Podcasts about cybersecurity

The protection of computer systems from theft or damage

  • 11,751PODCASTS
  • 66,486EPISODES
  • 30mAVG DURATION
  • 10+DAILY NEW EPISODES
  • Jun 30, 2026LATEST
cybersecurity

POPULARITY

20192020202120222023202420252026

Categories




    Best podcasts about cybersecurity

    Show all podcasts related to cybersecurity

    Latest podcast episodes about cybersecurity

    The CyberWire
    Uniting Women in Cyber Podcast: Breaking Barriers in Cybersecurity with Cybersecurity Girl. [Special Edition]

    The CyberWire

    Play Episode Listen Later Jun 28, 2026 33:17


    In this Special Edition episode, N2K CyberWire's Dave Bittner sits down with Caitlin Sarian, widely known as Cybersecurity Girl, to explore how storytelling, authenticity, and community are reshaping a more human-centered cybersecurity landscape. Recorded live at The Cyber Guild's Uniting Women in Cyber (UWIC) Event last fall, this candid conversation highlights Caitlin's unconventional path into cybersecurity and her mission to make the industry more accessible and relatable for all.  Together, they explore how breaking down technical barriers can unlock new pathways into the field especially for those from nontraditional backgrounds. UWIC brings together industry leaders, practitioners, and emerging talent to advance the cybersecurity workforce through leadership, innovation, and inclusion. Join us on Oct 8 for UWIC 2026!  Learn more about your ad choices. Visit megaphone.fm/adchoices

    a16z
    Marc Andreessen on AI, Technology, and the Future of Humanity

    a16z

    Play Episode Listen Later Jun 25, 2026 64:10


    Michael Malice sits down with Marc Andreessen to discuss artificial intelligence, technological progress, economic growth, and the future of human flourishing. Drawing on decades of experience spanning the birth of the commercial internet through today's AI boom, Andreessen argues that many of the most common fears about technology are rooted in a misunderstanding of how innovation creates opportunity. He explains how modern AI systems work, why large language models differ from earlier visions of artificial intelligence, and why he believes AI will ultimately expand human capability rather than replace it. The discussion covers AI, automation, productivity, cybersecurity, economic growth, creativity, and the recurring historical pattern of technological disruption. Along the way, Andreessen shares his views on optimism, abundance, and why he believes technological progress remains one of humanity's most powerful tools for solving problems.   Resources: Follow Marc Andreessen on X: https://x.com/pmarca Follow Michael Malice on X: https://x.com/michaelmalice Stay Updated:Find a16z on YouTube: YouTubeFind a16z on XFind a16z on LinkedInListen to the a16z Show on SpotifyListen to the a16z Show on Apple PodcastsFollow our host: https://twitter.com/eriktorenberg Please note that the content here is for informational purposes only; should NOT be taken as legal, business, tax, or investment advice or be used to evaluate any investment or security; and is not directed at any investors or potential investors in any a16z fund. a16z and its affiliates may maintain investments in the companies discussed. For more details please see a16z.com/disclosures. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

    Paul's Security Weekly
    Cloud Visibility, Fortibleed, hacking things the easy way - Sandy Bird - PSW #932

    Paul's Security Weekly

    Play Episode Listen Later Jun 25, 2026 133:44


    First up is Sandy Bird from Sonrai discussing how to protect our cloud infrastructure! This segment is sponsored by Sonrai Security. Visit https://securityweekly.com/sonrai to learn more about them! Next up in the security news: Help, I am Fortibleeding Cisco SD-WAN needs help The secret life of probe requests Help, I am Squidbleeding XSS to RCE and why CVSS isn't the full picture TVs spy on you Foundational security practices Cybersecurity costs money Happy "Its too late to update your KEK key" day You don't have security flaws if no one can report them Rickrolling FIFA Domain takeovers End of life, out of luck The key to Encryption... Visit https://www.securityweekly.com/psw for all the latest episodes! Show Notes: https://securityweekly.com/psw-932

    SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast
    SANS Stormcast Wednesday, June 24th, 2026: Patching vs. Configurations Updates; libssh2 and ffmpeg vuln;

    SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast

    Play Episode Listen Later Jun 24, 2026 6:48


    CVE-2024-40766: The Patch Fixed the Bug. Nobody Fixed the Configuration. https://isc.sans.edu/diary/CVE-2024-40766%3A%20The%20Patch%20Fixed%20the%20Bug.%20Nobody%20Fixed%20the%20Configuration./33094 libssh2 - Out-of-Bounds Write via Unchecked packet_length in transport.c https://www.vulncheck.com/advisories/libssh2-out-of-bounds-write-via-unchecked-packet-length-in-transport-c PixelSmash Critical FFmpeg Vulnerability Turns Media Files into Weapons https://jfrog.com/blog/pixelsmash-critical-ffmpeg-vulnerability-turns-media-files-into-weapons/ My Upcoming Classes https://www.sans.org/profiles/dr-johannes-ullrich

    Risky Business
    Risky Business #843 -- Fortibleed is kinda awesome, actually

    Risky Business

    Play Episode Listen Later Jun 24, 2026 63:35


    On this week's show special guest co-host Rob Joyce joins Patrick Gray and James Wilson to discuss the week's cybersecurity news. Rob served as an advisor to Donald Trump during his first term as president and also served at NSA for 34 years. While at the agency, Joyce led Tailored Access Operations (TAO), and later became NSA's Director of Cybersecurity. They cover: The surprisingly well done Fortibleed campaign Stolen Klue OAuth tokens lead to Salesforce data theft OpenAI wants to patch the planet runZero gets acquired by Accenture, congrats HD Moore! Much, much more! This episode is also available on YouTube. Show notes FortiBleed campaign used custom FortiGate sniffer to steal credentials | BleepingComputer FortiBleed: Fortinet device credential compromise expands into broader credential-attack guidance | unit42.paloaltonetworks.com Cybercriminals allegedly hacked tens of thousands of Fortinet firewalls used by major companies all over the world | TechCrunch Security Klue OAuth breach linked to 'Icarus' Salesforce data theft attacks | BleepingComputer Polymarket (@Polymarket) on X | X (formerly Twitter) The Korean telecom giant at the center of Anthropic's Mythos controversy | wrd.cm Beyond Fable: Can a Local LLM Replace Cloud AI for Security Code Reviews - SRLabs Research | SRLabs OpenAI Launches Full-Scale Effort to Patch Open-Source Bugs as It Takes on Anthropic's Mythos | wired.com Sponsored: Trail of Bits and OpenAI patch the planet | Risky Bulletin Intel agencies: Frontier AI models will reshape cybersecurity faster than expected | cyberscoop.com Embedding Forbidden Text in Spyware to Discourage AI Analysis | Schneier on Security A new unpatchable flaw in Apple chips opens the door to an iPhone jailbreak | TechCrunch Security USB worm spreads crypto-stealing malware via Windows shortcut files | BleepingComputer Android verification is coming: Google confirms timeline and supported app stores | Ars Technica California water utility probes breach claim by Iran-linked actor | Cybersecurity Dive Suspected cyberattack triggers false emergency alerts across parts of Brazil | The Record Tesco moving 40,000 server workloads off VMware amid Broadcom's "abusive conduct" | Ars Technica Trump directs federal agencies to protect US data from quantum threats | therecord.media Accenture shells out $4.18B on three companies in big industrial cybersecurity push | cyberscoop.com

    Fallen Angel
    How To Avoid Scams with Patrick Coughlin

    Fallen Angel

    Play Episode Listen Later Jun 23, 2026 33:23


    Cybersecurity expert and author of The Dark Side of the Boom Patrick Coughlin joins Vanessa to talk about the scams coming for our parents and their bank accounts. They get into AI voice cloning, spoofed numbers, why seniors are such major targets, and what to do when someone calls with an emergency that feels terrifyingly real.Check out Scamwise for help spotting suspicious texts, emails, phone calls, and mail.

    SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast
    SANS Stormcast Tuesday, June 23rd, 2026: Webshells; GitHub Actions Update; Fortibleed Update; Private Access Control Tokens

    SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast

    Play Episode Listen Later Jun 23, 2026 8:01


    Webshells Remain Popular https://isc.sans.edu/diary/Webshells%20Remain%20Popular/33096 Safer pull_request_target defaults for GitHub Actions checkout https://github.blog/changelog/2026-06-18-safer-pull_request_target-defaults-for-github-actions-checkout/ Private Access Control Tokens https://cloudflare.net/news/news-details/2026/Cloudflare-Collaborates-With-Leading-Browsers-to-Develop-a-Privacy-First-Protocol-For-the-Global-Internet/default.aspx https://blog.cloudflare.com/eliminating-captchas-on-iphones-and-macs-using-new-standard/ Fortibleed Update https://socradar.io/resources/whitepapers/dismantling-fortibleed-inside-a-russian-fortinet-compromise-operation/ My Upcoming Classes https://www.sans.org/profiles/dr-johannes-ullrich

    Packet Pushers - Full Podcast Feed
    PP115: Palo Alto Networks: Reality of 109 to 1: Securing Machine Identities and AI Agents (Sponsored)

    Packet Pushers - Full Podcast Feed

    Play Episode Listen Later Jun 23, 2026 39:19


    Machine identities now outnumber human identities in the enterprise 109 to 1 — and most of them are running without the governance controls you’d never skip for a human employee. Service accounts, API keys, tokens, workload credentials, and a fast-growing population of autonomous AI agents: all of them need access, all of them can be... Read more »

    Black Hills Information Security
    Rickrolling the FIFA World Cup - 2026-06-22

    Black Hills Information Security

    Play Episode Listen Later Jun 23, 2026 66:10 Transcription Available


    This week's episode covers a series of cybersecurity stories, including a researcher's discovery of vulnerabilities in FIFA's World Cup platform that could have enabled unauthorized administrative access and even the ability to alter live broadcasts. The team also discusses the risks of large-scale identity verification data exposure, supply chain attacks impacting the scientific research community, ongoing fallout from Broadcom's VMware acquisition, and legal challenges from major organizations facing rising VMware costs. Along the way, the hosts share commentary on AI-related security concerns, access control failures, and the broader impact of vendor decisions on enterprise security.Join us LIVE on Mondays, 4:30pm EST.A weekly Podcast with BHIS and Friends. We discuss notable Infosec, and infosec-adjacent news stories gathered by our community news team.https://www.youtube.com/@BlackHillsInformationSecurityChat with us on Discord! - https://discord.gg/bhis

    Packet Pushers - Fat Pipe
    PP115: Palo Alto Networks: Reality of 109 to 1: Securing Machine Identities and AI Agents (Sponsored)

    Packet Pushers - Fat Pipe

    Play Episode Listen Later Jun 23, 2026 39:19


    Machine identities now outnumber human identities in the enterprise 109 to 1 — and most of them are running without the governance controls you’d never skip for a human employee. Service accounts, API keys, tokens, workload credentials, and a fast-growing population of autonomous AI agents: all of them need access, all of them can be... Read more »

    ITSPmagazine | Technology. Cybersecurity. Society
    Who Gets to Tell Your Story? Maggie Alphonsi on Strength, Resilience & Owning the Narrative | An Analog Brain In A Digital Age With Marco Ciappelli — On Location at Infosecurity Europe 2026

    ITSPmagazine | Technology. Cybersecurity. Society

    Play Episode Listen Later Jun 23, 2026 16:12


    A rugby World Cup winner walks into a room full of people who defend networks for a living. Maggie Alphonsi joins me to talk about breaking barriers, leading with your strengths, and what changed the day athletes stopped waiting for the back page and started telling their own stories.

    Cybercrime Magazine Podcast
    Cybercrime Wire For Jun 23, 2026. Cybersecurity Firms Are Victims Of Data Breach. WCYB Digital Radio

    Cybercrime Magazine Podcast

    Play Episode Listen Later Jun 23, 2026 1:24


    The Cybercrime Wire, hosted by Scott Schober, provides boardroom and C-suite executives, CIOs, CSOs, CISOs, IT executives and cybersecurity professionals with a breaking news story we're following. If there's a cyberattack, hack, or data breach you should know about, then we're on it. Listen to the podcast daily and hear it every hour on WCYB. The Cybercrime Wire is brought to you Cybercrime Magazine, Page ONE for Cybersecurity at https://cybercrimemagazine.com. • For more breaking news, visit https://cybercrimewire.com

    Cybercrime Magazine Podcast
    Talking Cyber. Security Flaw Hits Yarbo Lawnmowers. Heather Engel, Strategic Cyber Partners.

    Cybercrime Magazine Podcast

    Play Episode Listen Later Jun 23, 2026 8:21


    A security researcher in Germany uncovered a flaw in robotic landmowers produced by Yarbo that let him remotely control every active robot across the globe, according to Slashgear. In this episode, host Amanda Glassner is joined by Heather Engel, Managing Partner at Strategic Cyber Partners, to discuss. To learn more about today's stories, visit https://cybercrimewire.com • For more on cybersecurity, visit us at https://cybersecurityventures.com.

    FedBiz'5
    AI, Cybersecurity, and Federal Buying: Where Small Contractors Can Still Break In

    FedBiz'5

    Play Episode Listen Later Jun 23, 2026 12:18 Transcription Available


    Send us Fan MailAI is moving fast in federal contracting, but the real opportunity for small businesses may not be where everyone thinks it is.In this episode of FedBiz'5, we break down how AI, cybersecurity, and federal buying are converging, and why that creates both pressure and possibility for small business contractors. Agencies want AI-enabled solutions, but they also need security, governance, data protection, compliance, human oversight, and practical implementation support.That is where small contractors can still break in.You'll learn how AI is showing up in RFIs and RFPs, what “AI security layers” really mean in procurement terms, why CMMC, FedRAMP, CUI, and data governance matter more than ever, and which AI-adjacent lanes may be most realistic for small businesses heading into 2026.If you support cybersecurity, data modernization, compliance, cloud, training, governance, analytics, or mission-focused IT services, this episode will help you see where federal AI demand is headed and how to position before the market gets even more crowded.Visit us: FedBizAccess.comStay Connected: Follow Us on FacebookFollow Us on LinkedInNeed help in the government marketplace? Call a FedBiz Specialist today: 844-628-8914Or, schedule a complimentary consultation at your convenience. 

    Simply Cyber

    The stories that matter most to #cybersecurity insiders, analysts, and business leaders. Delivered every day.Get your CPEs: https://cyberthreatbrief.simplycyber.io/cpeStop ransomware without the hassle. Allow what you need and block the rest with ThreatLocker Zero Trust Platform — simple to deploy, simple to manage: https://www.threatlocker.com/dailycyberCheck out Flare.io at https://simplycyber.io/flareCheck out Pay-What-You-Can Antisyphon Training: https://simplycyber.io/antisyphonSC Academy - The Place for Cyber Careers: https://zpr.io/mYV5232V66QnJoin SC Discord: https://SimplyCyber.io/DiscordNews: https://cisoseries.comFollow SC: https://simplycyber.io/socials

    Innovation in Compliance with Tom Fox
    Cybersecurity Workforce Design: Reducing Burnout, Clarifying Accountability, and Aligning Incentives with Dan Duffy

    Innovation in Compliance with Tom Fox

    Play Episode Listen Later Jun 23, 2026 22:31


    Innovation comes in many areas, and compliance professionals need to not only be ready for it but also embrace it. Join Tom Fox, the Voice of Compliance, as he visits with top innovative minds, thinkers, and creators in the award-winning Innovation in Compliance podcast. In this episode, host Tom visits Dan Duffy, the Cyber Practice lead at Consulting Solutions and a longtime cybersecurity and executive-search professional. They chat about the paradox of rising security spend alongside increasing burnout and turnover. Duffy argues organizations cannot hire their way out of broken structures: undefined workflows, lack of playbooks, shadow IT, fragmented accountability, and excessive alert volumes cause teams to drown, making burnout a business risk rather than an HR metric. He emphasizes auditing workforce design, mapping workflow needs, and ensuring executive and board-level support, including proper CISO reporting lines and authority. They discuss the emerging demand for an AI compliance officer, the need for AI governance ownership and accountability, and misaligned incentives in which security is treated as a late-stage tax rather than a design principle. Duffy advocates maturity-focused programs, incident-informed leadership, and stronger entry-level pipelines. Key highlights: The Cyber Talent Crisis Burnout as Business Risk AI Governance Accountability Building for Long-Term Success Future Workforce Pipeline Advice for New Entrants Rethinking Workforce Strategy Resources: Connect with Dan Duffy on LinkedIn Consulting Solutions Innovation in Compliance was recently honored as the Number 4 podcast in Risk Management by 1,000,000 Podcasts.

    SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast
    SANS Stormcast Monday, June 22nd, 2026: IPv4 Mapped Phish; nginx bug; squid bleeds; AMD encryption fix

    SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast

    Play Episode Listen Later Jun 22, 2026 6:06


    eBanking Phishing Delivered Through IPv4-Mapped IPv6 Address https://isc.sans.edu/diary/eBanking%20Phishing%20Delivered%20Through%20IPv4-Mapped%20IPv6%20Address/33090 NGINX ngx_http_v3_module vulnerability CVE-2026-42530 https://my.f5.com/manage/s/article/K000161616 Squidbleed (CVE-2026-47729) https://blog.calif.io/p/squidbleed-cve-2026-47729 AMD will reinstate memory encryption on Ryzen 9000 CPUs through a BIOS update in July https://www.tomshardware.com/pc-components/cpus/amd-will-reinstate-memory-encryption-on-ryzen-9000-cpus-through-a-bios-update-in-july-tsme-is-coming-back-after-valuable-community-feedback My Upcoming Classes https://www.sans.org/profiles/dr-johannes-ullrich

    PEBCAK Podcast: Information Security News by Some All Around Good People
    Bonus Episode 17 - Cybersecurity Interview Tips

    PEBCAK Podcast: Information Security News by Some All Around Good People

    Play Episode Listen Later Jun 22, 2026 49:21


    Welcome to this week's bonus episode of the PEBCAK Podcast!  We've got some amazing stories this week so sit back, relax, and keep being awesome!  Be sure to stick around for our Dad Joke of the Week. (DJOW) Follow us on Instagram @pebcakpodcast   Please share this podcast with someone you know!  It helps us grow the podcast and we really appreciate it!   Find the hosts on LinkedIn: Chris - https://www.linkedin.com/in/chlouie/ Brian - https://www.linkedin.com/in/briandeitch-sase/ Glenn - https://www.linkedin.com/in/glennmedina/ Ben - https://www.linkedin.com/in/benjamincorll/ Scott - https://www.linkedin.com/in/scottmsavage/

    AI in Action Podcast
    Cybersecurity Series E23: Building Cyber Resilience in the AI Era with Grant Thornton Ireland's Howard Shortt

    AI in Action Podcast

    Play Episode Listen Later Jun 22, 2026 20:45


    Today's guest is Howard Shortt, Cybersecurity & Data Privacy Partner at Grant Thornton Ireland. Founded in 1924, Grant Thornton Ireland is a leading professional services firm providing audit, tax and advisory services to businesses. Combining global reach with local expertise, it helps clients navigate complex financial, regulatory and strategic challenges. Its teams work across a wide range of industries, delivering practical insights and solutions that support growth, improve performance and strengthen governance.Howard is an experienced business leader specialising in cybersecurity, governance and cyber threat risk management. He applies leading practices in security operations, forensic investigation and team leadership to address incident response, critical infrastructure protection, threat mitigation and regulatory compliance. Howard also delivers cyber security advisory services across multiple countries and sectors, and is a trusted advisor to senior leaders, translating complex technical issues into clear, actionable insight.In the episode, Howard discusses:His journey from retail jobs to cybersecurity and digital forensics expertHow a childhood curiosity sparked lifelong passion for cybersecurity and forensicsShaping a lifelong consulting career with a customer-focused mindsetHow AI is accelerating cyber threats and strengthening defences simultaneouslyWhy Irish businesses remain underprepared for evolving AI-driven cyber threatsCyber resilience requires leadership preparation, communication and realistic exercisesCybersecurity demands constant learning, adaptation and mastering fundamentalsHis advice to start with cybersecurity fundamentals and build knowledge step by stepTo find out more about all the great work happening at Grant Thornton Ireland, check out the website www.grantthornton.ie

    Cybercrime Magazine Podcast
    Cybercrime Wire For Jun 22, 2026. Massive Data Breach On TPWD Hits 3M Texans. WCYB Digital Radio.

    Cybercrime Magazine Podcast

    Play Episode Listen Later Jun 22, 2026 1:20


    The Cybercrime Wire, hosted by Scott Schober, provides boardroom and C-suite executives, CIOs, CSOs, CISOs, IT executives and cybersecurity professionals with a breaking news story we're following. If there's a cyberattack, hack, or data breach you should know about, then we're on it. Listen to the podcast daily and hear it every hour on WCYB. The Cybercrime Wire is brought to you Cybercrime Magazine, Page ONE for Cybersecurity at https://cybercrimemagazine.com. • For more breaking news, visit https://cybercrimewire.com

    No Password Required
    No Password Required Podcast Episode 74 - Shane Tews

    No Password Required

    Play Episode Listen Later Jun 22, 2026 51:54


    Shane Tews — Non-Resident Senior Fellow at AEI and the person who explained the internet to Capitol Hill No Password Required Season 7: Episode 7 – Shane Tews Shane Tews is a Non-Resident Senior Fellow at the American Enterprise Institute, where she focuses on cybersecurity, privacy, artificial intelligence, and internet governance. She is also President of Logan Circle Strategies, a strategic advisory firm working at the intersection of technology and policy. Before her think tank work, Shane helped introduce modems to the George H.W. Bush White House, walked the halls of Capitol Hill explaining the internet to blank-staring legislators, and spent years at VeriSign helping shape the foundational frameworks of how the internet would be governed. In this episode, Shane traces her unlikely path from the Bush administration to becoming one of Washington's most trusted voices on tech policy. She breaks down why regulating outcomes rather than inputs is the only sensible approach to technology governance, why the US and EU are operating from fundamentally different innovation philosophies, and why a national privacy bill is long overdue. She also explains why most organizations and individuals are far less protected than they think and why nobody knows who to call when something goes wrong. Jack Clabby and co-host Kayley Melton talk with Shane about legacy system vulnerabilities, the cybersecurity implications of agentic AI, and what policymakers absolutely must get right over the next decade. She also reflects on what the CISA reauthorization limbo means for companies that don't even know they've lost liability protection. In the Lifestyle Polygraph, Shane reveals she has 20,000 emails across eight accounts, admits she fakes laughs at bad jokes out of Midwestern politeness, shares her obsession with The Bear and Peaky Blinders, and tells us about her children's book project using Google Omni called "Shane on a Train." Follow Shane on LinkedIn and on X at @ShaneTews. Find her work at AEI.org and TechPolicyDaily.com. No Password Required is presented by ThreatLocker   In this episode: Shane's path from the George H.W. Bush White House to becoming Capitol Hill's go-to internet explainer (00:34 - 02:22) Why the Clinton-era multi-stakeholder model got internet governance right and what that means for policy today (04:40 - 06:13) The case for a national privacy bill and why 50 state standards aren't working (07:24 - 09:27) What AEI covers and how Shane thinks about riding the top of the wave across the entire tech policy stack (09:35 - 11:23) Legacy systems, vendor debt, and why outdated software is the easiest entry point for bad actors (11:30 - 13:34) The gap between how protected people think they are and how exposed they actually are, including a generational perspective on MFA (14:07 - 16:25) The biggest disconnect between everyday cyber reality and the policy world (16:59 - 20:35) Government readiness for a major cyber attack and why most people don't have a plan (20:54 - 22:32) How the US and EU innovation philosophies differ and why Europe's banking system is the real tech problem (22:41 - 25:38) The DeepSeek false narrative and where the US is leading vs. reacting on AI (25:45 - 29:21) The shift from AI features to AI coordination and what agentic AI means for cybersecurity permissions (29:28 - 32:16) What policymakers must get right on AI over the next 10 years (32:25 - 34:11) The Lifestyle Polygraph: inbox chaos, fake laughs, The Bear, and Shane on a Train (00:04 - 12:48)   Timestamp Highlights: (00:34) Shane's origin story: modems at the White House and blank stares on the Hill (04:40) Why the internet got policy right early on and what we can learn from it (07:24) The case for harmonizing breach standards with a national framework (11:30) Legacy systems and vendor debt as the easiest attack vectors (14:07) The real gap between how protected people think they are and how exposed they actually are (20:54) Government cyber readiness: do you know who to call when something goes wrong? (22:41) US vs. EU innovation: why Europe's banking system is the real tech problem (29:28) Agentic AI and the cybersecurity risks of permissions you forgot you gave (32:25) What policymakers must get right on AI over the next decade (06:44) Shane on a Train: using Google Omni to write a children's book series   Resources & Links: AEI.org — Shane's think tank home base TechPolicyDaily.com — Daily tech policy coverage ThreatLocker — Supporter of this podcast Cyber Florida — The Mother Ship  

    The Shared Security Show
    Can the Government Shut Down Frontier AI Overnight?

    The Shared Security Show

    Play Episode Listen Later Jun 22, 2026 18:51 Transcription Available


    The U.S. government reportedly ordered Anthropic to suspend access to two of its newest frontier AI models, Fable 5 and Mythos 5, citing national security concerns tied to a possible jailbreak. Anthropic complied, but pushed back on the reasoning, arguing that the reported behavior was narrow and that similar capabilities already exist in other advanced AI models.In this episode, Tom, Scott, and Kevin discuss why treating AI capabilities like export-controlled technology may create more problems than it solves. The conversation connects today's AI restrictions to earlier fights over encryption export controls, hacker tools, and government attempts to regulate technical capability by banning access. The bigger concern: defenders may lose access to tools that help them find, fix, and test vulnerable code while attackers simply move to other models or providers.The team also looks at what this means for businesses using cloud-based AI tools. If an AI service can disappear because of a government order, vendor decision, or geopolitical restriction, security and engineering teams need alternatives, back-out plans, and a realistic “ripcord” strategy for mission-critical workflows.Special thanks to Guardsquare for sponsoring this episode! Guardsquare is the leader in mobile application security, with multi-layered protection for your Android and iOS apps. Learn more at Guardsquare.com.** Links mentioned on the show ** Anthropic statement: Fable/Mythos access https://www.anthropic.com/news/fable-mythos-accessReuters: US blocks foreign access to Anthropic's most advanced AI models https://www.reuters.com/technology/us-blocks-foreign-access-anthropics-most-advanced-ai-models-axios-reports-2026-06-13/Decrypt: US Government Orders Anthropic to Pull Claude Fable/Mythos AI Models https://decrypt.co/371027/us-government-orders-anthropic-pull-claude-fable-mythos-ai-modelsKatie Moussouris / Luta Security: The Fable 5 Export Controls Harm US Cyber Defensehttps://www.lutasecurity.com/post/the-fable-5-export-controls-harm-us-cyber-defense** Watch this episode on YouTube **https://youtu.be/Y62TlfnVtRg** Become a Shared Security Supporter **Get exclusive access to bonus episodes, listen to new episodes before they are released, receive a monthly shout-out on the show, and get a discount code for 15% off merch at the Shared Security store. Become a supporter today by going to our YouTube channel's membership section: https://www.youtube.com/channel/UCg9CCDIYkDDqwEZ3UYaxjnA/join** Thank you to our sponsors! **SLNTVisit slnt.com to check out SLNT's amazing line of Faraday bags and other products built to protect your privacy. As a listener of this podcast you receive 10% off your order at checkout using discount code "sharedsecurity".** Subscribe and follow the podcast **Subscribe on YouTube: https://www.youtube.com/c/SharedSecurityPodcastFollow us on Bluesky: https://bsky.app/profile/sharedsecurity.bsky.socialFollow us on Mastodon: https://infosec.exchange/@sharedsecurityJoin us on Reddit: https://www.reddit.com/r/SharedSecurityShow/Visit our website: https://sharedsecurity.netSubscribe on your favorite podcast app: https://sharedsecurity.net/subscribeSign-up for our email newsletter to receive updates about the podcast, contest announcements, and special offers from our sponsors: https://shared-security.beehiiv.com/subscribeLeave us a rating and review: https://ratethispodcast.com/sharedsecurityContact us: https://sharedsecurity.net/contact

    Dare to Disrupt
    Following Your Curiosity with Bobby Morgan

    Dare to Disrupt

    Play Episode Listen Later Jun 22, 2026 52:16


    In this episode, host Ryan Newman talks with Bobby Morgan, founder and CEO of Prosperitas Enterprises. Its flagship system, Live Prosperous, trains and inspires individuals, teams, and organizations to build the resilience and emotional strength to thrive through life's inevitable storms. He is also the founder and CEO of Talaria Media, a premium film, television, and digital media company operating out of Los Angeles and Nashville. Morgan shares his journey from growing up on his family's dairy farm to building companies focused on resilience, leadership, and storytelling. The conversation explores his early fascination with electronics and how he worked alongside his father and grandfather to integrate technology into the dairy farming process. Morgan also reflects on battling cancer while a student at Penn State, an experience that shaped his perspective on perseverance and purpose. Morgan discusses how his career led him to work with Navy SEALs and launch a startup whose first client was the White House, along with the lessons he learned operating in high-pressure environments. He also shares insights into founding and growing Talaria Media, his perspective on the current film industry landscape, and his work with the Invent Penn State Brand Academy to bring the Live Prosperous resilience training program to Penn State student-athletes. Later in the episode, current Penn State student Aryan Vir joins the conversation. Aryan is studying cybersecurity analytics and operations in the College of IST. He is the founder of Crypton, a startup focused on building identity infrastructure for a password-less internet using device-based cryptographic authentication. This past spring, Aryan participated in the Bardusch Family IdeaMakers Challenge during Penn State Startup Week. Aryan and Bobby discuss what startups should spend less time doing, how AI will impact the film and TV industry, and advice for students looking to grow their startup and know when to pivot. Episode Chapters 0:00 - 9:06 Growing up on a dairy farm, interest sparks in electronics and music 9:06 - 13:30 Battling cancer while at Penn State 13:30 - 17:48 Modernizing communications systems for Navy SEALs and Army Special Forces 17:48 - 21:42 Launching Morgan Franklin, a national security and business consulting startup 21:42 - 25:12 Inspiration behind leaving Morgan Franklin and pivoting businesses 25:12 - 32:04 A peek at some of Talaria Media's upcoming film and TV projects 32:04 - 34:57 Live Prosperous' work with The Penn State Brand Academy and Invent Penn State 34:57 - 36:13 Rapid Fire Round 36:13 - 51:38 Student Questions 36:13 - 38:08 Deciding which opportunities are worth pursuing 38:08 - 40:32 What startups should stop focusing their energy on 40:32 - 44:12 Encountering and overcoming challenges and failures 44:12 - 46:30 What would Bobby do if he had to start over from scratch 46:30 - 49:36 How AI will impact the film/media industry 49:36 - 50:45 How much curiosity is too much The Dare to Disrupt podcast is made possible by the generous support of the Penn State Smeal College of Business.

    Simply Cyber

    The stories that matter most to #cybersecurity insiders, analysts, and business leaders. Delivered every day.Get your CPEs: https://cyberthreatbrief.simplycyber.io/cpeStop ransomware without the hassle. Allow what you need and block the rest with ThreatLocker Zero Trust Platform — simple to deploy, simple to manage: https://www.threatlocker.com/dailycyberCheck out Flare.io at https://simplycyber.io/flareCheck out Pay-What-You-Can Antisyphon Training: https://simplycyber.io/antisyphonSC Academy - The Place for Cyber Careers: https://zpr.io/mYV5232V66QnJoin SC Discord: https://SimplyCyber.io/DiscordNews: https://cisoseries.comFollow SC: https://simplycyber.io/socials

    Rechtsbelehrung - Recht, Technik & Gesellschaft
    KI-Waffen – Rechtsbelehrung 148

    Rechtsbelehrung - Recht, Technik & Gesellschaft

    Play Episode Listen Later Jun 22, 2026 71:44


    Hätte der Terminator juristisch verhindert werden können? Mit dieser Frage steigen wir in ein Thema ein, das längst keine Science-Fiction mehr ist. Denn wenn Krisen und Kriege eines beschleunigen, dann die Entwicklung neuer Kriegstechnologien, und dazu gehört heute auch Künstliche Intelligenz. KI-Waffen und autonome Waffensysteme sind dabei nur die vorläufig letzte Stufe einer langen Linie. Vom Mittelalter über die Schusswaffe bis zum Kampfflugzeug hat sich die Distanz zwischen Mensch und Schlachtfeld immer weiter vergrößert. Die Entscheidung über Leben und Tod an eine Maschine zu delegieren, ist insofern die konsequente, aber rechtlich wie ethisch hochbrisante Fortsetzung dieser Entwicklung. Gemeinsam mit unserem Gast Nils Biedermann klären wir, was autonome Waffensysteme überhaupt ausmacht, ob es sie bereits gibt und wo das Völkerrecht beim Einsatz von KI im Krieg Grenzen zieht. Wir sprechen über die menschliche Kontrolle (Human in, on und out of the loop), über die Verantwortung für maschinell begangene Verbrechen, über die Anwendbarkeit des AI Act und darüber, ob der Einsatz von KI-Waffen mit der Menschenwürde vereinbar ist. Wir bedanken uns herzlichst für den Besuch und den spannnenden, wenn auch beängstigenden Blick in die Entwicklung von KI-Waffen. Euch wünschen wir viel Spaß beim Hören und freuen uns auf Eure Kommentare! Nils Biedermann, LL.M., LL.M. (LinkedIn), trägt zwei Masterabschlüsse, einen im Medienrecht und in der Medienwirtschaft, den anderen in der Rechtsinformatik. Beruflich befasst er sich mit Datenschutz, KI-Compliance, Cybersecurity, Digital Economy und Telekommunikation. Sein Forschungsinteresse gilt der rechtlichen Einordnung von KI im militärischen Kontext. Er ist Autor des Beitrags „KI-gestützte autonome Waffensysteme, Überblick und rechtliche Einordnung“ in der ersten Ausgabe der Zeitschrift Rüstung, Sicherheit & Recht (RüSiR). Kapitelmarken 00:00:00 – Einstieg ins Thema und Vorstellung des Gastes Nils Biedermann.00:05:00 – Verbotene Waffensysteme.00:08:45 – Butlerian Jihad.00:09:35 – Was sind autonome Waffensysteme (Human in/on/out of the loop)?00:15:45 – Gibt es solche vollautonomen Systeme bereits?00:18:45 – Müssen autonome Waffensysteme tödlich sein, um als solche zu gelten?00:21:00 – Wie sieht der internationale Konsens über den Einsatz autonomer KI-Waffen aus und wie wird er überprüft?00:35:00 – Ist es erforderlich, dass ein Mensch ein KI-System kontrolliert?00:37:15 – Ist es praktisch realistisch und möglich, autonome Waffensysteme zu verbieten?00:42:00 – Wer ist für die von der KI begangenen Verbrechen verantwortlich?00:50:00 – Senkt der Einsatz von KI die Hemmschwelle, andere Menschen zu töten?00:53:00 – Ist der AI Act (die KI-Verordnung) auf KI-Waffen anwendbar?00:54:00 – In welche Richtung entwickelt sich die Bundeswehr und was steht im Konzeptionspapier des Bundesverteidigungsministeriums?00:57:45 – Widerspricht der Einsatz von KI-Waffen nicht der Menschenwürde?01:01:00 – Wie sieht die künftige Entwicklung aus? Der Beitrag KI-Waffen – Rechtsbelehrung 148 erschien zuerst auf Rechtsbelehrung.

    Masters of Privacy
    Eduardo Ustaran: the status of privacy in 2026, UK-EU divergence on automated decisions

    Masters of Privacy

    Play Episode Listen Later Jun 21, 2026 25:44


    Where is the privacy-AI convergence taking us in 2026? How different is the UK's new approach to automated decision making (ADMT)? Is AI pushing young lawyers out of the profession?Eduardo Ustaran is global co-head of the Hogan Lovells Privacy and Cybersecurity practice, widely recognized as one of the world's leading privacy and data protection lawyers and thought leaders. With over 30 years of experience, our guest advises multinationals and governments around the world on the adoption of privacy and cybersecurity strategies and policies. Eduardo has been involved in the development of the EU data protection framework and was listed by Politico as the most prepared individual in its ‘GDPR power matrix'.Eduardo obtained his JD from Universidad de Navarra and an LLM in European and International Trade Law from the University of Leicester. This is our 40th and last episode in the current (10th) season. We will be back in a few weeks. Have a great summer!References:* Eduardo Ustaran at Hogan Lovells* Eduardo Ustaran on LinkedIn* AI and Automated Decision-Making in the UK (Part I): The new rules and regulatory guidance (Eduardo Ustaran, Katie McMullan, Alina Podolyak)* CCPA Updates, Cybersecurity Audits, Risk Assessments, Automated Decisionmaking Technology (ADMT), and Insurance Regulations * Eduardo Ustaran: (Spanish) Second anniversary of the GDPR (Masters of Privacy ES, May 2020) This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit www.mastersofprivacy.com/subscribe

    Cyber Security Today
    5 People You Meet In Cybersecurity - David Shipley Interviews Amy Lee

    Cyber Security Today

    Play Episode Listen Later Jun 20, 2026 29:59


    In this special Cybersecurity Today weekend interview, host David Shipley speaks with Amy Yee about leadership, resilience, and the human side of cybersecurity. Amy shares her remarkable journey from electrical engineering and venture capital to becoming the inaugural Chief Digital Officer at Accreditation Canada and Health Standards Organization, where she helped build the digital foundation used by hundreds of healthcare organizations across Canada. The conversation takes a deeply personal turn as Amy recounts leading through a ransomware attack that struck her organization before tabletop exercises and incident-response planning had become routine. She describes the chaos of the first 48 hours, the emotional toll on staff, the difficult weeks that followed, and the lessons learned during a 60-day recovery effort. Amy also discusses her popular conference talk inspired by Mitch Albom's The Five People You Meet in Heaven, reimagined for cybersecurity. She explores five people every cyber professional encounters during their career: the person they protected, the person who challenged them, the person who gave them a chance, the person they failed, and the person they inspired. This is a conversation about cybersecurity, leadership, resilience, mentorship, and finding meaning in a profession that often works behind the scenes. Topics covered: Ransomware incident response Cybersecurity leadership Healthcare cybersecurity Digital transformation Executive crisis management Building cyber resilience Career growth in technology Mentorship and leadership lessons The human side of cybersecurity Guest: Amy Yee Host: David Shipley Podcast: Cybersecurity Today #Cybersecurity #Ransomware #Leadership # Chapters 00:00 Weekend Show Intro 01:22 Amy's Career Origin 02:13 Becoming Chief Digital Officer 03:56 Ransomware Wake Up Call 06:46 Inside the First 48 Hours 08:26 The Low Point Weeks In 10:57 Finding a Path Forward 11:55 Leadership Lessons After Incidents 15:01 Five People in Cyber 17:16 Invisible Impact and Resilience 19:38 The Five Archetypes Explained 21:42 Stories From the Community 24:14 Wired for Change Podcast 27:30 Advice to Younger Amy 28:49 Closing and Off Mic Wrap

    Big Technology Podcast
    Are AI Glasses Over?, Big Technology Audience Questions, Alex Stamos on AI Cybersecurity

    Big Technology Podcast

    Play Episode Listen Later Jun 19, 2026 57:30


    Ranjan Roy from Margins is back for our weekly discussion of the latest tech news LIVE from Big Technology AI Summit. We cover: 1) Do Snapchat Specs signal the end of AR glasses 2) What should an AI device do? 3) Audience questions from the Big Technology AI Summit! 4) How should companies plan for such fast moving technology? 5) What's the ideal AI device form factor? 6) Can AI models be more useful for biology? 7) Can the U.S. and China get along on AI? 8) What responsibility do AI companies have to society? 9) Ex-Meta CSO Alex Stamos joins us to talk Fable's cyber-risks 10) Is it marketing or is it material? --- Enjoying Big Technology Podcast? Please rate us five stars ⭐⭐⭐⭐⭐ in your podcast app of choice. Want a discount for Big Technology on Substack + Discord? Here's 25% off for the first year: https://www.bigtechnology.com/subscribe?coupon=0843016b Learn more about your ad choices. Visit megaphone.fm/adchoices

    Living the Dream with Curveball
    Cybersecurity Simplified: Shane Kawalilak's Mission to Empower Everyday Users

    Living the Dream with Curveball

    Play Episode Listen Later Jun 19, 2026 28:59 Transcription Available


    Send us Fan MailSend us Fan MailIn this insightful episode of Living the Dream with Curveball, we welcome Shane Kawalilak, a seasoned cybersecurity expert and author with nearly 30 years of experience in the field. Shane is on a mission to simplify cybersecurity for everyone, from businesses to everyday users, ensuring that we all stay safe in an increasingly digital world. His book, *Don't Be the Weakest Link*, serves as a guide to understanding common cyber threats and how to combat them effectively.Shane shares his personal journey into cybersecurity and the pivotal moments that ignited his passion for educating non-technical users. He emphasizes the critical role that every individual plays in maintaining their own security and discusses the most common mistakes people make online, such as reusing passwords and falling victim to phishing attacks.Listeners will gain valuable insights into the psychological tactics used by cybercriminals and the importance of developing a cyber-secure mindset. Shane also highlights real-world examples of cyber attacks, illustrating the potential consequences for individuals and businesses alike. He offers practical advice for small business owners feeling overwhelmed by technology and shares tips for creating strong, memorable passwords.Join us for a compelling discussion that not only raises awareness about the importance of cybersecurity but also encourages listeners to foster genuine connections in a tech-driven world. Shane's insights will inspire you to take control of your online safety and make informed decisions about your digital presence.What You'll Learn in This Episode:- The significance of understanding cybersecurity beyond technical jargon- Common online mistakes and how to avoid them- The psychological tactics used by cybercriminals to manipulate users- Practical steps small business owners can take to enhance security- The future of cybersecurity in the age of AI and how to navigate it safelyFor more information on Shane Kawalilak and his work, visit http://www.dontbetheweakestlink.com and download a free copy of his book to empower yourself with essential cybersecurity knowledge.http://curveball337.redflagit.com/Support the show

    Technovation with Peter High (CIO, CTO, CDO, CXO Interviews)
    Stephen Ward on Why Great Cybersecurity Leaders Think Beyond Technology

    Technovation with Peter High (CIO, CTO, CDO, CXO Interviews)

    Play Episode Listen Later Jun 19, 2026 59:40


    Cybersecurity leadership isn’t ultimately about technology, it’s about judgment, influence, and the ability to lead through uncertainty. In this episode of Technovation, Peter High speaks with Stephen Ward, cybersecurity executive, investor, and former security leader at several large enterprises. Stephen reflects on his unconventional journey from government service to corporate cybersecurity leadership and ultimately technology investing. Along the way, he shares lessons on building security organizations, navigating risk, developing executive influence, and preparing for a future increasingly shaped by AI. Key discussion topics include: The transition from cybersecurity operator to executive leader Building trust while transforming security organizations Lessons learned from leading large-scale security programs Why leadership skills matter as much as technical expertise The evolving relationship between AI and cybersecurity What separates enduring technology companies from the rest

    ITSPmagazine | Technology. Cybersecurity. Society
    Call It What It Is: When Ransomware Becomes Terrorism | An Interview with Cynthia Kaiser | Redefining CyberSecurity With Sean Martin — On Location at InfoSecurity Europe 2026

    ITSPmagazine | Technology. Cybersecurity. Society

    Play Episode Listen Later Jun 19, 2026 16:18


    A ransomware crew can run through your whole company between dinner and dessert. Sean Martin sat down with Cynthia Kaiser — twenty years at the FBI, now leading the Halcyon Ransomware Research Center — on the speed of the threat, the human cost the industry keeps abstracting away, and why a slice of ransomware deserves a harder name than “crime.”

    Cyber Security Today
    FortiBleed Emergency: 74,000 Fortinet Logins Exposed

    Cyber Security Today

    Play Episode Listen Later Jun 19, 2026 40:12


    A special crossover episode of Cybersecurity Today and Hashtag Trending for June 19, 2026. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning after security researchers uncovered the FortiBleed dataset, exposing credentials tied to approximately 74,000 Fortinet firewall and SSL VPN devices across 194 countries. Researchers found the data on an exposed threat actor server containing attack tools, victim databases, logs, and thousands of verified usernames and passwords. Analysts report that tens of thousands of those credentials may still be active. Host Jim Love breaks down: • What FortiBleed is and how it was discovered • Why this affects roughly half of all internet-facing Fortinet devices • What CISA and Fortinet are telling organizations to do immediately • The potential risks of credential reuse and lateral movement attacks • Practical steps security teams should take right now The episode also includes an interview with Mike Sweeney of Silent Push on major international efforts targeting Southeast Asian scam compounds and criminal infrastructure during Operation Disruption Week. If your organization uses Fortinet firewalls, FortiGate appliances, or SSL VPNs, this is an episode you should not miss. #Cybersecurity #Fortinet #FortiBleed #CISA #CybersecurityToday #HashtagTrending #FortiGate #ThreatIntelligence #DataBreach #InfoSec

    Breaking Into Cybersecurity
    Intern to Founder | Justin Collins | Breaking Into Cyber

    Breaking Into Cybersecurity

    Play Episode Listen Later Jun 19, 2026 42:14


    Intern to Founder | Justin Collins | Breaking Into CyberEpisode SummaryIn this episode, Justin Collins shares his unique journey from a PhD student in Computer Science to becoming a key figure in the application security space. Justin explains how a funding shortage led him to a life-changing internship at AT&T Interactive, where he combined his passion for compiler theory with cybersecurity to create the open-source tool Brakeman. We dive into how he balanced a full-time job while co-founding a startup and the importance of preparation when breaking into a new field.Key Takeaways- Preparation as a Differentiator: Justin secured his first security role simply by researching the specific topics (SQL injection and XSS) the interviewers mentioned beforehand—a step many other candidates neglected.- Applying Niche Skills to Security: Rather than starting from scratch, Justin leveraged his deep knowledge of programming languages and compilers to build a static analysis tool, proving that specialized non-security backgrounds are highly valuable.- The Power of Open Source: Developing and open-sourcing Brakeman during an internship served as a massive career catalyst, eventually leading to a business acquisition.- The "Side-Hustle" Startup Model: Justin highlights that successful startups don't always require VC funding or fancy offices; his company was built while the founders maintained their "real" jobs.- Negotiating Flexibility: Early in his career, Justin successfully negotiated a part-time security role, which allowed him to support his family while simultaneously building his own business.Resources Mentioned- Brakeman: The open-source static analysis security tool for Ruby on Rails created by Justin.- OWASP: Cited as a critical resource for learning about web vulnerabilities like SQL injection and XSS.- Ruby on Rails: The programming framework that served as the foundation for Justin's early work.- Black Duck (formerly Synopsys): The company that eventually acquired Justin's startup.About the GuestJustin Collins is a cybersecurity expert and the creator of Brakeman, a widely used static analysis tool for Ruby on Rails. With an extensive background in Computer Science and programming languages, Justin transitioned from academia to entrepreneurship, co-founding a boutique security firm that was later acquired by Synopsys. He is a specialist in application security and program analysis.Sponsored by CPF Coaching LLC - http://cpf-coaching.comCheck out our books:

    Breaking Into Cybersecurity
    IAM & CEO Journey | Archit Lohokare | BIC

    Breaking Into Cybersecurity

    Play Episode Listen Later Jun 19, 2026 30:23


    IAM & CEO Journey | Archit Lohokare | BICDiscover how to break into cybersecurity by mastering foundational technologies like cryptography and scaling your career from engineer to CEO with Archit Lohokare. In this episode, we explore the mindset required to build secure enterprise systems from the ground up.- How building the RSA algorithm from scratch launched Archit's career.- The evolution of Identity and Access Management (IAM) in enterprise environments.- Transitioning from a founding full-stack engineer to a high-level leader.- Why curiosity is the most critical skill for modern security professionals.- Lessons on building secure, scalable systems in a fast-moving startup.Archit Lohokare is an experienced cybersecurity leader and current CEO with over 22 years of industry expertise. He began his journey as a founding engineer at Incentuate, where he developed deep technical proficiency in identity, access management, and hardware-level security.Sponsored by CPF Coaching LLC - http://cpf-coaching.comThe Breaking into Cybersecurity: It's a conversation about what they did before, why they pivoted into cyber, what the process was they went through, how they keep up, and advice/tips/tricks along the way.The Breaking into Cybersecurity Leadership Series is an additional series focused on cybersecurity leadership and hearing directly from different leaders in cybersecurity (high and low) on what it takes to be a successful leader. We focus on the skills and competencies associated with cybersecurity leadership, as well as tips/tricks/advice from cybersecurity leaders.Check out our books:

    TWiRT - This Week in Radio Tech - Podcast
    TWiRT 805 - FCC Mandatory Cybersecurity for Broadcasters

    TWiRT - This Week in Radio Tech - Podcast

    Play Episode Listen Later Jun 19, 2026


    Cybersecurity is no longer just an IT department concern — it is becoming a broadcast engineering issue, and possibly soon, a regulatory one as well. On episode 805 of This Week in Radio Tech, we’re joined by three experienced broadcast engineers from Georgia and South Carolina: John George, Charles Kinney, and Earl Welsh. We’re talking just ahead of the Georgia-Lina Broadcast Engineering Conference in Augusta, Georgia, and our topic is both timely and practical: the FCC’s proposed cybersecurity rules for broadcasters, especially as they relate to EAS equipment, studio-transmitter links, remote access, and other internet-facing systems that can affect what goes on the air. We’ll discuss what the FCC appears to be concerned about, why default passwords and exposed web interfaces are no longer just “bad practice,” and what station engineers can do now to improve security before a rulemaking turns into a compliance deadline. This is not a theoretical conversation — it is about real broadcast facilities, real equipment, and real operational risks. Join us for episode 805 of This Week in Radio Tech as we look at cybersecurity through the eyes of working broadcast engineers. Show Notes:Radio World: “FCC Set to Require EAS Firewalls and Unique Passwords”Broadcast Law Blog: Summary of the FCC’s proposed rulemaking on this topic GuestsJohn George - Owner at Broadtech ServiceCharles Kinney - Director of Engineering at Cox Media Group, AtlantaEarl Welsh - Owner at Advanced Communications Host:Kirk Harnack, MaxxKonnect, Delta Radio, Star94.3, South Seas, & Akamai BroadcastingFollow TWiRT on Twitter and on Facebook - and see all the videos on YouTube.TWiRT is brought to you by:Broadcasters General Store, with outstanding service, saving, and support. Online at BGS.cc. Broadcast Bionics - making radio smarter with Bionic Studio, visual radio, and social media tools at Bionic.radio.Aiir, providing PlayoutONE radio automation, and other advanced solutions for audience engagement.Angry Audio and the new USB Phone Gizmo - Put VoIP callers on-the-air The new MaxxKonnect RMT416 Multi Tuner - 4 to 16 AM/FM/WB/HD web-connected tuners in 1 RU Subscribe to Audio:iTunesRSSStitcherTuneInSubscribe to Video:iTunesRSSYouTube

    SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast
    SANS Stormcast Thursday, June 18th, 2026: QUIC Challenge; Android 17; Oracle CSPU; JetBrains Plugins;

    SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast

    Play Episode Listen Later Jun 18, 2026 6:24


    The browser blind spot: Why your security tool may not be blocking what you think it is [Guest Diary] https://isc.sans.edu/diary/The%20browser%20blind%20spot%3A%20Why%20your%20security%20tool%20may%20not%20be%20blocking%20what%20you%20think%20it%20is%20%5BGuest%20Diary%5D/33084 Android 17 Security Patches https://source.android.com/docs/security/bulletin/android-17 Oracle Critical Security Patch Update Advisory - June 2026 https://www.oracle.com/security-alerts/cspujun2026.html Multiple JetBrains IDE plugins caught stealing AI keys https://www.aikido.dev/blog/multiple-jetbrains-ide-plugins-caught-stealing-ai-keys My Upcoming Classes https://www.sans.org/profiles/dr-johannes-ullrich

    The 30 Minute Hour™

    Most leaders think cybersecurity is about protection…But what if that mindset is actually slowing your business down? ⚠️In this episode, we sit down with Adam Palmer, Global Chief Information Security Officer for a $30B financial institution, to break down the costly misconceptions CEOs make—and how elite leaders turn cyber risk into strategic advantage.

    The Cybertraps Podcast
    INCH360 2025: Benjamin Ross

    The Cybertraps Podcast

    Play Episode Listen Later Jun 18, 2026 10:23


    This episode is a part of a special series of interviews conducted at the INCH360 Cybersecurity Conference in Spokane, Washington. Visit their website to learn more about INCH360 and their mission. Host Jethro D. Jones talks with Benjamin Ross of Torchlight about bringing enterprise-level IT and cybersecurity to small and medium businesses. Benjamin shares insights on the importance of human connection, long-term relationships, and community in the tech industry, emphasizing that technology should serve people and foster positive impact beyond just business outcomes. We're thrilled to be sponsored by IXL and Renaissance. IXL's comprehensive teaching and learning platform for math, language arts, science, and social studies is accelerating achievement in 95 of the top 100 U.S. school districts. Loved by teachers and backed by independent research from Johns Hopkins University, IXL can help you do the following and more:Simplify and streamline technologySave teachers' timeReliably meet Tier 1 standardsImprove student performance on state assessments

    SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast
    SANS Stormcast Wednesday, June 17th, 2026: VHDX to Remocs RAT; Fake Job Offer; OpenBSD Vuln; Copilot M365 Leakage

    SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast

    Play Episode Listen Later Jun 17, 2026 8:07


    From a VHDX File to a Remcos RAT https://isc.sans.edu/diary/From%20a%20VHDX%20File%20to%20a%20Remcos%20RAT/33080 A backdoor in a LinkedIn job offer https://roman.pt/posts/linkedin-backdoor/ A 27-Year-Old Authentication Bypass in OpenBSD's PPP Stack https://blog.argus-systems.ai/blog/openbsd-pap-27-year-auth-bypass.html Copilot M365 Data Leakage https://www.varonis.com/blog/searchleak My Upcoming Classes https://www.sans.org/profiles/dr-johannes-ullrich

    The Thoughtful Entrepreneur
    2443 - What Every Accountant Needs to Know About Cybersecurity Compliance in the Age of AI with CardinalsByte's Michele Novack

    The Thoughtful Entrepreneur

    Play Episode Listen Later Jun 17, 2026 19:16


    The AI-Driven Threat Matrix: Architectural Cybersecurity and Compliance for Small Firms with Michele NovackIn a recent episode of The Thoughtful Entrepreneur Podcast, host Josh Elledge sat down with Michele Novack, the host and founder of Cardinalsbyte, to break down the rapidly evolving cyber vulnerabilities that threaten the financial solvency of small businesses. As a veteran risk strategist specializing in the financial services sector, Michele highlights how CPAs, accountants, and tax professionals have become prime targets for sophisticated, automated digital attacks. This conversation delivers an intentional operational roadmap for mid-market founders and executive teams looking to navigate tightening federal mandates, identify hidden security gaps within their existing infrastructure, and defend their enterprise value against highly advanced, AI-powered corporate fraud.The Anatomy of Digital Defense: Mitigating Algorithmic Vulnerabilities through Zero-Trust ProtocolsThe rapid proliferation of consumer-facing artificial intelligence has weaponized the digital threat landscape, enabling bad actors to execute automated, hyper-personalized social engineering campaigns at an unprecedented scale. Michele Novack cautions that small businesses can no longer rely on traditional, passive firewall defenses as cybercriminals increasingly deploy sophisticated voice cloning, automated phishing sequences, and deepfake video streams to bypass conventional security guardrails. A single compromised corporate email account can result in catastrophic financial loss, as demonstrated by emerging corporate wire fraud schemes where payroll managers are manipulated by synthetic, AI-generated replicas of their CEO during live video conferences. To counter this automated disruption, executive leadership must enforce rigid, non-negotiable zero-trust verification protocols—requiring multi-channel, manual confirmation for all financial movements and high-stakes data extractions completely independent of digital messaging networks.Insulating a firm against regulatory penalties and liability requires a disciplined commitment to formalizing internal data compliance programs rather than treating security as an ad-hoc IT checklist. Tightening federal mandates, such as the revised FTC Safeguards Rule and IRS security guidelines, now legally obligate financial services providers to maintain comprehensive, written documentation detailing their operational defenses. Many business owners operate under the dangerous assumption that their external Managed Service Provider (MSP) inherently handles regulatory compliance, leaving the enterprise exposed to massive liability gaps due to a complete lack of formal Written Information Security Programs (WISPs) and documented Incident Response Plans (IRPs). True enterprise resilience is achieved when leadership takes proactive ownership of corporate compliance, closing security gaps by performing routine endpoint audits, implementing geographical IP blocking, and maximizing the advanced, built-in security features native to enterprise cloud suites like Microsoft 365 or Google Workspace.Transforming an organization's digital posture ultimately relies on establishing a transparent, security-first corporate culture that bridges the gap between complex technical tools and human operational habits. Because human manipulation remains the primary vector for enterprise data breaches, continuous, jargon-free employee training is a vital piece of operational infrastructure. Rather than deploying clinical, one-and-done IT lectures that fail to change day-to-day employee behavior, founders must implement continuous, interactive education loops and safe phishing simulations that sharpen frontline skepticism. When clear behavioral habits, automated endpoint monitoring, and verified compliance documentation are synthesized under a unified governance architecture, a business successfully limits its operational risk. This proactive stance converts cybersecurity from a costly technical burden into a powerful, high-valuation corporate asset that fiercely protects the organization's market authority.About Michele NovackMichele Novack is the host, founder, and chief risk strategist of Cardinalsbyte, and a premier authority on small business data security and financial compliance management. Drawing from decades of specialized experience within the financial services and accounting sectors, Michele focuses on demystifying complex technical architecture to make regulatory frameworks accessible for corporate executives. She is a dedicated educator and advisor who specializes in constructing high-accountability cyber defense models designed to protect small-to-mid-sized enterprises from advanced electronic corporate theft.About CardinalsbyteCardinalsbyte is an elite risk management and cybersecurity compliance consultancy that provides custom data-protection solutions, vulnerability assessments, and regulatory mapping for professional services firms. The company specializes in translating complex federal guidelines, such as NIST frameworks and IRS mandates, into actionable corporate playbooks including Written Information Security Programs (WISPs). Through proactive technical testing, executive risk summaries, and white-glove incident response coordination, Cardinalsbyte enables mid-market organizations to eliminate administrative security debt and shield their bottom lines from systemic digital threats.Links Mentioned in This EpisodeCardinalsbyte Compliance Partner Page: cardinalsbytes.com/compliance-partnerMichele Novack on LinkedIn: linkedin.com/in/cardinalsbyte-mnovackKey Episode HighlightsThe AI Weaponization Trap: Analyzing how deepfakes, automated voice cloning, and synthetic media bypass traditional corporate communication filters to enable catastrophic wire fraud.The MSP Compliance Gap: Understanding why standard IT vendors fail to provide mandatory regulatory documentation, and how to self-correct using structured WISPs.Maximizing Built-In Cloud Security: Leveraging and configuring the advanced, pre-existing anti-phishing dashboards embedded within Microsoft 365 and Google Workspace.The Multi-Channel Verification Mandate: Implementing mandatory human-in-the-loop protocols that require dual physical authorization for high-volume financial movements.Building a Skeptical Corporate Culture: Shifting internal security training from a static annual checklist into continuous, interactive education that reduces human error on the frontline.ConclusionThe conversation with Michele Novack underscores that true cybersecurity resilience is an ongoing exercise in structural governance and human vigilance rather than an expensive software purchase. By standardizing internal corporate compliance, executing rigorous endpoint audits, and building an inclusive culture of behavioral accountability, business leaders can transform a vulnerable digital setup into a highly secure, enterprise-grade corporate asset.More from The Thoughtful Entrepreneur

    SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast
    SANS Stormcast Tuesday, June 16th, 2026: BASE64 Statistics; Cisco SD-WAN Exploited; AMD TSME Disabled; Poisoning Deep Research Agents

    SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast

    Play Episode Listen Later Jun 16, 2026 6:14


    Evil MSI Background: BASE64 Statistical Analysis https://isc.sans.edu/diary/Evil%20MSI%20Background%3A%20BASE64%20Statistical%20Analysis/33072 Cisco Catalyst SD-WAN Manager Arbitrary File Write Vulnerability https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-arbfw-c2rZvQ TSME/SME not activating on Ryzen 7 9700X https://github.com/AMDESE/AMDSEV/issues/292 Deep-Research Agents Can Be Poisoned via User-Generated Content https://arxiv.org/pdf/2605.24245 My Upcoming Classes https://www.sans.org/profiles/dr-johannes-ullrich

    Marketplace Tech
    It's a tough time to break into cybersecurity

    Marketplace Tech

    Play Episode Listen Later Jun 15, 2026 5:12


    On today's episode, Marketplace's Meghan McCarty Carino walks us through how AI is making it harder to break into the cybersecurity sector.

    Marketplace All-in-One
    It's a tough time to break into cybersecurity

    Marketplace All-in-One

    Play Episode Listen Later Jun 15, 2026 5:12


    On today's episode, Marketplace's Meghan McCarty Carino walks us through how AI is making it harder to break into the cybersecurity sector.

    SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast
    SANS Stormcast Monday, June 15th, 2026: Arch Linux Malicious User Packages; Splunk Vuln and Exploit; Exploiting AI Coding Agents

    SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast

    Play Episode Listen Later Jun 15, 2026 6:50


    Atomic Arch: Attackers Hijack Trusted AUR Packages to Deliver Rootkit-Like Malware https://www.sonatype.com/blog/atomic-arch-npm-campaign-adds-malicious-dependency Why Use App-Level Auth When Every Database Has Auth? (Splunk Enterprise CVE-2026-20253 Pre-Auth RCE) https://labs.watchtowr.com/why-use-app-level-auth-when-every-database-has-auth-splunk-enterprise-cve-2026-20253-pre-auth-rce/ A Fake Bug Report Hijacks Your AI Coding Agent and Nothing Catches It. https://tenetsecurity.ai/blog/agentjacking-coding-agents-with-fake-sentry-errors/ My Upcoming Classes https://www.sans.org/profiles/dr-johannes-ullrich