Imagine this. A developer opens their laptop. Gets a routine VS Code update notification. Clicks install. Goes back to work.

What they don't know is that an AI triage bot the kind built to make their team more efficient just read a manipulated GitHub Issue title, followed hidden instructions, stole three publishing tokens, and silently installed a rogue AI agent on their machine. One that survives reboots. One that takes remote commands. One that they never heard of, never evaluated, and never consented to.

This wasn't a nation-state. This wasn't a zero-day. This was one sentence in a GitHub Issue title and it compromised 4,000 developer machines in 8 hours.

We are living in a moment where AI is installing AI and our security tools were not built for this.

Special guest: Liran Baron, CPO of SaaS Alerts.

Article: https://www.cremit.io/blog/ai-supply-chain-attack-clinejection

For years, many of us have thought about cyberattacks as criminals chasing money. But when you zoom out, you realize something much bigger is happening.

Cyber has become one of the most powerful geopolitical weapons of the 21st century. Nations use it to spy, influence elections, sabotage infrastructure, and increasingly—disrupt supply chains that businesses rely on every day.

Purchase Allie's book here on Amazon.

For MSPs, this isn’t theoretical. We’ve seen it with SolarWinds and with the growing number of attacks aimed at the very platforms that power and protect our clients.

Tonight’s guest, Allie Mellen, author of Code Wars, helps us understand something incredibly important: nation-state cyberattacks aren’t random acts of chaos—they are calculated moves driven by strategy, doctrine, and national objectives.

In other words, when you see an attack, you’re often seeing a move on a geopolitical chessboard.

So today we’re going to explore how nations think about cyber war, what patterns exist behind the most famous attacks, and—most importantly—what it means for the MSPs sitting in the middle of the global digital supply chain.

On February 28th, the United States and Israel launched coordinated strikes on Iran. Most people know that part.

What most people don't know is that Iran responded by sending drones directly into Amazon Web Services data centers in the UAE. Two facilities struck. A third in Bahrain damaged. For the first time in history, commercial cloud infrastructure became a military target — and most of your clients have no idea it happened.

What's worse — Iranian cyber operators had already pre-positioned backdoors inside American banks and airports before the first bomb dropped. And with Iran's conventional military now severely degraded, cyber is the only weapon they have left.

Jon Murchison, former CEO of Blackpoint Cyber, spent years at the NSA tracking this exact adversary — including their nuclear program — then built one of the most respected MDR platforms in the channel. He has seen Iran from both sides of the fence, and he's here because MSPs are now the most exposed link between nation-state operators and the clients counting on you.