Podcasts about cybersecurity

AI vulnerability discovery just upended the legendary Capture the Flag competitions, leaving top hackers sidelined while algorithms dominate the scoreboard. Hear why one seasoned researcher says the entire game is over for humans. As expected, UnFiOS devices are under attack. CISA commands federal agencies to update Drupal. Can the largest botnet ever, be killed. Defender endpoint can cutoff a PC from the network. Charter Communications big account leak. Chrome moves device-bound session cookies from beta. Anthropic to release Mythos shortly. cURL and Daniel Stenberg. IBM & RedHat commit to fixing open source with AI. LOTS of terrific listener feedback this week. AI spells the end of a terrific source of training Show Notes - https://www.grc.com/sn/SN-1081-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: bitwarden.com/twit hoxhunt.com/securitynow zscaler.com/security material.security meter.com/securitynow

New Wave Of Phishing Emails with SVG Files https://isc.sans.edu/diary/New%20Wave%20Of%20Phishing%20Emails%20with%20SVG%20Files/33040 Android 2026-06-01 security patch level vulnerability details https://source.android.com/docs/security/bulletin/2026/2026-06-01 Poly Voice Possible Remote Control of Certain Poly Devices CVE-2026-0826 https://support.hp.com/us-en/document/ish_15052661-15052687-16/hpsbpy04083 https://www.rapid7.com/blog/post/ve-cve-2026-0826-critical-unauthenticated-stack-buffer-overflow-hp-poly-vvx-trio-voip-phones-fixed/ Security Advisory Ivanti Neurons for ITSM (CVE-2026-9614) https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-Neurons-for-ITSM-CVE-2026-9614?language=en_US My Upcoming Classes https://www.sans.org/profiles/dr-johannes-ullrich

Think you don't need to worry about cybersecurity? That's exactly what hackers are counting on. Cybersecurity awareness expert Robert Siciliano breaks down how three simple habits put you in the top 10% of secure Americans. This episode explains how one move can save you years of financial headaches, what every business owner needs to know about protecting remote teams, and how to safeguard your digital estate even after you're gone. Topics discussed: Introduction (00:00) Robert's hacking origin story (02:02) Why real estate agents are high-risk targets (05:44) Two-factor authentication (08:22) SMS vs. authenticator apps (11:36) Cybersecurity for remote teams (13:15) Security vs. paranoia (15:53) The strategic human firewall (20:40) 3 steps to becoming secure (24:05) Digital estate planning (26:55) What brought you JOY today? (29:57)If you're a writer who wants to take control of your finances, read Mitlin Financial's  Write Your Financial Future: A Financial Guide for Authors: https://www.mitlinfinancial.com/insights/blog/write-your-financial-future-a-financial-guide-for-authors/ Resources: Sending your child to college will always be emotional but are you financially ready? Take the College Readiness Quiz for Parents: https://www.mitlinfinancial.com/college-readiness-quiz/ Doing your taxes might not be enJOYable but being more organized can make the process less painful. Get Your Gathering Your Tax Documents Checklist: https://www.mitlinfinancial.com/wp-content/uploads/2024/06/Mitlin_ChecklistForGatheringYourTaxDocuments_Form_062424_v2.pdf Will you be able to enJOY the Retirement you envision? Take the Retirement Ready Quiz: https://www.mitlinfinancial.com/retirement-planning-quiz/ Connect with Larry Sprung: LinkedIn: https://www.linkedin.com/in/lawrencesprung/ Instagram: https://www.instagram.com/larry_sprung/ Facebook: https://www.facebook.com/LawrenceDSprung/ X (Twitter): https://x.com/Lawrence_Sprung About Our Guest: Creator of The Strategic Human Firewall™, Cybersecurity Awareness expert, good guy hacker, and private investigator Robert Siciliano delivers 'straight talk' on safety and security, stripping away jargon to empower everyday protection. A bestselling author, CEO of ProtectNowLLC.com, he is a trusted commentator featured on CNN, Fox News, MSNBC, and the Today Show, decoding complex threats for mass audiences. Connect with Robert Siciliano: Website: https://protectnowllc.com/ TikTok: https://www.tiktok.com/@robert_siciliano LinkedIn: https://www.linkedin.com/in/robertsiciliano Facebook: https://www.facebook.com/CyberAwarenessExpertSpeaker Instagram: https://www.instagram.com/robertsiciliano/ X (Twitter): http://twitter.com/robertsiciliano YouTube: https://www.youtube.com/channel/UCxPUhCstuAW8GJR826pamYA Amazon: https://www.amazon.com/stores/Robert-L.-Siciliano/author/B0035CH602 Disclosure: Guests on the Mitlin Money Mindset are not affiliated with CWM, LLC, and opinions expressed herein may not be representative of CWM, LLC. CWM, LLC is not responsible for the guest's content linked on this site. This episode was produced by Podcast Boutique https://www.podcastboutique.com

Unidentified RAT pushes NetSupport RAT https://isc.sans.edu/diary/Unidentified%20RAT%20pushes%20NetSupport%20RAT/33034 CVE-2026-41089: Windows Netlogon Vulnerability Exploited https://ccb.belgium.be/advisories/warning-microsoft-patch-tuesday-may-2026-patches-118-vulnerabilities-16-critical-102 RedHat npm Packages Affected https://www.aikido.dev/blog/red-hat-npm-packages-compromised-credential-stealing-worm Dashlane Locking Accounts after Brute Force https://status.dashlane.com/pages/5aabcb89fccc4b04d3774443 My Upcoming Classes https://www.sans.org/profiles/dr-johannes-ullrich

Starting an investigation—be it for troubleshooting, problem diagnosis, threat hunting, incident response, and so on—is fairly straightforward. There’s a question or thesis you’re pursuing, you have logs and data sources to check, and you have tools to deploy. But if you don’t find anything, does that mean there was nothing to find? Are you sure... Read more »

DAMIONCarnival Corporation's data breach exposed personal data of nearly 6 million customers: An April social engineering attack on an employee account compromised names, dates of birth, and government-issued ID numbers. WHO DO YOU BLAMESkills: Technology & Cybersecurity: Experience with information technology and cybersecurity matters is increasingly important to mitigate the risks our business faces, promote innovation and maintain a competitive edge in a rapidly evolving technological ageLeast represented 5/11CEO Josh WeinsteinNO: at Carnival since 2002, started as General CounselSir Johathon BandNO: First Sea Lord and Chief of Naval Staff, the most senior officer position in the British Navy (2006 to 2009, when he retired); Admiral and Commander-in-Chief Fleet (2002 to 2006); Served as a naval officer in increasing positions of authority (1967 to 2002)Jason CahillyNO: CEO Dragon Group LLC, provides capital and business management consulting and advisory services worldwide; The NBA: CFO & Chief Strategic Officer; Goldman Sachs: Partner; Global Co-Head of Media and Telecommunications; Head of Principal Investing for Technology, Media & TelecommunicationsNelda ConnorsNO: CEO/Chair Pine Grove Holdings, a privately held investment company; CEO Atkore International, manufacturer of electrical, safety and infrastructure solutions; VP Eaton Corporation, electrical and automotive supplierLaura WeilNO: Founder Village Lane Advisory LLC, specializes in providing executive and strategic consulting services to retailers COO New York & Company, women's apparel and accessories retailer; CEO Ashley Stewart, women's apparel retailer; CEO Urban Brands, apparel retailer; COO AnnTaylor Stores, women's apparel retailer; CFO American Eagle Outfitters, apparel retailerAudit Committee: Oversee management's risk assessment processes to identify principal and emerging risks, including financial, IT, cybersecurity and non-HESS operational risksLaura Weil*: NOJason Cahilly: NOJeffrey Gearhart: NOWalmart Corporate Secretary and lawyerStuart Subotnick: NOCEO at Metromedia Company, wireless/communications, until 2010; Carnival director since 1987 Health, Environmental, Safety and Security Committee: Oversee management's processes to identify principal and emerging health, environmental, safety, security and sustainability-related risks, including those related to ship operations and cybersecurity, RAAS health, environmental, safety, security audits, IAG and external investigations into significant ship incidents, and health, environmental, safety, security-related hotline complaints, and assess the steps management has taken to minimize such risks.Sir Johathon Band*: NONelda Connors: NOHelen Deeble: NOFormer CEO P&O Ferries Division Holdings, shipping and logistics businessKatie Lahey: NOExecutive Chair Korn Ferry Australasia, leadership and talent firmMicky Arison (75%): Exec Chair and former CEO and 7% stockholderThe CEO Pay Ratio1,063:124 retail CEOs made as much in a day as their typical employee earned in a year — and a big one didn't. WHO DO YOU BLAMEThe separation of CEO and Chair: Hamilton E. James Chair/Ron Vachris MMNot uniqueOnly 50% of the board is men. WTF?uniqueOne share = one voteNot uniqueState of HQ = WashingtonAlso StarbucksState of Inc = WashingtonAlso StarbucksPledge of allegiance to stakeholdersCostco generally has: Higher wages; Better benefits; Lower turnover; Higher sales per employee.Industry-leading employee compensation AND Self-imposed low-margin pricing philosophyWalmart only low-margin pricingOther comps:Todd Vasos of Dollar General, Shane O'Kelly of AutoZone, Gerald Morgan of Texas Roadhouse, Jack Sinclair of Sprouts Farmers Market, William Stengel of Genuine Parts Company, Michael Creedon of Dollar Tree, Ronald Sargent of Kroger, Lauren Hobart of Dick's Sporting Goods, Joshua Kobza of Restaurant Brands Inc., Kecia Steelman of Ulta Beauty, Scott Boatwright of Chipotle, Ted Decker of Home Depot, Bob Eddy of BJ's Wholesale Club, Corie Barry of Best Buy, James Conroy of Ross Stores, Chris Turner and David Gibbs of Yum Brands, Chris Kempczinski of McDonald's, Marvin Ellison of Lowe's, Brian Cornell of Target, Ernie Herrman of TJX Companies, Doug McMillon of Walmart, Brian Niccol of Starbucks, Hal Lawton of Tractor Supply Co, Laura Alber of Williams-SonomaFigma Gets an Activist Investor. Exhibit A on Why Companies Don't Want to Go Public. Figma's first year as a public company hasn't gone well. Findell Capital Management said it needs to take steps to shed its unwarranted reputation as an artificial-intelligence “loser.” WHO DO YOU BLAME?Figma founder and CEO Dylan Field: Owns 10% of shares but 72% of voting power: Class B shares worth 15 votes per shareDylan owns 158 Class A Shares (or 0.00003556% of 444,278,887)And Chair$5B net worth$865M total summary compensation in 2025; $91M in 2024Nominating Agreement:Figma must nominate Dylan Field to be a director and include him in the proxy statementThe company must use its resources to back him up and actively convince other shareholders to vote for him In response to a question about how he was going to change the world, Dylan said he was going to build better software for drones.Bro fest sausage party2 of 9 directors are womenTop 5 NEOs all dudesPeter ThielForced Dylan to drop out of Brown for a dumb fellowshipVC Blowhardiness on the BoardVC dude John Lilly (Greylock): Lead Independent Director2nd longest tenure (2014)Member of the Audit Committee; Member of the Nominating Committee (only Lilly and Rimer)VC dude Andrew Reed (Sequoia)Director at debt-maker Klarna Group (also way down since IPO): down roughly 54% from its initial $40.00 IPO price, and down nearly 68% from its all-time highMember of the Compensation Committee (which modeled Dylan's pay package after Elon Musk)VC dude Danny Rimer (Index Ventures)Director since 2014B.A. in History and Literature from HarvardMember of the Compensation Committee (which modeled Dylan's pay package after Elon Musk)Member of the Nominating Committee (only Lilly and Rimer)Luis von AhnDuolingo co-founder and CEO2025: shared an internal email outlining Duolingo's new "AI-first" strategy where Duolingo would “gradually stop using contractors to do work that AI can handle”Stated that "AI is a better teacher than humans" and that the future role of teachers would be reduced to providing "childcare."Blamed the controversy on a "lack of context" in his original statements"AI-First" memo goes viral: $389; today $118MATTDanone, Starbucks shine in methane-reduction rankingDanone is the only company in the group aligned with the Global Methane Pledge, an initiative backed by 150 countries that targets a 30 percent reduction in global levels of the gas by 2030. The French multinational also leads the pack in progress toward its target, having come close to hitting it five years ahead of schedule.WHO DO YOU CREDIT?Chair of the CSR committee Lise Kingo (9% influence), one of three directors tagged as merit directorsmaster's degree in Responsibility & Business from the University of Bathbachelor degrees in Religions and Ancient Greek Artbachelor's degree in Marketing and Economicscertificate as International Director from INSEADEx Novo Nordisk environmental affairs, internal audit, compliance, human resources, communication, branding and sustainabilityHelped create the UN SDGs and the UN Global CompactSomehow only bats 559 on carbon intensity (career) and 415 for scope 1/2 (career)Also, using deference metrics, the ONLY DIRECTOR tagged as fully independentEmployee rep member of the CSR committee Bettina Theissig (5% influence) and the employees of DanoneThe committee charter mandates employees get a say: At least two thirds of the CSR Committee must be independent, as defined by the AFEP-MEDEF Code. At least one Director representing employees must be a member of the Committee.In France (Danone's domicile), the European Investment Bank found that French employees were the most aware of environmental issues - 82% of French employees said they were highly concerned about environmental issues, highest in EuropeLead Independent Director and chair of the Nom/comp committee who put together the comp plan, Valerie Chapoulaud-Floquet15% influence, second to the 18% influence CEO (democracy!!), got 99.16% shareholder approval in April (even as CEO got 89.73% approval and pay got 93.19% approval)20% of short-term pay and 30% of long-term pay is based on hitting sustainability targetsWhen you pay a CEO to do a thing, they are more likely to do a thingEx-CEO Emmanuel FaberOusted in 2021 by the board of directors and activist investors, he transformed Danone into an “enterprise a mission” (a French version of a B corp)Investors voted 99% in favor of the move and a year later ousted Faber, the board resigned, and the new board and CEO are basically moving back towards being environmental leaders because it paid offShort term share price laggedHe said in 2024 that nature is “at the core” of Danone, It took the stock 3 years from Faber's ousting to return to Faber levels - and in the meantime, they were sued for plastics and emissionsIsn't this HIS win?Current CEO Antoine de Saint-AffriqueBecause CEOGM Board Director Jonathan McNeill Stepping DownCEO of DVx Ventures. Ex COO at Lyft Inc. and ex president, Global Sales, Delivery and Service at Tesla, current director at Lululemon, GM director since 2022, on the Governance and Corporate Responsibility committee and Risk and Cybersecurity committee.We know that half of boards on average think someone on the board should be replaced - did the GM board not like McNeill?WHO/WHAT WOULD WE BLAME FOR PUSHING MCNEILL OUT?Outsider dude bro DRLet's be honest, McNeill worked at much more… modern?... companies than GMThe board is OLD SCHOOL - ex Northrop Grumman, ex Visa, ex Lazard, ex HP, ex eBay, ex Novartis, ex Walmart, other directorships at Goldman, Huntsman, P&G… these are professional, insular boardsMeanwhile, he's investing as a VC in AI, other auto/mobility startups, comes from boards that are bro founder lead (Tesla, Lyft) He's invested in AI, crypto, heavy tech, intertwined with VCs all overNot deferential enoughBarra is connected to 94% - THE ENTIRE - boardMcNeill has the highest network power on the board at $9tn, higher than even Mary Barra (who is super connected), but is NOT a power player in the board community of GM - the dominant board communities for GM are massive blue chip US companies, where McNeill has deeper connections in smaller IT/tech focused companiesHe doesn't need the pay, he gets nothing for the connections really, he has connection to Barra but his network is different - was he too independent?Pissed he doesn't have enough influence McNeill has the LOWEST influence on the GM board at 4%He's relatively new, younger, working as a VC where you have a lot of power of capital allocation“I don't need this shit” effect?Too many womenMcNeill's dvX ventures portfolio team is 6 dudes and 1 womendvX entire operations staff is two woman - guess what they do“Chief of Staff” (ie, HR)Executive Assistant (yes, listed on the team)Board is 2 women, 3 men (McNeill not on board)This one seems unlikely I guess?Too busy, meh, move onOne of dvX portfolio companies is curbee, with GM Ventures' Kurt Baumgarten on the board (and the dvX co-founder is founder of Curbee)McNeill on at least 3 of his portfolio boards or advisory committees, plus LULU and GM…

Starting an investigation—be it for troubleshooting, problem diagnosis, threat hunting, incident response, and so on—is fairly straightforward. There’s a question or thesis you’re pursuing, you have logs and data sources to check, and you have tools to deploy. But if you don’t find anything, does that mean there was nothing to find? Are you sure... Read more »

Send us Fan MailIn this episode, Rhode Island General Treasurer James Diossa shares insights into the state's investment approach, innovative housing programs, cybersecurity priorities, and the excitement surrounding the upcoming FIFA World Cup events. This conversation offers a detailed look at how state leadership balances risk, supports communities, and leverages global events for local economic growth.Main topics:The state's investment strategy and private credit risksThe Rhode Island Anchor Mortgage Program for first-time homebuyersCybersecurity measures protecting state and pension dataRhode Island's preparation for the World Cup and its economic impactThe importance of balancing risk and opportunity in public investmentsKey insights:Rhode Island's pension fund has grown from $10 billion to over $13 billion, with an emphasis on maintaining stability and disciplined risk management.Private credit exposure has remained steady at 3% for a decade, reflecting cautious risk tolerance aligned with the fund's long-term goals.The Rhode Island Anchor Mortgage Program has helped hundreds of first-time buyers with affordable, fixed-rate mortgages, revitalizing communities.Cybersecurity is a top priority, with dedicated staff and annual assessments, especially as financial systems become more vulnerable to emerging threats and AI-based vulnerabilities.The World Cup is expected to boost local tourism and business activity, with multiple events across Rhode Island planned to celebrate the global tournament.Timestamps:00:00 - Welcome back and last appearance recap00:17 - Overview of Rhode Island's current financial standing00:31 - Investment strategy and fund growth01:12 - Focus on pension member experience and cybersecurity01:38 - Challenges and opportunities in private credit investments02:25 - Maintaining a steady private credit allocation over the years03:22 - Balancing higher return ambitions with risk tolerance03:45 - Strategies for achieving funded status targets05:13 - The importance of disciplined risk management and fiduciary responsibility05:43 - Rhode Island Anchor Mortgage Program details and community impact06:12 - How the program supports first-time homebuyers08:09 - The critical role of cybersecurity and recent advancements09:14 - State's cybersecurity efforts and annual assessments10:25 - Rhode Island's FIFA World Cup bid and event planning11:12 - Economic impact and community engagement during the World Cup12:08 - Key events, watch parties, and international team visits13:34 - Final thoughts on summer events and local economic boostResources & Links:Rhode Island Treasurer's OfficeRhode Island Anchor Mortgage ProgramMoody's Credit RatingsFIFA World Cup 2026Connect with James Diossa:LinkedInTwitter Support the showFollow Bill on Instagram and YouTube

Welcome back to another episode of To the Point Cybersecurity, where Rachael Lyon and Jonathan Knepher dive into the frontline battles of today's digital landscape. This week, they're joined by Jeremiah Baker—an ethical hacker turned keynote speaker and author with over 20 years of cybersecurity experience. Together, they unravel the evolving tactics of financially motivated cyber attacks, explore how AI is rapidly making phishing and fraud more efficient, and highlight why trust is harder than ever to establish online. Jeremiah Baker shares real-world stories of catastrophic breaches, underscores the critical importance of zero trust and proactive defenses, and discusses the game-changing—and double-edged—role of AI for both attackers and defenders. Whether you're a business leader, IT pro, or simply curious about how to stay safe in a world of sophisticated cyber threats, this episode is packed with insights you won't want to miss. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/resources/podcast/inside-cybersecurity-situation-room-jeremiah-baker-part-1

Cybercriminals don't need to “hack” our systems when they can trick someone into handing over access, and AI is making those tricks more realistic and scalable. We talk with Daniel Metcalfe of Cyberfin about where benefits advisors are most exposed and the layered, practical steps that reduce breach risk while still letting teams use AI responsibly. • why employee and employer data is “gold” to attackers • how advisors get used as a pathway to bigger targets • why MFA and antivirus alone don't stop social engineering • where agencies are most vulnerable today: email credentials and tool connections • what “layered” user-based protection looks like in real life • why password managers change the social engineering game • how ongoing security awareness training finds gaps faster than annual check-the-box training • why cloud storage is not the same as encrypted backups • how AI is already being used inside agencies without formal approval • practical AI wins that avoid sensitive data and improve efficiency • what client expectations are becoming in an AI world and why relationships still matter

The Cybercrime Wire, hosted by Scott Schober, provides boardroom and C-suite executives, CIOs, CSOs, CISOs, IT executives and cybersecurity professionals with a breaking news story we're following. If there's a cyberattack, hack, or data breach you should know about, then we're on it. Listen to the podcast daily and hear it every hour on WCYB. The Cybercrime Wire is brought to you Cybercrime Magazine, Page ONE for Cybersecurity at https://cybercrimemagazine.com. • For more breaking news, visit https://cybercrimewire.com

Dr. Eric Cole has worked in cybersecurity for over 30 years, helping organizations protect their data. He started as a CIA hacker who could access any internet-connected computer. Using this expertise, he built companies focused on defense. Dr. Cole has worked with Lockheed Martin, McAfee, and consulted globally for clients like Saudi Aramco, Nouryon, utility companies, nuclear sites, financial institutions, and healthcare. He secures the Gates family and was a commissioner for President Obama, continuing to advise on security. Get a copy of his new book "Digital Danger: AI, Cybersecurity, and the Fight for Our Future" here: https://amzn.to/4vqWaSS New here? I am a two-time New York Times bestselling author and one of the most sought-after public speakers globally, having spoken to over 500 companies while traveling to more than 40 countries. My clients include Apple, Google, Microsoft, and Nike. My work has been covered in print media, including The New Yorker, The New York Times, Time, Fast Company, Fortune, Politico, Inc., and Harvard Business Review. It has also been featured on NPR, NBC, FOX, and multiple times on The Steve Harvey Show. Get more stuff from me: Join 200K+ subscribers on my FREE weekly newsletter: https://gregmckeown.com/1mw/ "Essentialism: The Disciplined Pursuit of Less" https://amzn.to/3EkZycH "Effortless: Make It Easier to Do What Matters Most" https://amzn.to/3EAkADZ "The Essentialism Planner: A 90-Day Guide to Accomplishing More by Doing Less" https://amzn.to/42CAsA3 Stay in touch with me: Instagram   / gregorymckeown   LinkedIn   / gregmckeown   X https://x.com/GregoryMcKeown Hire me to speak: https://gregmckeown.com/keynote/

Announcing Bitskrieg https://deadeclipse666.blogspot.com/2026/05/announcing-bitskrieg.html Vulnerability in Gogs https://www.rapid7.com/blog/post/ve-authenticated-rce-via-argument-injection-gogs-unfixed/ Oracle Critical Security Patch Update Advisory - May 2026 https://www.oracle.com/security-alerts/cspumay2026.html GlobalProtect Authentication Bypass Vulnerabilities CVE-2026-0257 https://security.paloaltonetworks.com/CVE-2026-0257

In this episode of the Crazy Wisdom Podcast, host Stewart Alsop sits down with returning guest Ekue Kpodar for their third conversation together, covering a wide range of topics at the intersection of technology, geopolitics, and the evolving information age. They dig into Ekue's unconventional setup of running local AI models across roughly 15 computers, the growing case for open source models over closed ones from companies like OpenAI and Anthropic, and how Chinese open source models may be positioned to outcompete Western alternatives on a global scale. The conversation also touches on vibe coding and the democratization of software development, the strategic use of small models for IoT and enterprise applications, the role of Israel and China as dominant players in the information age, and how smaller nations and even individuals may wield outsized power as AI continues to collapse the cost of knowledge work. You can find Ekue Kpodar on X @ekpodar and LinkedIn.Timestamps00:00 Stewart welcomes Ekue for their third episode, diving into vibe coding and AI-driven development changes.05:00 Ekue explains using Claude on Chrome to auto-reply on Skool, burning tokens through screenshots, and Playwright as a more efficient alternative.10:00 Stewart describes his Claude-dependent planning and coding agent system breaking after a model update, prompting him to build his own chatbot.15:00 Small models discussed as critical for IoT, defense, and privacy-focused enterprises building internal APIs instead of routing traffic to OpenAI.20:00 Open source versus closed source debated, with Chinese models gaining global traction while US foundational labs remain expensive and restrictive.25:00 SaaS apocalypse explored as AI commoditizes knowledge work, with Linux and Terraform cited as proof open source still generates wealth.30:00 OpenAI's sci-fi terminator fears explained as the reason they stayed closed source, ultimately handing China a strategic open source advantage.35:00 China's economic dumping strategy applied to AI, potentially displacing US model dominance globally the same way manufacturing was disrupted.40:00 Israel's signals intelligence dominance discussed alongside asymmetric warfare, drones defeating tanks, and information control replacing military muscle.45:00 Global information age rankings debated, Israel leading, US and China tied, France and Poland emerging as sovereign tech players.50:00 Qatar, NVIDIA, and Iran cited as proof that rare resources and technology matter more than population size in the 21st century power landscape.Key Insights1. Running local AI models on a network of affordable computers can be more cost-effective than relying entirely on third-party APIs. By using compressed or smaller open source models locally, developers can handle repetitive or lower-stakes tasks without burning through expensive tokens from providers like Anthropic or OpenAI.2. Small AI models are becoming increasingly important for IoT, defense applications, and companies that do not want to send sensitive data to external providers. Organizations can download open source models, run them on internal servers, and build proprietary APIs around them, creating something like an intranet of specialized small models.3. The value created by AI tools is being redistributed away from traditional SaaS companies toward foundational model providers and individual builders. People are canceling subscriptions to software they once paid hundreds per month for, because AI now allows a single person to build comparable tools themselves.4. Open source technology does not eliminate the ability to profit. Linux and Terraform are both open source yet made their creators wealthy. People will still pay for installation, setup, troubleshooting, and customization even when the underlying software is free.5. China is applying its longstanding manufacturing dumping strategy to artificial intelligence by releasing cheap open source models globally, which threatens to erode US dominance in AI the same way Chinese manufacturing undercut other countries for decades.6. In the information age, the size of a country or institution matters far less than its access to rare resources or advanced technology. Qatar, Israel, and NVIDIA each demonstrate that small populations or headcounts can wield enormous global negotiating power through concentrated technological or resource advantages.7. Asymmetric warfare is redefining military power, with inexpensive drones defeating tanks that cost millions to build. This shifts the advantage toward nations that excel at signals intelligence and information management rather than those with the largest conventional military forces.

Frank Lesniak joins Andrew Pla for a wide-ranging conversation that covers Frank's newly minted Microsoft MVP status, his journey through PowerShell, and what it looks like to build a real presence in the tech community. Frank talks through the pipeline struggles that tripped him up early on, how his VB Script and object-oriented background made the shift to PowerShell's object model feel disorienting, and how AI has quietly changed the way he approaches scripting today. The conversation takes a thoughtful turn as Andrew and Frank dig into impostor syndrome, the value of conference speaking, and how showing up consistently in the community compounds into a career. Frank also shares an update on DuPage Animal Friends, the nonprofit he serves, which supports one of the country's highest-performing open-admission animal shelters. Key Takeaways: The PowerShell pipeline is one of the most commonly cited stumbling blocks for newcomers, especially those coming from text-based scripting backgrounds. Learning to visualize what your objects look like at each stage of the pipeline, using tools like Get-Member, is a skill that pays dividends long term. Showing up at conferences and user groups, even when you feel underprepared, is how you build the reps that eventually make it feel natural. Frank's consulting background gave him a head start on presentation skills, and he's clear that no one is born polished. Community involvement and career growth are more connected than they might look from the outside. Engaging with people on GitHub, at events, and through open source creates a feedback loop that builds confidence and opens doors. Guest Bio: Frank Lesniak returns to The PowerShell Podcast, this time as a Microsoft MVP (Microsoft Azure, PowerShell). Frank is a Sr. Cybersecurity & Enterprise Technology Architect at West Monroe, where PowerShell runs through client work on corporate M&A: carve-outs, tenant-to-tenant migrations, identity consolidation, endpoint moves, and security posture improvement across Microsoft 365, Azure, Entra ID, Active Directory, Intune, Defender, and Windows. Beyond consulting, Frank speaks at technical conferences, mentors first-time speakers, and publishes open-source PowerShell standards and tooling, including PSStyleGuide, GloryRole, and PSConnMon. His public work threads least-privilege identity, cloud role mining, cross-platform observability, and high-quality AI-assisted development through standards, automated tests, and automated code quality reviews. Connect with Frank: https://linktr.ee/franklesniak Connect with Andrew: https://andrewpla.tech/links PSConnMon - PowerShell Network Monitoring - https://github.com/franklesniak/PSConnMon/ GloryRole - Automating Least-Privlege Azure and Entra ID Directory Roles - https://gloryrole.com PowerShell Style Guide - https://github.com/franklesniak/PSStyleGuide PowerShell Style Guide + Coding Agents Lightning Talk - https://github.com/devops-collective-inc/pshsummit26/tree/main/PowerShellStyleGuideForCodingAgentsAndHumans-Lesniak Coding Agent Accelerator Template Repo (Coming Soon!) - https://github.com/franklesniak/copilot-repo-template ProStateKit - the DSC v3-Intune Starter Kit - https://github.com/franklesniak/ProStateKit ProStateKit Promotional Commercial - https://www.youtube.com/watch?v=cA5vMH522F0 macOSLab - Automating Legit macOS VMs - https://github.com/franklesniak/macOSLab DuPage Animal Friends - https://www.dupageanimalfriends.org/ PDQ Discord: https://discord.gg/pdq The PowerShell Podcast: https://www.pdq.com/resources/the-powershell-podcast/ Previous episodes with Frank Lesniak: https://powershellpodcast.podbean.com/?s=Frank+Lesniak The PowerShell Podcast on YouTube: https://youtu.be/Eg-uEGaurmY  

The Cybercrime Wire, hosted by Scott Schober, provides boardroom and C-suite executives, CIOs, CSOs, CISOs, IT executives and cybersecurity professionals with a breaking news story we're following. If there's a cyberattack, hack, or data breach you should know about, then we're on it. Listen to the podcast daily and hear it every hour on WCYB. The Cybercrime Wire is brought to you Cybercrime Magazine, Page ONE for Cybersecurity at https://cybercrimemagazine.com. • For more breaking news, visit https://cybercrimewire.com

Send us Fan MailIn this power-packed episode, we dive deep with Nir Valtman, a cybersecurity founder turned SaaS innovator, who reveals the raw truth behind starting from zero and scaling to hundreds of thousands of subscribers. He shares how ditching excuses, setting bold goals, and harnessing vision can lead you through the chaos of growth and the fear of failure.You'll discover the critical mindset shifts that propelled Nir from a kid coding for fun to leading cutting-edge AI and cybersecurity breakthroughs. We break down:How to build a personal brand from scratch without prior fameWhy setting micro-goals fuels unstoppable momentumThe role of continuous learning and strategic failure in innovationWhy the real growth lies in shifting your mindset, not just your tacticsThe future of AI coding and what it means for developers and entrepreneurs alikeThis isn't just another episode about tech trends — it's a call to action. If you're tired of feeling stuck, ready to unlock your true potential, and eager to understand how mindset can lead to massive success, this episode is a must-listen. The difference between surviving and thriving begins in your mindset — tune in and transform your approach now.Join Nir's journey—where relentless passion meets bold action—and discover how you can rewrite your own story today.00:00 - The story behind the podcast's rapid growth and humble origins00:14 - How the host started with only 10 listeners, but stayed committed00:43 - Setting incremental goals and celebrating small wins00:56 - The importance of mindset in scaling success01:23 - Overcoming self-doubt and the fear of failure01:48 - Breaking through social media noise to reach a wider audience02:07 - The role of intentional goal-setting in personal and professional growth02:17 - Learning from mentors like Jim Rohn and applying their lessons03:08 - Reflecting on career milestones and passions outside work03:34 - Recognizing the value of experiences over material success04:03 - The dangers of complacency and staying curious about life04:40 - Encouragement to start, despite odds or doubts05:24 - Tailoring goals to individual priorities and values05:44 - How to get started with your own journey, no matter your backgroundSupport the showFollow the Podcast on Social Media!Tesla Referral Code: https://ts.la/joseph675128YouTube: https://www.youtube.com/@securityunfilteredpodcastInstagram: https://www.instagram.com/secunfpodcast/Twitter: https://twitter.com/SecUnfPodcastAffiliates➡️ OffGrid Faraday Bags: https://offgrid.co/?ref=gabzvajh➡️ OffGrid Coupon Code: JOE➡️ Unplugged Phone: https://unplugged.com/Unplugged's UP Phone - The performance you expect, with the privacy you deserve. Meet the alternative. Use Code UNFILTERED at checkout*See terms and conditions at affiliated webpages. Offers are subject to change. These are affiliated/paid promotions.

Innovation often follows a familiar cycle: rapid expansion, followed by consolidation. Federal agencies are experiencing this firsthand as AI tools and models proliferate across their environments.  This week on Feds At the Edge, technology leaders explore the challenge of rapid innovation and how agencies can regain control before the chaos of disorganized, duplicate data and tool sprawl compromises their missions.   Jim Smid, Federal Solutions Architect, Palo Alto Networks, explains how observability now extends beyond servers and IoT devices to include AI models, tools, and their interactions with agency data. Jessica Souder, AIRS Specialist / Director, Public Sector, Palo Alto Networks, emphasizes that agencies should carefully evaluate new AI tools, validating them in controlled environments, and establishing governance before deployment.   Tune in on your favorite podcast platform to hear why our panel of experts agree that any AI deployment should focus on the agency mission, valid data, and that all projects should commence with visibility.         

By Mr. Stefanos Angeletos, Mr. Nikolaos Koulierakis, Dr. Vasiliki Danilatou Europe's digital transformation is accelerating at an unprecedented pace. Artificial intelligence (AI) is reshaping industries, critical infrastructures are becoming increasingly interconnected, and cyber threats are growing in both sophistication and frequency. Against this backdrop, the European Union faces a critical challenge: how to equip its workforce with the multidisciplinary skills required to secure Europe's digital future. The answer may lie in a new ambitious European initiative: EU-iNSPIRE – iNnovative multi-diSciPlinary Industry-focused cybersecurity education for upskilling and ReskIlling the EU workforcE. The project is supported by the European Health and Digital Executive Agency (HADEA) under the DIGITAL Europe Programme. EU-INSPIRE brings together 23 organisations across academia, industry, cybersecurity, policy, insurance, and standardisation to create a next-generation educational ecosystem for cybersecurity, AI, and cyber insurance. This four-year initiative officially began in January 2025 and will run until December 2028 under the coordination of the University of Piraeus Research Center in Greece. Eunomia Limited, an SME based in Dublin, Ireland, is proud to contribute to this groundbreaking initiative as one of the consortium partners. A Pan-European Initiative Addressing the Cybersecurity Skills Gap The cybersecurity skills shortage is no longer simply a workforce issue – it is a strategic challenge for Europe's resilience, economic stability, and technological sovereignty. Organisations across sectors increasingly struggle to recruit professionals who possess not only technical cybersecurity expertise, but also understanding of AI governance, cyber-risk management, regulatory compliance, and cyber-insurance. The rapidly evolving digital landscape increasingly demands professionals with multidisciplinary skillsets who can navigate technical, organisational, ethical, regulatory, and strategic challenges, rather than relying exclusively on narrow domain specialisation. EU-iNSPIRE was designed to address exactly this challenge. According to the project description, the initiative aims to revolutionise higher education within cybersecurity by cultivating a new generation of specialists with expertise spanning the political, organisational, and technological dimensions of cybersecurity, AI, and cyber insurance. The project will also support continuous upskilling and reskilling for professionals adapting to evolving digital threats and industry demands. The project is currently progressing towards the completion of course development. Why EU-iNSPIRE Matters Cybersecurity is no longer confined to IT departments. Every sector – from healthcare and finance to manufacturing, transport, insurance, and public administration – depends on resilient digital infrastructures. At the same time, AI technologies are rapidly being integrated into cybersecurity operations. AI can improve threat detection, automate incident response, and strengthen resilience. However, it also introduces new risks including adversarial attacks, algorithmic vulnerabilities, and ethical concerns around transparency, accountability, and bias. This convergence of cybersecurity and AI creates an urgent need for professionals who can work across disciplines. EU-iNSPIRE responds through a three-fold approach: 1. Training cybersecurity professionals capable of leveraging AI-driven technologies to enhance resilience of systems, infrastructures, and digital processes. 2. Developing cyber insurance specialists who understand the relationship between cybersecurity, AI, and cyber risk assessment. 3. Empowering domain experts with sector-specific digital transformation expertise, particularly in conformity assessment and regulatory compliance. The project goes beyond traditional academic programmes. It aims to create a sustainable ecosystem that combines: Master-level educati...

Email: bidemiologunde@gmail.comIn this episode, host Bidemi Ologunde examines a February 2026 vehicle hit-and-run and a March 2026 municipal ransomware incident through the lens of investigative technique. What clues survive after a crash scene is disturbed? What can cyber incident responders learn from accident reconstruction? How does the military concept of a "target indicator" help analysts notice what someone did, failed to do, or accidentally revealed? This episode explores how small details, disciplined timelines, and careful public reporting can turn fragments into accountability.

This episode covers a CISA contractor's accidental exposure of AWS GovCloud credentials and internal system details on GitHub, the FBI's efforts to patch vulnerable routers, and a critical NGINX vulnerability with public proof-of-concept code. The team also discusses Microsoft's handling of a disputed Azure Backup security finding, the challenges of vulnerability disclosure and CVE assignment, and GitHub's ban of security researcher Nightmare Eclipse following the publication of unpatched Windows vulnerability research.Join us LIVE on Mondays, 4:30pm EST.A weekly Podcast with BHIS and Friends. We discuss notable Infosec, and infosec-adjacent news stories gathered by our community news team.https://www.youtube.com/@BlackHillsInformationSecurityChat with us on Discord! - https://discord.gg/bhis

What if the best way to improve cybersecurity — or any other form of human risk — wasn't another policy, training course, or piece of technology, but a board game?  That's the kind of question my guest, Jill Wick, loves asking.Episode Summary Jill is a cybersecurity awareness consultant, business psychologist, podcaster, and author. Her work sits at the intersection of psychology, marketing, behavioural science, and cybersecurity, and she is passionate about helping organisations understand that security is fundamentally a human challenge, not simply a technical one. Drawing on her experience in fraud prevention and her academic background in business psychology, Jill explains why traditional approaches to awareness often fail, why experimentation matters, and how a simple Snakes and Ladders-inspired game can create meaningful conversations about risk and decision-making. The discussion ranges far beyond cybersecurity. We explore creativity, curiosity, communication, organisational culture, social media, learning, and the challenge of measuring success when the outcome you're seeking is something that doesn't happen. Key TopicsIn this episode, we discuss:Why cybersecurity is ultimately a human problem rather than a technology problemThe psychology behind phishing, scams, and social engineeringWhy more policies and more training often fail to change behaviourHow unclear policies can create confusion instead of complianceThe role of curiosity, creativity, and experimentation in risk managementHow games can create psychologically safe environments for learningThe importance of conversation and peer learning in awareness programmesWhat compliance, safety, conduct, and operational risk professionals can learn from cybersecurity awarenessWhy awareness professionals should think more like marketersThe value of experimentation, iteration, and A/B testingHow social media can help build communities around important ideasWhy measuring engagement may be just as important as measuring failuresGuest BiographyJill Wick is a cybersecurity awareness consultant, business psychologist, author, and podcast host who specialises in the human side of cybersecurity. Drawing on a background in fraud prevention and behavioural science, she helps organisations build stronger security cultures through creative, engaging approaches that go beyond traditional training and compliance. Known for her innovative use of games, psychology, and marketing techniques, Jill is a passionate advocate for making cybersecurity awareness more human, effective, and enjoyableLinksJill's LinkedIn profile - https://www.linkedin.com/in/jill-wick/Jill's website - https://www.jillwick.com/Cyber & Psych, Jill's podcast - https://open.spotify.com/show/5uteiqHvCTGCVtCsKCzGJ6?si=322ef51fd6a3423c&nd=1&dlsi=c6d8309550784df9Security-Awareness-Tools, Jill's book - https://www.isbn.de/buch/9783658511111/security-awareness-toolsAI-Generated Timestamped Outline00:00 – Introduction02:15 – Jill's background: From fraud prevention and business psychology to cybersecurity awareness.05:30 – Understanding why people fall for scams, phishing attacks, and social engineering.06:00 – Why cybersecurity is fundamentally a human problem, not just a technical one.08:00 – The limitations of rules, policies, and traditional awareness training.12:00 – The origin of Jill's cybersecurity board game and why simplicity matters.14:00 – How games create psychologically safe conversations and improve learning.19:30 – The game as a conversation tool: building culture, peer learning, and engagement.22:00 – Creativity, curiosity, and the courage to experiment with new approaches.26:00 – What cybersecurity awareness can learn from marketing, advertising, and A/B testing.35:30 – Why awareness and technology must work together rather than compete.41:30 – New projects: workshops, events, games, and Jill's forthcoming book Security Awareness Tools.44:00 – Lessons for compliance and risk professionals: attention is a limited resource.51:00 – Measuring success: engagement, participation, reporting, and positive signals.

*Content warning: divorce, conversion therapy, reorientation therapy, cyberstalking, stalking, emotional and psychological abuse, death threats, and criminal threats.Danny Cords is an organizational psychologist and victim advocate from Seattle. He began harnessing his voice and speaking out for others after leaving conversion therapy in his late teens. But his advocacy mission only intensified after being subjected to years of cyberstalking. He hopes to bring awareness and healing to victims all over the world, as well as legal change too. His related (and unrelated) work and efforts have been featured on the stage, television, radio, podcasts, and more. We are extremely grateful that Danny was willing to share all that came next in his personal, professional, legal, and media journeys.*Resources:  Danny Cords's website: https://www.dannycords.com/ End Tech-Enabled Abuse: endtab.org Organization for Social Media Safety: https://www.socialmediasafety.org/ *Sources: -Cybersecurity Awareness Month, Cybersecurity & Infrastructure Security Agency, www.cisa.gov/cybersecurity-awareness-month-Cybersecurity, RAND Corporation, www.rand.org/topics/cybersecurity.html-Stalking Fact Sheet, The Stalking Prevention, Awareness, & Resource Center, www.stalkingawareness.org/wp-content/uploads/2019/01/SPARC_StalkngFactSheet_2018_FINAL.pdfFor additional resources and a list of non-profit organizations that can help, please visit http://www.somethingwaswrong.com/resourcesFollow What Came Next: Podcast: https://podcasts.apple.com/us/podcast/what-came-next/id1674051643 Instagram: https://www.instagram.com/whatcamenext_podcast/ SWW S25 E24 BTS and Q & A Part 2 *Content Warning: friendship betrayal, infidelity, stalking, domestic violence, institutional betrayal, institutional trauma, and murder. Free + Confidential Resources + Safety Tips: somethingwaswrong.com/resources   SWW Sticker Shop!: https://brokencyclemedia.com/sticker-shop SWW S25 Theme Song & Artwork: The S25 cover art is by the Amazing Sara Stewart instagram.com/okaynotgreat/ The S25 theme song is a cover of Glad Rag's U Think U from their album Wonder Under, performed by the incredible Abayomi instagram.com/Abayomithesinger. The S25 theme song cover was produced by Janice “JP” Pacheco instagram.com/jtooswavy/ at The Grill Studios in Emeryville, CA instagram.com/thegrillstudios/ Follow Something Was Wrong: Website: somethingwaswrong.com  IG: instagram.com/somethingwaswrongpodcast TikTok: tiktok.com/@somethingwaswrongpodcast  Follow Tiffany Reese: Website: tiffanyreese.me  IG: instagram.com/lookieboo Follow What Came Next: Podcast: https://podcasts.apple.com/us/podcast/what-came-next/id1674051643 Instagram: https://www.instagram.com/whatcamenext_podcast/ Follow Amy B. Chesler: Amy on IG: instagram.com/amybchesler Working For Justice: https://amzn.to/4eqWb3U Follow Lauren: Lauren on TikTok: tiktok.com/@okfineillmakeatiktok Lxrry Media on Instagram: instagram.com/lxrymedia *Sources: -“The Gabby Petito Foundation,” gabbypetitofoundation.org/

Research Review Journal https://assets.contentstack.io/v3/assets/blt83c410d686aa5f84/blt3cff46f63887f83e/research-review-journal https://www.sans.edu/cyber-research Analysis of a Year of Files Uploaded to DShield Sensors https://isc.sans.edu/diary/Analysis%20of%20a%20Year%20of%20Files%20Uploaded%20to%20DShield%20Sensors/33026 The Word 'Toad' Gave Any Website Full Control of Chrome's Most Popular VPN https://amibeingpwned.com/blog/urban-vpn-postmessage-command-injection Silent Ransom Group Impersonating IT Personnel through Social Engineering https://www.ic3.gov/CSA/2026/260526.pdf

In this episode of The Jimmy Rex Show, Jimmy sits down with Utah activist January Walker to discuss the rapidly growing concerns surrounding AI, massive data centers, energy consumption, water usage, nuclear expansion, and the future of Utah's environment.January breaks down why she believes current AI infrastructure is unsustainable, how data centers are impacting the Great Salt Lake, the risks tied to proposed nuclear projects along Utah's fault lines, and why she says humanity is approaching a critical turning point.This conversation covers technology, politics, environmental concerns, cybersecurity, energy infrastructure, and the growing debate around AI's long-term impact on society.Follow January Walker: IG

What can you learn from a Cybersecurity professional? $ BTC 73,686 Block Height 951,540 Today's guest on the show is Luke Dewolf, author of "Defending Bitcoin," who discusses cybersecurity challenges for critical infrastructure, including Bitcoin, drawing parallels between industrial control systems and the Bitcoin network. Key Topics: Luke's background in critical infrastructure and cybersecurity "Defending Bitcoin" book and its motivations Real-world examples of cyberattacks (Stuxnet, NotPetya/Maersk) Ransomware and Bitcoin's association with it Individual Bitcoin security best practices (hardware wallets, full nodes, social engineering awareness) The CIA triad (Confidentiality, Integrity, Availability) in cybersecurity and Bitcoin The "arbitrary data" debate, Ordinals, Runes, OpReturn, and BIP-110 Bitcoin's layered defenses: policy, miners, and consensus Soft forks versus hard forks The future of Bitcoin security, AI, and adoption challenges BTC Hell conference Connect with Luke and find out more about the book! https://defendingbitcoin.com/ https://bitcoininfinitystore.com/ X - @lukedewolf NOSTR - npub1fk8h6g8zhftw8c7pga2zjd84p2z949up5lc3qdchm9v4m0q7mwws7jcwld Check out my book ‘Choose Life' - https://bitcoinbook.shop/search?q=prince Pleb Service Announcements: Join 20 thousand Bitcoiners on @cluborange https://signup.cluborange.org/co/princey CONFERENCES: BTC PRAGUE - 11th - 13th June 2026 http://btcprg.me/BITTEN - Use code BITTEN for - 10% BTC HEL - 25th - 26th September 2026. - Helsinki https://btchel.com/ Use code BITTEN for - 10% My First Bitcoin. https://myfirstbitcoin.org/ Shills and Mench's: BITBOX - SELF CUSTODY YOUR BITCOIN - www.bitbox.swiss/bitten Use Code BITTEN THE MEETUP BREAKDWON - BITCOIN EVENTS UK - https://www.themeetupbreakdown.com/ SWAN BITCOIN - www.swan.com/bitten PLEBEIAN MARKET - BUY AND SELL STUFF FOR SATS; https://plebeian.market/ @PlebeianMarket ZAPRITE - https://zaprite.com/bitten - Invoicing and accounting for Bitcoiners - Save $40 SATSBACK - Shop online and earn back sats! https://satsback.com/register/5AxjyPRZV8PNJGlM ALL FURTHER LINKS HERE - FOR DISCOUNTS AND OFFERS - https://vida.page/princey - https://linktr.ee/princey21m

Host David Shipley speaks with cybersecurity professional Cheryl Biswas about her journey into the industry and why she believes Arctic sovereignty must be viewed as a cybersecurity challenge as much as a geopolitical one. Biswas traces her path from political science and a help desk role at CP Rail to cybersecurity, inspired by the discovery of the Stuxnet malware and the global security community that formed around it. She discusses her experiences speaking at BSides Las Vegas, attending DEF CON, helping build a major Canadian bank's threat intelligence program, and recently earning her Certified Information Systems Security Professional (CISSP) designation. The conversation then shifts north. As Canada invests billions in Arctic defence, communications, transportation, and critical infrastructure, Biswas explains how every new connected system can create new cyber risks. The discussion covers threats to satellites, navigation systems used by ships and aircraft, undersea communications cables, government services, healthcare, energy systems, and the fragile supply chains that support northern communities. They also explore why collaboration with northern and Indigenous communities is essential, the importance of improving connectivity across the Arctic, and how Canada can work more closely with international partners to strengthen resilience in one of the world's most strategically important regions. Cheryl also shares advice for newcomers to cybersecurity and discusses the kind of strategic threat intelligence and research work she hopes to pursue in the future. Chapters 00:00 Weekend Show Kickoff 00:46 Cheryl's Cyber Origin Story 02:30 Stuxnet and Hacker Community 04:06 From BSides to DEF CON 05:10 Threat Intelligence Career Today 05:50 Arctic Sovereignty Meets Cyber 07:41 Canada's Arctic Reality Check 10:14 Why Cyber Matters Up North 12:07 Maritime and Navigation Risks 15:50 Undersea Cables and Fragile Supply 19:55 Solutions, Collaboration and Technology 24:22 Talk Feedback and How to Connect 25:42 Dream Role and Advice to Newcomers 29:16 Closing Reflections and Sendoff #Cybersecurity #ArcticSovereignty #Canada #CriticalInfrastructure #ThreatIntelligence #CISSP #CyberSecurityToday #DavidShipley #DEFCON #BSides #ArcticSecurity #NationalSecurity #CriticalInfrastructureProtection #ThreatIntel #CyberRisk

Founded in 2020, Axiado deploys hardware-anchored, AI-driven platform security by embedding silicon directly on the rack, protecting AI and cloud infrastructure against cyberattacks in real time. Latham represented Axiado in its oversubscribed US$100+ million Series C+ funding round. In this episode of Connected With Latham, Haim Zaltzman, Global Vice Chair of Latham's Emerging Companies & Growth Practice, sits down with Gopi Sirineni, Founder, President, and CEO of Axiado, to discuss the company's proximity-based security approach, the evolving cybersecurity landscape for AI infrastructure, and India's growing role in the global semiconductor ecosystem.   This podcast is provided as a service of Latham & Watkins LLP. Listening to this podcast does not create an attorney client relationship between you and Latham & Watkins LLP, and you should not send confidential information to Latham & Watkins LLP. While we make every effort to assure that the content of this podcast is accurate, comprehensive, and current, we do not warrant or guarantee any of those things and you may not rely on this podcast as a substitute for legal research and/or consulting a qualified attorney. Listening to this podcast is not a substitute for engaging a lawyer to advise on your individual needs. Should you require legal advice on the issues covered in this podcast, please consult a qualified attorney. Under New York's Code of Professional Responsibility, portions of this communication contain attorney advertising. Prior results do not guarantee a similar outcome. Results depend upon a variety of factors unique to each representation. Please direct all inquiries regarding the conduct of Latham and Watkins attorneys under New York's Disciplinary Rules to Latham & Watkins LLP, 1271 Avenue of the Americas, New York, NY 10020, Phone: 1.212.906.1200

Tucked into the Pentagon's budget materials for fiscal 2027 is a request for more than $2 billion to purchase command-and-control technology licenses and engineering support for the U.S. combatant commands, Joint Staff and National Guard Bureau. That total includes more than $1.5 billion to expand defense users' access to Palantir's Maven Smart System in support of the Defense Department's “Joint Force AI-Enabled Headquarters initiative” and $60 million for the “Virtual Joint Operations Center (VJOC) initiative.” Little has been disclosed publicly about those two efforts to date, and a Pentagon spokesperson declined to share more information about them with DefenseScoop this week. However, the budget documents indicate that the department is looking to swiftly consolidate “software-centric C2 onto a single pane of glass” over the next fiscal year. The DOD's foundational concept for Combined Joint All-Domain Command and Control (CJADC2), which broadly involves breaking down long-standing boundaries between the military services to enable a unified network where all sensors and shooters can seamlessly connect, started to take clear shape in the early 2020s. A House subcommittee will hold an open hearing next week on how frontier artificial intelligence models are shaping the cybersecurity landscape, for good and for ill. The June 4 hearing will be the second the Homeland Security Subcommittee on Cybersecurity and Infrastructure Protection has held that was focused at least in part on the subject, following a similar hearing held in December. But unlike at that joint subcommittee hearing, where members also examined other emerging technologies, AI takes center stage next week. It caps a series of closed-door meetings of the Homeland panel where members and staff have been evaluating the intersection of AI and cyber. The Daily Scoop Podcast is available every Monday-Friday afternoon. If you want to hear more of the latest from Washington, subscribe to The Daily Scoop Podcast  on Apple Podcasts, Soundcloud, Spotify and YouTube.

Reconstructing an Akira Ransomware Kill Chain from Perimeter and Endpoint Logs https://isc.sans.edu/diary/Reconstructing%20an%20Akira%20Ransomware%20Kill%20Chain%20from%20Perimeter%20and%20Endpoint%20Logs/33024 Vaultjacking: One Captured PIN, the Entire Google Password Manager Vault https://phishu.net/blogs/blog-vaultjacking-phishing-the-google-password-manager-vault-in-the-phishu-framework.html From poisoned search results to GPU mining: A cryptojacking campaign abusing ScreenConnect and Microsoft .NET utilities https://www.microsoft.com/en-us/security/blog/2026/05/26/poisoned-search-results-gpu-mining-cryptojacking-campaign-abusing-screenconnect-microsoft-net-utilities/

The Ransomware Minute is a rundown of the latest ransomware attacks & news, brought to you Cybercrime Magazine, Page ONE for Cybersecurity. Listen to the podcast weekly and read it daily at https://ransomwareminute.com. For more on cybersecurity, visit us at https://cybercrimemagazine.com.

Cybersecurity is Bigger Than Hacking | Nate Butler on Career Pathways, Mentorship & GRC Chapters0:00 Welcome to Cyber Crime Junkies0:31 From IT to Cybersecurity | Nate's Career Shift3:34 The Mentor Moment That Changed Everything5:33 Meet The Power of Mentorship8:13 CISM Certification | A Level Up from Security+10:43 Cybersecurity is Bigger Than Hacking12:00 GRC Explained | The Glue That Holds It Together15:40 Governance Risk Compliance for SMBs16:29 Speaking at High School | Youth Outreach17:41 Teaching Kids Cybersecurity Without Fear21:28 Parental Conversation | Gaming Safety & Sextortion Prevention23:42 Communication Across Generations25:37 Explaining Tech Simply to Business Leaders26:47 LinkedIn vs TikTok Strategy27:00 Two Platforms, Two Different Animals28:28 Live TikTok | Building Community Around Real Conversation31:26 Authenticity Over Polish | What Drives Engagement34:02 AI, Claude Code & Building Apps36:39 From Paying for Services to Building Your Own39:44 DevOps, Platform Engineering & Infrastructure Roles41:20 Using AI to Automate Your Own Workflow45:36 Book Trilogy | Breaking Into Cybersecurity48:05 The Second Book | Navigating the Space with Keith51:30 More Content Coming | Guests, Live Streams & Growth54:00 Anyone Can Do This Work56:00 Final Thoughts on Mentorship & OpportunityQuestions? Text our Studio direct. We read these and when helpful we give a special shout out for those to contact us.I wrote Moving Target because overconfidence is the enemy. Hardcover, paperback, Kindle, and audiobook. Amazon, Barnes and Noble, and more. I wrote the Moving Target Trilogy because overconfidence is the enemy. Hardcover, paperback, Kindle, and audiobook. Amazon, Barnes and Noble, and more. Growth without Interruption. Get peace of mind. Stay Competitive-Get NetGain. Contact NetGain today at 844-777-6278 or reach out at DMauro@NetGainIT.com or find more at www.NETGAINIT.com   Support the showNew Exclusive Offers for our Listeners! New non-fiction Book Series is out! Moving Target: The Art of Online Camouflage drops April 14.Moving Target: The Obedient Machine drops April 21.Book 3 -- Ghost and the Machine -- out soon!

Podcast: PrOTect It All (LS 27 · TOP 10% what is this?)Episode: AI, Cybersecurity & Career Growth: Why Curiosity Matters More Than CredentialsPub date: 2026-05-25Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarization The future of cybersecurity belongs to people who can adapt - not just those with the longest list of certifications. In this episode of Protect It All, host Aaron Crow sits down with Peter Schawacker for a candid conversation about the evolving intersection of AI, cybersecurity, talent, and career growth. With nearly 30 years of experience in cybersecurity and technology leadership, Peter shares real-world insights on what organizations are getting wrong about hiring, why curiosity often matters more than credentials, and how AI is reshaping both technical work and the future of security teams. Together, Aaron and Peter unpack the changing role of CISOs, the dangers of checkbox-driven hiring, and why nontraditional talent may hold the key to solving the industry's growing skills gap. You'll learn: Why soft skills and curiosity are becoming critical cybersecurity assets How AI is transforming cybersecurity recruiting and technical roles The growing challenges around technical debt and workforce readiness Why traditional credentials don't always predict success How CISOs and leaders should think differently about talent and culture Practical career advice for cybersecurity professionals navigating rapid change Whether you're building a cyber team, hiring talent, or planning your next career move, this episode delivers honest insights into what it really takes to thrive in the AI-driven future of cybersecurity. Tune in to learn why adaptability, curiosity, and human ingenuity still matter most - only on Protect It All.. Key Moments:  04:08 The role of security in business 09:24 Managing Aramis online security 11:22 Hiring mindset for troubleshooting skills 13:55 Evaluating AI talent challenges 16:26 Discussing vulnerabilities in software 22:24 Early days of hacking and tech 25:55 Realizing the power of soft skills 28:15 Browsing eclectic book collections 32:13 Recent grads and AI opportunities 33:24 Getting into cybersecurity careers 37:22 Unexpected paths into security careers 40:41 Importance of critical thinking 44:35 Explaining tech's evolution over time About the Guest : Peter Schawacker is the Founder & CEO of Nearshore Cyber and a cybersecurity executive with more than 25 years of experience across multiple industries. A former CISO in four sectors, Peter specializes in cyber risk, AI governance, and workforce development. He is the creator of ARAMIS Insight, an AI-powered cybersecurity workforce competency platform aligned to the NIST NICE framework, and author of Governing AI at the Edge: An Operating Model for Citizen Development in the Enterprise. How to connect Peter:  LinkedIn: https://www.linkedin.com/in/schawacker  Nearshore Cyber: https://nearshorecyber.com.mx | ARAMIS Insight: https://project-aramis.com/insight  Email: peter@nearshorecyber.com.mx Phone: +1 (760) 880-4258 Connect With Aaron Crow: Website: www.corvosec.com  LinkedIn: https://www.linkedin.com/in/aaronccrow Learn more about PrOTect IT All: Email: info@protectitall.co  Website: https://protectitall.co/  X: https://twitter.com/protectitall  YouTube: https://www.youtube.com/@PrOTectITAll  FaceBook:  https://facebook.com/protectitallpodcast To be a guest or suggest a guest/episode, please email us at info@protectitall.co Please leave us a review on Apple/Spotify Podcasts: Apple   - https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124 Spotify - https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4The podcast and artwork embedded on this page are from Aaron Crow, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Mozilla found 271 unknown Firefox vulnerabilities in days using AI—bugs that millions of automated test runs had missed for years. Steve Gibson argues this isn't a crisis. It's the industry finally paying down decades of security debt, and for the first time, defenders may have the advantage. Cisco meets Mythos Can the aging CVE system survive AI Patch deployment latency in the AI age MSFT's official YellowKey BitLocker bypass mitigation Ubiquiti patches 5 serious vulnerabilities Drupal attacked by a PostgreSQL injection Microsoft terminates SMS as a second factor GitHub hacked - all of its source code exfiltrated Russia is using very old Western software Why to get a no-charge AI chatbot account New Sci-Fi on Netflix What we learn from Mozilla's use of Mythos Show Notes - https://www.grc.com/sn/SN-1080-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: guardsquare.com doppel.com cyberhoot.com/securitynow trustedtech.team/securitynow365 XBOW.com

Possible ACR Stealer From Page Impersonating Claude https://isc.sans.edu/diary/Possible%20ACR%20Stealer%20From%20Page%20Impersonating%20Claude/33018 Microsoft SharePoint Remote Code Execution Vulnerability CVE-2026-45659 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45659 Multiple Vulnerabilities in Angular Language Service VS Code Extension https://github.com/angular/angular/security/advisories/GHSA-ccq4-xmxr-8hcq

Send us Fan MailWhat does it take to scale in today's fast-changing MSP and cybersecurity landscape? In this episode, Joey Pinz sits down with a global tech leader to explore how MSPs can adapt, grow, and lead in an era defined by AI, cyber threats, and increasing competition.From real-world ransomware scenarios to the evolving role of AI tools like Copilot, this conversation highlights how technology is reshaping decision-making, customer relationships, and operational strategy. The discussion also dives into why traditional high-volume sales tactics are losing effectiveness—and how peer-to-peer engagement and in-person experiences are becoming the new competitive advantage.Beyond business, this episode brings a personal edge—covering routines, health challenges, and the importance of balance while managing global teams and family life.

Mozilla found 271 unknown Firefox vulnerabilities in days using AI—bugs that millions of automated test runs had missed for years. Steve Gibson argues this isn't a crisis. It's the industry finally paying down decades of security debt, and for the first time, defenders may have the advantage. Cisco meets Mythos Can the aging CVE system survive AI Patch deployment latency in the AI age MSFT's official YellowKey BitLocker bypass mitigation Ubiquiti patches 5 serious vulnerabilities Drupal attacked by a PostgreSQL injection Microsoft terminates SMS as a second factor GitHub hacked - all of its source code exfiltrated Russia is using very old Western software Why to get a no-charge AI chatbot account New Sci-Fi on Netflix What we learn from Mozilla's use of Mythos Show Notes - https://www.grc.com/sn/SN-1080-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: guardsquare.com doppel.com cyberhoot.com/securitynow trustedtech.team/securitynow365 XBOW.com

Mozilla found 271 unknown Firefox vulnerabilities in days using AI—bugs that millions of automated test runs had missed for years. Steve Gibson argues this isn't a crisis. It's the industry finally paying down decades of security debt, and for the first time, defenders may have the advantage. Cisco meets Mythos Can the aging CVE system survive AI Patch deployment latency in the AI age MSFT's official YellowKey BitLocker bypass mitigation Ubiquiti patches 5 serious vulnerabilities Drupal attacked by a PostgreSQL injection Microsoft terminates SMS as a second factor GitHub hacked - all of its source code exfiltrated Russia is using very old Western software Why to get a no-charge AI chatbot account New Sci-Fi on Netflix What we learn from Mozilla's use of Mythos Show Notes - https://www.grc.com/sn/SN-1080-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: guardsquare.com doppel.com cyberhoot.com/securitynow trustedtech.team/securitynow365 XBOW.com

The Roundtable Panel: a daily open discussion of issues in the news and beyond. Today's panelists are Lecturer of Cognitive Sciences at Rensselaer Polytechnic Institute and former Fulbright US Scholar to Egypt Jackie Berry, The Ulster County Comptroller and the former president and CEO of the Community Foundations of the Hudson Valley March Gallagher, Editor at large/columnist/editorial writer for the Times Union Jay Jochnowitz, and Dean of the College of Emergency Preparedness, Homeland Security and Cybersecurity at the University at Albany Robert Griffin.

Mozilla found 271 unknown Firefox vulnerabilities in days using AI—bugs that millions of automated test runs had missed for years. Steve Gibson argues this isn't a crisis. It's the industry finally paying down decades of security debt, and for the first time, defenders may have the advantage. Cisco meets Mythos Can the aging CVE system survive AI Patch deployment latency in the AI age MSFT's official YellowKey BitLocker bypass mitigation Ubiquiti patches 5 serious vulnerabilities Drupal attacked by a PostgreSQL injection Microsoft terminates SMS as a second factor GitHub hacked - all of its source code exfiltrated Russia is using very old Western software Why to get a no-charge AI chatbot account New Sci-Fi on Netflix What we learn from Mozilla's use of Mythos Show Notes - https://www.grc.com/sn/SN-1080-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: guardsquare.com doppel.com cyberhoot.com/securitynow trustedtech.team/securitynow365 XBOW.com

The Cybercrime Wire, hosted by Scott Schober, provides boardroom and C-suite executives, CIOs, CSOs, CISOs, IT executives and cybersecurity professionals with a breaking news story we're following. If there's a cyberattack, hack, or data breach you should know about, then we're on it. Listen to the podcast daily and hear it every hour on WCYB. The Cybercrime Wire is brought to you Cybercrime Magazine, Page ONE for Cybersecurity at https://cybercrimemagazine.com. • For more breaking news, visit https://cybercrimewire.com

The conversation covers the introduction of Silos and SpyAlert, the concept of ephemeral endpoints, solving Windows 10 compatibility issues, biometric identity and network isolation, AI-enabled tools and vulnerability mitigation, expanding perimeter and endpoint security, impact on the endpoint security market, compliance and identity access management, frictionless security and user experience, continuous biometric authentication, integration with identity and access management, real-time security operations and analytics, endpoint security and biometric authentication, acquisition and technology integration, zero trust journey and implementation, statelessness and device management, and camera requirements and flexibility.TakeawaysEphemeral EndpointsZero Trust Operating SystemChapters00:00 Camera Requirements and Flexibility

Irish Tech News is at Dublin Tech Summit and over the 2 days Ronan will be doing various podcasts. Our first podcast is with Luke Treacy the Managing Director and founder of Business Technology Academy. Luke has been on the podcast before and it's nice to catchup and see what Luke and Business Technology academy are up. Luke talks to Ronan about what  Business Technology Academy has been up to, their new AI courses, working with Senator Craughwell CyberQuest on Cyber Security for SME's, Business Technology Academy's new online publication and the events they are running with Dun Laoghaire Chamber of Commerce.

Microsoft Access VBA https://isc.sans.edu/diary/Microsoft%20Access%20VBA/33012 An Example of Stack String in High Level Language https://isc.sans.edu/diary/An%20Example%20of%20Stack%20String%20in%20High%20Level%20Language/33008 Cross-Platform NPM Stealer https://isc.sans.edu/diary/Cross-Platform%20NPM%20Stealer/33006 Laravel Lang Compromised with RCE Backdoor Across https://socket.dev/blog/laravel-lang-compromise Google API keys keep working after you delete them https://www.aikido.dev/blog/google-api-keys-deletion

HPE has announced new features in its Juniper Mist portfolio. On today’s sponsored Packet Protector, we dig into those features, including a dry run option that lets organizations test and refine Network Access Control (NAC) policies before pushing them out, a policy validation feature that can identify shadow NAC rules, and a microsegmentation capability aimed... Read more »

HPE has announced new features in its Juniper Mist portfolio. On today’s sponsored Packet Protector, we dig into those features, including a dry run option that lets organizations test and refine Network Access Control (NAC) policies before pushing them out, a policy validation feature that can identify shadow NAC rules, and a microsegmentation capability aimed... Read more »

Traveling soon? ✈️

Authors Paul J. Maurer and Ed Skoudis join Caveat podcast co host Ben Yelin to discuss their new book: "The Code of Honor: Embracing Ethics in Cybersecurity." The book is a comprehensive and practical framework for ethical practices in contemporary cybersecurity. Listen to Ben's discussion with Paul and Ed as they explore the ethical dimensions of cybersecurity, the influence of AI, and the responsibilities of cyber professionals. Consider joining Paul and Ed in upholding the highest standards of cybersecurity ethics by signing the Cybersecurity Code they share as part of The Code of Honor. Learn more about the book here. Learn more about your ad choices. Visit megaphone.fm/adchoices

QR codes are everywhere, but what happens when a simple scan becomes a cybersecurity risk? In this episode of Power Supply, Mark Manning, Founder & CEO at iTRACE Technologies, Inc., joins the team to uncover the growing threats tied to QR codes, counterfeit medical products, and supply chain authentication in healthcare. From "quishing" scams and QR jacking to device tracking and patient safety, Mark breaks down how emerging technology is reshaping both healthcare operations and cybersecurity. He also shares how smarter authentication and tracking tools could help healthcare organizations improve transparency, reduce counterfeit risks, and strengthen trust across the supply chain. If your team is thinking about device tracking, supply chain visibility, or cybersecurity preparedness, this episode offers a timely look at where healthcare technology is headed next. Once you complete the interview, jump on over to the link below to take a short quiz and download your CEC certificate for 0.5 CECs! – https://www.flexiquiz.com/SC/N/ps18-04 #PowerSupply #Podcast #AHRMM #HealthcareSupplyChain #SupplyChain #QRCode #Cybersecurity #CounterfeitProducts #Authentication #Technology

Selective HTTP Proxying in Linux https://isc.sans.edu/diary/Selective%20HTTP%20Proxying%20in%20Linux/33002 Megalodon: Mass GitHub Repo Backdooring via CI Workflows https://safedep.io/megalodon-mass-github-repo-backdooring-ci-workflows/ MSFT Patches Recent Windows Defender Flaws CVE-2026-41091, CVE-2026-45498, CVE-2026-45584 https://x.com/fabian_bader/status/2057198207243804881 Cisco Secure Workload Unauthorized API Access Vulnerability CVE-2026-20223 https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-csw-pnbsa-g8WEnuy