Podcasts about CrowdStrike

This episode covers a CISA contractor's accidental exposure of AWS GovCloud credentials and internal system details on GitHub, the FBI's efforts to patch vulnerable routers, and a critical NGINX vulnerability with public proof-of-concept code. The team also discusses Microsoft's handling of a disputed Azure Backup security finding, the challenges of vulnerability disclosure and CVE assignment, and GitHub's ban of security researcher Nightmare Eclipse following the publication of unpatched Windows vulnerability research.Join us LIVE on Mondays, 4:30pm EST.A weekly Podcast with BHIS and Friends. We discuss notable Infosec, and infosec-adjacent news stories gathered by our community news team.https://www.youtube.com/@BlackHillsInformationSecurityChat with us on Discord! - https://discord.gg/bhis

Patrick Moorhead and Daniel Newman return from Dell Technologies World to unpack Google I/O's Gemini-as-operating-system moment, the Blackstone-Google TPU joint venture nobody saw coming, NVIDIA's $81.6 billion quarter with a $91 billion guide, and debate whether or not the "SaaSpocalypse" is finally over. The handpicked topics for this week are: Google I/O 2026: Gemini Becomes the Operating System. Google I/O repositioned Gemini from a product to the operating layer for everything Google does, and the numbers backed it up. 900 million monthly active users, 3.2 quadrillion tokens per month, a 7x jump year over year. Pat's headline: this is about widening distribution, not just model quality. Gemini 3.5 Flash, Antigravity 2.0, Gemini Spark, and Android XR glasses all extend Gemini into surfaces that no competitor can replicate. Daniel's read: the token-cost reckoning is coming, and when enterprise subsidies end, models that can deliver value at a lower cost per token will become the ground zero of the next era. (The Decode) Dell Technologies World 2026: AI Factory Goes Agentic, 1,000 New AI Server Clients. Pat and Dan were both on the ground in Las Vegas and called it the most consequential Dell event in years. Michael Dell and Jensen Huang co-keynoted to launch the next-generation Dell AI Factory with liquid-cooled PowerEdge XE9780 servers, Dell Deskside Agentic AI, and a multi-model ecosystem including Google Distributed Cloud with Gemini 3.0, on-prem OpenAI Codex, and Grok. 1,000 new AI server clients in a single quarter is the cleanest leading indicator of enterprise demand heading into Dell's Q1 print. Pat's biggest takeaway: OpenShell as a control plane for agents spanning from the GB10 all the way to the PowerEdge rack has been the missing orchestration piece. Daniel's read: large enterprises are going to build hybrid AI architectures and want to deliver tokens at the lowest possible on-prem cost, and Dell is ready. (The Decode) Blackstone and Google Launch a $5B TPU Joint Venture. Pat called it the biggest story of the week and the one that went most under the radar. For the first time, a hyperscaler has released its proprietary AI silicon to a third-party distribution entity. The $5 billion deal, up to $25 billion with leverage, targets 500 megawatts of capacity online by 2027. Daniel's framing: Google decided its custom silicon is worth more as a commercially distributed asset than as a captive moat. Pat's note: the proprietary nature of TPU infrastructure means retrofitting existing data centers will require real work, but the sovereign angle gives the JV a natural first market. (The Decode) AMD Helios, $10B Taiwan Investment, and the MI450 Anchor Customer Rumor. AMD dropped a $10 billion Taiwan ecosystem investment alongside confirmation that Helios rack-scale is on track for multi-gigawatt customer deployments beginning 2H 2026. A Citi rumor surfaced Anthropic as the anchor MI450 customer, to be formally announced at AMD's Advancing AI Day in July. Pat's read: Lisa Su has made a commitment and she almost never falls through. The analysts who said AMD would not ship anything in the second half of 2026 are going to be very wrong. (The Decode) OpenAI Guaranteed Capacity: Sam Altman's Moment. OpenAI launched multi-year compute commitment contracts the same week that Anthropic was struggling with capacity outages. Pat called it brilliant and said it makes Sam Altman look like a genius. It's the inference-era analog of cloud reserved instances: guaranteed availability at a locked price for one, two, or three years. Daniel added context: Anthropic's annualized ARR growth is nearly double OpenAI's and is about to lap them, so the model war is far from over. But for enterprises that need reliability, OpenAI just made the most compelling enterprise trust argument of the week. (The Decode) Sovereign AI Crosses $30 Billion at NVIDIA, 14% of Revenue. NVIDIA disclosed sovereign AI as a segment-level line for the first time, at $30 billion in FY26, 3x the prior year. Pat has been tracking sovereign for years and calls this the clearest possible signal that it has moved from marketing term to structural revenue category. Daniel's point: outside of the four or five hyperscalers doing all the major buying, sovereign is where the incremental demand is coming from and it is very real. (The Decode)  The Flip: Is the SaaSpocalypse Over? Daniel took the affirmative and came in loaded. Every earnings report across CrowdStrike, Cloudflare, ServiceNow, Intuit, Salesforce, Atlassian, Notion, and monday.com shows companies growing with the AI tailwind. His core argument: there was a reason SaaS emerged 20 to 30 years ago. Companies do not want to be in the software business. Vibe-coded flat-file apps with no security, no governance, no data lineage look great in a kitchen demo and fall apart at enterprise scale. The SaaSpocalypse is over and he is tired of talking about it. Pat's counter: BofA slapped Salesforce with an Underperform at $160, 8% below where it trades. Snowflake is down 35% year-to-date. A senior Dell executive told him Dell will not buy another SaaS system and is tripling internal software creation. The growth question is real even if the terminal value is not zero. Both agree the tape will tell the real story. (The Flip) NVIDIA Q1 FY27 Results. Record $81.6 billion revenue, up 85% year over year. Data center at $75.2 billion, up 92%. Non-GAAP EPS of $1.87, up 140%. Q2 guide of $91 billion crushed the $86.8 billion consensus by $4 billion at the midpoint. $80 billion buyback authorized, dividend raised 25x. The stock went down after hours for the fifth consecutive time following a massive beat and raise. Pat's read: NVIDIA may be worth $8 to $9 trillion on paper at a sector-average multiple and 75% gross margins held. Daniel's framing: this is the best company in the world, possibly tied with Google, and it is becoming the Apple of this era. He sees a long safe journey of continued growth vs. speculative dollars chasing quantum and space names that can double in a week. (Bulls and Bears) Intuit: Earnings Beat, Revenue Miss. A 17% workforce cut, raised guidance, and $8 billion buyback were authorized. Pat's emerging thesis: these companies are cutting people to afford tokens. Intuit comes at a moment when OpenAI's ChatGPT finance plugin via Stripe is building an intelligence layer that could sit on top of Intuit's products without displacing them directly, at least not yet. (Bulls and Bears) Lenovo: Record $21.6 billion quarterly revenue, up 27% year over year. The company's fastest growth in five years. AI-related revenue is up 84% year over year to 38% of total company revenue. ISG returned to full-year operating profit with a $21 billion AI server pipeline. Pat and Dan both read Lenovo's results as NVIDIA tea leaves, a leading indicator of enterprise AI server demand that directly validates what Dell said on stage about 1,000 new AI server clients. (Bulls and Bears) Analog Devices: Record $3.62 billion revenue, up 37% year over year. EPS up 67%. Q3 guide of $3.9 billion crushed consensus by $270 million. Data center up 90%, industrial up 56%, comms up 79%. The $1.5 billion Empower Semiconductor acquisition adds integrated voltage regulator technology that can reduce AI data center power consumption by 10 to 15% while shrinking the power footprint by up to 4x. Daniel's closing point: you can't build AI servers without players like Analog Devices and Lattice Semiconductor. These essential node companies aren't boring, they're foundational. (Bulls and Bears) Check out all of our Dell Technologies World coverage linked in the show notes including our sit-downs with Michael Dell, Jeff Clark, and key customers. Be part of our community. Hit that subscribe button and see you at Computex.   The Decode Google I/O 2026 — Gemini Becomes the Operating System: 900M MAU, 3.2 Quadrillion Tokens/Month, Gemini Omni, Antigravity 2.0, Gemini Spark, and Android XR Glasses https://blog.google/innovation-and-ai/sundar-pichai-io-2026/ Dell Technologies World 2026 — AI Factory Goes Agentic: Michael Dell + Jensen Huang Unveil PowerEdge XE9780, Dell Deskside Agentic AI, and a Multi-Model Ecosystem; Dell Adds 1,000 AI-Server Clients in the Quarter https://www.dell.com/en-us/blog/dell-technologies-world-a-bright-and-beautiful-road-ahead/ Blackstone + Google Launch $5B (Up to $25B w/ Leverage) JV to Sell Google TPUs Outside Google Cloud — First Time a Hyperscaler Has Released Its Custom Silicon to a Third-Party Distribution Channel; 500 MW Online by 2027, Benjamin Treynor Sloss as CEO https://www.blackstone.com/news/press/blackstone-announces-joint-venture-with-google-to-create-new-tpu-cloud/ AMD Announces $10B+ Taiwan Ecosystem Investment — Helios Rack-Scale Platform With MI450X GPUs and Venice EPYC on TSMC 2nm Targeting Multi-Gigawatt Deployments 2H 2026; the Clearest Second-Source Signal Yet https://ir.amd.com/news-events/press-releases/detail/1286/amd-announces-more-than-10-billion-in-taiwan-ecosystem-investments-to-accelerate-ai-infrastructure OpenAI Launches Guaranteed Capacity — Multi-Year Compute Commitments Turn Inference Capacity Into a New Enterprise Asset Class https://www.cnbc.com/2026/05/19/openai-announces-new-guaranteed-capacity-offering-for-customers-to-secure-compute.html The Sovereign AI Government Investment Wave — NVIDIA Discloses ~$30B Sovereign-AI Revenue (14% of Mix); UAE, Saudi, Japan, Australia, France All in Motion This Week https://finance.yahoo.com/markets/stocks/articles/analog-devices-q2-earnings-beat-153000996.html   The Flip: Is the SaaSpocalypse Officially Over — or Is BofA's Split Call (ServiceNow Buy, Salesforce Underperform) the Real Signal That Platform AI Monetization Is Going to Be Bifurcated, Not Universal? FOR:  BofA Reinstates Coverage of ServiceNow, Salesforce — Barron's (May 18) https://www.barrons.com/articles/servicenow-salesforce-stock-price-ai-7b109396 Embedded workflow + system-of-record stickiness still wins citing ServiceNow Q1 2026 financial results https://newsroom.servicenow.com/press-releases/details/2026/ServiceNow-Reports-First-Quarter-2026-Financial-Results/default.aspx Intuit Q3 revenue up 10%, cuts 17% of staff — SEC 8-K filing (May 20) https://www.stocktitan.net/sec-filings/INTU/8-k-intuit-inc-reports-material-event-b23073259896.html   AGAINST:  BofA Slaps Salesforce With Underperform Rating, $160 Price Target — 24/7 Wall St (May 18) https://247wallst.com/investing/2026/05/18/bofa-slaps-salesforce-with-underperform-rating-160-price-target-is-the-ai-story-falling-flat/ BofA resets Salesforce price target to Underperform — TheStreet (May 19) https://www.thestreet.com/investing/stocks/bofa-resets-salesforce-stock-price-target-to-underperform-at-160 Snowflake -35% YTD heading into May 27 print is the canary that platform stickiness is being repriced https://eciks.org/4640-22295-snowflake-set-to-report-q1-earnings-may-27-with-ai-strategy-in-focus OpenAI Guaranteed Capacity + Dell on-prem Codex create a credible path to displace seat-based SaaS https://www.cnbc.com/2026/05/19/openai-announces-new-guaranteed-capacity-offering-for-customers-to-secure-compute.html Bulls & Bears NVIDIA Q1 FY27 ACTUALS https://www.cnbc.com/2026/05/20/nvidia-nvda-earnings-report-q1-2027.html Intuit Q3 FY26 Actuals https://investors.intuit.com/news-events/press-releases/detail/1312/intuit-reports-strong-third-quarter-results-and-raises-full-year-revenue-guidance Lenovo Q4 FY26 ACTUALS https://www.cnbc.com/2026/05/22/lenovo-shares-jump-15percent-on-record-earnings-as-ai-revenue-nearly-doubles.html Analog Devices Q2 FY26 ACTUALS https://finance.yahoo.com/markets/stocks/articles/analog-devices-q2-earnings-beat-153000996.html  

Are you looking to save time, make money, and start winning with less risk? Then head to https://www.ovtlyr.com.Learn more about OVTLYR: https://youtu.be/TUCbD5KovlcIn this video, we're breaking down some of the most watched growth stocks on the market right now, including CrowdStrike, Nvidia, AMD, Micron, Rocket Lab, IBM, BlackBerry, and Tesla. These are companies tied to some of the biggest long-term themes in the market: artificial intelligence, cybersecurity, semiconductors, quantum computing, space technology, autonomous driving, enterprise software, and next-generation infrastructure.The goal is not to chase hype. The goal is to understand which stocks may have the kind of growth potential that can create massive wealth over time, while also recognizing the risks that come with fast-moving names. Some of these stocks have already made early investors life-changing returns. Others may still be in the early stages of much bigger trends.We'll look at what makes each company interesting, what investors are watching, and why these tickers continue to attract attention from traders, analysts, and long-term investors. Whether you're focused on AI stocks, tech stocks, semiconductor stocks, cybersecurity stocks, space stocks, or the next major market leaders, this breakdown will help you think through the opportunity with more clarity.Nothing in this video is financial advice. Always do your own research and manage your risk.#CRWD #NVDA #AMD #MU #RKLB #IBM #BB #TSLA #StockMarket #AIStocks #TechStocks #GrowthStocks #Investing #Trading #OVTLYRHere's how we plan to DOMINATE the US Investing Championship for 20261. You can see our step by step trading plan developed by a team of over 20 quants for FREE by clicking here: https://docs.google.com/presentation/d/1ObJTWbt6pcxCtMCjw8Cutz_bjHnXvzEAcuA724668-M/edit?usp=sharing2. You can follow along with EVERY SINGLE TRADE Taken in the US Investing Championship here: https://docs.google.com/spreadsheets/d/1_a-Oi7vdCtaC-fpusF1VtRp87vLuxZH3tgXUxms5DW4/edit?usp=sharingNO INVESTMENT ADVICE. The information available through the Service is for general informational purposes only and references to specific securities, investment programs or funds are only for illustrative or educational purposes. No portion of the Service is a solicitation, recommendation, endorsement, or offer by OVTLYR or any third-party service provider to buy or sell any securities or financial instruments. You should not construe any such information or other material on the Service as legal, tax, investment, financial, or other advice. OVTLYR is not a fiduciary by virtue of any person's use of the Service. You alone assume the sole responsibility for evaluating the merits and risks associated with your use of any information on the Service. Nothing herein constitutes an offer or a solicitation of the purchase or sale of any security to any person in any jurisdiction in which such an offer or solicitation is not authorized. All purchases and sales of securities must and are to be made through a registered securities broker or dealer of your choosing with whom you have a contractual relationship and have agreed to accept such broker's or dealer's terms and conditions.

In this episode of Shifting Ground, hosts Larry Rubin and Nick Gvosdev are joined by Dmitri Alperovitch, Chairman of Silverado Policy Accelerator, co-founder of CrowdStrike, and author of World on the Brink: How America Can Beat China in the Race for the 21st Century. Alperovitch discusses the collision of cybersecurity and international affairs, arguing that the cyber “problem” is fundamentally a geopolitical issue driven by Russia, China, Iran, and North Korea. Get full access to FPRI Insights at fpriinsights.substack.com/subscribe

Die Wall Street eröffnet nach den Verlusten der letzten Tage erneut schwächer, wobei vor allem Technologiewerte unter Druck stehen. Belastend wirken weiter steigende Renditen am US-Anleihemarkt, mit den Renditen der 10-jährigen Staatsanleihe bei 4,62% und damit auf den höchsten Stand seit Februar 2025. Gleichzeitig sorgen die Unsicherheit rund um Iran sowie anhaltende Inflationssorgen für Nervosität. Zwar hatte Donald Trump einen offenbar geplanten Angriff auf Iran kurzfristig gestoppt, die Märkte bleiben aber angespannt, da jederzeit neue geopolitische Eskalationen drohen. Im Fokus stehen heute Home Depot nach soliden Quartalszahlen und bestätigtem Jahresausblick sowie Google und Blackstone, die mit einem neuen KI-Cloud-Joint-Venture direkten Konkurrenzdruck auf CoreWeave auslösen. Die Aktie verliert vorbörslich deutlich. Auch Halbleiterwerte stehen im Mittelpunkt: Nvidia, AMD, Broadcom, Marvell und GlobalFoundries erhalten teils kräftige Kurszielanhebungen von Evercore und HSBC mit Verweis auf den anhaltenden KI-Boom und steigende Nachfrage nach Inferenz- und Rechenkapazitäten. CrowdStrike profitiert ebenfalls von positiven Analystenkommentaren, während Meta laut Reuters einen Stellenabbau von rund 10% plant. Insgesamt bleibt die Marktstimmung fragil: starke KI-Fantasie trifft auf steigende Zinsen, hohe Ölpreise und wachsende geopolitische Risiken. Ein Podcast - featured by Handelsblatt. ► Erhalte einen exklusiven 15% Rabatt auf Saily eSIM Datentarife! Lade die Saily-App herunter und benutze den Code wallstreet beim Bezahlen: https://saily.com/wallstreet * ► Entdecke den exklusiven NordVPN Deal! Jetzt risikofrei testen mit einer 30-Tage-Geld-zurück-Garantie: https://nordvpn.com/wallstreet * ► Direkt an der Börse handeln mit tradegate.direct: https://bit.ly/wallstreet_april * +++ Alle Rabattcodes und Infos zu unseren Werbepartnern findet ihr hier: https://linktr.ee/wallstreet_podcast +++ ► Mehr Einblicke: https://bit.ly/360wallstreetpc * Impressum: https://www.360wallstreet.de/impressum *Werbung

Die Wall Street eröffnet nach den Verlusten der letzten Tage erneut schwächer, wobei vor allem Technologiewerte unter Druck stehen. Belastend wirken weiter steigende Renditen am US-Anleihemarkt, mit den Renditen der 10-jährigen Staatsanleihe bei 4,62% und damit auf den höchsten Stand seit Februar 2025. Gleichzeitig sorgen die Unsicherheit rund um Iran sowie anhaltende Inflationssorgen für Nervosität. Zwar hatte Donald Trump einen offenbar geplanten Angriff auf Iran kurzfristig gestoppt, die Märkte bleiben aber angespannt, da jederzeit neue geopolitische Eskalationen drohen. Im Fokus stehen heute Home Depot nach soliden Quartalszahlen und bestätigtem Jahresausblick sowie Google und Blackstone, die mit einem neuen KI-Cloud-Joint-Venture direkten Konkurrenzdruck auf CoreWeave auslösen. Die Aktie verliert vorbörslich deutlich. Auch Halbleiterwerte stehen im Mittelpunkt: Nvidia, AMD, Broadcom, Marvell und GlobalFoundries erhalten teils kräftige Kurszielanhebungen von Evercore und HSBC mit Verweis auf den anhaltenden KI-Boom und steigende Nachfrage nach Inferenz- und Rechenkapazitäten. CrowdStrike profitiert ebenfalls von positiven Analystenkommentaren, während Meta laut Reuters einen Stellenabbau von rund 10% plant. Insgesamt bleibt die Marktstimmung fragil: starke KI-Fantasie trifft auf steigende Zinsen, hohe Ölpreise und wachsende geopolitische Risiken. Abonniere den Podcast, um keine Folge zu verpassen! ____ Folge uns, um auf dem Laufenden zu bleiben: • X: http://fal.cn/SQtwitter • LinkedIn: http://fal.cn/SQlinkedin • Instagram: http://fal.cn/SQInstagram

Cramer explains why The Club is trimming this cybersecurity stock. Become an Investing Club member to go behind the scenes with Jim Cramer and Jeff Marks every day as they talk candidly about the market's biggest headlines, analyst calls and holdings in the Charitable Trust – and see up close how they decide when, and if, to take action on stocks. Sign up here:  cnbc.com/morningtake   CNBC Investing Club Disclaimer Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

The CrowdStrike 2026 Financial Services Threat Landscape report is now live! Adam and Cristian are here to break down the trends and techniques affecting an industry that has become a major target for adversaries. Financial services is the fourth most-targeted industry as of Q1 2026 and accounts for 12% of all observed adversary activity. eCrime adversaries target the industry for financial gain. MUTANT SPIDER, the most active eCrime threat in the past 12 months, is tied to several intrusions in which they sell access to ransomware groups. The Democratic People's Republic of Korea set its sights on cryptocurrency and fintech entities to steal funds for its military programs. While financial gain may seem the obvious goal in targeting financial services, it's not the only one. Nation-state adversaries in China, Iran, and Russia launched operations against the sector for intelligence collection. Hacktivists conducted DDoS campaigns and data breach operations, primarily driven by ideological conflicts. Even if you don't work in the financial services sector, you most likely work with it — consumer banks, credit card companies, insurers, payment processors, and related businesses are all part of everyday business and personal life. Tune in to hear which adversaries are targeting them and why, which regions are in the crosshairs, and how companies should defend themselves. And stick around to hear about Adam's foray into ice cream cakes.

Die Wall Street dreht kurz vor Handelsstart ins Plus. Der Iran soll ein neues Friedensangebot eingereicht haben. Vorbörslich wurde die Wall Street noch durch den Nahostkonflikt belastet, nachdem Drohnenangriffe in der Nähe nuklearer Infrastruktur der Vereinigten Arabischen Emiraten stattgefunden haben. Außerdem erhöht Donald Trump den Druck auf den Iran. Gleichzeitig steigt die Rendite der zehnjährigen US-Staatsanleihen mit rund 4,6 Prozent auf den höchsten Stand seit Anfang 2025. Ein Zeichen wachsender Inflations- und Zinssorgen. Schwache Konjunkturdaten aus China verstärken zusätzlich die Sorge über eine Abschwächung der Weltwirtschaft. Im Fokus stehen heute die Aktien von Baidu, nach besser als erwarteten Quartalszahlen und starkem Wachstum im KI-Cloudgeschäft, Bio-Rad nach Berichten über einen Einstieg des aktivistischen Investors Elliott sowie Tesla, nachdem die Preise für das Model Y erstmals seit zwei Jahren angehoben wurden. Analystenseitig sorgt vor allem die Herabstufung von Applied Materials durch Morgan Stanley für Aufmerksamkeit, obwohl der Konzern zuletzt starke Zahlen geliefert hatte. Positiv aufgenommen werden dagegen höhere Kursziele für Nvidia, CrowdStrike und Dell Technologies, die durch anhaltende Dynamik im KI- und Infrastrukturgeschäft getragen werden. Ein Podcast - featured by Handelsblatt. ► Erhalte einen exklusiven 15% Rabatt auf Saily eSIM Datentarife! Lade die Saily-App herunter und benutze den Code wallstreet beim Bezahlen: https://saily.com/wallstreet * ► Entdecke den exklusiven NordVPN Deal! Jetzt risikofrei testen mit einer 30-Tage-Geld-zurück-Garantie: https://nordvpn.com/wallstreet * ► Direkt an der Börse handeln mit tradegate.direct: https://bit.ly/wallstreet_april * +++ Alle Rabattcodes und Infos zu unseren Werbepartnern findet ihr hier: https://linktr.ee/wallstreet_podcast +++ ► Mehr Einblicke: https://bit.ly/360wallstreetpc * Impressum: https://www.360wallstreet.de/impressum *Werbung

Die Wall Street dreht kurz vor Handelsstart ins Plus. Der Iran soll ein neues Friedensangebot eingereicht haben. Vorbörslich wurde die Wall Street noch durch den Nahostkonflikt belastet, nachdem Drohnenangriffe in der Nähe nuklearer Infrastruktur der Vereinigten Arabischen Emiraten stattgefunden haben. Außerdem erhöht Donald Trump den Druck auf den Iran. Gleichzeitig steigt die Rendite der zehnjährigen US-Staatsanleihen mit rund 4,6 Prozent auf den höchsten Stand seit Anfang 2025. Ein Zeichen wachsender Inflations- und Zinssorgen. Schwache Konjunkturdaten aus China verstärken zusätzlich die Sorge über eine Abschwächung der Weltwirtschaft. Im Fokus stehen heute die Aktien von Baidu, nach besser als erwarteten Quartalszahlen und starkem Wachstum im KI-Cloudgeschäft, Bio-Rad nach Berichten über einen Einstieg des aktivistischen Investors Elliott sowie Tesla, nachdem die Preise für das Model Y erstmals seit zwei Jahren angehoben wurden. Analystenseitig sorgt vor allem die Herabstufung von Applied Materials durch Morgan Stanley für Aufmerksamkeit, obwohl der Konzern zuletzt starke Zahlen geliefert hatte. Positiv aufgenommen werden dagegen höhere Kursziele für Nvidia, CrowdStrike und Dell Technologies, die durch anhaltende Dynamik im KI- und Infrastrukturgeschäft getragen werden. Abonniere den Podcast, um keine Folge zu verpassen! ____ Folge uns, um auf dem Laufenden zu bleiben: • X: http://fal.cn/SQtwitter • LinkedIn: http://fal.cn/SQlinkedin • Instagram: http://fal.cn/SQInstagram

Sahil Patel is the CEO of Spiralyze, a company specializing in predictive CRO and data-driven landing page optimization, working with leading SaaS brands such as ActiveCampaign, Crowdstrike, and Deel. With over two decades of experience in operations, sales, software development and finance, he is the previous CEO and founder of ER Express, a successful SaaS company. Sahil is a graduate of Emory University and holds an MBA from Harvard. He's a seasoned podcast guest, with 20+ recent appearances and significant engagement. Connect with Jon Dwoskin: Twitter: @jdwoskin Facebook: https://www.facebook.com/jonathan.dwoskin Instagram: https://www.instagram.com/thejondwoskinexperience/ Website: https://jondwoskin.com/LinkedIn: https://www.linkedin.com/in/jondwoskin/ Email: jon@jondwoskin.com Get Jon's Book: The Think Big Movement: Grow your business big. Very Big!   Connect with Sahil Patel:Website: https://www.spiralyze.com/ LinkedIn: https://www.linkedin.com/in/sahilanamipatel/ *E - explicit language may be used in this podcast.

On this episode, the guys discuss Google's announcement of the new "Googlebook" (a reported merge of Android and Chrome OS), growing controversy and litigation around iReady and screen time in schools, and a debrief of the recent Canvas/Instructure security incident with guest Michael Klein from the Institute for Security and Technology. Unofficial demo of AluminumOS: https://youtu.be/dXmFIfv_tIA?si=Baw0OInBqJf-IkDD The largest segment is a deep dive into the Canvas/Instructure incident with cybersecurity expert Michael Klein. He walks through the timeline (initial unauthorized activity detected April 29; exfiltration via cross‑site scripting of a free‑for‑teachers account; a later attack that posted extortion notes to some users), the involvement of CrowdStrike, the public claims by the ShinyHunters group, and Instructure's statement about an agreement with the actor. The conversation covers the technical nature of the attack, impacts on confidentiality, integrity and availability (including disruptions to finals/registrar functions), the downstream consequences for integrations with SIS and other edtech systems, and why many institutions remain cautious to reconnect APIs. Michael and the hosts discuss practical guidance and explore policy implications. Join us July 6th-10th, 2026 – GAMEIS Conference in Savannah, GA ———— Sponsored by: SysCloud Meter Fortinet Incident IQ ClassLink NTP ———— Join the K12TechPro Community (exclusively for K12 Tech professionals) Buy some swag (tech dept gift boxes, shirts, hoodies...)!!! Email us at k12techtalk@gmail.com OR our "professional" email addy is info@k12techtalkpodcast.com X @k12techtalkpod Facebook Visit our LinkedIn Music by Colt Ball Disclaimer: The views and work done by Josh, Chris, and Mark are solely their own and do not reflect the opinions or positions of sponsors or any respective employers or organizations associated with the guys. K12 Tech Talk itself does not endorse or validate the ideas, views, or statements expressed by Josh, Chris, and Mark's individual views and opinions are not representative of K12 Tech Talk. Furthermore, any references or mention of products, services, organizations, or individuals on K12 Tech Talk should not be considered as endorsements related to any employer or organization associated with the guys.

Alissa Coram and Ken Shreve walk through Thursday's market action and discuss key stocks to watch in Stock Market Today. Learn more about your ad choices. Visit megaphone.fm/adchoices

At RBC Capital Markets' Private Tech Conference, Dan Nathan interviews RBC analysts Brad Erickson, Rishi Jaluria, Matt Swanson, and Matt Hedberg on Q1 earnings and AI's impact across internet and software. Erickson says demand is solid, hyperscalers are raising CapEx as cloud ROI improves, and explains why Meta's higher spend hurt the stock versus Google/Amazon's accelerating cloud revenue and margins; he ranks Amazon over Google over Meta and discusses Uber's AV positioning versus Waymo. Jaluria is bullish on Microsoft's broad AI opportunities, notes Copilot's growing paid users, and discusses multimodel strategy, small/medium models, and Oracle's controversial OpenAI-linked data center build and financing. Swanson covers ad/martech, highlighting Adobe's “orchestration” narrative, Trade Desk's holding-company tensions, and AppLovin's ROAS-driven model. Hedberg argues cyber and infrastructure need “more, not less” security post-Anthropic's Mythos, cites capitulation in software sentiment, favors consolidators like CrowdStrike, Palo Alto, Snowflake, Datadog, and ServiceNow, and notes AI-driven efficiency and layoffs as potential catalysts amid continued volatility. —FOLLOW USYouTube: @RiskReversalMediaInstagram: @riskreversalmediaTwitter: @RiskReversalLinkedIn: RiskReversal Media

Java 26 est là, GraalVM cartonne chez Trivago (43 à 12 réplicas !), OpenJDK interdit le code généré par LLM, Spring et Quarkus enchaînent les releases. Côté IA : ADK 1.0, A2A, Lyria 3 chante (mal ?), Yann LeCun lance Ami Labs et ses World Models. Mythos d'Anthropic fait trembler la sécu, Claude Code a leaké son source, et les git worktrees envahissent vos terminaux. Bonus : la mort annoncée de l'IDE, vagues de licenciement chez Oracle et Block, et nos voix toutes clonées. Bon week-ends de mai ! Enregistré le 7 mai 2026 Téléchargement de l'épisode LesCastCodeurs-Episode-340.mp3 ou en vidéo sur YouTube. News Langages Retour d'expérience d'une migration vers graalVM chez Trivago https://medium.com/graalvm/inside-trivagos-graalvm-migration-native-image-for-graphql-at-scale-912bca9df841 La passerelle GraphQL de Trivago (point d'entrée de tout le trafic vers 48 microservices) souffrait de pics de timeout au démarrage JVM Résultats spectaculaires après migration vers GraalVM Native Image : réduction des réplicas de 43 à 12, CPU de 15 à 5 cœurs, images Docker plus légères Obstacles techniques : incompatibilité Log4j → migration vers Logback, remplacement de Mockk par Testcontainers, compilation CI/CD très gourmande Netflix DGS et d'autres librairies manquaient de support GraalVM → l'équipe a contribué des correctifs upstream en open source Approche recommandée : commencer par les services les moins complexes, investir massivement dans les tests automatisés À la 14e migration, le processus était si rodé qu'il allait plus vite que la toute première tentative OpenJDK Interim Policy on Generative AI - https://openjdk.org/legal/ai OpenJDK adopte une politique intérimaire interdisant toute contribution incluant du contenu généré par des LLMs, modèles de diffusion ou systèmes deep-learning Le périmètre est large : code source, texte, images dans les dépôts Git, pull requests GitHub, emails, pages wiki et issues JBS Les contributeurs peuvent utiliser les outils d'IA de manière privée pour comprendre, déboguer et relire le code OpenJDK, mais ne peuvent pas contribuer le contenu généré Trois risques justifient cette politique : surcharge des relecteurs face au code plausible mais incorrect, risques de sûreté/sécurité pour une plateforme critique, et risques de propriété intellectuelle (l'OCA exige que les contributeurs possèdent les droits IP de leurs contributions) Même éditer partiellement du code AI-généré ne le rend pas acceptable à la contribution Oracle, sponsor corporatif d'OpenJDK, travaille sur une politique complète à soumettre au Governing Board GraalVM Native Image et la Closed-World Assumption en Java https://pvs-studio.com/en/blog/posts/java/1357/ Un bon article de rappel du contexte de closed world en Java GraalVM Native Image compile les applications Java en exécutables natifs statiques, sans JVM au runtime. La JVM fonctionne en monde ouvert : les classes sont chargées à la demande, les appels sont des références symboliques résolues dynamiquement. Native Image impose la "closed-world assumption" : tous les chemins d'exécution doivent être connus à la compilation. Les fonctionnalités dynamiques Java (réflexion, proxies, chargement de classes) créent des chemins cachés invisibles à l'analyse statique. C'est pourquoi Native Image exige des fichiers de configuration explicites pour la réflexion, les proxies, les ressources et la FFM API. L'article illustre le problème avec la Foreign Function & Memory API pour appeler printf natif : fonctionne sur JVM, échoue en Native Image sans config. Inclure tout le bytecode accessible serait inutilisable : binaire géant, compilation très lente, et la réflexion nécessite des métadonnées précises. La configuration n'est pas un défaut de conception mais une conséquence logique du passage du dynamique au statique. Java 26 : les nouveautés https://foojay.io/today/java-26-whats-new/ Java est le langage de la JVM, publié tous les 6 mois depuis Java 9 ; Java 26 est une version non-LTS avec 10 JEPs. JEP 500 : protection des champs final modifiés par réflexion profonde, avec des avertissements configurables. JEP 504 : suppression définitive de l'API Applet, plus supportée par les navigateurs. JEP 516 : le cache AOT (Project Leyden) fonctionne désormais avec n'importe quel garbage collector. JEP 517 : support HTTP/3 dans le client HTTP, HTTP/2 reste le défaut mais HTTP/3 est accessible à la demande. JEP 522 : amélioration du débit du GC G1 en réduisant la synchronisation entre threads applicatifs et threads GC. Nouveau support des UUIDv7 via UUID.ofEpochMillis(), naturellement triables et adaptés aux identifiants de bases de données. Process devient AutoCloseable, utilisable dans un try-with-resources. Aucune fonctionnalité en preview n'est graduée en standard ; Structured Concurrency en est à sa 6e preview. Librairies Guillaume a créé une petite librairie Java sans dépendance pour extraire le JSON d'une réponse d'un LLM un peu verbeux https://glaforge.dev/posts/2026/03/22/extracting-json-from-llm-chatter-with-jsonspotter/ Les LLM génèrent souvent du JSON, mais il est parfois entouré de bla-bla et/ou contient des erreurs (ex: commentaires, virgules finales) qui bloquent les parseurs JSON standards. Guillaume a créé une petite librairie légère sans dépendance pour localiser et extraire la structure la plus longue ressemblant à du JSON (même malformé) On peut ensuite passé cette chaîne à un parseur "lénient" (plus tolérant) comme Jackson pour ensuite avoir de bons vieux objets Java fortement typés Librairie dispo sur Maven Central ADK Java sort sa version 1.0 (Agent Development Kit par Google) https://developers.googleblog.com/announcing-adk-for-java-100-building-the-future-of-ai-agents-in-java/ ADK est un framework open source de Google pour créer des agents IA, initialement en Python, maintenant multi-langages (Python, Java, Go, Typescript). Nouvelles fonctionnalités majeures : Outils puissants : GoogleMapsTool, UrlContextTool, ContainerCodeExecutor, VertexAiCodeExecutor, abstraction ComputerUseTool. Architecture de plugins centralisée : Nouveau conteneur App pour gérer les Plugins à l'échelle de l'application (ex: LoggingPlugin, GlobalInstructionPlugin). Context engineering amélioré : Compaction d'événements pour gérer la taille des fenêtres de contexte (résumé et rétention). Human-in-the-Loop (HITL) : Supporte les workflows ToolConfirmation pour approbation humaine des actions d'agent. Services de session et de mémoire : Contrats clairs pour la gestion de l'état (InMemory, VertexAI, Firestore) et la mémoire à long terme. Support Agent2Agent (A2A) : Collaboration native entre agents distants de différents frameworks via le protocole A2A. Dans cet autre article, Guillaume partage comment il a développé l'application Comic Trip montrée dans la vidéo YouTube et qui utilise ADK 1.0 https://glaforge.dev/posts/2026/03/30/building-my-comic-trip-agent-with-adk-java-1-0/ Nouvelle version du SDK Java pour Agent2Agent Protocol, avec le support de la version 1.0 de la spécification https://medium.com/google-cloud/a2a-java-sdk-1-0-0-beta1-released-e83c414b34cc Alignement avec la version 1.0 de la spécification Nouveau groupId org.a2aproject.sdk et package org.a2aproject.sdk Protocoles de transport : support complet et équivalent pour JSON-RPC, gRPC et HTTP+JSON/REST. Gestion des erreurs : introduction de codes d'erreur et détails structurés pour une meilleure observabilité. Optimisation HTTP : ajout d'en-têtes de cache pour les métadonnées des agents (Agent Card). Flexibilité du client HTTP : support par défaut du JDK HttpClient, avec option Vert.x pour les environnements Quarkus. Nouvelles fonctionnalités techniques : méthode DataPart.fromJson() pour la création simplifiée d'objets depuis du JSON brut. Prochaines étapes (v1.0.0.GA) : support simultané des versions 1.0.0 et 0.3.0 du protocole pour assurer l'interopérabilité. JPA 4.0 Milestone 2 : nouvelles fonctionnalités pour Jakarta Persistence https://in.relation.to/2026/04/23/JPA-4-M2/ Jakarta Persistence (JPA) est la spécification standard Java pour le mapping objet-relationnel (ORM), implémentée notamment par Hibernate. JPA 4.0 M2 est la deuxième milestone de la prochaine version majeure de la spécification, annoncée par Gavin King. Construction de requêtes Criteria à partir de chaînes JPQL, offrant plus de flexibilité dans la composition dynamique des requêtes. Nouveaux types d'expressions spécialisés (TextExpression, NumericExpression) pour simplifier l'écriture des requêtes Criteria. Nouvelle interface FetchOption pour contrôler explicitement la stratégie de chargement des associations, dont un BatchSize intégré. Nouvelle annotation @EntityListener qui découple les classes entités de leurs listeners, supprimant les dépendances à la compilation. Les listeners peuvent cibler plusieurs types de callbacks et s'appliquer globalement à toute l'unité de persistance. Introduction de FlushModeType.EXPLICIT et QueryFlushMode pour un contrôle plus fin de la synchronisation avec la base de données. La méta-annotation @Discoverable permet de placer des annotations comme @NamedQuery sur n'importe quelle classe ou interface. Améliorations du DDL via @Index amélioré et clarifications de la spécification via la javadoc. Quarkus 3.35 : tree-shaking, PGO et AOT Semeru https://quarkus.io/blog/quarkus-3-35-released/ Quarkus est un framework Java cloud-natif optimisé pour GraalVM et HotSpot, conçu pour les microservices et les environnements conteneurisés. Nouveau JAR tree-shaking expérimental : analyse des dépendances à la compilation pour supprimer les classes inutilisées. Sur le CLI Quarkus, cela supprime plus de 6 000 classes et économise environ 18 Mo (39,5 %). Support du Profile-Guided Optimization (PGO) pour les builds natifs via quarkus.native.pgo.enabled=true. Le PGO est une fonctionnalité Oracle GraalVM, non disponible dans la Community Edition. Support de l'AOT IBM Semeru : le démarrage passe de ~380 ms à ~190 ms dans les premiers tests. Nouvelle extension quarkus-reactive-transactions : support de @Transactional pour les méthodes Hibernate Reactive retournant Uni. Configuration CORS dédiée pour l'interface de management, indépendante de l'interface HTTP principale. Les tests n'utilisent plus les System Properties pour la propagation de configuration, facilitant la parallélisation future. Le serializer jackson sans reflection n'est pas le default du aux retours de cas limites, encore du travail This Week in Spring - 21 avril 2026 https://spring.io/blog/2026/04/21/this-week-in-spring-april-21-2026 Spring Framework 6.2.18 et 7.0.7 corrigent trois failles de sécurité : DoS via fichiers multipart WebFlux, empoisonnement de cache de ressources statiques, et DoS sur Windows. Le support open source de Spring Framework 5.3.x et 6.1.x est terminé, la migration est recommandée. Spring Data 2026.0.0-RC1 introduit l'upsert (MERGE/INSERT ON CONFLICT) dans l'API Template de Spring Data Relational. Spring Data ajoute un RedisMessageSendingTemplate pour la cohérence avec les listeners Redis, et une optimisation de réinitialisation de caches en un seul appel. Spring AI introduit une Session API (série Agentic Patterns, partie 7) : architecture event-sourcée pour la mémoire des agents IA. La Session API supporte la compaction turn-safe, l'isolation de sous-agents en parallèle, et la persistence JDBC (PostgreSQL, MySQL, MariaDB, H2). Elle vise Spring AI 2.1 (novembre 2026) et remplacera à terme l'API ChatMemory. Spring Vault 4.1.0-RC1 et 4.0.2 sont disponibles. Netflix a présenté son usage de Java, Spring Boot et Spring AI dans une vidéo. This Week in Spring - 28 avril 2026 https://spring.io/blog/2026/04/28/this-week-in-spring-april-28-2026 Cette série hebdomadaire de Josh Long compile les nouveautés de l'écosystème Spring : articles, outils, podcasts et annonces de la communauté. Spring Boot 4 introduit un package natif de résilience org.springframework.resilience avec une nouvelle API de retry qui remplace les approches fragiles via Spring Retry ou Resilience4j. L'API retry native de Spring Boot 4 a des noms d'attributs et sémantiques différents des anciennes bibliothèques, rendant les tutoriels pré-2025 obsolètes et sources de bugs silencieux. Le SDK Spring AI pour Amazon Bedrock AgentCore est disponible en GA : il intègre les capacités AgentCore dans Spring AI via annotations et auto-configuration. Le SDK AgentCore gère automatiquement le contrat runtime AgentCore : endpoint /invocations, health check /ping, SSE avec backpressure. Il offre mémoire court terme (sliding window) et long terme (sémantique, préférences, résumé, épisodique), ainsi que des outils pour navigateur et exécution de code en sandbox. Un plugin Maven (Nullability Maven Plugin) simplifie l'intégration de JSpecify et NullAway pour enforcer la null-safety à la compilation dans les projets Java. Le plugin génère automatiquement les fichiers package-info.java par package et configure le compilateur pour traiter les violations de nullabilité comme des erreurs. Josh Long et Dr. Venkat Subramaniam ont co-présenté à Voxxed Days Amsterdam sur "Intelligent Kotlin", avec un épisode de podcast associé. Cloud Amazon S3 Files https://aws.amazon.com/about-aws/whats-new/2026/04/amazon-s3-files/ Amazon S3 Files est un nouveau service donnant un accès système de fichiers direct aux données stockées dans les buckets S3 Basé sur la technologie Amazon EFS, il supprime la barrière entre stockage objet et interface système de fichiers sans dupliquer les données Débit en lecture pouvant atteindre plusieurs téraoctets par seconde ; des milliers de ressources de calcul peuvent y accéder simultanément Les données restent accessibles via les deux interfaces : S3 API classique et système de fichiers standard, sans migration nécessaire Cas d'usage : agents IA pour la persistance de mémoire entre pipelines, équipes ML sans staging, simplification des data lakes Disponible dans 34 régions AWS Data et Intelligence Artificielle Comment générer de la musique et des clips audio en Java avec le modèle Lyria 3 https://glaforge.dev/posts/2026/03/25/generating-music-with-lyria-3-and-the-gemini-interactions-java-sdk/ Génération musicale avec Lyria 3 (DeepMind) et le SDK Java Gemini Interactions. Lyria 3 : modèle d'IA générative pour créer musique avec paroles ou pistes instrumentales. Utilisation via le SDK Java de l'API Gemini, nécessite une clé API Gemini. Deux versions de modèle Lyria 3 : lyria-3-clip-preview : Clips courts (30s), extraits. lyria-3-pro-preview : Chansons complètes (jusqu'à 3 min), structurées. Personnalisation via les prompts : Fournir ses propres paroles ou les faire générer. Contrôler la structure de la chanson ([Intro], [Verse], [Chorus], [Outro]). Générer des morceaux instrumentaux uniquement. Utiliser des images comme source d'inspiration (modèle multimodal). Sortie : Audio (MP3) et texte (paroles/structure) directement, sans décodage complexe. Facilite l'intégration de la génération musicale dans les applications Java. Les world model, la prochaine étape pour les IA https://www.lepoint.fr/sciences-nature/comment-le-commando-de-yann-le-cun-se-prepare-a-ringardiser-les-geants-mondiaux-de-lia-depuis-paris-OZVUWTDYBNE25C6WF44265ZQKE/ Yann LeCun a quitté Meta FAIR pour créer AMI Labs (Advanced Machine Intelligence) basée à Paris Sa thèse : les LLMs ne mèneront pas à l'intelligence générale, la vraie IA doit partir de la compréhension du monde physique AMI Labs a levé 1,03 milliard de dollars en seed (le plus grand seed round de l'histoire européenne) à 3,5 milliards de valorisation Les world models apprennent à prédire et comprendre la réalité physique plutôt qu'à prédire le prochain token d'une séquence Slogan d'AMI : "Real intelligence does not start in language. It starts in the world." Paris comme base stratégique pour challenger la Silicon Valley dans la prochaine rupture de l'IA Debezium 2026 : résultats du sondage communautaire https://debezium.io/blog/2026/04/27/debezium-2026-survey-results/ Debezium est un outil de Change Data Capture (CDC) open source qui capture les modifications de bases de données en temps réel pour les diffuser vers des systèmes comme Kafka. 98,6% des répondants utilisent Debezium activement ou prévoient de le faire dans l'année, avec 91,3% déjà en production. 63,8% des déploiements tournent sur Kubernetes, 60,9% utilisent Kafka Connect auto-géré, et 17,4% restent sur des VMs ou bare metal. Helm charts est l'approche dominante pour la gestion de configuration, souvent combiné avec GitOps, CI/CD, Ansible ou Terraform. PostgreSQL domine les connecteurs utilisés à 69,6%, suivi de MySQL (33,3%), SQL Server (29%) et Oracle (27,5%). Les volumes de changements capturés vont de 1-25 modifications par minute jusqu'à 1-2 millions par minute selon les environnements. Infinispan rejoint l'écosystème OGX comme fournisseur de stockage vectoriel https://infinispan.org/blog/2026/04/17/infinispan-joins-ogx-ecosystem OGX (anciennement Llama Stack) est un serveur API agentique open source pour construire des applications d'IA complètes. OGX compose des fournisseurs d'inférence, des stores vectoriels, des backends de sécurité, des runtimes d'outils et du stockage de fichiers en un seul serveur déployable. OGX se positionne comme une alternative à l'API OpenAI, déployable sur diverses infrastructures et modèles. OGX cible les workflows RAG (Retrieval-Augmented Generation) et les applications agentiques. Infinispan s'y intègre comme fournisseur de vector IO, apportant recherche vectorielle, par mots-clés et hybride. Je n'ai pas entendu parlé de ce renommage, vous le voyez dans vos deploiements ? Outillage cmux un nouveau terminal basé sur Ghostty spécialisé pour les coding agents https://cmux.com/ Application macOS native construite sur le moteur de rendu Ghostty (libghostty), offrant une accélération GPU pour une fluidité maximale Conçu spécifiquement pour le multitâche et les workflows assistés par IA, avec des onglets verticaux affichant la branche Git, le répertoire et les ports actifs Intègre des notifications qui illuminent les panneaux lorsqu'un agent IA (Claude Code, Codex, etc.) nécessite l'attention de l'utilisateur Propose un navigateur web intégré et scriptable qui peut être affiché en écran scindé à côté du terminal via une API Alternative moderne à tmux, ne nécessitant pas de fichiers de configuration complexes ou de préfixes de touches pour la gestion des vitres et des sessions Supporte nativement tous les agents de codage en ligne de commande et permet l'automatisation via une API socket et une interface CLI dédiée Git Worktree comme un chef https://www.metal3d.org/blog/2026/git-worktree-comme-un-chef/ Article par Patrice Ferlet Git Worktree: Travailler sur plusieurs branches simultanément via des répertoires distincts. Évite git stash ou clones multiples pour le changement de contexte rapide. Méthode "bare" (recommandée): Cloner le dépôt en mode bare (ex: .bare). Lier le dossier racine au dépôt bare via un fichier .git. Configurer le remote tracking pour voir toutes les branches distantes. Ajouter des worktrees pour chaque branche (git worktree add ). Avantages: Économie d'espace, source de vérité unique (un git fetch met tout à jour), hooks/configs partagés, sécurité. Conseils: Ne jamais faire de git checkout à l'intérieur d'un worktree. git fetch --all depuis n'importe quel worktree pour tout mettre à jour. git worktree add --detach pour tester des merges temporaires sans créer de branche. Supprimer: git worktree remove puis git worktree prune. Un script wtree est fourni pour automatiser l'initialisation du setup "bare". Améliore considérablement le workflow. L'IDE meurt et vite https://x.com/jdegoes/status/2036931874057314390?s=46&t=C18cckWlfukmsB_Fx0FfxQ Des leaders techniques prédisent la fin rapide de l'IDE traditionnel, remplacé par des interfaces conversationnelles agentiques Le changement de paradigme : le développeur n'écrit plus des lignes de code mais exprime son intention et supervise des agents autonomes Des outils comme Claude Code, Copilot et Cursor transforment déjà radicalement les workflows de développement quotidiens L'IDE centré sur l'éditeur de code perd sa raison d'être quand l'agent lit, modifie et structure le code de manière autonome La transition est comparable au passage du desktop au mobile : les pratiques établies depuis 30 ans remises en question en quelques mois Le source de Claude Code a leaké via probablement le codemap et un site decrit sont fonctionnement https://ccunpacked.dev/ Le 31 mars 2026, Anthropic a accidentellement inclus les sourcemaps dans un package npm de Claude Code, exposant ~512 000 lignes de TypeScript La fuite n'était pas un piratage mais une erreur humaine : un "*.map" oublié dans .npmignore Le site ccunpacked.dev a été lancé pour analyser et visualiser le code source décompressé Le code révèle un agent background permanent nommé "KAIROS", un mode furtif pour cacher les contributions des employés Anthropic à l'open source, et 44 feature flags cachés Une fonctionnalité inédite "Buddy" (animal de compagnie électronique dans le terminal) et un mode "dream" pour l'idéation continue ont été découverts Anthropic a confirmé : "Aucune donnée client sensible n'était impliquée. Erreur humaine dans le packaging de la release." Gemini CLI passe aux agents https://x.com/srithreepo/status/2039794081925382307?s=46&t=GLj1NFxZoCFCjw2oYpiJpw Gemini CLI, l'agent IA open source de Google pour le terminal, introduit des hooks dans sa boucle agentique Les hooks permettent d'exécuter des scripts automatiquement (scanners de sécurité, vérifications de conformité, logging) à chaque étape de l'agent Lancement de Gemini CLI GitHub Actions : un agent autonome pour les repositories qui peut exécuter des tâches de codage de routine Support des MCP servers pour étendre les capacités et des "Agent Skills" pour des workflows spécialisés Mode agent disponible dans VS Code et IntelliJ avec accès aux outils du système de fichiers et terminal Wispr, le speech to text en local sur macOS http://wispr.stormacq.com/ Wispr est une application macOS de dictée vocale entièrement locale, propulsée par Whisper (OpenAI) sur appareil, sans cloud ni tracking Sébastien Stormacq a développé Wispr en un jour et demi sans écrire une seule ligne de code, grâce à Kiro CLI (agent IA Amazon) Disponible en open source sur GitHub et via Homebrew Détection automatique de la langue, insertion du texte au curseur dans n'importe quelle application via un raccourci global En un mois : 19 releases incluant mode mains-libres, suppression des mots de remplissage, auto-envoi pour les chats, et un outil CLI Exemple concret de développement vibe coding produisant un outil de qualité production sans expertise Swift préalable Comment, Gordon, l'assistant spécialisé en Docker est né https://n9o.xyz/posts/202603-building-gordon/ Nuno Coração (n9o.xyz) détaille comment Gordon, l'assistant spécialisé Docker, a été construit sur docker-agent, le runtime d'agents IA open source de Docker écrit en Go Les agents sont définis en YAML déclaratif et distribués comme des artefacts OCI, sans mise à jour binaire nécessaire L'architecture initiale en essaim de 9 agents spécialisés a été abandonnée au profit d'un agent racine unique avec un prompt soigneusement conçu Le modèle utilisé est Claude Haiku 4.5, suffisant après optimisation des prompts Principe clé "show, then do" : toute action de l'agent nécessite une approbation explicite de l'utilisateur La description des outils impacte fortement la précision du LLM : ajouter des outils peut paradoxalement dégrader les performances existantes Le prompt est une spécification détaillée (identité, patterns d'accès fichiers, règles de sécurité) plutôt qu'une simple instruction IBM Bob https://bob.ibm.com/blog/announcing-ibm-bob-launch IBM Bob assistant IA d'IBM pour coder sur de vraies codebases (lancé avril 2026) 5 modes : Ask, Plan, Code, Advanced (MCP), Orchestrator Détecte la complexité du code en temps réel et propose des refactos Fait des revues de code automatiques sur tes branches/issues GitHub Permet d'écrire en langage naturel directement dans l'éditeur Fonctionne aussi en terminal/CLI et dans les pipelines CI/CD Sécurité : approbation manuelle, .bobignore, checkpoints, pas de training sur tes prompts How I use Claude - 50 tips pratiques https://www.youtube.com/watch?v=mZzhfPle9QU Staff Engineer Meta partage 50 tips après 6 mois d'utilisation intensive de Claude Code Basé sur ~12h/jour d'usage perso et professionnel Couvre tout : bases, workflows avancés, parallélisation Objectif : partager ce qu'il aurait voulu savoir dès le départ Méthodologies Quelqu'un rale sur la non soutenabilité des bases de code écritent avec des agents https://mariozechner.at/posts/2026-03-25-thoughts-on-slowing-the-fuck-down/ Mario Zechner estime que les agents IA font les mêmes erreurs répétitivement sans apprendre, accumulant la complexité à grande vitesse faute de bottlenecks humains Sans vision globale, les agents créent du cargo-cult : les "best practices" de l'industrie appliquées localement sans cohérence architecturale La croissance de la base de code dégrade la capacité des agents à retrouver le code existant → duplication et incohérences croissantes Il cite des pannes AWS et des initiatives qualité Microsoft comme signes préoccupants liés au code généré par IA Solution : réserver les agents aux tâches délimitées et évaluables, garder l'architecture, les APIs et les systèmes critiques écrits à la main Maintenir une revue de code rigoureuse et traiter les humains comme les gardiens finaux de la qualité On m'oblige à utiliser l'IA https://n.survol.fr/n/on-moblige-a-utiliser-lia Éric D. défend l'adoption obligatoire de l'IA comme décision stratégique légitime, comparable au choix du full remote ou de la stack technique Il distingue la décision stratégique (adoption IA) de la méthode d'accompagnement (qui reste collaborative et bienveillante) La compétence IA devient un critère de recrutement : chercher des candidats déjà curieux et explorateurs de ces outils L'alignement culturel sur les pratiques et outils est un prérequis à la cohésion d'équipe Le refus d'adopter certains outils stratégiques peut justifier de ne pas recruter un candidat autrement compétent Encore une metodo SPDD https://martinfowler.com/articles/structured-prompt-driven/ Problème : l'IA accélère le dev individuel mais amplifie ambiguïtés et incohérences à l'échelle d'une équipe. martinfowler SPDD : traiter les prompts comme des artefacts versionnés, révisables et réutilisables plutôt que des échanges jetables. martinfowler Canvas REASONS : 7 dimensions (Requirements, Entities, Approach, Structure, Operations, Norms, Safeguards) pour guider le LLM de l'intention à l'exécution. martinfowler Workflow en 6 étapes : exigences → analyse → contexte → prompt structuré → code → tests unitaires, chaque étape s'appuyant sur la précédente. martinfowler 3 compétences clés : abstraction d'abord, alignement de l'intention, revue itérative. martinfowler Limites : fort ROI sur du code métier complexe, peu adapté aux hotfixes urgents, scripts jetables ou travail créatif/visuel. m Sécurité Le projet Glasswing pour sécuriser les logiciels https://www.anthropic.com/glasswing Anthropic lance Glasswing, une initiative de cybersécurité utilisant Claude Mythos Preview pour identifier des vulnérabilités zero-day 12 partenaires fondateurs dont AWS, Apple, Cisco, CrowdStrike, Google, JPMorganChase, Linux Foundation, Microsoft et NVIDIA Anthropic investit 100 millions de dollars en crédits de modèle et 4 millions en dons aux organisations de sécurité open source Le modèle opère avec une autonomie substantielle, identifiant des milliers de vulnérabilités dans les OS, navigateurs et infrastructures critiques Plus de 40 organisations supplémentaires ont accès pour scanner et sécuriser leurs systèmes Objectif : donner l'avantage aux défenseurs avant que les techniques de hacking assistées par IA ne se généralisent chez les attaquants LinkedIn vous espionne https://frenchbreaches.com/blog/linkedin-est-accuse-de-fouiller-dans-votre-ordinateur-illegalement Scandale "BrowserGate" : LinkedIn injecte du JavaScript qui tente de détecter les extensions Chrome installées sur votre navigateur Le script analysé contient une liste codée en dur de 6 222 extensions Chrome avec identifiants et chemins de fichiers internes Croissance alarmante de la liste ciblée : 38 extensions en 2017 → 461 en 2024 → ~1 000 en mai 2025 → 6 222 début 2026 Les données collectées incluent aussi CPU, RAM, résolution d'écran, timezone et état batterie pour du fingerprinting Certaines extensions ciblées sont liées à la neurodivergence, aux pratiques religieuses ou aux opinions politiques → violation grave du RGPD LinkedIn défend que le scan vise uniquement à détecter les extensions qui pratiquent le scraping de données Post mortem de la supply chain attack sur la librairie NPM axios https://github.com/axios/axios/issues/10636 Le 31 mars 2026, deux versions malveillantes d'axios (1.14.1 et 0.30.4) ont été publiées via un compte mainteneur compromis Vecteur d'attaque : RAT installé via ingénierie sociale ciblée sur la machine personnelle du mainteneur principal La 2FA ne protège pas si la machine de l'utilisateur est compromise : l'attaquant contrôle tout et peut agir comme l'utilisateur Les packages malveillants injectaient plain-crypto-js@4.2.1, un cheval de Troie multi-plateforme (macOS, Windows, Linux) Détection communautaire en ~3 heures, suppression par npm, mesures correctives : rotation complète des credentials Changements préventifs : publication via OIDC, releases immuables, amélioration des pratiques GitHub Actions Passbolt un gestionnaire de mots de passe open source https://lesjoiesducode.fr/passbolt-gestionnaire-de-mots-de-passe-gratuit-open-source-que-votre-equipe-merite-vraiment Gestionnaire de mots de passe open source conçu pour le partage d'identifiants en équipe, utilisé par plus de 50 000 organisations Chiffrement individuel par utilisateur et par version de credential, pas de coffre-fort partagé — architecture zero-knowledge "Forward secrecy" : quand un membre quitte l'équipe, ses copies chiffrées sont automatiquement révoquées sans reset manuel Supporte TOTP, clés SSH, tokens API et champs personnalisés avec piste d'audit complète de tous les accès Édition communautaire entièrement gratuite avec utilisateurs illimités, auto-hébergeable ou cloud Chiffrement OpenPGP nécessitant passphrase + clé privée, avec tokens visuels anti-phishing Loi, société et organisation Anthropic fait un don d'1,5 millions de dollars à la fondation Apache https://news.apache.org/foundation/entry/the-apache-software-foundation-announces-1-5m-donation-from-anthropic Anthropic donne 1,5 million de dollars à l'ASF pour soutenir l'infrastructure, la sécurité et la communauté open source Vitaly Gudanets (CISO d'Anthropic) : "Soutenir l'ASF est un investissement direct dans la résilience et l'intégrité des systèmes dont dépend l'IA moderne" Les fonds financeront les systèmes de build, les processus de sécurité et les services aux projets Apache Ce don est le déclencheur de l'initiative IA responsable à 10 millions de dollars de l'ASF L'infrastructure Apache est invisible mais critique : des systèmes financiers aux plateformes de santé, elle sous-tend l'écosystème logiciel mondial L'ASF lance l'initiative IA responsable https://news.apache.org/foundation/entry/the-apache-software-foundation-launches-10m-responsible-ai-initiative-with-initial-1-75m-donation L'ASF lance une initiative pour une IA responsable dotée d'un budget de 10 millions de dollars sur 3 ans minimum Anthropic est le premier donateur avec 1,5 million de dollars ; Alpha-Omega contribue 250 000 dollars L'initiative fournit aux projets Apache un accès à des modèles IA pour l'expérimentation et la sécurité Elle soutient l'ensemble de la chaîne IA/ML : pipelines de données, infrastructure, frameworks de deep learning Des tracks de conférences, hackathons et bourses de voyage sont prévus pour élargir la communauté Les principes directeurs incluent la supervision humaine, l'intégrité des licences et la sécurité open source Oracle vire 30000 personnes https://rollingout.com/2026/03/31/oracle-slashes-30000-jobs-with-a-cold-6/ Oracle licencie 20 000 à 30 000 employés, 18% de ses effectifs mondiaux. Les salariés ont appris leur licenciement par un simple email à 6h du matin, sans aucun préavis. L'accès à tous les systèmes (Slack, Zoom, badges) a été coupé immédiatement après. But : libérer 8 à 10 milliards de dollars pour construire des centres de données IA. Oracle a déjà contracté 50 milliards de dettes en 2026 pour financer ses projets IA. Paradoxe : l'entreprise affiche un bénéfice record de 6,13 milliards, mais ses liquidités sont dans le rouge. L'action Oracle a perdu plus de la moitié de sa valeur depuis septembre 2025. Et si l'IA n'était qu'un prétexte pour licencier https://eventuallycoding.com/p/ia-licenciements-et-si-l-intelligence-artificielle-n-etait-qu-une-excuse Hugo Lassiège (eventuallycoding) estime que les entreprises utilisent l'IA comme narratif commode pour masquer des erreurs de gestion passées (Block a triplé ses effectifs post-COVID sans croissance des revenus correspondante) Moins de 1% des licenciements technologiques seraient réellement dus à des gains de productivité IA selon les analyses citées Mesurer la productivité des développeurs reste un problème non résolu, mais les entreprises affirment des gains d'efficacité sans preuves Des pressions économiques réelles (inflation, guerres commerciales, coûts énergétiques) sont masquées derrière le discours IA Les restructurations nécessaires sont présentées comme des transformations AI-driven positives pour rassurer les investisseurs Il y voit une fenêtre d'opportunité pour l'Europe pendant que les géants américains se restructurent GitHub Copilot va utiliser les interacitons pour entrainer ses modèles sauf si vous vous délistez https://github.blog/news-insights/company-news/updates-to-github-copilot-interaction-data-usage-policy/ À partir du 24 avril 2026, GitHub utilise par défaut les interactions des utilisateurs Copilot Free, Pro et Pro+ pour entraîner ses modèles Les données collectées incluent le code accepté ou modifié, les snippets envoyés, les noms de fichiers et structures de dépôts, et les retours utilisateurs Les utilisateurs Copilot Business, Enterprise et les dépôts d'entreprise sont exclus de cette collecte de données d'entraînement Opt-out disponible dans les paramètres GitHub > "Privacy" ; les préférences de désactivation préalables sont conservées automatiquement Objectif déclaré : améliorer la précision des modèles sur les langages et cas d'usage du monde réel Grosse percée de Claude Code dans les commits sur GitHub https://aifoc.us/damn-claude-thats-a-lot-of-commits/ Explosion de Claude Code : En six mois, Claude Code est passé de 0,7 % à 4,5 % de tous les commits publics sur GitHub, surpassant tous les autres outils d'IA combinés. Adoption massive des agents IA : Environ 5 % des commits publics sur GitHub sont désormais générés par des agents IA, un chiffre en croissance rapide depuis fin 2025. Domination des bots sur GitHub : Au-delà des commits, les outils d'IA sont omniprésents dans la gestion des pull requests et des problèmes (Copilot et CodeRabbit notamment). Limites méthodologiques : Les données ne concernent que les dépôts publics (les entreprises utilisent massivement des dépôts privés, invisibles ici). Le comptage dépend fortement de la visibilité des signatures (certains outils comme Claude marquent systématiquement leurs commits, d'autres non) L'API de recherche GitHub présente une fiabilité variable à cette échelle. Changement de paradigme : Le développement logiciel vit une transition majeure, comparable au passage du desktop au mobile. L'intégration des agents IA dans le cycle de production n'est plus une expérimentation, mais une réalité opérationnelle à grande échelle. Dysmaths une application pour aider à apprendre les mathématiques et la géométrie lorsque l'on souffre de dyspraxie, dysgraphie https://dysmaths.com/ Application web pour aider les élèves de collège et lycée souffrant de dysgraphie et dyspraxie à faire des maths et de la géométrie Outils de dessin à main levée, géométrie précise (compas, rapporteur, règle) et opérations structurées (fractions, racines, puissances, symboles mathématiques) Export PDF et PNG avec conservation fidèle de l'échelle pour l'impression et la soumission des exercices Options d'accessibilité : police OpenDyslexic, personnalisations d'interface, import d'images et de PDFs Répond à un besoin réel : les outils standards ne sont pas adaptés aux difficultés de coordination et d'organisation spatiale en mathématiques IA ou réalité ? Par Amistory https://www.youtube.com/watch?v=PPYdAhBBF2I L'IA génère des contenus (images, voix, vidéos) de plus en plus indétectables Les arnaques au clonage de voix et deepfakes sont en forte hausse Les faux contenus viraux manipulent l'opinion à grande échelle Le faux n'est plus un accident, c'est devenu un système organisé La société entre dans une ère de doute généralisé sur le réel Comment s'informer quand le réel lui-même peut être simulé ? Conférences La liste des conférences provenant de Developers Conferences Agenda/List par Aurélie Vache et contributeurs : 6-7 mai 2026 : Devoxx UK 2026 - London (UK) 12 mai 2026 : Lead Innovation Day - Leadership Edition - Paris (France) 12-13 mai 2026 : Lyon Craft - Lyon (France) 19 mai 2026 : La Product Conf Paris 2026 - Paris (France) 19-20 mai 2026 : Green Code Challenge - Paris (France) 21-22 mai 2026 : Flupa UX Days 2026 - Paris (France) 22 mai 2026 : AFUP Day 2026 Lille - Lille (France) 22 mai 2026 : AFUP Day 2026 Paris - Paris (France) 22 mai 2026 : AFUP Day 2026 Bordeaux - Bordeaux (France) 22 mai 2026 : AFUP Day 2026 Lyon - Lyon (France) 27 mai 2026 : aMP Day Strasbourg 2026 - Strasbourg (France) 28 mai 2026 : DevCon 27 : I.A. & Vibe Coding - Paris (France) 28 mai 2026 : Cloud Toulouse 2026 - Toulouse (France) 29 mai 2026 : NG Baguette Conf 2026 - Paris (France) 29 mai 2026 : Agile Tour Strasbourg 2026 - Strasbourg (France) 2-3 juin 2026 : Agile Tour Rennes 2026 - Rennes (France) 2-3 juin 2026 : OW2Con - Paris-Châtillon (France) 3 juin 2026 : IA–NA - La Rochelle (France) 4 juin 2026 : Workplace Intelligence Days - 1ère édition - Lyon (France) 5 juin 2026 : TechReady - Nantes (France) 5 juin 2026 : Fork it! - Rouen - Rouen (France) 6 juin 2026 : Polycloud - Montpellier (France) 9 juin 2026 : JFTL - Montrouge (France) 9 juin 2026 : C: - Caen (France) 9 juin 2026 : France API 2026 - Paris (France) 11-12 juin 2026 : DevQuest Niort - Niort (France) 11-12 juin 2026 : DevLille 2026 - Lille (France) 12 juin 2026 : Tech F'Est 2026 - Nancy (France) 15 juin 2026 : Jupyter Workshops: Demystifying MyST Markdown in Education - Orsay (France) 16 juin 2026 : Mobilis In Mobile 2026 - Nantes (France) 17-19 juin 2026 : Devoxx Poland - Krakow (Poland) 17-20 juin 2026 : VivaTech - Paris (France) 18 juin 2026 : Tech'Work - Lyon (France) 22-26 juin 2026 : Galaxy Community Conference - Clermont-Ferrand (France) 23-24 juin 2026 : MWCP 2026 - Paris (France) 24-25 juin 2026 : Agi'Lille 2026 - Lille (France) 24-26 juin 2026 : BreizhCamp 2026 - Rennes (France) 25-26 juin 2026 : Agile Tour Toulouse 2026 - Toulouse (France) 27 juin 2026 : Asynconf - Paris (France) 2 juillet 2026 : Azur Tech Summer 2026 - Valbonne (France) 2-3 juillet 2026 : Sunny Tech - Montpellier (France) 3 juillet 2026 : Agile Lyon 2026 - Lyon (France) 6-8 juillet 2026 : Riviera Dev - Sophia Antipolis (France) 28-30 août 2026 : State of the Map - Champs-sur-Marne (France) 4 septembre 2026 : JUG Summer Camp 2026 - La Rochelle (France) 10-11 septembre 2026 : Nantes Craft - Nantes (France) 17 septembre 2026 : dotAI - Paris (France) 17-18 septembre 2026 : API Platform Conference 2026 - Lille (France) 18 septembre 2026 : dotJS - Paris (France) 18 septembre 2026 : WordCamp Bretagne - Rennes (France) 22 septembre 2026 : Salon Data 2026 - Nantes (France) 22-23 septembre 2026 : Agile en Seine & IA 2026 - Paris (France) 24 septembre 2026 : OWASP AppSec Days France 2026 - Paris (France) 24 septembre 2026 : PlatformCon Paris - Paris (France) 24 septembre 2026 : React Native Connection 2026 - Paris (France) 24-26 septembre 2026 : Paris Web 2026 - Paris (France) 28-29 septembre 2026 : 4th Tech Summit on AI & Robotics - Paris (France) & Online 1 octobre 2026 : WAX 2026 - Marseille (France) 1-2 octobre 2026 : Volcamp - Clermont-Ferrand (France) 2 octobre 2026 : DevFest Perros-Guirec 2026 - Perros-Guirec (France) 5-9 octobre 2026 : Devoxx Belgium - Antwerp (Belgium) 12 octobre 2026 : Dev With AI - Paris (France) 27-29 octobre 2026 : Directions EMEA 2026 - Paris (France) 29-30 octobre 2026 : BDX I/O 2026 - Bordeaux (France) 30 octobre 2026 : Cloud Nord 2026 - Lille (France) 4-5 novembre 2026 : Devoxx Morocco - Casablanca (Morocco) 14-15 novembre 2026 : Capitole du Libre - Toulouse (France) 19 novembre 2026 : DevFest Toulouse 2026 - Toulouse (France) 27 novembre 2026 : DevFest Paris 2026 - Paris (France) 1-3 décembre 2026 : Apidays Paris - Paris (France) 4 décembre 2026 : DevFest Lyon 2026 - Lyon (France) 4 décembre 2026 : DevFest Dijon 2026 - Dijon (France) 9-10 décembre 2026 : OpenSource Expérience - Paris (France) 9-10 décembre 2026 : DevOps REX - Paris (France) 10 décembre 2026 : KCD Provence - Aix-en-Provence (France) 7-9 avril 2027 : Devoxx France 2027 - Paris (France) Nous contacter Pour réagir à cet épisode, venez discuter sur le groupe Google https://groups.google.com/group/lescastcodeurs Contactez-nous via X/twitter https://twitter.com/lescastcodeurs ou Bluesky https://bsky.app/profile/lescastcodeurs.com Faire un crowdcast ou une crowdquestion Soutenez Les Cast Codeurs sur Patreon https://www.patreon.com/LesCastCodeurs Tous les épisodes et toutes les infos sur https://lescastcodeurs.com/

In Episode 104 of the Cybersecurity Readiness Podcast Series, Dr. Dave Chatterjee, Ph.D., is joined by Khalid Kark, Field CIO at Cloudflare, a network handling over 20% of global Internet traffic, and a 20-year veteran of advising Fortune 500 boards and C-suites at Deloitte and Forrester, to examine six hidden fault lines threatening organizational resilience in an AI-driven, hyperconnected world.Opening with the 2024 CrowdStrike incident, where a single misconfigured content file simultaneously disabled 8.5 million Windows devices, grounding Delta flights, disrupting emergency services, and canceling hospital appointments. Dr. Chatterjee frames the episode's central challenge: organizations with excellent compliance postures and green dashboards can still fail catastrophically because their security tool became the attack vector. The failure was not a missed threat. It was an unexamined structural dependency.Drawing on Cloudflare's 2026 Security Signals Report, Kark introduces the concept of fault lines — hidden structural cracks that remain invisible under normal conditions but fracture catastrophically under stress. The six fault lines identified are: (1) Governing AI at Scale, (2) Trust at Machine Speed, (3) Shadow Supply Chains, (4) Signals of Intent, (5) The Debt Trap of Legacy Architecture, and (6) The Cloud Mirage.Analyzed through Dr. Chatterjee's Commitment–Preparedness–Discipline (CPD) framework, the conversation delivers a clear message: organizational resilience in the AI era is not a technical upgrade — it is a leadership, architecture, and governance transformation that requires executive accountability for AI-driven decisions, modular and decoupled infrastructure design, and continuous discipline that evolves at the pace of the threat landscape itself.To access and download the entire podcast summary with discussion highlights - https://www.dchatte.com/episode-104-hidden-fault-lines-why-modern-security-breaks-under-pressure/Connect with Host Dr. Dave ChatterjeeLinkedIn: https://www.linkedin.com/in/dchatte/ Website: https://dchatte.com/Books PublishedThe DeepFake ConspiracyCybersecurity Readiness: A Holistic and High-Performance ApproachArticles & Cases PublishedChatterjee, D. (2026). Root: Automating the Remediation Gap, Ivey Publishing, Jan 7, 2026.Ramasastry, C. and Chatterjee, D. (2025). Trusona: Recruiting For The Hacker Mindset, Ivey Publishing, Oct 3, 2025.Chatterjee, D. and Leslie, A. (2024). “Ignorance is not bliss: A human-centered whole-of-enterprise approach to cybersecurity preparedness,” Business Horizons, Accepted on Oct 29, 2024.Isik, O., Chatterjee, D., and Lourenco, D.A. (2024). “Getting Cybersecurity Right,” California Management Review — Insights, Accepted for Publication, July 8, 2024. Chatterjee, D. (2023). “Mission critical – How American Cancer Society successfully and securely migrated to the cloud amid the pandemic,” I by IMD, March 13, 2023.Chatterjee, D. (2022). “Preventing security breaches must start at the top,” I by IMD, September 28, 2022, Institute for Management Development, Lausanne, SwitzerlandChatterjee, D. (2022). “Making Cybersecurity Readiness Mainstream,” Executive Blog Post, NETSPI, March 1, 2022Benz, M. and Chatterjee, D. (2020). “Calculated Risk? A Cybersecurity Evaluation Tool for SMEs,” Business Horizons, available online from May 4, 2020Chatterjee, D. (2019). “Should Executives Go To Jail Over Cyber Attacks,” Journal of Organizational Computing and Electronic Commerce, Vol 29, Issue 1, pp. 1-3.Abraham, C., Chatterjee, D., and Sims, R. (2019). “Muddling through cybersecurity: Insights from the U.S. healthcare industry,” Business Horizons, July 2019.

(Presented by TLPBLACK: A cybersecurity intelligence platform focused on sharing curated, high-sensitivity threat insights and research with trusted security professionals.) Three Buddy Problem - Episode 97: We discuss the disappearing art of Windows APT paleontology, the absence of complex malware documentation, and why so much threat-intel research has slipped behind paywalls and into private rooms. Plus, a surge in AI-discovered bugs in Firefox and Chrome, a rough week for Linux security flaw disclosures, and the usual Ivanti and Palo Alto zero-day bulletins that ship without a single IOC. Cast: Juan Andres Guerrero-Saade, Ryan Naraine and Costin Raiu. Timestamps: 0:00 - Introductory banter 1:17 - Inside TLP-Red: writing hashes by hand 3:57- fast16 fallout and the threat intel trust collapse 9:17 - The death of cyber paleontology on Windows 14:49 - Mobile is the new paleontology frontier 15:48 - When threat intel went private: the CrowdStrike effect 23:29 - Falling sideways into intelligence brokerage 36:05 -- AI, Easter eggs, and the loss of malware artistry 47:22 -- Will the Frontier Labs publish threat intel? 51:43 -- fast16 follow-up reports coming 1:09:38 - Mythos, Aardvark, and the patch tsunami 1:15:33 - CopyFail and the Linux reboot crisis 1:51:05 - UAPs, Pulitzers, last-ever LabsCon, and shoutouts

The previous episode of the Adversary Universe podcast explored the “vuln-pocalypse” and the implications of advanced AI models accelerating vulnerability discovery and exploitation. Now, we're diving into how companies are working together to face these evolving security risks. CrowdStrike Chief Business Officer Daniel Bernard spends much of his time talking with partners and customers about how to address their growing concerns: Is their business protected? Do they know which vulnerabilities are in their environment? What do they do about them? In this episode, Daniel joins Adam and Cristian to discuss why it takes an ecosystem of partners to answer these questions and help each business evaluate risk. He sheds light on the newly expanded Project Quiltworks — CrowdStrike's coalition for securing frontier AI risk — as well as Anthropic's Project Glasswing and OpenAI's Trusted Access for Cyber as initiatives the industry needs in this critical time. “It feels like right now we're at this fever-pitch moment ... where we're going to do more patching in the next 6-12 months than we've probably done in the last 6-12 years," he says in this episode. To handle this, partner efforts are picking up speed. The “digital line” to join the project is growing as organizations jump in to help with solving the new problems companies face. Tune in to hear the latest on Project Quiltworks, the issues coming up most in CISO conversations, and of course, everyone's favorite bread of the moment in this episode of the Adversary Universe podcast.

Você sabia que um sistema pode ser invadido em apenas 27 segundos? No episódio desta quarta-feira (29), mergulhamos nos dados alarmantes do Relatório Global de Ameaças 2026 da CrowdStrike. O convidado é o vice-presidente de engenharia de vendas da CrowdStrike para a América Latina, Marcos Ferreira. Discutimos como o cibercrime evoluiu para operar de forma assustadoramente rápida, abandonando em grande parte os tradicionais vírus e malwares para invadir redes diretamente pela "porta da frente", usando senhas vazadas e credenciais válidas. Além disso, exploramos a nova era das ameaças digitais, onde grupos cibercriminosos apoiados por governos — como o da Coréia do Norte — utilizam inteligência artificial para forjar perfis, passar em entrevistas de emprego e se infiltrar silenciosamente no RH de grandes corporações. Você também vai conferir: Samsung prepara mudança de design no Galaxy S27; Novo caça de última geração da FAB estreia em megaoperação aérea; Xiaomi prepara "celular normal" com bateria de 10.000 mAh. Este podcast foi roteirizado e apresentado por Marcelo Fischer e contou com reportagens de Vinícius Moschen e Danielle Cassita, sob coordenação de Anaísa Catucci. A trilha sonora é de Guilherme Zomer, a edição de Natália Improta e a arte da capa é de Erick Teixeira.See omnystudio.com/listener for privacy information.

Marley Kayden talks about CrowdStrike's (CRWD) upgrade and what the effects look like in the coming weeks. Prosper Trading Academy's Mike Shorr offers an example options trade for CrowdStrike and touches on market metrics, noting the flood of earnings to watch throughout the week.======== Schwab Network ========Empowering every investor and trader, every market day.Options involve risks and are not suitable for all investors. Before trading, read the Options Disclosure Document. http://bit.ly/2v9tH6DSubscribe to the Market Minute newsletter - https://schwabnetwork.com/subscribeDownload the iOS app - https://apps.apple.com/us/app/schwab-network/id1460719185Download the Amazon Fire Tv App - https://www.amazon.com/TD-Ameritrade-Network/dp/B07KRD76C7Watch on Sling - https://watch.sling.com/1/asset/191928615bd8d47686f94682aefaa007/watchWatch on Vizio - https://www.vizio.com/en/watchfreeplus-exploreWatch on DistroTV - https://www.distro.tv/live/schwab-network/Follow us on X – https://twitter.com/schwabnetworkFollow us on Facebook – https://www.facebook.com/schwabnetworkFollow us on LinkedIn - https://www.linkedin.com/company/schwab-network/About Schwab Network - https://schwabnetwork.com/about

Former General Council for the Fed Board of Governors, Scott Alverez, reacts to the breaking news the DOJ is dropping its criminal probe into Fed Chair Jerome Powell, potentially paving the way for the confirmation of Fed Chair nominee Kevin Warsh. Then the CFO of OpenAI on an IPO timeline, the cost of compute and the risked posed by new AI cyber tools. And CrowdStrike CEO George Kurtz on why he says the AI models that identify cyber vulnerabilities, don't pose an existential risk to his business. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

In this episode of Investing Unscripted, Jason and Jeff revive a fan-favorite format: letting AI randomly select stocks from their personal portfolios for a rapid-fire review. For each chosen stock, the hosts must explain what the company does, build the best "bear case" against it, and declare whether they would buy it at today's prices. Jeff tackles the tech heavyweights, defending Nvidia against the threat of purpose-built AI chips, exploring how "vibe coding" could eat away at Shopify's margins, and evaluating CrowdStrike's post-outage reality. Meanwhile, Jason embraces his love for "boring" businesses, breaking down the massive cash flows of pipeline operator Enterprise Products Partners, the underwriting discipline of internet-bank Axos Financial, and the cost-of-capital risks for Clearway Energy.03:13 Spotify Ratings Challenge04:24 Pick 1 CrowdStrike Bear Case08:00 Quantum and AI Disruption Talk14:21 Pick 2 Enterprise Products Explained20:13 Would You Buy It Valuation Talk25:09 Pick 3 Nvidia Bear Case Setup27:47 Nvidia Valuation Debate30:41 Nvidia Bear Case Shifts34:40 Axos Financial Overview36:19 Axos Bank Risks40:48 Shopify Bear Thesis43:01 Shopify Platform Risks51:33 Clearway Energy YieldcoCompanies mentioned: AX, CRWD, CWEN, EPD, NVDA, SHOPFind where to listen & subscribe,  portfolio contests, and contact information at https://investingunscripted.com*****************************************To get 15% off any paid plan at fiscal.ai, visit https://fiscal.ai/unscriptedListen to the Chit Chat Stocks Podcast for discussions on stocks, financial markets, super investors, and more. Follow the show on Spotify, Apple Podcasts, or YouTube*****************************************Join our PatreonSubscribe to our portfolio on Savvy Trader

In this episode of In Depth, First Round Partner Josh Kopelman sits down with Shachar Hirshberg and Dan Shiebler, co-founders of Artemis, the AI-native security platform that just emerged from stealth with $70M in combined seed and Series A funding. Shachar and Dan unpack how they built a 30-person team in seven months, why AI-native companies are outperforming their AI-enabled counterparts, and why they plan to stay on a texting basis with every customer, even at scale. In today's episode, we discuss: How to interview for AI fluency when building an AI-native startup Why founder-market fit is a critical early signal for startup success The surprising lesson Dan learned from founder-led sales How Dan and Shachar are instilling customer-obsession into Artemis' culture How the two co-founders approach conflict and decision-making References: Abnormal: https://abnormal.ai Amazon Web Services (AWS): https://aws.amazon.com Anthropic: https://www.anthropic.com Artemis: https://artemissecurity.com CrowdStrike: https://www.crowdstrike.com Demisto (now Cortex XSOAR): https://www.paloaltonetworks.com/cortex/cortex-xsoar OpenAI: https://openai.com Palo Alto Networks: https://www.paloaltonetworks.com Todd Jackson: https://www.linkedin.com/in/toddj0/ Where to find Shachar Hirshberg: LinkedIn: https://www.linkedin.com/in/shachar-hirshberg/ Where to find Dan Shiebler: LinkedIn: https://www.linkedin.com/in/dan-shiebler-10219b42/ Where to find Josh: LinkedIn: https://www.linkedin.com/in/jkopelman/ Twitter/X: https://x.com/joshk Where to find First Round Capital: Website: https://firstround.com/ First Round Review: https://review.firstround.com/ Twitter/X: https://twitter.com/firstround YouTube: https://www.youtube.com/@FirstRoundCapital This podcast on all platforms: https://review.firstround.com/podcast Timestamps: 00:00 Introduction 00:06 What Artemis does and why now 02:51 Shachar's AWS and Palo Alto playbook 05:15 Dan's founder journey: From Twitter to Abnormal 08:51 Why founder-market fit is critical for startups 11:38 Finding the right moment to take the leap and build 13:52 The hiring process that powers a startup in stealth 16:58 Building a team centered on AI capabilities 21:48 How AI implementation changes dashboard metrics 23:22 The ICP they chased and the one they ignored 26:44 The magic of closing the first customers 27:49 The surprising signals of early product-market fit 32:06 Critical lessons from founder-led sales 33:51 Why the first product should make founders uncomfortable 36:03 Hiring 30 people while still in stealth 42:08 “Should we be arguing more?” 43:37 How the AI security market is evolving 49:03 Why AI-native beats AI-enabled company structure 51:09 The most surprising moments as a first-time founder

Hace siete años cuando concluyó el entrenamiento de GPT-2, Dario Amodei, entonces director de investigación de Open AI, consideró que era demasiado peligroso para lanzarlo sin más. El modelo acabó saliendo meses después y el anunciado apocalipsis digital nunca llegó. Hoy Amodei vuelve a estar preocupado, pero ahora desde Anthropic, la empresa que él mismo fundó en 2021. Este mes anunció que Mythos, el último y más avanzado modelo de Claude, es demasiado poderoso para ponerlo en manos del gran público. Le inquieta su habilidad para detectar vulnerabilidades en el software y, según se le ordene, parchearlas o explotarlas con la astucia del mejor hacker. Hay, de cualquier modo, que poner en perspectiva estas advertencias, porque Anthropic es la primera interesada en alimentar el bombo publicitario de la empresa, que va muy bien. Es normal que Amodei desee que siga creciendo en clientes y facturación. Pero también hay motivos de peso para tomárselo en serio. Mythos ya ha localizado brechas importantes en todos los grandes sistemas operativos y navegadores, incluida una que ha permanecido oculta durante 27 años sin que ningún revisor humano lo advirtiese. La respuesta del sector avala la amenaza. Amodei ha puesto en marcha el Proyecto Glasswing, al que se han sumado Apple, Google, Nvidia, CrowdStrike y la Fundación Linux para blindar sus defensas antes de que el modelo salga al mercado. Anthropic asumirá los primeros 100 millones de dólares de coste, pero luego cobrará cinco veces más que por Opus, su predecesor. Esto puede incomodar, y mucho, al Gobierno estadounidense, que lleva décadas coleccionando esas vulnerabilidades en sus rivales para utilizarlas como ciberarmas llegado el caso. Si Glasswing funciona, parte de ese arsenal quedaría desactivado. Pete Hegseth, secretario de Defensa, que acaba de tener un rifirrafe con Anthropic, podría poner a la compañía en la mira y buscarle más problemas. El hecho es que la idea de un mundo en el que simples aficionados se dediquen al conocido como “vibe hacking” pidiendo a la inteligencia artificial que encuentre fallos y luego los aprovechen en su beneficio suena aterradora. Scott Bessent, secretario del Tesoro, ha reunido a los grandes banqueros para analizar el asunto, y los reguladores británicos han hecho lo propio. Con todo, los expertos se muestran por ahora optimistas. Creen que en el medio plazo la cosa puede devenir algo caótica, pero a la larga quienes se dedican a la seguridad informática saldrán ganando. Queda, eso sí, un corto plazo difícil y, sobre todo, muy caro. Cada bug cazado con IA puede costar miles de dólares en créditos, una factura prohibitiva para proyectos que se nutren de voluntarios como Linux. Eso por no hablar de que buena parte del código que circula por infinidad de dispositivos, como el de la maquinaria industrial, los routers domésticos o los electrodomésticos conectados no tiene a nadie dándole mantenimiento. En ese terreno baldío, los atacantes podrían hacer su agosto. Para hablar de este tema regresa Francisco a La ContraCrónica, que, aparte de ser un usuario intensivo de inteligencia artificial en su trabajo como desarrollador, ha estado siguiendo este tema. · Canal de Telegram: https://t.me/lacontracronica · “Contra el pesimismo”… https://amzn.to/4m1RX2R · “Hispanos. Breve historia de los pueblos de habla hispana”… https://amzn.to/428js1G · “La ContraHistoria del comunismo”… https://amzn.to/39QP2KE · “La ContraHistoria de España. Auge, caída y vuelta a empezar de un país en 28 episodios”… https://amzn.to/3kXcZ6i · “Contra la Revolución Francesa”… https://amzn.to/4aF0LpZ · “Lutero, Calvino y Trento, la Reforma que no fue”… https://amzn.to/3shKOlK Apoya La Contra en: · Patreon... https://www.patreon.com/diazvillanueva · iVoox... https://www.ivoox.com/podcast-contracronica_sq_f1267769_1.html · Paypal... https://www.paypal.me/diazvillanueva Sígueme en: · Web... https://diazvillanueva.com · Twitter... https://twitter.com/diazvillanueva · Facebook... https://www.facebook.com/fernandodiazvillanueva1/ · Instagram... https://www.instagram.com/diazvillanueva · Linkedin… https://www.linkedin.com/in/fernando-d%C3%ADaz-villanueva-7303865/ · Flickr... https://www.flickr.com/photos/147276463@N05/?/ · Pinterest... https://www.pinterest.com/fernandodiazvillanueva Encuentra mis libros en: · Amazon... https://www.amazon.es/Fernando-Diaz-Villanueva/e/B00J2ASBXM #FernandoDiazVillanueva #claude #mythos Escucha el episodio completo en la app de iVoox, o descubre todo el catálogo de iVoox Originals

Podcast: Industrial Cybersecurity InsiderEpisode: OT Patching vs IT Patching: What's Commonly MisunderstoodPub date: 2026-04-14Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationMost cybersecurity teams treat patching like a universal fix. In manufacturing, that assumption can take down a production line, trigger a safety event, or void the warranty on a $2 million piece of equipment.In this episode, Dino Busalachi and Craig Duckworth break down why patching in operational technology environments is a fundamentally different problem than patching enterprise IT — and why closing that gap requires more than just pushing an update.The bottom line: A firewall is not a patching strategy. Neither is hoping your systems are isolated. Organizations that get this right use risk-based prioritization, lab testing, virtual patching, and real collaboration between IT and OT teams.If you are responsible for a plant floor — or for the people who are — this conversation is for you.

Companies like CrowdStrike are taking advantage of their struggling stock prices by increasing buyback activity, reflecting management confidence despite market volatility. This trend raises questions about whether corporate buybacks signal attractive entry points for investors.Today's Stocks & Topics: AppLovin Corporation (APP), Market Wrap, Hess Midstream LP (HESM), MPLX LP (MPLX), Roblox Corporation (RBLX), Do Corporate Stock Buybacks Signal Attractive Entry Points for Investors?, Sysco Corporation (SYY), ICICI Bank Limited (IBN), Interest Rates.Introducing our Third Annual InvestTalk Market Madness! Join the mayhem before May 18th at 11:59 pm PST for the chance to win $1,500! Fill out your bracket below: https://kppfinancial.com/investtalk-madnessOur Sponsors:* Check out Anthropic: https://claude.ai/invest* Check out Pebl: https://hipebl.ai* Check out Quince: https://quince.com/invest* Check out TruDiagnostic and use my code INVEST20 for a great deal: https://www.trudiagnostic.comAdvertising Inquiries: https://redcircle.com/brands

This week we talk about Project Glasswing, Anthropic, and Q Day.We also discuss exploit markets, vulnerabilities, and zero days.Recommended Book: The Culture Map by Erin MeyerTranscriptIn the world of computer security, a zero-day vulnerability is an issue that exists within a system at launch—hence, zero-day, it's there at day zero of the system being available—that is also unknown to those who developed said system.Thus, if Microsoft released a new version of Windows that had a security hole that they didn't know about, but someone else, a hacking group maybe, discovered before it was released, they might use that vulnerability in Windows or Word or whatever else to hack the end-users of that software.While large companies like Microsoft do a pretty good job, considering the scope and scale of their product library, of identifying and fixing the worst of the security holes that might leave their customers prone to such attacks, that same scope and scale also means it's nearly impossible to fill every single possible gap: a truism within the cybersecurity world is that defenders need to get it right every single time, and attackers only need to get it right once, and the same is true here. There's never been a perfect piece of software, and as these things expand in capability and complexity, the opportunity to miss something also increases, and thus, so does the range of possible errors and exploitable imperfections.Because of how damaging zero-days can be for both users of software and the companies that make that software, there are thriving marketplaces, similar to those that deal in other illicit goods, where those who discover such vulnerabilities can sell them, usually for cryptocurrencies or funds derived from stolen credit cards.Software companies have countered the increasing sophistication of these exploit black markets with white and grey market efforts, the former being direct payouts to hackers, basically saying hey, thanks for finding this bug, here's a lump-sum of money, a bug bounty, rather than punishing all hacking of their systems, which is how they would have previously responded, which had the knock-on effect of sending all hackers, even those who weren't looking to cause trouble, either underground, or actively hunting for bugs for the black market.The grey market is more complicated and diverse, and also the largest of marketplaces for those shopping around for these types of exploits. And it's populated by the same sorts of neverdowells who might frequent the exploit black markets, but also includes all sorts of governments and intelligence agencies, who scoop up these sorts of vulnerabilities to use against their opponents, or to deny them to others who might use them instead, against them.All sorts of governments, from the US to Russia to North Korea to Iran are regular shoppers on these computer system exploit grey markets, and that has created a complicated, entangled system of incentives, as is some cases, it's better for the US government, or Iranian government, or whomever, if the company making these systems doesn't know about a bug or other vulnerability, because they just spent several million dollars to buy a map to said bug or gap, which could, at some point in the future, allow them to tunnel into an enemy's computers and cause damage or steal information.What I'd like to talk about today is a new AI system that is apparently very, very good at identifying these sorts of exploits, and why this is being seen as a milestone moment for some people operating in the zero day, and overall computer security space.—On April 7, 2026, US-based AI company Anthropic announced Project Glasswing—a new initiative that is currently only available to 11 companies that's meant to help those companies shore-up their cyber defenses before more AI systems like the one that underpins Project Glasswing, which is called Mythos Preview, hit the market.So these companies, Amazon Web Services, Anthropic, Apple, Broadcom, Cisco, CrowdStrike, Google, JPMorganChase, the Linux Foundation, Microsoft, NVIDIA, and Palo Alto Networks, make a lot of stuff, and in particular make and maintain a lot of vital online and device-based software infrastructure, like operating systems and all the stuff that keeps things in our apps and on the web secure.Mythos Preview is a new model created by Anthropic, similar to their existing Claude models, but apparently vastly more powerful. There are tests that AI companies use to compare the potency of their models at a variety of task types, but those are generally considered to be flawed or game-able in all sorts of ways, so the main thing to know here is that Mythos did way better at most of those tests, especially the coding, the programming-related ones, than the other, currently most capable models, the ones that professional programmers, most of them anyway, are using these days. It was also able to do impressive and worrying things like break out of the sandbox that contained it, accessing the internet when it wasn't supposed to be able to do so.And because of that leap forward in programming capability, Mythos Preview was tasked by Anthropic with finding vulnerabilities in all sorts of software systems, including operating systems—Windows, macOS, iOS—and browsers, like Chrome and Firefox.Most AI systems, and most human coders, if they focus enough and look really hard for long enough, will tend to find some kind of vulnerability in just about anything, because this software is just that big and complex. But within a relatively short period of time, Mythos Preview found thousands of vulnerabilities in these systems, indicating that it's a lot better at this kind of task than the other AI available these days, and so Anthropic created this project, Project Glasswing, to give these entities a head-start, helping them fill these gaps and bolster their defenses, before everyone else on the planet, including foreign governments, hacker and terrorist groups, but also just everyday people, suddenly have the ability to identify and possibly exploit these vulnerabilities, on scale.This news hasn't been super widely reported in the non-tech press quite yet, but within the tech world, it landed like a hand grenade in a crowded room.And there are already quite a few perspectives on what this all means, including a fair bit of skepticism.On the skeptic side, many analysts have noted that it's a common tactic amongst AI companies to doomsay, to basically suggest that their models might end the world, might kill all of humanity, might dramatically change everything, put everyone out of work, maybe, not necessarily because the founders and employees at those companies believe that would be the case, but because the implication is that if these products are that powerful, well, investors should probably give them gobs of money, because a tool that could end the world or cause that much disruption might be the last tool available, or might become the next electricity or internet or whatever else. Claiming philosophical, humanistic concern for the super-weapon you just built, in other words, is one way for AI company leaders to say their product is superior to every other product ever while also seeming to suggest that they are the thoughtful, careful leaders that we need holding the reins of that sort of capacity.Other skeptics have said that while this might be a step-up in terms of the speed at which such vulnerabilities can be identified in these sorts of systems, other AI systems, existing ones, even open source, free ones, have been able to do the same for a while now. So while Mythos Preview might be even better at it, and might be capable of running constantly, finding more and more of these things for a government that wants to save money they might otherwise spend on the grey market, scooping these things up for use against their enemies, or for defensive purposes, sharing some of them with their homegrown tech companies, perhaps, smaller, less-moneyed groups can already do the same, if they're smart about how they apply existing, even free, lower-end AI systems.Others have responded to this announcement similarly to how some have responded to the concept of Q Day, short for Quantum Day, which refers to the hypothetical moment at which quantum computers finally become powerful enough to break the encryption that allows the internet, and banking, and government privacy systems to function. If these encryption keys can be broken—and quantum computers should theoretically be able to do this a lot better than conventional computers, because of their very nature—if and when that happens, if these systems aren't suitably prepared with new encryption that's hardened against quantum systems, the entire banking sector could collapse, everything hackable, all the money stealable, none of it trustworthy anymore. The same with the whole of the web, with apps, with government systems that keep things hidden away and classified, with energy grids. It could be chaos.The theory here, then, is that this type of AI, maybe Mythos Preview, maybe the other systems that it portends—because this whole industry seems to leapfrog itself every three or four months at this point, someone coming out with a big, cool, most powerful new thing, then their competitors coming out with something even more powerful within weeks or months—maybe these vulnerability-identifying and exploiting AI will result in something similar, all the world's software and encryption a lot more vulnerable, all at once, essentially tomorrow.It's more of what we've already seen with AI, basically, these tools providing anyone who uses them more leverage to do all sorts of things. Not necessarily creating anything new—exploits and vulnerabilities have always existed—but giving a skilled hacker the ability to find and exploit thousands of them in the same time it would have previously taken them to find and exploit just one. And it could also give unskilled, non-hackery people and entities similar capabilities.That creates a dramatically new cybersecurity landscape essentially overnight, and that's why, at least according to their press releases on the matter, Anthropic is not releasing Mythos Preview to the public, and instead is taking the Project Glasswing approach: they don't think other AI companies, like OpenAI or xAI, can be trusted not to just lob that grenade into the crowded room, so since they got there first, they're going to try to help everyone protect themselves from that grenade when it inevitably lands.This could, then, be quite the PR coup, giving Anthropic the opportunity to tout their superior products, while also allowing them to portray themselves as sort of the white knight in the AI world, helping everyone protect themselves, even though they probably could have made far more money by either selling the exploits and creating their own new market for them, or by somehow leveraging those exploits themselves.At the same time, it could be that they are overselling the capabilities of this new model, painting a rosy picture with them as the heroes, while in turn makes their products seem more powerful than they are in order to bolster their public perception and future economic potential.It could also be a bit of both; even those who are skeptical about this specific announcement and the implications of it do tend to agree it's likely we'll see more disruption from these sorts of models soon. Even if Mythos Preview isn't the grenade everyone's worried about, in other words, it's likely we'll face such a threat in the near-future, and even if Project Glasswing isn't the defense we need against such a threat, it's probably prudent that we be thinking about whatever it is we do need, and ideally building it, too, so it's ready to go, already in place, when that new threat lands.Show Noteshttps://www.nytimes.com/2026/04/10/briefing/claude-mythos-preview.htmlhttps://www.nytimes.com/2026/04/07/technology/anthropic-claims-its-new-ai-model-mythos-is-a-cybersecurity-reckoning.htmlhttps://en.wikipedia.org/wiki/Claude_(language_model)#Claude_Mythos_Previewhttps://www.newyorker.com/magazine/2026/04/13/sam-altman-may-control-our-future-can-he-be-trustedhttps://www.anthropic.com/glasswinghttps://www.wired.com/story/anthropic-mythos-preview-project-glasswing/https://stratechery.com/2026/myth-and-mythos/https://en.wikipedia.org/wiki/Zero-day_vulnerabilityhttps://en.wikipedia.org/wiki/Market_for_zero-day_exploits This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit letsknowthings.substack.com/subscribe

When Anthropic announced Project Glasswing, the headline was the capability: an AI model that found a 27-year-old flaw in OpenBSD and a 17-year-old remote code execution vulnerability in FreeBSD — fully autonomously, no human in the loop after the initial prompt. But the story underneath the capability is a structural one about who gets early intelligence, who sets the disclosure timeline, and what happens to every organization that wasn't in the room. In this edition of Lens Four, Sean Martin examines Project Glasswing through three lenses: the intelligence asymmetry it creates for security programs, what it reveals about the broken assumptions underneath CVE, CVSS, and NIST, and why the equity framing in Glasswing's messaging doesn't survive contact with the data.

In der heutigen Folge sprechen die Finanzjournalisten Lea Oetjen und Philipp Vetter über gute Nachrichten aus Ungarn, die Retourkutsche von Anthropic gegen Cloudflare und Teslas Autopilot-Erfolg. Außerdem geht es um Volkswagen, BMW, Mercedes-Benz Group, Apple, Amazon, Broadcom, Cisco, CrowdStrike, Google, JPMorgan, Microsoft, Nvidia, Palo Alto Networks, SAP, Akamai Technologies, Xtrackers II EUR Overnight Rate Swap (WKN: DBX0AN), Amundi EUR Overnight Return (WKN: LYX0B6) und Amundi Smart Overnight Return (WKN: LYX0WM). Wir freuen uns an Feedback über aaa@welt.de. Anzeige: Diese Folge enthält Werbung für Smartbroker+. Depot eröffnen & 60 € ETF sichern! Riesige ETF-Auswahl, flexible Trades & persönlicher Support bei Smartbroker+. Alle Informationen gibt es unter: https://get.smartbrokerplus.de/triple-aaa-podcast/ Noch mehr "Alles auf Aktien" findet Ihr bei WELTplus und Apple Podcasts – inklusive aller Artikel der Hosts. Hier bei WELT: https://www.welt.de/podcasts/alles-auf-aktien/plus247399208/Boersen-Podcast-AAA-Bonus-Folgen-Jede-Woche-noch-mehr-Antworten-auf-Eure-Boersen-Fragen.html. Hier könnt ihr den AAA-Newsletter abonnieren: https://www.welt.de/newsletter/article232797673/Alles-auf-Aktien-Der-taegliche-Boersen-Newsletter-fuer-WELTplus-Abonnenten.html Und - ganz neu: AAA gibt es jetzt auch auf Instagram: https://www.instagram.com/alles_auf_aktien/ Disclaimer: Die im Podcast besprochenen Aktien und Fonds stellen keine spezifischen Kauf- oder Anlage-Empfehlungen dar. Die Moderatoren und der Verlag haften nicht für etwaige Verluste, die aufgrund der Umsetzung der Gedanken oder Ideen entstehen. Hörtipps: Für alle, die noch mehr wissen wollen: Holger Zschäpitz können Sie jede Woche im Finanz- und Wirtschaftspodcast "Deffner&Zschäpitz" hören. +++ Werbung +++ Du möchtest mehr über unsere Werbepartner erfahren? Hier findest du alle Infos & Rabatte! https://linktr.ee/alles_auf_aktien Impressum: https://www.welt.de/services/article7893735/Impressum.html Datenschutz: https://www.welt.de/services/article157550705/Datenschutzerklaerung-WELT-DIGITAL.html

What happens when fintech innovation meets real-world cyber threats?This week, we sit down with Kyle Hatfield — a cybersecurity leader helping organizations stay one step ahead in an ever-evolving threat landscape.From building stronger defenses to navigating the risks that come with rapid fintech growth, Kyle shares what it really takes to protect modern financial systems.With experience driving security strategy and partnering with industry leaders like CrowdStrike, this episode dives into:⚡ The biggest cybersecurity risks in fintech right now⚡ Why proactive defense beats reactive security⚡ How companies can stay resilient against evolving threats⚡ What the future of cyber + fintech looks likeCyber threats aren't slowing down — and neither should your strategy.

Supply chain attacks targeting AI have recently been making headlines — and keeping the CrowdStrike OverWatch team busy. Jared Myers, director of CrowdStrike OverWatch, joins Adam in this episode to discuss his team's approach to detecting and responding to these attacks. When a supply chain attack uses a zero-day vulnerability to breach a target, it's often the CVE that grabs attention. But the zero-day isn't what CrowdStrike OverWatch is after, Jared says. It's the follow-on tradecraft once the adversary is inside. He takes listeners behind the scenes of the team's response to recent supply chain attacks, including the MOVEit attack of 2023 and the Axios supply chain incident of March 2026, to share the technical details of how the team learns and acts on information as attacks are unfolding. Identity is an essential component in supply chain attacks, Jared explains. Once an adversary is in, they're looking for a user account to help them move laterally. He shares advice with listeners and key takeaways from the team's identity threat hunting. CrowdStrike OverWatch is a 24/7/365 operation, with experts working around the clock across time zones with visibility into trillions of events per day. By the time an attack makes headlines, CrowdStrike OverWatch may have known about it for months. “We don't ever stop looking; we don't ever stop hunting,” says Jared. Notes: • Blog: STARDUST CHOLLIMA Likely Compromises Axios npm Package [https://www.crowdstrike.com/en-us/blog/stardust-chollima-likely-compromises-axios-npm-package/] • Blog: From Scanner to Stealer: Inside the trivy-action Supply Chain Compromise [https://www.crowdstrike.com/en-us/blog/from-scanner-to-stealer-inside-the-trivy-action-supply-chain-compromise/]

Charles is joined by Mario Veneroso, Kingsview Partners Wealth Manager, to discuss why improving fundamentals and technical charts signal a bullish market turn, the phenomenal growth of AI-driven plays like FTAI and CrowdStrike, and why UPS presents an attractive opportunity for investors through cost-cutting and high dividends. Learn more about your ad choices. Visit podcastchoices.com/adchoices

Two of Seeking Alpha's top tech analysts, Amrita Roy and Uttam Dey, share how they approach the sector (1:00) ROI on AI capex; hyperscalers, optical connectivity, memory (11:45) Lumentum bullishness and why gross margins are so important (26:00) Nvidia's peculiar spot (30:30) Tech stock mispricings (37:00) Meta's macro backdrop (47:00)Show Notes:Why Meta Is The Best Positioned Hyperscaler In 2026Top 5 Stocks For AI's Optical Revolution In 2026Episode transcriptsFor full access to analyst ratings, stock and ETF quant scores, and dividend grades, subscribe to Seeking Alpha Premium at seekingalpha.com/subscriptions

In Episode 176 of the Cyber Threat Perspective podcast, Brad and Spencer break down some of the most repeated cybersecurity best practices in the industry and explain why, despite sounding solid on paper, they consistently fall short in real IT environments.This isn't about dismissing good security principles. It's about closing the gap between advice that looks great in a framework and controls that actually hold up against how attackers operate.Topics covered include:"Just enable MFA everywhere" — why focusing only on RDP leaves SMB, WinRM, service accounts, and legacy protocols wide open"EDR will catch it" — the danger of over-relying on a single control, including a little-known CrowdStrike behavior where it self-disables on domain controllers at 90% resource utilization — often completely unnoticed"Patch everything immediately" — why blind speed creates its own operational risk, and how to build a prioritized, high-risk patching process that actually works"Least privilege everywhere" — why removing permissions without providing alternatives drives workarounds, shared accounts, and exceptions that undo the whole point"Follow the framework and you're secure" — why compliance is a starting point, not a finish line, and what most standards actually require vs. what actually reduces riskFocusing on attack paths over checklists — why thinking like an attacker leads to better security decisions than ticking boxesBrad and Spencer close with what actually works: context-driven decisions, management buy-in, clear communication when making sweeping changes, and validating every control through internal penetration testing. As Spencer notes, most clients don't have full confidence in their EDR and SOC after a pentest — and that's exactly why trust but verify matters.Also mentioned: Spencer and Brad's upcoming Tools of the Trade workshop at the ILTA Evolve conference in Denver.Blog: https://offsec.blog/Youtube: https://www.youtube.com/@cyberthreatpovTwitter: https://x.com/cyberthreatpovFollow Spencer on social ⬇Spencer's Links: https://spenceralessi.comWork with Us: https://securit360.com | Find vulnerabilities that matter, learn about how we do internal pentesting here.

En este episodio, Juan Manuel de los Reyes y Valentina Orduz analizan los tres temas más importantes del día: el frágil alto al fuego entre Estados Unidos e Irán, el deterioro del mercado de hipotecas en medio de la guerra, y el lanzamiento de Mythos de Anthropic.El alto al fuego de dos semanas entre EE.UU. e IránEl presidente Trump acordó un alto al fuego de dos semanas con Irán, mediado por Pakistán, condicionado a que Teherán reabra el Estrecho de Ormuz para el paso seguro de embarcaciones. El anuncio llegó a menos de dos horas del ultimátum que Trump había impuesto, en el que amenazó con una destrucción a gran escala si Irán no cedía.  Juan Manuel y Valentina exploran qué significa este acuerdo realmente: Irán dejó claro que el cese al fuego no implica el fin de la guerra y ambos lados lo proclaman como una victoria propia. Los mercados reaccionaron con alivio inmediato: los futuros del S&P 500 subieron más del 2% y los precios del petróleo cayeron abruptamente. Los próximos pasos: el primer ministro de Pakistán invitó a ambas delegaciones a Islamabad el viernes 10 de abril para continuar las negociaciones hacia un acuerdo definitivo. Hipotecas congeladas: el costo del conflicto en el mercado de viviendaEl conflicto no solo se siente en los mercados financieros; también llega al sueño americano de comprar casa. La guerra con Irán disparó los precios de la gasolina y empujó las tasas hipotecarias al alza durante cinco semanas consecutivas, pasando de un mínimo de 5.99% a un máximo de 6.64%. Anthropic, Mythos y el proyecto que podría redefinir la ciberseguridad Anthropic presentó Claude Mythos Preview, su modelo más avanzado hasta la fecha, pero decidió no lanzarlo públicamente por considerarlo demasiado peligroso si cae en manos equivocadas. El modelo fue desplegado exclusivamente a través de una nueva iniciativa llamada Project Glasswing, en la que participan más de 40 organizaciones, incluyendo Microsoft, CrowdStrike, Amazon, Apple, Google y Palo Alto Networks, para usarlo exclusivamente en trabajo de seguridad defensiva. 

Raj Rajamani is co-founder and CEO of JetStream. JetStream sells an AI agent governance and identity platform designed to help organizations identify and control their sprawling AI footprint. In a crowded space, JetStream has emerged as a leader with a world-class team and $34 million seed round. Before JetStream, Raj has a storied career as a product leader at several of the most important EDR companies of the last 15 years. He served as a VP of Product at Cylance, CPO at SentinelOne, and CPO at CrowdStrike. In the episode, we talk about the lessons from the winners of the EDR battle, his personal character changes throughout, and how his experience has set him up to lead a startup in arguably the most important security category right now. https://jetstream.security/

Daniel Bernard is the chief business officer at CrowdStrike. In this episode, he joins host Amanda Glassner from RSAC 2026, where they discussed exciting new announcements from CrowdStrike, events including the CrowdTour series and Fal.con 2026, and more. • For more on cybersecurity, visit us at https://cybersecurityventures.com.

Introduction What happens when a bank finds the right technology but can't touch it for nine months? The procurement bottleneck in regulated financial services isn't just an inconvenience. It's a competitive disadvantage measured in quarters, lost sponsors, and dead deals. Scott Sambucci, Managing Director of North America and Europe at NayaOne, has spent 25 years selling into and building technology for financial institutions, from CoreLogic to Blend Labs. Now he's leading the US and Canadian expansion of NayaOne's sandbox-as-a-service platform, the same infrastructure the UK's Financial Conduct Authority chose to power its own digital sandbox. In this episode, Scott breaks down why the vendor delivery problem is the real blocker to innovation in insurance and banking, and how air-gapped sandbox environments compress proof-of-concept timelines from months to weeks. Guest Bio Scott Sambucci is Managing Director of North America and Europe at NayaOne, where he leads market expansion for the London-based sandbox platform. Before joining NayaOne full-time in January 2024, he spent 25 years in Silicon Valley building and scaling technology companies in financial services, including executive roles at CoreLogic and Blend Labs. Scott is also founder of SalesQualia, a sales coaching firm, and teaches Sales & Marketing at Hult International Business School. A 200-mile ultramarathon finisher, he applies the same relentless-forward-progress mindset to enterprise sales and team building. Key Topics The vendor delivery infrastructure gap — Banks and carriers need 6-12 months of third-party risk management, security, and compliance review before they can even pilot new technology, leaving them perpetually behind nimble competitors. How air-gapped sandboxes collapse procurement timelines — NayaOne's off-estate digital sandbox lets institutions run proof of concepts in weeks because the environment is completely separated from production systems, eliminating the need for individual vendor security reviews. The "vet once, test many" model — Once a bank approves NayaOne as a vendor, any future technology (from Y Combinator startups to CrowdStrike) can be tested inside the sandbox without repeating the TPRM process. Insurance-specific use cases: claims modernization — P&C carriers are using the platform to test AI-driven FNOL triage, claims routing, fraud detection, and payment automation across the full claims lifecycle. Multi-LLM side-by-side assessments — Banks are running comparative evaluations of ChatGPT, Gemini, and other LLMs inside the sandbox, the only way regulated institutions can safely touch these systems before committing. Integration testing with core systems — The platform replicates Guidewire, Duck Creek, Salesforce, and ServiceNow environments so carriers can validate interoperability before making a purchasing decision. Relentless forward progress as a leadership framework — Scott draws a direct line from 200-mile ultramarathons to building a US operation from scratch: plan station to station, leverage the team, and own everything that happens. Notable Quotes "What you've built here is a utility that every financial institution is going to need, whether they know it or not right now." — Scott Sambucci, Managing Director, NayaOne "There's nothing more frustrating than making good progress with your sales demo, having good early conversations, but then being told it's just gonna take nine months for you to fill out all this paperwork." — Scott Sambucci "By nature, every bank out there is going to be twelve months behind their competitive landscape because those competitors don't have those same guardrails yet." — Scott Sambucci "No one's coming to help you. No one can pick you up and take you to the finish line. It doesn't matter how good or bad you feel — you just have to keep moving." — Scott Sambucci Resources Guest: NayaOne: https://nayaone.com/ Scott Sambucci on LinkedIn: https://www.linkedin.com/in/scottsambucci/ Host & Organization: Joshua R. Hollander on LinkedIn: https://www.linkedin.com/in/joshuarhollander/ Horton International (USA): https://www.horton-usa.com/ Insurtech Leadership Podcast (LinkedIn Showcase): https://www.linkedin.com/showcase/insurtech-leadership-show Subscribe & Review If you enjoyed this episode, subscribe on your favorite platform and leave a review. The Insurtech Leadership Podcast is available on YouTube, Podbean, Apple Podcasts, and Spotify.

Simon reviews six listed space stocks ahead of the expected SpaceX IPO, which could debut above $2 trillion as early as June. Rocket Lab, AST SpaceMobile, Intuitive Machines, Firefly Aerospace, Planet Labs and Spire Global each get a SWOT breakdown, with the Procure Space ETF (UFO) as a diversified alternative. On the local front, the JSE Top 40 just posted its worst month since September 2008, falling roughly 10 percent from all-time highs. A massive petrol price increase takes effect at midnight. Simon discusses investing into a falling market, revisits the Algorithm Holdings AI hype collapse, and explains why CrowdStrike's CEO selling stock is not worth losing sleep over. WorldWideMarkets is part of JustOneLap.com.

Oil prices jump as Markets moved by Iran US conflict, CrowdStrike in the news, Next Rob Black event is Pints and Portfolios in Sunnyvale on Saturday April 18th 11:30am to 1:30pm sign up for exact location

Is the RSA Conference floor a visionary glimpse into the future, or just an "AI blender" where every vendor tastes the same? Join hosts Marco Ciappelli and Sean Martin as they sit down with industry heavyweights Theresa Lanowitz and Joe Carson to dissect the real sentiment of RSAC 2026. Key Discussion Points: The AI Agent Explosion: Everyone says they can secure your agents, but is there any actual differentiation? Keynote Insights: A breakdown of George Kurtz's CrowdStrike keynote on "Full Throttle" AI vs. total fear. The "Mushroom" Metaphor: Why AI is like a power-up in Super Mario Kart—it makes you go faster, but it doesn't make you a better driver. The Marketing Disconnect: Why vendor messaging is failing to map to the actual "to-do lists" of modern CISOs. Niche Power: Why the most innovative solutions are often found on the perimeter of the expo floor.   Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

NVIDIA's NemoClaw adds enterprise security to OpenClaw. What it does, what it doesn't, and what CIOs should do before deploying.FULL SHOW NOTESOpenClaw became the fastest-growing open-source project in history. Enterprise buyers watched from the sidelines — not because the technology wasn't useful, but because an autonomous agent with access to corporate file systems, credentials, and external communication channels is a governance and security problem that no one had solved at the enterprise level.At NVIDIA's GTC 2026 conference, Jensen Huang announced NemoClaw: a reference stack that adds enterprise security controls to OpenClaw. In this solo episode, Maribel Lopez breaks down what NemoClaw actually does, why the SaaS partner ecosystem matters as much as the technology itself, and where the hype is running ahead of the reality.WHAT WE COVER•       Why OpenClaw created a shadow IT problem before NemoClaw existed•       What OpenShell, the Privacy Router, and Nemotron models actually do for enterprise buyers•       Why Salesforce, ServiceNow, SAP, Cisco, and CrowdStrike being in the ecosystem matters•       The hardware dependency NVIDIA's marketing glosses over•       Why “working with NVIDIA” and “ready to deploy” are not the same thing•       The three questions every CIO should answer before touching any of this TIMESTAMPS00:00  —  Why enterprise IT teams were watching OpenClaw from the sidelines01:45  —  What OpenClaw is and why it created an enterprise security problem04:00  —  What NemoClaw actually does: OpenShell, Privacy Router, Nemotron06:30  —  The SaaS ecosystem: Salesforce, ServiceNow, SAP, Cisco, CrowdStrike08:30  —  Where the hype is ahead of the reality10:15  —  Three questions CIOs should answer before deployingRESOURCES MENTIONED•       NemoClaw announcement and NVIDIA Agent Toolkit: build.nvidia.com•       Full written analysis: NemoClaw Brings Enterprise-Grade Security Controls to OpenClaw — lopezresearch.com•       NVIDIA GTC 2026 Jensen Huang keynoteABOUT THIS PODCASTAI with Maribel Lopez covers enterprise AI adoption, agentic systems, AI governance, and AI-driven customer experience. Maribel Lopez is founder and principal analyst at Lopez Research, a technology research and strategy firm.Subscribe on Apple Podcasts, Spotify, or your platform of choice.KEYWORDSenterprise AI agents, agentic AI security, NemoClaw NVIDIA, OpenClaw enterprise deployment, AI agent governance, enterprise AI strategy, AI governance enterprise, agentic AI risks

Cramer says he's tempted to buy this software giant despite its weak performance. Become an Investing Club member to go behind the scenes with Jim Cramer and Jeff Marks every day as they talk candidly about the market's biggest headlines, analyst calls and holdings in the Charitable Trust – and see up close how they decide when, and if, to take action on stocks. Sign up here: cnbc.com/morningtake CNBC Investing Club Disclaimer Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Charles Payne is joined by Walser Wealth Management President Rebecca Walser to discuss how fiat currency printing remains a greater economic disruptor than AI, the global shift toward blockchain technology and stablecoins, and why the recent market pullbacks in Uber and CrowdStrike present unique growth opportunities. Learn more about your ad choices. Visit podcastchoices.com/adchoices

Most founders use data for every part of their business - except hiring. They run numbers on their product, their marketing, their cash flow. But when it comes to the most expensive decision in the company, they trust a gut feeling and a resume.Regina Chou is changing that. She grew up in a rice paddy in Taiwan, became the first in her family to attend college, and built a predictive hiring engine that analyzes 450 psychographic traits to determine - before the offer letter goes out - whether someone will perform and whether they will stay. Her REGI Blueprint powers the Performance Machine and has helped scale companies from Mercedes-Benz dealerships to CrowdStrike's $2 billion IPO.In this conversation, Regina shares the data point that upended decades of hiring science (IQ hurting sales), the blind experiment that proved resumes are irrelevant, and why the most surprising traits - hope, greed, emotional resilience - are the ones that actually predict your next great hire.In this episode, we talk about:IQ has a negative correlation to car sales at Mercedes-Benz dealerships - the traits you assume matter most might be working against youHope, optimism, and emotional resilience are the consistent predictors of performance across industries and job rolesA blind hiring experiment with 3,000 applicants and zero resumes produced hires still succeeding five years later"Greed" - aspiration for material goods - turned out to be a top performance driver for garage door techniciansSame company, same product, different countries - top performer profiles were vastly different across culturesGen Z wants the same thing every generation wants - meaningful work and an environment where they can thriveRegina's formula for founders: combine data and technology with heart to build a winning hiring systemTIMESTAMPS:0:00 Why traditional hiring science is broken1:16 Regina's origin story - Taiwan, poverty, and a grandfather's dream5:55 The Mercedes-Benz IQ discovery8:35 Building a model that predicts actual performance14:32 Blind hiring at Diamond Asia Capital19:55 Tommy Mello and the greed factor23:22 Gen Z - same challenges, louder voice27:02 Data + heart: advice for struggling founders31:54 The vision - when resumes become irrelevantPS – When you're ready, here's how I can help: Join me for the Ai Accelerator Workshop this March 25th - LIVE from Genius Network Headquarters - register here: www.AiAccelerator.com/LiveWant to discover your next big opportunity? Meet me for a Cup of Coffee at my Digital Cafe (this is where we can meet): www.MikeKoenigs.com/1kCoffeeReady to reinvent yourself, your business, and your brand, and create “Your Next Act”? Watch this.

Cramer says the ramp up in cyberterrorism is good for this security stock. Become an Investing Club member to go behind the scenes with Jim Cramer and Jeff Marks every day as they talk candidly about the market's biggest headlines, analyst calls and holdings in the Charitable Trust – and see up close how they decide when, and if, to take action on stocks. Sign up here: cnbc.com/morningtake CNBC Investing Club Disclaimer Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

On this week's show, Patrick Gray, Adam Boileau and James WIlson discuss the week's cybersecurity news. They cover: The Coruna exploits were L3 Harris, but it seems Triangulation… was not! Iran's cyber HQ hit by Israeli (kinetic) strikes Trump's cyber “strategy” is … well, all we've got is jokes cause there's no serious content NSA and CyberCom finally get a leader after Lt Gen Joshua Rudd gets Senate nod DOGE (remember them?!) employee walked a social security database out on a USB stick This episode is sponsored by open source cloud security scanner Prowler. Creator and CEO Toni de la Fuente talks to Pat about some of the enterprise features Prowler is growing, while remaining true to its open source roots. This episode is also available on Youtube. Show notes Inside Coruna: Reverse Engineering a Nation-State iOS Exploit Kit From JavaScript GitHub - matteyeux/coruna: deobfuscated JS and blobs US military contractor likely built iPhone hacking tools used by Russian spies in Ukraine APT36: A Nightmare of Vibeware State-linked actors targeted US networks in lead-up to Iran war Iranian cyber warfare HQ allegedly hit by Israel Last 2 names of 6 US soldiers who died in Kuwait attack identified by the Pentagon Signal, WhatsApp users face Russian phishing push, Dutch warn Samuel Bendett on X: "Russian military told it couldn't use Telegram messaging app" FBI investigating ‘suspicious' cyber activities on critical surveillance network Risky Bulletin: New White House EO prioritizes fight against scams and cybercrime President Trump's CYBER STRATEGY for America Fact Sheet: President Donald J. Trump Combats Cybercrime, Fraud, and Predatory Schemes Against American Citizens UK plans to shift fraud fight onto telecoms, tech companies Trump to hit Anthropic with executive order to remove "woke" AI Claude Anthropic launches code review tool to check flood of AI-generated code CrowdStrike reports record quarter amid investor concerns about AI impact Critical defect in Java security engine poses serious downstream security risks Gen. Joshua Rudd confirmed as NSA, Cyber Command head Plankey's nomination as CISA director now in jeopardy DOGE employee stole Social Security data and put it on a thumb drive, report says Taming Agentic Browsers: Vulnerability in Chrome Allowed Extensions to Hijack New Gemini Panel Cel mai mare exportator român de carne, deținătorul brandului Cocorico, a intrat în restructurări, alături de Casa de Insolvență Transilvania

Cramer says this cybersecurity stock should be up ‘far more.' Become an Investing Club member to go behind the scenes with Jim Cramer and Jeff Marks every day as they talk candidly about the market's biggest headlines, analyst calls and holdings in the Charitable Trust – and see up close how they decide when, and if, to take action on stocks. Sign up here: cnbc.com/morningtake   CNBC Investing Club Disclaimer Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

In this episode, we cover everything you need to navigate today's market with clarity and conviction. From our Investing Fact of the Week and Trading Tip of the Week to the one risk metric every trader should be using, we break down practical strategies to build wealth and avoid costly mistakes. We also dive into 5 ways to get rich in the market, 3 signs a stock could be on the verge of a 10X run, and 3 lies Wall Street tells retail investors.We discuss 4 AI-proof stocks to consider, how to gain an edge in single-stock futures before launch, and what the future holds for mega caps. Plus, we analyze CrowdStrike and the broader cybersecurity sector to determine whether they're still strong holds in this environment.In our audience Q&A, we tackle the U.S. debt spiral, sovereign debt risks, two small-cap stock picks, positive market developments, habits that keep people broke, and how much international exposure your portfolio should really have going forward.Invest Fest Tickets: investfest.comInvest Fest Pitch Comp: https://investfest.com/pitch-competition/Red Panda: Ianinvest.com EYL University: https://eyluniversity.com/#stocks #investing #marketmondays #trading #wealthbuilding #AIstocks #cybersecurity #smallcaps #macroeconomics #finance #longterminvestingSupport this podcast at — https://redcircle.com/marketmondays/donationsAdvertising Inquiries: https://redcircle.com/brandsPrivacy & Opt-Out: https://redcircle.com/privacy

When CrowdStrike's faulty software update shuts down airports, hospitals and TV networks around the globe, they face intense backlash from the public. The world is forced to reckon with a terrifying new reality. As our systems become more interconnected, and reliant on just a handful of big tech companies, they also become more vulnerable to a single point of failure. Be the first to know about Wondery's newest podcasts, curated recommendations, and more! Sign up now at https://wondery.fm/wonderynewsletterListen to Business Wars on the Wondery App or wherever you get your podcasts. Experience all episodes ad-free and be the first to binge the newest season. Unlock exclusive early access by joining Wondery+ in the Wondery App or on Apple Podcasts. Start your free trial today by visiting wondery.com/links/business-wars/ now.See Privacy Policy at https://art19.com/privacy and California Privacy Notice at https://art19.com/privacy#do-not-sell-my-info.