you
let's move on then quickly
Singapore's a very
very good
like you know
visiting Singapore is a very smart country
their game is very
well in shape
they're on the ball
absolutely
you know speaking of
well I agree with you
no no I know
but speaking of just like having deterrence and everything
I was in Saudi last week
or beginning of the week
and honestly
it shocks me how many people leave
their purse or their phone on their
table as they walk away
to go to the toilet to go anywhere
and there is zero
crime zero fear of any crime
and I was saying like in London
we can't even walk with our phones out on our hand
in case someone on an e-bike cycles past
and snatches it out of your hand
and they all laughed and I said
that's not a joke
unfortunately it's not a joke
but
yeah so I think
but there's no deterrent of having your hands cut off
in
yeah well exactly I mean most
criminals over in the UK can at least
pick their nose and wipe their bums right
anyway
on that note
Billy Big Balls
of the week
People who prefer other security podcasts are statistically more likely to eject USB devices safely.
For those who live life dangerously, you're in good company with the award-winning host-unknown podcast.
All right, Andy, I need to file for some time while I arrange my screens so I can click buttons and read what we've got.
written. So in that time, can you tell me what time it is? It is. It is that time at the show
where we head over to our news sources over at the Infosec, PA Newswire, who have been
very busy, bringing us the latest and greatest curiosity news from around the globe.
Industry News
Shadow AI. One in four employees use unapproved AI tools. Research
finds
Industry News
facial recognition firm
Clearview AI hit
with criminal complaint
in Austria
Industry News
Conti suspect in court
after extradition
from Ireland
Industry News
hackers help organise crime groups
in cargo freight heists
researchers find
Operation Chargeback
Uncovers 300 million
fraud scheme
in 193 countries
Industry News
Google forecast rise of
cyber physical attacks
targeting Europe in 2026
Industry News
AI enabled malware now actively deployed
says Google
Industry news
Multi-turn attacks expose weaknesses
in open weight LLM models
What does that even mean?
Industry news
I paid twice
Fishing Campaign Targetsbooking.com
Industry News
And that was this week's
Industry News
Huge
Huge of truth
I tell you what
Operation Chargeback
I've never been prouder
to have left Europe
because all of that money's in euros
Not pound sterling
I'm just saying
See, that's a benefit of Brexit.
There's a benefit of Brexit, yeah, right there, dear me.
I'm very surprised that the research that says
one in four employees use unapproved AI tools
because that is a very low number.
Yeah, what are the other three?
Do you think it's a low number?
I think it's high.
Yeah.
I reckon there's easily 60 plus percent of employees using unapproved AI tools.
But here we go.
We don't know which industries they're looking at.
We don't know which, you know, what cross-section, et cetera.
If we look at a specific industry.
God forbid we actually click into the article and read the background.
If this was Deloitte, for instance, it would be four in four.
Yeah, that's true.
Were we on air when they had to give the Australian government back $400 million for producing a report with fake citations that AI generated?
Maybe, maybe, maybe not, but it was a big deal yet.
But yeah, lots of people who use AI, whether their IT team know about it or not.
I'm interested in what cyber physical attacks are because this is the purpose of fusion sensors, right?
Where you sort of bring physical and cyber together, we're under one sock.
Hybrid warfare.
Okay.
cyberphysical attacks will likely be combined with information operations to undermine public trust.
They expect to target European supply chains.
Interesting. It sounds like a lot of fluff.
Maybe Google have some physical security there, they're deploying in the next few months.
So they're warming up the market.
Exactly.
paid twice fishing campaigns.
The first time was so nice, I had to do it twice.
Yeah.
What?
So this is literally just getting sent emails saying that I've already paid double.
Okay.
Oh, you need to, your payment didn't go through, pay again, etc.
Yeah.
Okay, cool.
Right.
Slim picking.
Yeah, I think so.
Let's move on.
from this week's
Industry News
This is the podcast
The King listens to
although he won't admit it
He won't admit a lot apparently
Right, shall we move
Who? Sorry, Andrew. Sorry, Andrew.
Andrew. Thank you.
Yeah, the artist formerly known as Prince.
Yeah, yeah.
John's formerly known as Prince, yeah.
Give that man all of the respect he deserves.
Right, let's just crash into the end of the show with you, Andy.
Tweet of the Week.
And we'll always play that one twice.
Tweet of the Week.
Oh, we get there eventually.
I shall take a time.
This week's tweet of the week comes from Philippe Limone,
who says, if you feel like you're bad at your job and it's making you depressed,
Just consider that as the investigation of the recent heist revealed,
the password to access the Loo's video surveillance system was simply Loof.
Jesus Christ.
And didn't we, before I, didn't we say something like,
there was another admin passwords that was just TALAS?
Yes, yes.
Another security system, they passports TARLAS because I assume it was installed by TALIS.
Jesus.
And you just know that that's, that's, that's,
never been updated since the day it went in.
I think that actually also says so much about Tarles as well.
And just the culture that goes around there.
Yeah.
Should we have a better password?
Oh, we be after we go out for some food and wine and...
I shall smoke my galois and look canonically into the future and think about changing my password.
There you go. Some casual racism there for a host unknown.
Another benefit of Brexit.
No, it's not good. I don't think it had anything to do with the actual breaking,
because I think that was just a ladder and a glass cutter, isn't it?
Yeah, that was just the classic rock-up in a yellow vest.
Exactly, yeah. Yeah, exactly. They just balls that out.
I mean, I've got a little bit more respect for the criminals than I have the security people
who installed that system.
But yeah, that subsequent finding out of things like that is awful.
I tell you who really deserves respect,
the marketing department of the company that makes those ladders,
they're a German company,
and they took a picture off their ladder thing here and says,
when you want a job done quickly.
Oh, that's beautiful.
Absolutely beautiful.
Love it.
Right.
Well, that's it.
That was.
God, I've lost all the...
It's the problem with doing this on a little screen
is you can't see everything all at once.
There we go.
Let's not lie, you struggle on a big screen as well.
I do.
Well, I can't see all the corners of a big screen
because they're so far away.
Gentlemen, thank you so much.
Well, it's been what?
What did we work out?
Five weeks or something like that?
Six weeks?
Something like that. Yeah.
It's a long time.
It's a long time.
And as Jav said, it's cheaper than therapy.
so we're currently costing Jav a lot of money to not be doing this.
Exactly.
Yeah, Jav, you're welcome.
Thank you, thank you.
I appreciate it.
Same time next week, next month.
You guys, I'm going to be picking up a higher car about this time next week
and driving my way to the west of the island of Mauritius.
And I am going to be into a new house.
No, it looks like a Suzuki Swift or something like that.
A swifty.
Okay. And a new house, Tom. Well, congratulations. So next week you're not going to be around.
Bought it yesterday. Moving in over the next week.
You're not even in the country. So that's some good moving.
Do you know what? Buying a house when you're out of the country? I feel like a kind of baller move. Do you know what I mean?
It's all these online purchases. It's just getting out of hand.
You know, I can't pick up the keys. I'm not broad at the moment's on business, don't you know?
I should collect them on Saturday morning. I trust you'll be open.
love it right jav thank you so much wit wisdom charm charisma etc etc you're welcome
and andy thank you sir stay secure my friend stay secure
you've been listening to the host unknown podcast if you enjoyed what you heard
comment and subscribe if you hated it please leave your best insults on our reddit channel
The worst episode ever
R-slash Smashing Security
Need to give a shout-out to listener Lee Sainsbury
who sent me a message saying that I absolutely carry the show
I'm the best presenter of the show
You set us a screenshot and it didn't say that
Oh, there's a separate thread, separate thread.
Separate to it.
Well, I had somebody at Iriscon come up to me and say,
hey, when's the next episode?
And I said, well, who knows?
knows. Well, I really look forward to your episodes. I just wish I could remember your name.
I'm so sorry. But he remembers me. And, yeah, it's just the other thing he gets right.
He specifically remembers you because he said, Tom, Jav and the other one.
Oh, he does know me. Yeah, exactly.