Podcasts about Data security

AI is reshaping innovation as businesses embed it into core operations and move more processes online. This transformation is often seen as a tradeoff between innovation and data risk, but that assumption is wrong. Businesses can innovate and scale in the AI era while maintaining strong data security, ensuring protection, compliance, and control remain intact. Segment Resources: Check out these assets from Fortra for more information around Data Security for AI. Learn more about our Data Security suite: https://www.fortra.com/solutions/data-protection Get the ungated guide: Secure AI Innovation > https://www.fortra.com/resources/guides/secure-ai-innovation Read the blog: Staying Compliant While Using AI: What CISOs Need to Know https://www.fortra.com/blog/staying-compliant-while-using-ai-what-cisos-need-know This segment is sponsored by Fortra. Visit https://securityweekly.com/fortra to learn more about them! In the leadership and communications segment, Lost in translation: Cybersecurity board reporting for CISOs, AI may finally unlock the cyber budgets CISOs have wanted for years, How People Actually Get to the C-Suite in S&P 500 Companies, and more! Visit https://www.securityweekly.com/bsw for all the latest episodes! Show Notes: https://securityweekly.com/bsw-451

AI is reshaping innovation as businesses embed it into core operations and move more processes online. This transformation is often seen as a tradeoff between innovation and data risk, but that assumption is wrong. Businesses can innovate and scale in the AI era while maintaining strong data security, ensuring protection, compliance, and control remain intact. Segment Resources: Check out these assets from Fortra for more information around Data Security for AI. Learn more about our Data Security suite: https://www.fortra.com/solutions/data-protection Get the ungated guide: Secure AI Innovation > https://www.fortra.com/resources/guides/secure-ai-innovation Read the blog: Staying Compliant While Using AI: What CISOs Need to Know https://www.fortra.com/blog/staying-compliant-while-using-ai-what-cisos-need-know This segment is sponsored by Fortra. Visit https://securityweekly.com/fortra to learn more about them! In the leadership and communications segment, Lost in translation: Cybersecurity board reporting for CISOs, AI may finally unlock the cyber budgets CISOs have wanted for years, How People Actually Get to the C-Suite in S&P 500 Companies, and more! Show Notes: https://securityweekly.com/bsw-451

AI is reshaping innovation as businesses embed it into core operations and move more processes online. This transformation is often seen as a tradeoff between innovation and data risk, but that assumption is wrong. Businesses can innovate and scale in the AI era while maintaining strong data security, ensuring protection, compliance, and control remain intact. Segment Resources: Check out these assets from Fortra for more information around Data Security for AI. Learn more about our Data Security suite: https://www.fortra.com/solutions/data-protection Get the ungated guide: Secure AI Innovation > https://www.fortra.com/resources/guides/secure-ai-innovation Read the blog: Staying Compliant While Using AI: What CISOs Need to Know https://www.fortra.com/blog/staying-compliant-while-using-ai-what-cisos-need-know This segment is sponsored by Fortra. Visit https://securityweekly.com/fortra to learn more about them! In the leadership and communications segment, Lost in translation: Cybersecurity board reporting for CISOs, AI may finally unlock the cyber budgets CISOs have wanted for years, How People Actually Get to the C-Suite in S&P 500 Companies, and more! Visit https://www.securityweekly.com/bsw for all the latest episodes! Show Notes: https://securityweekly.com/bsw-451

AI is reshaping innovation as businesses embed it into core operations and move more processes online. This transformation is often seen as a tradeoff between innovation and data risk, but that assumption is wrong. Businesses can innovate and scale in the AI era while maintaining strong data security, ensuring protection, compliance, and control remain intact. Segment Resources: Check out these assets from Fortra for more information around Data Security for AI. Learn more about our Data Security suite: https://www.fortra.com/solutions/data-protection Get the ungated guide: Secure AI Innovation > https://www.fortra.com/resources/guides/secure-ai-innovation Read the blog: Staying Compliant While Using AI: What CISOs Need to Know https://www.fortra.com/blog/staying-compliant-while-using-ai-what-cisos-need-know This segment is sponsored by Fortra. Visit https://securityweekly.com/fortra to learn more about them! In the leadership and communications segment, Lost in translation: Cybersecurity board reporting for CISOs, AI may finally unlock the cyber budgets CISOs have wanted for years, How People Actually Get to the C-Suite in S&P 500 Companies, and more! Show Notes: https://securityweekly.com/bsw-451

Colorectal cancer is now the #1 cancer killer in Americans under 50 — and roughly 60% of cases are diagnosed at stage III or IV. What if your toilet could spot the earliest sign years before symptoms?Robert Lufkin MD sits down with Scott Hickle, co-founder and CEO of Throne Science, to talk about the first AI-powered smart toilet — a hands-free, daily monitor that detects fecal occult blood, tracks gut microbiome shifts, measures hydration and prostate health via sonouroflowmetry, and uses AI to coach behavior change. We unpack why your waste is the richest health signal you currently ignore, the Warren Buffett car-sensor analogy for continuous health monitoring, the 46% hemorrhoid risk from phone use on the toilet, and Throne's 10-year vision to be the first alarm system for cancer.CHAPTERS00:00 — Introduction01:14 — Meet Scott Hickle: From Mechanical Engineer to Smart Toilet CEO03:00 — How a Call With His Mom Sparked the Throne Idea05:02 — Why Your Waste Is the Richest Health Signal You Ignore07:02 — How Modern Plumbing Made Stool Analysis Taboo10:02 — Fecal Occult Blood: The Earliest Sign of Colorectal Cancer13:02 — Why Colorectal Cancer Is Now the #1 Cancer Killer Under 5014:30 — The Warren Buffett Car Sensor Analogy for Continuous Health Monitoring16:03 — Throne vs Gut Microbiome Tests: A CGM for Your Gut18:03 — Stress Is the #1 Driver of Gut Health (And Other Self-Experiments)22:04 — The 46% Hemorrhoid Risk From Phone Use on the Toilet24:04 — How the Throne Hardware and AI Software Actually Work27:00 — Sonouroflowmetry: Measuring Prostate Health From the Sound of Your Pee29:05 — Privacy, Data Security, and Camera Placement31:05 — Medical Advisors, Clinical Studies, and FDA Pathway34:06 — The AI Gut Health Coach and Behavior Change37:06 — The 10-Year Vision: A First Alarm System for Cancer40:07 — Where to Pre-Order Throne (thronescience.com)KEY TAKEAWAYSColorectal cancer is the only top-five cancer whose mortality has risen every year since 2005 — and it's now the #1 cancer killer in Americans under 50.Polyps take 7–10 years to become tumors. Colorectal cancer is one of the few cancers we know how to cure before it becomes cancer — but only 3–6% of people return the at-home FIT test.Visible blood in stool requires 40,000–50,000 µg of hemoglobin per gram. The FIT test detects 10–20 µg/g — about 8,000× more sensitive than what your eye can see.A single bleed could be a hemorrhoid or food poisoning. A monotonic four-to-six-month rising trend is the pattern that signals colorectal cancer — and you can only see patterns with continuous monitoring.Stress is the #1 driver of gut health in Scott's own n=1 self-experiments — bigger than any food, supplement, or fiber intervention he's tried.Sitting on the toilet with a phone for more than 5 minutes is associated with a 46% increased risk of hemorrhoids (Inan et al., PLOS One 2025).STUDIES & SOURCES MENTIONEDAmerican Cancer Society / JAMA, January 2026 — Cancer mortality decline under 50 — https://pressroom.cancer.org/under-50-mortality-declinesInan et al., PLOS One 2025 — Smartphone use on the toilet and hemorrhoid risk — https://pubmed.ncbi.nlm.nih.gov/40901789/Scott Hickle, TEDxBoston — "The History and Power of Poop" — https://www.youtube.com/watch?v=v42gznW6cuADr. David Rubin, MD, University of Chicago (Throne medical advisor) — ⭐ Enjoying the show? Please leave a 5-star review on Apple Podcasts — it takes 30 seconds and helps more people discover the science of health and longevity. Thank you!New episodes every Tuesday & Thursday. Subscribe so you don't miss one.Continue this conversation on Substack: https://robertlufkinmd.substack.comLies I Taught In Medical School — Free sample chapter: https://www.robertlufkinmd.com/lies/Web: https://www.robertlufkinmd.comYouTube: https://www.youtube.com/robertlufkinmdX: https://x.com/robertlufkinmdInstagram: https://www.instagram.com/robertlufkinmd/TikTok: https://www.tiktok.com/@robertlufkinLinkedIn: https://www.linkedin.com/in/robertlufkinmd/

AI-agents worden steeds krachtiger en autonomer, maar organisaties worstelen met de beveiliging ervan. Filip Verloy (CTO EMEA & APJ bij Rubrik) legt uit waarom 83% van de organisaties geen overzicht heeft over hun AI-agents en hoe je deze autonome systemen veilig naar productie kunt brengen.In deze aflevering bespreken we de unieke uitdagingen van AI-agent security. Traditionele guardrails schieten tekort omdat AI-agents probabilistisch en onvoorspelbaar zijn. Verloy legt SAGE uit (Semantic AI Governance Engine), een small language model dat de intentie van agents analyseert en real-time kan ingrijpen wanneer agents buiten hun governance framework opereren.Je leert over prompt injection attacks, shadow AI-risico's, de verschillen tussen platform-native guardrails en external governance, en hoe Agent Rewind essentieel kan zijn als laatste verdedigingslinie. Een must-watch voor iedereen die met AI-agents werkt of deze wil implementeren.Key takeaways:• 83% van organisaties heeft geen volledig overzicht van hun AI-agents• Lokale agent guardrails zijn onvoldoende door de probabilistische aard van LLMs• SAGE gebruikt een small language model om agent-intenties te beoordelen• Runtime-blocking voorkomt dat agents destructieve acties uitvoeren• Agent Rewind maakt datarecovery mogelijk na agent-fouten• Platform integraties met Copilot Studio, AWS Bedrock en coding assistants• MCP-protocol mist security features ("de S in MCP staat voor security")Chapters:0:11 - Introductie AI-agent security1:16 - Van pilot naar productie2:09 - Shadow AI en agent-overzicht5:23 - Guardrails en governance9:10 - SAGE: Semantic AI Governance Engine28:43 - Agent Rewind en data recovery31:24 - Marktpositie en toekomst#AIAgents #AIGovernance #CyberSecurity #Rubrik #AISafety #MachineLearning #EnterpriseAI #DataSecurity #AICompliance

Security magazine takes a look at 7 data security stories from this month.

Our Data Security Policy Is Transparent in That It Doesn't Exist All links and images can be found on CISO Series This week's episode is hosted by David Spark, producer of CISO Series, and Mike Johnson, CISO, Rivian. Joining is Mike Melo, CISO, TMX Group. In this episode: The weight of old controls Data you can actually see 68 vendors and counting Authority you never had to claim A huge thanks to our sponsor, Vanta Still stuck on the quarterly audit treadmill? Meet Calm-pliance. Vanta combines compliance, risk, and proof on one Agentic Trust Platform—and continuously monitors your controls, keeping you audit-ready all year round. Find your Calm-pliance here.

Guest: Paula Martini | Author and Owner of Co-Travel Wasanga Mehane speaks to Paula Martini, owner of Co-Travel and travel writer, about data privacy concerns surrounding visa application processing, as well as travel insurance options that may provide cover for visa delays, denials and related travel disruptions. Early Breakfast with Africa Melane is 702’s and CapeTalk’s early morning talk show. Experienced broadcaster Africa Melane brings you the early morning news, sports, business, and interviews politicians and analysts to help make sense of the world. He also enjoys chatting to guests in the lifestyle sphere and the Arts. All the interviews are podcasted for you to catch-up and listen. Thank you for listening to this podcast from Early Breakfast with Africa Melane For more about the show click https://buff.ly/XHry7eQ and find all the catch-up podcasts here https://buff.ly/XJ10LBU Listen live on weekdays between 04:00 and 06:00 (SA Time) to the Early Breakfast with Africa Melane broadcast on 702 https://buff.ly/gk3y0Kj and CapeTalk https://buff.ly/NnFM3N Subscribe to the 702 and CapeTalk daily and weekly newsletters https://buff.ly/v5mfetc Follow us on social media: 702 on Facebook: https://www.facebook.com/TalkRadio702 702 on TikTok: https://www.tiktok.com/@talkradio702 702 on Instagram: https://www.instagram.com/talkradio702/ 702 on X: https://x.com/Radio702 702 on YouTube: https://www.youtube.com/@radio702 CapeTalk on Facebook: https://www.facebook.com/CapeTalk CapeTalk on TikTok: https://www.tiktok.com/@capetalk CapeTalk on Instagram: https://www.instagram.com/ CapeTalk on X: https://x.com/CapeTalk CapeTalk on YouTube: https://www.youtube.com/@CapeTalk567 See omnystudio.com/listener for privacy information.

Send us Fan MailYour firewall can be patched tomorrow, but what about the place your system hides its real secrets today? We start with a timely warning about a serious Fortinet FortiGate vulnerability and why perimeter devices are still a make-or-break control, then we pivot into the deeper layer most people ignore until it's too late: memory.We walk through CISSP Domain 3.4 by focusing on what memory protection is actually trying to achieve: confidentiality, integrity, and process isolation. From there, we unpack how modern operating systems enforce separation with paging, segmentation, and strict read, write, execute controls. You'll hear why Meltdown and Spectre were such a big deal, how speculative execution can leak passwords and encryption keys from privileged memory, and why patching decisions are never just “apply everything” but a risk-based vulnerability management call that depends on visibility into what you run.Next, we connect memory protection to virtualization security. We break down hypervisors, guest and host isolation, Type 1 versus Type 2 designs, and the threats that keep security teams up at night: VM escape, side-channel leakage through shared CPU resources, and the operational hazards of memory overcommitment. Then we bring in hardware roots of trust through TPMs: secure boot, measured boot, key storage for full disk encryption, TPM 2.0 types, and how HSM-style key management shows up in cloud environments. We close with practical best practices, from firmware and microcode updates to choosing encryption controls that fit your actual risk.If you're studying for the CISSP or building a real-world security strategy, subscribe, share this with a teammate, and leave a review so more security pros can find it.Gain exclusive access to 360 FREE CISSP Practice Questions at FreeCISSPQuestions.com and have them delivered directly to your inbox!  Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Send us Fan MailYour security program can be airtight and still get wrecked by someone else's breach. We open with a Wired-style reality check: third-party app ecosystems and data brokers collecting location analytics at massive scale, then getting hacked or resold in ways your users never expected. If your organisation issues mobile devices, this is where security awareness, MDM controls, and clear “don't allow tracking unless required” guidance stops being a nice-to-have and starts becoming risk reduction.From there, we dig into CISSP Domain 2.3: provisioning resources securely, with the mindset of a senior security professional. We walk through information ownership versus asset ownership, why “IT owns the data” is often the wrong answer, and how classification (public, internal, confidential and beyond) drives least privilege and need-to-know access. We also cover the practical friction points: owners who don't realise they're owners, systems spread across teams, and the need to document decisions so risk acceptance is explicit instead of accidental.We then connect the dots across asset management, configuration management systems, and modern cloud operations. Expect talk on lifecycle tracking, secure disposal, rogue devices and shadow IT, plus the unique headaches of virtual sprawl, snapshots, tagging, data residency, and the cloud shared responsibility model. If you're studying for the CISSP exam or trying to run a cleaner security programme at work, you'll leave with a clearer map of what to inventory, who to hold accountable, and which controls keep resources from drifting into chaos.Subscribe for weekly CISSP-focused training, share this with a teammate who manages cloud or endpoints, and leave a review with the hardest “ownership” problem you've seen in the wild.Gain exclusive access to 360 FREE CISSP Practice Questions at FreeCISSPQuestions.com and have them delivered directly to your inbox!  Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Omdia's Scott Sinclair discusses how Enterprise AI is driving infrastructure modernization, the critical role of Data Security, and the unprecedented...

In this session of UC Today, host Kristian McCann sits down with Simon Peters, Director of Channel Sales at Smarsh, to unpack one of the most pressing questions facing regulated industries in 2026: Is your compliance solution really secure — and is its AI even compliant?It's a wake-up call for compliance, risk, and IT leaders who assume ticking the compliance box equals airtight data protection. As global fines for compliance and data breaches continue to climb — including over $63 million in penalties in early 2025 alone — this conversation exposes the two blind spots most organizations still overlook.Peters explains how compliance and security aren't interchangeable, why third-party AI models can create new compliance gaps, and how Smarsh has built “compliant AI by architecture” — keeping all data, transcripts, and analysis inside customers' own sovereign environments.Key discussion points include:Why compliance ≠ security — and how most tools leave key data unprotectedThe hidden AI compliance gap: when “smart” systems leak sensitive data externallyHow Smarsh's regional AI architecture ensures zero data leakage and full audit readinessThe real-world consequences of breaches — from SEC fines to reputational damageNext steps:Visit Smarsh.com to download the “Compliance Must-Haves” checklist and the Seven Hidden Voice Data Risks guide.

Watch the full episode: https://youtu.be/2aPU-4PUXNk  In this spotlight of episode 357, Charlie Malouf and Lee Vang talk about the importance of leveraging large language models to explore the massive trove of organizational data, delving into overlooked areas for new insights. They emphasize the critical need to maintain data integrity and discuss strategies for protecting sensitive information. This includes adopting a "fortress security mindset"—traditionally used in network or infrastructure security—and applying it to data management. The discussion also highlights challenges such as determining the appropriate level of data access, weighing whether to share a decade's worth of information or limiting access to just the current fiscal year to mitigate exposure risks. Visit https://www.storiesfromtheriver.com for more episodes.    Broad River Retail brought this show to you. Visit https://BroadRiverRetail.com    Follow us on LinkedIn: https://www.linkedin.com/company/broad-river-retail   

Keep AI agents operating under control and within your data security and compliance policies using Agent 365. Block agent access to labeled files at runtime, stop sensitive data from leaving in agent-drafted emails, and catch agents that cross conduct lines using the same Microsoft Purview controls you already run for users. Map every risky agent action in Insider Risk Management, drill into Activity Explorer for interaction-level detail, and pull regulator-ready forensics from Purview Audit. Shilpa Ranganathan, Microsoft Purview Partner Group Squad Leader, shares how IT and data security teams can govern agent behavior on a single Agent 365 control plane built into the Microsoft tools already used.  ► QUICK LINKS: 00:00 - Agent security, compliance, & IT 01:13 - IT & data security teams using Agent 365 02:22 - Visibility with Microsoft Purview 03:14 - End user perspective 04:05 - DLP on Agent-Initiated Messages 04:23 - Communication Compliance for Agent Behavior 04:50 - Data Security admin in the Purview portal 06:04 - Policy violations 06:39 - Purview Audit 07:06 - Microsoft 365 admin center 07:44 - Wrap upn in the Purview portal  ► Link References Check out https://aka.ms/Agent365DataSecurity ► Unfamiliar with Microsoft Mechanics? As Microsoft's official video series for IT, you can watch and share valuable content and demos of current and upcoming tech from the people who build it at Microsoft. • Subscribe to our YouTube: https://www.youtube.com/c/MicrosoftMechanicsSeries • Talk with other IT Pros, join us on the Microsoft Tech Community: https://techcommunity.microsoft.com/t5/microsoft-mechanics-blog/bg-p/MicrosoftMechanicsBlog • Watch or listen from anywhere, subscribe to our podcast: https://microsoftmechanics.libsyn.com/podcast ► Keep getting this insider knowledge, join us on social: • Follow us on Twitter: https://twitter.com/MSFTMechanics • Share knowledge on LinkedIn: https://www.linkedin.com/company/microsoft-mechanics/ • Enjoy us on Instagram: https://www.instagram.com/msftmechanics/ • Loosen up with us on TikTok: https://www.tiktok.com/@msftmechanics

Watch the full episode: https://youtu.be/2aPU-4PUXNk  In this spotlight of episode 357, Charlie Malouf and Lee Vang talk about the importance of leveraging large language models to explore the massive trove of organizational data, delving into overlooked areas for new insights. They emphasize the critical need to maintain data integrity and discuss strategies for protecting sensitive information. This includes adopting a "fortress security mindset"—traditionally used in network or infrastructure security—and applying it to data management. The discussion also highlights challenges such as determining the appropriate level of data access, weighing whether to share a decade's worth of information or limiting access to just the current fiscal year to mitigate exposure risks. Visit https://www.storiesfromtheriver.com for more episodes.    Broad River Retail brought this show to you. Visit https://BroadRiverRetail.com    Follow us on LinkedIn: https://www.linkedin.com/company/broad-river-retail   

Most security conversations at RSAC start with visibility. This one did not. I was at the Commvault booth, which by the way is set up like a full wrestling ring, and I sat down with the José Gomez Field CTO Security to talk about something that feels much more real right now. Control.Not dashboards. Not alerts. Actual control over who is accessing data in real time. What stood out to me in this conversation was how much AI is changing the risk surface.It is not just more data. It is more access, more queries, more non human identities touching sensitive systems all the time. And a lot of traditional tools were never designed for this.One point that stuck with me. Structured data is still one of the hardest things to secure properly.We assume it is easier because it is organized. But when access patterns explode, especially with AI, it becomes harder to track who should see what at any given moment.That is where real time access control starts to matter.Not after the fact. Not in a report. Right when the query happens.We also talked about something every team struggles with. How do you enforce governance without slowing people down?Because if security becomes a blocker, people will find a way around it. The interesting shift here is making security part of the flow instead of a checkpoint outside it.And tying that directly back to resilience. Because the more control you have over access, the faster you can respond and recover when something goes wrong.Another great conversation from the Commvault booth.#data #ai #security #rsac #attack #api #commvault #theravitshow

I'm sitting down with Jonathan Ronzio, who scaled Trainual from an idea to $30M ARR—while building a company known for its culture and still finding time to climb mountains, run marathons, and live a full life outside of work. What stood out to me in this conversation is how intentional he's been about building systems—not just in the business, but in his life. We talk about why most founders document the wrong things early, how structure actually creates freedom, and how AI is completely reshaping how companies build, sell, and operate. We also get into how he thinks about balance versus alignment, what changes (and what doesn't) after raising capital, and why the most defining moments in business are usually the ones you never planned for. If you're trying to scale without becoming consumed by your business, there's a lot here worth paying attention to. Key Takeaways  (00:00) Introduction (01:28) Summiting Aconcagua vs Closing a Series B (03:01) What Is Trainual and Why It Exists (03:52) The #1 Thing SaaS Founders Document Too Late (04:59) When to Create Company Core Values? (06:48) Why Structure Actually Creates Freedom (09:57) Which Processes Deserve SOPs? (11:43) How AI Transformed Trainual's Product Roadmap (15:16) Will AI Kill SaaS? His Honest Take (18:49) Figure Out How to Disrupt Your Business (20:38) Agentic AI and the New Outbound Playbook (22:34) The Exact AI Tech Stack His Team Uses (26:05) Data Security in the Age of AI (30:11) $400K in Credit Card Debt for FB Ads  (32:27) Balance vs. Alignment  (34:31) Why Daymond John Joined the Cap Table (38:05) Cultural Practices That Actually Work (39:48) Project Management & Communication Tools (43:36) How to Define Culture at Scale (46:30) Mountaineering Lessons That Made Him a Better Leader (53:08) Living an Adventurous Life  (58:50) Obsessive Compulsive Creative Disorder (59:43) Advice for Founders Torn Between Focus and Exploration   Watch on YouTube: https://youtu.be/q17qPXHSEC0     Let's Connect: Website | Instagram | YouTube | TikTok | Twitter | Facebook

In the Elixir Wizards season 15 premiere, host Charles Suggs is joined by Holden Oullette, Senior Security Software Engineer at Netflix and maintainer of Sobelow, to talk about how security is evolving in the Elixir ecosystem. We discuss how certain features of the Elixir programming language (like functional patterns and server-side rendering) provide natural immunity against some common vulnerabilities, and what that means as the language continues to grow. Holden shares how tools like Sobelow are adapting and how new technologies like LLMs and Elixir's type system may help to strengthen security practices. We cover supply chain risks, ecosystem-level responsibility and reputation management, and how initiatives like AEGIS are prepping the community for more widespread adoption. We wrap with practical tips for teams to be more security-minded throughout the software development lifecycle without slowing everything down. Key topics discussed in this episode: How Elixir's design influences secure-by-default development Security tradeoffs between server-side and client-heavy architecture Supply chain risks and what the ecosystem is doing to prepare Static analysis with tools like Sobelow and AST-based pattern matching Where LLMs fit into modern security workflows The role of Elixir's upcoming type system in improving tooling Securing CI/CD pipelines and production environments Balancing development speed with security requirements Dependency management and vulnerability monitoring The AEGIS Initiative and ecosystem-wide security efforts Links mentioned: Holden's GitHub https://github.com/houllette Elixir Programming Language https://elixir-lang.org/ Security-focused static analysis for the Phoenix Framework https://github.com/nccgroup/sobelow Code Security for Builders https://semgrep.dev/ Erlang Ecosystems Foundation https://erlef.org/ Phoenix Framework https://www.phoenixframework.org/ WebSockets https://hexdocs.pm/phoenix_live_view/Phoenix.LiveView.Socket.html https://developer.mozilla.org/en-US/docs/Web/API/WebSockets_API Open Worldwide Application Security Project https://owasp.org/ https://github.com/elixir-ecto/ecto Log4j Vulnerability https://www.ncsc.gov.uk/information/log4j-vulnerability-what-everyone-needs-to-know React2Shell Vulnerability https://www.finra.org/guidance/guidance/cybersecurity-advisory-react2shell The Heartbleed Bug https://www.heartbleed.com/ Elixir Type System https://hexdocs.pm/elixir/main/gradual-set-theoretic-types.html Holden Oullette “Securing the Future: A Roadmap to Making Elixir the Safest Language” ElixirConf 2024 https://youtu.be/gpvKxS6sY8Y Aegis Initiative: Supply Chain Security & Compliance Initiative https://security.erlef.org/aegis/ OIDC Tokens https://openid.net/ Anthropic's Claude Mythos & Cybersecurity https://red.anthropic.com/2026/mythos-preview/ Igniter Code Generation Framework https://github.com/ash-project/igniter https://smartlogic.io/podcast/elixir-wizards/s13-e01-igniter-code-generation-zach-daniel/ Secure-by-default open source software https://www.chainguard.dev/ https://www.docker.com/ https://github.com/dependabot https://docs.aws.amazon.com/apigatewayv2/latest/api-reference/apis-apiid-models.html https://nixos.org/ https://smartlogic.io/podcast/elixir-wizards/s14-e08-nix-for-elixir-apps/ https://fedoraproject.org/ https://kubernetes.io/ https://netflix.github.io/chaosmonkey/ https://netflixtechblog.com/all?topic=chaos-monkeySpecial Guest: Holden Oullette.

The race for AI dominance has created a dangerous imbalance between business velocity and cyber resilience. In this episode, host Caleb Tolin is joined by Joe Hladik, Head of Rubrik Zero Labs, and Staff Security Researcher Amit Malik to break down the findings of their latest report on agentic adoption. The discussion centers on the Agentic Paradox. This is the technical reality that tools designed to automate high-level tasks are inherently built to find the most efficient path around obstacles, including existing security policies. A primary focus is implementing a three-layer framework for AI Operations. This model targets the Tool Layer, where agents interact with databases; the Cognitive Layer, which serves as the LLM brain; and the critical Identity Layer. The conversation explores stories in which agents, without malicious intent, have caused catastrophic data loss simply by following an optimized logic path. These instances prove that agents need not be sentient to be destructive when they lack proper human-in-the-loop checkpoints. Technical hurdles of Identity Resilience are also addressed, specifically the explosion of non-human identities that spin up and down like elastic cloud infrastructure. The episode examines the fear index regarding job security, noting that 92% of leaders fear for their roles post-breach. Joe and Amit join Caleb to explore the evolution of personal liability for CISOs and the urgent need to move from basic visibility to deep observability. This is a forward-looking briefing for leaders who recognize that, in an era of autonomous routines, the human must remain the ultimate command-and-control center. What You'll Learn Define the agentic paradox to understand why AI efficiency naturally compromises traditional security guardrails. Implement a three-layer framework to secure the tool, cognitive, and identity components of AI. Transition from basic visibility to deep observability to track autonomous decision-making in real time. Mitigate prompt injection risks by auditing the input and output flows of the cognitive layer. Utilize ephemeral containers to sandbox agentic tools and prevent unauthorized database alterations. Manage the elasticity of non-human identities to maintain control over rapidly spinning AI agents. Anchor AI operations with human-in-the-loop checkpoints to ensure integrity during high-stakes executions. Episode Highlights Defining the Agentic Identity and Autonomous Routines Revenue vs. Resilience: The Drivers of AI Urgency The Three-Layer Framework for Agentic Defense Shadow AI and the Rise of Invisible Insider Threats The Context Gap: Why Rolling Back AI Actions is Hard The CISO Fear Index and Personal Liability Post-Breach Visibility vs. Observability in Elastic Identity Environments Learn more about your ad choices. Visit megaphone.fm/adchoices

Regal Renord [sic] Corporation Names Aamir Paul As New CEOIN: Louis Pinkham (24%) will also resign from the Board of Directors effective on his last day as CEO. ININ: Because of Chair Rakesh Sachdev (15%) OUTA powerful counterpoint to a new CEO's powerAxalta Coating Systems (27%)Herc Holdings (14%)Edgewell Personal Care (13%)OUT: “On October 29, 2025, the Company announced that Mr. Pinkham, our CEO, will separate from his role with the Company in connection with a CEO search process being led by the Company's Board. Mr. Pinkham's separation from his role as CEO is expected to occur by June 30, 2026.” OUTWhat took them so long?And what's wrong with their bench? ($8.775M golden hello)Brooke Lang: President, Power Efficiency Solutions (2022-)VP & GM of the Power Components DivisionEaton (2008-2016)Jerry Morton: President, Industrial Powertrain Solutions (2015-)served as President – Integration, Motion Control Solutions from 2021-2023, President of the Power Transmission Solutions from 2019-2021, Vice President, Business Leader of Power Transmission Solutions from 2017-2019, and led the global operations for Regal Rexnord's power transmission business from 2015-2017. Kevin Long: President, Automation and Motion Control (2025-)10 years at Dover Corporation, most recently as Group President of OPW, a global business serving the fluid handling, clean energy, cryogenics, and car wash markets.IN: Aamir spent years at Schneider Electric: essentially a AAA MSCI companyENVIRONMENT: Opportunities in Clean Tech 4.7 industry average/6.4 score (Regal is completely opposite here 4.7/3.0) INOUT: The Board is too entrenched: get rid of Rakesh Sachdev (15%, 18 years) Curtis Stoelting (21 years, 9%), Stephen Burt (15 years) and maybe this could work. OUTUFC CEO Dana White Says WHCD Shooting Was 'Awesome' and He 'Took In Every Minute' of the Incident IN: Dana White is Dana White. Works perfectly for TKO Holdings and Meta Platforms ININ: Because of Ari Emanuel (CEO/founder/Chair of TKO) and Zuck OUT (CEO/founder/Chair of Meta). Ari is the most powerful agent in Hollywood. Zuck is the king of social media addiction. They handle the “adult” business while Dana handles the “middle school” businessTKO Group Holdings: Ari Emanuel 67%Meta Platforms: Zuck 68%; Dana White 0%OUT: Dana White is Dana White. How are major sponsors like Disney going to feel about calling a shooting “awesome.”IN: Look at the Board: these are serious douches and they love this kind of behavior OUTAri Emanuel: known as being the a-hole of Hollywood.Silver Lake's Egon Durban: VC bro, Elon bud, Dell buddy, say no moreTKO COO Mark Shapiro: Hollywood man has served wherever there are bratty boys in charge: TKO, Endeavor (re: Elon, Ar, Egon), Dick Clark Productions, Papa John's, Six Flags, etc.TKO LD Steve Koonin is the CEO of the Atlanta Hawks and used to serve on the WWE and GameStop boards“The Rock”Former WWE CEO Nick KhanNepobaby Jonathan Kraft, NFLOUT: Look at the Board: these are serious douches and they love this kind of behavior. This is male toxic leadership that will eventually screw it all up. Ari Emanuel: known as being the a-hole of Hollywood.Silver Lake's Egon Durban: VC bro, Elon bud, Dell buddy, say no moreTKO COO Mark Shapiro: Hollywood man has served wherever there are bratty boys in charge: TKO, Endeavor (re: Elon, Ar, Egon), Dick Clark Productions, Papa John's, Six Flags, etc.TKO LD Steve Koonin is the CEO of the Atlanta Hawks and used to serve on the WWE and GameStop boards“The Rock”Former WWE CEO Nick KhanNepobaby Jonathan Kraft, NFL AIG names Andersen CEO as Zaffino moves to exec chairIN: You're getting a two-headed monster. Eric Andersen (ex-Aon President) handles the daily operations, while Peter Zaffino stays as Exec Chair to handle the high-level strategy OUTIN: Andersen spent years at Aon. OUTClimate Change Vulnerability 6.2/8.2 Human Capital Development 4.2/4.9 Privacy & Data Security 3.8/5.0OUT: AIG is already strong in the same places: OUTClimate Change Vulnerability 6.2/7.1 Human Capital Development 4.2/6.0Privacy & Data Security 3.8/4.9OUT: Peter Zaffino is a massive personality (32%). He's going to backseat-drive every decision Andersen makes, leading to a paralyzed C-suite. OUTLD John Rice 14%, Diana Murphy 11% (4 boards), Linda Mills 11%No tenure above 10 yearsOUT: Crappy succession planning. Why ignore the bench? Anderson's golden hello has not been disclosed yet but you know it's going to be bad. What about? INCharlie Fry: EVP, Reinsurance and Risk Capital OptimizationJon Hancock: EVP & CEO, General Insuranceleads AIG's three business segments: North America Commercial Insurance, International Commercial Insurance and Global Personal Insurance, and AIG's Claims organization and Chief Underwriting Office.Previously, led AIG's International Commercial Insurance and Global Personal Insurance businesses; former CEO of International General Insurance from June 2020 to December 2023; Director of Performance Management at Lloyd's of London from 2016 to 2020 with responsibilities including oversight of performance and risk management globally across the Lloyd's market.Pearson CEO Omar Abbosh is up for Autodesk board seat as director exitsIN: Omar Abbosh led Microsoft's Industry Solutions. Autodesk is desperate to become an AI software company: Omar is the guy who actually knows how to sell AI to enterprises. INOmar is “Hall of Famer”Autodesk already has 2 hall-of-famers: Ram Krishnan, Rami RahimStephen Milligan (who Omar is replacing) = ROTATIONOUT: Have a director named Jeffrey Epstein OUTIN: Chair Stacy Smith (12%; former CFO Intel) is cleaning up: replacing a hardware guy (Milligan) with a software/AI guy (Omar) OUTOUT: Despite what you might think, don't invest because they have a female board chair: Stacy is a dude. OUTIN: Omar is CEO at Pearson, dealing with the ethics of AI in education: Autodesk is rapidly integrating AI into urban planning and architecture to foster more sustainable, equitable, and efficient cities. All boards need AI dudes like Omar OUTOUT: Omar is the CEO of Pearson. Pearson is in the middle of its own massive AI transition. He doesn't have the bandwidth to be an effective director at Autodesk. He's just a big name OUTOUT: Losing Stephen Milligan (ex-Western Digital CEO) could be trouble: will Autodesk overdo its AI hand? Spend too much, fire too many people? OUTTrump's idea to ‘just buy' bankrupt Spirit Airlines draws GOP backlashIN: CEO Dave Davis (45%) rescued Sun Country. OUTTransportation 12%Law and Government 2%Economics & Accounting 3%Sales & Marketing 0.4%IN: Director (and ALL STAR) Robert Milton (6%). Former CEO/Chair of Air Canada; led the restructuring there; isn't at Spirit to watch it liquidate INOUT: CFO Fred Cromer is presiding over Spirit's second bankruptcy restructuring in under two years OUTOUT: John Bendoraitis has been the COO since 2017. He's been the architect of the operation during Spirit's entire decline—the engine issues, the labor disputes, and the service meltdowns OUTOUT: Trump thinks it's a good idea INSnap (SNAP) Appoints Doug Hott as New CFO.IN: Doug Hott is coming from Amazon. He understands addicted customers.INOUT: former CFO Derek Anderson also came from Amazon. OUTIN: Evan Spiegel (40%) and Robert Murphy (36%), despite owning all the decisionmaking, finally have someone willing to do the dirty work and make decisions (Mr. “16% layoff” Hott is a real man.) INOUT: Former CFO Derek Andersen is bailing right as the company announces layoffs and faces activist pressure from Irenic Capital. Maybe that's a sign? OUTOUT: Evan Spiegel (40%) and Robert Murphy (36%) needed Irenic Capital to realize they needed to fire CFO Derek Andersen OUTOUT: New CFO Doug Hott started by firing 16% of the workforce? He will be hated forever. Plus, why invest in another heartless finance bro treating human beings like line items to be deleted? OUT: Chair Michael Lynton (8%), the only adult with power on the board, was CEO/Chair of Sony Pictures (2004-2017), when the studio faced what is widely considered the most devastating corporate scandal in Hollywood history: the 2014 Sony Pictures Hack. Run. IN

In this episode of Cloud Wars Live, Bob Evans sits down with Tirthankar Lahiri, Senior Vice President for Mission-Critical Data and AI Engines. Lahiri explains how agentic AI is transforming enterprise applications from simple question-answer systems into action-driven platforms that can reason, remember, and securely execute tasks. He details Oracle's strategy around unified agent memory, private agent factories, deep data security, and open development standards, all designed to help customers build scalable, secure, and flexible AI systems without added cost. AI Built Securely The Big Themes: Agentic AI Becomes Action-Oriented: Tirthankar Lahiri explains that agentic AI represents the next major step beyond generative AI. While generative AI focused largely on answering questions and producing content, agentic AI is designed to take action. It allows businesses to build systems that can reason, decide, and execute tasks autonomously. Oracle sees this as the future of application development, where AI becomes embedded into workflows rather than functioning as a standalone tool. Oracle Builds AI Directly Into the Database: Rather than forcing customers to move data across multiple isolated systems, Oracle's approach is to bring AI directly to the data. Lahiri argues that data is the “ground truth” and moving it creates technical debt, silos, inefficiency, and security vulnerabilities. Oracle's converged database architecture supports multiple data types, including relational, graph, spatial, and vector, inside one unified environment. This eliminates the need for separate repositories and allows AI agents to access all relevant context without fragmentation. Deep Data Security Protects Against AI Risks: Lahiri strongly emphasizes that traditional application-layer security is no longer enough in the age of AI. Since AI can generate SQL and potentially bypass interface restrictions through prompt injection, businesses must secure data directly at the source. Oracle calls this “deep data security.” He uses the analogy of protecting valuables in a safe bolted to the floor rather than simply locking the front gate. Even if someone gets inside the house, the valuables remain protected. Similarly, Oracle enforces security policies at the database level, ensuring agents can only access data users are authorized to see. The Big Quote: "You need to secure data. Need to lock your valuables into the safe deep inside the house." More from Tirthankar Lahiri and Oracle: Connect with Lahiri on LinkedIn or learn more about Oracle AI Database. Visit Cloud Wars for more.

In this Legally Speaking Podcast episode, Joshua Lenon, Lawyer in Residence from Clio discusses the current state and future of AI in the legal profession, emphasising workflow integration, transparency, and the transformative potential of agentic AI for law firms.KeywordsAI in legal, legal technology, Clio, legal AI, workflow automation, agentic AI, legal innovation, legal practice management, legal insights, legal industry futureKey TopicsAI adoption in law firmsWorkflow integration and redesignAgentic AI and autonomous legal tasksTransparency and data security in legal AIFuture trends in legal technologyChapters00:00Introduction to AI in Legal Practice02:58The Gap in AI Adoption Among Law Firms06:04Rethinking Technology Integration in Law09:11The Importance of Context in Legal AI12:10Clio Work: Enhancing Legal Context and Efficiency14:57Agentic AI: Transforming Legal Tasks17:46Transparency and Data Security in AI20:56The Future of Legal Services with AI23:58AI's Role in Increasing Demand for Legal ServicesResources

Carolyn Woodard explores the intersection of project management and artificial intelligence AI with Alex Tuck, founder of Tuck Consulting Group. As nonprofits face increasing pressure to do more with less, Alex shares how project managers are uniquely positioned to lead AI implementation and why human-in-the-loop systems are essential for maintaining accuracy and ethics.The conversation dives into the practicalities of AI adoption, from the potential automation of administrative tasks to the specific challenges faced by healthcare nonprofits. Alex provides a clear framework for ethical AI use, focusing on well-being, transparency, and data security. You will also learn actionable tips for mastering the art of prompting and how to know when to iterate on an AI project versus when to walk away.Alex and Carolyn discuss:Why project managers are the natural leaders for AI initiatives in the nonprofit sector.Four key pillars for an ethical AI framework: Human Well-being, Human in the Loop, Transparency, and Data Security.Practical strategies for better prompting, including the use of context, constraints, and prompt libraries.How to determine when to pivot or quit an AI project early to save organizational resources.Resources Mentioned:Tuck Consulting GroupAnthropic Report on AI and EmploymentPMI CPMAI Framework _______________________________Start a conversation :)Register to attend a webinar in real time, and find all past transcripts at https://communityit.com/webinars/email Carolyn at cwoodard@communityit.comon LinkedIn on reddit/r/nonprofitITmanagementon the Community IT websiteThanks for listening. 

China's influence operations are no longer limited to Washington — they are increasingly playing out at the state and local level across the United States. In this episode of the China Desk Podcast, host Steve Yates is joined by Ambassador Joseph Cella, founder and president of the Secure Our States Coalition and former U.S. Ambassador to Fiji, for a wide-ranging discussion on how the Chinese Communist Party is targeting American communities, industries, and institutions from the ground up. Cella explains how his work in Michigan — particularly efforts to push back against CCP-linked projects — led to the creation of the Secure Our States Coalition, a citizen-led initiative focused on identifying, exposing, and countering Chinese influence at the state level. He argues that while federal awareness of the China threat has grown, major gaps still exist in public awareness, policy coordination, and local-level response. The conversation walks through how CCP-linked entities engage in the United States, often through seemingly legitimate economic activity that carries deeper national security implications. From foreign direct investment and tax incentives to academic partnerships and infrastructure projects, Cella outlines how these efforts exploit America's open system. The discussion also explores: • How CCP influence operations target state and local governments • The role of economic incentives, tax credits, and partnerships in expanding influence • Risks tied to EV manufacturing, battery plants, and supply chains • Concerns around land purchases near military installations and critical infrastructure • The use of academic institutions and research partnerships to gain access • Why data centers, drones, and technology supply chains present emerging risks • The importance of state-level legislation and grassroots awareness • How citizen-led efforts can close information, security, and policy gaps Cella also highlights how political awareness is beginning to catch up, with growing bipartisan attention at the state level and increasing scrutiny of CCP-linked investments. However, he warns that the United States is still playing catch-up after years of underestimating the scope of the threat. This is a comprehensive look at how geopolitical competition with China is unfolding inside the United States — and why state and local action may be just as critical as federal policy in addressing it. 00:00 — Introduction and Ambassador Joseph Cella joins the podcast 00:33 — Background and previous China Desk appearances 02:16 — Origin of the Secure Our States Coalition 05:06 — Why the coalition is focused on all 50 states 07:01 — The “China problem” and lack of public awareness 10:11 — Common CCP tactics: investment, influence, and partnerships 12:16 — Exploiting America's open system and economic incentives 14:08 — Academic partnerships and national security concerns 15:49 — “China First” thinking and economic trade-offs 18:57 — State-level policy responses and legislative efforts 19:34 — EVs, batteries, and risks to U.S. manufacturing 21:21 — Restrictions on Chinese technology near military bases 23:06 — What policymakers often miss about the China threat 24:08 — Drones, data centers, and future vulnerabilities 26:56 — Supply chains, infrastructure, and national security risks 28:17 — Final thoughts and how to get involved   Watch Full-Length Interviews: https://www.youtube.com/@ChinaDeskFNW

A member of the Senate's transportation oversight committee said this week that he hopes to effectively “seal off” the U.S. from vehicles made by Chinese automakers.U.S. Sen. Bernie Moreno, R-Ohio, said during remarks ahead of the New York Auto Show that he would introduce a bill in the coming weeks to strengthen an existing ban on Chinese vehicles, Reuters reported.Rules finalized under the Biden administration early last year sought to prohibit Chinese automakers from selling passenger vehicles in the U.S., citing data privacy and national security concerns, but Moreno indicated that his measure will go further, incorporating not just vehicle imports but “hardware” and “software,” as well as partnerships between Chinese vehicle makers and other companies.Moreno told the Automotive Forum event that he aims for a framework in which “there's never a scenario where a ​Chinese automobile will enter our market.”He also said that he hopes governments in other nations would make similar efforts, from Canada and Mexico to the rest of Latin America and Europe. Chinese cars, however, are already sold in many of those markets.U.S. automakers and other industry groups, meanwhile, recently called on the government to prevent Chinese cars from entering the domestic market altogether ahead of a planned visit to China next month by President Trump. Trump, Reuters noted, had suggested during an event in Detroit earlier this year that he would be open to a Chinese auto plant in the U.S.#China #AutoIndustry #TradePolicy #Tariffs #NationalSecurity #ElectricVehicles #EVs #Manufacturing #GlobalTrade #SupplyChain #Automotive #USPolitics #Geopolitics #TechPolicy #DataSecurity #Cybersecurity #IndustryNews #BusinessNews #USManufacturing #Imports #TradeWar #EconomicPolicy #FutureOfAuto #Regulation #AutoNews

In this episode of Millions Were Made, Jessica Marx is joined by Brooke Dumas to explore one of the most pressing operational questions facing modern founders: how should AI be integrated within a team environment?While many business owners are personally experimenting with AI tools, far fewer have implemented structured policies, training, or oversight for how their teams use them. Jessica and Brooke outline what they are seeing across six-, seven-, and eight-figure companies—teams actively using AI without guardrails, formal education, or clear standards for data protection and deliverable quality.They discuss the two common scenarios emerging inside organizations: teams over-relying on AI without strategic context, and teams resisting AI due to concerns around quality, speed, or job security. Through real examples, they explain why responsible implementation requires more than encouragement—it requires policy, leadership, and clarity.This episode covers:Why every company needs a formal AI policySecurity and legal considerations for service-based businessesThe importance of company-owned AI accountsHow to maintain quality control when AI contributes to deliverablesAddressing employee concerns about replacementUsing automation to enhance capacity rather than eliminate talentAI is not a strategy—it is a tool. And like any tool, its impact depends entirely on leadership.Listen now to learn how to implement AI thoughtfully, securely, and in alignment with your company's long-term vision.Mini-timeline00:07–01:00 — Introduction: AI from a team and organizational perspective01:01–03:20 — The two types of teams: over-adoption vs. resistance03:21–05:45 — Why AI was implemented without structured training05:46–06:55 — Security risks and data exposure concerns06:56–08:30 — Case example: When AI-generated research missed critical insights08:31–10:05 — Expert-driven businesses vs. generalized AI outputs10:06–12:00 — Responsible experimentation and optimization12:01–13:50 — Legal implications and client transparency13:51–15:10 — The importance of company-owned AI accounts15:11–17:30 — Managing resistance and fear within teams17:31–19:30 — Framing AI as support for growth, not replacement19:31–21:05 — Scaling capacity through strategic automation21:06–22:24 — Final recommendations: policy, education, and open dialogueResourcesListen to Episode 73 - The Limits of AI Strategy: How to Leverage Technology Without Losing Market PositionFollow @millionsweremade on Instagram for frameworks + strategy tipsConnect with Jessica:Instagram: @millionsweremade | @thejessicamarxWork with Jessica: Tailored PremierWebsite: Millions Were Made

Identify what data was exposed in a breach, not just where it moved, but what it contains, how sensitive it is, and the risk it creates using Microsoft Purview Data Security Investigations. Search across massive volumes of files using natural language, pinpoint the highest risk content, and connect it to user activity to see the full scope of an incident. Investigate and act in one workflow. Analyze content deeply across files, emails, and AI interactions, uncover hidden or unclassified sensitive data, and contain exposure fast. Proactively identify risks, respond to incidents with clarity, and mitigate impact before it spreads. Christophe Fiessinger, Microsoft Purview Principal Squad Leader, joins Jeremy Chapman to walk through real-world investigation workflows—from scoping and analysis to mitigation and automation—so you can move faster and make more informed security decisions. ► QUICK LINKS:  00:00 - Keep data safe with DSI 01:26 - Connect dots between data risk & impact 02:47 - Built-in AI 03:47 - Work across the full lifecycle of an incident 04:56 - Create an investigation 06:36 - Deep search and analysis 09:03 - How DSI helps data leaks 10:40 - Contain risk with built-in mitigation 11:32 - Automate using agents 13:23 - Estimator tool 14:57 - Wrap up ► Link References As a Microsoft Purview admin, just go to https://purview.microsoft.com/dsi ► Unfamiliar with Microsoft Mechanics? As Microsoft's official video series for IT, you can watch and share valuable content and demos of current and upcoming tech from the people who build it at Microsoft. • Subscribe to our YouTube: https://www.youtube.com/c/MicrosoftMechanicsSeries • Talk with other IT Pros, join us on the Microsoft Tech Community: https://techcommunity.microsoft.com/t5/microsoft-mechanics-blog/bg-p/MicrosoftMechanicsBlog • Watch or listen from anywhere, subscribe to our podcast: https://microsoftmechanics.libsyn.com/podcast ► Keep getting this insider knowledge, join us on social: • Follow us on Twitter: https://twitter.com/MSFTMechanics • Share knowledge on LinkedIn: https://www.linkedin.com/company/microsoft-mechanics/ • Enjoy us on Instagram: https://www.instagram.com/msftmechanics/ • Loosen up with us on TikTok: https://www.tiktok.com/@msftmechanics 

In this episode of CDW Tech Talks, Brian Matthews and Ashley Otto explore how organizations can train and leverage AI Copilot agents effectively within their workflows. They focus on practical strategies, real-world use cases and best practices to maximize AI agent impact. To learn more, visit cdw.ca Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Cut through alert noise and focus on the risks that matter with Agents in Microsoft Purview. Use Data Security Triage Agent to prioritize incidents, investigate user activity with full context, and uncover hidden patterns that signal real threats. Identify and act on high-risk behavior, like data exfiltration or persistent access, before it leads to data loss. Detect sensitive data across your environment using natural language with Data Security Posture Agent. Analyze content to find what's exposed, apply protections or restrict access, and surface hidden credentials, so you can take action and continuously reduce risk. Michelle Slotwinski, Microsoft Purview Senior Product Manager, shares how to stay ahead of data risk by turning investigation into proactive protection. ► QUICK LINKS: 00:00 - Reduce data risks 00:59 - Data Security Triage Agent 01:46 - Investigate risks 03:29 - Detect patterns 05:17 - Uncover nested insights 07:44 - Credential scanning 09:03 - Wrap up ► Link References https://aka.ms/AgentsinPurview ► Unfamiliar with Microsoft Mechanics? As Microsoft's official video series for IT, you can watch and share valuable content and demos of current and upcoming tech from the people who build it at Microsoft. • Subscribe to our YouTube: https://www.youtube.com/c/MicrosoftMechanicsSeries • Talk with other IT Pros, join us on the Microsoft Tech Community: https://techcommunity.microsoft.com/t5/microsoft-mechanics-blog/bg-p/MicrosoftMechanicsBlog • Watch or listen from anywhere, subscribe to our podcast: https://microsoftmechanics.libsyn.com/podcast ► Keep getting this insider knowledge, join us on social: • Follow us on Twitter: https://twitter.com/MSFTMechanics • Share knowledge on LinkedIn: https://www.linkedin.com/company/microsoft-mechanics/ • Enjoy us on Instagram: https://www.instagram.com/msftmechanics/ • Loosen up with us on TikTok: https://www.tiktok.com/@msftmechanics 

Send a textMaking Data Simple dives into the world of data security with Josh Scott, CISO and VP of Security at Hydrolix — a real-time data platform built for massive scale. Josh unpacks critical challenges like AI adoption, cybersecurity priorities, and how organizations can harness data to stay ahead, all while keeping performance high and costs down.01:02 Investing 04:25 Meet Josh Scott 10:54 Adopting AI Safely 14:42 What IS a CISO? 17:14 What Keeps a CISO Up at Night? 19:11 Using AI for Security 20:47 Two Phones? 21:36 Password Sharing 23:03 CISO Prioritization 27:39 Signal From Noise 29:29 Leadership Style 32:27 The Crystal BallLinkedIn: https://www.linkedin.com/in/joshuascott/ Website: https://www.hydrolix.io/#MakingDataSimple #DataSecurity #Cybersecurity #CISO #AIAdoption #AIAndSecurity #Hydrolix #RealTimeData #DataPlatform #InfoSec #CyberLeadership #TechPodcast #Leadership #BigData #AI #DataPrivacy #CloudSecurity #SignalVsNoiseWant to be featured as a guest on Making Data Simple? Reach out to us at almartintalksdata@gmail.com and tell us why you should be next. The Making Data Simple Podcast is hosted by Al Martin, WW VP Technical Sales, IBM, where we explore trending technologies, business innovation, and leadership ... while keeping it simple & fun.

Send a textMaking Data Simple dives into the world of data security with Josh Scott, CISO and VP of Security at Hydrolix — a real-time data platform built for massive scale. Josh unpacks critical challenges like AI adoption, cybersecurity priorities, and how organizations can harness data to stay ahead, all while keeping performance high and costs down.01:02 Investing 04:25 Meet Josh Scott 10:54 Adopting AI Safely 14:42 What IS a CISO? 17:14 What Keeps a CISO Up at Night? 19:11 Using AI for Security 20:47 Two Phones? 21:36 Password Sharing 23:03 CISO Prioritization 27:39 Signal From Noise 29:29 Leadership Style 32:27 The Crystal BallLinkedIn: https://www.linkedin.com/in/joshuascott/ Website: https://www.hydrolix.io/#MakingDataSimple #DataSecurity #Cybersecurity #CISO #AIAdoption #AIAndSecurity #Hydrolix #RealTimeData #DataPlatform #InfoSec #CyberLeadership #TechPodcast #Leadership #BigData #AI #DataPrivacy #CloudSecurity #SignalVsNoiseWant to be featured as a guest on Making Data Simple? Reach out to us at almartintalksdata@gmail.com and tell us why you should be next. The Making Data Simple Podcast is hosted by Al Martin, WW VP Technical Sales, IBM, where we explore trending technologies, business innovation, and leadership ... while keeping it simple & fun.

Key Takeaways Session overview: Newell will be leading a session as part of the M365 & Work IQ masterclass, "Executive's Guide to Rolling Out M365 Copilot." The session will focus on how organizations can move beyond AI experimentation to build a secure and productive AI strategy. "AI is incredibly powerful," he explains, "But you need to just make sure that you're set up to take advantage of it, and then you build some organizational capacity to do it." AI executive briefings: For customers and other leaders, Newell shares executive-level AI education and practical guidance, grounding other leaders in what AI, LLMs, and Microsoft's tools can do for productivity. He notes that some of these learnings will be a part of his session at the event. Final thoughts: In closing, Newell adds that he's looking forward to his session and hopes attendees bring questions focused on practical guidance. Visit Cloud Wars for more.

Sue Serna - Social Media Security and Governance Leader and Lover of All BeaglesNo Password Required Season 7: Episode 2 - Sue SernaSue Serna is the CEO and Founder of Serna Social and the former head of global social media at Cargill. She brings more than two decades of experience at the intersection of storytelling, strategy, and security.In this episode, she shares her journey from business reporter to leading her own consultancy serving companies around the world on social media strategy.Jack Clabby of Carlton Fields, P.A, joined by guest co-host Rex Wilson of Cyber Florida, welcomes Sue for a candid discussion about the realities of enterprise social media. From managing more than 150 Facebook pages for a single company, to navigating internal politics, agency relationships, and regulatory pressure, Sue explains why social media is far from “free” and why most organizations still under-resource it.Sue dives deep into the gap between social media teams and cybersecurity departments. She outlines how personal account compromises can escalate into enterprise-level incidents, why governance frameworks matter, and how large organizations can regain control of sprawling digital footprints. Drawing from real-world examples, she argues that social media must be treated like finance or HR, a core business function requiring structure, ownership, and accountability.The episode wraps with the Lifestyle Polygraph, where Sue reveals her love of Apollo-era space history, debates iconic Philadelphia traditions, and imagines what magical talent her beagle would bring to Hogwarts.Follow Sue at SernaSocial.com or connect with her on LinkedIn: https://www.linkedin.com/in/sueserna/ Chapters: 00:00 Introduction and First Impressions   02:45 The Evolving Role of Social Media in Corporations   04:58 Transitioning from Journalism to Social Media  11:11 Building Social Media from Scratch   13:00 Becoming a CEO and Founder   16:28 The Importance of Networking   16:54 Bridging the Gap Between Social Media and Cybersecurity  20:51 Real-World Social Media Security Incidents  28:35 Navigating Internal Conflicts in Social Media  30:32 The Lifestyle Polygraph Begins   31:17 Nerd Things That Expose Sue: Space and Harry Potter!  35:16 Sue's Love For Beagles  37:50 Wreckless Intern or Overconfident Executive?  40:42 Hogwarts and Magical Beagles 

Welcome to another insightful episode of "To The Point Cybersecurity," brought to you by Forcepoint! In today's episode, we're diving into the nuances of modern data security with our special guest, Yasir Ali, CEO of Polymer. As networks become increasingly borderless, the challenges for data security are escalating. We'll explore crucial technologies like Data Security Posture Management (DSPM) and Data Loss Prevention (DLP), and discuss the importance of reducing risk profiles and managing access control effectively. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e371

Artificial intelligence is rapidly changing how we understand our health — not just how we feel today, but how fast we're actually aging.On this episode of Live Long, host Peter Bowes continues his personal experiment with Hundred, the AI-powered longevity platform that combines advanced blood testing, wearable data and personalized insights to track biological age and guide smarter health decisions.After introducing the app in an earlier conversation, Peter reconnects with Hundred's founder, Tyler Smith, to go deeper into the idea of a “health operating system” — essentially a personal doctor in your pocket. Together they explore how continuous testing and AI analysis could help prevent disease, spot risks earlier, and motivate lasting behavior change — while also addressing the realities of over-testing, false alarms, privacy concerns and health anxiety.Peter also shares the results of his own first round of testing, what surprised him most, and how he's using the data to shape his approach to longevity and healthy aging.-----JOIN HUNDREDOptimize your healthspan and potentially lower your biological age.  Tyler and the team at HUNDRED are offering $75 in credit for add-on tests and supplements from the HUNDRED marketplace when you sign up at hundred.com/livelongpodcastThis podcast is supported by affiliate arrangements with a select number of companies. We have arranged discounts on certain products and receive a small commission on sales. The income helps to cover production costs and ensures that our interviews remain free for all to listen. Visit our SHOP for more details: https://healthspan-media.com/live-long-podcast/shop/Time-line Mitopure (a highly pure form of Urolithin A) boosts the health of our mitochondria – the battery packs of our cells – and improves muscle strength. Time-line is offering LLAMA listeners a 10% discount on its range of products – Mitopure powders, softgels & skin creams.  Use the code LLAMA at checkout-Fit, Healthy & Happy Podcast Welcome to the Fit, Healthy and Happy Podcast hosted by Josh and Kyle from Colossus...Listen on: Apple Podcasts SpotifyEnergyBits algae snacksA microscopic form of life that could help us age better. Use code LLAMA for a 20 percent discountPartiQlar supplementsEnhance your wellness journey with pure single ingredients. 15% DISCOUNT - use code: MASTERAGING15Disclaimer: This post contains affiliate links. If you make a purchase, I may receive a commission at no extra cost to you.Support the showThe Live Long and Master Aging (LLAMA) podcast, a HealthSpan Media LLC production, shares ideas but does not offer medical advice. If you have health concerns of any kind, or you are considering adopting a new diet or exercise regime, you should consult your doctor.

Recorded live at the NTL Summit in Miami, this episode features Jayson McQuown, Director of Sales at Fala, a cloud hosting provider built to compete with Amazon Web Services by offering governance and security “out of the box.” Jayson breaks down why knowing where your data physically lives matters—especially for law firms using AI—and how weak security can create serious risk around confidentiality and attorney-client privilege. He also introduces RedPill.ai, a “confidential AI” alternative designed to help professionals use automation without leaking sensitive data back to model providers. The conversation dives into real-world legal use cases (like reviewing massive discovery fast), why many AI vendors can't clearly explain their base models, and how trusted execution environments (TEEs) are changing what secure cloud and AI can look like for legal, healthcare, and other privacy-heavy industries.

SummaryIn this episode of the Blue Security Podcast, hosts Andy and Adam, along with expert Amren Gill, delve into the critical topic of data security. They discuss the importance of data classification and identification, the challenges of data loss prevention, and the significance of lifecycle management in maintaining data integrity. The conversation emphasizes the need for a strong security culture within organizations, highlighting the role of training, shared responsibility, and continuous improvement in achieving effective data governance. The episode serves as a comprehensive guide for organizations looking to enhance their data security practices and benchmark their maturity in this essential area.----------------------------------------------------YouTube Video Link: https://youtu.be/xhxH_zrOYbE----------------------------------------------------Documentation:https://github.com/ajawzero/bspdatasecurity----------------------------------------------------Contact Us:Website: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://bluesecuritypod.comBluesky: https://bsky.app/profile/bluesecuritypod.comLinkedIn: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/company/bluesecpodYouTube: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.youtube.com/c/BlueSecurityPodcast-----------------------------------------------------------Andy JawBluesky: https://bsky.app/profile/ajawzero.comLinkedIn: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/in/andyjaw/Email: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠andy@bluesecuritypod.com⁠----------------------------------------------------Adam BrewerTwitter: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://twitter.com/ajbrewerLinkedIn: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/in/adamjbrewer/Email: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠adam@bluesecuritypod.com

SummaryIn this episode of the Blue Security Podcast, hosts Andy and Adam, along with expert Amren Gill, delve into the critical topic of data security. They discuss the importance of data classification and identification, the challenges of data loss prevention, and the significance of lifecycle management in maintaining data integrity. The conversation emphasizes the need for a strong security culture within organizations, highlighting the role of training, shared responsibility, and continuous improvement in achieving effective data governance. The episode serves as a comprehensive guide for organizations looking to enhance their data security practices and benchmark their maturity in this essential area.----------------------------------------------------Documentation:https://github.com/ajawzero/bspdatasecurity----------------------------------------------------Contact Us:Website: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://bluesecuritypod.comBluesky: https://bsky.app/profile/bluesecuritypod.comLinkedIn: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/company/bluesecpodYouTube: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.youtube.com/c/BlueSecurityPodcast-----------------------------------------------------------Andy JawBluesky: https://bsky.app/profile/ajawzero.comLinkedIn: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/in/andyjaw/Email: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠andy@bluesecuritypod.com⁠----------------------------------------------------Adam BrewerTwitter: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://twitter.com/ajbrewerLinkedIn: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/in/adamjbrewer/Email: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠adam@bluesecuritypod.com

Rick DeLisi is an author and Lead Research Analyst at Glia, an online leader in Digital Customer Service. Rick shares his expertise on integrating AI into work processes to achieve effortless interaction. Enjoy the listen. Along the way we discuss AI for All (5:00), AI and new product launch (10:00), AI Pre-Op (15:30), the Chainsaw Analogy (17:30), Communicating with Bots (19:00), flying the plane (21:00), dealing with the skeptics (21:45), Glia, Data Security, and Responsible AI (25:15), and the AI 24/7 Focus Group (31:15).    Empower your teams and drive revenue @ Glia, AI Built for Community Impact This podcast is partnered with LukeLeaders1248, a nonprofit that provides scholarships for the children of military Veterans. Send a donation, large or small, through PayPal @LukeLeaders1248; Venmo @LukeLeaders1248; or our website @ www.lukeleaders1248.com. Music intro and outro from the creative brilliance of Kenny Kilgore. Lowriders and Beautiful Rainy Day.

What does sovereignty actually mean? This week, Technology Now dives into the world behind the words, exploring the reality versus the fantasy of data and technological sovereignty. We ask how definitions can change across location, and why this is important to understand when trying to work across boarders. Sana Kharegani, Chief Strategy Officer at Carbon3.AI tells us more.This is Technology Now, a weekly show from Hewlett Packard Enterprise. Every week, hosts Michael Bird and Sam Jarrell look at a story that's been making headlines, take a look at the technology behind it, and explain why it matters to organizations.About Sana:https://www.linkedin.com/in/sana-khareghani-4346771/?originalSubdomain=ukSources:https://gdpr-info.eu/issues/fines-penalties/https://www.dataversity.net/articles/brief-history-cloud-computing/https://www.kiteworks.com/risk-compliance-glossary/data-sovereignty-protecting-our-digital-footprint-in-the-age-of-information/https://gdpr.eu/what-is-gdpr/

How are our networks designed to cope with the increasing demands of AI? This week, Technology Now dives into the topic of networking for AI, exploring how our networks have adapted and evolved to meet the ever growing demands of modern day AI infrastructure. Praful Lalchandani,VP of Networking Product Management, tells us more.This is Technology Now, a weekly show from Hewlett Packard Enterprise. Every week, hosts Michael Bird and Sam Jarrell look at a story that's been making headlines, take a look at the technology behind it, and explain why it matters to organizations.About Praful: https://www.linkedin.com/in/prafullalchandani/Sources:https://www.networkworld.com/article/972044/ethernet-at-50-bob-metcalfe-pulls-down-the-turing-award.htmlhttps://www.networkworld.com/article/970970/what-is-ethernet.htmlhttps://computer.howstuffworks.com/ethernet5.htm

While our team is out on winter break, please enjoy this episode of Data Security Decoded from our partners at Rubrik. In this episode of Data Security Decoded, host Caleb Tolin sits down with Hayden Smith, CEO of Hunted Labs, as he breaks down how software supply chain attacks really work, why open source dependencies create unseen exposure, and what modern threat actors are doing to exploit trust at scale. Caleb and Hayden dive deep into real-world attacks, emerging TTPs, AI-powered threat hunting, and what organizations must do today to keep pace. Listeners walk away with a clear picture of the problem—and a practical blueprint for reducing supply chain risk. What You'll Learn  How modern attackers infiltrate open source ecosystems through fake accounts and counterfeit package contributions. Why dependency chains dramatically amplify both exposure and attacker leverage. How to use threat intelligence and threat hunting to proactively evaluate upstream packages before adoption. Where AI-powered code analysis is changing the ability to discover hidden vulnerabilities and suspicious patterns. Why dependency pinning, SBOM discipline, and continuous monitoring now define a strong supply chain posture. Episode Highlights 00:00 — Welcome + Why Software Supply Chain Risk Matters 02:00 — Hayden's Non-Cyber Passion + Framing Today's Topic 03:00 — Why Open Source Powers Everything—and Why That Creates Exposure 06:00 — The Real Attack Vector: Contribution as Initial Access 08:00 — Inside the Indonesian “Fake Package” Campaign 10:30 — How to Evaluate Code + Contributor Identity Together 12:00 — Threat Hunting and AI-Enabled Code Interrogation 15:00 — The Challenge of Undisclosed Vulnerabilities in Widely Used Components 16:30 — How Recovery Works When Malware Is Already in Your Stack 19:00 — Continuous Monitoring as the Foundation of Modern Supply Chain Security 22:00 — Pinning, Maintainer Analysis, and Code Interrogation Best Practices 24:00 — Where to Learn More About Hunted Labs Episode Resources Hunted Labs — https://huntedlabs.com Hunted Labs Entercept Hunted Labs “Hunting Ground” research blog Open Source Malware (Paul McCarty) Learn more about your ad choices. Visit megaphone.fm/adchoices