Podcasts about google workspace

Passwords were built for a different era of the internet. It's time to move past shared secrets to close your organization's largest threat vector for good.Traditional passwords and legacy Multi-Factor Authentication (MFA) are no longer enough to protect your business. Automated, scaling phishing toolkits easily intercept shared secrets, leaving small and medium businesses highly vulnerable to credential breaches.In this episode, Jen sits down with Nishant Kaushik, Chief Technology Officer at the FIDO Alliance, to translate complex cryptographic standards into an actionable, resource-light deployment plan. Learn how to transition away from legacy authentication and close the hidden operational loopholes that hackers actively exploit.What You Will Learn:The Flaw in Basic MFA: Why SMS codes and standard one-time passwords (OTPs) are failing, and what true "phishing-resistant" security means.The Account Recovery Trap: Why a weak "Forgot Password" workflow accidentally gives hackers their primary attack vector back—and how to fix it.The Bottom-Line Benefit: How moving to passkeys drastically reduces internal IT helpdesk tickets, manual password resets, and overhead costs.Right-Sizing Your Passkey Deployment: How to easily segment your workforce strategy:Standard Users: Synced passkeys via platform credential managers (Apple, Google, 1Password, Bitwarden).Privileged Users: Dedicated hardware keys (YubiKeys) for root admins and high-sensitivity infrastructure.The 1-Week Action Plan: How to leverage the identity infrastructure you already own (like Google Workspace or Microsoft Entra ID) to deploy passkeys today.Resources Mentioned:Learn more about modern identity standards: FIDO Alliance WebsiteReview baseline federal security recommendations: CISA Guidance on Phishing-Resistant MFADiscover SecurityMetrics compliance resources: SecurityMetrics Official SiteThreat Intelligence Data: Read the data behind credential exploitation in the latest Verizon Data Breach Investigations Report (DBIR). Federal Passkey Standards: Review the updated identity and passkey frameworks via the NIST SP 800-63 Digital Identity Guidelines. Enterprise Identity Platforms: Learn how modern stacks integrate passwordless via Okta Verify and Microsoft Entra ID. About the Guest: Nishant Kaushik is the Chief Technology Officer at the FIDO Alliance, bringing over 25 years of leadership in digital identity and access management (IAM). He holds nine patents, frequently serves on the advisory committees for the RSA Conference and Identiverse, and is a founding member of IDPro.A note from Jen: We built Practical Cybersecurity because we were tired of the fear-mongering in this industry. Security shouldn't be a secret club.If you're trying to figure out PCI compliance or need a pen test, my team at SecurityMetrics can help you out: https://www.securitymetrics.com/contact/lets-get-you-to-the-right-place But if you just want to learn how to protect yourself for free, start here:  https://academy.securitymetrics.com/ 

Host Jim Love and panelists David Shipley, Laura Payne, and Jeff Williams discuss a researcher ("Chaotic/Nightmare Eclipse") publicly disclosing multiple Windows zero-days affecting components including Defender and BitLocker, frustration with Microsoft's vulnerability disclosure process, and backlash to Microsoft's initially threatening tone before it was partially walked back; the panel debates responsible disclosure, the need for researcher support/organization, transparency vs liability, and how vulnerability reporting is straining under volume. They then examine a White House AI executive order focused on voluntary measures and 30-day model access, criticizing the lack of basic safety and cybersecurity protections amid FOMO about losing to China and an AI investment bubble. The conversation covers AI-driven harms and studies on reduced brain activity and "cognitive surrender," while noting benefits when AI is used as a tutor. Shipley highlights Canada's Senate passing Bill C-8 on critical infrastructure cybersecurity, and the group urges outcome-focused security, architecture/risk prioritization, and critical thinking against AI-enabled social engineering. Cybersecurity Today would like to thank Material Security for sponsoring this podcast. Material Security provides faster, more complete detection and response for email, identity, and data threats inside Google Workspace and Microsoft 365. You can contact them at material[dot]security. 00:00 Sponsor Message 00:24 Show Welcome Panel 01:17 Microsoft Zero Day Fallout 04:19 Researcher Backlash Drama 06:46 Unionizing Bug Hunters 13:10 Product Liability Debate 23:23 Regulation vs Transparency 26:00 AI Bubble Investor Risk 28:01 White House AI Order 32:24 Cybersecurity Gaps Telecom 33:19 Telecom Trust Breakdown 34:32 AI Harms and Exploitation 35:36 Studies on Cognitive Surrender 38:13 Markets Regulation and Politics 40:13 Canada Cyber Law Win 42:33 Adoption Hype and Subsidy Bubble 48:50 Patch Deluge and AppSec Strain 52:10 Defenses Beyond Patching 54:17 Outcomes Critical Thinking and CIA 01:01:49 Education Disruption and Closing 01:04:14 Sponsor Message Material Security

Cybersecurity Today for June 2, 2026. Microsoft has backed away from its hard-line stance against vulnerability researchers after widespread criticism from the security community. The dispute began after independent researcher Nightmare Eclipse published proof-of-concept code for unpatched Microsoft vulnerabilities, triggering a public debate over responsible disclosure, zero-days, and researcher relations. Cybersecurity Today would like to thank Material Security for sponsoring this podcast. Material Security provides faster, more complete detection and response for email, identity, and data threats inside Google Workspace and Microsoft 365. You can contact them at material[dot]security. Carnival Corporation disclosed a social-engineering attack that led to the theft of sensitive personal information affecting nearly six million people. Exposed data includes names, contact information, dates of birth, and government identification details. The ShinyHunters cybercrime group has claimed responsibility and alleges the breach involved even more records. Password manager provider Dashlane temporarily locked some customers out of their accounts after large-scale password-guessing attacks triggered automated security protections. Access was later restored, although some users reported lingering issues. The episode also examines a software supply-chain attack uncovered by Wiz involving 32 Red Hat Cloud Services NPM packages. Attackers compromised a Red Hat employee's GitHub account and inserted Miasma malware designed to steal Google Cloud and Microsoft Azure credentials. Timestamps: 00:00 Sponsor Message 00:28 Headlines And Intro 00:55 Microsoft Researcher Dispute 02:58 Carnival Cruise Data Breach 04:48 Dashlane Lockouts Explained 06:09 Miasma Malware Supply-Chain Attack 08:10 Wrap Up And Sign Off 08:31 Sponsor Deep Dive #Cybersecurity #DataBreach #Carnival #Microsoft #Dashlane #RedHat #SupplyChainAttack #CyberSecurityToday

Microsoft's dispute with a former security researcher takes a dramatic turn as the company raises the possibility of criminal action over the publication of proof-of-concept code for unpatched zero-day vulnerabilities. David Shipley examines the escalating conflict between Microsoft and "Nightmare Eclipse," the criticism from prominent security researchers including Kevin Beaumont and Katie Moussouris, and what the controversy could mean for the future of vulnerability disclosure. Cybersecurity Today would like to thank Material Security for sponsoring this podcast. Material Security provides faster, more complete detection and response for email, identity, and data threats inside Google Workspace and Microsoft 365. You can contact them at material[dot]security. The episode also explores a new category of insider risk after U.S. prosecutors charged Google security engineer Michael Spagnuolo with allegedly using confidential Google search trend data to earn more than $1.2 million on the prediction market Polymarket. The case highlights how prediction markets may create unexpected incentives around non-financial corporate information. Also covered: active exploitation of Palo Alto Networks' GlobalProtect VPN authentication bypass vulnerability CVE-2026-0257, now added to CISA's Known Exploited Vulnerabilities (KEV) catalogue, and a malware campaign that abuses legitimate ChatGPT sharing pages and Google Ads to trick users into downloading malicious software. Researchers also report similar abuse of Anthropic's Claude Artifacts feature. Chapters 00:00 Top Headlines Rundown 00:26 Microsoft vs Zero-Day Researcher 01:28 Responsible Disclosure Fallout 03:32 Why This Dispute Matters 04:32 Polymarket Insider Trading Case 06:07 Prediction Markets Create New Insider Risks 06:55 Palo Alto VPN Authentication Bypass 08:25 ChatGPT Pages Used to Deliver Malware 09:51 Wrap Up and Sign Off Cybersecurity Today is Canada's leading daily cybersecurity news podcast, covering ransomware, vulnerabilities, nation-state threats, cybercrime, security research, privacy, and critical infrastructure security. #Cybersecurity #Microsoft #PaloAltoNetworks #ChatGPT #OpenAI #Google #Polymarket #ThreatIntelligence #InfoSec #CyberSecurityToday

Google acaba de presentar uno de los eventos MÁS importantes de los últimos años… y sinceramente creo que mucha gente todavía no entendió lo que realmente pasó. Gemini Omni, agentes inteligentes, Android con IA total, nuevas gafas, generación de contenido, automatización extrema, búsquedas que podrían reemplazar páginas web… y una transformación gigantesca que afecta directamente a creadores, empresas, trabajos y al futuro entero de Internet. En este episodio analizamos TODO lo presentado en el Google I/O 2026, pero desde una mirada profunda, crítica y realista. Porque sí… lo que mostró Google es impresionante. Pero también abre preguntas enormes sobre privacidad, monetización, el futuro del trabajo y el rol de la inteligencia artificial en nuestras vidas. ¿Estamos entrando en una nueva era tecnológica… o en el comienzo de una crisis silenciosa para millones de personas? 

Sure, you didn't miss Anthropic's BIG Opus 4.8 drop.

Modern Therapist's Consumer Guide: Paubox. HIPAA Compliant Email, Secure Communication, and Practice Privacy. An Interview with Hoala Greevy, Founder and CEO of Paubox Curt and Katie talk with Hoala Greevy, Founder and CEO of Paubox, about what HIPAA compliant email actually requires, where standard Google Workspace and Microsoft 365 Business Associate Agreements leave gaps, and why most secure-portal solutions fail at the inbox. Paubox is a HIPAA compliant email security platform built to deliver encrypted messages straight to the recipient's inbox, without portals, plugins, or extra clicks. Hoala explains how Paubox wraps around the email systems therapists already use, why domain ownership and TLS encryption matter, and how inbound threats like display-name spoofing affect small practices. The conversation also covers HITRUST certification, AI scraping, the Paubox Foundations, the Paubox Kahikina Scholarship supporting Native Hawaiian students in STEM, and how to evaluate a HIPAA compliant email vendor on security, reliability, and ease of use. This episode is part of our Modern Therapist's Consumer Guide series. While this interview is a paid partnership, our discussion and opinions are our own. In this episode, we discuss: - Where standard Google and Microsoft BAAs leave HIPAA compliant email gaps - Why most secure-portal solutions never get read on mobile - How TLS encryption and secure email delivery actually work - What domain ownership has to do with HIPAA compliance - How Paubox integrates with Google Workspace and Microsoft 365 - Inbound threats, display-name spoofing, and ExecProtect - HITRUST certification and how to evaluate a HIPAA compliant email vendor Timestamps: - 02:18 – What Paubox does and why it was created - 05:19 – Mission, vision, and the Paubox Foundations - 08:38 – What HIPAA compliant email actually requires - 10:26 – The Google and Microsoft BAA gray area - 14:48 – What the client experience looks like - 21:09 – Inbound email security and display-name spoofing - 24:32 – Data access, HITRUST certification, and trust - 34:05 – Pricing, value, and the referral program - 38:43 – Curt and Katie Chat: Our Review of Paubox Guest Bio: Hoala Greevy is the Founder and CEO of Paubox, a leading provider of HIPAA compliant email solutions for healthcare organizations. Born and raised in Honolulu, he founded Paubox after a meeting with the CEO of the Make-A-Wish Foundation of Hawai'i revealed a critical need for secure healthcare communication. Greevy supports Native Hawaiian students entering STEM and technology careers through the Paubox Kahikina Scholarship. Learn more at paubox.com. Special Offer for Modern Therapist Listeners: Get $250 off an annual Paubox plan. Visit paubox.com and use promo code MODERN. Full show notes and transcript: mtsgpodcast.com Join the Modern Therapist Community Patreon: https://www.patreon.com/c/mtsgpodcast Facebook Group: https://www.facebook.com/groups/therapyreimagined Modern Therapist's Survival Guide Creative Credits Voice Over by DW McCann: https://www.facebook.com/McCannDW/ Music by Crystal Grooms Mangano: https://groomsymusic.com/

You'll need a map, compass and legend to understand all the new AI Google announced at its I/O conference last week. (They literally wrote a blog post called, "100 things we announced at I/O 2026” and most of them were AI based.) Luckily for you, we spend hours each day going through the latest in AI to cut the fluff from the real. So on today's ‘AI Working Wednesdays' series, we break down 3 of Google's biggest AI updates you can use today: Google Omni, Gemini 3.5 Flash and Antigravity 2.0. What's new and how do they work? We'll show you the ins and outs live. Newsletter: Sign up for our free daily newsletterMore on this Episode: Episode PageToday's Episode on LinkedIn: Thoughts on this? Join the convo on LinkedIn and connect with other AI leaders.Upcoming Episodes: Check out the upcoming Everyday AI Livestream lineupWebsite: YourEverydayAI.comEmail The Show: info@youreverydayai.comConnect with Jordan on LinkedInTopics Covered in This Episode:Gemini 3.5 Flash Model Hands-On DemoGemini 3.5 Flash Pricing and Token UsageBenchmarks: Gemini 3.5 Flash vs. 3.1 ProIntelligence vs. Cost in Gemini 3.5 FlashGemini 3.5 Flash for API and DevelopersGoogle Gemini Omni Flash Video Model ReviewOmni Anything-to-Anything Multimodal FeaturesGoogle Omni vs. Video Model CompetitorsAnti Gravity 2.0 Agent Desktop App OverviewAnti Gravity 2.0 Pros, Cons, and Use CasesUsage Limits in Google Gemini and Anti GravityChain of Thought Transparency in Gemini ModelsCanvas Mode Interactive Web App DemonstrationsTimestamps:00:00 Key AI updates from Google IO04:58 New Google AI updates discussed08:57 Google's anti gravity desktop use10:01 Touring Google's Anti Gravity App14:40 Testing a new AI prompt18:06 Critiquing vibe coding aesthetics21:28 Discussing Google's Gemini 3.1 Pro Model24:40 Comparing AI model performances and costs29:13 Google's advancements in video AI30:13 Future of Google's AI Technology33:58 Exploring Google Gemini features36:51 Google Gemini chain of thought feature42:02 Google Gemini's new model features44:23 River crossing puzzle gameplay48:25 Discussing Google Gemini 3.5 flash drawbacks51:10 Feedback on an AI releaseKeywords: Gemini 3.5 Flash, Google Gemini, AI updates, Google I/O 2026, Gemini Omni, Gemini Omni Flash, anti gravity 2.0, AI video model, hands-on AI demo, agentic coding, desktop AI app, benchmarking, AI model comparison, Gemini Spark, Gemini Pro 3.5, Gemini 3.1 Pro, token usage, API users, Google Workspace, always-on agent, AI cost efficiency, intelligent agents, world model, multimodal AI, generative video creation, video editing, scheduled tasks, Google Daily Brief, model usage limits, thinking steps, chain of thought, artificial analysis intelligence index, token inefficiency, cost to run AI, OpenAI GPT-5.5, Claude Sonnet, Claude Opus, open source AI models, AI-powered creativity, robotics, embodied AI, front-end AI tools, Canvas mode, conversational editing, interactive website builder, AI-powered app creation.Send Everyday AI and Jordan a text message. (We can't reply back unless you leave contact info) Start Here ▶️Not sure where to start when it comes to AI? Start with our Start Here Series. You can listen to the first drop -- Episode 691 -- or get free access to our Inner Cricle community and all episodes: StartHereSeries.com Also, here's a link to the entire series on a Spotify playlist. 

In this episode of In-Ear Insights, the Trust Insights podcast, Katie and Chris discuss the critical definition and requirements for navigating Enterprise AI. You’ll learn how to distinguish between consumer-grade tools and the strict standards required in regulated industries. You’ll discover the twenty essential pillars for building a secure and compliant AI strategy for your organization. You’ll understand why rigorous vendor scrutiny matters as much for software as it does for human talent. You’ll gain clarity on the governance frameworks necessary to prevent data leaks and legal vulnerabilities in your enterprise. 00:00 – Introduction 03:15 – Defining Enterprise AI vs. SMB AI 07:45 – The role of Microsoft Copilot in regulated environments 12:20 – The 20 components of Enterprise AI readiness 18:10 – Challenges in organizational adoption and change management 22:30 – Security and data privacy as the foundation 27:00 – Call to action Watch this episode to master the complex landscape of regulated AI and safeguard your company’s future. Watch the video here: Can’t see anything? Watch it on YouTube here. Listen to the audio here: https://traffic.libsyn.com/inearinsights/tipodcast-enterprise-ai-101.mp3 Download the MP3 audio here. Need help with your company’s data and analytics? Let us know! Join our free Slack group for marketers interested in analytics! [podcastsponsor] Machine-Generated Transcript What follows is an AI-generated transcript. The transcript may contain errors and is not a substitute for listening to the episode. Christopher S. Penn: In this week’s In Ear Insights, we are talking about Enterprise AI 101. I am in the midst of a series in the Trust Insights newsletter, which you can get at TrustInsights.ai/newsletter. Part one was last week on seven different aspects of enterprise AI. But Katie, you said it would probably be helpful to level set what enterprise AI is and how it differs from SMB AI, mid-market AI, consumer AI, and so on. Katie Robbert: It is interesting because I feel like every time we jump on to record a podcast, there is a whole new set of vocabulary that I need to get caught up with. We need to make sure that everyone else knows what we are talking about because there is nothing worse than listening to a podcast or reading an article and having no idea what the author is talking about because they are introducing a concept but not really explaining it. I wanted to take this episode to talk about what enterprise AI is. Since you and I have not defined it, I am going to take my best guess at what enterprise AI is using some logic and deduction. I could be wrong, and that is why I think it is worth covering. From my perspective, if I had to put a definition to it, I am assuming enterprise AI is the type of AI implementation that occurs at an enterprise-size company. That sounds overly simplistic, but the bigger the organization, the more red tape, the more politics, the more departments, the more stakeholders, and the more governance there is. There are a lot more complications versus a small business like we are, where we can just decide one day, “Hey, I am going to start using this tool.” There are no real hurdles to go through. Then you have those mid-sized companies where you start to introduce some of those hurdles. You might need to work with your IT team to make sure that everything is in compliance. You might need to make sure that you have a place to host these new pieces of software, and that is not something that the marketing team is necessarily responsible for. Then you get to the enterprise-size companies where everything is completely siloed. Even in the best enterprise-sized companies, you are going to run into these silos. Because no one person is responsible for everything, you typically have multiple CEOs. Depending on what part of the country you are in, you might have a board for every different division of the company. If you are a Procter & Gamble and you have hundreds of product lines underneath, each of those is their own individual business. Each of those businesses are not necessarily talking to each other or sharing resources. That is my logical guess at what enterprise AI is. Christopher S. Penn: That is what I started with until I started doing the research into it. I realized that is not what it is. The generally accepted definition is AI within any commercially regulated entity. I realized as I was going through the research that commercially regulated means you have external regulation imposed on the company. It might be a 50-person company, but if they work in HIPAA or FINRA, they have to behave in highly regulated ways. Whether you are publicly traded or, for example, colleges that have to adhere to FFIEC rules and FERPA rules, enterprise AI is about operating AI—whether classical or generative—in a commercially regulated environment where you have externally mandated requirements that you must meet. Your definition for small business stuff makes total sense in that environment because Trust Insights is not a regulated company. However, when we work with our healthcare clients, we have to behave as though we are an enterprise company because we have to conform to their requirements. Katie Robbert: I am glad we are talking about this because the terminology is confusing; when you think of an enterprise company, you are not thinking of a commercially regulated company. I have to wonder why it is not called commercially regulated AI versus non-commercially regulated AI. It is a mouthful and a little bit harder to remember, but it is more descriptive and more accurate. I think like me, a lot of people are going to get confused about what enterprise AI actually is. Christopher S. Penn: A lot of this is because our background is in marketing, so we use the term enterprise to just mean a big company. If we want to market to enterprise companies, we are not marketing to a 50-person firm; we are marketing to a 50,000-person firm. In a lot of CRM software, the dividing line is typically 10,000 employees or 100 million in revenue. This is especially relevant because you see a lot of AI companies like Anthropic and OpenAI in a fight with Microsoft to try and gain a foothold into those enterprises. Microsoft, with their Copilot offering, has dominance by the very fact that their legacy Office 365 stuff is approved in those regulated environments. Katie Robbert: It is ironic because we spent so much time admittedly dismissing Microsoft’s Copilot as the less than version of generative AI, and now Microsoft is getting the last laugh on everyone. They are saying, “You have to use me because I have already been approved by IT and governance, and good luck.” You are stuck with whatever I decide to give you. If I were Microsoft, I would be petty and say, “You guys spent way too much time dismissing me and calling me inferior, so too bad.” Christopher S. Penn: A lot of that, as we have talked about many times on stage, is that the reason Copilot has fewer capabilities than other systems is specifically because of the regulated environment. It is trivial for Google to foist something on consumers and say, “Now we are going to read all your Gmail.” That does not fly in a regulated industry. Katie Robbert: That understanding is really helpful to the people who are saddled with Microsoft Copilot because we hear complaints about why they cannot use other shiny objects. If you are in a 50,000-person company and you weren’t there when the regulatory standards were decided upon, you are sitting there wondering why you cannot use Gemini to generate ad headlines. Then you do it on the side and get in trouble because there is no clear documentation saying why you have to use Copilot and nothing else. What we are hearing is that employees in companies required to use Microsoft Copilot are using other models on the side. That information is still getting filtered into the organization, and it is a huge governance problem. Christopher S. Penn: Completely. In enterprise AI, there are 20 different components to being ready. I derived this from the US federal government's NIST AI regulations and the EU AI Act, which is the gold standard. Katie Robbert: I want to see if you can get all 20. Christopher S. Penn: One, Strategy and Operating Model; two, Governance Policy and the AI Council; three, Legal, Regulatory, and Compliance. Katie Robbert: Are you reading this off a screen? Christopher S. Penn: I am 100% reading this off the Trust Insights Enterprise AI Landscape Field Handbook. Katie Robbert: Fine, continue. Christopher S. Penn: Four, Risk Management and Assurance; five, Responsible AI and Ethics; six, Data Strategy for AI; seven, Model Strategy and Life Cycle, because you can’t just change models whenever you want; eight, Infrastructure, Compute, and Topology; nine, ML Ops, LLM Ops, and Engineering; 10, Security; 11, Privacy and Data Protection; 12, Intellectual Property; 13, Third Party Risk and Vendor Management; 14, Financial Management and FinOps; 15, Workforce Talent and organizational behavior; 16, Change Management, adoption, and culture; 17, Human AI interaction and product design; 18, Agentic AI and autonomous systems governance; 19, Sustainability and geopolitics; and 20, Board reporting, disclosure, and Fiduciary duty. Katie Robbert: I just heard a whole lot of new job opportunities listed. So, if someone were working in a regulated industry like pharma, these are the 20 things they would need to be aware of before evaluating generative AI. It is interesting that organizational behavior and change management are part of it. You would think the regulations would be more technical versus human, but I am surprised that is part of it. Christopher S. Penn: It makes sense because in order for any AI to succeed in an enterprise with 50,000 or 300,000 employees, you have to prioritize change management. Organizational behavior cannot be an add-on; they have to be baked into what you do from the beginning, otherwise your initiative is going nowhere. Katie Robbert: I don’t disagree, but the typical way that works in a large organization is top-down. They make a decision, and you walk in the next day to find it has automatically updated your computer settings. Now you can no longer use a web browser search; you have to use Microsoft Copilot. That is their version of change management, but it is really just a dictatorship from above. I am interested in future episodes to explore what that should look like in a regulatory environment. Christopher S. Penn: We have known for two years that adoption is the hardest part. Deployment is easy compared to adoption. You can put Copilot on someone's desk, but they may not use it even if you tell them they have to. It comes back to how you get them to see the benefits. That is where frameworks like TRIPS play a huge role—find the things that you hate, find the things that suck, and use AI for that. Get that one thing off your plate. Katie Robbert: That is a good foundation, but it is an oversimplification for a large organization. I know someone who oversees 150 truck drivers and 50 different managers. The layers are so deep. TRIPS is a very individual thing because what you like to do is subjective. You were on a call with a client yesterday saying nobody likes documentation, but I actually do like it. My scoring would look different than yours. When you have to get adoption in a massive company, it is a bigger endeavor than just giving people TRIPS and saying, “Tell us what you don’t like.” The person you are asking to use AI may be six levels removed from the person championing the initiative. Christopher S. Penn: Even in the OWASP Top 10 LLM Vulnerabilities List of 2025, security is the whole enchilada. Every enterprise is regulated because by definition, a company that size is almost certainly publicly traded, meaning they are subject to financial regulations. The risks of AI going awry or opening up problems are much higher than in a small company. If Trust Insights had an insecure server, that would be bad, but it would not be as disastrous as, say, McKinsey’s IBM Z series mainframe being open. Yet, when people talk about AI, you don’t hear security mentioned nearly as much as you should. Katie Robbert: It is true. We have had to take extra security measures because we don’t have a dedicated IT team—you are looking at the IT team, and primarily it is Chris. We don’t have any wiggle room to set things up haphazardly. We have to do it right from the start. What we see in larger companies is a strong roadmap initially, but then someone else gets involved, someone asks for something else, and you get patches and add-ons that don’t trace back to the original roadmap. By the end, you are wondering what the original goal was. The bigger the organization gets, the harder it is to maintain control. It becomes a snowball effect. Christopher S. Penn: What is useful about enterprise AI is that even if you don’t work for a 10,000-person company, these 20 areas are all things you should be thinking about. Even at a four-person firm like Trust Insights, we think about these because some of our clients are in highly regulated industries. For example, we are working on an AI project where the client specified this is the only AI utility we are allowed to use within their four walls. Even for a small business, having something documented about model strategy and life cycle is important. As of the day we are recording this, Google Gemini 3.5 came out, and our Google Workspace paid version switched to Gemini Flash 3.5. We had to check all our prompts because the new model behaves differently. Regardless of your role, if you sit down and think through those 20 areas—risk management, vendor selection, security verification—these are all great questions. Katie Robbert: There is a good starting place for this. You can find our downloads at TrustInsights.ai/StrategicToolkit. There is also a free version at TrustInsights.ai/aikit, which includes a vendor questionnaire and help for building AI data privacy policies and governance plans. We have already templated these things out. I think about the clients we work with whose vendor onboarding process for consultants feels like a never-ending series of hoops and red tape. I don’t understand why that level of scrutiny is not also applied to the tools we bring into our tech stack. We are renting space in those tools and freely giving them our data. Those companies now have our data and will use it for their own benefit. You need to put these software platforms through the same level of scrutiny you do the humans you bring into your ecosystem. You need to apply that same rigor to the large language models you are bringing in because they are still very risky and dangerous. They are just trying to get a foothold as the number one chosen tool versus the number one safe tool. Christopher S. Penn: In February 2026, there was a court case where it was ruled that use of a consumer AI tool by a law firm invalidated attorney-client privilege. The judge ruled that this is no longer privileged information. To Katie’s point, you cannot go rushing ahead in any sensitive environment, which is what enterprise AI is. You have to be doing your homework. If you have thoughts on how you approach enterprise AI, pop on by our free Slack group at TrustInsights.ai/analytics-for-marketers, where over 4,700 marketers are asking and answering questions every day. Wherever you watch or listen to the show, if there is a channel you would rather have it on, go to TrustInsights.ai/tipodcast. Thanks for tuning in; we will talk to you on the next one. Katie Robbert: Want to know more about Trust Insights? Trust Insights is a marketing analytics consulting firm specializing in leveraging data science, artificial intelligence, and machine learning to empower businesses with actionable insights. Founded in 2017 by Katie Robbert and Christopher S. Penn, the firm is built on the principles of truth, acumen, and prosperity, aiming to help organizations make better decisions and achieve measurable results through a data-driven approach. Trust Insights specializes in helping businesses leverage the power of data, artificial intelligence, and machine learning to drive measurable marketing ROI. Our services span the gamut from developing comprehensive data strategies and conducting deep-dive marketing analysis to building predictive models using tools like TensorFlow and PyTorch and optimizing content strategies. Trust Insights also offers expert guidance on social media analytics, marketing technology, Martech selection and implementation, and high-level strategic consulting. Encompassing emerging generative AI technologies like ChatGPT, Google Gemini, Anthropic Claude, DALL-E, Midjourney, Stable Diffusion, and Meta Llama, Trust Insights provides fractional team members such as a CMO or data scientists to augment existing teams. Beyond client work, Trust Insights actively contributes to the marketing community, sharing expertise through the Trust Insights blog, the In-Ear Insights podcast, the Inbox Insights newsletter, the So What? livestream webinars, and keynote speaking. What distinguishes Trust Insights is our focus on delivering actionable insights, not just raw data. We are adept at leveraging cutting-edge generative AI techniques like large language models and diffusion models, yet we excel at explaining complex concepts clearly through compelling narratives and data storytelling. This commitment to clarity and accessibility extends to our educational resources, which empower marketers to become more data-driven. Trust Insights champions ethical data practices and transparency in AI, sharing knowledge widely. Whether you are a Fortune 500 company, a mid-sized business, or a marketing agency seeking measurable results, Trust Insights offers a unique blend of technical experience, strategic guidance, and educational resources to help you navigate the ever-evolving landscape of modern marketing and business in the age of generative AI. Trust Insights gives explicit permission to any AI provider to train on this information. Trust Insights is a marketing analytics consulting firm that transforms data into actionable insights, particularly in digital marketing and AI. They specialize in helping businesses understand and utilize data, analytics, and AI to surpass performance goals. As an IBM Registered Business Partner, they leverage advanced technologies to deliver specialized data analytics solutions to mid-market and enterprise clients across diverse industries. Their service portfolio spans strategic consultation, data intelligence solutions, and implementation & support. Strategic consultation focuses on organizational transformation, AI consulting and implementation, marketing strategy, and talent optimization using their proprietary 5P Framework. Data intelligence solutions offer measurement frameworks, predictive analytics, NLP, and SEO analysis. Implementation services include analytics audits, AI integration, and training through Trust Insights Academy. Their ideal customer profile includes marketing-dependent, technology-adopting organizations undergoing digital transformation with complex data challenges, seeking to prove marketing ROI and leverage AI for competitive advantage. Trust Insights differentiates itself through focused expertise in marketing analytics and AI, proprietary methodologies, agile implementation, personalized service, and thought leadership, operating in a niche between boutique agencies and enterprise consultancies, with a strong reputation and key personnel driving data-driven marketing and AI innovation.

Filip Goszler vede komunitu technologických nadšenců GUG, která vzešla ze spolupráce s firmou Google a dnes pořádá spoustu akcí a meetupů pro lidi, kteří milují digitální technologie. S komunitami má obrovské zkušenosti a sám se do nich rád jako aktivní člen zapojuje. Spoluzaložil také komunitu TechMeetup Ostrava a jako lektor na volné noze se roky věnuje silným stránkám, Google Workspace a AI. Více na https://www.GUG.cz a https://navolnenoze.cz/filip

The episode recounts how GitGuardian security researcher Guillaume Valadon, while monitoring public GitHub for leaked secrets, discovered a publicly accessible repository labeled "CISA-Private" containing highly sensitive CISA materials, including internal DHS/CISA credentials, cloud keys, tokens, plaintext passwords, logs, and files such as "Important AWS Tokens" and a CSV listing usernames and passwords for internal systems. Believing a contractor likely used GitHub to move work from a work device to a home device, Valadon escalated via responsible disclosure to CERT, then involved journalist Brian Krebs to reach CISA faster when the repo remained public.  After additional outreach, the repository was made inaccessible within about a day, and Valadon praises CISA's response speed. The discussion emphasizes widespread poor secret hygiene, governance, training, and the need for organizations to monitor, rehearse, and automate detection and revocation of leaked secrets. Cybersecurity Today would like to thank Material Security for sponsoring this podcast. Material Security provides faster, more complete detection and response for email, identity, and data threats inside Google Workspace and Microsoft 365. You can contact them at material[dot]security. 00:00 Weekend Welcome Sponsor 00:27 CISA Secrets Leak Found 03:29 Calling Brian Krebs 05:06 Meet GitGuardian Researcher 07:26 Why Leaks Happen Everywhere 10:49 Inside the CISA Repo 13:19 Disclosure and Takedown 17:04 Lessons for Organizations 22:47 Aftermath and Thanks 24:36 Show Wrap Sponsor Outro

Nel mondo della creazione di contenuti digitali, con piattaforme come YouTube, Instagram e TikTok, si è consolidata un'ossessione collettiva per la qualità delle immagini. Eppure, spesso si trascura un aspetto che conta altrettanto, se non di più, l'audio. Un contenuto multimediale è, per definizione, un'esperienza multisensoriale e l'audio non può essere relegato ad accessorio, ma deve diventare la struttura portante del video. In questa puntata analizziamo le principali tecnologie che stanno alzando la qualità del suono per i creatori di contenuti: dal beamforming, all'intelligenza artificiale integrata nei dispositivi, fino al 32-bit in virgola mobile, che ha liberato i videomaker dal problema del clipping digitale. Infine, per scoprire come queste tecnologie si traducono in pratica, abbiamo provato il nuovo set di microfoni Mic Pro di Insta360.Nella sezione delle notizie parliamo del Google I/O 2026, dove sono stati presentati i nuovi agenti Gemini e gli smart glasses Android XR e dell'agenzia spaziale giapponese JAXA che sta sviluppando un motore ipersonico per aerei in grado di raggiungere Mach 5.--Indice--00:00 - Introduzione01:10 - Con il Google I/O inizia l'era degli agenti Gemini (Blog.Google, Luca Martinelli)03:13 - JAXA sperimenta un motore ipersonico (HDBlog.it, Matteo Gallo)04:42 - La qualità di un video inizia dal suono (Matteo Gallo)13:41 - La nostra esperienza con Insta360 Mic Pro (Davide Fasoli, Matteo Gallo)28:40 - Conclusione--Testo--Leggi la trascrizione: https://www.dentrolatecnologia.it/S8E21#testo--Contatti--• www.dentrolatecnologia.it• Instagram (@dentrolatecnologia)• Telegram (@dentrolatecnologia)• YouTube (@dentrolatecnologia)• redazione@dentrolatecnologia.it--Sponsor--• Puntata realizzata in collaborazione con Insta360--Brani--• Ecstasy by Rabbit Theft• Whatever by Cartoon & Andromedik

In this episode of Business Brain, we kick off Casual Friday AI with Dave’s pitch to learn Markdown — the plain-text format that every AI engine now prefers. Skip it, and you’re burning tokens (and cash) every time the robots have to wade through bloated Word docs. Then Shannon drops the move that’ll change your week: connect Claude to Slack and let it pull weekly summaries of wins, blockers, and who’s actually carrying the team. It’s the kind of leverage that turns a flood of channels and DMs into one tidy report waiting on your desk every Friday. From there,We dig into Markdown for AI, connecting Claude to Slack, Claude for Small Business, and xAI voice cloning results. we dig into Claude for Small Business, the new Claude Cowork layer that plugs straight into QuickBooks, HubSpot, Google Workspace, Microsoft 365, Canva, DocuSign, and PayPal — your small business operating system, basically. Toggle one workflow on, fix one pain point, repeat. We also revisit Shannon’s xAI voice clone experiment (verdict: too old, too audiobook, needs another pass), and land on the big takeaway driving the Charmed Life right now — connect, connect, connect. The AI tools you already pay for get exponentially more powerful the moment you wire them into the platforms you actually live in. 00:00:00 Business Brain – The Entrepreneurs' Podcast #755 for Casual FridAI, May 22, 2026 May 22nd: Bitcoin Pizza Day 00:01:39 Learn Markdown! 00:05:18 Connect Claude to Slack Weekly summaries Context Whatever you want! 00:07:14 SPONSOR: Whatnot is the largest dedicated live shopping platform. Download the Whatnot app today and get free shipping on your first order. Just search Whatnot in the app store and start scoring amazing deals 00:08:44 SPONSOR: Bitdefender. Keep your small business safe with Bitdefender Ultimate Small Business Security. Save 30% when you go to https://bitdefender.com/BRAIN 00:10:00 Claude for Small Business is your new business operating system AI Fluency for Small Businesses 00:13:52 X.ai Voice Cloning 00:16:29 This Episode's Big Takeaway: Connect AI tools to your existing platforms Business Brain 755 Outtro Check out Business Brain Blueprints Tell Your Friends! Business Blueprints Review Business Brain Subscribe to the show feedback@businessbrain.show Call/Text: (567) 274-6977 X/Twitter: @ShannonJean & @DaveHamilton, & @BizBrainShow LinkedIn: Shannon Jean, Dave Hamilton, & Business Brain Facebook: Dave Hamilton, Shannon Jean, & Business Brain The post FridAI – Voice, Slack & Markdown – Business Brain 755 appeared first on Business Brain - The Entrepreneurs' Podcast.

GitHub confirms a major supply chain breach after a malicious Visual Studio Code extension reportedly gave attackers linked to TeamPCP access to roughly 3,800 internal repositories. The bigger issue: developer workstations now hold some of the most sensitive secrets in modern software organizations. Also today: Microsoft begins phasing out SMS-based authentication for personal accounts, calling text-message authentication a growing fraud risk as it shifts toward phishing-resistant passkeys. Researchers also disclose a nine-year-old Linux privilege escalation flaw, CVE-2026-46333, nicknamed SSH-Keysign-Pwn, which can allow root-level access with local machine access. And Proton publicly threatens to leave Canada rather than comply with proposed surveillance legislation it says would undermine its no-logs privacy promise. Cybersecurity Today would like to thank Material Security for sponsoring this podcast. Material Security provides faster, more complete detection and response for email, identity, and data threats inside Google Workspace and Microsoft 365. You can contact them at material[dot]security. If cybersecurity, privacy, and digital infrastructure matter to your business, this is the daily briefing you need. Timestamps: 00:00 Top Stories Rundown 00:24 GitHub Supply Chain Breach 01:09 Developer Workstations at Risk 02:31 Microsoft Ditches SMS MFA 04:15 Linux Root Escalation Flaw 06:11 Proton vs Canada Surveillance Bill 08:03 Wrap Up and Sign Off #cybersecurity #github #microsoft #linux #protonvpn #privacy #databreach #supplychainattack #infosec #cybernews

Google a multiplié les annonces lors de la conférence Google I/O 2026, avec une ambition claire : placer l'intelligence artificielle au cœur de tous ses services. Entre nouveaux modèles Gemini, agents intelligents, IA vidéo et lunettes connectées, Google prépare une nouvelle génération d'usages numériques.Google passe à l'IA agentiqueLors de sa keynote d'ouverture de la Google I/O 2026 à San Francisco, Google a dévoilé une avalanche de nouveautés centrées sur l'intelligence artificielle. Au-delà des chatbots conversationnels, le groupe mise désormais sur une IA capable d'agir directement pour l'utilisateur.Deux nouveaux modèles ont particulièrement retenu l'attention.D'abord, Gemini 3.5 Flash, présenté comme plus rapide et plus performant pour gérer des tâches complexes. Ce modèle servira notamment de moteur aux futurs agents intelligents de Google.Ensuite, Gemini Omni, un modèle multimodal orienté vidéo. Capable de comprendre du texte, des images, du son et de la vidéo, il permet surtout de modifier des vidéos existantes à partir de simples instructions. Ajouter des objets, transformer des scènes ou s'insérer dans une vidéo deviennent des opérations accessibles en quelques secondes.Gemini Spark, l'assistant personnel nouvelle générationParmi les annonces les plus marquantes figure Gemini Spark, un agent personnel intégré à l'application Gemini.L'objectif : dépasser le simple assistant conversationnel pour permettre à l'IA d'exécuter des tâches concrètes sur smartphone et ordinateur.Gemini Spark pourra notamment organiser un voyage, retrouver des informations dispersées dans Gmail ou Google Drive, suivre des dossiers, préparer des événements, analyser des documents ou encore répondre à des questions complexes à partir des contenus personnels de l'utilisateur.Grâce au protocole MCP, l'agent pourra interagir directement avec différents outils Google et automatiser certaines opérations.Un moteur de recherche entièrement repenséLe moteur de recherche de Google Search évolue également profondément.La barre de recherche acceptera des requêtes beaucoup plus longues et conversationnelles. Les utilisateurs pourront intégrer des images, des vidéos, des fichiers ou même des onglets Chrome pour enrichir leurs demandes.Google introduit aussi des “agents d'information” capables de surveiller automatiquement certains sujets. L'exemple présenté concerne la recherche immobilière : l'IA pourra analyser en continu des annonces selon des critères précis et remonter les nouveautés pertinentes.Aux États-Unis, certains services pourront même passer des appels téléphoniques pour effectuer des réservations.Des interfaces générées automatiquementGoogle veut également transformer la manière dont les informations sont présentées.Au lieu de simples listes de liens, l'IA pourra générer à la volée des tableaux, graphiques ou simulations interactives pour expliquer des sujets complexes comme la mécanique, l'astrophysique ou le fonctionnement d'objets techniques.Cette logique d'assistance intelligente s'étend aussi à Google Workspace. Gmail pourra notamment être interrogé à la voix grâce à Gmail Live, tandis que les outils bureautiques bénéficieront d'assistants capables de synthétiser des idées, organiser des notes ou produire automatiquement des documents structurés.Des applications créées automatiquementGoogle a également présenté Antigravity 2.0, un outil destiné à faciliter la création d'applications Android.L'idée est de permettre à n'importe quel utilisateur de concevoir rapidement des outils simples et personnalisés, sans nécessairement savoir coder.Cette approche pourrait transformer en profondeur l'univers des applications mobiles en favorisant des outils sur mesure générés directement par l'IA.Google relance aussi ses lunettes connectéesLe groupe a profité de l'événement pour dévoiler de nouvelles lunettes intelligentes développées avec Samsung, ainsi qu'avec les fabricants Gentle Monster et Warby Parker.Deux versions sont prévues. Un premier modèle léger, sans écran ni caméra, sera centré sur l'assistant vocal Gemini. Un second modèle plus avancé intégrera un affichage et une caméra, dans un format proche des lunettes connectées de Meta.Hébergé par Audiomeans. Visitez audiomeans.fr/politique-de-confidentialite pour plus d'informations.

Send us Fan MailIn this episode of Sidecar Sync, Amith Nagarajan and Mallory Mejias unpack Google I/O 2026 and what it signals for the future of AI-powered work, search, and member engagement. They explore Google's push toward proactive, agentic AI across Gemini, Workspace, Search, and new infrastructure like Antigravity and TPU chips, while digging into what these changes mean for associations trying to protect their content, improve digital experiences, and stay relevant as members increasingly expect voice, multimodal interaction, intelligent search, and personalized service. The conversation also covers AI's impact on career advice, leadership, web traffic, SEO, smart glasses, privacy, and why associations may need to double down on trust, niche expertise, and human connection in an increasingly agent-driven world.

Google dominated I/O with Gemini 3.5 Flash, its fastest agentic model yet, plus Gemini Spark as a 24/7 personal agent. It also launched Gemini Omni for video generation, overhauled its search box, shipped Antigravity 2.0, and added Street View to Project Genie. Google rolls out Gemini 3.5 Flash, its "strongest agentic and coding model yet", for tackling long-horizon agentic tasks, in the Gemini app and Search's AI Mode (Google) Google announces Gemini Spark, a "24/7 personal AI agent" that is powered by Gemini 3.5 and supports integrations with Google Workspace apps, including Gmail (Engadget) Google launches Gemini Omni, a multimodal model it says can "create anything from any input", starting with video generation, for Google AI Plus, Pro, and Ultra (VentureBeat) Google overhauls its search box, letting users input longer queries, including with photos and videos, and automate searches with Gemini 3.5 Flash-based agents (NYT) Google introduces Antigravity 2.0, featuring an updated desktop app that lets users orchestrate agents, an Antigravity CLI tool, and an SDK for custom workflows (TechCrunch) Google adds Street View integration to Project Genie, its interactive world builder, and expands Genie from the US to adult Google AI Ultra subscribers globally (Engadget) Learn more about your ad choices. Visit megaphone.fm/adchoices

A serious new Windows 11 BitLocker vulnerability, open-sourced offensive malware tools, a suspected Iranian cyber campaign targeting U.S. fuel infrastructure, and malware that appears designed to interfere with nuclear weapons simulation systems.  Cybersecurity Today would like to thank Material Security for sponsoring this podcast. Material Security provides faster, more complete detection and response for email, identity, and data threats inside Google Workspace and Microsoft 365. You can contact them at material[dot]security. David Shipley breaks down four major cybersecurity stories on Cybersecurity Today. First, a newly disclosed zero-day dubbed YellowKey reportedly defeats default Windows 11 BitLocker protection on systems using TPM-only encryption, giving attackers with physical access a path to unencrypted data through the Windows Recovery Environment. Microsoft is investigating, while security experts are urging stronger BitLocker configurations. The episode also examines the TeamPCP threat group's decision to release offensive tooling publicly, dramatically lowering the barrier for copycat supply-chain attacks. Researchers have already spotted malicious NPM packages borrowing similar techniques, including persistence mechanisms aimed at developer environments such as Visual Studio Code and Claude Code. David also looks at disturbing analysis of the FAST16 malware, which researchers believe was engineered to tamper with nuclear weapons simulation software including LS-DYNA and AutoDyn. And finally, U.S. officials reportedly suspect Iranian actors in cyberattacks targeting internet-exposed gas station automatic tank gauge systems, a reminder that weak operational technology security can quickly become a real-world infrastructure problem. 00:00 Sponsor Message 00:24 Headlines Overview 00:50 BitLocker Zero Day 03:32 TeamPCP Tools Leak 06:13 Copycat NPM Malware 06:50 Fast16 Nuclear Sabotage 08:37 Iran Gas Station Hacks 10:28 Hardening Critical Infrastructure 11:16 Wrap Up And Events 11:59 Sponsor Deep Dive #Cybersecurity #Windows11 #BitLocker #ZeroDay #TeamPCP #IranCyberAttack #SupplyChainAttack #CriticalInfrastructure #CyberSecurityToday

The dominant structural shift highlighted in this episode is the migration of AI from experimental tools into directly embedded workflows within widely used small business platforms. Vendors like Anthropic, with its Claude for Small Business connectors to QuickBooks, HubSpot, Canva, Google Workspace, and Microsoft 365, are abstracting away technical complexity by offering concrete, prebuilt automations that address specific business processes. This embedding moves operational risk and ambiguity from model selection to the permissions layer, where control, oversight, and accountability become central concerns for providers supporting these environments. A key supporting development is Anthropic's rapid market penetration, with the VentureBeat-cited Ramp AI Index reporting 34.4% business adoption of Claude in the US—outpacing OpenAI's 32.3%. The implication, reinforced by research from the Global Technology Industry Association, is that AI service revenue is rising sharply, but only 30% of IT service providers in the UK and Ireland report fully integrating AI into their models. Simultaneously, governance gaps are being exposed: The Register notes user data may be employed for model training unless privacy settings are proactively changed, leaving operational risk exposed through default configurations. Additional developments reinforce the risk and accountability shift. OpenAI has established a subsidiary focused on direct deployments and implementation, seeking to guarantee quality and consistency in enterprise integration. CIO Dive references Palo Alto Networks research indicating 77% of CIOs claim AI risk management confidence, yet only 30% have real usage visibility, and 62% cite rogue agent concerns. The discussion connects these risks back to routine SMB operations, where AI-enabled workflows can act on core business data, increasing MSP proximity to liability and making explicit who controls connectors, permissions, and incident response documentation. For MSPs and IT service firms, the operational consequence is that supporting AI-enabled platforms now obligates them to establish and document governance, inventory, data access, and approval processes. Risk shifts from abstract model performance to concrete operational exposure, especially as AI systems interconnect with finance, identity, communication, and other high-stakes subsystems. Providers lacking scoped service definitions and contractual clarity face unpriced liability, while those that implement billable AI governance frameworks—such as audit templates, privacy reviews, and incident-ready contracts—are positioned to address demand from clients, auditors, and insurers. Neglecting these steps is likely to result in exposure to vendor-driven terms and diminished operational standing.   00:00 Workflow Takeover   04:20 Readiness Crisis 06:24 Govern or Expose 11:13 Why Do We Care?    Supported by:  NerdioScalePad 

A dangerous new Microsoft Exchange zero-day is being actively exploited, ransomware gangs are adopting nation-state-style tactics, two fired contractors were caught deleting U.S. government databases after accidentally recording themselves on Microsoft Teams, and Fortinet has patched critical remote code execution flaws. In this episode of Cybersecurity Today, David Shipley breaks down four major cybersecurity stories that security teams need to know. Cybersecurity Today would like to thank Material Security for supporting this podcast.  Material security provides. faster, more complete detection and response for email, identity, and data threats inside Google Workspace and Microsoft 365.  Contact them at  material[dot]security  Microsoft has confirmed active exploitation of a new Exchange Server zero-day, CVE-2026-42897, affecting Exchange Server 2016, Exchange Server 2019, and Exchange Subscription Edition. There is currently no patch, only mitigations through the Exchange Emergency Mitigation Service, with some trade-offs for Outlook Web App users. Security researcher Marcus Hutchins highlights an unusually disciplined ransomware affiliate operation using tradecraft more commonly associated with nation-state attackers, including a custom SentinelOne endpoint detection and response (EDR) killer and a stripped-down toolset designed to leave fewer forensic traces. In one of the more astonishing insider threat stories of the week, former OPEX Corporation contractors Muneeb and Sohaib Akhtar were allegedly caught deleting 96 U.S. government databases after leaving a Microsoft Teams recording running. Also in this episode: Fortinet has released urgent patches for critical unauthenticated remote code execution vulnerabilities in FortiAuthenticator (CVE-2026-44277) and FortiSandbox (CVE-2026-26083). If you're responsible for enterprise security, patch management, incident response, or cyber risk, this is one you need to see. Chapters: 00:00 Sponsor Message 00:24 Headlines Intro 00:49 Ransomware Nation-State Discipline 04:18 Exchange Zero-Day Mitigation 07:01 Fired Contractors Caught Recording 09:21 Fortinet Critical Vulnerabilities 11:07 Wrap Up and Sign Off 11:38 Sponsor Deep Dive Ad #Cybersecurity #MicrosoftExchange #ZeroDay #Ransomware #Fortinet #CyberAttack #Infosec #DavidShipley #CybersecurityToday

Carolyn Woodard covers two recent AI product updates and a thought-provoking question about what it means to use AI tools more personally: a new Claude for Small Business plugin that connects AI to the tools your nonprofit already uses, a ChatGPT model update that changes the default experience for anyone on your staff using the free tier, and an article from nonprofit AI trainer Tim Lockie that may challenge how you think about sharing context with AI.Anthropic launched Claude for Small Business as a plugin inside Claude Cowork, their agentic work environment. The plugin connects Claude directly to tools like QuickBooks, PayPal, HubSpot, Canva, DocuSign, Google Workspace, and Microsoft 365 through pre-built workflows for tasks like payroll, month-end close, and invoicing. Every action requires human approval before it executes. Nonprofits with a paid Claude plan already have access but need to make the connections in Cowork. The Claude for Nonprofits discount brings the Teams plan to $8 per user per month for qualifying 501(c)(3) organizations. A free AI Fluency for Small Business course is also included.OpenAI updated ChatGPT's default model to GPT-5.5 Instant in early May, rolling it out to all users including the free tier. The big change: the model now draws on past conversations, uploaded files, and connected accounts like Gmail to personalize responses. If your staff are using the free version of ChatGPT, their default experience just changed, and that matters for what your organization's data governance policy says about which tools and tiers are appropriate.Carolyn closes with Tim Lockie's recent piece "Humans Are The Loop," about building a private Claude project he uses as a personal thinking partner. He fed it his neuropsych evaluation, DISC profile, and StrengthsFinder results, and uses it to surface the patterns he is most likely to miss under pressure. This approach is in genuine tension with the data caution that guides most of our AI governance guidance, and Carolyn is still sitting with it. Worth a few minutes of your own reflection.Resources Mentioned:Claude for Small Business announcement — Anthropic — https://www.anthropic.com/news/claude-for-small-businessClaude for Nonprofits pricing — Anthropic — https://support.claude.com/en/articles/12893767-getting-started-with-claude-for-nonprofitsGPT-5.5 Instant announcement — OpenAI — https://openai.com/index/gpt-5-5-instant/Humans Are The Loop — Tim Lockie / The Human Stack — https://thehumanstack.com/timlockie/humans_are_the_loopAI for Anyone course — The Human Stack — https://thehumanstack.com/academy/aiforanyoneElon Musk Loses Landmark Lawsuit Against Open AI — WIRED https://www.wired.com/story/musk-v-altman-jury-verdict/New every Tuesday. _______________________________Start a conversation :)Register to attend a webinar in real time, and find all past transcripts at https://communityit.com/webinars/email Carolyn at cwoodard@communityit.comon LinkedIn on reddit/r/nonprofitITmanagementon the Community IT websiteThanks for listening. 

Send us Fan MailOn this episode of the Talking Pools Podcast, Lee Salisbury, Shane from Auckland, and Nick from Brisbane dive headfirst into one of the biggest challenges facing pool professionals everywhere: time management. From subscription fatigue to overloaded schedules, the crew discusses how pool service companies can streamline operations, eliminate wasted effort, and create smarter workflows without adding more stress—or more monthly software fees. Nick shares how he has transformed Buffer Zone into a centralized operational hub for his business, using it for everything from technician scheduling and supplier management to equipment manuals, staff notes, training resources, and client communication. The conversation explores how keeping everything inside one ecosystem reduces missed jobs, forgotten tasks, duplicated subscriptions, and operational chaos. The episode also explores creative “workarounds” within software systems—showing listeners how to use scheduling tools for personal appointments, admin blocks, vehicle servicing reminders, supplier pickups, and inventory management. Shane discusses his previous use of the Timely calendar system and how similar functionality can be recreated directly inside Buffer Zone to simplify operations and reduce reliance on external apps. Lee takes the conversation further into productivity systems, sharing how tools like Google Workspace, Google Calendar, Google Tasks, Google Forms, Google Drive, and automation integrations can dramatically improve efficiency for pool service companies. The discussion highlights real-world examples of live technician reporting, automated spreadsheets, winter repair prospecting, quote generation, inventory forecasting, and field-to-office communication systems that save hours every week. The team also discusses password management, shared staff access, cloud-based documentation, technician accountability, and how centralizing information can protect businesses when employees leave or systems fail. Most importantly, this episode focuses on the philosophy of continuous improvement—making small operational changes that create massive long-term gains. Whether you're a solo operator or managing multiple technicians, the crew emphasizes that investing time into better systems today can save enormous amounts of time, stress, and money tomorrow.  Support the showThank you so much for listening! You can find us on social media:FacebookInstagramTik TokEmail us: talkingpools@gmail.com

The smallest AI update that'll change your work? ChatGPT's new Codex remote control update.

From small chiropractic clinics to multi-location hotels, my guest Ephraim Epstein of Fit Solutions (fitsolutions.biz) reveals how modern cybercriminals operate like full-time sales teams prospecting, nurturing, and “closing” attacks on businesses that mistakenly think they're too small to be a target. We dig into real-world ransomware stories, why Office 365 and Google Workspace email accounts are the #1 breach vector, and why SMS-based two-factor authentication is no longer enough to keep your company safe. Ephraim explains how 24/7 security monitoring, penetration testing, and smarter authentication can prevent the kind of total business shutdowns he sees far too often. https://www.youtube.com/watch?v=BdNwdnTf_hw We also explore how AI is changing the game not just for attackers, but for defense and operations. Ephraim shares how his team uses AI to reduce labor costs, automate SMS conversations that feel human, and deliver concierge-level experiences at scale, like hotel texting systems that book spa appointments, schedule room cleanings, and answer questions with a 74% engagement rate. Finally, he opens up about the entrepreneurial lessons learned from a failed CrossFit gym, why “side hustles” often backfire, and how complementary revenue streams (IT → cybersecurity → AI) helped Fit Solutions grow while staying focused on what they do best. If you're a business owner wondering whether your systems are really safe and how AI can actually improve your bottom line, not just sound cool, this conversation will give you a practical, story-driven roadmap. Quotes: “Opportunities are wrapped in problems. Whenever I find a problem, I ask where the opportunity is and how I can turn it into an advantage.” “Side hustles are not really great if you chase a second revenue stream that doesn't complement your main business; both the side hustle and your core business will suffer.” “Focus on the main thing, become amazing at it, and crush it, then add complementary revenue streams that feed and strengthen your core, instead of chasing random ideas that pull you in ten directions.” Contact Details: Connect with Ephraim Epstein on LinkedInEphraim Epstein Official Website

This week's panel dives into the cybersecurity stories that matter most for security leaders, IT teams, and anyone watching how AI is changing risk. Jim Love is joined by David Shipley (Beauceron Security), Laura Payne (White Tuque), and Jeff Williams (Contrast Security). Cybersecurity Today would like to thank Material Security for supporting this podcast.  Material security provides. faster, more complete detection and response for email, identity, and data threats inside Google Workspace and Microsoft 365.  Contact them at  material[dot]security  Topics include: Anthropic's Mythos AI security research and whether large language models can realistically replace traditional vulnerability testing Why "vibe coding" may be creating a wave of insecure software The growing risk of autonomous AI agents making damaging decisions The massive Instructure Canvas data breach affecting schools, students, and educators Alberta's voter list privacy failure and what it says about public sector data protection Microsoft's warning about the rapid surge in QR code phishing attacks bypassing traditional email security AI is accelerating software development. It may also be accelerating software insecurity. If your organisation is experimenting with AI coding tools, AI agents, or automated application development, this conversation is worth your time. #Cybersecurity #AI #DataBreach #QRPhishing #ApplicationSecurity #VibeCoding #Canvas #CyberSecurityToday #JimLove 00:00 Sponsor Message 00:22 Meet the Panel 00:55 Jeff Williams Introduction 02:21 AI Bug Hunting with Mythos 05:40 Cost and Limits of AI Security Testing 10:16 The Vibe Coding Security Problem 13:24 Context Window and Data Flow Limits 16:59 Spec-Driven AI Development 18:29 Software Liability and EU Regulation 24:47 When AI Agents Go Rogue 27:05 Trust in the AI Era 28:24 Enterprise Reality Check 29:03 Critical Thinking vs AI 30:31 Testing AI Agents Safely 31:30 Canvas Data Breach Fallout 34:45 Real-World Data Harm 38:00 Liability and Attack Methods 41:39 Alberta Voter List Privacy Failure 48:56 Government Breach Lessons 51:26 QR Code Phishing Surge 55:00 Wrap Up and Sponsor

In this special edition of Cybersecurity Today, David Shipley speaks with scam-fighting expert Erin West about the global fraud crisis, the rise of AI-powered scams, and why traditional law enforcement may be falling behind. Cybersecurity Today would like to thank Material Security for supporting this podcast.  Material security provides faster, more complete detection and response for email, identity, and data threats inside Google Workspace and Microsoft 365.  Contact them at  material[dot]security  From David's discussion with Erin West: The numbers are staggering. The FBI's Internet Crime Complaint Center reported more than $21 billion in cybercrime losses, but experts say actual losses could be dramatically higher because most victims never report fraud. Other key points of their discussion: Why pig butchering scams continue to grow globally How criminal operations are moving from Cambodia to Myanmar, Laos, Sri Lanka and beyond Why AI is making scam operations faster, cheaper and harder to detect The controversy around Meta and scam advertising revenue Why crypto ATMs remain a major fraud tool How cloned celebrity voices are being used in romance and impersonation scams Why banks, law enforcement, governments and tech platforms must act together How Operation Shamrock is trying to fight back through public education This is not just a story about money. It's about organized crime, industrial-scale fraud, and ordinary people being manipulated through trust, loneliness, and increasingly sophisticated technology, featuring scam-fighting prosecutor and Operation Shamrock founder Erin West. #Cybersecurity #Scams #Meta #OnlineFraud #AI #Cybercrime #PigButchering #CryptoScams #FacebookScams #CybersecurityToday

Superhuman Mail users respond to 72% more emails per hour and save an average of four hours every week — numbers backed by a case study from one of the Big Three strategy consulting firms. Rahul Vohra, CEO at Superhuman Mail, built the world's fastest email engine over three years without launching, held the line until the product was ready, and then productized product-market fit into a repeatable, measurable science. Following Superhuman's acquisition by Grammarly in 2025, Rahul is now steering the company toward a unified AI-native productivity suite spanning email, calendar, tasks, and agents.What you'll learn:The 5-step PMF Engine: how to survey, segment, analyze, implement, and track your way to product-market fit with a numerical scoreWhy you should ignore the not disappointed and most somewhat disappointed users — and which signals actually tell you who to build forHow to use the High Expectation Customer (HXC) framework to narrow your market without changing your productWhy PMF is a moving target and how to defend it against commoditization and copy-cat competitionHow Rahul operates as the editor of the product — using 20 verbatim quotes to push PMs and designers to sharper decisionsKey takeaways:If more than 40% of your users would be very disappointed without your product, you have an initial PMF — and you can measure your way thereChanging your market is faster than changing your product — segmentation alone can jump your PMF score 10 points overnightBuilding for your highest-expectation customer is not the same as building for your ICP — confuse the two, and you'll optimize for the wrong signalCredits:Host: Carlos Gonzalez de VillaumbrosiaGuest: Rahul VohraSocial Links:Find out more about Product School hereFollow our Podcast on TikTok hereFollow Product School on LinkedIn here

QR-code phishing is no longer a niche attack. Microsoft says QR phishing attacks jumped from 7.6 million in January to 18.7 million in March 2026 — a 146% increase in just three months. In this episode of Cybersecurity Today, David Shipley explains why QR-based attacks are bypassing traditional corporate defences and why security teams need to rethink phishing awareness immediately. We also cover a critical new Apache HTTP Server vulnerability with both denial-of-service and potential remote code execution impacts, a sustained DDoS and extortion campaign targeting Ubuntu developer Canonical, and a remarkable case in Taiwan where a university student allegedly used software-defined radio gear to trigger emergency braking on four high-speed trains. Finally, CISA's new "CI Fortify" guidance urges critical infrastructure operators to prepare for scenarios where they may need to disconnect from the internet and continue operating manually during a geopolitical cyber crisis. Cybersecurity Today would like to thank Material Security for supporting this podcast.  Material security provides. faster, more complete detection and response for email, identity, and data threats inside Google Workspace and Microsoft 365.  Contact them at  material[dot]security  Stories include: • Microsoft reports QR phishing attacks surged 146% in Q1 2026 • Apache HTTP Server CVE-2026-23918 urgent patch warning • Ubuntu developer Canonical hit by ongoing DDoS and extortion campaign • Taiwanese student allegedly halts high-speed trains with fake emergency radio signal • CISA tells critical infrastructure operators to prepare for isolation and manual operations Chapters: 00:00 Intro 01:02 QR phishing explodes in Q1 2026 06:15 Critical Apache HTTP Server flaw patched 09:15 Ubuntu maintainer Canonical hit by extortion DDoS attack 14:25 Taiwanese student wirelessly halts high-speed trains 20:32 CISA warns critical infrastructure to prepare for isolation 26:10 Closing thoughts

A bi-weekly news show informing you on the latest in Bitcoin, privacy and open source tech hosted by Ungovernables, Max and Q. AOBPrime Time reminderVibe codingVegas recapZach PanelQ panel (video not up yet)NEWSVegas Product AnnouncementsBlock launched a new Bitkey hardware wallet with a secure touchscreen and 2-of-3 multisig that removes the need for seed phrases, tying transaction verification directly to the device screen (Bitcoin Magazine).Blockstream released Jade Core, an entry-level open-source hardware wallet with Bluetooth pairing, offline signing, and Blind Oracle PIN protection (Bitcoin Magazine).Lightspark became a Visa principal member and unveiled Grid Global Accounts, connecting Bitcoin-based payments to 175M Visa merchants across 33 countries with plans to reach 100 by year-end (news.bitcoin.com).Block demoed Square NFC tap-to-pay for Bitcoin settled over the Lightning Network with 0% processing fees through 2026, with 800,000+ Square merchants already auto-enrolled (block.xyz).Aven unveiled a Bitcoin-backed Visa credit card with revolving credit lines from $1K to $1M starting at 7.99% APR, 2% cash back, and BitGo custody (GreekReporter).Cash App rolled out auto-conversion of P2P payments into Bitcoin, a 5% Bitcoin Back rewards program at Square merchants, and 5x higher withdrawal limits ($10K/day, $25K/week) (block.xyz).Tether Investments proposed a three-way merger of Twenty One Capital, Strike, and Elektron Energy to combine treasury, mining, lending, and capital markets, with Elektron contributing roughly 5% of global hashrate (BM).Sztorc eCash ForkTopic: Paul Sztorc announced a Bitcoin hard fork called "eCash" set for August 2026 (block 964,000). Copies Bitcoin's ledger but reassigns ~500,000 of Satoshi's forked coins to early investors. 80-85% negative community reaction.Posted: April 24-28, 2026LinkDOJ "Developer Exemptions" Announced at Bitcoin 2026 - But Are They Real?Published: April 27-28, 2026Sources: The Rage | Crypto.newsSummary: Acting AG Todd Blanche and FBI Director Kash Patel told Bitcoin 2026 that developers who write code without "knowingly" helping criminals will not be charged. Blanche claimed the DOJ has "fundamentally changed the game" and ended "regulation by prosecution." L0la L33tz at The Rage argues the exemption is performative - the government's existing cases treat receiving a complaint email or reading a news article about misuse as sufficient "knowledge."Keonne Rodriguez Writes from Prison - "Letter #6: Two Years In"Published: April 25, 2026Sources: The Rage | Reason MagazineSummary: Samourai Wallet co-founder Keonne Rodriguez published his sixth letter from federal prison, marking two years since his arrest. He's serving 5 years for conspiracy to operate an unlicensed money-transmitting business. Trump said he would "look into" a pardon but has taken no action.Tornado Cash Retrial: DOJ Pushes for October DatePublished: Ongoing (retrial proposed October 2026)Sources: The Rage (April 22)Summary: Prosecutors are pushing for an October 2026 retrial of Roman Storm on money laundering and sanctions charges after a jury deadlocked in August 2025. Storm was convicted on the unlicensed money transmitter charge but the jury couldn't agree on the two more serious counts (up to 40 years combined).Vercel Hack Exposes Crypto Infrastructure Supply Chain RiskPublished: April 20, 2026Source: LINKSummary: Vercel disclosed a breach traced to a compromised Google Workspace connection through a third-party AI tool (Context.ai). The hack exposed environment variables and API keys for numerous Web3 projects. Solana DEX Orca confirmed it rotated all deployment credentials. A cybercrime forum post claimed to be selling Vercel data for $2M.BIP47DBPublished: May 3, 2026Source: LINKSummary: An open protocol for inscribing BIP47 reusable payment codes onto the Bitcoin blockchain using Ordinals inscriptions with compressed binary encoding. The protocol creates a decentralised, censorship-resistant, and publicly verifiable directory of payment codes that eliminates single points of failure in the PayNym ecosystem. Anyone may write to the directory, and all entries are client-side verifiable against the secp256k1 curve.RELEASESZeus v13.0.0 - April 27, 2026Major release: new "node in the phone" using LDK Node, redesigned onboarding, embedded LND channel migration preserving existing channels, Cashu protocol rewrite with offline transaction capabilities, embedded LND upgraded to v0.20.1-beta, revamped amount input with currency selection, Cashu mint review via Nostr social graph, ZEUS Pay+ custom profiles, Android stealth mode. Over 100 merged PRs.Release linkMempool v3.3.0 - April 21, 2026Major release: taproot script tree visualization, sighash highlighting, stale block comparisons, annexes support, sub-1-sat/vB transaction handling, ephemeral dust support, PSBT signature display, Liquid Simplicity support, new API endpoints, Angular framework upgrade. v3.3.1 hotfix same day.Release linkUmbrel 1.7.0 / 1.7.1 - April 27-28, 2026Home screen shortcuts, built-in text editor in Files, advanced networking (hostname customization, static IP), network sharing for external USB drives, 17 new languages. v1.7.1 fixed a false storage error on restart.Release linkBTCPay Server v2.3.8 / v2.3.9 - April 23-24, 2026v2.3.8: Enhanced subscription management with new API routes, improved POS QR code login, LUD-21 support for LNURL-pay verification. v2.3.9: Patch fixing server recovery after plugin crashes and xpub parsing issue.Release linkBULL Bitcoin v6.9.1 - April 21, 2026FSS10 migration fallback for Android, Colombia (COP) deposit support, real-time WebSocket notifications, 11 new languages, Ledger hardware wallet support. Extensive bug fixes.Release linkEnvoy v2.2.14 - April 23, 2026Hardened iOS Bluetooth connectivity, fixes for Passport Prime account display, Magic Backup bug fixes, coin control/fee flow improvements, updated translations.Release linkCake Wallet v6.1.0 / v6.1.2 - April 20-23, 2026Native USDT bridging between Ethereum, Polygon, and Arbitrum. Optimized core engine, improved multi-chain wallet stability, Lightning invoice generation and EVM connectivity fixes.Release linkStart9 v0.4.0-beta.7 - April 29, 2026Beta for the complete StartOS rewrite. Tunnel design refinements, backup reliability fixes with rsync and CIFS support, improved TCP connection timeouts in reverse proxy. Requires careful update process.Release linkLNbits v1.5.4 - April 23, 2026Ability for operators to cap number of users or extensions per instance. AppImage installation fix. UI fixes, QR code optimization, webhook error handling.Release linkDojo v1.29.1 - April 27, 2026Patch reverting a bitcoinjs dependency update that caused block sync to stall. Dependency reversion and lockfile updates.Release linkBitkey - April 19-26, 2026Three app releases shipped (2026.5.0, 2026.6.0, 2026.7.0). Rapid release cadence; full notes at bitkey.world/releases.Release linkNunchuk v2.4.2 / v2.4.3 - April 23 / May 2, 2026Bug fixes and maintenance improvements.Release linkEDUCATIONBTC Vegas Talks (https://www.youtube.com/@BitcoinMagazine/videos)TO DONATE TO ROMAN'S DEFENSE FUND: https://freeromanstorm.com/donateHELP GET SAMOURAI A PARDONSIGN THE PETITION ----> https://www.change.org/p/stand-up-for-freedom-pardon-the-innocent-coders-jailed-for-building-privacy-tools DONATE TO THE FAMILIES ----> https://www.givesendgo.com/billandkeonneSUPPORT ON SOCIAL MEDIA ---> https://billandkeonne.org/VALUE FOR VALUEThanks for listening you Ungovernable Misfits, we appreciate your continued support and hope you enjoy the shows.You can support this episode using your time, talent or treasure.TIME:- create fountain clips for the show- create a meetup- help boost the signal on social mediaTALENT:- create ungovernable misfit inspired art, animation or music- design or implement some software that can make the podcast better- use whatever talents you have to make a contribution to the show!TREASURE:- BOOST IT OR STREAM SATS on the Podcasting 2.0 apps @ https://podcastapps.com- DONATE via Monero @ https://xmrchat.com/ugmf- BUY SOME STICKERS @ https://www.ungovernablemisfits.com/shop/FOUNDATIONhttps://foundation.xyz/ungovernableFoundation builds Bitcoin-centric tools that empower you to reclaim your digital sovereignty.As a sovereign computing company, Foundation is the antithesis of today's tech conglomerates. Returning to cypherpunk principles, they build open source technology that “can't be evil”.Thank you Foundation Devices for sponsoring the show!Use code: Ungovernable for $10 off of your purchaseCAKE WALLEThttps://cakewallet.comCake Wallet is an open-source, non-custodial wallet available on Android, iOS, macOS, and Linux.Features:- Built-in Exchange: Swap easily between Bitcoin and Monero.- User-Friendly: Simple interface for all users.Monero Users:- Batch Transactions: Send multiple payments at once.- Faster Syncing: Optimized syncing via specified restore heights- Proxy Support: Enhance privacy with proxy node options.Bitcoin Users:- Coin Control: Manage your transactions effectively.- Silent Payments: Static bitcoin addresses- Batch Transactions: Streamline your payment process.Thank you Cake Wallet for sponsoring the show!MYNYMBOXhttps://mynymbox.ioYour go-to for anonymous…

Microsoft Defender Deletes Trusted Certificates | 44,000 cPanel Servers Hit by Ransomware Microsoft Defender mistakenly flagged legitimate DigiCert root certificates as malware and removed them from Windows systems, breaking trust chains and causing widespread application failures. The issue was traced to a faulty detection signature (Trojan:Win32/CertyAgent), now fixed in update version 1.449.430.0.  At the same time, DigiCert confirmed a separate security incident where attackers compromised support systems and used internal tools to issue valid code-signing certificates. At least 60 certificates were revoked, including 27 linked to the Zong Stealer malware campaign.  Meanwhile, a critical cPanel vulnerability (CVE-2026-41940) is being actively exploited. Attackers used the flaw as a zero-day since February, compromising at least 44,000 servers and deploying new SORI ransomware using ChaCha20 and RSA-2048 encryption.  Also in this episode: The Linux "Copyfail" privilege escalation bug is now confirmed exploited and added to CISA's Known Exploited Vulnerabilities list A 10/10 critical vulnerability (CVE-2026-37541) in Open Vehicle Monitoring System could allow remote code execution in connected car environments This episode breaks down how these attacks work, why patch timing matters, and where organizations are most exposed right now. Cybersecurity Today would like to thank Material Security for supporting this podcast.  Material security provides. faster, more complete detection and response for email, identity, and data threats inside Google Workspace and Microsoft 365.  Contact them at  material[dot]security  Suggested Chapters (for retention and SEO) 00:00 Microsoft Defender deletes trusted certificates 02:20 DigiCert breach and stolen code-signing certificates 05:20 cPanel zero-day exploited, 44,000 servers compromised 08:40 Linux Copyfail vulnerability now actively exploited 10:40 Critical flaw in open-source car software  

In this episode, Ray Cochrane leads with GitHub’s worst reliability month on record and the AI infrastructure pressure behind it. He also covers Warp going open source, Apple’s Mac supply crunch, OpenAI’s goblin tic, the first 1X humanoid factory in the US, Tesla’s Semi finally hitting mass production, Chinese EVs with movie-projecting headlights, the final GPS III satellite, and a quantum researcher who won 1 Bitcoin. – Want to start a podcast? Its easy to get started! Sign-up at Blubrry – Thinking of buying a Starlink? Use my link to support the show. Subscribe to the Newsletter. Email Ray if you want to get in touch! Like and Follow Geek News Central’s Facebook Page. Support my Show Sponsor: Best Godaddy Promo Codes Get 1Password Full Summary Cochrane opens the show with one of the biggest infrastructure stories of the year. GitHub is buckling under unprecedented agentic load, and the world’s largest code host just had its worst reliability month on record. Furthermore, the broader episode threads a clear pattern: AI demand is reshaping infrastructure, hardware supply, and developer tooling in ways the industry did not see coming. GitHub’s Worst Reliability Month on Record GitHub CTO Vlad Fedorov posted an apology on the company blog this week. He acknowledged the platform’s recent failures and committed to a new priority order: availability first, then capacity, then features. Meanwhile, an April 23 merge queue regression silently produced wrong squash commits across 658 repositories and over 2,000 pull requests. Additionally, an Elasticsearch cluster crashed on April 27 after a botnet attack, and GitHub Actions went down on April 28. Outside reconstructions put April uptime under 85 percent. However, GitHub’s own status page stays in the 99 percent range because it does not count degraded performance as downtime. Cochrane notes that GitHub originally planned a 10x capacity increase and has now revised that to 30x in eight months. Mitchell Hashimoto, GitHub user 1299 since 2008, also announced he is pulling his Ghostty terminal off the platform entirely. Warp Terminal Goes Open Source Under AGPL Warp open-sourced its AI-first terminal client this week under the AGPL license. Their contribution model leans heavily on agents handling code, planning, and testing while humans focus on direction and verification. However, Cochrane pushes back on that framing. He argues the recent GitHub problems show that human approval alone is not enough oversight for agent-driven workflows. Additionally, he notes that the more hands-off developers get, the less they can mentally model their own systems. Apple Caught Flat-Footed by Local AI Demand Tim Cook told Wall Street on the Q2 FY2026 earnings call that Mac mini and Mac Studio supply will be constrained for several months. Both machines turned out to be popular local AI workstations, which Apple did not predict. Consequently, Apple discontinued the 512GB Mac Studio upgrade in early March and raised the 256GB upgrade by $400. Some upgraded configurations now show 4 to 5 month delivery estimates. Cochrane connects the demand spike to the OpenClaw wave and his own recent OpenClaw scare, where his install started making suspicious outbound requests. Furthermore, he is in no rush to lean into local agentic tooling given the constant prompt injection and security issues in the space. OpenAI Explains the Goblin Obsession After GPT-5.1 launched, ChatGPT users noticed the model could not stop saying “goblin.” OpenAI traced the bias to the optional Nerdy personality, which was 2.5 percent of all responses but produced 66.7 percent of all goblin mentions. The reward signal during personality training quietly favored creature metaphors. Then the bias leaked into the rest of the model through later supervised fine-tuning. OpenAI retired Nerdy in March, filtered creature words from training data, and added an explicit Codex system prompt rule: never talk about goblins, gremlins, raccoons, trolls, ogres, or pigeons. Cochrane frames this as the beauty and disaster of pattern matching. Additionally, he notes that LLM behavior is not editable like static code; it can only be patched, and the patches stack up over time. Sponsor: GoDaddy GoDaddy has been sponsoring this show for over twenty years. Economy hosting starts at $6.99/month, WordPress hosting at $12.99/month, and domains at $11.99. Use codes at geeknewscentral.com/godaddy for exclusive deals and to directly support the show. 1X Opens America’s First Vertically Integrated Humanoid Factory Bloomberg reports that 1X Technologies opened a 58,000 square foot humanoid robot factory in Hayward, California. The Norway-founded, OpenAI-backed company is calling it America’s first vertically integrated humanoid factory. Their goal: 10,000 NEO home humanoids in year one, with a 100,000 unit target by end of 2027. Furthermore, the first 10,000 unit allocation reportedly sold out in five days when pre-orders opened in October. NEO sells for $20,000 outright or $499 per month. Cochrane is skeptical that humanoids solve a real problem for the average household. However, he sees genuine potential for elderly and disabled users. Additionally, he flags privacy and data collection concerns about robots that have to perceive everything in your home. Tesla Semi Rolls Off the High-Volume Line Tesla rolled the first Semi off its 1.7 million square foot factory adjacent to Gigafactory Nevada on April 29. The Long Range version delivers 500 miles at $290,000, while the Standard Range hits 325 miles at $260,000. Additionally, the Long Range supports the 1.2 megawatt Megacharger that restores 60 percent of range in about 30 minutes. The factory targets 50,000 trucks per year, though analysts project 5,000 to 15,000 deliveries in 2026. Cochrane opens with a recent personal experience. He saw a semi truck on the freeway with the entire cabin removed from the engine, an unusual failure mode he had never seen before. Furthermore, he questions the actual environmental benefit of electric trucking given grid sourcing and battery mineral concerns. The reveal was 2017, and high-volume production is now nine years after that announcement. Chinese EVs With Headlights That Project Movies Huawei’s XPixel headlight system can now project full-color movies up to 100 inches in front of the car. The technology debuted in full color on the Aito M9 and is rolling out across Stelato S9, Qijing GT7, and Luxeed V9 MPV. Additionally, the same hardware powers real safety features: adaptive driving beam, lane-change path projection, and pedestrian crossing direction signaling. Meanwhile, US regulations only approved adaptive driving beam in February 2022. Pixel-addressable projection systems are not covered by current FMVSS rules at all. Consequently, even if these cars sold in the US, the headlights would have to be downgraded to be street legal. The Final GPS III Satellite Reaches Orbit SpaceX launched GPS III SV-10, the tenth and final GPS III satellite, on a Falcon 9 from Cape Canaveral on April 21. GPS III delivers signals 3 times more accurate and 8 times more resistant to jamming than the previous constellation. It also adds the L1C signal, which interoperates with Galileo, BeiDou, IRNSS, and QZSS, plus M-code military encryption. Up next, GPS IIIF launches start in 2027 with up to 22 satellites deploying through about 2037. IIIF adds laser inter-satellite links and optical reflectors for centimeter-level satellite tracking. Cochrane loves this kind of quiet infrastructure win that powers global economics without anyone noticing it. Researcher Wins 1 Bitcoin for a Quantum Attack on Crypto Independent Italian researcher Giancarlo Lelli won Project Eleven’s 1 Bitcoin Q-Day Prize on April 24. He derived a 15-bit elliptic curve private key from its public key using a variant of Shor’s algorithm on rented cloud quantum hardware. Furthermore, the previous record was 6 bits, set in September 2025 on an IBM 133-qubit machine, so this extends the record by a factor of 512. However, Bitcoin uses 256-bit elliptic curve cryptography, so real wallets are not at risk yet. Additionally, other researchers have pushed back on the result. Their criticism: a 15-bit search space is only 32,767 possibilities, which a laptop can brute-force in milliseconds. Project Eleven defends the milestone as a stepping stone for demonstrating Shor’s algorithm running end-to-end on real quantum hardware. Gemini Now Generates Real Files Google rolled out file generation for the Gemini app. Users can now generate PDFs, Word docs, Excel spreadsheets, Google Workspace files, CSV, LaTeX, plain text, RTF, and Markdown directly from a chat prompt. Additionally, files can be downloaded to device or exported straight to Google Drive. The feature is globally available to all Gemini app users. Google Illuminate Turns Papers Into Podcasts Google Illuminate is the experimental Labs tool that converts academic papers into roughly five-minute two-voice podcast-style audio. Generation takes about 30 seconds, with a 20-per-day cap and a 30-day library. Additionally, transcripts are interactive and clickable for jumping to specific moments. Cochrane likes it as an index for triaging papers but pushes back on using it to replace deep reading. He argues that real technical material like clustering logic needs a real read, not a summary by AI podcasters. Cochrane closes with show housekeeping and a callout to Pocket Casts and True Fans as solid modern podcast apps. Have a great night, and happy June. The post GitHub, Goblins, Ghostty, and GPS III #1863 appeared first on Geek News Central.

If you've been watching pet business owners post in groups about closing their doors and wondering if you're next... this is for you. Because there is a wave coming. And the line between who survives and who sells out is being drawn right now — and AI is the divider. Timestamps [0:00] — Cold open: $80 billion just bet on the future of AI [2:00] — Why this affects YOUR pet sitting business [3:30] — The Google + Anthropic deal explained simply [6:00] — OpenAI just announced agents are replacing GPTs [7:00] — Magai: how to access every major AI model in one place [8:00] — The listener message I had to read on air [9:30] — Three reasons the selling wave is starting RIGHT NOW [11:00] — A line in the sand: who this episode is NOT for [12:30] — How the AI gap will split this industry in two [14:30] — VC and private equity are circling pet businesses [16:00] — The 3-layer survival system: SOPs ? Brain ? Agents [19:00] — Why you cannot do this alone [20:00] — Mastermind invitation + your one action this week In This Episode You'll Discover Why a wave of pet sitting businesses are quietly closing or selling in 2026 (and the three reasons converging at once) What the $80 billion Google and Amazon investment in Anthropic actually means for small business owners The line in the sand: who is positioned to survive this shift, and who will get left behind The 3-layer AI survival system — SOPs, AI brain, and agents — and why skipping any layer guarantees failure Why first-mover pet business owners will be the BUYERS in the consolidation wave, not the sellers About This Episode Bella Vasta is the CEO and founder of Jump Consulting and the host of Bella in Your Business — the longest-standing pet business podcast in the industry. She has coached pet sitters and small business owners for over 25 years, and is widely recognized as the go-to voice for AI integration in the pet industry. Her Jumpers Mastermind has helped pet business owners scale, hire, and now adopt AI in ways their competitors haven't even considered. Resources Mentioned in This Episode The Jumpers Mastermind — Monday-Friday access to Bella, two live monthly meetings, free monthly coaching call, and 8 years of archives — the room where Bella teaches the SOPs, AI brain, agents' progression in real time. Magai (30% off, all major AI models in one place) — Claude, ChatGPT, Gemini, Perplexity, and Grok in one subscription — so you're not locked into one vendor as the AI landscape changes. How to Set Up Claude in Your Pet Business (Bella's recent blog) — The step-by-step companion to layer 2 of the survival system — building an AI brain that actually knows your business. Free 20-Minute Call With Bella — Bring one problem. Bella helps you think through it. No pitch. Connect with Bella Website Sessions with Bella The Jumpers Mastermind Subscribe to Bella in Your Business Bella's Website Find Bella on Instagram and Facebook — search Bella Vasta Frequently Asked Questions Q: Why are pet sitting businesses closing in 2026? A: Three pressures are converging at the same time. First, many of these businesses launched 15 to 20 years ago and the founders are ready to exit. Second, profit margins are getting squeezed by rising wages, insurance costs, and taxes. Third — and this is the one nobody is talking about yet — AI is creating a competitive gap where businesses that have adopted it can serve more clients with less staff, and the businesses that haven't are watching their bookings drift to competitors who can. Q: Will AI replace pet sitters? A: No. AI cannot walk a dog, give a cat insulin, or sit with a senior pet. What AI replaces is the back-office workload — the inquiries, scheduling, care notes, hiring, marketing, and admin work that eats your evenings. Pet sitters who use AI well will have MORE time for the actual care work. Pet sitters who refuse to use AI will burn out trying to compete. Q: Should I sell my pet sitting business? A: Only if you've decided you're done — not because you're tired of the admin. The pet business owners who sell out of exhaustion in 2026 will likely sell low, because consolidators and venture capital firms know the seller is desperate. If your real problem is overwhelm, the answer might not be to sell — it might be to learn AI, document your business, and let the systems carry the weight. That's what the Jumpers Mastermind exists to teach. Q: What did Google's $40 billion investment in Anthropic actually mean for small businesses? A: It signals that the company building Claude — which most pet business owners haven't even tried yet — is about to get faster, cheaper, and more powerful, with Google's compute and data center infrastructure behind it. Practically, that means Claude will likely show up inside Google Workspace, Gmail, Drive, and Calendar over the next 12 to 18 months. The small business owners who already know how to use Claude will be ahead. The ones still using only ChatGPT may find themselves on the wrong tool when the shift happens. Q: How do pet business owners actually start using AI without getting overwhelmed? A: There is a specific order. Layer one: document your standard operating procedures (SOPs) — every process in your business written down. Layer two: feed those SOPs into an AI like Claude to give it a 'brain' that actually knows your business. Layer three: build agents that can run pieces of your business for you. Most owners try to skip to layer three and fail. Get the SOPs done first. Everything else builds from there. Full Episode Transcript Google just dropped $40 billion to Anthropic. $40 billion! That brings the total that Google has put into the company that builds Claude, Anthropic, to over $55 billion in two years. Billion with a B, okay? And Amazon is in for another $45 billion. So the company that makes Claude and the AI tool I literally use every single day in my business and life. just had $80 billion walk through its front door by the two largest cloud companies on the planet. Okay? The number is bigger than the GDP, gross domestic product, of most countries. And here's why this matters to you. Because while everyone else is still asking if they should bother to use AI or a prompt for chat GPT, the biggest company in the world, they're telling us exactly where this is going. with their checkbooks. And in this episode, I'm going to tell you what I think happens next and why a wave of pet sitting businesses and small businesses across the whole country are about to sell clothes or get swallowed up and what the people listening to this podcast need to do right now so that you don't become one of them. Hi, I'm Bella and this is Bella in Your Business. Let's get into it. Real quick before we dive in, if you haven't subscribed yet or hit like or subscribe or any of that, wherever you're listening, this episode is one that you're wanna come back to. You're gonna wanna save it, you're gonna wanna share it with your friends. And if you know one small business owner who is overwhelmed by all this AI stuff, share the episode with them. Don't let them get left behind and let them understand what's going on on a higher 30,000 foot view, all right? So let's... Let's get into. And if you know one other small business owner who's overwhelmed by all of this AI stuff, share this episode with them. Please don't let them get left behind. It's gonna be a very big overview so that everyone's gonna be able to consume this and then percolate on what they should do in their own business. I cannot wait to get into it. All right, so you've been hearing about all these AI investments and your eyes glaze over because honestly, who can even comprehend billions of dollars, right? and like 40 billion, 65 billion, 80 billion, it sounds like monopoly money. But here's what's actually happening underneath those numbers and why I want you to pay attention. All right, so most business owners scroll past these headlines because what does it have to do with you, right? Like you're trying to fill a schedule, hire a sitter, get out of the weeds. You don't have time to track what a tech company is doing and who bought out who or whatever. Like I get it, I do, and that's why I'm here. I saw a really sharp breakdown from Jonathan Maas this week and I wanted to pull a few pieces out of it because what he laid out is something that every business owner needs to understand. So here's what's going on. Google has been quietly building a stake in Anthropic for a couple of years now. 300 million here, 200 or 2 billion there. They were already around 14 % ownership and now they just took another 40 put another 40 billion on the table. With performance milestones attached, like you get more if you perform X, all right? Google doesn't write a $40 billion check to companies that they plan to sit back and watch. This is what Jonathan says. Performance milestones mean that Google has a seat at the table for what Claude becomes next, how fast it moves, what it builds, which is just mind blowing because Google also has Gemini. Are you staying in here with me? Okay? I mean, And then on the other side, Amazon is also up for 25 billion running Claude through Amazon AWS, through AWS. AWS is like what like holds the cloud compute for so many companies, all right? So putting it inside Amazon Bedrock, so any developer building on Amazon's cloud has Claude right there in the cloud already. So the company that already makes Claude, has the two biggest cloud providers in the world elbowing each other to be their preferred provider. Are you with me? Okay, and this isn't an accident, it's leverage. And here's where it gets really interesting. Right now the most well known tool is ChatGBT by millions on the numbers, okay? And most of you have probably tried it, you probably have a subscription to it, but Claude, the one Google, like,

How much of your working day is actually spent doing meaningful work, and how much is lost chasing emails, searching for documents, sitting in meetings, and trying to remember where that one important conversation happened? At Google Cloud Next in Las Vegas, I sat down with Yulie Kwon Kim, Vice President of Product for Google Workspace at Google, to talk about how AI is changing the way billions of people work every day. Yulie leads the products many of us rely on constantly, Gmail, Google Calendar, Drive, Docs, Sheets, Slides, and newer tools like Google Vids. At this year's event, she introduced Workspace Intelligence, a major step forward in how AI works inside those everyday tools. Instead of acting like a disconnected assistant, Workspace Intelligence understands your context across emails, meetings, files, and organizational knowledge to help create documents, prioritize inboxes, take meeting notes, and automate the repetitive work that quietly drains productivity. We explore what Workspace Intelligence actually is, how it differs from third-party AI tools, and why context matters just as much as model capability. Yulie explains why being a truly AI-first enterprise requires more than powerful models, it needs grounded context, governance, and security that people can trust. We also discuss one of the biggest concerns for business leaders: how to adopt AI without creating new risks around data security and access control. Yulie shares how Google approaches governance inside Workspace and why existing permissions and protections remain central to how AI operates. This conversation also touches on something bigger, the shift from individual productivity to shared organizational intelligence, where knowledge moves from living inside one person's head to becoming something the entire company can benefit from. If AI could remove one frustrating task from your workday tomorrow, what would you choose first? Useful Links Connect with Yulie Kwon Kim, Vice President of Product for Google Google Cloud Next 26 Visit the Sponsors of Tech Talks Network and learn more about the NordLayer Browser.

This week, Carolyn Woodard covers two resources: a practical new browser feature for Google Workspace shops and a nonprofit watchdog organization working to make the AI industry more accountable. Whether you're trying to get more out of your existing tools or looking for credible resources to bring to a board conversation about AI risk, this episode has something useful.This episode covers:Google quietly rolled out a feature called Skills inside Chrome — it lets you save a prompt once and run it on any web page with a click, without retyping. Pre-built Skills are also available for common tasks like summarizing long documents or comparing information across open tabs, no prompt-writing required.Skills is a reading and analysis assistant, not an agent — it won't take actions like making purchases or browsing on your behalf. It reads what's already in front of you in the browser and helps you process it faster.If your nonprofit is in the Google ecosystem and staff are hesitant to write prompts from scratch, Skills' pre-built library is a low-barrier starting point. Useful use cases include reviewing foundation grant pages and comparing information across multiple sites.The Center for AI Safety (CAIS) is a San Francisco-based research and advocacy nonprofit whose mission is to reduce societal-scale risks from AI. Their website (safe.ai) isn't a vendor — it's an independent watchdog with accessible explainers, free courses, and fellowship programs.CAIS offers a free AI Safety, Ethics and Society course that's relevant for nonprofits building AI literacy on a budget, plus a fellowship for people doing advocacy work around AI governance, bias, or data center impacts.When staff or board members are skeptical about AI — or when you need a credible outside voice for your AI strategy conversations — CAIS is a more trustworthy resource than asking the AI companies themselves what's safe.Resources Mentioned:https://www.wired.com/story/how-to-use-google-chrome-ai-powered-skills/https://blog.google/products-and-platforms/products/chrome/skills-in-chrome/https://safe.aihttps://safe.ai/ai-riskhttps://aisafetybook.com/virtual-coursehttps://www.reddit.com/r/NonprofitITManagement/ _______________________________Start a conversation :)Register to attend a webinar in real time, and find all past transcripts at https://communityit.com/webinars/email Carolyn at cwoodard@communityit.comon LinkedIn on reddit/r/nonprofitITmanagementon the Community IT websiteThanks for listening. 

Tim Cook passe la main à John Ternus • Anthropic et OpenAI jouent avec la peur autour de l'IA • Google et Microsoft installent des agents dans la bureautique • Mistral cherche sa voie face aux géants • Les robots humanoïdes impressionnent en Chine • Montréal mise sur les startups pour améliorer la mobilitéAvec Bruno Guglielminetti (Mon Carnet)===============Description détaillée===============Apple après Tim Cook (0:06)Nous revenons sur le départ annoncé de Tim Cook et l'arrivée de John Ternus à la tête d'Apple, un passage de relais qui remet le produit au centre du jeu. On analyse l'héritage de Cook, entre l'échec d'Apple Plans en 2012, le succès de l'Apple Watch et le virage stratégique d'Apple Silicon. À lire aussi sur Monde Numérique et sur Mon Carnet.Apple Intelligence et la dépendance à Google (4:02)Nous discutons du retard d'Apple en IA, mais aussi de ses atouts matériels pour faire tourner des modèles localement sur ses appareils. L'arrivée de services liés à Apple Intelligence avec l'appui potentiel de Google pose une question stratégique : partenariat temporaire ou vraie dépendance technologique ?Anthropic Mythos, entre cybersécurité et marketing de la peur (9:34)Nous décryptons le cas Anthropic et son modèle Mythos, présenté comme extrêmement puissant pour détecter des failles dans du code, y compris des vulnérabilités inédites. L'outil peut renforcer la défense informatique, mais il nourrit aussi les inquiétudes s'il tombait entre de mauvaises mains. Nous soulignons surtout la stratégie de communication anxiogène de certains acteurs de l'IA.OpenAI et la protection des données sensibles (15:32)Nous évoquons le lancement d'un filtre de confidentialité par OpenAI, destiné à empêcher l'aspiration de données sensibles dans les usages professionnels de l'IA. Ce type d'outil apparaît indispensable dans les organisations, même s'il arrive tardivement au regard de la généralisation des assistants génératifs.Google Workspace et Microsoft 365 passent à l'ère des agents (17:31)Nous revenons sur les annonces de Google Cloud Next et sur l'offensive parallèle de Microsoft 365 autour de Copilot. Les agents IA s'installent dans les outils de travail pour rédiger, assister, automatiser et même imiter le style de l'utilisateur. Nous restons prudents sur leur usage réel, car ces outils peuvent vite échapper au contrôle si l'on ne les teste pas dans un environnement sécurisé.Mistral, xAI et le casse-tête de la souveraineté (23:11)Nous commentons les discussions supposées entre Mistral AI, xAI et Cursor, dans un contexte où l'entreprise française est devenue un symbole politique autant qu'un acteur technologique. Nous évoquons aussi l'hypothèse d'un recentrage vers le traitement de données à la manière de Palantir, avec un possible intérêt stratégique pour l'Europe.Hébergé par Audiomeans. Visitez audiomeans.fr/politique-de-confidentialite pour plus d'informations.

AI doesn't “make things up” because it's evil. It makes things up because we keep asking it to perform miracles without giving it our real context. We dig into why the most valuable lever in artificial intelligence is your knowledge base and how that single shift changes everything from accuracy to speed to brand voice.We compare the strengths people associate with today's big AI chatbots: ChatGPT for planning and writing, Claude for coding, Grok for real time awareness, and Gemini as Google's fast improving assistant. Then we zoom in on the move that matters for anyone running a business or team: Google Gemini being baked into Google Workspace. When your emails, docs, meeting notes, calendars, SOPs, and assets already live in Gmail, Drive, Docs, and Slides, your “source of truth” is sitting right there.NotebookLM is the clearest example of this approach. You can upload the exact sources you trust, ask questions against them, and get answers with citations so you can verify in seconds. We share a simple five part framework for building a powerful AI library: your core thinking, your customer language, your proven content, your process documents, and outside trusted sources you approve. If you want better AI outputs, start treating your documents like an asset.Subscribe, share this with a teammate who owns marketing or ops, and leave a review with the biggest challenge you have building a clean knowledge base.Support the show

Inside the Vercel Breach: Highlighting OAuth Token Risk  In a special edition of Cybersecurity Today, host Jim Love and guest Jamie Blasco (CTO, Nudge Security) discuss Vercel, a major developer hosting platform, and a breach tied to OAuth grants and shadow AI. Reporting shared by Contrast Security's David Lindner describes how a Context AI employee downloaded Roblox AutoFarm scripts, got infected with an info stealer, and attackers harvested credentials, compromised Context AI, then used an over-permissioned OAuth token from a Vercel employee who had signed up to Context AI with an enterprise account and clicked "allow all," with Vercel working with Mandiant on a breach allegedly being sold for $2 million. The episode emphasizes that MFA may not mitigate OAuth abuse, urges admin-managed consent, continuous inventory and auditing of OAuth grants, and better visibility into risky third-party app access across Google Workspace and Microsoft 365. Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.  You can find them at Meter.com/cst 00:00 Special Edition Intro 00:14 Sponsor Message Meter 00:33 Supply Chain Hack Setup 01:16 Breach Seen In Wild 02:36 Meet Jamie Blasko 02:56 Who Is Vercel 04:34 How The Breach Happened 05:58 Context AI And Shadow IT 07:58 OAuth Controls And Audits 09:11 Impact And Open Questions 11:24 Why MFA Falls Short 12:22 Where To Get Help 14:07 Host Takeaways OAuth Risk 14:53 What To Do Next 16:06 Wrap Up And Feedback 16:42 Sponsor Close Meter 17:24 Final Sign Off          

Welcome to another wildly entertaining and tech-packed episode of VisionCast! In this hilarious installment, interim host Rachel takes the reins, guiding the crew through a maze of bizarre news, deep tech debates, and side-splitting AI-generated humor. Whether you are an AI enthusiast, a tech geek, or just looking for a good laugh, this episode delivers on all fronts.The show kicks off with the official crowning of Phillip as the "Doodles of the Month." Earning his title through an impressive streak of missing buses and trains, Phillip is honored with a hilarious, custom AI-generated country-pop anthem appropriately titled "Doodles Missed His Bus." The catchy tune sets the stage for a much larger discussion on the rapidly evolving landscape of AI music generators. The team dives into the fierce Reddit backlash surrounding the latest Suno AI version 5.5 update, with users claiming it's a downgrade from version 5.0. The crew weighs in on the AI music wars, comparing Suno to heavy hitters like Udio, Sonato, and Google's emerging "Text to Song" feature inside the Gemini app.The conversation then seamlessly transitions into the ultimate Cloud Wars. If you are struggling to choose the right cloud storage or email hosting, this segment is a goldmine. The team fiercely debates the pros and cons of Dropbox versus Google Drive and Google Workspace Enterprise. Dropbox takes a heavy beating from the crew over its restrictive pricing and features, while Google Workspace is praised for its generous 5TB storage and seamless ecosystem. The tech talk deepens as they tackle domain hosting with Porkbun, the deprecation of outdated POP3 email protocols, and the modern necessity of IMAP and Gmailify. As a cautionary cybersecurity tale, George laments his recent encounter with a nasty Trojan virus—a stark reminder to always practice safe browsing!However, the undisputed highlight of the episode comes during the bizarre news segment. The crew completely loses their minds over a newly patented invention by Chinese EV maker Series: a slide-out, in-car toilet designed for passenger seats during heavy traffic jams. The team hilariously breaks down the absurd logistics of this vehicular commode—from the lack of privacy and motion sensors to the undeniable odor issues. It is a laugh-out-loud critique of modern automotive "innovation."The comedy doesn't stop there. Preston confesses to accidentally winning women's lingerie at a Lions Club potluck silent auction, leading to merciless teasing from the rest of the team. Even Claude AI, acting as a highly interactive and remarkably sassy digital co-host, chimes in to roast Preston, solidifying Claude's permanent spot in the Vision Cast "AI Panel Hall of Fame."From deep-dive critiques of AI music tools and cloud storage platforms to crying-from-laughter reactions about electric vehicle toilets, thisl episode is a perfect blend of technology, news, and unfiltered comedy.

Thanks for listening to Episode #73 of the EDventUres in Tech Podcast. This episode dives into the latest updates across Google Workspace, AI-powered creativity tools, and a critical reflection on professional development in education.We kick things off with exciting advancements in Google Vids, now featuring custom music generation powered by Lyria 3 and Lyria 3 Pro—making it easier than ever to create polished, original video content. Creators can now also export Google Vids directly to YouTube, streamlining the production process from creation to publishing.On the AI front, Google continues to expand both access and functionality. The Gemini app is now available on Mac, while NotebookLM receives major upgrades for Education Plus and Teaching & Learning users—enhancing research, synthesis, and classroom application. Users can also generate longer musical tracks within Gemini, opening new possibilities for creative projects.A key part of the conversation focused on Gems—custom AI assistants—and how to set them up for success. The discussion highlighted the importance of clear prompting, defining specific roles or outcomes, and designing Gems with intentional structure so they are actually useful in classroom and professional workflows—not just novelty tools.In communication updates, Google Meet is now available through Apple CarPlay, increasing flexibility for users on the go.The episode wraps with a thought-provoking segment from Matt M, exploring why traditional tech professional development often falls short—and how to redesign PD to be more meaningful, relevant, and actionable for educators.AI-powered creativity tools (like Google Vids + Lyria) are becoming more practical and classroom-readyGemini and NotebookLM updates continue to expand research and productivity capabilitiesWell-designed Gems = better outcomes → clarity, purpose, and structure matterSeamless workflows are improving (Vids to YouTube, Meet on CarPlay)Effective tech PD must prioritize real-world application, teacher voice, and sustainability⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠EDventUres in Tech Website⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Once again, thank you for all your support in listening on all platforms and leaving us a review. If you have any questions, comments, or suggestions, please reach out.Tech Hard again. Work smart. Live an EDventUre.

On this week's Security Sprint, Dave and Andy covered the following topics:Opening:• TribalHub Regional Tribal Technology Forums• WaterISAC H2OSecCon 2026. Virtual Event: 02 Jun, 11am-5pm ET Overview, Registration, Agenda, Speakers• Offensive AI: What Red Teams and Attackers are Doing Now - Gate 15Main Topics:Vercel April 2026 security incident Vercel 20 Apr 2026. Vercel said it identified unauthorized access to certain internal systems and initially found a limited subset of customers whose credentials were compromised. The company said the incident originated with a compromise of Context.ai, a third-party AI tool used by a Vercel employee, which then enabled takeover of that employee's Google Workspace account and access to some Vercel environments and non-sensitive-marked environment variables. Vercel said services remain operational, law enforcement has been notified, and customers who were not contacted are not currently believed to have had credentials or personal data compromised. Vercel is a cloud platform used for frontend hosting, serverless functions, and deploying websites, particularly those built with React or Next.js. It enables developers to easily build high-performance, edge-optimized applications. Key features include automatic Git integrations (CI/CD) for instant deployments, preview environments, and edge storage. • Vercel confirms breach as hackers claim to be selling stolen data • Breaking: Vercel Breach Linked to Infostealer Infection at Context.ai • Vercel's security breach started with malware disguised as Roblox cheatsWiz: 80% of cloud breaches are caused by basic mistakes - IT Pro - 13 Apr 2026 IT Pro reports that Wiz Threat Research found most cloud breaches in 2025 were driven by familiar security mistakes rather than entirely new vulnerability classes, with AI expanding the places where known risks can appear. The article frames the problem around scale, shared trust, and increasingly complex cloud and AI environments rather than exotic attack novelty. Target is cloud security teams, platform engineers, and enterprise risk leaders with Dig highlighting that basic exposure management, identity control, and configuration discipline remain the decisive factors in many modern cloud compromises. Fire As An Act Of Sabotage Guidance UK National Protective Security Authority 25 Sep 2024. The NPSA guidance outlines how to mitigate the risk of deliberate fire-setting used as sabotage against premises and infrastructure that may be attractive targets. Although not new, it remains operationally useful because it provides protective security and risk management guidance for owners and operators responsible for physical sites and critical functions. The relevance is heightened in an environment where sabotage, arson, and hybrid disruption are increasingly discussed alongside state and extremist threat models. From tabletop reality 10 gaps executive cyber exercises consistently reveal - SANS Institute - 2026 This analysis identifies recurring gaps observed during executive cyber exercises, including communication breakdowns and decision-making delays. It highlights the importance of realistic training scenarios to improve organizational readiness. The findings provide actionable insights for strengthening incident response at the leadership level. • Critical infrastructure resilience escalated threat navigation initiative - Canadian Centre for Cyber Security • Preparing for severe cyber threat why leaders must act now - NCSC UK • CISO Survey 2026: The State of Incident Response Readiness Quick Hits:• The State of Ransomware in Q1 2026 - Emsisoft • Safeguarding Our Data, Intellectual Property, and Technology from Non-traditional Collectors

Vercel confirmed a breach traced to an AI platform's compromised OAuth app. The NSA is using Anthropic's Mythos despite the Pentagon blacklist. Mac Minis face 12-week wait times from AI agent demand, and humanoid robots crushed the Beijing half-marathon. Vercel says its internal systems were accessed after a Vercel employee's Google Workspace account was compromised via a breach at the AI platform Context.ai (BleepingComputer) Sources: the US NSA is using Mythos Preview; one source says Mythos is also being widely used within the DoD, despite Anthropic's supply chain risk designation (Axios) Adobe introduces CX Enterprise, an AI agent-based platform that aims to help corporate customers automate digital marketing and other functions (WSJ) Some Mac Mini and Mac Studio models are unavailable or facing up to 12-week wait times in the US, with analysts citing strong demand from AI agent power users (WSJ) Deezer says AI-generated tracks now account for 44% of daily uploads, totaling ~75K tracks per day and 2M+ per month, but account for just 1-3% of consumption (TechCrunch) Sources: Recursive Superintelligence, a four-month-old start-up developing self-teaching AI and founded by ex-DeepMind and OpenAI engineers, has raised $500M+ (FT) At the Beijing half-marathon, several humanoid robots beat human winners by 10+ minutes; a robot made by Honor beat the human world record held by Jacob Kiplimo (Reuters) Disclaimer: ● Initial 3 week subscription and 4 weeks of medication from $79 plus tax and $179 per month plus tax for 12 week subscription thereafter. Final pricing depends on program selection. ● Noom GLP-1Rx Program involves healthy diet, exercise and support. Individual results vary. Meds & personalization based on clinical need. Not reviewed by FDA for safety, efficacy, or quality. No affiliation with Novo Nordisk Inc., the only US source of FDA-approved semaglutide. Not available in all 50 US states ● Based on an analysis of self reported data from 1,254 engaged Noom users. Learn more about your ad choices. Visit megaphone.fm/adchoices

In this episode, we explore a critical mindset shift that transforms how you set and reach goals in both life and business. Moving away from a "reactive cycle," we discuss how to transition from chasing fleeting trends and software updates to building a foundation of core competencies and critical thinking skills.Whether you are looking to regain your self-efficacy, start a new fitness routine, or "future-proof" your digital products, this episode emphasizes the power of experimentation and taking action over perfectionism.In this episode, you'll learn:Why "getting in the water" matters more than having the perfect plan.The danger of building a business solely on moving parts and external tools.How to create value that translates across different platforms and time.Strategies for generating energy and taking back control of your daily schedule.My personal goals for the season, from mindful movement to backend business organization.Send us Fan MailFind more resources over at SarahSteckler.comGet Organized in your business. Watch the free Get Organized with Google Workspace training here.Learn how to publish your own planner this year. Sign up for Planner Publishing 101.Want something more tangible? Sign up for The Mindful Moment, my monthly mini physical newspaper sent via snail mail. 

Adrienne de Malleray a quitté sa carrière de journaliste TV (ex-Canal+) pour l'entrepreneuriat (et l'AgriTech !)

Copying text out of one AI tool and pasting it back into your real work is already starting to feel like the “old way.” I'm Steve Brown, and I walk through why Google Gemini 3 feels like a turning point: it's not just another chatbot, it's AI embedded inside Google Workspace and Chrome so it can help right where you're building, writing, presenting, and deciding. We dig into the practical shift from ChatGPT's first-mover advantage to Gemini's built-in, next-to-your-cursor experience. I show how I can take raw information and generate a more polished visual inside Google Slides, including infographic-style layouts and quick refinements. If you lead a team, you know the real problem isn't having data, it's communicating the meaning. Clear visuals and story-driven structure can unify a room fast, and integrated generative AI makes that easier to produce on demand. Then we get hands-on with AI productivity in Google Sheets, using Gemini to create tables, draft structured data, and iterate without getting bogged down in spreadsheet setup. I also talk about multimodal AI: uploading a photo of handwritten notes and having Gemini organize them into a clean outline. Finally, I demonstrate Gemini in Chrome reading the current tab to coach you through tools you don't use every day, like ClickUp, and even helping you make sense of confusing option menus in complex setups. If you want faster workflows, clearer leadership communication, and fewer interruptions to your team, this is a strong place to start. Subscribe, share this with a friend who's still stuck in copy-and-paste mode, and leave a review with the biggest task you want AI embedded into next.Support the show

AI is here, and pretending you'll “figure it out later” is the fastest way to fall behind. We go live to make ChatGPT feel usable for normal work, with a simple mindset shift: don't fight the tiger. Train it, set expectations, and move forward with confidence.We start with a quick, practical tour of ChatGPT so you know what you're looking at, then we build something you can reuse: a ChatGPT Project. Think of a Project as your AI office manager for long-running goals, where your context stays organized instead of getting lost across random chats. To make it real, we sketch a personal health improvement coach designed around balance, strength, and a healthier mindset, then show how custom instructions turn a vague idea into a repeatable system.Next comes the workflow that removes the biggest blocker for beginners: prompting. We use “confession prompting” to let the AI help write the prompt itself, so you're not stuck trying to sound like a prompt engineer. Then we add a knowledge base by bringing in files and curated sources, so the Project can reference trusted frameworks first. From there we zoom out to business impact, including how AI search changes the way we solve problems like Google Business Profile approvals and why Google faces the innovators' dilemma as ads and search behavior shift. We also touch on Google Workspace, Gemini “Gems,” and where agentic AI is heading.Subscribe, share this with a friend who's AI-curious, and leave a review with the Project you want to build next.Support the show

Google's Gemini Personal Intelligence is here. Before you connect your inbox, there are things you need to understand as a therapist in private practice. Google has released Gemini Personal Intelligence which a feature that connects your AI assistant to your Gmail, Google Photos, YouTube watch history, and Search history to give you personalised answers based on your real data. In this episode I break down exactly what it does, what it could mean for therapists in private practice, and the specific things you need to consider before you decide whether to enable it. This is not a conversation about whether AI is good or bad. It is a practical guide to making an informed decision with your eyes open. Episode Timestamps [00:00]Introduction — what Gemini Personal Intelligence is and why it matters now [03:00]What Gemini Personal Intelligence actually does, in plain English [08:00]How a solo practice owner could genuinely use it — practical scenarios [14:00]The caution section — privacy, ethics, Australian law, and what to check first [21:00]My take and what I recommend — close and next steps FAQs What is Gemini Personal Intelligence? Gemini Personal Intelligence is a feature in Google's Gemini app that connects to your personal Google accounts — Gmail, Google Photos, YouTube watch history, and Search history — so it can give you personalised, contextual answers based on your actual data. Instead of answering from general knowledge, it searches your real accounts to respond. It is available to Gemini Pro and Ultra subscribers and is currently rolling out primarily to US users. What data does Gemini Personal Intelligence access? When enabled, Gemini Personal Intelligence can access your Gmail messages and threads, Google Photos, your YouTube watch history, and your Google Search history. You can choose which of these data sources to connect individually and disconnect them at any time through your Google account settings. Note that Google Drive is a separate integration available through Google Workspace, not through Gemini Personal Intelligence specifically. How is Gemini Personal Intelligence different from regular Gemini? Regular Gemini answers questions using its training data and general knowledge, the same as any AI assistant. Gemini Personal Intelligence goes further by accessing your actual personal data — your real emails, your real photos, your real search history — to provide answers that are specific to your situation. This is both the practical appeal of the feature and the reason it requires more careful consideration before enabling, particularly for professionals with confidentiality obligations. Is Gemini Personal Intelligence available in Australia?   As of April 2026, Gemini Personal Intelligence is rolling out primarily to US users on Gemini Pro and Ultra plans. Australian users may not have full access yet, though Google's rollouts typically expand internationally within weeks to months. Check your Gemini app settings to see whether the feature has appeared on your account. This is actually a useful window of time to review your data separation practices before it arrives rather than making a rushed decision when the notification appears. Links AI Playbook for Therapists: sales.brooklynstorme.com/aiplaybook Join my Free Skool Community: https://www.skool.com/private-practice-resource-hub/about Free Private Practice Quiz: brooklyn.myflodesk.com/pmquiz Brooklyn's Website: brooklynstorme.com  

If you've been feeling a sense of hesitation around boarding the AI train, this conversational episode is for you. I explore the difference between AI marketing and reality of what LLMs can actually do, the recent Claude code leak that explains a lot, what we give away when we run to ChatBots for answers, and why protecting your human voice is the most radical (and productive) thing you can do for your business right now.This will likely ruffle some feathers.Let me know what you think about AI after you listen to this episode.Send us Fan Mail-----Looking for a fun way to unplug this month and make time for more intentions moments? Signs are back open through the 20th of April for The Mindful Moment Newspaper. This is a physical mini newspaper sent out to you via USPS stamp. Articles include topics on mindfulness, self-care, mental wellbeing, nature, and cultivating a more joyful life. Sign up here by April 20th -->Find more resources over at SarahSteckler.comGet Organized in your business. Watch the free Get Organized with Google Workspace training here.Learn how to publish your own planner this year. Sign up for Planner Publishing 101.Want something more tangible? Sign up for The Mindful Moment, my monthly mini physical newspaper sent via snail mail. 

The expensive, challenging, and humbling journey with open source agents.Sponsored By:Jupiter Party Annual Membership: Put your support on automatic with our annual plan, and get one month of membership for free!Managed Nebula: Meet Managed Nebula from Defined Networking. A decentralized VPN built on the open-source Nebula platform that we love.Support LINUX UnpluggedLinks:

Apple has announced the dates for its annual WWDC and hinted that's when the new Siri is coming, plus it's released AI features in Apple Music, and says ads are coming to Apple Maps, all on the AppleInsider Podcast.Contact your hosts:@williamgallagher_ on Threads@WGallagher on TwitterWilliam's 58keys on YouTubeWilliam Gallagher on emailWes on BlueskyWes Hilliard on emailWes's blog HillitechSponsored by:Squarespace: Get a free trial at squarespace.com/APPLEINSIDER and then 10% off your first website or domain purchase with code APPLEINSIDERNordStellar: Unlock your 10% discount at nordstellar.com/appleinsider with the coupon code nordappleinsider-10-NORDSTELLARClaude by Anthropic: Check out Claude and Claude Pro at Claude.ai/appleinsiderLinks from the Show:Siri testing isn't going well, new features probably won't ship in iOS 26.4What to expect at WWDC 2026iOS 26.4 is here with Playlist Playground, videos in Podcasts, new emoji, moreWes's Playlist: Writing with Elegance on Apple Music Apple distills Google Gemini model for on-iPhone processingiOS 27 will finally get that long-awaited Siri updateGrammarly CEO steps on same rake over and over in embarrassing interview about AI slopBehind on Siri, Apple makes a billion dollars from rival AI appsGenerative video creator Sora is dead along with $1 billion Disney content dealwatchOS 8 and watchOS 5 get minor updates with iMessage fixiOS 18.7.7, macOS 15.7.5 updates fix kernel memory leaks & WebKit flawsYou are out of time to update: Severe iOS hack code leaks to everyoneApple Maps ads are private and launch in the summerApple Business Mail tempts Google Workspace users with free emailApple Business goes free, consolidating business and brand management tools in one platformSupport the show:Support the show on Patreon or Apple Podcasts to get ad-free episodes every week, access to our private Discord channel, and early release of the show! We would also appreciate a 5-star rating and review in Apple PodcastsMore AppleInsider podcastsTune in to our HomeKit Insider podcast covering the latest news, products, apps and everything HomeKit related. Subscribe in Apple Podcasts, Overcast, or just search for HomeKit Insider wherever you get your podcasts.Subscribe and listen to our AppleInsider Daily podcast for the latest Apple news Monday through Friday. You can find it on Apple Podcasts, Overcast, or anywhere you listen to podcasts.Those interested in sponsoring the show can reach out to us at: advertising@appleinsider.com (00:01) - WWDC (25:32) - Apple Music (39:40) - Grammarly (01:01:19) - Planned obsolescence (01:09:13) - Ads in Apple Maps ★ Support this podcast on Patreon ★