The Exploit Archives
The Exploit Archives is a cybersecurity podcast that dives deep into real-world vulnerabilities — and the exploits that took advantage of them. Each week, we unpack a specific flaw in the digital world: how it worked, what made it dangerous, and how attackers used it, from infamous zero-days and ransomware incidents to lesser-known bugs with serious impact. Whether you’re just starting out or already deep into cybersecurity, we decode each case with clarity, precision, and real-world context. Also available on YouTube. Discover. Decode. Lock in
Episodes
CVE-2024-3094 - a backdoor hidden inside XZ Utils, the tiny compression library bundled into millions of Linux systems.
In this episode of The Exploit Archives, we break down how a trusted maintainer slipped in the malicious code, how close it came to being unleashed, and what this betrayal means for the future of open-source security.
Support the show: The Exploit Archives
CVE-2025-23334, CVE 2025-23320, CVE-2025-23319 - three vulnerabilities in NVIDIA's Triton Inference Server that chain together, getting more critical each time.
In this episode of The Exploit Archives, we break down this "Triple Threat", how these flaws work, why they matter for AI security, and what lessons they hold for protecting machine learning infrastructure.
Support the show: The Exploit Archives
CVE-2021-41096 - a flaw in Rucky, the open-source Android app that turns your phone into a “Rubber Ducky” style hacking tool. It exposed just how dangerous weak cryptography can be.
In this episode of The Exploit Archives, we break down how the flaw worked, why it mattered, and how a simple cryptographic misstep turned a pentesting tool into a potential attack vector.
Support the show: The Exploit Archives
Youtube: The Explo...
CVE-2017-5753 & CVE-2017-5715 – better known as Spectre – exposed a terrifying truth: your CPU could be exploited.
This wasn’t a software flaw. It was a vulnerability baked into the hardware of nearly every modern processor. And it wasn’t just theoretical. Attackers could steal passwords, encryption keys, and sensitive data... without ever touching the system.
In this episode of The Exploit Archives, we dive into how Spectre work...
CVE-2021-3156 - was one of the most shocking privilege escalation bugs ever found in Linux. Hidden in sudo for nearly a decade, this flaw let any user with shell access become root instantly - no passwords, no exploit chains, just power.
In this episode of The Exploit Archives, we break down how the bug worked, why it was so dangerous, and how a quiet code review uncovered a flaw sitting in plain sight for years.
CVE-2022-1388 — an authentication bypass in F5’s BIG-IP systems that gave attackers the keys to the kingdom. No password. No login. Just one carefully crafted request… and full root access.
In this episode of The Exploit Archives, we break down how this critical flaw let remote attackers take over enterprise infrastructure, why so many systems were exposed, and how the exploit unfolded in the wild.
Fast. Loud. Dangerously easy.
CVE-2021-21973: It was quiet, it was technical, and it was everything cybercrime groups needed to get their foot in the door.
In this episode of The Exploit Archives, we unravel how this vulnerability let attackers pivot deep inside Enterprise environments - no login, no malware, just a crafted request and a misconfigured proxy. From reconnaissance to lateral movement, this wasn't just an exploit.. it was an entry point.
CVE-2019-0708 — a critical remote desktop vulnerability in Microsoft Windows, better known as BlueKeep. It had the potential to become the next WannaCry — wormable, deadly, and lurking in millions of systems.
In this episode of The Exploit Archives, we explore how BlueKeep works, the panic it caused in the infosec world, and why—despite the hype—it never exploded the way experts feared.
Support the show: The Exploit Archives
YouTube: ...
CVE-2017-11882 is a remote code execution vulnerability in Microsoft’s legacy Equation Editor. A flaw that silently persisted for over 17 years.
In this episode of The Exploit Archives, we break down how attackers embedded weaponised payloads into Word documents and triggered silent exploits with zero user interaction.
Learn how this vulnerability worked, why it stuck around for so long, and how it became one of the most abu...
Popular Podcasts
If you've ever wanted to know about champagne, satanism, the Stonewall Uprising, chaos theory, LSD, El Nino, true crime and Rosa Parks, then look no further. Josh and Chuck have you covered.
Football’s funniest family duo — Jason Kelce of the Philadelphia Eagles and Travis Kelce of the Kansas City Chiefs — team up to provide next-level access to life in the league as it unfolds. The two brothers and Super Bowl champions drop weekly insights about the weekly slate of games and share their INSIDE perspectives on trending NFL news and sports headlines. They also endlessly rag on each other as brothers do, chat the latest in pop culture and welcome some very popular and well-known friends to chat with them. Check out new episodes every Wednesday. Follow New Heights on the Wondery App, YouTube or wherever you get your podcasts. You can listen to new episodes early and ad-free, and get exclusive content on Wondery+. Join Wondery+ in the Wondery App, Apple Podcasts or Spotify. And join our new membership for a unique fan experience by going to the New Heights YouTube channel now!
The latest news in 4 minutes updated every hour, every day.
Current and classic episodes, featuring compelling true-crime mysteries, powerful documentaries and in-depth investigations. Follow now to get the latest episodes of Dateline NBC completely free, or subscribe to Dateline Premium for ad-free listening and exclusive bonus content: DatelinePremium.com
Gregg Rosenthal and a rotating crew of elite NFL Media co-hosts, including Patrick Claybon, Colleen Wolfe, Steve Wyche, Nick Shook and Jourdan Rodrigue of The Athletic get you caught up daily on all the NFL news and analysis you need to be smarter and funnier than your friends.