Podcasts about LastPass

If you like what you hear, please subscribe, leave us a review and tell a friend!

Microsoft WSUS vulnerability could allow for remote code execution Fake LastPass death claims used to breach password vaults New CoPhish attack steals OAuth tokens via Copilot Studio agents Huge thanks to our sponsor, Conveyor If security questionnaires make you feel like you're drowning in chaos, you're not alone. Endless spreadsheets, portals, and questions—always when you least expect them. Conveyor brings calm to the storm. With AI that auto-fills questionnaires and a trust center that shares all your docs in one place, you'll feel peace where there used to be panic. Find your security review zen at www.conveyor.com. Find the stories behind the headlines at CISOseries.com.

What if the fastest way to grow isn't doing more, but letting go—carefully? We pull back the curtain on how we hired and trained two very different assistants, one in Texas and one in the Philippines, and the systems that make those partnerships smooth, secure, and genuinely business-changing. From the first grading task to a multi-role teammate, and from a five-hour bookkeeping trial to dashboards, course ops, and content workflows, this is a real-world blueprint for delegating without losing your mind.We walk through the decisions that matter: how to choose between 1099 and W‑2, where to source talent (and what marketplace reviews actually tell you), and how to set pay based on skill, scope, and outcomes. Security and ethics are baked in—NDAs, HIPAA training when needed, and password managers like LastPass so you can grant access without giving away the keys. You'll hear how simple, living SOPs turn chaos into consistency: short Loom or Camtasia videos, Trello checklists, and clear definitions of “done” that make handoffs clean and quality predictable.Communication is the backbone. We explain why one primary channel and a weekly check-in beat scattered pings and why screenshots with specific notes eliminate rework. We also share candid red flags—vanishing act replies, task-dumping without initiative, and hidden subcontracting—and the green flags that signal a pro: proactive problem-solving, honest updates, and resilience when life or weather hits across time zones. Most of all, we make the case that delegation is an investment, not a cost. Start with five to ten hours, document one process, ship it, and use the time you get back for higher-leverage work—or real rest.Ready to turn overwhelm into a system that scales? Listen now, subscribe for more practical playbooks, and leave a review with the first task you plan to delegate.Get your step by step guide to private practice. Because you are too important to lose to not knowing the rules, going broke, burning out, and giving up. #counselorsdontquit.

In today's episode, we're joined by Candace Bertram, founder of Studio88, a fast-growing Pilates community in Birmingham. After opening her first Reformer Pilates studio in November 2024, she expanded just six months later with a second location in Hall Green.What started as one small space has quickly become more than just a Pilates studio, it's a welcoming community where inclusivity sits at the heart. As a young, Black female founder and single mum, she has faced pushback along the way, yet her resilience and determination have carved out a space that is both empowering and trailblazing. Stay tuned to hear her insights on taking the leap from job security into entrepreneurship, navigating the realities of financial pressures, and how she's embedding diversity, inclusion, and true community into the very foundations of her business.Candace's advice: Community inclusion tip: Candace has always believed in building community and fostering inclusion.Customer experience insight: Her customers appreciate the security of a small space, familiar faces, and a feeling of safety.Entrepreneurship lesson: She was spurred into taking on a second studio simply by the belief that it was the right time and place.Mindset advice for founders: She didn't let imposter syndrome or external doubts hold her back. Instead, she trusted her timing and her vision.Business growth advice: She did not allow the pressure of fixing an opening date to dictate her decisions.Inclusivity approach: She believes in creating space for everyone, but if a female-only class is preferred, that's fine too.Hiring advice for fitness businesses: It's vital to find the best possible instructors who have an open mind, a positive outlook, enthusiasm for learning and improving, and strong communication skills.Leadership mindset: Try to adopt a philosophical attitude toward any problems that arise.Values-driven business tip: Always stick to your original aims and ethos, no matter how much you grow.FF&M enables you to own your own PR & produces podcasts.Recorded, edited & published by Juliet Fallowfield, 2024 MD & Founder of PR & Communications consultancy for startups Fallow, Field & Mason.  Email us at hello@fallowfieldmason.com or DM us on instagram @fallowfieldmason. FF&M recommends: LastPass the password-keeping site that syncs between devices.Google Workspace is brilliant for small businessesBuzzsprout podcast 'how to' & hosting directoryCanva has proved invaluable for creating all the social media assets and audio bites.MUSIC CREDIT Funk Game Loop by Kevin MacLeod.  Link &  LicenceText us your questions for future founders. Plus we'd love to get your feedback, text in via Fan MailSupport the show

Erotic Chats, UEFI, F5, Cisco, Doug Sings, Insiders, Lastpass, Sora, Aaran Leyland, and More on this edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-521

Erotic Chats, UEFI, F5, Cisco, Doug Sings, Insiders, Lastpass, Sora, Aaran Leyland, and More on this edition of the Security Weekly News. Show Notes: https://securityweekly.com/swn-521

Erotic Chats, UEFI, F5, Cisco, Doug Sings, Insiders, Lastpass, Sora, Aaran Leyland, and More on this edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-521

Erotic Chats, UEFI, F5, Cisco, Doug Sings, Insiders, Lastpass, Sora, Aaran Leyland, and More on this edition of the Security Weekly News. Show Notes: https://securityweekly.com/swn-521

F5 discloses long-term breach tied to nation-state actors. PowerSchool hacker receives a four-year prison sentence. Senator scrutinizes Cisco critical firewall vulnerabilities. Phishing campaign impersonates LastPass and Bitwarden. Credential phishing with Google Careers. Reduce effort, reuse past breaches, recycle into new breach. Qilin announces new victims. Manoj Nair, from Snyk, joins us to explore the future of AI security and the emerging risks shaping this rapidly evolving landscape. And AI faces the facts. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Manoj Nair, Chief Innovation Officer at Snyk, joins us to explore the future of AI security and the emerging risks shaping this rapidly evolving landscape. In light of the recent high-severity vulnerability in Cursor, Manoj discusses how threats like tool poisoning, toxic flows, and MCP vulnerabilities are redefining what secure AI-driven development means—and why organizations must move faster to keep up. Selected Reading F5 disclosures breach tied to nation-state threat actor (CyberScoop) CISA Directs Federal Agencies to Mitigate Vulnerabilities in F5 Devices (CISA) ED 26-01: Mitigate Vulnerabilities in F5 Devices (CISA)  PowerSchool hacker sentenced to 4 years in prison (The Record)  Cisco faces Senate scrutiny over firewall flaws (The Register) Fake LastPass, Bitwarden breach alerts lead to PC hijacks (Bleeping Computer)  Google Careers impersonation credential phishing scam with endless variation (Sublime Security)  Elasticsearch Leak Exposes 6 Billion Records from Scraping, Old and New Breaches (HackRead)  Qilin Ransomware announced new victims (Security Affairs)  When Face Recognition Doesn't Know Your Face Is a Face (WIRED) Semperis Announces Midnight in the War Room: A Groundbreaking Cyberwar Documentary Featuring the World's Leading Defenders and Reformed Hackers (PR Newswire) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

I sat down with Karim Toubba, CEO of LastPass, to discuss the challenges and triumphs of navigating cybersecurity in today's digital landscape, especially the issues we face when we have been breached. This is a masterclass in how to handle #cybersecurity crisis!In this episode, Karim shares insights into LastPass's response to significant security breaches, the importance of authentic #leadership, and the evolving role of password management in a networkless world. Tune in for a candid conversation about resilience, change, and the future of cybersecurity.Takeaways: Leadership in Crisis: Karim Toubba emphasizes the importance of authentic leadership and taking responsibility, even when new to a role, as a key factor in navigating crises effectively.Security as a Priority: LastPass has made significant investments in security infrastructure and culture, highlighting the necessity of a sustained commitment to cybersecurity at all organizational levels.Cultural Shift: The implementation of security measures like Yubikeys and the focus on changing employee mindsets underscore the need for a cultural shift in cybersecurity practices.Challenges of Attribution: The difficulty in attributing cyberattacks to specific actors is discussed, with an acknowledgment of the sophisticated nature of the threats faced.Evolving Cyber Landscape: The conversation touches on the evolving nature of cybersecurity threats and the need for continuous adaptation and investment to stay ahead.Product Innovation: LastPass's expansion beyond password management to include products like SAS Monitor and SAS Protect demonstrates their commitment to addressing broader security challenges.User-Centric Security: The importance of making security measures user-friendly and front-and-center is highlighted as a critical factor in improving overall cybersecurity.

In this episode, Pendo's senior vice president of product and u/x Nichole Mace talks with host Shannon Peavey about the growth mindset that infiltrates her company's culture. She illuminates the differences between core product work and product growth work and shares her tips on ways companies can cultivate a collaborative environment, where the spirit of experimentation becomes contagious. Chapters:4:05 Why growth needs to be prioritized6:19  Organizing your mind for pursuing multiple goals7:50 Cultivating team spirit9:30 Knowing when the time is right for a growth push10:50 Why experimentation can be contagious13:40 Nichole's path into growth15:45 Skills for great growth leaders18:50 How pivots happen: the ZipCar example21:00 Growth loops are golden23:00 Nichole's 6 Core Product Growth Principles 31:00 What's AI's impact?32:15 Life in balanceWhere to find Nichole:LinkedIn: https://www.linkedin.com/in/nichole-mace-44bb65/Nichole Mace's PLG websitehttps://www.nicholemace.com/Resources:Pendo https://www.pendo.io/Constant Contact https://www.constantcontact.com/LastPass https://www.lastpass.com/BevSpot https://bevspot.com/ZipCar https://www.zipcar.com/

In today's episode, we're joined by Jianne Jamil, founder of DIOME, a premium supplement brand developing science-backed formulas to support the demands of modern life. Inspired by her mother's decades-long struggle with prescription sleep medication, she set out to create effective, natural alternatives without the negative side effects. Before founding DIOME, Jianne built her career in the luxury beauty industry across New York, Paris, and London with La Mer, Tom Ford and Bobbi Brown. DIOME launched with Rested, an award-winning doctor-formulated, sleep supplement developed with her expert scientific team, including naturopath Emilie Delanoue and medical doctor Dr. Jencikova.DIOME launched with Rested, a doctor-formulated, sleep-optimising supplement developed with her expert scientific team, including Emilie Delanoue and Dr. Jencikova.Stay tuned to hear Jianne's insights on where to start with your NPD, building a science-led wellness brand, and how to market those premium products.Jianne's advice: Product launch advice: Efficacy is everything; your product must truly deliver resultsHealth industry tip: Do thorough research before entering this highly regulated spaceRegulatory compliance advice: Check laws in every country where you plan to sellSupply chain tip: Confirm ingredient availability before committing to productionQuality control advice: Test, test, and test again to build customer trustEntrepreneurship lesson: Use both data and intuition when deciding launch timingStartup growth tip: One hero product can be enough to build a thriving businessCustomer loyalty advice: Focus on longevity and building a faithful customer baseBranding and marketing tip: Position your product carefully, especially for a premium science-based brandBusiness integrity lesson: Cut no corners — reputation is everythingAgency collaboration tip: Brief your creative team thoroughly so they reflect your visionFF&M enables you to own your own PR & produces podcasts.Recorded, edited & published by Juliet Fallowfield, 2024 MD & Founder of PR & Communications consultancy for startups Fallow, Field & Mason.  Email us at hello@fallowfieldmason.com or DM us on instagram @fallowfieldmason. FF&M recommends: LastPass the password-keeping site that syncs between devices.Google Workspace is brilliant for small businessesBuzzsprout podcast 'how to' & hosting directoryCanva has proved invaluable for creating all the social media assets and audio bites.MUSIC CREDIT Funk Game Loop by Kevin MacLeod.  Link &  LicenceText us your questions for future founders. Plus we'd love to get your feedback, text in via Fan MailSupport the show

When cyber attack notification goes wrong, companies face a disaster worse than the original breach. This episode dives deep into the critical mistakes organizations make when communicating about security incidents - and why transparency beats secrecy every time.We examine real-world failures like LastPass and Rackspace, where poor communication strategies amplified the damage from their cyber attacks. From legal requirements in California and GDPR to the new one-hour notification rules in China, we cover what regulations demand and why going beyond compliance makes business sense.Learn how to create effective status pages, manage customer expectations during recovery, and avoid the death-by-a-thousand-cuts approach that destroys trust. We share practical strategies for early and frequent communication that can actually strengthen customer relationships during crisis situations.

Broadcom, LastPass, Brickstone, SEO Poisoning, QR codes, H1B visas, Distributed Computing, and More... Visit https://www.securityweekly.com/psw for all the latest episodes! Show Notes: https://securityweekly.com/psw-893

Broadcom, LastPass, Brickstone, SEO Poisoning, QR codes, H1B visas, Distributed Computing, and More... Show Notes: https://securityweekly.com/psw-893

Broadcom, LastPass, Brickstone, SEO Poisoning, QR codes, H1B visas, Distributed Computing, and More... Visit https://www.securityweekly.com/psw for all the latest episodes! Show Notes: https://securityweekly.com/psw-893

Broadcom, LastPass, Brickstone, SEO Poisoning, QR codes, H1B visas, Distributed Computing, and More... Show Notes: https://securityweekly.com/psw-893

The Secret Service dismantles an illegal network. Jaguar Land Rover (JLR) extends the shutdown production plants. The EU probes tech giants over online scams. Iranian APT Nimbus Manticore expands operations in Europe. North Korean Kimsuky deploys a shortcut-based espionage campaign. Github and Ruby Central roll out supply-chain security upgrades. Lastpass warns of macOS ClickFix campaign using fake GitHub repos. AT&T's CISO warns hackers mimic Salt Typhoon's unconventional tactics. CISO Perspectives host Kim Jones previews the upcoming season. An attorney pays $10K for AI hallucinations. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest CISO Perspectives host Kim Jones previews the upcoming season, sharing what's ahead for listeners. From leadership challenges to the evolving role of the CISO, Kim highlights the conversations and insights you can expect this season.You can check out the season opener here. Selected Reading Cache of Devices Capable of Crashing Cell Network Is Found Near U.N. (The New York Times) Secret Service Disrupts Threat Network Near UN General Assembly (YouTube) JLR extends shutdown – again – as toll on workers laid bare (The Register) The EU is scrutinizing how Apple, Google, and Microsoft tackle online scams (The Verge) Nimbus Manticore Deploys New Malware Targeting Europe (Check Point Research) Kimsuky attack disguised as sex offender notice information (Logpresso) GitHub tightens npm security with mandatory 2FA, access tokens (Bleeping Computer) NPM package caught using QR Code to fetch cookie-stealing malware (Bleeping Computer) LastPass: Fake password managers infect Mac users with malware (Bleeping Computer) Telecom exec: Salt Typhoon inspiring other hackers to use unconventional techniques (CyberScoop) Attorney Slapped With Hefty Fine for Citing 21 Fake, AI-Generated Cases (PCMag) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

CISA Reports Ivanti EPMM Exploit Sightings Two different organizations submitted backdoors to CISA, which are believed to have been installed using Ivanti vulnerabilities patched in May. https://www.cisa.gov/news-events/analysis-reports/ar25-261a Lastpass Observes Impersonation on GitHub Lastpass noted a number of companies being impersonated via fake GitHub repositories in order to trick victims to download Mac malware. https://blog.lastpass.com/posts/attack-targeting-macs-via-github-pages Oracle Scheduler Ransomware Ransomware has been discovered that gained access to systems via an exposed Oracle Database Scheduler service. https://labs.yarix.com/2025/09/elons-proxima-black-shadow-related-ransomware-attack-via-oracle-dbs-external-jobs/

In today's episode, we're joined by Neada Deters, founder of LESSE, a skin care brand redefining beauty through simplicity, efficacy and sustainability.Born in Sydney and now based in New York, Neada began her career as a beauty editor, interviewing leading experts and testing countless products. Yet her own struggles with cystic acne and reactive skin revealed a gap in the market for effective and natural skin care that worked for sensitive skin. In 2018 she launched LESSE, a self-funded business pioneering high-performance formulas that merge active botanicals with brilliant results.Stay tuned to hear Neada's insights on building a self-funded beauty business in a VC-driven industry, the lessons she's learnt in balancing simplicity with efficacy and how she's working to raise standards in the natural skin care space.Neada's Advice: Self-funded startups tip: Stay independent and fully in control of your visionBootstrapping advice: Grow at your own pace without investor pressureEntrepreneurship lesson: Build trust by prioritizing quality and ingredientsSmall business survival tip: Gain resilience by staying clear and focusedStartup motivation: Celebrate small wins along the journeyBusiness growth advice: Be resourceful, run a lean team, and know your numbersMoney management for entrepreneurs: Always keep cash flow top of mindFinancial planning for startups: Get advice from experts who understand small businessesWorking with your partner in business: Define clear roles from the startFounder health tip: Protect your wellbeing — it's one of your biggest business assetsWork-life balance for entrepreneurs: Learn when to push hard and when to restFF&M enables you to own your own PR & produces podcasts.Recorded, edited & published by Juliet Fallowfield, 2024 MD & Founder of PR & Communications consultancy for startups Fallow, Field & Mason.  Email us at hello@fallowfieldmason.com or DM us on instagram @fallowfieldmason. FF&M recommends: LastPass the password-keeping site that syncs between devices.Google Workspace is brilliant for small businessesBuzzsprout podcast 'how to' & hosting directoryCanva has proved invaluable for creating all the social media assets and audio bites.MUSIC CREDIT Funk Game Loop by Kevin MacLeod.  Link &  LicenceText us your questions for future founders. Plus we'd love to get your feedback, text in via Fan MailSupport the show

Most days, we are online. But how often do we think about cybersecurity? In this episode, Kirk Behrendt brings in Travis Wentworth, cybersecurity expert from Intelligence Quest, to share the safeguards to put in place to reduce your risks and protect your patients and practice from common cybersecurity threats. Don't take cybersecurity for granted! To learn the best practices to stay ahead of cyberattacks, listen to Episode 945 of The Best Practices Show!Learn More About Travis:Follow Travis on Instagram: https://www.instagram.com/travis_iqJoin Travis on Twitter: https://x.com/travisiqLearn more about Intelligence Quest: https://intelligencequest.comWatch Intelligence Quest on YouTube: https://www.youtube.com/@intelligencequestMore Helpful Links for a Better Practice & a Better Life:Subscribe to The Best Practices Show: https://the-best-practices-show.captivate.fm/listenJoin The Best Practices Association: https://www.actdental.com/bpaDownload ACT's BPA app on the Apple App Store: https://apps.apple.com/us/app/best-practices-association/id6738960360Download ACT's BPA app on the Google Play Store: https://play.google.com/store/apps/details?id=com.actdental.join&hl=en_USJoin ACT's To The Top Study Club: https://www.actdental.com/tttGet The Best Practices Magazine for free: https://www.actdental.com/magazinePlease leave us a review on the podcast: https://podcasts.apple.com/us/podcast/the-best-practices-show-with-kirk-behrendt/id1223838218Episode Resources:Watch the video version of Episode 945: https://www.youtube.com/@actdental/videosProtect yourself with Sentinel One: https://www.sentinelone.comProtect yourself with Splashtop: https://www.splashtop.comProtect yourself with YubiKey: https://www.yubico.comProtect yourself with LastPass: https://www.lastpass.comMain Takeaways:Don't be complacent with cybersecurity.Find a great, trustworthy IT group to work with.Know the questions to ask your managed service provider.Never panic when cybersecurity issues arise. Have protocols in place.Make sure your team is comfortable coming to you with questions or...

КиберЧистоПлотность — это комплекс привычек и правил, которые помогают нам поддерживать нашу цифровую безопасность, репутацию и ментальное здоровье в интернете.Почему это важно? Мы храним в сети фото, переписки, деньги, документы. Наша цифровая личность так же ценна, как и реальная.В эфире поговорили про: пароли, соцсети, фишинг, приватность, психологический аспект.Менеджеры паролей (LastPass, Bitwarden, 1Password)

Today, I'm joined by Bruce Poon Tip, founder of G Adventures, the world's largest small group adventure travel company and a pioneer in community tourism. Bruce started the business 35 years ago with two maxed-out credit cards from his garage in Toronto and has since built a global movement rooted in purpose and impact.Recently awarded The Officer of The Order of Canada, Bruce returned to the Ecuadorian Amazon, the site of G's very first trip, to reflect on the company's legacy and plan for the next 100 years.In this episode, we discuss Bruce's approach to leadership, how he built a values-led culture, and what it really takes to create a business that changes lives, within his business as well as so many others.Bruce's Advice:Carve Your Own Path With New Ideas – True entrepreneurship means innovating and standing out from the competition.Find Your “Why” – Define your motivation and purpose to stay focused when building your business.Know Your Audience – Understanding who you serve is the foundation of successful marketing and growth.Define Your Unique Strengths – Highlight your skills and specialties that make your business different.Why Your Business Should Exist – Clarify the value and impact your business brings to the world.Your Business Reflects You – Every brand is a mirror of its founder's values and vision.Balance Creativity and Strategy – Innovators thrive with ideas, but lasting businesses need both creativity and solid numbers.Turn Crisis Into Opportunity – Challenges like the pandemic can fuel innovation and business transformation.Human Connection in the Age of AI – In today's AI-driven world, genuine human relationships and service are what set businesses apart. FF&M enables you to own your own PR & produces podcasts.Recorded, edited & published by Juliet Fallowfield, 2024 MD & Founder of PR & Communications consultancy for startups Fallow, Field & Mason.  Email us at hello@fallowfieldmason.com or DM us on instagram @fallowfieldmason. FF&M recommends: LastPass the password-keeping site that syncs between devices.Google Workspace is brilliant for small businessesBuzzsprout podcast 'how to' & hosting directoryCanva has proved invaluable for creating all the social media assets and audio bites.MUSIC CREDIT Funk Game Loop by Kevin MacLeod.  Link &  LicenceText us your questions for future founders. Plus we'd love to get your feedback, text in via Fan MailSupport the show

Alarm bells are ringing over a supposed browser zero-day, but is the threat as bad as it sounds? Steve reveals why "clickjacking" might be more whac-a-mole than breaking news, and what that really means for your passwords. • Germany may soon outlaw ad blockers • What's happening in the courts over AI • The U.K. drops its demands of Apple • New Microsoft 365 tenants being throttled • Is Russia preparing to block Google Meet? • Bluesky suspends its service in Mississippi • How to throttle AI • A tricky SSH-busting Go library • Here comes the Linux desktop malware • Apple just patched a doozy of a vulnerability • A trivial Docker escape was found and fixed • Why the recent browser 0-day clickjacking is really just whac-a-mole Show Notes - https://www.grc.com/sn/sn-1040-notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/securitynow zscaler.com/security bigid.com/securitynow uscloud.com

Alarm bells are ringing over a supposed browser zero-day, but is the threat as bad as it sounds? Steve reveals why "clickjacking" might be more whac-a-mole than breaking news, and what that really means for your passwords. • Germany may soon outlaw ad blockers • What's happening in the courts over AI • The U.K. drops its demands of Apple • New Microsoft 365 tenants being throttled • Is Russia preparing to block Google Meet? • Bluesky suspends its service in Mississippi • How to throttle AI • A tricky SSH-busting Go library • Here comes the Linux desktop malware • Apple just patched a doozy of a vulnerability • A trivial Docker escape was found and fixed • Why the recent browser 0-day clickjacking is really just whac-a-mole Show Notes - https://www.grc.com/sn/sn-1040-notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/securitynow zscaler.com/security bigid.com/securitynow uscloud.com

Alarm bells are ringing over a supposed browser zero-day, but is the threat as bad as it sounds? Steve reveals why "clickjacking" might be more whac-a-mole than breaking news, and what that really means for your passwords. • Germany may soon outlaw ad blockers • What's happening in the courts over AI • The U.K. drops its demands of Apple • New Microsoft 365 tenants being throttled • Is Russia preparing to block Google Meet? • Bluesky suspends its service in Mississippi • How to throttle AI • A tricky SSH-busting Go library • Here comes the Linux desktop malware • Apple just patched a doozy of a vulnerability • A trivial Docker escape was found and fixed • Why the recent browser 0-day clickjacking is really just whac-a-mole Show Notes - https://www.grc.com/sn/sn-1040-notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/securitynow zscaler.com/security bigid.com/securitynow uscloud.com

Alarm bells are ringing over a supposed browser zero-day, but is the threat as bad as it sounds? Steve reveals why "clickjacking" might be more whac-a-mole than breaking news, and what that really means for your passwords. • Germany may soon outlaw ad blockers • What's happening in the courts over AI • The U.K. drops its demands of Apple • New Microsoft 365 tenants being throttled • Is Russia preparing to block Google Meet? • Bluesky suspends its service in Mississippi • How to throttle AI • A tricky SSH-busting Go library • Here comes the Linux desktop malware • Apple just patched a doozy of a vulnerability • A trivial Docker escape was found and fixed • Why the recent browser 0-day clickjacking is really just whac-a-mole Show Notes - https://www.grc.com/sn/sn-1040-notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/securitynow zscaler.com/security bigid.com/securitynow uscloud.com

Alarm bells are ringing over a supposed browser zero-day, but is the threat as bad as it sounds? Steve reveals why "clickjacking" might be more whac-a-mole than breaking news, and what that really means for your passwords. • Germany may soon outlaw ad blockers • What's happening in the courts over AI • The U.K. drops its demands of Apple • New Microsoft 365 tenants being throttled • Is Russia preparing to block Google Meet? • Bluesky suspends its service in Mississippi • How to throttle AI • A tricky SSH-busting Go library • Here comes the Linux desktop malware • Apple just patched a doozy of a vulnerability • A trivial Docker escape was found and fixed • Why the recent browser 0-day clickjacking is really just whac-a-mole Show Notes - https://www.grc.com/sn/sn-1040-notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/securitynow zscaler.com/security bigid.com/securitynow uscloud.com

Alarm bells are ringing over a supposed browser zero-day, but is the threat as bad as it sounds? Steve reveals why "clickjacking" might be more whac-a-mole than breaking news, and what that really means for your passwords. • Germany may soon outlaw ad blockers • What's happening in the courts over AI • The U.K. drops its demands of Apple • New Microsoft 365 tenants being throttled • Is Russia preparing to block Google Meet? • Bluesky suspends its service in Mississippi • How to throttle AI • A tricky SSH-busting Go library • Here comes the Linux desktop malware • Apple just patched a doozy of a vulnerability • A trivial Docker escape was found and fixed • Why the recent browser 0-day clickjacking is really just whac-a-mole Show Notes - https://www.grc.com/sn/sn-1040-notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/securitynow zscaler.com/security bigid.com/securitynow uscloud.com

Alarm bells are ringing over a supposed browser zero-day, but is the threat as bad as it sounds? Steve reveals why "clickjacking" might be more whac-a-mole than breaking news, and what that really means for your passwords. • Germany may soon outlaw ad blockers • What's happening in the courts over AI • The U.K. drops its demands of Apple • New Microsoft 365 tenants being throttled • Is Russia preparing to block Google Meet? • Bluesky suspends its service in Mississippi • How to throttle AI • A tricky SSH-busting Go library • Here comes the Linux desktop malware • Apple just patched a doozy of a vulnerability • A trivial Docker escape was found and fixed • Why the recent browser 0-day clickjacking is really just whac-a-mole Show Notes - https://www.grc.com/sn/sn-1040-notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/securitynow zscaler.com/security bigid.com/securitynow uscloud.com

Alarm bells are ringing over a supposed browser zero-day, but is the threat as bad as it sounds? Steve reveals why "clickjacking" might be more whac-a-mole than breaking news, and what that really means for your passwords. • Germany may soon outlaw ad blockers • What's happening in the courts over AI • The U.K. drops its demands of Apple • New Microsoft 365 tenants being throttled • Is Russia preparing to block Google Meet? • Bluesky suspends its service in Mississippi • How to throttle AI • A tricky SSH-busting Go library • Here comes the Linux desktop malware • Apple just patched a doozy of a vulnerability • A trivial Docker escape was found and fixed • Why the recent browser 0-day clickjacking is really just whac-a-mole Show Notes - https://www.grc.com/sn/sn-1040-notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/securitynow zscaler.com/security bigid.com/securitynow uscloud.com

In this episode, we're joined by Richard White, founder of Fathom, the AI-powered meeting assistant that records, transcribes and summarises your video calls so you can focus on the conversation. Previously the founder of UserVoice, Richard brings deep experience in user-centric product design and has built Fathom into one of the fastest-growing tools in the productivity space.Stay tuned to hear Richard's insights on the early product decisions that drove Fathom's breakout growth, why their freemium model worked from day one, and how they engineered virality into the onboarding experience. We also dig into how to build AI products that people actually want to use, why storytelling matters even in a product-led company and how to stay focused on solving real problems in a rapidly evolving tech landscape.Richard's Advice:When launching a product, make sure it always works - not just some of the timeBe a target user yourself: what do I value?What feels like ‘magic' and appears to go beyond the possibleBuild things you yourself can and will useWord of mouth infinitely more valuable and trustworthy than, for example, an Amazon ‘review'When trying out what AI can do for your business be prepared to jettison ideas as you go - sometimes big onesUse humans for customer support; this is an area worth investing in FF&M enables you to own your own PR & produces podcasts.Recorded, edited & published by Juliet Fallowfield, 2024 MD & Founder of PR & Communications consultancy for startups Fallow, Field & Mason.  Email us at hello@fallowfieldmason.com or DM us on instagram @fallowfieldmason. FF&M recommends: LastPass the password-keeping site that syncs between devices.Google Workspace is brilliant for small businessesBuzzsprout podcast 'how to' & hosting directoryCanva has proved invaluable for creating all the social media assets and audio bites.MUSIC CREDIT Funk Game Loop by Kevin MacLeod.  Link &  LicenceText us your questions for future founders. Plus we'd love to get your feedback, text in via Fan MailSupport the show

In this episode, Mike Kosak explains what threat intelligence really is (Mike's former boss said you have to “rub some thinking on it.”), how to define priority intelligence requirements (PIRs), how to treat model, where to find threat intel, and how to keep in actionable with tight feedback loops—not panic. Key takeaways:Threat intel ≠ data. It's analyzed info focused “walls-out” (what's outside your org), then shared clearly so people can act.Start with PIRs. Ask: What are we protecting? What is most valuable to our company? What might threat actors want? How do they operate? What do we need to know to defend? Do this with a broad set of stakeholders, not just the security team.Communicate clearly and with context. Intelligence is only valuable if it's shared in a way others can understand and act on. Avoid overwhelming people with raw data or inducing panic — provide actionable insights that are right-sized for the audience. Mike's advice: “As a threat intelligence analyst, if you're doing your job right, when somebody hears from you they know they need to act on it. You don't want to be the chicken little where you make everybody freak out about everything.”Start small and iterate. Even if you're a one-person team, you can make a big impact. Use free resources (like MITRE ATT&CK, open-source feeds, or even vendor reports), summarize what's relevant, and push that out. Then refine based on feedback—treat it as a continuous cycle, not a one-and-done project. Mike admits, “I always say it's like painting the Golden Gate Bridge. As soon as you get done, you gotta start back at the other end. That's basically what it is.”Mike Kosak is the Senior Principal Intelligence Analyst at Lastpass. Mike references a series of articles he wrote, including “Setting Up a Threat Intelligence Program From Scratch.” https://blog.lastpass.com/posts/setting-up-a-threat-intelligence-program-from-scratch-in-plain-language

In today's episode, we're joined by Daisy Bird, founder of BIRD PR, a creative communications agency specialising in luxury travel and hospitality brands since 2010. Daisy leads with a deep belief in the power of culture, emotional intelligence and building a people-first business. After 15 years in business, Daisy is cognisant of the investment this takes as well as the invisible skills a founder has to have to make a business succeed with a happy team as well.Stay tuned to hear Daisy's insights on the emotional undercurrent of running a business, why understanding personalities is non-negotiable in service industries, how she interviews, the value of psychometric testing and why investing in people is the best way to future proof your business.Daisy's advice: Align yourself with brands you respectIn this way you will be more effective; integrity mattersWhen employing, look for a range of talents and individuality - embrace differencesInvest in your employees: coaching is helpful for your team in areas like leadership skills and self-awarenessWellness retreats are valuable Employ people who are ready to learn and accept feedbackEncourage and reward employees who consciously add value to prove their worthYou must delegate; it's not sustainable to do everything yourself and leaves no room for creativity on your partAllow time to replenish yourselfIt's important to air and discuss female developmental/health stagesTake care of your loyal clients and don't give all your attention to the new and exciting onesFF&M enables you to own your own PR & produces podcasts.Recorded, edited & published by Juliet Fallowfield, 2024 MD & Founder of PR & Communications consultancy for startups Fallow, Field & Mason.  Email us at hello@fallowfieldmason.com or DM us on instagram @fallowfieldmason. FF&M recommends: LastPass the password-keeping site that syncs between devices.Google Workspace is brilliant for small businessesBuzzsprout podcast 'how to' & hosting directoryCanva has proved invaluable for creating all the social media assets and audio bites.MUSIC CREDIT Funk Game Loop by Kevin MacLeod.  Link &  LicenceText us your questions for future founders. Plus we'd love to get your feedback, text in via Fan MailSupport the show

Welcome to How to Start Up, the podcast that dives into the stories of startups, told directly by the founders. I'm Juliet Fallowfield, founder of Fallow Field & Mason, where we empower you to take charge of your storytelling via both PR & podcasting.In today's episode, we're joined by Rachel Harris, co-founder of striveX & founder of Accountant She. Passionate about financial well-being and running values-led businesses, Rachel has created a modern, cloud‑focused accountancy and tax advisory firm for both businesses and individuals alongside a platform for business owners to find accessible, consumable, financial education. Stay tuned to hear Rachel's advice on the highs and lows of running a business. Why loneliness is something that you should not ignore, what you should ask an accountant when you are vetting your first one, how they can become your business partner, how to manage people within the business, and so much more.Rachel's advice:Initially decide how much you want to delegateThen employ people more intelligent than you, and delegate to themWhen you choose an accountant, choose them according to your plans/expectations for your business; it helps if they can mirror your long-term goalsEstablish your communications preferences at the outsetBecause your accountant will be effectively your partner, research their core values and the infrastructure of their business firstCheck whether or not they outsource workAssess their values before you assess their technical competenceRachel believes in the value of therapyShe also believes in regular measuring of KPIsA very worthwhile benefits package will attract good employees if they are prepared to work hard for itEstablish systems and processes to free you upDon't underestimate the personal sacrifice and loneliness that being a founder can bringFF&M enables you to own your own PR & produces podcasts.Recorded, edited & published by Juliet Fallowfield, 2024 MD & Founder of PR & Communications consultancy for startups Fallow, Field & Mason.  Email us at hello@fallowfieldmason.com or DM us on instagram @fallowfieldmason. FF&M recommends: LastPass the password-keeping site that syncs between devices.Google Workspace is brilliant for small businessesBuzzsprout podcast 'how to' & hosting directoryCanva has proved invaluable for creating all the social media assets and audio bites.MUSIC CREDIT Funk Game Loop by Kevin MacLeod.  Link &  LicenceText us your questions for future founders. Plus we'd love to get your feedback, text in via Fan MailSupport the showText us your questions for future founders. Plus we'd love to get your feedback, text in via Fan MailSupport the show

Welcome to How to Start Up, the podcast that goes beyond the headlines to uncover how startups really begin, straight from the founders who lived it. I'm Juliet Fallowfield, founder of FF&M, where we empower you to take charge of your PR and launch your podcast with confidence.In today's episode, we're joined by Chloë Luxton, founder of Bramley. With sustainability as a top priority, this company is providing customers with botanical magic through natural fragrances, bulk refill pouches, and recycled packaging.Keep listening to hear how Chloë got started and why slow growth was her friend. Also, her perspective on B Corp and the pros and the cons of getting certified as well as the pros and cons of being a founder and how to manage that isolation that can often feel relentless.Chloë's Advice: If it's a good product, free samples will really generate sales and boost reputationKeep up with developments in recycling (for example, compostable refill pouches)If sustainability is something you believe in, then it will make your choices more straightforwardSometimes it's complicated, but all you can do is make the greener choiceB-Corp will give your business recognitionIt's a good idea to make packaging which can serve a second purpose laterPackaging apart, it's what's on the inside - the product itself - that really mattersTake advantage of networking opportunities; put yourself out thereTo avoid isolation as a single founder, talk issues over with others whenever possibleFF&M enables you to own your own PR & produces podcasts.Recorded, edited & published by Juliet Fallowfield, 2024 MD & Founder of PR & Communications consultancy for startups Fallow, Field & Mason.  Email us at hello@fallowfieldmason.com or DM us on instagram @fallowfieldmason. FF&M recommends: LastPass the password-keeping site that syncs between devices.Google Workspace is brilliant for small businessesBuzzsprout podcast 'how to' & hosting directoryCanva has proved invaluable for creating all the social media assets and audio bites.MUSIC CREDIT Funk Game Loop by Kevin MacLeod.  Link &  LicenceText us your questions for future founders. Plus we'd love to get your feedback, text in via Fan MailSupport the showText us your questions for future founders. Plus we'd love to get your feedback, text in via Fan MailSupport the show

Starting a business is tough & making sales in a challenging economic climate is even harder. So, resilience is key to keeping on track. But how can we manage rejection alongside the expected setbacks? To find out, I spoke with Lauren Currie OBE, Founder of UPFRONT, a global organisation upskilling 10 million women. Teams at Nike and Just Eat Takeaway have enrolled their teams in UPFRONT's Bond course to transform their team culture.Keep listening to hear Lauren's advice on developing resilience in sales & when to acknowledge you should probably cut your losses. Lauren's advice:Your energy is vital to running a business, so manage itAvoid those people who drain your energy and seek out those who replenish itMarketing equals revenue - the more you do, the more returns you will haveAccept the loneliness of the founder, which can be hardBe comfortable and confident about your pricingAlso, be very clear about your pricing so the customer doesn't have to work hard to find itWhen a potential client or customer approaches you for the first time, always ask them how they found youGet them to say yes or no as soon as possible!  Don't spend a long time courting a potential customer - move on to find someone newMake life easy for your clients: for example, don't let them have to work out time differencesDon't take rejection personally!If you need to make a customer more comfortable, include an older white man face in a callNurture yourself and your energy before you decide to quit: are you tired? Dehydrated? Hungry? FF&M enables you to own your own PR & produces podcasts.Recorded, edited & published by Juliet Fallowfield, 2024 MD & Founder of PR & Communications consultancy for startups Fallow, Field & Mason.  Email us at hello@fallowfieldmason.com or DM us on instagram @fallowfieldmason. FF&M recommends: LastPass the password-keeping site that syncs between devices.Google Workspace is brilliant for small businessesBuzzsprout podcast 'how to' & hosting directoryCanva has proved invaluable for creating all the social media assets and audio bites.MUSIC CREDIT Funk Game Loop by Kevin MacLeod.  Link &  LicenceText us your questions for future founders. Plus we'd love to get your feedback, text in via Fan MailSupport the showText us your questions for future founders. Plus we'd love to get your feedback, text in via Fan MailSupport the show

Welcome to How To Start Up — the podcast that dives into the real stories behind the startups, side hustles & self-made successes. Jamila Brown is an American-German powerhouse who moved to London at 21 and after being told her life was “over” when she became a single mum at 24 — proved everyone wrong.From running Soho House's global ESG programme to discovering her knack for freelancing during a sabbatical Jamila's journey to founding her own impact agency is anything but linear — and that's exactly why it's inspiring.Today, she's a business owner, a mum of two, a wife and a sustainability and social impact champion. This is an honest, motivating chat about reinvention, resilience, and knowing your worth.Jamila's advice: Self-confidence helps!As does a sense of purpose/serviceBeing vocal makes you visibleIn my case, being a single parent helped concentrate my mind and made me use my time wellHaving good people skills, being outspoken and having drive are all importantRemember ESG matters, there is a point to itI had an idea and a smile - not a websiteEvery challenge is an opportunityDon't procrastinate, just do it and you will learn as you goFF&M enables you to own your own PR & produces podcasts.Recorded, edited & published by Juliet Fallowfield, 2024 MD & Founder of PR & Communications consultancy for startups Fallow, Field & Mason.  Email us at hello@fallowfieldmason.com or DM us on instagram @fallowfieldmason. FF&M recommends: LastPass the password-keeping site that syncs between devices.Google Workspace is brilliant for small businessesBuzzsprout podcast 'how to' & hosting directoryCanva has proved invaluable for creating all the social media assets and audio bites.MUSIC CREDIT Funk Game Loop by Kevin MacLeod.  Link &  LicenceText us your questions for future founders. Plus we'd love to get your feedback, text in via Fan MailSupport the show

Send us a textLosing your OTP or access to Amazon Seller Central can cost sellers serious time. This video breaks down how to recover your account and prevent future login problems. Includes steps for better 2FA setup, security tips, and tools like  Authenticator.Need help securing your Amazon account or getting back in? https://bit.ly/44uHuaR#AmazonSeller #SellerCentral #AmazonAccountHelp #TwoStepVerification #FBAHelpWatch these videos on YouTube:Simple Trick to Cut PPC Costs https://www.youtube.com/watch?v=k5CM6XtYo1c&list=PLDkvNlz8yl_YEKE1B5o1uhbBm1QQcPzmY&index=39How to Increase IPI https://www.youtube.com/watch?v=TMysF_XACdQ&list=PLDkvNlz8yl_b5s-jb7KgPe-aPWP47jZIL-------------------------------------------------Struggling with ads? Download our free PPC guide made for Amazon sellers: https://bit.ly/4kjWmgQWant better rankings? Grab the free Amazon SEO toolkit and start fixing your listings: https://bit.ly/3GW5zxMTimestamps00:00 – What To Do If You Lose Your OTP Code00:30 – Common Mistakes When Setting Up OTP01:20 – Account Recovery Using Amazon.com Login02:00 – Required Documents for OTP Reset03:00 – Manual Review Process by Amazon Security04:00 – Better Ways to Set Up Account Security05:10 – How to Use an Authenticator App06:00 – Using 1Password or LastPass for OTP07:00 – Why All Amazon Sellers Should Update OTP Settings-------------------------------------------------Follow us:LinkedIn: https://www.linkedin.com/company/28605816/Instagram: https://www.instagram.com/stevenpopemag/Pinterest: https://www.pinterest.com/myamazonguys/Twitter: https://twitter.com/myamazonguySubscribe to the My Amazon Guy podcast: https://podcast.myamazonguy.comApple Podcast: https://podcasts.apple.com/us/podcast/my-amazon-guy/id1501974229Spotify: https://open.spotify.com/show/4A5ASHGGfr6s4wWNQIqyVwSupport the show

In today's episode, I'm joined by Emma and Kenny, the co-founders of HipPop — a gut-friendly drinks brand that's shaking up the soft drinks aisle. While many might have pigeonholed their product as just kombucha, Emma and Kenny have taken a bold and intentional route: positioning HipPop as a go-to soft drinks brand, not a wellness niche.We talk about what it takes to enter a new market, how branding beyond a product category can be a superpower, and why really listening to your customer is key. From humble beginnings in a farmhouse to securing shelf space in major retailers, their story is packed with practical insight for anyone launching into a crowded space.Emma & Kenny's advice:Test your products locally, in small independent businessesPublicise your ingredients and the provenance of the productTry to work within a representative area of the UKLook for a gap in the marketIf you have a personal reason for setting up the brand, people will love to hear itAfter rigorous testing, and building a local reputation, move on to website and Facebook marketingGradually approach bigger retailers (you will have to be dogged - and original - in pursuing buyers)When you scale, bring in people to cover the skills you don't haveAs you expand distribution, it's important to build relationships with the new people you are dealing with; go slowly and patientlyFF&M enables you to own your own PR & produces podcasts.Recorded, edited & published by Juliet Fallowfield, 2024 MD & Founder of PR & Communications consultancy for startups Fallow, Field & Mason.  Email us at hello@fallowfieldmason.com or DM us on instagram @fallowfieldmason. FF&M recommends: LastPass the password-keeping site that syncs between devices.Google Workspace is brilliant for small businessesBuzzsprout podcast 'how to' & hosting directoryCanva has proved invaluable for creating all the social media assets and audio bites.MUSIC CREDIT Funk Game Loop by Kevin MacLeod.  Link &  LicenceText us your questions for future founders. Plus we'd love to get your feedback, text in via Fan MailSupport the showText us your questions for future founders. Plus we'd love to get your feedback, text in via Fan MailSupport the show

Data silos are significantly hindering AI innovation, as highlighted by a recent report from Infanti. The survey of over 1,200 IT and cybersecurity professionals revealed that more than half of the respondents experience isolated data within their organizations, leading to inefficiencies and slow security responses. Nearly 30% of IT professionals reported that these data deficiencies obstruct their ability to effectively utilize AI tools. Experts emphasize the necessity for a comprehensive data strategy that includes governance, quality, and performance to foster innovation and avoid stagnation in AI projects.In the medical field, radiologists are experiencing growth rather than extinction due to advancements in AI. The Association of American Medical Colleges predicts a shortage of up to 42,000 radiologists by 2033, yet AI is proving to be an essential tool for these professionals. At institutions like the Mayo Clinic, AI has enabled rapid measurements and early disease detection, leading to a 55% expansion in their radiology department and the development of over 250 AI models to enhance diagnostic capabilities.Public relations professionals are adapting to the rise of AI by recognizing the importance of engaging with journalists to influence AI chatbots. Research indicates that authoritative journalism has a more significant impact on how AI platforms generate responses about companies than social media campaigns. This shift underscores the need for firms to prioritize earned media and thought leadership as part of their brand strategy, especially as AI continues to shape public perception.Lastly, companies like SuperOps and TD Cynics are making strides in AI integration. SuperOps has relaunched its AI-powered platform, Monika, which offers various levels of AI autonomy to enhance IT operations for managed service providers. Meanwhile, TD Cynics has updated its Destination AI program to help partners transition from AI exploration to execution, providing tools and frameworks that align technical skills with specific AI solutions. These developments highlight the growing importance of AI in various sectors and the need for organizations to adapt their strategies accordingly. Four things to know today 00:00 Want AI to Work? Fix Your Data First—Then Look at Radiologists for What's Next06:01 OpenAI Rolls Out GPT-4.1, Deepens Microsoft Integration, and Launches Safety Hub for Greater Transparency09:18 AI Gets Practical—SuperOps Wants to Automate Your Ops While TD SYNNEX Helps You Sell It12:29 LastPass Expands into SaaS Visibility, Challenging Lightweight Shadow IT Tools with Business Max Tier This is the Business of Tech.    Supported by:  https://cometbackup.com/?utm_source=mspradio&utm_medium=podcast&utm_campaign=sponsorshiphttps://getflexpoint.com/msp-radio/ All our Sponsors: https://businessof.tech/sponsors/ Do you want the show on your podcast app or the written versions of the stories? Subscribe to the Business of Tech: https://www.businessof.tech/subscribe/Looking for a link from the stories? The entire script of the show, with links to articles, are posted in each story on https://www.businessof.tech/ Support the show on Patreon: https://patreon.com/mspradio/ Want to be a guest on Business of Tech: Daily 10-Minute IT Services Insights? Send Dave Sobel a message on PodMatch, here: https://www.podmatch.com/hostdetailpreview/businessoftech Want our stuff? Cool Merch? Wear “Why Do We Care?” - Visit https://mspradio.myspreadshop.com Follow us on:LinkedIn: https://www.linkedin.com/company/28908079/YouTube: https://youtube.com/mspradio/Facebook: https://www.facebook.com/mspradionews/Instagram: https://www.instagram.com/mspradio/TikTok: https://www.tiktok.com/@businessoftechBluesky: https://bsky.app/profile/businessof.tech

Developers are relying on LLMs as coding assistants, so where are the LLM assistants for appsec? The principles behind secure code reviews don't really change based on who write the code, whether human or AI. But more code means more reasons for appsec to scale its practices and figure out how to establish trust in code, packages, and designs. Rey Bango shares his experience with secure code reviews and where developer education fits in among the adoption of LLMs. As businesses rapidly embrace SaaS and AI-powered applications at an unprecedented rate, many small-to-medium sized businesses (SMBs) struggle to keep up due to complex tech stacks and limited visibility into the skyrocketing app sprawl. These modern challenges demand a smarter, more streamlined approach to identity and access management. Learn how LastPass is reimagining access control through “Secure Access Experiences” - starting with the introduction of SaaS Monitoring capabilities designed to bring clarity to even the most chaotic environments. Secure Access Experiences - https://www.lastpass.com/solutions/secure-access This segment is sponsored by LastPass. Visit https://securityweekly.com/lastpassrsac to learn more about them! Cloud Application Detection and Response (CADR) has burst onto the scene as one of the hottest categories in security, with numerous vendors touting a variety of capabilities and making promises on how bringing detection and response to the application-level will be a game changer. In this segment, Gal Elbaz, co-founder and CTO of Oligo Security, will dive into what CADR is, who it helps, and what the future will look like for this game changing technology. Segment Resources - https://www.oligo.security/company/whyoligo To see Oligo in action, please visit https://securityweekly.com/oligorsac Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw-330

Developers are relying on LLMs as coding assistants, so where are the LLM assistants for appsec? The principles behind secure code reviews don't really change based on who write the code, whether human or AI. But more code means more reasons for appsec to scale its practices and figure out how to establish trust in code, packages, and designs. Rey Bango shares his experience with secure code reviews and where developer education fits in among the adoption of LLMs. As businesses rapidly embrace SaaS and AI-powered applications at an unprecedented rate, many small-to-medium sized businesses (SMBs) struggle to keep up due to complex tech stacks and limited visibility into the skyrocketing app sprawl. These modern challenges demand a smarter, more streamlined approach to identity and access management. Learn how LastPass is reimagining access control through “Secure Access Experiences” - starting with the introduction of SaaS Monitoring capabilities designed to bring clarity to even the most chaotic environments. Secure Access Experiences - https://www.lastpass.com/solutions/secure-access This segment is sponsored by LastPass. Visit https://securityweekly.com/lastpassrsac to learn more about them! Cloud Application Detection and Response (CADR) has burst onto the scene as one of the hottest categories in security, with numerous vendors touting a variety of capabilities and making promises on how bringing detection and response to the application-level will be a game changer. In this segment, Gal Elbaz, co-founder and CTO of Oligo Security, will dive into what CADR is, who it helps, and what the future will look like for this game changing technology. Segment Resources - https://www.oligo.security/company/whyoligo To see Oligo in action, please visit https://securityweekly.com/oligorsac Show Notes: https://securityweekly.com/asw-330

The messaging app used by CBP and the White House faces continued security scrutiny. Hacktivists breach the airline used for U.S. deportation flights. The FBI warns that threat actors are exploiting outdated, unsupported routers. Education giant Pearson confirms a cyberattack. Researchers report exploitation of Windows Remote Management (WinRM) for stealthy lateral movement in Active Directory (AD) environments. A sophisticated email attack campaign uses malicious PDF invoices to deliver a cross-platform RAT. A zero-day vulnerability in SAP NetWeaver enables remote code execution. An Indiana health system reports a data breach affecting nearly 263,000 individuals. Our guest is Alex Cox, Director of Information Security at LastPass, discussing tax-related lures targeting refunds. AI empowers a murder victim to speak from beyond the grave.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Today we are joined by Alex Cox, Director of Information Security at LastPass, to discuss tax-related lures facing both tax preparation agencies and filers expecting refunds. Selected Reading On the state of modern Web Application Security (BrightTalk) Customs and Border Protection Confirms Its Use of Hacked Signal Clone TeleMessage  (Wired) Hackers hit deportation airline GlobalX, leak flight manifests, and leave an unsubtle message for "Donnie" Trump (Bitdefender) FBI Sounds Alarm on Rogue Cybercrime Services Targeting Obsolete Routers (infosecurity magazine) Education giant Pearson hit by cyberattack exposing customer data (Bleeping Computer) Hackers Using Windows Remote Management to Stealthily Navigate Active Directory Network (Cybersecurity News) Hackers Weaponizing PDF Invoices to Attack Windows, Linux & macOS Systems (Cybersecurity News) SAP Zero-Day Targeted Since January, Many Sectors Impacted (Security Week) Indiana Health System Notifies 263,000 of Oracle Hack (Bank of Infosecurity) A Judge Accepted AI Video Testimony From a Dead Man (404 Media) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

In this Chats on the Road to RSAC 2025, , Sean Martin and Marco Ciappelli connect with Tim Brown, Chief Information Security Officer at SolarWinds, to unpack the critical issues facing CISOs today—and why the role remains worth pursuing.Brown is participating in multiple sessions at RSAC Conference 2025, including the CISO Bootcamp and Cyber Leaders Forum. Both are closed-door conversations designed to surface real concerns in a confidential, supportive setting. These aren't theoretical discussions—they're rooted in hard-earned experience. Brown, who has faced high-profile scrutiny and legal fallout from a past incident at SolarWinds, brings a uniquely personal perspective to these sessions.He points out that fear and hesitation are keeping many deputy CISOs from stepping up into the top role. His message to them: don't be afraid of the position. Despite the weight of responsibility, the role offers real influence, the ability to shape enterprise architecture, and the opportunity to drive meaningful business decisions. Brown emphasizes the importance of community support and collective growth, noting that the cybersecurity industry—still relatively young—is maturing and finding its footing when it comes to accountability and resilience.Beyond leadership development, mental health and stress management are key themes in the Cyber Leaders Forum. Brown acknowledges the toll the job can take, even sharing that his own health suffered despite thinking he was managing stress well. This honest reflection opens the door for deeper conversations about personal well-being in high-pressure roles.He's also appearing at the Cloud Security Alliance Summit with Chris Hoff, Chief Security Officer at LastPass, where they'll discuss incident response and field questions from the audience. On Wednesday, Brown joins a breakfast session with Tactic and Hyperwise, guiding attendees through a crisis simulation based on lessons from the Sunburst attack. His focus? Helping others avoid being unprepared in a moment of chaos.From insider threat modeling to supply chain transparency and the challenges of monitoring runtime behavior, Brown is clear-eyed about where CISOs need to focus next.This episode isn't just a preview of conference sessions—it's a call to future security leaders to lean in, not back.___________Guest: Tim Brown, CISO, Solarwinds | On LinkedIn: https://www.linkedin.com/in/tim-brown-ciso/Hosts:Sean Martin, Co-Founder at ITSPmagazine | Website: https://www.seanmartin.comMarco Ciappelli, Co-Founder at ITSPmagazine | Website: https://www.marcociappelli.com___________Episode SponsorsThreatLocker: https://itspm.ag/threatlocker-r974Akamai: https://itspm.ag/akamailbwcBlackCloak: https://itspm.ag/itspbcwebSandboxAQ: https://itspm.ag/sandboxaq-j2enArcher: https://itspm.ag/rsaarchwebDropzone AI: https://itspm.ag/dropzoneai-641ISACA: https://itspm.ag/isaca-96808ObjectFirst: https://itspm.ag/object-first-2gjlEdera: https://itspm.ag/edera-434868___________ResourcesRSAC Session: CLF Ask Me Anything Session with Tim Brown, CISO, SolarWinds: https://path.rsaconference.com/flow/rsac/us25/FullAgenda/page/catalog/session/1739404173721001x1MHRSAC Session: CISO Boot Camp Exclusive Fireside Chat with Tim Brown, CISO, SolarWinds: https://path.rsaconference.com/flow/rsac/us25/FullAgenda/page/catalog/session/1739403254724001isXhCSA Summit at RSAC 2025: Fireside Chat with Tim Brown and Chris Hoff: https://www.csasummitrsac.com/event/5b3547c2-c652-4f77-97de-5b094e746626/agenda?session=1452408b-c822-4664-87b8-38ce1276247bLearn more and catch more stories from RSA Conference 2025 coverage: https://www.itspmagazine.com/rsa-conference-usa-2025-rsac-san-francisco-usa-cybersecurity-event-infosec-conference-coverageCatch all of our event coverage: https://www.itspmagazine.com/technology-and-cybersecurity-conference-coverageWant to tell your Brand Story Briefing as part of our event coverage? Learn More

Jeff Shiner is the CEO of 1Password, the access management company used by over 100,000 businesses and millions of individuals worldwide. He joined 1Password as CEO in 2012, when the team was just under 20 people. Under Jeff's leadership, 1Password expanded into B2B, launched a SaaS platform, and scaled from a small family-run operation into a global company. In 2019, Jeff led 1Password through its first-ever funding round – a $200M Series A from Accel – to build out its go-to-market team and accelerate product development. Before joining 1Password, Jeff held senior roles at IBM and led teams through multiple acquisitions and integrations. --- In today's episode, we discuss: Why bootstrapping isn't always what it's cracked up to be The switch from a consumer product to B2B Launching before billing — and why that worked When being “too secure” nearly killed the product Becoming CEO… without telling anyone Much more --- Referenced: 1Password: https://1password.com Accel: https://www.accel.com Arun Mathew: https://www.linkedin.com/in/arun-mathew-b7186412/ David Teare: https://www.linkedin.com/in/daveteare/ Floodgate: https://floodgate.com LastPass: https://www.lastpass.com Mike Maples: https://www.linkedin.com/in/maples/ Natalia Karimov: https://1password.com/company/meet-the-team/natalia-karimov Roustem Karimov: https://www.linkedin.com/in/roustem/?originalSubdomain=ca Sara Teare: https://1password.com/company/meet-the-team/sara-teare Shopify: https://www.shopify.com Tobi Lütke: https://www.linkedin.com/in/tobiaslutke/ --- Where to find Jeff: LinkedIn: https://www.linkedin.com/in/jshiner --- Where to find Brett: LinkedIn: https://www.linkedin.com/in/brett-berson-9986094/ Twitter/X: https://twitter.com/brettberson --- Where to find First Round Capital: Website: https://firstround.com/ First Round Review: https://review.firstround.com/ Twitter/X: https://twitter.com/firstround YouTube: https://www.youtube.com/@FirstRoundCapital This podcast on all platforms: https://review.firstround.com/podcast --- Timestamps: 0:03 – How Jeff got involved with 1Password 2:01 – How 1Password was initially set up 10:41 – The secret CEO 13:44 – What Jeff's first six months encompassed 16:13 – The lightbulb moment that caused a pivot 17:50 – 1Password's unusual company journey 22:08 – Creating an aligned product roadmap 29:19 – Retaining a customer-centric focus at scale 30:40 – Why 1Password's first B2B product failed 39:43 – How Jeff thinks about competitors 46:44 – Building different go-to-market functions 52:45 – Staying bootstrapped for 15 years 57:17 – Jeff's one regret 1:02:00 – 1Password's most pivotal moments

Hector's back from Miami, rubber ducky giveaways in tow, and diving deep into a wild week of cyber news—from Elon Musk's Starlink bug bounty to a stealthy year-long breach of U.S. bank regulators. The guys unpack major incidents including a Stuxnet-style espionage campaign in Ukraine, AI-powered spear phishing, and yet another haunting update in the LastPass hack saga. But the real fireworks come in Hector's rant, where he slams the cybersecurity industry's political silence and calls out its leaders for cowardice. Join our new Patreon! https://www.patreon.com/c/hackerandthefed

PHP exploits are active in the wild. Security researchers discover undocumented commands in a popular Wi-Fi and Bluetooth-enabled microcontroller. The ONCD could gain influence in this second Trump administration. The Akira ransomware gang leverages an unsecured webcam. Mission, Texas declares a state of emergency following a cyberattack. The FBI and Secret Service confirm crypto-heists are linked to the 2022 LastPass breach. A popular home appliance manufacturer suffers a cyberattack. Switzerland updates reporting requirements for critical infrastructure operators.  Our guest is Errol Weiss, Chief Security Officer at the Health-ISAC, who warns “the cavalry isn't coming—why the private sector must take the lead in critical infrastructure cybersecurity.” A termination kill switch leads to potential jail time.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Today, we have Errol Weiss, Chief Security Officer at the Health-ISAC, sharing his take “the cavalry isn't coming—why the private sector must take the lead in critical infrastructure cybersecurity.” Selected Reading Mass Exploitation of Critical PHP Vulnerability Begins (SecurityWeek) Undocumented commands found in Bluetooth chip used by a billion devices (Bleeping Computer) White House cyber director's office set for more power under Trump, experts say (The Record) Ransomware gang encrypted network from a webcam to bypass EDR (Bleeping Computer) Texas border city declares state of emergency after cyberattack on government systems (The Record) Feds Link $150M Cyberheist to 2022 LastPass Hacks (Krebs on Security) Home appliance company Presto says cyberattack causing delivery delays (The Record) Switzerland Mandates Cyber-Attack Reporting for Critical Infrastructure (Infosecurity Magazine) Developer sabotaged ex-employer IT systems with kill switch (The Register)  Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Today's blockchain and cryptocurrency news  Bitcoin is up slightly at $85,004 Eth is up slightly at $2,142 XRP, is up slightly at $2.25 Kraken eyes IPO Arkham adds new tag for crypto influencers Zoroo arrested in Shanghai Ripple co-founder Chris Larsen may have lost $150M in LastPass hack. Garantex domains seized. Learn more about your ad choices. Visit megaphone.fm/adchoices