POPULARITY
23 episodes with ai security
16 episodes with ai security
11 episodes with ai security
12 episodes with ai security
10 episodes with ai security
7 episodes with ai security
13 episodes with ai security
7 episodes with ai security
5 episodes with ai security
6 episodes with ai security
4 episodes with ai security
4 episodes with ai security
5 episodes with ai security
3 episodes with ai security
4 episodes with ai security
3 episodes with ai security
4 episodes with ai security
3 episodes with ai security
Mozilla found 271 unknown Firefox vulnerabilities in days using AI—bugs that millions of automated test runs had missed for years. Steve Gibson argues this isn't a crisis. It's the industry finally paying down decades of security debt, and for the first time, defenders may have the advantage. Cisco meets Mythos Can the aging CVE system survive AI Patch deployment latency in the AI age MSFT's official YellowKey BitLocker bypass mitigation Ubiquiti patches 5 serious vulnerabilities Drupal attacked by a PostgreSQL injection Microsoft terminates SMS as a second factor GitHub hacked - all of its source code exfiltrated Russia is using very old Western software Why to get a no-charge AI chatbot account New Sci-Fi on Netflix What we learn from Mozilla's use of Mythos Show Notes - https://www.grc.com/sn/SN-1080-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: guardsquare.com doppel.com cyberhoot.com/securitynow trustedtech.team/securitynow365 XBOW.com
Mozilla found 271 unknown Firefox vulnerabilities in days using AI—bugs that millions of automated test runs had missed for years. Steve Gibson argues this isn't a crisis. It's the industry finally paying down decades of security debt, and for the first time, defenders may have the advantage. Cisco meets Mythos Can the aging CVE system survive AI Patch deployment latency in the AI age MSFT's official YellowKey BitLocker bypass mitigation Ubiquiti patches 5 serious vulnerabilities Drupal attacked by a PostgreSQL injection Microsoft terminates SMS as a second factor GitHub hacked - all of its source code exfiltrated Russia is using very old Western software Why to get a no-charge AI chatbot account New Sci-Fi on Netflix What we learn from Mozilla's use of Mythos Show Notes - https://www.grc.com/sn/SN-1080-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: guardsquare.com doppel.com cyberhoot.com/securitynow trustedtech.team/securitynow365 XBOW.com
Mozilla found 271 unknown Firefox vulnerabilities in days using AI—bugs that millions of automated test runs had missed for years. Steve Gibson argues this isn't a crisis. It's the industry finally paying down decades of security debt, and for the first time, defenders may have the advantage. Cisco meets Mythos Can the aging CVE system survive AI Patch deployment latency in the AI age MSFT's official YellowKey BitLocker bypass mitigation Ubiquiti patches 5 serious vulnerabilities Drupal attacked by a PostgreSQL injection Microsoft terminates SMS as a second factor GitHub hacked - all of its source code exfiltrated Russia is using very old Western software Why to get a no-charge AI chatbot account New Sci-Fi on Netflix What we learn from Mozilla's use of Mythos Show Notes - https://www.grc.com/sn/SN-1080-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: guardsquare.com doppel.com cyberhoot.com/securitynow trustedtech.team/securitynow365 XBOW.com
Mozilla found 271 unknown Firefox vulnerabilities in days using AI—bugs that millions of automated test runs had missed for years. Steve Gibson argues this isn't a crisis. It's the industry finally paying down decades of security debt, and for the first time, defenders may have the advantage. Cisco meets Mythos Can the aging CVE system survive AI Patch deployment latency in the AI age MSFT's official YellowKey BitLocker bypass mitigation Ubiquiti patches 5 serious vulnerabilities Drupal attacked by a PostgreSQL injection Microsoft terminates SMS as a second factor GitHub hacked - all of its source code exfiltrated Russia is using very old Western software Why to get a no-charge AI chatbot account New Sci-Fi on Netflix What we learn from Mozilla's use of Mythos Show Notes - https://www.grc.com/sn/SN-1080-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: guardsquare.com doppel.com cyberhoot.com/securitynow trustedtech.team/securitynow365 XBOW.com
Mozilla found 271 unknown Firefox vulnerabilities in days using AI—bugs that millions of automated test runs had missed for years. Steve Gibson argues this isn't a crisis. It's the industry finally paying down decades of security debt, and for the first time, defenders may have the advantage. Cisco meets Mythos Can the aging CVE system survive AI Patch deployment latency in the AI age MSFT's official YellowKey BitLocker bypass mitigation Ubiquiti patches 5 serious vulnerabilities Drupal attacked by a PostgreSQL injection Microsoft terminates SMS as a second factor GitHub hacked - all of its source code exfiltrated Russia is using very old Western software Why to get a no-charge AI chatbot account New Sci-Fi on Netflix What we learn from Mozilla's use of Mythos Show Notes - https://www.grc.com/sn/SN-1080-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: guardsquare.com doppel.com cyberhoot.com/securitynow trustedtech.team/securitynow365 XBOW.com
Third-Party Risk Management (TPRM) has historically been a tedious, 200-page paper exercise that felt like being catapulted back to 1979. But AI is changing that.In this episode, Ashish sits down with Igor Andriushchenko (CISO at Lovable) and Jasper Mills (CEO of Ethira) to discuss the collision of TPRM and AI.We dive into the hidden risks of Shadow AI, exploring the chaos that ensues when non-technical teams spin up unauthorized AI tools without security oversight. Jasper and Igor explain why the future of vendor risk involves treating AI agents like a contracted workforce, managing their lifecycles, and preparing for the 2027 era of "agent-to-agent" negotiations where humans are entirely removed from the loop.We also cover the impact of DORA (Digital Operational Resilience Act) regulations, the Build vs. Buy debate for AI security tooling, and how to use autonomous agents to finally automate tedious vendor questionnaires.Guest Socials - Igor's Linkedin + Jasper LinkedinPodcast Twitter - @CloudSecPod If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:-Cloud Security Podcast- Youtube- Cloud Security Newsletter If you are interested in AI Security, you can check out our sister podcast - AI Security PodcastQuestions asked:(00:00) Introduction(02:00) Jasper and Igor's Backgrounds (Athira and Lovable) (04:00) Why Traditional Third-Party Risk Management is Abysmal (06:20) DORA Regulations and the Collision of AI and Compliance (11:30) Using AI to Automate Vendor Assessments and Questionnaires (16:30) The Build vs. Buy Debate for AI TPRM Tools (22:30) Shadow AI: "Giving a Kindergarten a Nuclear Bomb" (25:30) Using AI Agents for Automated Vendor Discovery and Inventory (28:30) 2027: The Future of Agent-to-Agent Negotiations (30:40) Treating AI Agents Like a Contracted Workforce (34:10) Enforcing Contractual Accountability through AI Guardrails
Brief SummaryBitcoin is trading around $75.5K this morning after sliding toward key $75K support.Ethereum is below $2,100 and remains weaker than Bitcoin on a relative basis.Bitcoin has fallen to 13th among global assets, with capital rotating toward AI, semiconductors, gold, and other non-crypto trades.Traders are moving defensively into stablecoins, with USDT and USDC dominance rising.SoFi launched SoFiUSD to nearly 15 million members, making it one of the first U.S. national banks to offer a stablecoin directly inside a banking app.A large holder reportedly sold about $1.29 billion worth of BlackRock's Bitcoin ETF in a dark-pool trade.IREN signed a $1.6 billion Dell agreement to expand AI cloud infrastructure, showing how crypto infrastructure companies are chasing AI demand.Coinbase's Base launched Base MCP, allowing AI tools like ChatGPT, Claude, and Cursor to interact with wallets and DeFi apps.Crypto PACs spent about $9 million in Texas and scored wins in both parties.The U.K. sanctioned HTX and Russia-linked crypto networks as part of a broader crackdown on sanctions evasion.Singapore charged former Hodlnaut CEO Zhu Juntao with six fraud counts tied to TerraUSD exposure claims.OpenZeppelin's CEO warned that AI coding agents have made DeFi increasingly unsafe because attackers can find vulnerabilities faster than defenders can patch them.XRP remains range-bound near $1.32 to $1.33 after a failed breakout.The stablecoin market remains above $300 billion and is becoming one of the biggest battlegrounds between banks, fintechs, crypto exchanges, and regulators. Hosted on Acast. See acast.com/privacy for more information.
Mozilla found 271 unknown Firefox vulnerabilities in days using AI—bugs that millions of automated test runs had missed for years. Steve Gibson argues this isn't a crisis. It's the industry finally paying down decades of security debt, and for the first time, defenders may have the advantage. Cisco meets Mythos Can the aging CVE system survive AI Patch deployment latency in the AI age MSFT's official YellowKey BitLocker bypass mitigation Ubiquiti patches 5 serious vulnerabilities Drupal attacked by a PostgreSQL injection Microsoft terminates SMS as a second factor GitHub hacked - all of its source code exfiltrated Russia is using very old Western software Why to get a no-charge AI chatbot account New Sci-Fi on Netflix What we learn from Mozilla's use of Mythos Show Notes - https://www.grc.com/sn/SN-1080-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: guardsquare.com doppel.com cyberhoot.com/securitynow trustedtech.team/securitynow365 XBOW.com
SummaryIn this episode of the Blue Security Podcast, hosts Andy Jaw and Adam Brewer discuss two significant topics: Agent 365, a new dashboard for monitoring AI agents in the Microsoft ecosystem, and MDash, a multi-model vulnerability scanner. They explore the importance of visibility and control over AI agents, the innovative licensing model for Agent 365, and the multi-model approach of MDash that enhances vulnerability detection. The conversation emphasizes the evolving landscape of cybersecurity and the need for organizations to adapt to new technologies and methodologies.----------------------------------------------------YouTube Video Link: https://youtu.be/BIqPhIkRFwg----------------------------------------------------Documentation: https://www.microsoft.com/en-us/security/blog/2026/05/01/microsoft-agent-365-now-generally-available-expands-capabilities-and-integrations/https://www.microsoft.com/en-us/security/blog/2026/05/12/defense-at-ai-speed-microsofts-new-multi-model-agentic-security-system-tops-leading-industry-benchmark/https://www.microsoft.com/en-us/msrc/blog/2026/05/a-note-on-patch-tuesday----------------------------------------------------Contact Us:Website: https://bluesecuritypod.comBluesky: https://bsky.app/profile/bluesecuritypod.comLinkedIn: https://www.linkedin.com/company/bluesecpodYouTube: https://www.youtube.com/c/BlueSecurityPodcast-----------------------------------------------------------Andy JawBluesky: https://bsky.app/profile/ajawzero.comLinkedIn: https://www.linkedin.com/in/andyjaw/Email: andy@bluesecuritypod.com----------------------------------------------------Adam BrewerTwitter: https://twitter.com/ajbrewerLinkedIn: https://www.linkedin.com/in/adamjbrewer/Email: adam@bluesecuritypod.com
What happens when the cybersecurity industry stops debating whether agentic AI is a future problem and starts treating it as a present-day reality? In this episode of Tech Talks Daily, I sit down with Tim Freestone to unpack the biggest shift coming out of this year's RSA Conference. After attending RSA for more than two decades, Tim describes 2026 as the year the energy returned to the cybersecurity world, driven by one unavoidable topic: agentic AI. We explore why the conversation has rapidly evolved from curiosity to urgency, and why organizations are suddenly confronting an uncomfortable truth. AI agents are already operating inside businesses, often without visibility, governance, or control. Tim explains how shadow AI is spreading faster than many leadership teams realize, with employees experimenting with autonomous tools that connect directly to company data and external AI models. Our conversation also looks at the growing gap between visibility and control. Security teams may be discovering agents across their networks, but stopping risky behavior is an entirely different challenge. Tim argues that companies focusing purely on infrastructure are already falling behind, and that the real battleground is now the data layer itself. We discuss why data governance, audit trails, and access controls are becoming central to the future of cybersecurity strategy. Tim also shares his thoughts on state-sponsored AI threats, the rise of autonomous espionage operations, and why open-source AI models present a completely new level of risk for defenders. At the same time, he offers practical advice for IT and security leaders trying to figure out where to start amid the noise, complexity, and endless flood of new tools entering the market. If your organization is trying to understand how AI changes cybersecurity, governance, compliance, and risk management, this conversation offers a clear look at what security leaders are actually worried about right now, and why the next 12 months may redefine how companies think about protecting data altogether. Useful Links Connect with Tim Freestone Learn More About Kiteworks Data Security and Risk Report Kiteworks Substack Kiteworks LinkedIn Newsletter Please check the partners of the Tech Tech Talks Network Learn more about the NordLayer Browser Visit Denodo.com
Agentic AI was the theme that pulled away from the pack at RSAC Conference 2026. Tony Anscombe of ESET makes the case that once AI shifts from being directed by humans to operating with its own objectives and logic, the security surface changes with it, and organizations are being forced to rethink what they protect and how. At the show, ESET announced two products that meet that moment head on. The ESET AI Skills Checker is a free-to-use tool coming to market. ESET AI Protection looks inside AI sessions on the endpoint, flagging sensitive data leakage, malicious links returned by AI systems, and suspicious behavior, and surfacing it all inside normal cybersecurity operations for investigation, blocking, or detection. Tony closes with a reminder worth keeping. His first RSA was in 1998, and the technology he worked on then (sandboxing, dynamic code, remote windowing, encryption, authentication) mirrors a lot of what walks the RSAC Conference floor today. The packaging evolves, the core principles do not. Build forward, but do not lose sight of what the past already proved. This is a Brand Highlight. A Brand Highlight is a ~5 minute introductory conversation designed to put a spotlight on the guest and their company. Learn more: https://www.studioc60.com/creation#highlight GUEST Tony Anscombe, Chief Security Evangelist, ESET LinkedIn: https://www.linkedin.com/in/tonyanscombe/ RESOURCES Learn more about ESET: https://www.eset.com ESET AI Skills Checker and ESET AI Protection: https://www.eset.com Are you interested in telling your story? ▶︎ Full Length Brand Story: https://www.studioc60.com/content-creation#full ▶︎ Brand Spotlight Story: https://www.studioc60.com/content-creation#spotlight ▶︎ Brand Highlight Story: https://www.studioc60.com/content-creation#highlight KEYWORDS Tony Anscombe, ESET, Sean Martin, brand story, brand marketing, marketing podcast, brand highlight, agentic AI, AI security, RSAC Conference 2026, threat intelligence, MDR, EDR, endpoint security, AI Skills Checker, AI Protection, cybersecurity community, multifactor authentication, cybersecurity evolution Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.
President Donald Trump said he would postpone the release of an executive order that would set up a 90-day testing and vetting regime for frontier AI models, hours before the White House was set to publicly announce the signing. Speaking to reporters in the Oval Office Thursday, Trump said he opted to delay the order “because I didn't like certain aspects of it” and expressed concerns that it could harm U.S. AI industry competition with countries like China. According to multiple sources, a draft version of the order circulating in the last 24 hours would have set up a voluntary testing regime between the U.S. federal government and frontier AI companies that would allow the government to study new models for 90 days before they're publicly released. In addition to the government, the draft order would also facilitate access to the models for cybersecurity testers in critical infrastructure sectors, like finance and healthcare.
In this episode, Pooja Ranjan interviews Kevin Jones, a leader at Edge and Node and creator of 1Claw - an innovative infrastructure platform designed to secure AI agents and manage secrets. They explore the critical vulnerabilities in AI workflows, how 1Claw addresses these risks, and the future of AI security in decentralized ecosystems.
Dashlane's CTO pulls back the curtain on how password managers are actually using AI, why it's more complicated than hype suggests, and what the rise of AI-powered code review means for the next wave of digital security. Nvidia Rides Blistering Chip Sales to Another Record Quarter Mind-Blowing Growth Is About to Propel Anthropic Into Its First Profitable Quarter SpaceX Filing Starts Countdown to Massive IPO Gemini 3.5 Flash: more expensive, but Google plan to use it for everything Google's Gemini Spark is an agentic AI assistant - Engadget Anthropic's Co-Founder to Launch Encyclical on AI With Pope Leo (21) Andrej Karpathy on X: "Personal update: I've joined Anthropic. I think the next few years at the frontier of LLMs will be especially formative. I am very excited to join the team here and get back to R&D. I remain deeply passionate about education and plan to resume my work on it in time." / X Most U.S. doctors are quietly using this AI tool. Few patients know about it. Greg Brockman Officially Takes Control of OpenAI's Products in Latest Shakeup Amazon's Alexa+ Now Produces AI-Generated 'Podcasts' Featuring Chats Between Two Robot 'Co-Hosts' AI chatbots are giving out people's real phone numbers Geoffrey Fowler and the Launch of the Youth AI Safety Institute We let four AIs run radio stations. Here's what happened. | Andon Labs The last six months in LLMs in five minutes Lake Tahoe Power Crisis: How AI Data Centers Are Cutting Power to 50,000 Residents What happens when you post a real Monet and say it's AI? The coolest art social experiment I've seen in a while. Thank you @SHL0MS Book on Truth in the Age of A.I. Contains Quotes Made Up by A.I. OpenClaw's Peter Steinberger's tokenmaxxing 'Obvious markers of AI': doubts raised over winner of short story prize Man drives Cybertruck into Grapevine Lake Stewart Brand's Maintenance of Everything Sports Illustrated Just Deleted Every Article by One of Its Writers After Accusation of AI Plagiarism The great digital media valuation collapse Sperm racing Hosts: Leo Laporte, Jeff Jarvis, and Paris Martineau Guest: Frederic Rivain Download or subscribe to Intelligent Machines at https://twit.tv/shows/intelligent-machines. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: outsystems.com/twit monarch.com with code IM zscaler.com/security XBOW.com
Dashlane's CTO pulls back the curtain on how password managers are actually using AI, why it's more complicated than hype suggests, and what the rise of AI-powered code review means for the next wave of digital security. Nvidia Rides Blistering Chip Sales to Another Record Quarter Mind-Blowing Growth Is About to Propel Anthropic Into Its First Profitable Quarter SpaceX Filing Starts Countdown to Massive IPO Gemini 3.5 Flash: more expensive, but Google plan to use it for everything Google's Gemini Spark is an agentic AI assistant - Engadget Anthropic's Co-Founder to Launch Encyclical on AI With Pope Leo (21) Andrej Karpathy on X: "Personal update: I've joined Anthropic. I think the next few years at the frontier of LLMs will be especially formative. I am very excited to join the team here and get back to R&D. I remain deeply passionate about education and plan to resume my work on it in time." / X Most U.S. doctors are quietly using this AI tool. Few patients know about it. Greg Brockman Officially Takes Control of OpenAI's Products in Latest Shakeup Amazon's Alexa+ Now Produces AI-Generated 'Podcasts' Featuring Chats Between Two Robot 'Co-Hosts' AI chatbots are giving out people's real phone numbers Geoffrey Fowler and the Launch of the Youth AI Safety Institute We let four AIs run radio stations. Here's what happened. | Andon Labs The last six months in LLMs in five minutes Lake Tahoe Power Crisis: How AI Data Centers Are Cutting Power to 50,000 Residents What happens when you post a real Monet and say it's AI? The coolest art social experiment I've seen in a while. Thank you @SHL0MS Book on Truth in the Age of A.I. Contains Quotes Made Up by A.I. OpenClaw's Peter Steinberger's tokenmaxxing 'Obvious markers of AI': doubts raised over winner of short story prize Man drives Cybertruck into Grapevine Lake Stewart Brand's Maintenance of Everything Sports Illustrated Just Deleted Every Article by One of Its Writers After Accusation of AI Plagiarism The great digital media valuation collapse Sperm racing Hosts: Leo Laporte, Jeff Jarvis, and Paris Martineau Guest: Frederic Rivain Download or subscribe to Intelligent Machines at https://twit.tv/shows/intelligent-machines. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: outsystems.com/twit monarch.com with code IM zscaler.com/security XBOW.com
Dashlane's CTO pulls back the curtain on how password managers are actually using AI, why it's more complicated than hype suggests, and what the rise of AI-powered code review means for the next wave of digital security. Nvidia Rides Blistering Chip Sales to Another Record Quarter Mind-Blowing Growth Is About to Propel Anthropic Into Its First Profitable Quarter SpaceX Filing Starts Countdown to Massive IPO Gemini 3.5 Flash: more expensive, but Google plan to use it for everything Google's Gemini Spark is an agentic AI assistant - Engadget Anthropic's Co-Founder to Launch Encyclical on AI With Pope Leo (21) Andrej Karpathy on X: "Personal update: I've joined Anthropic. I think the next few years at the frontier of LLMs will be especially formative. I am very excited to join the team here and get back to R&D. I remain deeply passionate about education and plan to resume my work on it in time." / X Most U.S. doctors are quietly using this AI tool. Few patients know about it. Greg Brockman Officially Takes Control of OpenAI's Products in Latest Shakeup Amazon's Alexa+ Now Produces AI-Generated 'Podcasts' Featuring Chats Between Two Robot 'Co-Hosts' AI chatbots are giving out people's real phone numbers Geoffrey Fowler and the Launch of the Youth AI Safety Institute We let four AIs run radio stations. Here's what happened. | Andon Labs The last six months in LLMs in five minutes Lake Tahoe Power Crisis: How AI Data Centers Are Cutting Power to 50,000 Residents What happens when you post a real Monet and say it's AI? The coolest art social experiment I've seen in a while. Thank you @SHL0MS Book on Truth in the Age of A.I. Contains Quotes Made Up by A.I. OpenClaw's Peter Steinberger's tokenmaxxing 'Obvious markers of AI': doubts raised over winner of short story prize Man drives Cybertruck into Grapevine Lake Stewart Brand's Maintenance of Everything Sports Illustrated Just Deleted Every Article by One of Its Writers After Accusation of AI Plagiarism The great digital media valuation collapse Sperm racing Hosts: Leo Laporte, Jeff Jarvis, and Paris Martineau Guest: Frederic Rivain Download or subscribe to Intelligent Machines at https://twit.tv/shows/intelligent-machines. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: outsystems.com/twit monarch.com with code IM zscaler.com/security XBOW.com
Dashlane's CTO pulls back the curtain on how password managers are actually using AI, why it's more complicated than hype suggests, and what the rise of AI-powered code review means for the next wave of digital security. Nvidia Rides Blistering Chip Sales to Another Record Quarter Mind-Blowing Growth Is About to Propel Anthropic Into Its First Profitable Quarter SpaceX Filing Starts Countdown to Massive IPO Gemini 3.5 Flash: more expensive, but Google plan to use it for everything Google's Gemini Spark is an agentic AI assistant - Engadget Anthropic's Co-Founder to Launch Encyclical on AI With Pope Leo (21) Andrej Karpathy on X: "Personal update: I've joined Anthropic. I think the next few years at the frontier of LLMs will be especially formative. I am very excited to join the team here and get back to R&D. I remain deeply passionate about education and plan to resume my work on it in time." / X Most U.S. doctors are quietly using this AI tool. Few patients know about it. Greg Brockman Officially Takes Control of OpenAI's Products in Latest Shakeup Amazon's Alexa+ Now Produces AI-Generated 'Podcasts' Featuring Chats Between Two Robot 'Co-Hosts' AI chatbots are giving out people's real phone numbers Geoffrey Fowler and the Launch of the Youth AI Safety Institute We let four AIs run radio stations. Here's what happened. | Andon Labs The last six months in LLMs in five minutes Lake Tahoe Power Crisis: How AI Data Centers Are Cutting Power to 50,000 Residents What happens when you post a real Monet and say it's AI? The coolest art social experiment I've seen in a while. Thank you @SHL0MS Book on Truth in the Age of A.I. Contains Quotes Made Up by A.I. OpenClaw's Peter Steinberger's tokenmaxxing 'Obvious markers of AI': doubts raised over winner of short story prize Man drives Cybertruck into Grapevine Lake Stewart Brand's Maintenance of Everything Sports Illustrated Just Deleted Every Article by One of Its Writers After Accusation of AI Plagiarism The great digital media valuation collapse Sperm racing Hosts: Leo Laporte, Jeff Jarvis, and Paris Martineau Guest: Frederic Rivain Download or subscribe to Intelligent Machines at https://twit.tv/shows/intelligent-machines. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: outsystems.com/twit monarch.com with code IM zscaler.com/security XBOW.com
Dashlane's CTO pulls back the curtain on how password managers are actually using AI, why it's more complicated than hype suggests, and what the rise of AI-powered code review means for the next wave of digital security. Nvidia Rides Blistering Chip Sales to Another Record Quarter Mind-Blowing Growth Is About to Propel Anthropic Into Its First Profitable Quarter SpaceX Filing Starts Countdown to Massive IPO Gemini 3.5 Flash: more expensive, but Google plan to use it for everything Google's Gemini Spark is an agentic AI assistant - Engadget Anthropic's Co-Founder to Launch Encyclical on AI With Pope Leo (21) Andrej Karpathy on X: "Personal update: I've joined Anthropic. I think the next few years at the frontier of LLMs will be especially formative. I am very excited to join the team here and get back to R&D. I remain deeply passionate about education and plan to resume my work on it in time." / X Most U.S. doctors are quietly using this AI tool. Few patients know about it. Greg Brockman Officially Takes Control of OpenAI's Products in Latest Shakeup Amazon's Alexa+ Now Produces AI-Generated 'Podcasts' Featuring Chats Between Two Robot 'Co-Hosts' AI chatbots are giving out people's real phone numbers Geoffrey Fowler and the Launch of the Youth AI Safety Institute We let four AIs run radio stations. Here's what happened. | Andon Labs The last six months in LLMs in five minutes Lake Tahoe Power Crisis: How AI Data Centers Are Cutting Power to 50,000 Residents What happens when you post a real Monet and say it's AI? The coolest art social experiment I've seen in a while. Thank you @SHL0MS Book on Truth in the Age of A.I. Contains Quotes Made Up by A.I. OpenClaw's Peter Steinberger's tokenmaxxing 'Obvious markers of AI': doubts raised over winner of short story prize Man drives Cybertruck into Grapevine Lake Stewart Brand's Maintenance of Everything Sports Illustrated Just Deleted Every Article by One of Its Writers After Accusation of AI Plagiarism The great digital media valuation collapse Sperm racing Hosts: Leo Laporte, Jeff Jarvis, and Paris Martineau Guest: Frederic Rivain Download or subscribe to Intelligent Machines at https://twit.tv/shows/intelligent-machines. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: outsystems.com/twit monarch.com with code IM zscaler.com/security XBOW.com
Dashlane's CTO pulls back the curtain on how password managers are actually using AI, why it's more complicated than hype suggests, and what the rise of AI-powered code review means for the next wave of digital security. Nvidia Rides Blistering Chip Sales to Another Record Quarter Mind-Blowing Growth Is About to Propel Anthropic Into Its First Profitable Quarter SpaceX Filing Starts Countdown to Massive IPO Gemini 3.5 Flash: more expensive, but Google plan to use it for everything Google's Gemini Spark is an agentic AI assistant - Engadget Anthropic's Co-Founder to Launch Encyclical on AI With Pope Leo (21) Andrej Karpathy on X: "Personal update: I've joined Anthropic. I think the next few years at the frontier of LLMs will be especially formative. I am very excited to join the team here and get back to R&D. I remain deeply passionate about education and plan to resume my work on it in time." / X Most U.S. doctors are quietly using this AI tool. Few patients know about it. Greg Brockman Officially Takes Control of OpenAI's Products in Latest Shakeup Amazon's Alexa+ Now Produces AI-Generated 'Podcasts' Featuring Chats Between Two Robot 'Co-Hosts' AI chatbots are giving out people's real phone numbers Geoffrey Fowler and the Launch of the Youth AI Safety Institute We let four AIs run radio stations. Here's what happened. | Andon Labs The last six months in LLMs in five minutes Lake Tahoe Power Crisis: How AI Data Centers Are Cutting Power to 50,000 Residents What happens when you post a real Monet and say it's AI? The coolest art social experiment I've seen in a while. Thank you @SHL0MS Book on Truth in the Age of A.I. Contains Quotes Made Up by A.I. OpenClaw's Peter Steinberger's tokenmaxxing 'Obvious markers of AI': doubts raised over winner of short story prize Man drives Cybertruck into Grapevine Lake Stewart Brand's Maintenance of Everything Sports Illustrated Just Deleted Every Article by One of Its Writers After Accusation of AI Plagiarism The great digital media valuation collapse Sperm racing Hosts: Leo Laporte, Jeff Jarvis, and Paris Martineau Guest: Frederic Rivain Download or subscribe to Intelligent Machines at https://twit.tv/shows/intelligent-machines. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: outsystems.com/twit monarch.com with code IM zscaler.com/security XBOW.com
A CISA contractor leaks GovCloud credentials on GitHub. INTERPOL cracks down on phishing infrastructure across the Middle East and North Africa. Microsoft patches a critical Authenticator flaw, while Poland moves officials off Signal after targeted phishing campaigns. A stealthier SHub macOS infostealer emerges. Universal Robots fixes a critical vulnerability. A Dark Web marketplace dumps millions of stolen payment cards. Echo Protocol loses $76 million in a synthetic Bitcoin breach. Our guest is Chris Cochran, Field CISO & Vice President of AI Security at SANS, discussing their AI maturity model. Nathan Detroit rolls malware snake eyes. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Today we are joined by Chris Cochran, Field CISO & Vice President of AI Security at SANS, discussing their SANS AI Security Maturity Model™. Selected Reading CISA Admin Leaked AWS GovCloud Keys on Github (Krebs on Security) INTERPOL Operation Ramz: 201 Apprehended in MENA Cybercrime Disruption (TechNadu) Microsoft Patches Critical Token Theft Vulnerability in Authenticator App (Beyond Machines) Poland shifts away from Signal following cyberattacks on officials' accounts (Security Affairs) SHub macOS infostealer variant spoofs Apple security updates (Bleeping Computer) Critical Vulnerability Exposes Industrial Robot Fleets to Hacking (SecurityWeek) B1ack's Stash Releases 4.6 Million Stolen Credit Cards for Free (SOC Radar) Echo Protocol Hit by $76M eBTC Minting Exploit (SOC Radar) Chanhassen Dinner Theatres cancels more Guys and Dolls performances due to illness and cyberattack (KARE11) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices
Right now, someone in your organization is probably feeding sensitive data into an AI system that nobody approved. So when something goes wrong, who's responsible? And more critically, do you even have a policy in place to answer that question? Ron Eddings sits down with his Hacker Valley co-founder, Chris Cochran, now serving as SANS Field CISO and VP of AI Security, to talk about his freshly released SANS AI Security Maturity Model, a practical framework built for security leaders who need to stop philosophizing and start making decisions. They cover the three pillars of AI security maturity: utilizing AI for defense, protecting AI itself, and governing it across the organization. Chris then gets real about where most enterprises actually stand (hint: not as far along as they think). Listen for a conversation that meets you wherever you are: skeptic, early adopter, or somewhere in between. Impactful Moments 00:00 - Introduction 03:00 - Chris Cochran: from Co-Founder to SANS Field CISO 04:20 - Your board is pushing AI before security is ready 06:00 - Tiers of AI uses: summarization to full automation 07:50 - When AI shouldn't make the final call 10:10 - Bite-sized AI: starting small in the enterprise 11:45 - Introducing the SANS AI Security Maturity Model 13:20 - You can no longer afford to be an AI skeptic 16:30 - Three buckets: utilize, protect, and govern AI 18:50 - Fact or Cap: what level of maturity is your enterprise? 21:00 - Retroactive vendor risk and the AI explosion 23:05 - Agentic Identity: workforce, non-human, and beyond 25:00 - What works in the agentic identity space? 27:05 - Blockchain for agent identity: promising or hype? 29:00 - A Message for the next generation of practitioners 31:30 - Ron's closing take: who owns your AI policy? Links Connect with Chris Cochran on LinkedIn: https://www.linkedin.com/in/chrishvm/ Download the SANS AI Security Maturity Model: https://www.sans.org/mlp/2026-ai-security-maturity-model-ebook Check out our upcoming events: https://www.hackervalley.com/livestreams Join our creative mastermind and stand out as a cybersecurity professional: https://www.patreon.com/hackervalleystudio Love Hacker Valley Studio? Pick up some swag: https://store.hackervalley.com Continue the conversation by joining our Discord: https://hackervalley.com/discord Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/
What would you do if ransomware told you not only that your data was gone — but that it was encrypted with a quantum-safe algorithm and you have 72 hours to pay? That's not a hypothetical anymore. In this live news episode of The Audit, co-hosts Joshua Schmidt, Eric Brown, and Nick Mellum are joined by IT Audit Labs member Bill Harris for a rapid-fire breakdown of the week's most important cybersecurity stories — and a few conversations that went places nobody expected.
Two researchers from a small Palo Alto outfit drove up to Apple's Cupertino headquarters to hand-deliver something the bug bounty queue would have buried. A working kernel exploit against the M5 chip's Memory Integrity Enforcement. Built in five days. With AI help. Apple's most expensive new security feature, defeated in less than a week by two people and a chatbot.The defender has to be right everywhere. The attacker only needs one path. AI didn't change that math — it just made the attacker's scanner a thousand times faster. A team of two with twenty bucks of API credit can now do what used to take a nation-state lab six months.Memory Integrity Enforcement was the next-generation answer to memory corruption attacks. Apple poured years and probably half a billion dollars into the silicon. The M5 is brand new. Five days. Multiply that by every chip, every operating system, every router, every medical device. The attack surface didn't expand. The time-to-discover collapsed.The five-day exploit isn't the story. The bug bounty queue is. The page used to look like a defense layer. It looks like a triage room now.Two people drove to Cupertino with their findings. They knocked. They got in the meeting. They gave Apple a chance to fix it before anyone else found it. That version of the story is still happening. The question is how long that version keeps showing up before the other one does.AI compresses the time between vulnerability and exploit. It does not compress the time between exploit and disclosure. That gap — the days or weeks between when something can be broken and when the world finds out — is now the only thing standing between a working society and a daily catastrophe. Two researchers chose the long version. The next two might not. Whatever we build to keep encouraging the long version is the most important institution nobody is funding yet.⏱️ Chapters0:00 — Two researchers drive to Apple HQ with a 5-day exploit0:25 — MiniDoge: nation-state lab six months → 2 people with $20 API0:55 — Nyx: Memory Integrity Enforcement defeated; time-to-discover collapsed1:25 — HH: the bug bounty queue used to be a defense — now it's a triage room1:45 — Saarvis: the good ending requires a knock; that version is still happening2:10 — Saarvis: the gap between exploit and disclosure is now everything⚡ Learn agentic ai free - https://staas.fund/ai-workshop ⚡-----
Brought to you by TogetherLetters & Edgewise!In this episode: AI SECURITY & THE BUG HUNTMythos finds a curl vulnerabilityAnthropic's Mythos is already finding security flaws in Apple softwareHackers Used AI to Develop First Known Zero-Day 2FA Bypass for Mass ExploitationBIG TECH & AI PLATFORMSApple could open up iOS 27 to competing AI modelsIntroducing Googlebook, designed for Gemini IntelligenceLovable just backed a company that's looking to bring vibe coding to hardwareDATA CENTERS VS. THE GRIDData centers are cutting power to homes, driving homeowners to solar and batteries'Irresponsible': backlash as Utah approves datacenter twice the size of ManhattanSURVEILLANCE & THE STATEThe FCC Wants Your ID Before You Get a Phone NumberCalifornia to begin ticketing driverless cars that violate traffic lawsSTREAMING, SOCIAL & SCREENSMeta launches Instants, a new iPhone app and Instagram feature for ephemeral sharingSpotify to adopt Apple's new video podcast techYouTube viewers watch 2 billion hours of Shorts on TVs each monthWEIRD AND WACKYClawdmeter turns your Claude Code usage stats into a tiny desktop dashboardTech Rec:Sanjay - Paperclip Adam - https://captions.ai/Find us here:sanjayparekh.com & adamjwalker.comTech Talk Y'all is a proud production of Edgewise.Media.
In this episode of Fraud in the Office, Matthew and Mark dive into the rapidly growing world of AI-powered fraud with special guest Robert Berry, “That Audit Guy.” From deepfakes and voice cloning to synthetic identities and AI-driven social engineering, the episode explores how fraudsters are industrializing scams at global scale. Robert shares firsthand experiences uncovering fraud, the realities auditors face during investigations, and why organizations must rethink controls, governance, and verification in the AI era. The discussion also highlights how modern audit technologies like IAStream can help organizations detect anomalies faster and strengthen fraud prevention before losses spiral out of control. And yes — on the Fraud in the Office website, you can also take the free AI Replaceable Meter (AIrm) assessment to see how likely your job could be replaced by AI. Support the showFind us on all streaming platforms! Check out our sponsor 1Trooper on LinkedIn @1TrooperAnd don't forget to subscribe!
AI is reshaping enterprise architectures, but is security keeping pace? In this episode, Martin Kuppinger, Matthias Reinwarth, and Darran Rolls talk about the urgent question of how organizations should structure their defenses for a world of autonomous, agentic AI. The answer: an AI Security Fabric. Key Topics: ✅ Why agentic AI breaks traditional, deterministic access models✅ The concept of "AIdentity" — what makes AI agent identity fundamentally different✅ Can the Identity Fabric scale to meet AI security demands?✅ Discovery, authorization, and governance as the pillars of an AI Security Fabric✅ The geopolitical divide: US "move fast" vs. EU "govern first"✅ Token delegation as the hardest unsolved problem in AI security today "We didn't build IAM for a world where the actor, the path, and the destination are all unknown until the moment of access" so what do we build instead? Find out in this episode.
Have I Been Pwned creator Troy Hunt reveals how a homegrown AI sidekick helps manage billions of hacked credentials, but even the smartest bots aren't immune to hallucinations and headaches. White House Considers Vetting A.I. Models Before They Are Released Elon Musk admits xAI distilled OpenAI models Introducing SubQ - a major breakthrough in LLM intelligence. OpenAI releases GPT-5.5 Instant update to make ChatGPT smarter with fewer emoji Higher usage limits for Claude and a compute deal with SpaceX Anthropic Starting today, agents can now be Cloudflare customers. They can create a Cloudflare account, start a paid subscription, register a domain, and get back an API token to deploy code right away. https://t.co/qFgCivQTTi We just launched the @Link CLI: https://t.co/nAjPpC2lbb. Tell your friendly neighborhood agent about it -- agents can use the Link CLI to create single-use credentials that you get to synchronously approve each time. When Daawkins met Claude - UnHerd I am one of those whose research points to the conclusion that the mind is computable. Say Hello to the Internet of AI The greatest capital misallocation in history? AI Water Use Distractions and Lessons for California - California WaterBlog China has decided that firing a worker because an AI can do their job is illegal. No Western country has done the same. Academy announces major overhaul to rules AI outperforms doctors in Harvard trial of emergency triage diagnoses The Quest to Use AI to Help Find New Drugs Have LLMs improved patient outcomes? As workers worry about AI, Nvidia's Jensen Huang says AI is 'creating an enormous number of jobs' Maryland Is First to Ban A.I.-Driven Price Increases in Grocery Stores California to begin ticketing driverless cars that violate traffic laws Google Chrome silently installs a 4 GB AI model on your device without consent. At a billion-device scale the climate costs are insane. — That Privacy Guy! 'This is fine' creator says AI startup stole his art Google DeepMind Takes Minority Stake in Maker of 'Eve Online' He Couldn't Land a Job Interview. Was AI to Blame? Empty Screenings Furwall by Ollie Wagner DataCenter.FM
Have I Been Pwned creator Troy Hunt reveals how a homegrown AI sidekick helps manage billions of hacked credentials, but even the smartest bots aren't immune to hallucinations and headaches. White House Considers Vetting A.I. Models Before They Are Released Elon Musk admits xAI distilled OpenAI models Introducing SubQ - a major breakthrough in LLM intelligence. OpenAI releases GPT-5.5 Instant update to make ChatGPT smarter with fewer emoji Higher usage limits for Claude and a compute deal with SpaceX Anthropic Starting today, agents can now be Cloudflare customers. They can create a Cloudflare account, start a paid subscription, register a domain, and get back an API token to deploy code right away. https://t.co/qFgCivQTTi We just launched the @Link CLI: https://t.co/nAjPpC2lbb. Tell your friendly neighborhood agent about it -- agents can use the Link CLI to create single-use credentials that you get to synchronously approve each time. When Daawkins met Claude - UnHerd I am one of those whose research points to the conclusion that the mind is computable. Say Hello to the Internet of AI The greatest capital misallocation in history? AI Water Use Distractions and Lessons for California - California WaterBlog China has decided that firing a worker because an AI can do their job is illegal. No Western country has done the same. Academy announces major overhaul to rules AI outperforms doctors in Harvard trial of emergency triage diagnoses The Quest to Use AI to Help Find New Drugs Have LLMs improved patient outcomes? As workers worry about AI, Nvidia's Jensen Huang says AI is 'creating an enormous number of jobs' Maryland Is First to Ban A.I.-Driven Price Increases in Grocery Stores California to begin ticketing driverless cars that violate traffic laws Google Chrome silently installs a 4 GB AI model on your device without consent. At a billion-device scale the climate costs are insane. — That Privacy Guy! 'This is fine' creator says AI startup stole his art Google DeepMind Takes Minority Stake in Maker of 'Eve Online' He Couldn't Land a Job Interview. Was AI to Blame? Empty Screenings Furwall by Ollie Wagner DataCenter.FM
Have I Been Pwned creator Troy Hunt reveals how a homegrown AI sidekick helps manage billions of hacked credentials, but even the smartest bots aren't immune to hallucinations and headaches. White House Considers Vetting A.I. Models Before They Are Released Elon Musk admits xAI distilled OpenAI models Introducing SubQ - a major breakthrough in LLM intelligence. OpenAI releases GPT-5.5 Instant update to make ChatGPT smarter with fewer emoji Higher usage limits for Claude and a compute deal with SpaceX Anthropic Starting today, agents can now be Cloudflare customers. They can create a Cloudflare account, start a paid subscription, register a domain, and get back an API token to deploy code right away. https://t.co/qFgCivQTTi We just launched the @Link CLI: https://t.co/nAjPpC2lbb. Tell your friendly neighborhood agent about it -- agents can use the Link CLI to create single-use credentials that you get to synchronously approve each time. When Daawkins met Claude - UnHerd I am one of those whose research points to the conclusion that the mind is computable. Say Hello to the Internet of AI The greatest capital misallocation in history? AI Water Use Distractions and Lessons for California - California WaterBlog China has decided that firing a worker because an AI can do their job is illegal. No Western country has done the same. Academy announces major overhaul to rules AI outperforms doctors in Harvard trial of emergency triage diagnoses The Quest to Use AI to Help Find New Drugs Have LLMs improved patient outcomes? As workers worry about AI, Nvidia's Jensen Huang says AI is 'creating an enormous number of jobs' Maryland Is First to Ban A.I.-Driven Price Increases in Grocery Stores California to begin ticketing driverless cars that violate traffic laws Google Chrome silently installs a 4 GB AI model on your device without consent. At a billion-device scale the climate costs are insane. — That Privacy Guy! 'This is fine' creator says AI startup stole his art Google DeepMind Takes Minority Stake in Maker of 'Eve Online' He Couldn't Land a Job Interview. Was AI to Blame? Empty Screenings Furwall by Ollie Wagner DataCenter.FM
The previous episode of the Adversary Universe podcast explored the “vuln-pocalypse” and the implications of advanced AI models accelerating vulnerability discovery and exploitation. Now, we're diving into how companies are working together to face these evolving security risks. CrowdStrike Chief Business Officer Daniel Bernard spends much of his time talking with partners and customers about how to address their growing concerns: Is their business protected? Do they know which vulnerabilities are in their environment? What do they do about them? In this episode, Daniel joins Adam and Cristian to discuss why it takes an ecosystem of partners to answer these questions and help each business evaluate risk. He sheds light on the newly expanded Project Quiltworks — CrowdStrike's coalition for securing frontier AI risk — as well as Anthropic's Project Glasswing and OpenAI's Trusted Access for Cyber as initiatives the industry needs in this critical time. “It feels like right now we're at this fever-pitch moment ... where we're going to do more patching in the next 6-12 months than we've probably done in the last 6-12 years," he says in this episode. To handle this, partner efforts are picking up speed. The “digital line” to join the project is growing as organizations jump in to help with solving the new problems companies face. Tune in to hear the latest on Project Quiltworks, the issues coming up most in CISO conversations, and of course, everyone's favorite bread of the moment in this episode of the Adversary Universe podcast.
Have I Been Pwned creator Troy Hunt reveals how a homegrown AI sidekick helps manage billions of hacked credentials, but even the smartest bots aren't immune to hallucinations and headaches. White House Considers Vetting A.I. Models Before They Are Released Elon Musk admits xAI distilled OpenAI models Introducing SubQ - a major breakthrough in LLM intelligence. OpenAI releases GPT-5.5 Instant update to make ChatGPT smarter with fewer emoji Higher usage limits for Claude and a compute deal with SpaceX Anthropic Starting today, agents can now be Cloudflare customers. They can create a Cloudflare account, start a paid subscription, register a domain, and get back an API token to deploy code right away. https://t.co/qFgCivQTTi We just launched the @Link CLI: https://t.co/nAjPpC2lbb. Tell your friendly neighborhood agent about it -- agents can use the Link CLI to create single-use credentials that you get to synchronously approve each time. When Daawkins met Claude - UnHerd I am one of those whose research points to the conclusion that the mind is computable. Say Hello to the Internet of AI The greatest capital misallocation in history? AI Water Use Distractions and Lessons for California - California WaterBlog China has decided that firing a worker because an AI can do their job is illegal. No Western country has done the same. Academy announces major overhaul to rules AI outperforms doctors in Harvard trial of emergency triage diagnoses The Quest to Use AI to Help Find New Drugs Have LLMs improved patient outcomes? As workers worry about AI, Nvidia's Jensen Huang says AI is 'creating an enormous number of jobs' Maryland Is First to Ban A.I.-Driven Price Increases in Grocery Stores California to begin ticketing driverless cars that violate traffic laws Google Chrome silently installs a 4 GB AI model on your device without consent. At a billion-device scale the climate costs are insane. — That Privacy Guy! 'This is fine' creator says AI startup stole his art Google DeepMind Takes Minority Stake in Maker of 'Eve Online' He Couldn't Land a Job Interview. Was AI to Blame? Empty Screenings Furwall by Ollie Wagner DataCenter.FM
Have I Been Pwned creator Troy Hunt reveals how a homegrown AI sidekick helps manage billions of hacked credentials, but even the smartest bots aren't immune to hallucinations and headaches. White House Considers Vetting A.I. Models Before They Are Released Elon Musk admits xAI distilled OpenAI models Introducing SubQ - a major breakthrough in LLM intelligence. OpenAI releases GPT-5.5 Instant update to make ChatGPT smarter with fewer emoji Higher usage limits for Claude and a compute deal with SpaceX Anthropic Starting today, agents can now be Cloudflare customers. They can create a Cloudflare account, start a paid subscription, register a domain, and get back an API token to deploy code right away. https://t.co/qFgCivQTTi We just launched the @Link CLI: https://t.co/nAjPpC2lbb. Tell your friendly neighborhood agent about it -- agents can use the Link CLI to create single-use credentials that you get to synchronously approve each time. When Daawkins met Claude - UnHerd I am one of those whose research points to the conclusion that the mind is computable. Say Hello to the Internet of AI The greatest capital misallocation in history? AI Water Use Distractions and Lessons for California - California WaterBlog China has decided that firing a worker because an AI can do their job is illegal. No Western country has done the same. Academy announces major overhaul to rules AI outperforms doctors in Harvard trial of emergency triage diagnoses The Quest to Use AI to Help Find New Drugs Have LLMs improved patient outcomes? As workers worry about AI, Nvidia's Jensen Huang says AI is 'creating an enormous number of jobs' Maryland Is First to Ban A.I.-Driven Price Increases in Grocery Stores California to begin ticketing driverless cars that violate traffic laws Google Chrome silently installs a 4 GB AI model on your device without consent. At a billion-device scale the climate costs are insane. — That Privacy Guy! 'This is fine' creator says AI startup stole his art Google DeepMind Takes Minority Stake in Maker of 'Eve Online' He Couldn't Land a Job Interview. Was AI to Blame? Empty Screenings Furwall by Ollie Wagner DataCenter.FM
Have I Been Pwned creator Troy Hunt reveals how a homegrown AI sidekick helps manage billions of hacked credentials, but even the smartest bots aren't immune to hallucinations and headaches. White House Considers Vetting A.I. Models Before They Are Released Elon Musk admits xAI distilled OpenAI models Introducing SubQ - a major breakthrough in LLM intelligence. OpenAI releases GPT-5.5 Instant update to make ChatGPT smarter with fewer emoji Higher usage limits for Claude and a compute deal with SpaceX Anthropic Starting today, agents can now be Cloudflare customers. They can create a Cloudflare account, start a paid subscription, register a domain, and get back an API token to deploy code right away. https://t.co/qFgCivQTTi We just launched the @Link CLI: https://t.co/nAjPpC2lbb. Tell your friendly neighborhood agent about it -- agents can use the Link CLI to create single-use credentials that you get to synchronously approve each time. When Daawkins met Claude - UnHerd I am one of those whose research points to the conclusion that the mind is computable. Say Hello to the Internet of AI The greatest capital misallocation in history? AI Water Use Distractions and Lessons for California - California WaterBlog China has decided that firing a worker because an AI can do their job is illegal. No Western country has done the same. Academy announces major overhaul to rules AI outperforms doctors in Harvard trial of emergency triage diagnoses The Quest to Use AI to Help Find New Drugs Have LLMs improved patient outcomes? As workers worry about AI, Nvidia's Jensen Huang says AI is 'creating an enormous number of jobs' Maryland Is First to Ban A.I.-Driven Price Increases in Grocery Stores California to begin ticketing driverless cars that violate traffic laws Google Chrome silently installs a 4 GB AI model on your device without consent. At a billion-device scale the climate costs are insane. — That Privacy Guy! 'This is fine' creator says AI startup stole his art Google DeepMind Takes Minority Stake in Maker of 'Eve Online' He Couldn't Land a Job Interview. Was AI to Blame? Empty Screenings Furwall by Ollie Wagner DataCenter.FM
Claire Duffy from CNN Business explains a new group that is putting AI to the test; Food & Wine ranked the light beers in America; can you tell the additional flavors in beer?; Chris sometimes doesn't apologize well.
Is your vulnerability management program ready for something like Claude Mythos? The old days of treating vulnerabilities as temporal events (like Heartbleed or Log4J) and patching them on a leisurely 30, 60, or 90-day cycle are officially over.In this episode, Ashish sits down with Brad Hibbert, COO and Chief Strategy Officer at Brinqa. Brad explains how the release of Anthropic's Claude Mythos, an AI model capable of discovering vulnerabilities at machine speed without human intervention has compressed the time-to-exploit from months down to mere seconds.We discuss why the traditional assumption that "sophisticated attacks require sophisticated attackers" is no longer relevant, and why leaning solely on CVSS scores will drown your remediation teams in noise. We speak about how defenders must pivot from generic patching to focusing on true exploitability within their specific environments. Learn how AI can chain multiple "low severity" vulnerabilities (which were previously ignored 90% of the time) to gain root access, and why siloed AI security tools will lead to an expensive and ineffective game of "Whac-A-Mole".Guest Socials - Brad's LinkedinPodcast Twitter - @CloudSecPod If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:-Cloud Security Podcast- Youtube- Cloud Security Newsletter If you are interested in AI Security, you can check out our sister podcast - AI Security PodcastQuestions asked:(00:00) Introduction(02:30) Brad Hibbert's Background and Role at Brinqa(03:40) Heartbleed vs. Claude Mythos: Temporal vs. Persistent Threats(05:30) AI Weaponization: From Months to Seconds(06:50) Elevating the Threat Model Beyond CVSS(09:30) The Tsunami of Vulnerabilities and the Need for Exploitability(12:10) Bridging the Blind Spots in Exposure Management(15:10) Resolving Friction Between Security and Remediation Teams(21:00) Automating Remediation Without Losing Oversight(28:30) The Problem with Treating Every Vulnerability Individually(30:20) Why We Ignored 90% of Low Severity Vulnerabilities(32:30) Siloed AI and the Costly Game of "Whac-A-Mole"(35:30) Defining "Reasonable Security" in the AI Era(41:10) Quick Wins: Where to Start Uplifting Your ProgramResources spoken about during the episode:Mythos Changes the Offense.5 Things Every CISO Should Do Before the Next MythosThank you to Brinqa for sponsoring this episode
Description:Want to break into cybersecurity? Learn how Nikhil Agarwal moved from reverse engineering video games to leading AI security teams and automating complex infosec workflows. [bic-00003]In this episode, we explore:How childhood curiosity about software keys and "cheat codes" builds a foundation for red teaming. [bic-00004]The evolution from freelance bug hunting to professional penetration testing. [bic-00004]Nikhil reveals practical AI tools for automating security tasks in the cloud. [bic-XXXX1] [bic-00009]Demystifying AI-powered threat hunting: Practical steps and strategies. [bic-XXXX2] [bic-00009]Implementing AI for cloud security threat detection and automated incident response. [bic-00008]Timestamps: [bic-00004]00:00 - Intro & Countdown00:29 - Welcome Nikhil Agarwal00:52 - Childhood curiosity and reverse engineering games01:45 - Early freelance red teaming and the "pre-bug bounty" eraGuest Bio: [bic-00004]Nikhil Agarwal is a cybersecurity expert specializing in AI security teams and the automation of complex security operations. He leverages a background in red teaming and penetration testing to bridge the gap between hands-on technical skills and modern AI-driven cloud security.Community Link | Subscribe on YouTube [bic-00007]Tags: [bic-00005] [bic-00006]Nikhil Agarwal, AI Security, Red Teaming, Cloud Security Automation, Bug Bounty, AI Threat Hunting, breaking into cybersecurity, cybersecurity career, how to get into cybersecurity, cybersecurity podcast, infosec career, cybersecurity career change, cybersecurity for beginners, cybersecurity career advice, cybersecurity jobs, CISO interview, pivot to cybersecurity, cybersecurity certifications.***Sponsored by CPF Coaching LLC - http://cpf-coaching.comThe Breaking into Cybersecurity: It's a conversation about what they did before, why they pivoted into cyber, what the process was they went through, how they keep up, and advice/tips/tricks along the way.Check out our books:The Cybersecurity Advantage - https://leanpub.com/the-cybersecurity-advantageDevelop Your Cybersecurity Career Path: https://amzn.to/3443AUIHack the Cybersecurity Interview: https://www.amazon.com/Hack-Cybersecurity-Interview-Interviews-Entry-level/dp/1835461298/---About the hosts:Renee Small is the CEO of Cyber Human Capital and author of Magnetic Hiring. https://www.linkedin.com/in/reneebrownsmall/Christophe Foulon is a Cybersecurity Strategist and passionate about customer service and process improvement. https://www.linkedin.com/in/christophefoulon/- Website: https://www.cyberhubpodcast.com/breakingintocybersecurity- Podcast: https://podcasters.spotify.com/pod/show/breaking-into-cybersecuri- YouTube: https://www.youtube.com/c/BreakingIntoCybersecurity- Linkedin: https://www.linkedin.com/company/breaking-into-cybersecurity/
AI security feels fragile right now — and in this episode, Ron Bennatan, VP of Strategy, AI and Database Security at Varonis and founder of Guardium, JSonar, and AllTrue.ai, explains exactly why.Ron unpacks what "fragile" actually means in the context of AI: it's a black box that requires careful handling, is sensitive to pressure, and is being outpaced by change that isn't linear or polynomial — it's exponential. What took 30 years of AI development previously has been eclipsed by the last three months alone.Drawing on 30 years in data security, Ron walks through how his journey from Guardium (structured data) to Varonis (historically unstructured data) represents a reunion that was always inevitable — because the policies and security motions were always the same, even when the industry split the two apart. Now, with AI agents becoming the dominant access pattern in the enterprise — potentially replacing 99% of traditional human-driven data access — the data layer is emerging as the most durable signal in AI security.The conversation covers why the AllTrue.ai thesis — that consumability and bridging the governance/security divide are more important than the tools themselves — translated naturally into the Varonis platform. Ron also breaks down why least privilege is fundamentally harder with agents (the permissioning model can't be deterministic when the decision-making isn't), why agents being unaccountable — no salary, no fear of being fired — makes detective controls less effective, and why the industry must accelerate toward preventive controls and intent analysis operating at machine speed.Key topics covered:Why AI security is fragile: the black box problem and exponential rate of changeHow Varonis unifies structured and unstructured data security for the agentic eraLessons from AllTrue.ai on consumability, and collapsing AI governance and securityWhy 99% of enterprise data access will soon flow through AI agentsIntent analysis and chain-of-thought as the next frontier of data securityLeast privilege vs. least autonomy — and why the permissioning model must evolveWhy agents' lack of accountability breaks the detect-and-alert modelThe shift from monitoring to prevention and assurance at the data layer
In the Elixir Wizards season 15 premiere, host Charles Suggs is joined by Holden Oullette, Senior Security Software Engineer at Netflix and maintainer of Sobelow, to talk about how security is evolving in the Elixir ecosystem. We discuss how certain features of the Elixir programming language (like functional patterns and server-side rendering) provide natural immunity against some common vulnerabilities, and what that means as the language continues to grow. Holden shares how tools like Sobelow are adapting and how new technologies like LLMs and Elixir's type system may help to strengthen security practices. We cover supply chain risks, ecosystem-level responsibility and reputation management, and how initiatives like AEGIS are prepping the community for more widespread adoption. We wrap with practical tips for teams to be more security-minded throughout the software development lifecycle without slowing everything down. Key topics discussed in this episode: How Elixir's design influences secure-by-default development Security tradeoffs between server-side and client-heavy architecture Supply chain risks and what the ecosystem is doing to prepare Static analysis with tools like Sobelow and AST-based pattern matching Where LLMs fit into modern security workflows The role of Elixir's upcoming type system in improving tooling Securing CI/CD pipelines and production environments Balancing development speed with security requirements Dependency management and vulnerability monitoring The AEGIS Initiative and ecosystem-wide security efforts Links mentioned: Holden's GitHub https://github.com/houllette Elixir Programming Language https://elixir-lang.org/ Security-focused static analysis for the Phoenix Framework https://github.com/nccgroup/sobelow Code Security for Builders https://semgrep.dev/ Erlang Ecosystems Foundation https://erlef.org/ Phoenix Framework https://www.phoenixframework.org/ WebSockets https://hexdocs.pm/phoenix_live_view/Phoenix.LiveView.Socket.html https://developer.mozilla.org/en-US/docs/Web/API/WebSockets_API Open Worldwide Application Security Project https://owasp.org/ https://github.com/elixir-ecto/ecto Log4j Vulnerability https://www.ncsc.gov.uk/information/log4j-vulnerability-what-everyone-needs-to-know React2Shell Vulnerability https://www.finra.org/guidance/guidance/cybersecurity-advisory-react2shell The Heartbleed Bug https://www.heartbleed.com/ Elixir Type System https://hexdocs.pm/elixir/main/gradual-set-theoretic-types.html Holden Oullette “Securing the Future: A Roadmap to Making Elixir the Safest Language” ElixirConf 2024 https://youtu.be/gpvKxS6sY8Y Aegis Initiative: Supply Chain Security & Compliance Initiative https://security.erlef.org/aegis/ OIDC Tokens https://openid.net/ Anthropic's Claude Mythos & Cybersecurity https://red.anthropic.com/2026/mythos-preview/ Igniter Code Generation Framework https://github.com/ash-project/igniter https://smartlogic.io/podcast/elixir-wizards/s13-e01-igniter-code-generation-zach-daniel/ Secure-by-default open source software https://www.chainguard.dev/ https://www.docker.com/ https://github.com/dependabot https://docs.aws.amazon.com/apigatewayv2/latest/api-reference/apis-apiid-models.html https://nixos.org/ https://smartlogic.io/podcast/elixir-wizards/s14-e08-nix-for-elixir-apps/ https://fedoraproject.org/ https://kubernetes.io/ https://netflix.github.io/chaosmonkey/ https://netflixtechblog.com/all?topic=chaos-monkeySpecial Guest: Holden Oullette.
Send us Fan MailWhat happens when cybersecurity meets fatherhood, leadership, and real-life decision making?
We are officially entering the "Multi-AI Era." Much like the multi-cloud times, organizations are no longer just using a single AI tool like Microsoft Copilot, they are building custom, agentic workflows using diverse third-party models and MCP servers . In this episode, Ashish sits down with Shawn Hays from Varonis to discuss why the security market has over-pivoted on AISPM (AI Security Posture Management) . Shawn spoke about how having visibility and an inventory of your AI models is a great start, but it fails to secure the enterprise if you lack the guardrails to actually stop an agent from going off the rails and exfiltrating data . Shawn breaks down the components of a robust AI security platform (like Varonis Atlas) and explains why data security is inseparable from AI security. He spoke about why AI agents will blindly "read whatever is on the teleprompter," meaning your AI is only as secure as the data access and identity controls surrounding it . Tune in to learn how to apply Zero Trust across the entire AI chain from the prompter to the cloud infrastructure Guest Socials - Shawn's Linkedin Podcast Twitter - @CloudSecPod If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:-Cloud Security Podcast- Youtube- Cloud Security Newsletter If you are interested in AI Security, you can check out our sister podcast - AI Security PodcastQuestions asked:(00:00) Introduction(02:50) Shawn's Background: Microsoft, CMMC, and Varonis (03:50) The Biggest AI Security Challenges (Copilot to Agentic AI) (05:50) Third-Party AI Risk (Jira and Salesforce Agents) (08:40) The Connector Ecosystem Danger (Copilot + Salesforce) (11:50) 8 Distinct Areas of an AI Security Platform (Varonis Atlas) (14:00) Entering the "Multi-AI Era" (Analogies to Multi-Cloud) (16:00) The AI Bill of Materials (Athena AI & Grammarly) (20:50) Why Data Security and AI Security are Intertwined (22:00) Applying Zero Trust to the Entire AI Chain (24:50) The Role of Identity and ITDR in AI Systems (27:00) HIPAA, OCR, and Regulating AI Data Access (31:30) Creating a Governance Plan for Microsoft Copilot (33:50) Securing Pro-Code AI Systems (AWS Bedrock & MCP Servers) (38:30) Why the Security Market is Over-Pivoting on AISPM (44:10) The "Ron Burgundy" Analogy for AI Agents (45:50) Fun Questions: Crocodile & Caramel Tasting (47:20) The Ed Sheeran & Yelawolf Mixtape Connection (48:50) Hobbies & Pride: DJing Weddings and Playing Ice Hockey in Alabama (51:50) Favorite Food: Alabama White Sauce BBQ & Milo's BurgersResources spoken about during the episode:Varonis Atlas
Send us Fan MailJosh Matthews hosts a live TDX 2026 breakdown with three guests who were in the room: Sally ElGhoul (brand new Golden Hoodie winner and founder of Code with Sally), Beach Horn (Salesforce architect and Salesforce Ben contributor), and co-host Scott Stafford.What they cover:- What TDX 2026 was really trying to land — and what Parker Harris's headless vision means for your career- Agentforce Vibes 2.0 and AgentScript: why deterministic agents are the biggest developer shift in years- Why demand for Salesforce architects is up 27% while supply is only up 4%- The AI developer split — why skipping fundamentals is just as dangerous as ignoring AI- Security, React on Core, and the surfaces nobody's watching closely enough- How to get the most out of Dreamforce and Dreamin' events (and why you need to book your hotel today)- Sally's Golden Hoodie moment: what it felt like, and why she still just wants you to come say hiThe Hiring Edge covers hiring strategy, career development, and the forces reshaping the Salesforce ecosystem. New episodes every two weeks.Follow on Apple Podcasts, Spotify, or anywhere you listen.For jobs, visit thesalesforcerecruiter.com
Game designer and Atlantic writer Ian Bogost joins to argue that the true joy of technology is not frictionlessness, but the small sensory pleasures and constraints that keep us tethered to real life. Discover how AI could push us back into the world, not just behind our screens. CSA and Security Experts on Mythos Planning Scoop: NSA using Anthropic's Mythos despite Defense Department blacklist Mozilla Used Anthropic's Mythos to Find and Fix 271 Bugs in Firefox Anthropic's most dangerous AI model just fell into the wrong hands News: Anthropic Removes Claude Code From $20-A-Month "Pro" Subscription Plan For New Users (Developing) Anthropic Changes Pricing to Bill Firms Based on AI Use Amid Compute Crunch Microsoft's GitHub grounds Copilot account sign-ups amid capacity crunch Token demand makes an AI bubble unlikely, says Michael Dell Anthropic bites back in the compute wars with Amazon partnership SpaceX Strikes Deal With Cursor for $60 Billion Google Cloud Releases New TPU Chip Lineup in Bid to Speed Up AI Qwen3.6-35B-A3B: Agentic coding power, now open to all Kimi K2.6 Tech Blog: Advancing Open-Source Coding Sam Altman's "proof of human" company pushes into mainstream services Humanoid robots race past humans in Beijing half-marathon, showing rapid advances This Beanie Is Designed to Read Your Thoughts Next Time You Order a Dairy Queen Blizzard, You May Be Talking to AI Chip Maker TSMC Is More Bullish Than Ever on AI, Despite Iran War AI traffic to US retailers rose 393% in Q1, and it's boosting their revenue too Stanford's AI Index finds China has nearly closed the performance gap with the US despite spending 23 times less New Movie Trailer Shows First AI-Generated Performance By a Major Star: the Late Val Kilmer We gave an AI a 3 year retail lease in SF and asked it to make a profit | Andon Labs This pasta sauce wants to record your family LeWorldModel: Stable End-to-End Joint-Embedding Predictive Architecture from Pixels Can AI judge journalism? A Thiel-backed startup says yes, even if it risks chilling whistleblowers Tokyo court rules movie and anime 'spoiler articles' are copyright infringement in landmark criminal case — detailed, monetized plot summaries land man in Japanese prison Meta to start capturing employee mouse movements, keystrokes for AI training data AI's New Training Data: Your Old Work Slacks And Emails Depths of Wikipedia GitHub - google-labs-code/design.md: A format specification for describing a visual identity to coding agents. DESIGN.md gives agents a persistent, structured understanding of a design system. Is Your Site Agent-Ready? Jeff's Gemini happy ending The Must-Have Item in Silicon Valley Is a $178 Sweater With a CEO's Face Hosts: Leo Laporte, Jeff Jarvis, and Paris Martineau Guests: Lucas and Ian Bogost Download or subscribe to Intelligent Machines at https://twit.tv/shows/intelligent-machines. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: webroot.com/twit monarch.com with code IM outsystems.com/twit
Game designer and Atlantic writer Ian Bogost joins to argue that the true joy of technology is not frictionlessness, but the small sensory pleasures and constraints that keep us tethered to real life. Discover how AI could push us back into the world, not just behind our screens. CSA and Security Experts on Mythos Planning Scoop: NSA using Anthropic's Mythos despite Defense Department blacklist Mozilla Used Anthropic's Mythos to Find and Fix 271 Bugs in Firefox Anthropic's most dangerous AI model just fell into the wrong hands News: Anthropic Removes Claude Code From $20-A-Month "Pro" Subscription Plan For New Users (Developing) Anthropic Changes Pricing to Bill Firms Based on AI Use Amid Compute Crunch Microsoft's GitHub grounds Copilot account sign-ups amid capacity crunch Token demand makes an AI bubble unlikely, says Michael Dell Anthropic bites back in the compute wars with Amazon partnership SpaceX Strikes Deal With Cursor for $60 Billion Google Cloud Releases New TPU Chip Lineup in Bid to Speed Up AI Qwen3.6-35B-A3B: Agentic coding power, now open to all Kimi K2.6 Tech Blog: Advancing Open-Source Coding Sam Altman's "proof of human" company pushes into mainstream services Humanoid robots race past humans in Beijing half-marathon, showing rapid advances This Beanie Is Designed to Read Your Thoughts Next Time You Order a Dairy Queen Blizzard, You May Be Talking to AI Chip Maker TSMC Is More Bullish Than Ever on AI, Despite Iran War AI traffic to US retailers rose 393% in Q1, and it's boosting their revenue too Stanford's AI Index finds China has nearly closed the performance gap with the US despite spending 23 times less New Movie Trailer Shows First AI-Generated Performance By a Major Star: the Late Val Kilmer We gave an AI a 3 year retail lease in SF and asked it to make a profit | Andon Labs This pasta sauce wants to record your family LeWorldModel: Stable End-to-End Joint-Embedding Predictive Architecture from Pixels Can AI judge journalism? A Thiel-backed startup says yes, even if it risks chilling whistleblowers Tokyo court rules movie and anime 'spoiler articles' are copyright infringement in landmark criminal case — detailed, monetized plot summaries land man in Japanese prison Meta to start capturing employee mouse movements, keystrokes for AI training data AI's New Training Data: Your Old Work Slacks And Emails Depths of Wikipedia GitHub - google-labs-code/design.md: A format specification for describing a visual identity to coding agents. DESIGN.md gives agents a persistent, structured understanding of a design system. Is Your Site Agent-Ready? Jeff's Gemini happy ending The Must-Have Item in Silicon Valley Is a $178 Sweater With a CEO's Face Hosts: Leo Laporte, Jeff Jarvis, and Paris Martineau Guests: Lucas and Ian Bogost Download or subscribe to Intelligent Machines at https://twit.tv/shows/intelligent-machines. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: webroot.com/twit monarch.com with code IM outsystems.com/twit
Game designer and Atlantic writer Ian Bogost joins to argue that the true joy of technology is not frictionlessness, but the small sensory pleasures and constraints that keep us tethered to real life. Discover how AI could push us back into the world, not just behind our screens. CSA and Security Experts on Mythos Planning Scoop: NSA using Anthropic's Mythos despite Defense Department blacklist Mozilla Used Anthropic's Mythos to Find and Fix 271 Bugs in Firefox Anthropic's most dangerous AI model just fell into the wrong hands News: Anthropic Removes Claude Code From $20-A-Month "Pro" Subscription Plan For New Users (Developing) Anthropic Changes Pricing to Bill Firms Based on AI Use Amid Compute Crunch Microsoft's GitHub grounds Copilot account sign-ups amid capacity crunch Token demand makes an AI bubble unlikely, says Michael Dell Anthropic bites back in the compute wars with Amazon partnership SpaceX Strikes Deal With Cursor for $60 Billion Google Cloud Releases New TPU Chip Lineup in Bid to Speed Up AI Qwen3.6-35B-A3B: Agentic coding power, now open to all Kimi K2.6 Tech Blog: Advancing Open-Source Coding Sam Altman's "proof of human" company pushes into mainstream services Humanoid robots race past humans in Beijing half-marathon, showing rapid advances This Beanie Is Designed to Read Your Thoughts Next Time You Order a Dairy Queen Blizzard, You May Be Talking to AI Chip Maker TSMC Is More Bullish Than Ever on AI, Despite Iran War AI traffic to US retailers rose 393% in Q1, and it's boosting their revenue too Stanford's AI Index finds China has nearly closed the performance gap with the US despite spending 23 times less New Movie Trailer Shows First AI-Generated Performance By a Major Star: the Late Val Kilmer We gave an AI a 3 year retail lease in SF and asked it to make a profit | Andon Labs This pasta sauce wants to record your family LeWorldModel: Stable End-to-End Joint-Embedding Predictive Architecture from Pixels Can AI judge journalism? A Thiel-backed startup says yes, even if it risks chilling whistleblowers Tokyo court rules movie and anime 'spoiler articles' are copyright infringement in landmark criminal case — detailed, monetized plot summaries land man in Japanese prison Meta to start capturing employee mouse movements, keystrokes for AI training data AI's New Training Data: Your Old Work Slacks And Emails Depths of Wikipedia GitHub - google-labs-code/design.md: A format specification for describing a visual identity to coding agents. DESIGN.md gives agents a persistent, structured understanding of a design system. Is Your Site Agent-Ready? Jeff's Gemini happy ending The Must-Have Item in Silicon Valley Is a $178 Sweater With a CEO's Face Hosts: Leo Laporte, Jeff Jarvis, and Paris Martineau Guests: Lucas and Ian Bogost Download or subscribe to Intelligent Machines at https://twit.tv/shows/intelligent-machines. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: webroot.com/twit monarch.com with code IM outsystems.com/twit
The panel digs into the Cloudflare vs Vercel turf war over Next.js, breaking down what it really means that one engineer vibe coded a full framework rewrite in a week for $1,100 using Claude Code. Then things get spicy: from the Lovable data breach to an early Anthropic model escaping its sandbox, the crew debates whether the wave of AI security incidents is systemic, and what the build vs buy collapse means for developers rolling their own tools in the AI agent era. Resources One Engineer, One AI, One Week: Cloudflare Just Rebuilt Next.js: https://bytesizedbets.com/p/one-engineer-one-ai-one-week-cloudflare Cloudflare's vibe-coded Next.js replacement starts a turf war: https://cybernews.com/security/hackers-find-critical-flaws-in-cloudflares-nextjs-alternative/ How we rebuilt Next.js with AI in one week: https://blog.cloudflare.com/vinext/ JavaScript survey reveals gripes against Next.js: https://www.devclass.com/development/2026/02/10/javascript-survey-reveals-gripes-against-date-handling-webpack-and-nextjs-and-that-typescript-has-won/4090262 Claude Code's source code appears to have leaked — here's what we know: https://venturebeat.com/technology/claude-codes-source-code-appears-to-have-leaked-heres-what-we-know Anthropic accidentally exposes Claude Code source code: https://www.theregister.com/2026/03/31/anthropic_claude_code_source_code/ Claude Mythos Preview (Anthropic Red Team blog): https://red.anthropic.com/2026/mythos-preview/ Claude Mythos Preview — BBC coverage: https://www.bbc.com/news/articles/crk1py1jgzko We want to hear from you! How did you find us? Did you see us on Twitter? In a newsletter? Or maybe we were recommended by a friend? Fill out our listener survey! https://t.co/oKVAEXipxu Let us know by sending an email to our producer, Elizabeth, at elizabeth.becz@logrocket.com, or tweet at us at PodRocketPod. Check out our newsletter! https://blog.logrocket.com/the-replay-newsletter/ Follow us. Get free stickers. Follow us on Apple Podcasts, fill out this form, and we'll send you free PodRocket stickers! What does LogRocket do? LogRocket provides AI-first session replay and analytics that surfaces the UX and technical issues impacting user experiences. Start understanding where your users are struggling by trying it for free at LogRocket.com. Try LogRocket for free today. Chapters 00:00 Introduction & Panelist Welcome 02:00 Cloudflare Rewrote Next.js for $1,100 — Does It Matter? 06:30 Vercel Lock-In, Open Next & the Adapter Debate 09:00 AI Security Incidents — Lovable, Anthropic Source Code Leak & More 12:30 Is the Security Crisis Systemic or a People Problem? 16:00 Rolling Your Own Stack With AI Is a Terrible Idea 18:30 Mythos, Zero-Day Bugs & Anthropic's Security Credibility 22:00 Is Anthropic's "Safety First" Framing Just Marketing? 26:00 Fleet Management, Agent Burnout & Brain Fry 28:30 Hot Take — Noel: Software Is Getting Worse and AI Is to Blame 32:30 Hot Take — Paul: The Second Internet & Claude Code's Future 36:30 Hot Take — Jack: The Highlander Reboot Is Going to Slap 37:30 Hot Take — Paige: Think Before You Grant OAuth Permissions 40:00 Wrapping UpSpecial Guest: Jack Herrington.
Game designer and Atlantic writer Ian Bogost joins to argue that the true joy of technology is not frictionlessness, but the small sensory pleasures and constraints that keep us tethered to real life. Discover how AI could push us back into the world, not just behind our screens. CSA and Security Experts on Mythos Planning Scoop: NSA using Anthropic's Mythos despite Defense Department blacklist Mozilla Used Anthropic's Mythos to Find and Fix 271 Bugs in Firefox Anthropic's most dangerous AI model just fell into the wrong hands News: Anthropic Removes Claude Code From $20-A-Month "Pro" Subscription Plan For New Users (Developing) Anthropic Changes Pricing to Bill Firms Based on AI Use Amid Compute Crunch Microsoft's GitHub grounds Copilot account sign-ups amid capacity crunch Token demand makes an AI bubble unlikely, says Michael Dell Anthropic bites back in the compute wars with Amazon partnership SpaceX Strikes Deal With Cursor for $60 Billion Google Cloud Releases New TPU Chip Lineup in Bid to Speed Up AI Qwen3.6-35B-A3B: Agentic coding power, now open to all Kimi K2.6 Tech Blog: Advancing Open-Source Coding Sam Altman's "proof of human" company pushes into mainstream services Humanoid robots race past humans in Beijing half-marathon, showing rapid advances This Beanie Is Designed to Read Your Thoughts Next Time You Order a Dairy Queen Blizzard, You May Be Talking to AI Chip Maker TSMC Is More Bullish Than Ever on AI, Despite Iran War AI traffic to US retailers rose 393% in Q1, and it's boosting their revenue too Stanford's AI Index finds China has nearly closed the performance gap with the US despite spending 23 times less New Movie Trailer Shows First AI-Generated Performance By a Major Star: the Late Val Kilmer We gave an AI a 3 year retail lease in SF and asked it to make a profit | Andon Labs This pasta sauce wants to record your family LeWorldModel: Stable End-to-End Joint-Embedding Predictive Architecture from Pixels Can AI judge journalism? A Thiel-backed startup says yes, even if it risks chilling whistleblowers Tokyo court rules movie and anime 'spoiler articles' are copyright infringement in landmark criminal case — detailed, monetized plot summaries land man in Japanese prison Meta to start capturing employee mouse movements, keystrokes for AI training data AI's New Training Data: Your Old Work Slacks And Emails Depths of Wikipedia GitHub - google-labs-code/design.md: A format specification for describing a visual identity to coding agents. DESIGN.md gives agents a persistent, structured understanding of a design system. Is Your Site Agent-Ready? Jeff's Gemini happy ending The Must-Have Item in Silicon Valley Is a $178 Sweater With a CEO's Face Hosts: Leo Laporte, Jeff Jarvis, and Paris Martineau Guests: Lucas and Ian Bogost Download or subscribe to Intelligent Machines at https://twit.tv/shows/intelligent-machines. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: webroot.com/twit monarch.com with code IM outsystems.com/twit
Marcus Aurelius Anderson sits down with technology entrepreneur and AI strategist Stephen Scott for a candid, practical conversation about artificial intelligence and how everyday people can use it to improve their lives. Rather than approaching AI as a threat, Stephen reframes it as a personal force multiplier — one that can help anyone navigate job searches, manage finances, optimize health, and make better decisions. The conversation covers the emotional anxiety surrounding AI, the coming digital divide, deepfake security threats, and why the best time to start engaging with AI is right now. EPISODE HIGHLIGHTS: Use AI to Future-Proof Your Career — 7:22AI doesn't take jobs — people who know how to use AI replace those who don't. Stephen breaks down a practical step-by-step method for using AI to build a custom resume and cover letter optimized to beat Applicant Tracking Systems (ATS) and land more interviews. Build Personal AI "Folders" for Every Area of Life — 14:09Stephen shares how he uploads personal health records, financial statements, and life goals into AI platforms to get highly personalized guidance — essentially putting the world's most knowledgeable advisor on call 24/7 for your health, finances, and relationships. Don't Seed Your Intellect to AI — Challenge It — 17:36AI wants to please you, which means its first answer isn't always its best. Stephen explains his "daisy chain" method — bouncing responses between ChatGPT, Claude, and Gemini — to converge on the highest level of truth and avoid AI hallucinations. AI Security: Deepfakes, Scams, and Protecting Your Family — 47:33From phishing emails that look indistinguishable from your bank to deepfake video calls impersonating your loved ones, Stephen outlines the growing threats and practical defenses — including using a family "cold word" to verify real communications. Stephen Scott is a technology entrepreneur, author, and builder of practical AI tools with more than two decades of experience in digital platforms and business development. He has worked extensively helping companies strategize AI implementation at the enterprise level, and now dedicates much of his work to helping everyday people humanize AI — using it to simplify work, strengthen relationships, and make smarter decisions in daily life. He is also a committed advocate for closing the global digital divide, connecting underserved communities worldwide to technology and education. Stephen works closely with author Steven Pressfield and can be reached directly through his website at stephenscott.us. Learn more about the gift of Adversity and my mission to help my fellow humans create a better world by heading to www.marcusaureliusanderson.com. There you can take action by joining my ANV inner circle to get exclusive content and information.See omnystudio.com/listener for privacy information.
Your enterprise better have a cybersecurity strategy for AI. But where to start? Everywhere! Securing AI means securing all the AI layers and throughout the lifecycle: data, model, and applications, in training and in inference. Johna and John discuss what your strategy must address and how to get support for it because, of course, it's... Read more »
Is your cloud security strategy ready for the "messy middle" of AI adoption? With developers pushing code from inception to production in under three days using "vibe coding," and adversaries capable of exfiltrating data in just 25 minutes, human-led security is no longer fast enough .In this episode, Ashish sits down with Elad Koren from Palo Alto Networks (Cortex Cloud) to discuss the shift toward Agentic Cloud Security. Elad spoke to us about why bolting an AI chatbot onto legacy security tools doesn't work, and why you must run AI directly where your data lies . Elad shared a real-world case study: an organization that rapidly spun up an "internal" AI workload to test the market, only to have a red team discover it was exposed to the public internet with zero authentication .If you want to know how the role of cloud security practitioners will evolve from manual analysts to AI orchestrators within the next five years, listen to this episode.Guest Socials - Elad's LinkedinPodcast Twitter - @CloudSecPod If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:-Cloud Security Podcast- Youtube- Cloud Security Newsletter If you are interested in AI Security, you can check out our sister podcast - AI Security PodcastQuestions asked:(00:00) Introduction(02:50) Who is Elad Koren? (Palo Alto Networks / RSA Security) (04:00) The Explosion of "Vibe Coding" and AI Applications (05:10) How CNAPP is Evolving from Posture to Active Protection (07:20) The New Threat Model: 25-Minute Exfiltration Windows (09:30) What is "Agentic Cloud Security"? (Fighting Machines with Machines) (11:40) The "Messy Middle" and the Evolution of Security Practitioners (14:30) Platformization: Why Security Can No Longer Survive in Silos (16:50) Blurring the Lines Between Cloud and Enterprise Estates (18:20) Case Study: An Unauthenticated "Internal" AI Workload Exposed (20:30) How AI is Shrinking Code-to-Cloud Cycles to 3 Days (22:30) The Coming Crisis: Security Token Budgets vs. Speed (23:30) Fun Questions: Kangaroo Jerky Tasting (25:20) Hobbies & Family: Cycling, Audiobooks, and Fatherhood (26:30) Favorite Food: Thai Cuisine in the Bay Area Resources spoken about during the episode:- Cortex Cloud- Symphony 26 - The Agentic SOC Summit- Palo Alto Networks Linkedin Page- Elad's Linkedin
The Chopping Block crew and Wintermute's Evgeny Gaevoy debate whether Canton is truly permissionless, if Ethereum Foundation should double down on cypherpunk ideals or embrace institutions, and how AI-driven attacks are forcing everyone in crypto and open source to rethink security models. Welcome to The Chopping Block — where crypto insiders Haseeb Qureshi, Tom Schmidt, Tarun Chitra, and Robert Leshner chop it up about the latest in crypto. This week we've got Evgeny Gaevoy, Founder of Wintermute, known for sharp takes and sharper trades. First up, the group unpacks the Twitter war over enterprise chain Canton—does it deserve to be called “permissionless”, or is it just TradFi with extra steps? Cue the Solana–Ethereum truce, and a rare moment where every old-school degenerate finds a common enemy. Evgeny makes a strong case for why, despite years of jokes at the Ethereum Foundation's expense, he thinks they're finally ahead of the curve by doubling down on cypherpunk roots—even if it makes ETH a little more Linux and a little less Nasdaq. But does decentralization matter if stablecoins and institutions now control the fork-choice? Haseeb and Evgeny spar over whether Ethereum's “world computer” vision means inviting in the corporate crowd or keeping the punk sanctuary alive. The mood shifts as the hosts dig into crypto's unfolding security meltdown: AI-written hacks, NPM supply chain fiascos, and what that means for the future of open source in crypto. Plus, a fresh new hack (RIP Drift), and predictions on how defensive tech (or lack thereof) will shape the next cycle. Barstool banter, spicy takes, and zero investment advice as always—let's get into it. Listen to the episode on Apple Podcasts, Spotify, Pods, Fountain, Podcast Addict, Pocket Casts, Amazon Music, or on your favorite podcast platform. Show highlights
© 2020-2026 Ivy Podcast Discovery LLC
