UNSECURITY: Information Security Podcast

Follow UNSECURITY: Information Security Podcast
Share on
Copy link to clipboard

Weekly information security podcast airing Monday mornings hosted by Evan Francen and Brad Nigh. In a unique focus on protecting personal information, Evan and Brad discuss information security as an issue that includes cyber security, physical security, as well as administrative controls. Evan is t…

Evan Francen and Brad Nigh


    • Apr 30, 2025 LATEST EPISODE
    • every other week NEW EPISODES
    • 53m AVG DURATION
    • 238 EPISODES


    Search for episodes from UNSECURITY: Information Security Podcast with a specific topic:

    Latest episodes from UNSECURITY: Information Security Podcast

    Unsecurity Episode 238: Air Gapping w/ Sean Behan

    Play Episode Listen Later Apr 30, 2025 33:11


    This week on Unsecurity, Senior Offensive Security Engineer Sean Behan sits with Brad and Megan to dissect Air Gapping. Starting with the development of the Air Gap method, they discuss its evolution and the pros and cons of each type. Tune in for an engaging discussion on understanding systems operations, strengths, and weaknesses of air gapped networks.About FRSecure:https://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Unsecurity Episode 237: HERoic Hacks Recap w/ Melissa Kjendle

    Play Episode Listen Later Apr 15, 2025 32:36


    In this episode of the Unsecurity Podcast, hosts Brad Nigh and Megan Larkins are joined by Melissa Kjendle, Assessor Manager at FRSecure, to recap our recent HERoic Hacks event. Melissa spoke at the event, highlighting the significance of inclusive and diverse perspectives in cybersecurity—particularly focusing on the growing role of women in the field.Together, the three delve into the dynamics of security culture and education. The conversation covers the importance of fostering a security-conscious environment within organizations, the role of leadership in supporting this culture, and how storytelling can make security training more relatable and memorable.Tune in for an engaging discussion on building a resilient security culture and empowering individuals with the knowledge to protect themselves and their organizations.About FRSecure:https://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Unsecurity Episode 236: FRSecure Team Reflections w/ Mike Kongsjord

    Play Episode Listen Later Mar 5, 2025 42:50


    In this lighthearted episode, Mike Kongsjord walks us through his professional journey and time at FRSecure as he and the group celebrate his retirement. Having an introduction to Evan Francen at his last position, Mike joined the FRSecure as an Information Security Consultant and has completed five years on the team. He reflects with Megan and Brad and discusses fun retirement plans.About FRSecure:https://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Unsecurity Episode 235: CMMC Updates w/ Scott Singer & Ryan Abraham

    Play Episode Listen Later Feb 19, 2025 38:05


    With two guest features, Scott Singer from CyberNINES and FRSecure's own Security Information Consultant, Ryan Abraham, this week's episode focuses on CMMC's recent changes, enforcement, and compliance requirements.About FRSecure https://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Unsecurity Episode 234: HHS Cybersecurity Performance Goals w/ April Meyer

    Play Episode Listen Later Feb 7, 2025 34:47


    April Meyer, Information Security Consultant, shines light on the recent initiative of HHS Cybersecurity Performance Goals. *Note: This Unsecurity Episode was recorded in August 2024. CPGs are currently voluntary and it is expected that requirements be added through HIPAA in 2025. Read more about the HHS CPG's in our blog: HHS Cybersecurity Performance Goals: Context and 2 Comprehensive ChecklistsAbout FRSecure https://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we areready to serve.

    Unsecurity Episode 233: HERoic Hacks - Women in InfoSec w/ Tonya Barnes

    Play Episode Listen Later Jan 27, 2025 32:16


    In this special Edition of Unsecurity, Key Account Manager Tonya Barnes speaks on the creation of HERoic Hacks, the infosec conference that empowers women in the field. About HERoic Hacks: Envisioned by Tonya, and supported by FRSecure, HERoic Hacks addresses the gap in representation by providing networking opportunities, expert speakers, and award recognition with notable infosec organizations and leaders! This year's HERoic Hacks will feature keynote speaker Connie Hiber, Director of Technology Governance at GreatClips! Interested in Sponsoring or Attending? 20% of sponsorship fees will support women-led organizations WiCys and MN Women in Tech! Visit the event page to register now and sign up to sponsor. Spots are limited!https://www.eventbrite.com/e/heroic-hacks-tickets-1083192711559?aff=oddtdtcreatorAbout FRSecure https://frsecure.com/ FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Unsecurity Episode 232: Breachmas Recap with Mike "Pinky" Thompson

    Play Episode Listen Later Jan 10, 2025 37:59


    Join us in the new year as FRSecure's Incident Response Manager, Pinky Thompson, joins to recap Breachmas 2024. The group discusses LDAP, recent cyberattack trends, Evil Jinx, and more. Don't forget: The show is available in audio-only form wherever you listen to podcasts! Please send any questions, comments, or feedback to unsecurity@protonmail.com. About FRSecure https://frsecure.com/ FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Unsecurity Episode 231: Security Predictions for 2025 with Evan Francen & Oscar Minks

    Play Episode Listen Later Dec 30, 2024 37:48


    Brad returns with Megan to talk 2025 predictions with former Unsecurity host Evan Francen and President of FRSecure, Oscar Minks. They discuss potential effects of new administration and AI.Don't forget: The show is available in audio-only form wherever you listen to podcasts! Please send any questions, comments, or feedback to unsecurity@protonmail.com.About FRSecurehttps://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs.These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Unsecurity Episode 230: What A CISO Wants for Christmas

    Play Episode Listen Later Dec 18, 2024 37:58


    In this special holiday-themed episode, Gary Berger, Director of Information Security for Ogletree Deakins Law Firm, joins Megan to go over what a CISO wants for Christmas. Don't forget: The show is available in audio-only form wherever you listen to podcasts! Please send any questions, comments, or feedback to unsecurity@protonmail.com. About FRSecure https://frsecure.com/ FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Unsecurity Episode 229: API Security w/ Baljeet Malhotra & Nicole Salazar

    Play Episode Listen Later Dec 9, 2024 43:52


    This week, CEO, Nicole Salazar and Founder, Dr. Baljeet Malhotra of TeejLab join Megan and Brad to discuss all things Open Source and API Risk Management. Along with a brief review of Dr. Malhorta's background, the group discusses TeejLab's origins and discuss a new API workshop. About FRSecure https://frsecure.com/ FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Unsecurity Episode 228: Recon InfoSec with Andrew Cook

    Play Episode Listen Later Nov 21, 2024 34:06


    This week, Unsecurity hosts are joined by CTO of Recon InfoSec, Andrew Cook. They discuss Andrew's journey into the InfoSec field and Recon InfoSec's approach and value. Don't forget: The show is available in audio-only form wherever you listen to podcasts! Please send any questions, comments, or feedback to unsecurity@protonmail.com. About FRSecure https://frsecure.com/ FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Unsecurity Episode 227: Executive Security Decisions with Vanae Pearson & Randy Kaedar

    Play Episode Listen Later Nov 6, 2024 42:30


    In this episode of the Unsecurity Podcast, FRSecure's CFO, Vanae Pearson, and Illumifin's Chief Security Officer, Randy Kaedar are guests. The group discusses how to prompt key decision makers and executive teams to make the most effective security decisions.Don't forget: The show is available in audio-only form wherever you listen to podcasts! Please send any questions, comments, or feedback to unsecurity@protonmail.com.About FRSecure: https://frsecure.com/ FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs.These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Unsecurity Episode 226: Infosec Buy In with Victoria Fogarty

    Play Episode Listen Later Oct 24, 2024 41:10


    In this episode of the Unsecurity Podcast, Associate Penetration Tester Victoria Fogarty joins Megan and Brad to walk through how to buy in for InfoSec programs with an executive team. Don't forget:The show is available in audio-only form wherever you listen to podcasts! Please send any questions, comments, or feedback to unsecurity@protonmail.com. About FRSecure https://frsecure.com/ FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Unsecurity Episode 225: Hacks & Hops Panel Discussion

    Play Episode Listen Later Oct 9, 2024 36:36


    Hosts of "Unsecurity" podcast, Megan Larkins and Brad Nigh, join Evan Francen and Michael Kennedy of "Sunsets and Snowdrifts" for a crossover panel.Find the event slides here: https://info.frsecure.com/hubfs/FRSecure_Hacks%20and%20Hops_Master%20Deck-1.pdfWe look forward to seeing you next year! To stay updated about Hacks & Hops 2025, check our site. hacksandhops.comPlease send any questions, comments, or feedback to unsecurity@protonmail.com.About FRSecurehttps://frsecure.com/ FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Unsecurity Episode 224: Key Takeaways from Blackhat, Bitsloth Exploits, Windows TCP IP Flaw

    Play Episode Listen Later Sep 3, 2024 33:58


    In this episode of the Unsecurity Podcast, Brad and Megan recap Blackhat. They also discuss a zero-click exploit involving a Windows TCP IP flaw and backdoor Bitsloth exploits.Don't forget: The show is available in audio-only form wherever you listen to podcasts! Please send any questions, comments, or feedback to unsecurity@protonmail.com.About FRSecure https://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Unsecurity Episode 223: Introducing a New Host and Breaking Down the Crowdstrike Saga

    Play Episode Listen Later Aug 8, 2024 33:58


    In this episode of the Unsecurity Podcast, Brad and Oscar are joined by a new host, FRSecure's Megan Larkins!Together, they discuss the recent CrowdStrike outage and its illustration of the importance of understanding your application inventory and dependencies—and the need for proper application allow listing and conditional access policies to prevent attacks.00:00 Introduction and Weather Conversations03:02 Introducing Megan as the New Co-host04:00 Discussion on the CrowdStrike Outage17:33 The Need for Application Inventory and Allow Listing22:28 Starting with Critical Assets and Rolling Out Application Control28:16 The Importance of Proactive Measures31:22 Shoutouts to Spouses and the FRSecure SMT Team32:48 Conclusion and FarewellDon't forget: Please send any questions, comments, or feedback to unsecurity@protonmail.com.About FRSecurehttps://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    The Impact of an 'Always On' Mentality on Mental Health w/ Michael Kennedy

    Play Episode Listen Later Jun 27, 2024 32:13


    In this episode of the Unsecurity Podcast, the guys sit down with Michael Kennedy of Ostra to discuss burnout and share their personal experiences and strategies for preventing and managing work-related stress.Please send any questions, comments, or feedback to unsecurity@protonmail.com.About FRSecure https://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs.These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    CISSP Certification and Becoming a Security Consultant w/ Brian Kelley

    Play Episode Listen Later Jun 5, 2024 38:38


    In this episode of the Unsecurity Podcast, Brad, and Oscar discuss the CISSP Mentorship Program with Brian Kelley now that this year's course has officially wrapped up, and touch on challenges and roadblocks for security professionals in the job market. 00:00 Intro01:56 Ransomware and Security Best Practices06:32 CISSP Mentorship Program and Learning Journey25:32 Challenges of Information Security Professionals27:31 The Journey to Becoming a Security Consultant35:04 The Complexity of Job Postings and Hiring ChallengesPlease send any questions, comments, or feedback to unsecurity@protonmail.com.About FRSecurehttps://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Incident Response Stories w/ Mike (Pinky) Thompson

    Play Episode Listen Later May 15, 2024 39:07


    In this episode of the Unsecurity Podcast, Brad, Oscar, and Pinky discuss recent news stories about IP and central manager flaws, as well as a vulnerability enrichment project by CISA. They also share an interesting incident response story involving internal domains and proxy auto-configuration files. Please send any questions, comments, or feedback to unsecurity@protonmail.com.About FRSecurehttps://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Meet the Mentors - Ryan Cloutier

    Play Episode Listen Later Apr 24, 2024 30:35


    In this episode of the Unsecurity Podcast, Brad interviews guest Ryan Cloutier as part of our Meet the Mentors series.They discuss the importance of the CISSP Mentor Program and the value of different perspectives in teaching. They also discuss the release of an exploit code for the Palo Alto Networks Zero Day vulnerability and the ethics of publicly sharing vulnerabilities.Don't forget: The show is available in audio-only form wherever you listen to podcasts! Please send any questions, comments, or feedback to unsecurity@protonmail.com.About FRSecurehttps://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Meet the Mentors - Ron Woerner

    Play Episode Listen Later Mar 11, 2024 34:13


    Episode 218 of the Unsecurity Podcast is now live!This time, Brad is joined by Ron Woerner for another episode of our "Meet the Mentors" series introducing the 2024 CISSP Mentor Program instructors!Links & information:Find Ron on LinkedInhttps://www.linkedin.com/in/ronwoerner/Please send any questions, comments, or feedback to unsecurity@protonmail.com.About FRSecurehttps://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs.These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Meet the Mentors - CISSP Instructor Chris Foulon

    Play Episode Listen Later Mar 5, 2024 33:15


    Episode 217 of the Unsecurity Podcast is now live!This time, Brad is joined by Chris Foulon for the first episode in our "Meet the Mentors" series, introducing our 2024 CISSP Mentor Program instructors!Links & information:Chris's Podcast (Breaking Into Cybersecurity)https://podcasts.apple.com/us/podcast/breaking-into-cybersecurity/id1463136698Please send any questions, comments, or feedback to unsecurity@protonmail.com.About FRSecure https://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs.These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Vulnerability Scanning V.S. Penetration Testing w/ Matt Dowd

    Play Episode Listen Later Feb 13, 2024 35:12


    Episode 216 of the Unsecurity Podcast is now live! This time, Oscar and Brad are joined by FRSecure's Matt Dowd to discuss the difference between vulnerability scanning and penetration testing. Links & informationCisco Critical Vulnerabilities https://www.securityweek.com/cisco-patches-critical-vulnerabilities-in-enterprise-communication-devices/Please send any questions, comments, or feedback to unsecurity@protonmail.com.About FRSecurehttps://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    ISACA Home Network Webinar Series w/ Dave Tuckman

    Play Episode Listen Later Jan 31, 2024 32:13


    Episode 215 of the Unsecurity Podcast is now live! This time, Brad is joined by FRSecure's Dave Tuckman to discuss an upcoming webinar series about securing home networks with ISACA and select FRSecure staff leading the sessions.Links & informationISACA home network webinar series:Session 1: 2/12 - Household Computer Safety, Using The Internet Safely https://isaca-sd.org/events/2024-02-12Session 2: 3/11 - Choosing and Protecting Your Account Login, Securing Mobile Devices https://isaca-sd.org/events/2024-03-11Session 3: 4/8 - Securing Wi-Fi, Securing the Wi-Fi/Network Router https://isaca-sd.org/events/2024-04-08Session 4: 5/13 - Backing up Data, Smart Devices and the Internet-of-Things https://isaca-sd.org/events/2024-05-13Session 5: 6/10 - Physical Security, Breach and Incident Response https://isaca-sd.org/events/2024-06-10Avast spying on clickshttps://www.pcmag.com/news/the-cost-of-avasts-free-antivirus-companies-can-spy-on-your-clicksFacebook users monitored by thousands of companieshttps://www.consumerreports.org/electronics/privacy/each-facebook-user-is-monitored-by-thousands-of-companies-a5824207467/Time to patch and threat-hunthttps://thehackernews.com/2024/01/critical-cisco-flaw-lets-hackers.htmlPlease send any questions, comments, or feedback to unsecurity@protonmail.comAbout FRSecurehttps://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Breachmas Report w/ Mike Thompson

    Play Episode Listen Later Jan 19, 2024 37:05


    Episode 214 of the Unsecurity Podcast is now live! This time, Brad and Oscar sit down with FRSecure's Mike (Pinky) Thompson for a Breachmas report and some news from around the industry.News linksMandiant's X (Twitter) Account Hackedhttps://thehackernews.com/2024/01/mandiants-x-account-was-hacked-using.htmlCISCO Patchhttps://www.securityweek.com/cisco-patches-critical-vulnerability-in-unity-connection-product/Two Ivanti Zero-Days Actively Exploited in the Wildhttps://www.infosecurity-magazine.com/news/two-ivanti-zerodays-actively/Please send any questions, comments, or feedback to unsecurity@protonmail.com.About FRSecure https://frsecure.com/ FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs.These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Managing FRSecure's Culture w/ Amy MacElroy

    Play Episode Listen Later Dec 22, 2023 33:32


    Episode 213 of the Unsecurity Podcast is now live! This time, Brad and Oscar sit down with FRSecure's Amy MacElroy to discuss company culture and how she helps maintain it in her role as head of HR.VulnerabilitiesApache Strutshttps://www.securityweek.com/recent-apache-struts-2-vulnerability-in-attacker-crosshairs/Microsoft Patch Tuesdayhttps://securityaffairs.com/155719/security/microsoft-patch-tuesday-december-2023.htmlAdobe Patches (207 Bugs)https://www.securityweek.com/adobe-patches-207-security-bugs-in-mega-patch-tuesday-bundle/Don't forget: The show is available in audio-only form wherever you listen to podcasts! Please send any questions, comments, or feedback to unsecurity@protonmail.com.About FRSecure: https://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Business Impact Analysis Starter Kit, CMMC

    Play Episode Listen Later Dec 6, 2023 32:48


    Episode 212 of the Unsecurity Podcast is now live!This time, Brad and Oscar sit down with FRSecure's Shawn Pollard to discuss our new free BIA starter kit, CMMC, and more.Water facilities report falling to hackers in separate breacheshttps://arstechnica.com/security/2023/11/2-municipal-water-facilities-report-falling-to-hackers-in-separate-breaches/Send any questions, comments, or feedback to unsecurity@protonmail.com.About FRSecurehttps://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    R&D and Defense Evasion w/ Eric Hanson and Seth Bowling

    Play Episode Listen Later Nov 20, 2023 35:13


    Episode 211 of the Unsecurity Podcast is now live!This time, Brad and Oscar sit down with FRSecure's Eric Hanson and Seth Bowling to discuss R&D and defensive evasion.Blackcat report company they breached to SEC https://www.bleepingcomputer.com/news/security/ransomware-gang-files-sec-complaint-over-victims-undisclosed-breach/About FRSecure: https://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs.These fundamentals are lacking in our industry, and while progress is being made, we can't do it alone. Whether you're wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

    Proofpoint 2023 Voice of the CISO w/ Megan Larkins

    Play Episode Listen Later Nov 1, 2023 41:19


    Episode 210 of the Unsecurity Podcast is now live!This time, Brad is joined by Megan Larkins to discuss her role as FRSecure's security consulting manager, as well as Proofpoint's 2023 Voice of the CISO report.Proofpoint's 2023 Voice of the CISOhttps://www.proofpoint.com/us/resources/white-papers/voice-of-the-ciso-reportGive this episode a listen and send any questions, comments, or feedback to unsecurity@protonmail.com

    Catching Up with Evan!

    Play Episode Listen Later Oct 19, 2023 24:59


    Episode 209 of the Unsecurity Podcast is now live! This time, Oscar and Brad welcome Evan back to the show to catch up on all his latest endeavors.Give this episode a listen and send any questions, comments, or feedback to unsecurity@protonmail.com.

    Catching Up - DEFCON, Annual InfoSec Report, CISSP Mentor Program

    Play Episode Listen Later Oct 17, 2023 31:39


    Episode 208 of the Unsecurity Podcast is now live!This time, Oscar returns to the show and the guys get a chance to catch up on all the latest.Give this episode a listen and send any questions, comments, or feedback to unsecurity@protonmail.com

    Defcon 2023 Recap, Huntin' Ground, CloudNordic

    Play Episode Listen Later Sep 12, 2023 31:58


    Episode 207 of the Unsecurity Podcast is now live! This week, Brad and Pinky discuss Defcon 2023, Huntin' Ground, and the recent CloudNordic ransom case.CloudNordic says it can't, and won't, pay the ransom demand (article): https://www.theregister.com/2023/08/23/ransomware_wipes_cloudnordic/Send any questions, comments, or feedback to unsecurity@protonmail.com.

    Adobe ColdFusion & Citrix NetScaler Vulnerabilities

    Play Episode Listen Later Jul 25, 2023 29:16


    This week, Oscar and Brad sit down to discuss Adobe ColdFusion & Citrix NetScaler Vulnerabilities.Give this episode a listen or watch and send any questions, comments, or feedback to unsecurity@protonmail.com

    Unsecurity/Hacklebox Crossover: MOVEit, Microsoft Patch Tuesday, and Fortinet Infinity

    Play Episode Listen Later Jul 18, 2023 53:30


    This month, we're doing a crossover episode with The Hackle Box!For those who are not yet aware, The Hacklebox is another FRSecure podcast focused on the technical end of current events and happenings within the security industry. It's hosted several times a month by FRSecure's Technical Services Team.Discussed this month: MOVEit AttacksMicrosoft Patch Tuesday: Six 0-DaysFortinet InfinityPlease like, subscribe, and follow us on social! Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecureofficial/ LinkedIn: https://www.linkedin.com/company/frsecure/

    ChatGPT, Mobile Malware, Super Mario Malware

    Play Episode Listen Later Jul 7, 2023 32:24


    Episode 205 of the Unsecurity Podcast is now live!This week, Oscar and Brad sit down to discuss ChatGPT, mobile malware, and the recent Super Mario malware. Don't forget: The show is available in audio or video form wherever you get your podcasts!Give this episode a listen or watch and send any questions, comments, or feedback to unsecurity@protonmail.com.

    MOVEit, Fortinet, and Barracuda Vulnerabilities

    Play Episode Listen Later Jun 20, 2023 29:05


    Episode 204 of the Unsecurity Podcast is now live!This week, Oscar and Brad sit down to discuss the recent MOVEit, Fortinet, and Barracuda Vulnerabilities.Links: Fortigate/Fortinet Vulnerability https://projecthyphae.com/threat/the-fortigate-to-mordor-has-been-left-open/ Critical MOVEit Transfer Vulnerability https://projecthyphae.com/threat/hackers-like-to-moveit-moveit-critical-moveit-transfer-vulnerability/ Zero-Day Vulnerability Exploited to Hack Barracuda Email Security Gateway Applianceshttps://www.securityweek.com/zero-day-vulnerability-exploited-to-hack-barracuda-email-security-gateway-appliances/Give this episode a listen or watch and send any questions, comments, or feedback to unsecurity@protonmail.com. Don't forget to like and subscribe!

    Malvertising & Malverposting

    Play Episode Listen Later Jun 7, 2023 33:41


    Episode 203 of the Unsecurity Podcast is live!This week, Oscar and Brad sit down to discuss 'malvertising' and 'malverposting'.Links:“Malverposting” — With Over 500K Estimated Infections... https://labs.guard.io/malverposting-with-over-500k-estimated-infections-facebook-ads-fuel-this-evolving-stealer-54b03d24b349 Give this episode a listen or watch and send any questions, comments, or feedback to unsecurity@protonmail.com.

    FBI Takedown of The Hive, Passwordless Technology

    Play Episode Listen Later May 19, 2023 31:18


    This week, Oscar and Brad sit down to discuss passwordless tech, and the FBI's recent move to take down The Hive, one of the world's most notorious ransomware gangs.FBI Takedown of The Hive https://therecord.media/hive-ransomware-decryptors-fbi-bryan-smith-interview-click-here Give this episode a listen and send any questions, comments, or feedback to unsecurity@protonmail.com

    Unsecurity Episode 201: Used Network Equipment Resale - How to Protect Yourself

    Play Episode Listen Later May 3, 2023 38:28


    This week, Oscar and Brad sit down to discuss used network equipment resale, the risks posed to organizations, and how you can protect yourself. Give this episode a listen and send any questions, comments, or feedback to unsecurity@protonmail.com.

    An Interview w/ the Creators of Hack Space Con - the Mission, Neurodiversity, and More!

    Play Episode Listen Later Mar 28, 2023 38:16


    This week, Oscar and Brad sit down with the creators of Hack Space Con to discuss the mission behind the conference, the unique venue, how the event came to be, and more!Links:https://www.hackspacecon.com/ Send any questions, comments, or feedback to unsecurity@protonmail.com. Don't forget to like and subscribe!

    New APT Compromise Strategy, Threat Actors Exploit 3-Year-Old Vulnerability

    Play Episode Listen Later Mar 20, 2023 30:16


    Episode 198 of the Unsecurity Podcast is now live!This week, Oscar and Brad discuss a new APT compromise strategy, a 3-year-old vulnerability exploited by multiple threat actors, and more.Links:3-Year-Old Vulnerability Exploited by Multiple Hacking Groups https://thehackernews.com/2023/03/multiple-hacker-groups-exploit-3-year.htmlAdobe ColdFusion Bughttps://gbhackers.com/adobe-coldfusion-bug/Don't forget: The show is now available in audio form wherever you get your podcasts!Send any questions, comments, or feedback to unsecurity@protonmail.com.

    Unsecurity Episode 197: Vendor Risk Management, Incident Response, Facebook/Instagram Vulnerability

    Play Episode Listen Later Feb 16, 2023 34:38


    Episode 197 of the Unsecurity Podcast is now live! This week, Oscar and Brad discuss vendor risk management, incident response practices, and the recent Facebook vulnerability.Links:KillNet DDoS Blocklisthttps://github.com/securityscorecard/SSC-Threat-Intel-IoCs/blob/master/KillNet-DDoS-Blocklist/proxylist.txtGive this episode a listen and send any questions, comments, or feedback to unsecurity@protonmail.com. Don't forget to like and subscribe!

    Unsecurity Episode 196: Red Teaming + Research and Development (w/ Seth Bowling and Eric Hanson)

    Play Episode Listen Later Jan 30, 2023 33:29


    Episode 196 of the Unsecurity Podcast is now live! This week, Oscar is joined by FRSecure's Eric Hanson and Seth Bowling to discuss red teaming and R&D.Give this episode a listen or watch and send any questions, comments, or feedback to unsecurity@protonmail.com. Don't forget to like and subscribe!

    Unsecurity Episode 195: New Year's (Security) Resolutions

    Play Episode Listen Later Jan 10, 2023 38:56


    This week, Oscar and Brad discuss some ideas for new year's resolutions you can apply to your security program.Give this episode a listen and send any questions, comments, or feedback to unsecurity@protonmail.com. Don't forget to like and subscribe!

    Unsecurity Episode 194: Veeam Backup/Replication Being Exploited, FBI Seizes 48 Domains, and More.

    Play Episode Listen Later Dec 16, 2022 33:42


    Episode 194 of the Unsecurity Podcast is now live! This week, Oscar and Brad discuss a CISA alert regarding Veeam backup and replication vulnerabilities being exploited, FBI seizing 48 domains linked to DDoS services, hackers using .svg files to install QBot malware on windows systems, and more.Links:CISA Alert: Veeam Backup and Replication Vulnerabilities Being Exploited in Attacks https://thehackernews.com/2022/12/cisa-alert-veeam-backup-and-replication.htmlFBI Seized 48 Domains Linked to World's Leading DDoS-for-Hire Services https://gbhackers.com/fbi-seized-48-domains/Citrix ADC and Citrix Gateway Security Bulletin for CVE-2022-27518 https://support.citrix.com/article/CTX474995/citrix-adc-and-citrix-gateway-security-bulletin-for-cve202227518Hackers Use SVG Images to Install QBot Malware on Windows Systems https://gbhackers.com/hackers-use-svg-images/Give episode 194 a listen and send any questions, comments, or feedback to unsecurity@protonmail.com Don't forget to like and subscribe!

    Unsecurity Episode 193: What the New CISA Reporting Rule Means for Critical Infrastructure

    Play Episode Listen Later Dec 8, 2022 30:28


    Episode 193 of the Unsecurity Podcast is now live! This week, Oscar and Brad discuss the new CISA reporting rule and what it means for organizations in the critical infrastructure sector. Links:Critical Infrastructure Sectorshttps://www.cisa.gov/critical-infrastructure-sectorsCISA - Reporting Rulehttps://thehackernews.com/2022/12/what-cisa-reporting-rule-means-for-your.htmlhttps://www.congress.gov/bill/117th-congress/house-bill/5440/text?format=txthttps://www.federalregister.gov/documents/2022/09/12/2022-19551/request-for-information-on-the-cyber-incident-reporting-for-critical-infrastructure-act-of-2022https://www.cisa.gov/reporthttps://www.cisa.gov/sites/default/files/publications/Sharing_Cyber_Event_Information_Fact_Sheet_FINAL_v4.pdfGive episode 193 a listen or watch and send any questions, comments, or feedback to unsecurity@protonmail.com.

    Unsecurity Episode 192: Holiday Precautions, VRM Review, New Vulnerabilities, and More

    Play Episode Listen Later Nov 17, 2022 30:41


    Episode 192 of the Unsecurity Podcast is now live! This week, Oscar and Brad discuss holiday precautions, vendor risk management, a few new vulnerabilities on the scene, and more.Give episode 192 a listen or watch and send any questions, comments, or feedback to unsecurity@protonmail.com. Don't forget to like and subscribe!

    Unsecurity Episode 191: Fortinet, ProxyShell 2 (or 3?), Cybersecurity Awareness Month

    Play Episode Listen Later Oct 19, 2022 32:10


    Episode 191 of the Unsecurity Podcast is now live! This week, Oscar and Brad discuss some recent vulnerabilities, cybersecurity awareness month, Hacks and Hops 2022, and more!Links:Fortinet Authentication Bypasshttps://projecthyphae.com/threat/fortinet-authentication-bypass-critical/ZeroDay: ProxyShell 2 (or 3?)https://projecthyphae.com/threat/zeroday-proxyshell-2-or-3-even-proxier/Cybersecurity Awareness Monthhttps://www.cisa.gov/cybersecurity-awareness-monthGive episode 191 a listen or watch and send any questions, comments, or feedback to unsecurity@protonmail.com. Don't forget to like and subscribe!

    Unsecurity Episode 190: Evan Returns! Life in Mexico, New CvCISO program, & Industry News

    Play Episode Listen Later Sep 29, 2022 52:51


    Episode 190 of the Unsecurity Podcast is now live! This week, Oscar and Brad welcome Evan back to the show to discuss life in Mexico, next steps in the CvCISO program, and all the latest industry happenings.Links:Fancy Bearhttps://projecthyphae.com/threat/fancy-bear-sinks-its-graphite-claws-into-powerpoint/9/26/2022 Security News Rounduphttps://projecthyphae.com/threat/information-security-news-9-26-2022/Give episode 190 a listen or watch and send any questions, comments, or feedback to unsecurity@protonmail.com. Don't forget to like and subscribe!

    Unsecurity Episode 189: An Interview with Chris Furner and Jeremy Young of Blumira

    Play Episode Listen Later Sep 14, 2022 39:47


    Episode 189 of the Unsecurity Podcast is now live! This week, Oscar and Brad are joined by Chris Furner and Jeremy Young with Blumira to discuss their perspectives on information security.New EvilProxy Phishing Service Allowing Cybercriminals to Bypass 2-Factor Securityhttps://thehackernews.com/2022/09/new-evilproxy-phishing-service-allowing.htmlTA505 Hackers Using TeslaGun Panel to Manage ServHelper Backdoor Attackshttps://thehackernews.com/2022/09/ta505-hackers-using-teslagun-panel-to.htmlGive episode 189 a listen or watch and send any questions, comments, or feedback to unsecurity@protonmail.com. Don't forget to like and subscribe!

    Unsecurity Episode 188: Ostra Cybersecurity & FRSecure, LastPass Security Incident, Other News

    Play Episode Listen Later Sep 1, 2022 32:32


    Episode 188 of the Unsecurity Podcast is now live! This week, Oscar and Brad are joined by Michael Kennedy, Founder of Ostra Cybersecurity to discuss Ostra, working with FRSecure, industry news, and more.LastPass Security Incident:https://blog.lastpass.com/2022/08/notice-of-recent-security-incident/Okta one-time MFA passcodes exposed in Twilio cyberattackhttps://www.bleepingcomputer.com/news/security/okta-one-time-mfa-passcodes-exposed-in-twilio-cyberattack/Ostra Cybersecurityhttps://www.ostra.net/Give episode 188 a listen or watch and send any questions, comments, or feedback to unsecurity@protonmail.com.

    Claim UNSECURITY: Information Security Podcast

    In order to claim this podcast we'll send an email to with a verification link. Simply click the link and you will be able to edit tags, request a refresh, and other features to take control of your podcast page!

    Claim Cancel