Podcasts about 1Password

Anyone can build software with AI now, and millions of people are giving it a try. But when AI can spin up an app in minutes, are security risks slipping through the cracks?

Passwords were built for a different era of the internet. It's time to move past shared secrets to close your organization's largest threat vector for good.Traditional passwords and legacy Multi-Factor Authentication (MFA) are no longer enough to protect your business. Automated, scaling phishing toolkits easily intercept shared secrets, leaving small and medium businesses highly vulnerable to credential breaches.In this episode, Jen sits down with Nishant Kaushik, Chief Technology Officer at the FIDO Alliance, to translate complex cryptographic standards into an actionable, resource-light deployment plan. Learn how to transition away from legacy authentication and close the hidden operational loopholes that hackers actively exploit.What You Will Learn:The Flaw in Basic MFA: Why SMS codes and standard one-time passwords (OTPs) are failing, and what true "phishing-resistant" security means.The Account Recovery Trap: Why a weak "Forgot Password" workflow accidentally gives hackers their primary attack vector back—and how to fix it.The Bottom-Line Benefit: How moving to passkeys drastically reduces internal IT helpdesk tickets, manual password resets, and overhead costs.Right-Sizing Your Passkey Deployment: How to easily segment your workforce strategy:Standard Users: Synced passkeys via platform credential managers (Apple, Google, 1Password, Bitwarden).Privileged Users: Dedicated hardware keys (YubiKeys) for root admins and high-sensitivity infrastructure.The 1-Week Action Plan: How to leverage the identity infrastructure you already own (like Google Workspace or Microsoft Entra ID) to deploy passkeys today.Resources Mentioned:Learn more about modern identity standards: FIDO Alliance WebsiteReview baseline federal security recommendations: CISA Guidance on Phishing-Resistant MFADiscover SecurityMetrics compliance resources: SecurityMetrics Official SiteThreat Intelligence Data: Read the data behind credential exploitation in the latest Verizon Data Breach Investigations Report (DBIR). Federal Passkey Standards: Review the updated identity and passkey frameworks via the NIST SP 800-63 Digital Identity Guidelines. Enterprise Identity Platforms: Learn how modern stacks integrate passwordless via Okta Verify and Microsoft Entra ID. About the Guest: Nishant Kaushik is the Chief Technology Officer at the FIDO Alliance, bringing over 25 years of leadership in digital identity and access management (IAM). He holds nine patents, frequently serves on the advisory committees for the RSA Conference and Identiverse, and is a founding member of IDPro.A note from Jen: We built Practical Cybersecurity because we were tired of the fear-mongering in this industry. Security shouldn't be a secret club.If you're trying to figure out PCI compliance or need a pen test, my team at SecurityMetrics can help you out: https://www.securitymetrics.com/contact/lets-get-you-to-the-right-place But if you just want to learn how to protect yourself for free, start here:  https://academy.securitymetrics.com/ 

Your iPhone might be running hot and draining fast — and it’s not just you. Dave and Pilot Pete break down the battery chaos introduced by iOS 26.5, which brought overheating, accelerated drain, and even blocked wired charging on iPhone 17 and Air models. The fix that’s working for most people: disable iCloud Keychain first, run Reset All Settings, then carefully re-enable iCloud sync — otherwise you’ll nuke your Wi-Fi passwords across every device. iOS 26.5.1 is out and should help, but until you’ve updated, your electrons deserve better. You’ll also learn why Apple ID passkeys are locked to Apple’s own keychain with no known path to third-party managers like 1Password or Keeper, and why editing a contact on a modern Mac can somehow peg every CPU core — in 2026, no less. From there, Dave and Pete tackle the full listener mailbag: how to rescue missing contact names from Messages, the right way to boot a MacBook with a broken display into clamshell mode so it actually uses the external monitor, and a deep dive on 5K vs. 4K displays where Dave argues your eyes may not care as much as the pixel-per-inch math suggests. You’ll get smart ideas for repurposing a 2015 iPad Pro that can’t run modern apps — including Dave’s Claude Code-built weather dashboard running off a headless iMac as a web interface. A crashing 2021 MacBook Pro turns out to have been felled by a single bad SD card, and the lesson is golden: feed your crash reports to an LLM and let it do the digging. And Don’t Get Caught with outdated OpenAI macOS apps — update ChatGPT, Codex, Atlas, and Codex CLI before June 12th to stay ahead of a code-signing rotation triggered by a compromised open-source library. 00:00:00 Mac Geek Gab 1145 for Monday, June 8th, 2026 June 8th: National Best Friends Day MGG Monthly Giveaway – Win a license to SaneBox Quick Tips 00:00:01 Dan-QT-Multi-select on iPhone with a quick drag 00:04:31 Tim-QT-Have iOS 26.5 Battery Drain? Reset All Settings, but be careful! 00:13:32 Kent-QT-1144-Collapse stacks by clicking the down-facing carat in the menu 00:14:15 Mark-QT-Match Frame Rate on your Apple TV for smoother experiences 00:17:58 What are the differences between refresh rates and frame rates and…why? 00:21:09 KiwiGraham-QT-Apple Account Passkeys vs. Third Party Password Apps Sponsors 00:23:09 SPONSOR: Keeper. Right now, Keeper is offering our listeners 60% off personal and family plans at https://Keepersecurity.com/MGG. This offer is only for podcast listeners! 00:24:50 SPONSOR: Helix Sleep makes premium mattresses and bedding that are customized to fit your personal needs, and conveniently shipped to your door. Go to https://helixsleep.com/MGG for 20% Off Sitewide. 00:26:23 SPONSOR: NordLayer Browser. The business browser built for how modern work actually happens — giving IT the visibility and control to secure SaaS, stop phishing, and prevent data leaks right at the source. Your Questions Answered and Tips Shared! 00:28:09 VaShaun-How can I restore lost Contacts on my Mac? 00:37:36 Si-What to do with an 11-year-old iPad? Claude Code 00:46:40 Michael-Why do we have to pull-to-refresh for updates? 00:50:04 Blake-1144-Damaged displays, external monitors, and MonitorControl 00:55:48 Joe & Michael-CSF-1144–RetinaDesk.com for reviews of 5K and 6K monitors BenQ MA270UP 27” 4K Display Reviews 01:02:50 Hog fan and Cowboy fan-MGG Review–Favorite Tech podcast Don't Get Caught 01:04:14 Father John-DGC-Investigate those crash reports before you replace your Mac 01:09:26 Update your ChatGPT Apps ChatGPT Desktop Codex App Codex CLI Atlas 01:11:06 Andy-DGC-When Troubleshooting, Don’t Get Caught asking the wrong questions or assuming the wrong facts 01:19:36 MGG 1145 Outtro MGG Monthly Giveaway Bandwidth Provided by CacheFly Pilot Pete's Aviation Podcast: So There I Was (for Aviation Enthusiasts) The Debut Film Podcast – Adam's new podcast! Dave's Business Brain (for Entrepreneurs) and Gig Gab (for Working Musicians) Podcasts MGG Merch is Available! Mac Geek Gab iOS app Mac Geek Gab YouTube Page Mac Geek Gab Live Calendar This Week's MGG Premium Contributors MGG Apple Podcasts Reviews feedback@macgeekgab.com 224-888-GEEK Active MGG Sponsors and Coupon Codes List BackBeat Media Podcast Network

Abi Noda is joined live at DX Annual by three engineering leaders shaping AI adoption at scale: Tim Bozarth, Corporate Vice President in Microsoft's CoreAI division; Nancy Wang, CTO of 1Password; and Taroon Mandhana, CTO of AI and Teamwork at Atlassian. Together, they discuss how AI is changing engineering organizations, from team structures and planning cycles to hiring, governance, and measurement.The panel explores how the profile of a great engineer is evolving, why smaller cross-functional teams are becoming more effective, and what happens when product managers, designers, and customer support teams start contributing code. They also share why they are encouraging AI adoption through enablement, training, and local champions rather than mandates, and how AI is shifting more of the software development lifecycle toward planning and validation.Finally, they discuss where human judgment remains essential, how to measure adoption and manage token usage, and how to connect AI investments to business outcomes while preserving room for experimentation and learning.Where to find Nancy Wang: • LinkedIn: https://www.linkedin.com/in/wangnancyWhere to find Taroon Mandhana:• LinkedIn: https://www.linkedin.com/in/taroonmWhere to find Tim Bozarth: • LinkedIn: https://www.linkedin.com/in/tbozarthWhere to find Abi Noda:• LinkedIn: https://www.linkedin.com/in/abinoda In this episode, we cover:(00:00) Intro(01:08) Introducing the panelists(02:16) AI's impact on engineering team structures and planning cycles(05:00) How the role of the engineer is changing and what makes a great engineer(10:11) The opportunities and challenges of non-engineers writing code(15:26) Encouraging AI adoption without mandating it(21:25) What an AI-native SDLC looks like and why human judgment still matters(30:56) Measuring AI adoption, token usage, and ROI(37:06) How to tie AI investments to business outcomesReferenced:• DX Core 4 Productivity Framework• Microsoft • 1Password• Atlassian• Jira• Confluence• Loom• Rovo • Amazon Operating Cadence - Working Backwards

Adieu les codes : Comment la biométrie comportementale va tuer le mot de passe en 2026 Par Régis BAUDOUIN Se souvenir d’une majuscule, d’un chiffre, d’un caractère spécial, et changer le tout tous les trois mois… Cette corvée mentale, vestige des débuts de l’informatique, vit ses toutes dernières heures. En ce mois de juin 2026, le déploiement mondial des standards de connexion de nouvelle génération marque une bascule historique. Menée par l’alliance des géants de la tech, la sécurité ne repose plus sur ce que vous connaissez (un mot de passe), ni même uniquement sur ce que vous êtes (votre empreinte digitale), mais sur la façon dont vous vous comportez. Bienvenue dans l'ère de la biométrie comportementale décentralisée. Le coût de l’oubli : Selon les dernières données du cabinet Gartner, les demandes de réinitialisation de mots de passe représentent encore 20% à 30% de l’ensemble des tickets d’assistance informatique en entreprise, pour un coût moyen estimé à 15€ par intervention. Comment votre téléphone sait que c'est vous La biométrie traditionnelle (Iris, FaceID, empreinte) cartographie des caractéristiques physiques figées. La biométrie comportementale, elle, analyse la dynamique de vos actions en temps réel. C'est une science algorithmique qui transforme vos habitudes inconscientes en une signature mathématique unique. Lorsque vous saisissez votre smartphone, plusieurs dizaines de capteurs physiques s’activent en arrière-plan : L'accéléromètre et le gyroscope : Ils mesurent l’angle exact et la micro-oscillation de votre main. Le capteur de pression tactile : Il évalue la surface de contact de votre pouce et la force exercée sur la dalle en verre. Le rythme de frappe : L’algorithme calcule au millième de seconde près le temps de pression sur chaque touche et l’intervalle de transition entre deux lettres. Les publications de la IEEE Biometrics Council démontrent qu’en analysant seulement 30 à 40 frappes consécutives, un algorithme de notation comportementale atteint un taux de précision supérieur à 99% pour identifier le véritable propriétaire de l’appareil. Pour l’Intelligence Artificielle locale de votre téléphone, votre manière de taper ou de balayer votre fil d’actualité est aussi unique qu’une empreinte génétique. Si un tiers subtilise votre téléphone déverrouillé, le système détecte le changement de rythme en moins de 1,5 seconde et reverrouille l’appareil automatiquement. Source Le standard Passkeys 2.0 de l’alliance FIDO La question légitime que pose une telle innovation est celle de la vie privée. Hors de question que nos rythmes de frappe ou nos données de marche soient envoyés sur des serveurs Cloud pour y être analysés. C’est ici que la prouesse technique prend tout son sens : tout reste en local. Cette révolution s’appuie sur l’évolution des Passkeys, un protocole mondial développé par la FIDO Alliance. Les statistiques d’adoption de la FIDO Alliance pour 2026 révèlent que plus de 12 milliards de comptes en ligne dans le monde supportent désormais cette technologie. Métrique de SécuritéMots de Passe ClassiquesPasskeys + Biométrie ComportementaleSensibilité au Phishing (Hameçonnage)100% (Vulnérable)0% (Immunisé)Temps moyen de connexion~15 secondes~2,5 secondesTaux d’échec à l’authentification~14% (Erreurs de saisie)Moins de 0,5% Le principe repose sur la cryptographie asymétrique. Lorsque vous créez un compte, votre téléphone génère une paire de clés : une clé publique émise au site internet, et une clé privée, jalousement gardée dans l’enclave matérielle sécurisée de votre processeur (le Secure Element). La biométrie comportementale sert uniquement de déclencheur physique pour “libérer” cette clé privée locale. Le site distant ne reçoit jamais vos données comportementales ; il reçoit simplement une validation mathématique. Focus sur les Passkey Le principe fondamental d’un Passkey est qu’il n’existe aucun secret partagé entre vous et le service en ligne (Netflix, votre banque, Amazon). Contrairement à un mot de passe classique, qui est stocké sur les serveurs de l’entreprise (et donc vulnérable aux fuites de données), le Passkey sépare la sécurité en deux éléments mathématiques distincts et indissociables. [ Votre Appareil ] [ Serveur Web ] Clé Privée (Secrète) ── Chiffre le défi ──> Clé Publique (Connue) (Reste dans le SE) (Ne sert qu'à vérifier) Comment se déroule une connexion passkey ? 1.La génération de la paire de clés :Lors de l’inscription. Le gestionnaire de Passkeys de votre appareil génère une clé privée (qui reste enfermée dans la puce physique sécurisée de votre téléphone) et une clé publique (qui est envoyée au serveur du site). 2.L’envoi du défi (Challenge) :Lors de la connexion. Lorsque vous voulez vous connecter, le site web envoie un “défi” (un message aléatoire chiffré) à votre appareil. 3.Le déverrouillage biométrique :Validation locale. Votre appareil vous demande de valider votre identité (via FaceID, empreinte ou la fameuse biométrie comportementale). Cette action locale sert d’autorisation pour réveiller la clé privée. 4.La signature mathématique :Finalisation. La clé privée signe le défi envoyé par le site et renvoie la réponse. Le serveur utilise votre clé publique pour vérifier la signature. Si le calcul correspond, vous êtes connecté. Aucun mot de passe n’a voyagé sur le réseau. Les deux grandes familles de solutions Passkeys L’écosystème de 2026 se divise en deux approches techniques pour gérer ces clés cryptographiques. Elles répondent à des besoins de mobilité ou de sécurité informatique différents. 1. Les Passkeys Synchronisés (Multi-appareils / Synced Passkeys) C’est la solution grand public par excellence, intégrée nativement dans nos systèmes d’exploitation. La clé privée est stockée dans le trousseau Cloud du constructeur (Apple iCloud Keychain, Google Password Manager, Microsoft Account). Le fonctionnement : Si vous créez un Passkey sur votre iPhone, il est automatiquement disponible sur votre Mac ou votre iPad via iCloud. Le mécanisme de secours : Si vous perdez votre smartphone, vos Passkeys ne sont pas perdus : ils sont restaurés dès que vous vous reconnectez à votre compte cloud principal avec une authentification forte. Le cas du cross-platform : Si vous êtes sur un PC Windows et voulez vous connecter à un site avec le Passkey de votre iPhone, le PC affiche un QR Code. Votre iPhone le scanne, vérifie via une liaison Bluetooth de proximité que les deux appareils sont dans la même pièce, et valide la connexion. 2. Les Passkeys Matériels Liés (Single-device / Hardware-bound Passkeys) Cette approche est privilégiée par les entreprises, les banques ou les profils à haute visibilité (journalistes, politiciens). La clé privée est générée à l’intérieur d’un composant matériel dont elle ne pourra jamais sortir, interdisant toute copie dans le cloud. Les clés de sécurité physiques : Les clés USB/NFC (comme les YubiKeys de Yubico) matérialisent ce principe. La clé privée est scellée dans la puce de l’objet. Pour se connecter, il faut impérativement insérer la clé ou la badger contre son téléphone. Le niveau de sécurité supérieur : Même si votre compte iCloud ou Google est piraté, personne ne peut voler vos Passkeys matériels car ils n’existent nulle part sur internet. Les acteurs du marché des passkey en 2026 Le marché des solutions s’est considérablement structuré autour de trois grands types d’acteurs : Les natifs (Les OS) : Apple, Google et Microsoft fournissent l’infrastructure de base gratuite. C’est transparent pour l’utilisateur mais cela tend à verrouiller ce dernier dans leur écosystème respectif. Les gestionnaires indépendants (Cross-platform) : Des logiciels comme 1Password, Dashlane ou l’alternative open-source Bitwarden permettent de stocker et de synchroniser vos Passkeys de manière agnostique (fonctionne aussi bien entre un téléphone Android et un navigateur Safari sur Mac). Les solutions d’infrastructure (B2B) : Des plateformes comme Okta ou Ping Identity déploient ces architectures au sein des réseaux d’entreprises pour supprimer définitivement le risque de piratage interne. Le Passkey résout définitivement la faille numéro un de la sécurité informatique : l’erreur humaine. Un algorithme ne peut pas se faire berner par un faux site d’hameçonnage (phishing), car la clé publique est mathématiquement liée au nom de domaine exact du site. Si l’URL change d’une seule lettre, l’appareil refuse tout simplement de signer le défi. Sécurité absolue et friction zéro Pour l’utilisateur comme pour l’économie numérique, les bénéfices de cette numérisation invisible de la sécurité sont colossaux. Immunité totale contre le Phishing : Le rapport annuel de Verizon sur les fuites de données rappelle que 74% des cyberattaques impliquent encore un facteur humain (vol d’identifiants ou ingénierie sociale). N’ayant plus de mot de passe à taper, vous ne pouvez plus vous le faire voler par un faux email ou un site miroir. L’accessibilité universelle : Pour les personnes âgées ou en situation de handicap, la fin des barrières de saisie de codes complexes supprime la principale cause de l’exclusion numérique. La rentabilité pour les plateformes : Les géants du e-commerce constatent déjà une hausse de 5% à 7% des taux de conversion lors de l’étape de paiement depuis que les processus d’authentification contraignants ont été remplacés par la validation passive en arrière-plan. L’authentification invisible Le mot de passe était une anomalie ergonomique, une interface artificielle qui forçait l’humain à parler le langage de la machine. En 2026, la technologie est enfin devenue assez mature pour s’adapter à l’humain. En observant nos mouvements et nos rythmes sans jamais les trahir, nos appareils transforment nos gestes du quotidien en la plus sûre des clés. La haute sécurité n’est plus une contrainte, elle est devenue une seconde nature. Références et publications scientifiques pour approfondir : Le standard industriel et statistiques d’adoption : Pour comprendre l’architecture des clés d’accès décentralisées, consultez le portail officiel de la FIDO Alliance sur la technologie Passkey. Recherche en informatique et taux de précision : Pour les fondements scientifiques de l’analyse du rythme de frappe, voir les études indexées par le IEEE Xplore Digital Library sur les Keystroke Dynamics. Statistiques sur les cyberattaques : Consultez les rapports d’analyse des menaces sur le Verizon Data Breach Investigations Report pour les données liées au vol d’identifiants. The post Quand le mot de passe c'est vous first appeared on XY Magazine.

Traveling soon? ✈️

Send us Fan MailWatch the video!https://youtu.be/eP2iFZlU5y0In the News blog post for May 22, 2026https://www.iphonejd.com/iphone_jd/2026/05/in-the-news829.html 00:00 WWDC 2026 Keynote - June 808:23 Global Accessibility Awareness Day16:57 A Deluge of Tips22:09 The Face of the App Store24:19 Don't Pass on Cryptography33:33 Micro Brew36:32 Where Y'at? Segment39:07 Fútbol is [Immersive] Life!45:27 Selling Apples51:08 Brett's iTip: Turn On (or Off) Audio Zoom55:21 Jeff's iTip: Using AI to Interrogate DocumentsIntroducing the 2026 Apple Design Award finalistsApple unveils new accessibility features, and updates powered by Apple IntelligenceJuli Clover | MacRumors: 10 Useful iPhone Tips and Tricks You Might Not Know AboutTim Hardwick | MacRumors: Apple Watch: 15 Tips Every Owner Needs to KnowEric Griffith | PC Mag: Think You Know Your iPhone? Check Out These 109 Hidden TricksDavid Sparks | MacSparky: What Apple Still Gets Wrong About Watch Faces1Password: The architectural reason 1Password can't read your vault dataD. Griffin Jones | Cult of Mac: How to browse the web on your Apple Watch with μBrowserOliver Haslam | Apple Insider: iPhone Crash Detection saved the day after driver's 330ft mountain dropJason Snell | Six Colors: Apple takes soccer immersive with Real MadridLuke Dormehl | Cult of Mac: Today in Apple history: Apple reinvents the computer storeAll About Steve Jobs: Unveiling Apple's First Retail StoreBrett's iTip: Turn on (or off) Audio Zoomhttps://www.gearpatrol.com/tech/iphone-camera-audio-zoom/ https://www.igeeksblog.com/iphone-zoom-ruins-video-audio-turn-this-setting-off Jeff's AI: Using AI to Interrogate Documentshttps://www.theverge.com/tech/932454/google-io-2026-news-announcements Support the showBrett Burney from http://www.appsinlaw.comJeff Richardson from http://www.iphonejd.com

Elon Musk perde la causa contro OpenAI. Eric Schmidt fischiato all'università. La backdoor di Bitlocker. Bitwarden cancella la licenza gratuita. ChatGPT e il conto in banca. Recupera i bitcoin grazie a Claude AI. Queste e molte altre le notizie tech commentate nella puntata di questa settimana.Dallo studio distribuito di digitalia:Franco Solerio, Michele Di MaioProduttori esecutivi:Jose, Mario Giammona, Simone Podico, Marco Grechi, Jacopo Conti, Manuel Giannatempo, Calogero Augusta, Michelangelo Rocchetti, Andrea Guido, Vito Astone, Davide Tinti, Alessandro Morgantini, Daniele Bastianelli, Andrea Malesani, Silvio Mariuzzo, Fabio Brunelli, Jean Dal Bo, Gabriele Marinelli, Enrico, Fiorenzo Pilla, Luca Ubiali, Umberto Marcello, Alessio Ferrara, Edoardo Volpi Kellerman, Beconsulting, Ivan, Cristian De Solda, Donato Gravino, Enrico Carangi, Giorgio Puglisi, Emanuele Libori, Davide Porta, Paolo Tegoni, Denis Grosso, Paolo Bernardini, Vincenzo Ingenito, Nicola Grilli, Andrea Giovacchini, Carlo Tomas, Riccardo Famà, Manuel Zavatta, Cristian Pastori, Diego Arati, Andrea Picotti, Mario Cervai, Giuliano ArcinottiSponsor:Squarespace.com - utilizzate il codice coupon "DIGITALIA" per avere il 10% di sconto sul costo del primo acquisto.Links:Elon Musk loses court battle against Sam Altman and OpenAIFabricated citations: an audit across 25 million biomedical papersLIA non ha rotto la scienza. Lha smascherataSecurity researcher says MS secretly built a backdoor into BitLockerBitwarden scrubs 'Always free' from its websiteConcerns Over Bitwarden Moving Away from Open SourceI see 1Password is stepping on the rake againWhat we learned using AI agents to refactor a monolithFBI remotely scrubs Russian malware from compromised devicesChatGPT Wants Access to Your Bank AccountOpenAI now wants ChatGPT to access your bank accountsOpenAI seals deal in Malta to give all Maltese access to ChatGPT PlusDigitalia DistillataChatbots at the drive-thru are just the beginningAI vigilante trap snares alleged paedophile ex-teacher in FranceAnthropic blames dystopian sci-fi for training AI models to act evilBitcoin trader recovers $400,000 using Claude AIGoogle's Android-powered laptops are called GooglebooksWill I be OK? Teen died after ChatGPT pushed deadly mix of drugsThe funniest thing about the Trump arcade game is how good it isTeam America: World Police Theme SongGingilli del giorno:Pro-level travel tips - consigli per i viaggi per geekPaperless AI Assist - automatizza Paperless-ngx con l'AISupporta Digitalia, diventa produttore esecutivo.

In our World Password Day Special, we're digging into credentials, identity, and authentication  — and where security is  heading next.

Is your organization prepared for an autonomous AI bot? Roger Grimes joins Jen Stone to discuss the shifting landscape of cybersecurity. This episode moves past the hype to look at the hard data: AI scams are yielding 4.5x more value for attackers, and traditional MFA is no longer enough to stop them.In this episode, we translate complex "vulnerability fatigue" into a clear, two-step priority list. We strip away the jargon to show you exactly how autonomous bots are bypassing firewalls by targeting the human element. Key Takeaways:Focus on the "Big Two": Social engineering and unpatched software account for nearly 90% of business risk.Phishing Resistance: Why you should move toward YubiKeys or passkeys to avoid "man-in-the-middle" code interception.Patch Management: Why you should ignore "shiny" new vulnerabilities and follow the CISA Known Exploited Vulnerabilities catalog.The Negotiator's Trap: What happens when a CEO claims they have backups, but the hackers have already deleted them.Featured Resources:CISA Known Exploited Vulnerabilities (KEV) Catalog: Use this to prioritize patching based on real-world attacker behavior. Phishing-Resistant MFA:YubiKey: A hardware security key requiring physical touch to prevent remote account takeovers. FIDO Passkeys: A cryptographically secure alternative to SMS codes. Password Management: Tools like 1Password or LastPass are essential for creating long, random, and unique credentials that AI can't easily crack. The 3-2-1 Backup Rule: Maintain three copies of data, on two different media types, with one copy kept strictly offline. Connect with Roger GrimesKnowBe4: Access security awareness training and social engineering defense resources at knowbe4.com. Free Book Offer: Roger is offering a free PDF copy of his latest book, How AI and Quantum Impact Cyber Threats and Defenses, to all listeners. Email him directly at rogerg@knowbe4.com. A note from Jen: We built Practical Cybersecurity because we were tired of the fear-mongering in this industry. Security shouldn't be a secret club.If you're trying to figure out PCI compliance or need a pen test, my team at SecurityMetrics can help you out: https://www.securitymetrics.com/contact/lets-get-you-to-the-right-place But if you just want to learn how to protect yourself for free, start here:  https://academy.securitymetrics.com/ 

The Business Tools That Actually Keep Your VO Career Running One of the biggest misconceptions in voiceover is that success comes from talent plus a good booth. And yes, performance matters. Audio quality matters. But what actually creates consistency in this career is operational support. It's the systems you build that allow you to track opportunities, manage relationships, understand your income, organize your marketing, and reduce decision fatigue. Because decision fatigue is real, and it will stop you in your tracks and you will end up doing nothing. So today I want to walk you through some simple, accessible tools that you can use right now. Even if you don't have a team. Even if you don't have fancy software. Even if you feel completely disorganized. These are the tools that turn creative chaos into professional clarity. Excel or Google Sheets I know. A spreadsheet is not anyone's favorite thing. Nobody got into acting because they love spreadsheets. But spreadsheets give you something emotional actors often lack, which is objective data. If you don't have data, how will you know what's working and what isn't? How will you know how much time to keep spending on something or when to let it go or if you're underpricing yourself in a certain category? You can track auditions, bookings, client names, rates, follow-ups, usage conflicts, marketing outreach. When you track patterns you stop guessing. And we cannot have a successful career if we are constantly guessing. A spreadsheet is not restrictive. It's clarifying. Canva Canva is essentially the modern actor's design department. I know nothing about design and luckily Canva is there for social media graphics, pitch decks, rate sheets, lead magnets, ebooks, presentations. Actors often think marketing has to look DIY. It doesn't. Clean visual communication builds trust before you ever speak. I send cold leads lead magnets all the time. Sometimes it's an ebook like how to hire a voiceover actor or a checklist of what to expect when you've hired one. When you are the authority and expert in the room that's when you have true leadership within the role. Canva helps you look like a business with structure instead of a freelancer who's improvising. I use Canva Pro. You don't have to. There is plenty on the free version that makes it worth having in your arsenal. A Lightweight CRM When I say CRM a lot of actors panic. Customer relationship management systems can feel very corporate. But you can create a lightweight version with Airtable or Notion or even a spreadsheet. I have one I can send you the link to. The things you want to track are simple. Who you contacted, when, what their response was, what your email subject line was. Without those few things you can end up re-pitching the same person too soon or forgetting a warm lead entirely. Consistency beats charisma in client development. I promise you. A Calendar System Your calendar is not just for appointments. It's for marketing blocks, financial review days, audition batching, content creation, relationship maintenance. Actors live in reactive mode. A structured calendar helps you move into intentional career design. Time becomes something you allocate strategically instead of something that constantly feels like it's slipping away. When I transitioned into my block calendar system it changed my life. I know that sounds dramatic but I was constantly chasing minutes and feeling like I never had enough. Now I have control. I can actually plan things out and I'm never just too busy or not busy enough. It really did change my life. File Organization I know this sounds tiny. It is not. Clear folder systems on your desktop. Client name, project, scripts, finals. Demos organized by vertical and year. Invoices separated into paid and unpaid. Contracts sorted by active versus expired. When your files are organized you move faster. Speed is a competitive advantage in this industry, especially if you are working with agents or pay to plays. Disorganization creates friction that drains your creative energy. Spend twenty minutes on this. I promise you will feel so much better and more in control. A Password Manager This one is very adult and very real. My information was recently hacked and someone stole a significant amount of money from me and spent it all on DoorDash. I was very upset. Actors juggle casting sites, payment portals, editing software, social platforms. A password manager like LastPass or 1Password protects your business infrastructure. Security is professionalism. Nothing screams professional like having your shit together. A Capture System for Ideas Your brain is a constant working creative machine. But ideas disappear. How many times have you had a great idea and then completely lost it two minutes later? Use your notes app, voice memos, Notion boards, Trello. Capture content ideas, client leads, script concepts, branding language. Marketing consistency comes from capturing inspiration before it evaporates. I create a note, title it something like TikTok ideas, make a checkbox list, and add ideas as they come. When I've done it I check the box. I don't delete it because I might come back to it someday. I wish I had been doing this years ago. The Bottom Line Tools make you more sustainably creative. They don't make you less creative. They reduce chaos and they reduce the emotional decision-making spiral that actors can get wrapped up in. The actors who last in this business are not always the most naturally gifted. They're just the most together. Your homework this week is simple. Choose one tool and implement it imperfectly. It doesn't have to be beautiful or complete. Just begin. Because actors are not built in grand gestures. They are built in small systems that compound over time. Want to Keep the Conversation Going? Send me an email at mandy@actingbusinessbootcamp.com about the tools you're using or maybe a tool I haven't mentioned that's been a game changer for you. I love to hear from you. Find me on TikTok  or on Substack at The Actor's Index.    

So you've been hacked… Now what?!

In this live episode of The Modern People Leader recorded in Toronto, the crew reflects on the evolving role of HR leaders amid rising AI pressure, shifting expectations, and increasing emotional load. They unpack real-time challenges around strategy clarity, leadership trust, and how people teams must adapt to stay effective in a rapidly changing world. Our guests for this episode:- Kate Railton, Chief People Officer @ Mejuri- Katya Laviolette, Chief People Officer @ 1Password- Jenny Do Forno, Chief People Officer @ TouchBistro----  Sponsor Links:

These episodes of #thePOZcast, live from Transform 2026 in Las Vegas, are proudly brought to you by our friends at Overalls What if your employees had one central hub to handle real life? Meet Overalls. A smarter way to support your team, combining expert human LifeConcierges™ with AI to solve everyday challenges across healthcare, caregiving, benefits, insurance, finances, life admin, and more. From start to finish, Overalls handles the details — using existing benefits where they fit, and filling in the gaps where they don't. So employees save time, reduce stress, and stay focused at work, while employers boost engagement and get more value from their benefits. Overalls is redefining how work supports life, helping employee teams from Reddit, Patreon, BeatBox, and more cross pesky to-dos off their lists every day. Learn more at https://getoveralls.com/?utm_source=podcast&utm_medium=podcast&utm_campaign=pozcast Thanks for listening, and please follow us on Insta @NHPTalent and www.youtube.com/thePOZcast For all episodes, please check out www.thePOZcast.com Katya Laviolette, Chief People Officer at 1Password  Katya Laviolette is the Chief People Officer at 1Password, where she's grown a fully remote team to 1,400+ across five countries and achieved a 93% offer-to-acceptance rate. A strategic, globally-minded HR leader, Katya drives business innovation through talent and organizational development. Previously, Katya held executive roles at SSENSE, TC Transcontinental, CBC/Radio-Canada, Rio Tinto, Bombardier Aerospace, and Canadian National Railway. Katya is a Board Director at Sanimax and Solotech, and a founding member of Transform Montreal. She's also an ORHRI member, certified Integral Coaching Canada coach, and actively involved in Pour 3 Points, Governance au Féminin, and Monday Girl. 00:00 – Introduction Adam Poser welcomes Katya Laviolette live from Transform 2026 and sets the stage for the conversation. 01:15 – Meet 1Password & Katya Katya introduces herself and 1Password — an identity security company, fully remote for 20 years, now protecting both humans and AI agents. 03:30 – Evaluating Total Comp as a Candidate Breaking down what candidates should actually consider beyond base salary: bonus, equity, and especially benefits — including what employers contribute to healthcare. 06:45 – Table Stakes vs. Standout Benefits What every company must offer vs. what sets 1Password apart: pet telemedicine, 25 days PTO, 4 company-wide wellness days, and robust family planning benefits. 10:30 – Wellness Days Explained Katya unpacks what a "wellness day" actually looks like at 1Password — full company shutdowns so employees can recharge without guilt. 12:00 – Benefits ROI & Utilization How 1Password justifies the cost of premium benefits through utilization data, focus groups, and productivity metrics — and why cutting benefits should be the last resort. 15:00 – The Onboarding Edge: Starting on Wednesday 1Password's unconventional onboarding approach: all new hires start on Wednesdays so managers are ready, systems are prepped, and new employees get 3 days of company-led onboarding before meeting their team. 18:30 – Staying Connected in a Remote Company How 1Password keeps culture alive across 6 countries: city-by-city executive meetups, all-hands sessions, employee resource groups, and intentional cross-functional collaboration. 22:00 – Being Honest in the Interview Process Katya's approach to radical transparency — telling candidates "1Password might not be the place for you" — and why managing expectations is a competitive advantage. 25:30 – Remote Work Isn't for Everyone A candid conversation about the real challenges of remote work, what it takes to thrive in it, and how 1Password supports employees who may be struggling. 28:00 – AI, Fraud & the Future of Recruiting How 1Password is navigating AI-generated applications, over-embellished resumes, and fraudulent candidates — including mandatory in-person finalist interviews for senior roles. 31:00 – What's Exciting Katya Right Now Katya shares what energizes her most: the curiosity of 1Password's workforce and the chance to be part of a genuinely game-changing mission in AI and identity security.   Key Takeaways 1. Benefits Are a Recruiting and Retention Weapon Katya emphasizes that benefits extend far beyond table stakes like dental and disability. Standout offerings — family planning, pet telemedicine, wellness days, and generous PTO — are central to 1Password's employer brand and a real differentiator in a competitive talent market. 2. Employer Healthcare Contributions Matter More Than Most Candidates Realize The portion a company pays toward employee healthcare can represent thousands of dollars in annual value. Katya urges candidates to factor this into their true compensation comparison — not just base salary. 3. Benefits Only Work If Employees Know About Them and Use Them 1Password achieves high utilization through proactive education, easy administration, annual focus groups by country, and renewal-time communications that show employees the dollar value of their benefits package. 4. Start New Hires on a Wednesday — Not a Monday By onboarding all new employees on Wednesdays, 1Password ensures managers are focused and ready, systems are set up, and new hires get 3 days of company-led orientation before their team ramps up. It's a simple change with an outsized impact on first impressions. 5. Radical Transparency Reduces Mis-Hires Rather than selling every candidate on the company, Katya actively explains the challenges of remote work and the intensity of 1Password's mission. The company even includes language in offer materials saying "1Password might not be the place for you." This honest framing reduces early attrition. 6. Remote Culture Requires Intentional Design Staying connected across time zones doesn't happen by accident. 1Password invests in city-by- city in-person gatherings, structured all-hands, manager training on relationship-building over Zoom, and employee resource groups to keep culture alive. 7. AI Is Reshaping Recruiting — And Security-First Companies Are Ahead of the Curve 1Password has implemented fraud detection tools at the top of the application funnel, trained interviewers to identify AI-generated content, and instituted multi-stage interview loops with mandatory in-person finalists for senior hires. 8. Don't Cut Benefits When Things Get Tight Benefits are foundational to culture and trust. Katya argues that benefits should be among the last things cut in a cost-reduction scenario — the ROI from retention, productivity, and employer brand far outweighs the savings. 9. Time Is Currency for Employees Whether it's concierge benefits that handle personal logistics, flexible scheduling for a remote lifestyle, or wellness days that give genuine mental recharge time — giving employees their time back is one of the highest-ROI investments a company can make.  

#348 | Dave sits down with Melton Littlepage, CMO at 1Password, to talk about what category creation actually looks like inside a company that's already won. Melton breaks down why 1Password is betting on an entirely new category called Extended Access Management, how they chose it over competing in an existing one, and the tactics behind it: lightning strike events, analyst relations, and embedding a former CISO on the marketing team to agitate the problem from the inside. He also makes the case for sports sponsorship as a B2B play, and why the President's Cup was an easy yes.Timestamps(00:00) - - Melton's background: 20 years building SaaS before it was called SaaS (07:45) - - What changes after multiple CMO roles (11:25) - - You can't attribute your way to being hot (12:29) - - The CMO's real job: be the chief markets officer (14:43) - - 1Password today and the market shift that created a new category (22:03) - - The three acts of 1Password's business (22:56) - - Naming the category: Extended Access Management (XAM) (23:58) - - How the decision to create a new category got made (29:34) - - The tactics: category point of view, lightning strikes, analyst relations (33:39) - - How the marketing org is structured (38:11) - - 1Password's three go-to-market motions (41:36) - - Why 1Password is betting on sports marketing Join 50,0000 people who get Dave's Newsletter here: https://www.exitfive.com/newsletterLearn more about Exit Five's private marketing community: https://www.exitfive.com/***Brought to you by:Customer.io - An AI powered customer engagement platform that help marketers turn first-party data into engaging customer experiences across email, SMS, and push. Learn more at customer.io/exitfive.Consensus - An AI-powered interactive demo platform that lets you put personalized, self-serve demos on your site to turn anonymous researchers into high-intent leads. Learn more at goconsensus.com/exitfive.Knak - A no-code, campaign creation platform that lets you go from idea to on-brand email and landing pages in minutes, using AI where it actually matters. Learn more at knak.com/exitfive.Convertr - The enterprise lead data management platform that sits between your lead sources and your CRM, automatically validating, enriching, and standardizing every lead before it touches your systems. Check them out at convertr.io/exitfive.***Thanks to my friends at hatch.fm for producing this episode and handling all of the Exit Five podcast production.They give you unlimited podcast editing and strategy for your B2B podcast.Get unlimited podcast editing and on-demand strategy for one low monthly cost. Just upload your episode, and they take care of the rest.Visit hatch.fm to learn more

Sharing information with AI has quickly become second nature. But what are you really giving away?

Every organization knows it needs to adopt AI. Far fewer have worked out how to bring their whole workforce along for the journey. Telling employees to use new tools rarely works, and many companies are stuck with pockets of enthusiastic early adopters alongside large groups who feel the pace of change is simply too much. Getting from scattered experimentation to genuine organization-wide adoption requires a very different approach, one where upskilling, learning culture, and the right mindset matter as much as the technology itself. So what does it actually take to build a workforce that's ready for AI? My guest this week, recorded at the recent Transform conference, is Katya Laviolette, Chief People Officer at 1Password. In our conversation, she shares how her team built an AI adoption strategy co-led by HR and the technology team, why soft skills now matter more than technical training, and how to cut through the noise when every vendor is selling AI. In the interview, we discuss: Building organization-wide AI adoption The role of AI champions Balancing human and AI work Why curiosity and adaptability matter Upskilling versus hiring new talent Evolve, shift, and pivot. Evaluating AI tools and vendors in a noisy market Privacy and security considerations What the future looks like Follow this podcast on Apple Podcasts. Follow this podcast on Spotify.

Si parla di come terminare una chiamata su iOS, di un'alternativa ad Hazel, delle nuove funzioni di sicurezza si macOS, di una tastiera meccanica stile Commodore 64, della cronologia di password di 1Password, delle origini di Apple e di quanto sia...

Supply chains, server crashes, and building break-ins. Our latest episode is a reminder that cybersecurity doesn't stop at the screen.

Is Apple's Passwords app a true contender for your digital life, or does it fall short for tech-savvy households? Find out how it stacks up against premium managers and where it still leaves power users wanting more. How shared password groups work in the Passwords app Step-by-step walkthrough: creating and managing shared groups Apple Passwords sharing vs. third-party apps like 1Password, Bitwarden (TWiT sponsor) Wi-Fi password management and sharing via QR codes Passwords app limitations: organization, secure notes, file storage, platform support Migration challenges from other password managers Travel needs and sensitive data: third-party travel mode vs. Passwords app Who should use Apple's Passwords app and who needs more advanced tools Hybrid approaches: combining Apple Passwords with third-party managers Host: Mikah Sargent Download or subscribe to Hands-On Apple at https://twit.tv/shows/hands-on-apple Want access to the ad-free audio and video and exclusive features? Become a member of Club TWiT today! https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: threatlocker.com/twit

Is Apple's Passwords app a true contender for your digital life, or does it fall short for tech-savvy households? Find out how it stacks up against premium managers and where it still leaves power users wanting more. How shared password groups work in the Passwords app Step-by-step walkthrough: creating and managing shared groups Apple Passwords sharing vs. third-party apps like 1Password, Bitwarden (TWiT sponsor) Wi-Fi password management and sharing via QR codes Passwords app limitations: organization, secure notes, file storage, platform support Migration challenges from other password managers Travel needs and sensitive data: third-party travel mode vs. Passwords app Who should use Apple's Passwords app and who needs more advanced tools Hybrid approaches: combining Apple Passwords with third-party managers Host: Mikah Sargent Download or subscribe to Hands-On Apple at https://twit.tv/shows/hands-on-apple Want access to the ad-free audio and video and exclusive features? Become a member of Club TWiT today! https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: threatlocker.com/twit

Is Apple's Passwords app a true contender for your digital life, or does it fall short for tech-savvy households? Find out how it stacks up against premium managers and where it still leaves power users wanting more. How shared password groups work in the Passwords app Step-by-step walkthrough: creating and managing shared groups Apple Passwords sharing vs. third-party apps like 1Password, Bitwarden (TWiT sponsor) Wi-Fi password management and sharing via QR codes Passwords app limitations: organization, secure notes, file storage, platform support Migration challenges from other password managers Travel needs and sensitive data: third-party travel mode vs. Passwords app Who should use Apple's Passwords app and who needs more advanced tools Hybrid approaches: combining Apple Passwords with third-party managers Host: Mikah Sargent Download or subscribe to Hands-On Apple at https://twit.tv/shows/hands-on-apple Want access to the ad-free audio and video and exclusive features? Become a member of Club TWiT today! https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: threatlocker.com/twit

Is Apple's Passwords app a true contender for your digital life, or does it fall short for tech-savvy households? Find out how it stacks up against premium managers and where it still leaves power users wanting more. How shared password groups work in the Passwords app Step-by-step walkthrough: creating and managing shared groups Apple Passwords sharing vs. third-party apps like 1Password, Bitwarden (TWiT sponsor) Wi-Fi password management and sharing via QR codes Passwords app limitations: organization, secure notes, file storage, platform support Migration challenges from other password managers Travel needs and sensitive data: third-party travel mode vs. Passwords app Who should use Apple's Passwords app and who needs more advanced tools Hybrid approaches: combining Apple Passwords with third-party managers Host: Mikah Sargent Download or subscribe to Hands-On Apple at https://twit.tv/shows/hands-on-apple Want access to the ad-free audio and video and exclusive features? Become a member of Club TWiT today! https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: threatlocker.com/twit

Is Apple's Passwords app a true contender for your digital life, or does it fall short for tech-savvy households? Find out how it stacks up against premium managers and where it still leaves power users wanting more. How shared password groups work in the Passwords app Step-by-step walkthrough: creating and managing shared groups Apple Passwords sharing vs. third-party apps like 1Password, Bitwarden (TWiT sponsor) Wi-Fi password management and sharing via QR codes Passwords app limitations: organization, secure notes, file storage, platform support Migration challenges from other password managers Travel needs and sensitive data: third-party travel mode vs. Passwords app Who should use Apple's Passwords app and who needs more advanced tools Hybrid approaches: combining Apple Passwords with third-party managers Host: Mikah Sargent Download or subscribe to Hands-On Apple at https://twit.tv/shows/hands-on-apple Want access to the ad-free audio and video and exclusive features? Become a member of Club TWiT today! https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: threatlocker.com/twit

Apple may have a “Creator Access Program," AirPods Max 2 with H2 announced, iOS 26.4 coming soon, AI Val Kilmer to star in a movie posthumously, new HomeKit Video Doorbell, and Stephen's home theater saga.Ad-Free + Bonus EpisodesShow Notes via EmailCreative Effort - Jason's PodcastWatch on YouTube!Join the CommunityEmail Us: podcast@primarytech.fm@stephenrobles on Threads@jasonaten on Threads------------------------------Sponsors:1Password: Secure your small business with 1Password. Learn more at: 1password.com/primarytechShopify: Sign up for your one-dollar-per-month trial and start selling today at: shopify.com/primary------------------------------Links from the showMacBook Neo Giveaway? - InstagramApple Acquires Final Cut Pro Plugin Company MotionVFX - MacRumorsApple introduces AirPods Max 2 - AppleApple highlights 13 enhancements coming to iPhone with iOS 26.4 - 9to5MacWhy Apple's Video Podcast Push Feels Like the End of an EraNvidia GTC 2026: CEO Jensen Huang keynote Blackwell Vera RubinNVIDIA GTC 2026: Live Updates on What's Next in AI | NVIDIA BlogYouTubeVal Kilmer in 'As Deep As the Grave, His Performance was AI GeneratedJoanna Stern's DocumentaryHomeKit Weekly: Aqara releases its first Matter camera alongside a new Apple Home enabled wired doorbell - 9to5MacOvercast is gaining transcripts, and it will have an edge over Apple Podcasts - 9to5MacSamsung discontinues its Galaxy Z TriFold after just three months | The VergeFacebook launches a new monetization program to attract popular creators from TikTok, YouTube | TechCrunchUber to invest $1.25 billion in Rivian as part of new robotaxi deal | The VergeEncyclopedia Britannica is suing OpenAI for allegedly ‘memorizing' its content with ChatGPT | The VergeiPhone Shortcuts Are Way Behind... - YouTubeLG 77-Inch Class OLEDDenon AVR-S970H ReceiverPhilips Hue 75" Smart Light StripPhilips Hue Play HDMI sync Box 8KPhilips Hue Compact Smart Light Tube ★ Support this podcast ★

Are cybersecurity professionals more burned out than ever?

As RSAC 2026 approaches, Daniel Bardenstein, CEO and Co-Founder of Manifest, joins hosts Sean Martin and Marco Ciappelli to unpack the growing disconnect between how security leaders perceive their AI and software supply chain posture and what practitioners on the ground actually experience. Drawing from Manifest's new research report — Beyond the Black Box — Bardenstein connects the dots between shadow AI, SBOM adoption gaps, and a dangerous pattern: history is repeating itself as organizations rush to adopt AI with the same disregard for security that characterized the early cloud era.   In a wide-ranging pre-event conversation ahead of RSAC 2026, Daniel Bardenstein, CEO and Co-Founder of Manifest, explores what it means to truly secure the software and AI supply chain — not just check the compliance box. Manifest's new research report, Beyond the Black Box, surveyed more than 300 security and AI leaders globally to understand the reality of AI adoption and software supply chain risk. One of the most striking findings was not a statistic, but a structural problem: a significant perception gap exists between how confident executive security leadership feels about their AI security posture and how unprepared frontline practitioners actually are. Where there is misalignment, Bardenstein notes, there is risk.   The conversation draws a vivid parallel to the cloud adoption wave of a decade ago, when organizations rushed to SaaS and cloud infrastructure without thinking through security implications — and gave birth to entire new industries to clean up the mess. Today, the same dynamic is playing out with AI. Nearly two-thirds of the survey respondents reported encountering shadow AI within their organizations, as employees freely use tools like ChatGPT, DeepSeek, or locally downloaded models without centralized governance. When that AI eventually gets embedded into software that organizations build, deploy, and sell, the blind spots compound.   SBOMs — software bills of materials — represent a promising step toward supply chain transparency, and Bardenstein credits the US government's regulatory nudging for driving adoption. Manifest's research shows that roughly 60% of organizations are now generating SBOMs, a meaningful milestone. But generation is not governance. Too many organizations treat an SBOM as a compliance artifact — a JSON file on a hard drive — rather than an operational tool that could dramatically accelerate vulnerability response, regulatory compliance, and incident management. The prescription has been filled; it's just not being taken.   To reframe the urgency, Bardenstein introduces the concept of the "transparency tax" — the hidden cost organizations pay in time, money, and risk when they build or buy opaque technology. Just as consumers demand ingredient labels on food, Carfax reports on used cars, and active ingredient disclosures on prescriptions, the technology sector needs to normalize the same transparency for software and AI. For organizations willing to do the math, the case for investing in supply chain visibility becomes not just a security argument, but a business one.   Heading into RSAC 2026, Manifest will not have a booth but will be active across the conference floor, meeting with customers, partners, and prospects. Bardenstein will appear on an invite-only panel alongside leadership from Corridor Dev, 1Password, and Google to discuss secure software and secure AI. The team is also planning to announce new platform capabilities designed to close the governance gaps their research surfaced — helping organizations move fast without creating the kind of blind spots that make AI adoption a liability rather than an advantage.   Tune in for this sharp, candid pre-event conversation — and look for the full on-location Brand Spotlight recorded live at RSAC 2026 in San Francisco.  

Ep 279 Of the apps I've built with Claude Code, one of the most useful is a tool that summarizes Apple press releases… Local AI/LLM reasoning head-to-head This is wild. Qwen 3.5 running fully local on an iPhone 17 in AIRPLANE mode. No subscription. Nothing leaves your device. Introducing the Google Workspace CLI: built for humans and agents. Apple introduces a new video podcast experience on Apple Podcasts Open Broadcaster Software | OBS Commission proposes to open negotiations to extend EU Roaming to the Western Balkans This story is actually insane (DJI Romo) Predator spyware hooks iOS SpringBoard to hide mic, camera activity A GitHub Issue Title Compromised 4,000 Developer Machines Apple in 2025: The Six Colors report card iPhone and iPad approved to handle classified NATO information Apple introduces iPhone 17e Apple introduces the new MacBook Air with M5 Apple introduces MacBook Pro with all-new M5 Pro and M5 Max Apple unveils new Studio Display and all-new Studio Display XDR Apple debuts M5 Pro and M5 Max to supercharge the most demanding pro workflows Say hello to MacBook Neo Apple Does Not Include a Charger With All New MacBooks in UK and EU "We don't ship junk", August 2007 By any other name: A18 Pro is just as good a Mac chip as M4 for most The fact that people are hating on the MacBook Neo for not being able to edit multiple streams of 4K video is just a testament to how good the Neo is. MacBook Neo's Keyboard Can Be Replaced Individually in Major Change Apple Displays MSI's MPG 271KRAW16 is a First 5K Mini-LED Gaming Monitor I Tried the Perfect Apple Display XDR Alternative (Kuycon G32P) Samsung Unveils New Odyssey Gaming Monitor Lineup, Featuring World-First 6K 3D and Ultra-High-Resolution Displays Apple to celebrate 50 years of thinking different Should 1Password's Price Hike Push You to Apple's Passwords? - TidBITS Itsyhome – Control HomeKit and Home Assistant from your menu bar Zahvalnice Snimano 13.3.2026. Uvodna muzika by Vladimir Tošić, stari sajt je ovde. Logotip by Aleksandra Ilić. Artwork epizode by Saša Montiljo, njegov kutak na Devianartu

Chris, Andrew, and David welcome special guest Jeff Dickey (jdx), creator of mise, discussing his background rewriting the Heroku CLI from Ruby to Node due to Ruby distribution/sandboxing issues.  The conversation digs into why language CLIs are hard to distribute, the tradeoffs between shims vs PATH-based version switching, why tasks can be the “clean” solution, and Jeff's Rust-first tooling philosophy. They also dive into his other projects: usage (CLI docs/completions), Pitchfork (dev daemon runner that starts/stops services by directory), and fnox/Fort Knox (secrets management with encrypted files or remote stores like 1Password), and a big upcoming shift: pre-compiled (portable) Rubies becoming the default in mise. Press download now!LinksJudoscale- Remote Ruby listener giftJeff Dickey XJeff Dickey (jdx) Blueskymisefnox--usagePitchforkcommuniquéCasey Neistat: NYC's Worst Blizzard in a Decade, hour by hour (YouTube) Chris Oliver X/Twitter Andrew Mason X/Twitter Jason Charnes X/Twitter

Ever fancied becoming a digital detective?

The latest In Touch With iOS with Dave he is joined by Jill McKinley, Chuck Joiner,Eric Bolden, Marty Jencius. Vision Pro Beta 2 refines foveated rendering, iOS 26.4 betas roll out across platforms, and 1Password announces a significant price increase. We also cover Muppet Vision 3D on Vision Pro, Carrot Weather updates, Apple Sports expansion, Panasonic exiting TV manufacturing, Samsung's privacy display tech, and Ted Lasso Season 4 arriving in August. The show notes are at InTouchwithiOS.com  Direct Link to Audio  Links to our Show Give us a review on Apple Podcasts! CLICK HERE we would really appreciate it! Click this link Buy me a Coffee to support the show we would really appreciate it. intouchwithios.com/coffee  Another way to support the show is to become a Patreon member patreon.com/intouchwithios Website: In Touch With iOS YouTube Channel In Touch with iOS Magazine on Flipboard Facebook Page BlueSky Mastodon X Instagram Threads Summary In Episode 410 of In Touch With iOS, Dave Ginsburg is joined by Chuck Joiner, Marty Jencius, Jill McKinley, and Eric Bolden for a packed discussion covering the latest across the Apple ecosystem. We kick off with Apple Vision Pro updates, including Developer Beta 2 and refinements to foveated rendering designed to improve visual focus and battery efficiency. We also discuss visionOS 26.3.1 addressing flickering issues in the Apple TV app, and take a deeper dive into Apple's immersive environment design — including insights from the team behind Jupiter and other spatial backdrops. The return of Muppet Vision 3D to Vision Pro sparks nostalgic excitement, while iOS 26.4, iPadOS 26.4, macOS Tahoe 26.4, watchOS, and tvOS betas bring subtle but meaningful refinements — including subtitle customization, Apple Podcasts enhancements, Safari tab layout options, charge limits on MacBooks, and Rosetta deprecation warnings. We tackle the headline-grabbing 1Password price increase, discussing subscription fatigue, Apple Passwords vs. third-party managers, and the importance of digital security in today's environment. Additional topics include: • David Pogue's upcoming 50-year Apple history book • Acme Weather's debut from former Dark Sky creators • Carrot Weather updates and expanded data sources Topics and Links In Touch With Vision Pro this week.  visionOS 26.4 beta 2 available for Apple Vision Pro developers    visionOS 26.4 Beta 2 Release Notes    Apple Releases visionOS 26.3.1 to Fix Multiview Flicker Issue in Apple TV App Crafting the Cosmos: The Design Behind Apple Vision Pro's Environments Apple Vision Pro users will get to see Disney's 'Muppet*Vision 3D' in all its glory Beta this week.  Apple Seeds Second Betas of iOS 26.4 and iPadOS 26.4 to Developers  iOS 26.4 Beta Adds End-to-End Encryption for iPhone-to-Android RCS Texts Everything New in iOS 26.4 Beta 2 iOS 26.4 release date: Here's when to expect new iPhone features Apple Releases Second watchOS 26.4, tvOS 26.4 and visionOS 26.4 Betas tvOS 26.4: Three new changes are coming for Apple TV 4K iOS 26.3.1 Update for iPhones Coming Soon as 'Apple Experience' Nears In Touch With Mac this week Second macOS Tahoe 26.4 Beta Now Available for Developers Other Topics 1Password Getting More Expensive Starting in March  iOS 26 has made Apple Passwords the only password manager I need Here's how to switch from 1Password to Apple Passwords David Pogue shares first look at upcoming 'Apple: The First 50 Years' book Preorder David Pogue Book: https://amzn.to/4tWLQ4Y The creators of Dark Sky have a new weather app Meanwhile: Carrot Weather adds The Weather Channel data, new dynamic interface, more Steve Jobs Would Have Celebrated His 71st Birthday Today News Apple acquires startup specializing in AI-powered light and optics design tools 'Ted Lasso' Season 4 Release Date Revealed for August Premiere Apple Sports App Expands to More Countries and Leagues Panasonic, the former plasma king, will no longer make its own TVs Samsung's New S26 'Privacy Display' Will Make Third-Party Privacy Screens Obsolete Announcements Macstock X is here celebrating its 10th anniversary! With Three Full Days of expert-led Presentations and Workshops, Macstock's sessions are crammed full of productivity-enhancing content. NEW this year is a partnership with sponsor Ecamm. Ecamm Creator Camp: Mac Edition on July 9, 2026 there are only 100 tickets available for the bundle. There are 2 passes available: Macstock weekend pass July 10,11,12, 2026 or the Macstock Ecamm Bundle starting July 9 (only 100 tickets available)  Come join us. Register HERE Our Host Dave Ginsburg is an IT professional supporting Mac, iOS and Windows users and shares his wealth of knowledge of iPhone, iPad, Apple Watch, Apple TV and related technologies. Visit the YouTube channel https://youtube.com/intouchwithios follow him on Mastodon @daveg65, , BlueSky @daveg65  and the show @intouchwithios   Our Regular Contributors Jeff Gamet is a podcaster, technology blogger, artist, and author. Previously, he was The Mac Observer's managing editor, and Smile's TextExpander Evangelist. You can find him on Mastadon @jgamet Pixelfed @jgamet@pixelfed.social and Bluesky @jgamet.bsky.social‬ Podcasts The Context Machine Podcast  Retro Rewatch Retro Rewatch His YouTube channel https://youtube.com/jgamet Marty Jencius, Ph.D., is a professor of counselor education at Kent State University, where he researches, writes, and trains about using technology in teaching and mental health practice. His podcasts include Vision Pro Files, The Tech Savvy Professor and Circular Firing Squad Podcast. Find him at jencius@mastodon.social  https://thepodtalk.net  Eric Bolden is into macOS, plants, sci-fi, food, and is a rural internet supporter. You can connect with him by email at eabolden@mac.com, on Mastodon at @eabolden@techhub.social, on his blog, Trending At Work, and as co-host on The Vision ProFiles podcast.   Jill McKinley works in enterprise software, server administration, and IT A lifelong tech enthusiast, she started her career with Windows but is now an avid Apple fan. Beyond technology, she shares her insights on nature, faith, and personal growth through her podcasts—Buzz Blossom & Squeak, Start with Small Steps, and The Bible in Small Steps. Watch her content on YouTube at @startwithsmallsteps and follow her on X @schmern. Find all her work at http://jillfromthenorthwoods.com  Chuck Joiner is the host of MacVoices and hosts video podcasts with influential members of the Apple community. Make sure to visit macvoices.com and subscribe to his podcast. You can follow him on Twitter @chuckjoiner and join his MacVoices Facebook group. Guy Serle is one of the hosts of the new The Gmen Show along with GazMaz and email GMenshow@icloud.com  @MacParrot and @VertShark on X  Vertshark on YouTube, Google Voice +1 Area code  703-828-4677

Mon, 02 Mar 2026 22:15:00 GMT http://relay.fm/upgrade/605 http://relay.fm/upgrade/605 The 2026 March Experience Draft 605 Jason Snell and Myke Hurley Jason and Myke try to predict what Apple will be announcing this week, except for the stuff that was announced Monday. But they discuss the new iPad Air and iPhone 17e too! Also: Apple's F1 plans and some Report Card follow-up. Jason and Myke try to predict what Apple will be announcing this week, except for the stuff that was announced Monday. But they discuss the new iPad Air and iPhone 17e too! Also: Apple's F1 plans and some Report Card follow-up. clean 6262 Jason and Myke try to predict what Apple will be announcing this week, except for the stuff that was announced Monday. But they discuss the new iPad Air and iPhone 17e too! Also: Apple's F1 plans and some Report Card follow-up. This episode of Upgrade is sponsored by: Sentry: Mobile crash reporting and app monitoring. New users get $100 in Sentry credits with code upgrade26. Fitbod: Get stronger, faster with a fitness plan that fits you. Get 25% off your membership. Squarespace: Save 10% off your first purchase of a website or domain using code UPGRADE. Factor: Healthy, fully-prepared food delivered to your door. Use code upgrade50off Links and Show Notes: Get Upgrade+. More content, no ads. Submit Feedback Blackberry Preserves – Bonne Maman USA Strawberry Preserves – Bonne Maman USA Charting the vibes in the 2025 Apple Report Card – Six Colors The Talk Show ✪: Ep. 442, With Jason Snell Apple accelerates U.S. manufacturing with Mac mini production - Apple Inside Apple's Multibillion-Dollar Push to Make Chips in the U.S. | WSJ - YouTube ATP 680: A Lot of Holes in That Cheese — Accidental Tech Podcast Apple announces F1 details, and a surprising Netflix partnership – Six Colors Apple introduces iPhone 17e - Apple Apple introduces the new iPad Air, powered by M4 - Apple Upgrade Scorecards The Upgrade Draft Tee Internal Tech Email: "Phil Schiller forwards a Six Colors report card to other Apple execs, highlighting App Store/developer comments" 1Password is going up in price | The Verge

Mon, 02 Mar 2026 22:15:00 GMT http://relay.fm/upgrade/605 http://relay.fm/upgrade/605 Jason Snell and Myke Hurley Jason and Myke try to predict what Apple will be announcing this week, except for the stuff that was announced Monday. But they discuss the new iPad Air and iPhone 17e too! Also: Apple's F1 plans and some Report Card follow-up. Jason and Myke try to predict what Apple will be announcing this week, except for the stuff that was announced Monday. But they discuss the new iPad Air and iPhone 17e too! Also: Apple's F1 plans and some Report Card follow-up. clean 6262 Jason and Myke try to predict what Apple will be announcing this week, except for the stuff that was announced Monday. But they discuss the new iPad Air and iPhone 17e too! Also: Apple's F1 plans and some Report Card follow-up. This episode of Upgrade is sponsored by: Sentry: Mobile crash reporting and app monitoring. New users get $100 in Sentry credits with code upgrade26. Fitbod: Get stronger, faster with a fitness plan that fits you. Get 25% off your membership. Squarespace: Save 10% off your first purchase of a website or domain using code UPGRADE. Factor: Healthy, fully-prepared food delivered to your door. Use code upgrade50off Links and Show Notes: Get Upgrade+. More content, no ads. Submit Feedback Blackberry Preserves – Bonne Maman USA Strawberry Preserves – Bonne Maman USA Charting the vibes in the 2025 Apple Report Card – Six Colors The Talk Show ✪: Ep. 442, With Jason Snell Apple accelerates U.S. manufacturing with Mac mini production - Apple Inside Apple's Multibillion-Dollar Push to Make Chips in the U.S. | WSJ - YouTube ATP 680: A Lot of Holes in That Cheese — Accidental Tech Podcast Apple announces F1 details, and a surprising Netflix partnership – Six Colors Apple introduces iPhone 17e - Apple Apple introduces the new iPad Air, powered by M4 - Apple Upgrade Scorecards The Upgrade Draft Tee Internal Tech Email: "Phil Schiller forwards a Six Colors report card to other Apple execs, highlighting App Store/developer comments" 1Password is going up in price | The Verge

A recap of iOS 26.4 Beta 2, the upcoming touchscreen MacBook Pro, Jeff and Fernando are impressed by the Samsung Galaxy S26 Ultra's new Privacy Display feature, 1Password vs. Apple Passwords, and the subscriptions we can't live without. 9to5Mac Overtime is a weekly video-first podcast exploring fun and interesting observations in the Apple ecosystem, featuring 9to5Mac's Fernando Silva & Jeff Benjamin. Subscribe to Overtime via Apple Podcasts and our YouTube channel for more. Hosts Fernando Silva Jeff Benjamin Links iOS 26.4 Beta 2 changes and features The touch screen MacBook Pro [Video] 1Password price hike Subscribe 9to5Mac Overtime on Apple Podcasts 9to5Mac on YouTube 9to5Mac on YouTube membership with bonus perks

Cette semaine : Phil Spencer quitte la division Xbox, Resident Evil Requiem, Steam Next Fest : Outbound, Subliminal, Stunt Paradise 2, Funcom et son rollback des enfers sur Dune Awakening, Windows Firewall Control (WFC), 1Password augmente ses prix, Metal Scar Radio - Zeroth Directive #1 et Zeroth Directive #2, Nvidia prend les brouzoufs, et Samsung Galaxy S26 Ultra. Lisez plutôt Torréfaction #363 : Resident Evil Requiem, Steam Next Fest, Funcom fait nimp avec Dune: Awakening, Samsung Galaxy S26 Ultra, and MOAR avec sa vraie mise en page sur Geekzone. Pensez à vos rétines.

Samsung Galaxy S26 event with new Privacy Display features on the Ultra, will AI finally be able to order DoorDash, Anthropic's Pentagon negotiations, Perplexity Computer announces, Sonos trying to fix its app, and our MAc backup “strategies.”Ad-Free + Bonus EpisodesShow Notes via EmailCreative Effort - Jason's PodcastWatch on YouTube!Join the CommunityEmail Us: podcast@primarytech.fm@stephenrobles on Threads@jasonaten on Threads------------------------------Sponsors:Shopify: Sign up for your one-dollar-per-month trial and start selling today at: shopify.com/primary1Password: Secure your small business with 1Password. Learn more at: 1password.com/primarytech------------------------------Links from the showToyota Customer ServiceApple rolls out age-verification tools worldwide to comply with growing web of child safety laws | TechCrunchSamsung Galaxy S26/Ultra Impressions: 1 Crazy Display Feature! - YouTubeGoogle Gemini can book an Uber or order food for you with new agentic AI features | The VergeAcme WeatherInside Anthropic's existential negotiations with the Pentagon | The VergeWhen Perplexity's Comet AI browser will come to iPhonePerplexity may have built a better OpenClaw | The Deep View Apple Can't Ignore This Anymore - YouTubeYouTube beefs up its $7.99/month Lite subscription with offline downloads and background play | TechCrunch1Password is going up in price | The VergeDJI sues over the FCC's decision to block new drone imports | The VergeSonos plans to fix its biggest iOS hurdle with a new Live Activities feature - 9to5MacParachute Backup– Backup Utility for iCloud Drive and iCloud Photos ★ Support this podcast ★

- Risiko Taiwan: Ist die Inselrepublik Apples Single Point of Failure? - Veröffentlichung nach 7 Monaten: Was will uns Apple mit seinem KI-Workshop sagen? - Dynamic Island am Mac? Touchscreen-MacBook soll noch 2026 kommen - Gut abgeschottet: Seltener Einblick in Apples Sicherheitsvorkehrungen in Zuliefererfabriken - 1Password erhöht die Preise: Sündhaft teuer oder alternativlos günstig? - Umfrage der Woche - Zuschriften unserer Hörer === Anzeige / Sponsorenhinweis === Sichere dir 4 EXTRA-Monate auf einen 2-Jahresplan über https://nordvpn.com/apfelfunk Teste NordVPN jetzt risikofrei mit der 30 Tage Geld-Zurück-Garantie. === Anzeige / Sponsorenhinweis Ende === Links zur Sendung: - Apfelfunk News: Tim Cook besorgt nach CIA-Briefing zu Taiwan-Invasionsszenario - https://apfelfunk.com/tim-cook-besorgt-nach-cia-briefing-zu-taiwan-invasionsszenario/ - Apfelfunk News: Apple veröffentlicht Videos von KI-Workshop - https://apfelfunk.com/apple-veroeffentlicht-videos-von-ki-workshop-zu-reasoning-und-planning/ - Mac & i: Touchscreen-MacBook Pro mit OLED noch in diesem Jahr - https://www.heise.de/news/Bericht-Touchscreen-MacBook-Pro-mit-OLED-noch-in-diesem-Jahr-11188945.html - Apfelfunk News: Apples strenge Sicherheitsprotokolle verhindern Leaks aus iPhone-Montagewerken - https://apfelfunk.com/apples-strenge-sicherheitsprotokolle-verhindern-leaks-aus-iphone-montagewerken/ - Mac & i: 1Password erhöht Abopreise deutlich - https://www.heise.de/news/1Password-erhoeht-Abopreise-deutlich-11188959.html Kapitelmarken: (00:00:00) Begrüßung (00:17:21) Werbung (00:21:06) Apfelfunk am Hörer (00:22:31) Themen (00:23:22) Risiko Taiwan: Ist die Inselrepublik Apples Single Point of Failure? (00:39:14) Veröffentlichung nach 7 Monaten: Was will uns Apple mit seinem KI-Workshop sagen? (00:48:50) Dynamic Island am Mac? Touchscreen-MacBook soll noch 2026 kommen (01:08:21) Gut abgeschottet: Seltener Einblick in Apples Sicherheitsvorkehrungen in Zuliefererfabriken (01:13:44) 1Password erhöht die Preise: Sündhaft teuer oder alternativlos günstig? (01:27:24) Umfrage der Woche (01:35:16) Zuschriften unserer Hörer

From generating passkeys and payment autofill to dark web monitoring, today's password managers aren't what you remember. Paul Thurrott breaks down the must-have features and surprising pitfalls for anyone using Windows 11. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: bitwarden.com/twit

New Apple hardware coming at March 4 “experience,” Apple Podcasts adding video in iOS 26.4 is more complicated then you think, Google I/O announced, RAM is becoming a real problem, and Amazon Ring may track more than just lost dogs.Ad-Free + Bonus EpisodesShow Notes via EmailCreative Effort - Jason's PodcastWatch on YouTube!Join the CommunityEmail Us: podcast@primarytech.fm@stephenrobles on Threads@jasonaten on Threads------------------------------Sponsors:Transistor.fm: The best podcast host, get 20% OFF your first year of hosting at: transistor.fm/beardfmFramer: Start creating for free at framer.com/primary and get 30% OFF an annual Pro plan1Password: Secure your small business with 1Password. Learn more at: 1password.com/primarytech------------------------------Links from the showStephen's Video on Apple Podcasts iOS 26.4 VideoApple Event on March 4: Here's What to Expect - MacRumorsApple Music in iOS 26.4: Five new features coming to iPhone - 9to5MaciOS 26.4 Brings CarPlay Support for ChatGPT, Claude and Gemini - MacRumorstvOS 26.4 adds new 'Continuous Audio Connection' on Apple TV - 9to5MacApple starts testing end-to-end encrypted RCS messages on iPhone | The VergeApple introduces a new video podcast experience on Apple Podcasts - AppleHow to publish video on Apple Podcasts - Apple Podcasts for CreatorsPodcast hosting providers - Apple Podcasts for CreatorsGoogle I/O 2026 set for May 19-20Google's AI music maker is coming to the Gemini app | The VergeGoogle Pixel 10A Impressions: (Never) Seen This Before - YouTubeExclusive: OpenAI Has Poached Instagram's Celebrity Whisperer | Vanity FairOpenClaw founder Peter Steinberger is joining OpenAI | The VergeThe RAM shortage is coming for everything you care about | The VergeRing cancels Flock deal after dystopian Super Bowl ad prompts mass outrage - Ars TechnicaRing's AI-powered Search Party won't stop at finding lost dogs, leaked email shows | The VergeWarner Bros. Discovery Sets Special Meeting Date of March 20, 2026, and Unanimously Recommends Shareholders Vote FOR Netflix Merger; Warner Bros. Discovery to Initiate Discussions with Paramount Skydance for Their Best and Final OfferUniFi Travel Router - Ubiquiti Store Stephen Colbert says CBS banned him from airing this James Talarico interview | The VergeAirport Codes: The Accidental System - YouTubeRep. James Talarico On Confronting Christian Nationalism, And Strange Days In The Texas Legislature - YouTube ★ Support this podcast ★

From generating passkeys and payment autofill to dark web monitoring, today's password managers aren't what you remember. Paul Thurrott breaks down the must-have features and surprising pitfalls for anyone using Windows 11. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: bitwarden.com/twit

How can you help your loved ones navigate and securely adopt AI tools ? Will Gardner, CEO of Childnet joins the show for a vital conversation about helping families use AI safely. We talk about Childnet's latest research and the practical ways you can become a digital role model and start better AI conversations at home.

Ken Johnson and Seth Law examine the intensifying pressure on security practitioners as AI-driven development causes an unprecedented acceleration in industry velocity. A primary theme is the emergence of "shadow AI," where developers utilize unauthorized AI coding assistants and personal agents, introducing significant data classification risks and supply chain vulnerabilities. The discussion dives into technical concepts like AI agent "skills"—markdown files providing specialized directions—and the corresponding security risks found in new skill registries, such as malicious tools designed to exfiltrate credentials and crypto assets. The hosts also review 1Password's SCAM (Security Comprehension Awareness Measure), highlighting broad performance gaps in an AI's ability to detect phishing, with some models failing up to 65% of the time. To manage these unpredictable systems, the hosts advocate for a shift toward high-level validation roles, emphasizing the need for Subject Matter Expertise to combat "reasoning drift" and maintain safety through test-driven development and periodic "checkpoints". Ultimately, they conclude that while AI can simulate expertise, human oversight remains vital to secure the probabilistic nature of modern agentic workflows.

Sue Serna - Social Media Security and Governance Leader and Lover of All BeaglesNo Password Required Season 7: Episode 2 - Sue SernaSue Serna is the CEO and Founder of Serna Social and the former head of global social media at Cargill. She brings more than two decades of experience at the intersection of storytelling, strategy, and security.In this episode, she shares her journey from business reporter to leading her own consultancy serving companies around the world on social media strategy.Jack Clabby of Carlton Fields, P.A, joined by guest co-host Rex Wilson of Cyber Florida, welcomes Sue for a candid discussion about the realities of enterprise social media. From managing more than 150 Facebook pages for a single company, to navigating internal politics, agency relationships, and regulatory pressure, Sue explains why social media is far from “free” and why most organizations still under-resource it.Sue dives deep into the gap between social media teams and cybersecurity departments. She outlines how personal account compromises can escalate into enterprise-level incidents, why governance frameworks matter, and how large organizations can regain control of sprawling digital footprints. Drawing from real-world examples, she argues that social media must be treated like finance or HR, a core business function requiring structure, ownership, and accountability.The episode wraps with the Lifestyle Polygraph, where Sue reveals her love of Apollo-era space history, debates iconic Philadelphia traditions, and imagines what magical talent her beagle would bring to Hogwarts.Follow Sue at SernaSocial.com or connect with her on LinkedIn: https://www.linkedin.com/in/sueserna/ Chapters: 00:00 Introduction and First Impressions   02:45 The Evolving Role of Social Media in Corporations   04:58 Transitioning from Journalism to Social Media  11:11 Building Social Media from Scratch   13:00 Becoming a CEO and Founder   16:28 The Importance of Networking   16:54 Bridging the Gap Between Social Media and Cybersecurity  20:51 Real-World Social Media Security Incidents  28:35 Navigating Internal Conflicts in Social Media  30:32 The Lifestyle Polygraph Begins   31:17 Nerd Things That Expose Sue: Space and Harry Potter!  35:16 Sue's Love For Beagles  37:50 Wreckless Intern or Overconfident Executive?  40:42 Hogwarts and Magical Beagles 

Forget the built-in Windows tools—Paul shares why third-party password managers are the secret to making passkeys smarter, more powerful, and truly universal across all your devices. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: canary.tools/twit - use code: TWIT

Forget the built-in Windows tools—Paul shares why third-party password managers are the secret to making passkeys smarter, more powerful, and truly universal across all your devices. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: canary.tools/twit - use code: TWIT

A PwC survey of over 4,400 CEOs across 105 countries found that 56% report artificial intelligence has not delivered meaningful revenue growth or cost savings in the past year. Only one in eight organizations saw both benefits. The core issue, as highlighted by Dave Sobel, lies in poor integration—largely due to data quality challenges and legacy systems—leaving many businesses stuck in what PwC terms “experimentation purgatory.” Despite significant investment, AI infrastructure is often failing to produce measurable returns.This lack of operational discipline is mirrored by the rising incident of AI bots, which now account for 1 out of every 50 website visits, a sixfold increase from earlier reports. AI is successfully extracting value from enterprise infrastructure through sophisticated scraping, as companies pay for tools that return little and simultaneously fund infrastructure serving AI bots. The operational cost and exposure from bot traffic and ineffective AI tool adoption highlight the disconnect between hype and practical benefit.Adjacent stories expand on the governance gap and evolving expectations around risk. The U.S. and China declined to sign a non-binding declaration on military AI, underlining global regulatory fragmentation. In contrast, the Cybersecurity and Infrastructure Security Agency (CISA) issued a binding directive for federal civilian agencies to remove unsupported devices within a year, signaling substantial operational risk from end-of-life technology. These regulatory movements are expected to drive similar risk accountability into the private sector, primarily through insurance requirements.For MSPs and IT service providers, the takeaway is not to chase AI-powered offerings but to prioritize readiness, control, and cost accountability. Vendor partner programs (Cisco and 1Password) reward lifecycle management and customer retention, not AI sales. The practical competitive advantage is operational honesty—delivering realistic assessments, proactive client interactions, and transparent guidance. Automation should fund genuine client relationship activities, not replace them. The focus should remain on safeguarding operational integrity, controlling technology risk, and building customer success capability.Four things to know today:00:00 PwC Survey Finds Most Business Leaders Still Waiting for AI Payoff05:00 Federal Agencies Ordered to Eliminate End-of-Life Devices Over Cyber Threats08:06 Cisco and 1Password Launch Partner Programs Focused on Customer Success10:52 Harvard Business Review Says Human Touch Remains Critical Advantage Over AIThis is the Business of Tech.   Supported by:  Small Biz Thought Community 

Curious about the reality behind Microsoft's passkey promise? Find out how Windows 11's latest update makes your logins both safer and simpler across all your devices, and why Paul Thurrott thinks you shouldn't rely on the default options. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: threatlocker.com/twit

It's a brand new season of Random but Memorable — and we're kicking things off with practical security for the people you care about most.

Join us LIVE on Mondays, 4:30pm EST.A weekly Podcast with BHIS and Friends. We discuss notable Infosec, and infosec-adjacent news stories gathered by our community news team.https://www.youtube.com/@BlackHillsInformationSecurityChat with us on Discord! - https://discord.gg/bhis

Escalating distrust in identity systems and misuse of AI are forcing a shift in security accountability for small and midsize businesses. Recent analysis highlights that the prevalence of deepfake-driven business email compromise and non-human digital identities is eroding confidence in traditional protective solutions. According to Techyle and supporting reports referenced by Dave Sobel, the ratio of non-human to human identities in organizations is now 144:1, further complicating authority and responsibility for managed service providers (MSPs). As trust in exclusive third-party control disintegrates, co-managed security models are becoming standard, repositioning decision-making and liability.The rise of AI-generated data—described as “AI slop”—has prompted increased adoption of zero trust models, with 84% of CIOs reportedly increasing funding for generative AI initiatives. However, as rogue AI agents are recognized as a significant insider threat, current security services are often ill-equipped to manage these new vulnerabilities. Regulatory bodies, including CISA, have issued guidance noting that the integration of AI into critical infrastructure introduces greater risk of outages and security breaches, particularly when governance remains ambiguous. High-profile vulnerabilities in open-source AI platforms used within cloud environments further highlight the persistence of operational risks.Adjacent technology updates include new releases from vendors such as 1Password, WatchGuard, JumpCloud, and ControlUp. These offerings focus on enhancing phishing prevention, expanding managed detection and response, and automating endpoint management for MSPs. However, Dave Sobel emphasizes that these tools introduce additional layers of automation and integration without adequately clarifying who ultimately holds authority and accountability when failures or breaches occur. There is a consistent warning that stacking solutions or outsourcing core functions without redefining operational control creates gaps between action and oversight.For MSPs and IT leaders, the key takeaway is that security risk is no longer defined by missing technology but by unclear governance, undefined authority, and misaligned incentives. Without explicit contractual and operational delineation of responsibility when deploying AI and automation, service providers are increasingly exposed to liability by default. The advice is to move beyond tool-centric strategies and focus on process clarity: define who authorizes, audits, and terminates non-human identities; establish which parties approve automation actions; and ensure clients understand shared responsibilities to mitigate silent risk accumulation. Four things to know today00:00 TechAisle Warns SMB Security Will Shift in 2026 as Identity Attacks and AI Agents Redefine Risk05:44 AI Moves Deeper Into Critical Infrastructure as Open-Source and Human Weaknesses Expand the Attack Surface09:35 MSP Security Platforms Automate Phishing Prevention and MDR—Outpacing Governance and Control Models12:12 AI-Powered MSP Tools Promise Control and Efficiency, But Shift Responsibility by Default This is the Business of Tech.    Supported by:  https://scalepad.com/dave/