Podcasts about Mitre

This "Week in Review" from Exopolitics Today focuses on the latest in UFOs and alien secrets. It discusses the Pentagon releasing new ufo files, a congressman's statement about ufo disclosure, and NASA's plans for a moon base. The content also touches on MITRE reviewing uap archives and the potential involvement of extra terrestrials in abductions and reverse-engineering programs, highlighting various government secrets related to ufo encounters.00:00:00 - Topics00:02:00 - Remote viewing is not only used by the military intelligence community to get info about peer adversaries, but also in major corporations. https://x.com/MichaelSalla/status/206033818317119492700:08:29 - Aliens.gov website launches as a double entendre - https://exopolitics.org/aliens-gov-website-launches-one-day-to-trump-pentagon-and-alien-secrets-webinar/Announcement that Amy Eskridge is not dead according to an eyewitness report goes viral https://x.com/MichaelSalla/status/2060684402179391649Eyewitness claims Amy Eskridge is working at an underground facility and wants info released. https://x.com/MichaelSalla/status/2060870684117524497 00:20:36 - Investigative journalist Christopher Sharp says his sources have revealed that Trump's inner circle, including RFK, Jr supports ET disclosure. https://x.com/MichaelSalla/status/2061047722396766383 Private corporations are where all the top UFO/ET secrets are kept. https://x.com/MichaelSalla/status/2061082786283282826Australian news media cover President Trump's UFO file releases. https://www.youtube.com/shorts/H4GWZNkY5I0 Another member of the US Congress is speaking out about the classified briefings she has attended discussing the UFO phenomenon. https://x.com/MichaelSalla/status/2061386732315021512The Watchers Were Real - Shocking Past-Life Memories, Atlantis, Lemuria & Humanity's Hidden Origins https://x.com/MichaelSalla/status/2061418180967268526Rep Tim Burchett says: "People are trying to block UFO disclosure because they're worried about the disruption to religions." https://x.com/InterstellarUAP/status/2061478652353679787 Portal Systems, Stargates, and Extraterrestrial Access Points https://x.com/MichaelSalla/status/2061926689668522464 Eyewitness claims dead scientist leads antigravity research at secret Spaceport under Green Mountain, Alabama https://x.com/MichaelSalla/status/2062130927749496845 Chief exorcist for the Archdiocese of Washington believes most UFO sightings are actually demons https://x.com/RedPandaKoala/status/2061577351742509344Jay Stratton's Out of the Shadows, will be published by HarperCollins on October 13, 2026. https://x.com/jaystratton/status/2062157735425130814 Join Dr. Salla on Patreon for Early Releases, Webinar Perks and More.Visit https://Patreon.com/MichaelSalla/

In this UFO news update, I break down a packed few days in the disclosure world.Dylan Borland and Matthew Brown have announced a new whistleblower fund, raising fresh questions about how people coming forward are being supported, and where previous funds have actually gone.Congressman Eric Burlison is continuing to push the private contractor angle, targeting organisations like MITRE, RAND and MIT Lincoln Labs, as the search for UAP records moves beyond the Pentagon and into the grey area between government and private industry.We also look at Lauren Boebert's latest comments on classified briefings, biological beings, portals and the supernatural, plus the New York Times covering the growing conversation around UFOs, religion, demons and how disclosure may be interpreted by different communities.And finally, I cover notes from Lue Elizondo's Persona Non Grata event in Texas, including Burlison's comments on amnesty, deep underground military bases, Jake Barber, Michael Herrera and the upcoming June 9 Capitol Hill event with David Grusch and members of Congress.June could be a huge month for the UFO topic. Is this disclosure gaining momentum, or getting even stranger?

This "Week in Review" from Exopolitics Today focuses on the latest in UFOs and alien secrets. It discusses the Pentagon releasing new ufo files, a congressman's statement about ufo disclosure, and NASA's plans for a moon base. The content also touches on MITRE reviewing uap archives and the potential involvement of aliens in abductions and reverse-engineering programs.00:00:00 - Topics 00:01:19 - Trump is about to sign an executive order making it possible for whistleblowers to come forward without them being punished for violating their NDAs https://x.com/MichaelSalla/status/20581484355517813700:05:24 - President Trump is the driving force behind official UFO disclosure releases according to Anna Paulina Luna. https://x.com/ThePatriotOasis/status/205798554973071403900:08:14 - Dan Burisch a microbiologist who was tasked to look after “J-Rod”, an Alien being from the future. https://x.com/MichaelSalla/status/205856629468998879500:12:30 - Mr X, came forward in 2006 to reveal that UFO files were being archived in a major aerospace company https://x.com/MichaelSalla/status/205858653555800518400:19:10 - The Trump Administration is consulting with religious leaders about how to reveal the truth about ET life. https://x.com/MichaelSalla/status/205886699322311092600:21:53 - Disclosure Project Press Conference at the National Press Club used flying triangle image first released by Jorge Pabon (JP). https://x.com/MichaelSalla/status/205887223216464304100:25:59 - PENTAGON UFO FILES EXPOSED?! JP Reveals TR-3Bs, Nordic Beings & Secret AGI Suits https://x.com/MichaelSalla/status/205888158305502460700:26:32 - Rep. Tim Burchett says that "Trump will deliver UFO Disclosure - If The Deep State don't kill him first”. https://x.com/InterstellarUAP/status/2058928847454716409 00:29:53 - Composite of three photos of a flying triangle-shaped craft taken near MacDill AFB on Sept 4, 2017, by Jorge Pabon (JP) https://x.com/MichaelSalla/status/2059258745977176398 00:31:06 - Here is the third in a sequence of three photos Jorge Pabon (JP) took of a flying saucer craft on January 12, 2018. https://x.com/MichaelSalla/status/2059397634935357648 00:32:36 - NASA just officially unveiled their master plan for a permanent Moon Base at the lunar South Pole https://x.com/XFreeze/status/2059349030514094568 00:34:37 - HE TOOK THIS UFO PHOTO... Then Everything Changed https://x.com/MichaelSalla/status/205959308867103555100:37:18 - President Trump goes to the essence of what his UFO disclosure initiative is all about: "releasing information regarding extraterrestrials." https://x.com/MichaelSalla/status/2059814411204788325 00:39:33 - Eric Burlison has received good advice to go after federally funded organizations such as MITRE in search of UFO-related records. https://x.com/MichaelSalla/status/205982735844243488500:42:39 - The new false narrative is that alien spacecraft have only recently been successfully reverse engineered and they are being used to protect us from Gray aliens conducting abductions. 00:48:07 - Disclosure Day the Exopolitical perspective00:49:57 - May 30 Webinar on Trump, Pentagon & Alien Secrets https://www.crowdcast.io/c/trump-pentagon-alien-disclosureJoin Dr. Salla on Patreon for Early Releases, Webinar Perks and More.Visit https://Patreon.com/MichaelSalla/

This week we have a technical segment focused on Linux! Paul released a script that helps you get a handle on Linux supply chain security, and new features allow you to assess the state of Secure Boot on your Linux systems (that also use MS certificates, ironically). The script is in his Git repo: https://github.com/pasadoorian/Linux_Hacks. In the security news: The CVE chase The new security basics Enterprises are lacking more than AI Detections are falling behind Why DOOM!?! Chromium vulnerability The ambitious Flipper One I'm still curious who was behind these leaks Mitre moves Caldera to Apache foundation Wind cybersecurity PQC updates YellowKey Bitlocker Bypass updates The software supply chain is in deep trouble Visit https://www.securityweekly.com/psw for all the latest episodes! Show Notes: https://securityweekly.com/psw-928

This week we have a technical segment focused on Linux! Paul released a script that helps you get a handle on Linux supply chain security, and new features allow you to assess the state of Secure Boot on your Linux systems (that also use MS certificates, ironically). The script is in his Git repo: https://github.com/pasadoorian/Linux_Hacks. In the security news: The CVE chase The new security basics Enterprises are lacking more than AI Detections are falling behind Why DOOM!?! Chromium vulnerability The ambitious Flipper One I'm still curious who was behind these leaks Mitre moves Caldera to Apache foundation Wind cybersecurity PQC updates YellowKey Bitlocker Bypass updates The software supply chain is in deep trouble Show Notes: https://securityweekly.com/psw-928

This week we have a technical segment focused on Linux! Paul released a script that helps you get a handle on Linux supply chain security, and new features allow you to assess the state of Secure Boot on your Linux systems (that also use MS certificates, ironically). The script is in his Git repo: https://github.com/pasadoorian/Linux_Hacks. In the security news: The CVE chase The new security basics Enterprises are lacking more than AI Detections are falling behind Why DOOM!?! Chromium vulnerability The ambitious Flipper One I'm still curious who was behind these leaks Mitre moves Caldera to Apache foundation Wind cybersecurity PQC updates YellowKey Bitlocker Bypass updates The software supply chain is in deep trouble Visit https://www.securityweekly.com/psw for all the latest episodes! Show Notes: https://securityweekly.com/psw-928

This week we have a technical segment focused on Linux! Paul released a script that helps you get a handle on Linux supply chain security, and new features allow you to assess the state of Secure Boot on your Linux systems (that also use MS certificates, ironically). The script is in his Git repo: https://github.com/pasadoorian/Linux_Hacks. In the security news: The CVE chase The new security basics Enterprises are lacking more than AI Detections are falling behind Why DOOM!?! Chromium vulnerability The ambitious Flipper One I'm still curious who was behind these leaks Mitre moves Caldera to Apache foundation Wind cybersecurity PQC updates YellowKey Bitlocker Bypass updates The software supply chain is in deep trouble Show Notes: https://securityweekly.com/psw-928

Un camión sanitario de la Fundación CONIN realiza controles médicos, nutricionales y sociales en la Estación Mitre de la ciudad de Santa Fe. Desde la entidad advirtieron sobre la presencia de cuadros de malnutrición, obesidad y baja talla infantil, además de las dificultades económicas para sostener los programas de asistencia.

In this episode of NucleCast, the official podcast of the ANWA Deterrence Center, Adam sits down with Todd Sriver, Director of Nuclear Command, Control, and Communications (NC3), to examine the current state and future of one of the most critical components of the U.S. nuclear enterprise.Together, they explore the ongoing modernization of NC3—from legacy systems rooted in 1980s-era technology to a more resilient, digital network-of-networks architecture designed for today's threat environment. The conversation highlights the technical and strategic challenges of upgrading NC3 while maintaining uninterrupted deterrence.The episode also dives into emerging threats, including hypersonic weapons, cyber vulnerabilities, and quantum computing, and what they mean for detection, decision-making, and system resilience. Sriver outlines how the U.S. is prioritizing cybersecurity, advanced sensors, and next-generation technologies to ensure NC3 remains secure, survivable, and effective.Dr. Todd Sriver serves as Director of Nuclear Command, Control, and Communications (NC3) within the Office of the Under Secretary of War for Acquisition and Sustainment, where he leads modernization, risk management, and development of the NC3 enterprise. He works closely with U.S. Strategic Command to secure resources and address acquisition challenges critical to nuclear deterrence.A retired U.S. Air Force Colonel with 27 years of service, Dr. Sriver held senior Pentagon roles on the Joint Chiefs of Staff and Headquarters Air Force, overseeing national and nuclear command and control systems. He previously served as a Principal Systems Engineer at MITRE, focusing on NC3 and Joint All-Domain Command and Control integration.He holds a Ph.D. and M.S. in Operations Research from the Air Force Institute of Technology, an M.S. from the Eisenhower School, and a B.S. in Aeronautical and Astronautical Engineering from Purdue University.Follow us on YouTube: https://youtube.com/@nuclecast3665?si=h1kCO6NqUtL87w6qFollow on LinkedIn: https://linkedin.com/company/nuclecastpodcastSubscribe RSS Feed: https://rss.com/podcasts/nuclecast-podcast/Rate: https://podcasts.apple.com/us/podcast/nuclecast/id1644921278Email comments and topic/guest suggestions to Kimberly@anwadeter.org

Patricia Bullrich, senadora de LLA, en diálogo con la prensa, afirmó: “Yo ya lo dije, ya lo expresé, me parece que con una vez alcanza las cosas, mi posición fue clara, es clara, ahora es el jefe de gabinete el que estará analizando y trabajando sobre su declaración jurada de bienes”.“Yo ya lo dije, ya lo expresé, me parece que con una vez alcanza las cosas, mi posición fue clara, es clara, ahora es el jefe de gabinete el que estará analizando y trabajando sobre su declaración jurada de bienes” agregó sobre el Caso Adorni.Alejandro Álvarez, Subsecretario de Póliticas Universitarias en Mitre, afirmó: “Vos podés juntar 100.000 personas, 1 millón o 5 millones, pero al otro día la restricción presupuestaria sigue estando ahí. Y no te la va a cambiar. Ojalá haciendo manifestaciones nosotros pudiéramos cambiar la realidad que nos dejaron, que implica una restricción presupuestaria importante”.“Obviamente siempre hay una parte de la población que no está de acuerdo con lo que hace un gobierno y tiene derecho a manifestarse. Hay libertad para que los sindicatos se expresen y hagan una marcha. En ese aspecto nosotros no tenemos ninguna evaluación, porque hay toda una discusión del número y para mí eso es relativo. Primero porque esto es una república y los legisladores y el presidente se eligen en elecciones libres, no por quién junta más gente. Pero además hay otro problema. Vos podés juntar 100.000 personas, 1 millón o 5 millones, pero al otro día la restricción presupuestaria sigue estando ahí. Y no te la va a cambiar. Ojalá haciendo manifestaciones nosotros pudiéramos cambiar la realidad que nos dejaron, que implica una restricción presupuestaria importante” se refirió en relación a la Marcha Universitaria.Ricardo Manetti, decano de la Facultad de Filosofía y Letras de la UBA, en Olga, afirmó: “Las universidades argentinas, y en el caso particular de la UBA, se audita todos los años”.Patricia Bullrich, senadora de LLA, en redes sociales, comparó la red de subte de Santiago de Chile con la de la Ciudad de Buenos Aires, y afirmó: “Nos pasaron por arriba, 143 kilómetros de subterráneo versus 56,6. Santiago versus Buenos Aires, 600 millones de transportados versus 191 millones de transportados. 163 estaciones versus 90. Fíjense ustedes las diferencias”. Y agregó: “Nos pasaron por arriba, 143 kilómetros de subterráneo versus 56,6. Santiago versus Buenos Aires, 600 millones de transportados versus 191 millones de transportados. 163 estaciones versus 90. Fíjense ustedes las diferencias. ¿Qué quiere decir esto? Que Buenos Aires se quedó, somos el primer subte de América Latina. El de Chile es de 1975, sin embargo, nos pasaron por arriba. ¿Qué tenemos que hacer? Darle velocidad al subte en Buenos Aires para que conecte cada rincón de la ciudad”.Eduardo “Wado” de Pedro, Senador Nacional de UXP en Futurock, afirmó: “Bienvenidos los Axel, los Sergio, los fulanos, las fulanas que quieran ser, las compañeras que quieren ser gobernadoras, los que quieren ser gobernador. Me parece bárbaro eso, pero creo que la estrategia funciona cuando la militaría está focalizada al lado de la gente”.“Digo, la situación es muy seria, más allá del endeudamiento de la Argentina, la entrega de recursos naturales, todo eso es muy serio. Es muy serio como para estar pensando tan fino en algo que todavía falta. Y bienvenidos los Axel, los Sergio, los fulanos, las fulanas que quieran ser, las compañeras que quieren ser gobernadoras, los que quieren ser gobernador. Me parece bárbaro eso, pero creo que la estrategia funciona cuando la militaría está focalizada al lado de la gente”. agergó.

Start Your GovCon Career: https://www.govclose.comMost government contractors are searching SAM.gov and missing the majority of opportunities. In this session, I walk through the One Nation Innovation marketplace. Marketplaces like ONI are being used at an increasing rate, and it's good to know where to find and how to use the marketplaces that are alternatives to SAM.gov. I also cover why I no longer pay for government contracting research tools, how to use the MITRE consortium list to find the right OTA pathway for your technology, and how to talk to a contracting officer about an upcoming recompete (a question from one of our recent GovClose coaching calls with Harold).If you're selling innovative tech, prototypes, or services to the federal government — especially DoD — this is the workflow I use every day.⏱ TIMESTAMPS00:00 - Why SAM.gov isn't enough anymore00:50 - Vetting One Nation Innovation: is this marketplace real?02:53 - Inside an O&I challenge: USSF Go Coliseum & scoring rubrics05:02 - Why I stopped paying for government contracting tools06:40 - Tony's story: from Marine Corps to GovClose member08:08 - SAM.gov contract awards search (the new FPDS replacement)09:30 - Finding OTA awards by awardee — the trick most people miss10:45 - The history of OTA: from the Space Race to the Department of War13:40 - How to verify a consortium is actually awarding contracts15:21 - Tom Clancy's question: do you need a relationship to win an OTA?19:30 - Pulling all OTA awards from the past 90 days22:09 - Tom's follow-up: are O&I OTAs required to be listed on SAM?23:09 - Finding more consortiums: the MITRE list method27:07 - DIU and the three currently open OTA pathways29:13 - Project Titan Core: modular data centers for AI compute32:22 - Harold's question: how to ask a CO about an upcoming recompete35:53 - Why upselling existing customers is the best government sales play39:25 - GovClose graduate results: real outcomes from the program

On Fridays we talk about the stuff we fill our weekends with, today we've got our favourite DIY friend, Stan Scott from Mitre 10. Stan is currently landscaping his backyard, building and retaining walls, installing drainage and building spiral steps and a pergola! Do send through any questions you've got for him on 2101.  [picture id="4JV3X5R_ABC_builder_Brad_avif" crop="16x10" layout="full"]

On today's episode: Getting Ben a brand deal with Mitre 10 610 Quiz: Ahhh Chewbacca? Clayton Oliver copped a slap Embarrassing bodies This Nana won a McLaren Party Planning! Liam wants an ice luge See omnystudio.com/listener for privacy information.

El incidente ocurrió en Mitre y 9 de Julio, en Santo Tomé. Hubo cortes de tránsito y trabajan equipos de emergencia para controlar la pérdida.

Podcast: Nexus: A Claroty Podcast (LS 32 · TOP 5% what is this?)Episode: Samir Boussarhane on New MITRE Caldera for OT Attack SimulatorsPub date: 2026-04-26Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationSamir Boussarhane, senior cybersecurity engineer at MITRE, joins the Nexus Podcast to discuss some new simulator plug-ins added to Caldera for OT. Caldera for OT is an open-source adversary emulation platform that automates security assessments for operational technology (OT) systems. Samir provides context on a new simulator called the Aloha Water Treatment plant, which emulates a water utility and serves as a training platform for students, engineers, and IT security teams alike. Caldera for OT now also supports protocols such as BACnet, Modbus, and includes an HVAC simulator.Subscribe and listen to the Nexus Podcast here. Access the Aloha Water Treatment simulator.  Medium article on the Aloha Water Treatment simulator.The podcast and artwork embedded on this page are from Claroty, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Samir Boussarhane, senior cybersecurity engineer at MITRE, joins the Nexus Podcast to discuss some new simulator plug-ins added to Caldera for OT. Caldera for OT is an open-source adversary emulation platform that automates security assessments for operational technology (OT) systems. Samir provides context on a new simulator called the Aloha Water Treatment plant, which emulates a water utility and serves as a training platform for students, engineers, and IT security teams alike. Caldera for OT now also supports protocols such as BACnet, Modbus, and includes an HVAC simulator.Subscribe and listen to the Nexus Podcast here. Access the Aloha Water Treatment simulator.  Medium article on the Aloha Water Treatment simulator.

Podcast: Exploited: The Cyber Truth Episode: The Invisible Attack Surface: Cybersecurity for Embedded SystemsPub date: 2026-04-16Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationEmbedded systems power everything from critical infrastructure to defense systems, yet vulnerabilities in those systems often go unseen and unaddressed. In this episode of Exploited: The Cyber Truth, host Paul Ducklin is joined by RunSafe Security CEO Joe Saunders and special guests Mario Zuniga and Matt Janson of MITRE to discuss the “invisible attack surface” lurking within embedded and cyber-physical systems. Drawing on their frontline experience in cyber operations and resiliency engineering, Mario and Matt explain why embedded systems demand a fundamentally different approach to cybersecurity. From limited patching capabilities and long system lifecycles to unique hardware and firmware attack vectors, traditional IT security models fall short in these environments. Together, they discuss: Why embedded systems are often overlooked in cybersecurity strategiesHow attackers exploit firmware, hardware interfaces, and air-gapped environmentsThe challenges of securing systems that must remain operational for decadesThe role of MITRE's embedded threat matrix (ESTEEM) in mapping adversary behaviorWhy resilience—not just prevention—is key to defending critical infrastructure From industrial control systems to national defense, this episode reveals what it takes to secure the technologies that quietly underpin modern society and why the time to act is now.The podcast and artwork embedded on this page are from RunSafe Security, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Nathan Jones spoke with us about hardware security, motivation, conference talks, and writing. Nathan wrote an in-depth series of posts about the benefits of superloops vs RTOS: You Don't Need an RTOS (Part 1), Part 2, Part 3, and Part 4. He also wrote about How Hardware Gets Hacked (Part 1) and Part 2 which discusses the MITRE embedded CTF (Capture the Flag) challenge. See his EmbeddedRelated profile and Digikey profile. And Nathan's excellent Embedded for Everyone Github repo. Nathan recommends The Hardware Hacking Handbook by Jasper van Woudenberg and Colin O'Flynn. It is an excellent resource on embedded security. We spoke with Jasper about the book in 431: Becoming More of a Smurf and with Colin about the Chip Whisperer in 286: Twenty Cans of Gas. The European Cyber Resilience Act (CRA) has specific features that are required to be implemented by all devices that want the safety CE label. This is important for products shipping to Europe. If you are going to the Embedded Online Conference, you can get a discount with the code JONES100. Nathan will be giving a workshop on the Chip Whisperer Nano. (Recent guest Mark Omo will also be presenting: Security for the Rest of Us: What Matters and Where to Start.) Another conference for the security-minded is Hardwear.io which is in Santa Clara, CA, USA at the end of May and in Amsterdam in November. Last year, Nathan spoke about Exception Handling for EOC 2025 (video). Elecia mentioned her own Creating Chaos and Hard Faults from EOC 2024. The Embedded Slack book club is reading The Pragmatic Programmer, 20th Anniversary Edition. Well, some of us are just watching.  The quote came from Elizabeth Bear's Ancestral Night (White Space) which is part of a series with some neat mechanics around brain chemistry.  Transcript

Just have a look, will you! Just when you think the Dahlias are on their way out, you're asked to come to the Botanic Gardens in Christchurch or a local beauty garden, somewhere nearby. A series of colourful plants that shows you a range that's totally unexpected – how do you get these at your place? From left to right: Mick's Peppermint, PomPom Rusty Orange, Le Baron, and KennemerLand Cactus. Currently it's still “growing time”, or seriously, keeping the plants producing before the beginning of winter. Generally speaking, the Tubers won't be available until mid-winter. Some varieties are able to be planted slightly earlier, others a bit earlier – just ask the people who produce the next generation. That means we have still plenty of time to go and visit the various Dalianthic “Hot Spot” and order the beauties you are looking forward to growing – Oderings, Dahlia Tubers, Stillwater Flowers, DahliasNZ.com, Mitre 10, Apollo Farm, etc. Bluetiful Dahlia Springtime is the planting time of the Tubers – no more frosts, etc. Plant about half a meter apart in well-drained soils, containing good compost with great fertilisers in the soil, where the new plants will benefit from the next level of NPK. All the fertilisers will be used to create new parts of the plants. Support them if they grow upward in a hurry, as some often do… Give them a good watering from time to time. They can be grown as Potted Dahlias, especially if the potting mix is of great quality. Once you start with Dahlias, you'll never forget this colourful movement ever again! LISTEN ABOVE See omnystudio.com/listener for privacy information.

If you like what you hear, please subscribe, leave us a review and tell a friend!

Ebben az epizódban a MITRE ATT&CK keretrendszerről beszélgetünk Rékával: arról, hogyan lehet valós támadói viselkedéseket taktikákra, technikákra és procedúrákra bontva elemezni. Szóba kerül a TTP-k szerepe, a detekció és az ATT&CK mitigációs lehetőségei, a MITRE D3FEND, valamint az is, hogyan segíti a framework a riportolást, a CTI-munkát és a red team / blue team együttműködést. Az adásban Réka a saját szakdolgozati témájáról is mesél, amelyben CTI-jelentésekből próbál TTP-ket automatikusan kinyerni NLP és mesterséges intelligencia segítségével.

Leviticus: Instructions to the Levites; 400 years of captivity; Jealousy of Joseph; Corruption in city-states; Abraham's altars; Blessings of Melchizedek; Colonizers; Liberty?; The road to freedom; Semites?; "Seed of Abraham"; Tithes?; Warnings from the bible; Cities of blood; THE Way; "Church" in the wilderness; Fig leaves; "Bethel"; Tending sheep; Stripping off fig leaves; Lev 8:1 Speaking to Moses?; Why baskets?; Which door?; Family; Institution of The Church; Wealthy leaders; Lev 8:5 Mobile tabernacle; Golden calf; Cities of refuge; Supreme court?; No exercising authority; Commanders-in-chief; "No kings"?; Rebels; Colonial charters?; Naked?; gods of your government; "Apotheos"; Making things "great again"?; v6 baptism?; Aaron = priest; Permission to be priest; Ordering society; Police powers; Anointing the tabernacle; Pouring oil?; Tongues of fire?; Speaking in tongues?; Living by faith, not force; breastplate hey-chet-shin-nun; Electoral college?; Following Babylon/Cain/Nimrod; "Sanctify"; Freewill offerings; v13 coats? Covering kof-tav-nun-tav; girdle = abnet; sash?; Mitre?; Falling away from the spirit; Bullock's blood?; Burning with fire?; Inspiration; Reliance of Holy Spirit; Moses' system; vs FDR's; Redistributing to needy of society; taking responsibility for neighbors; "No King"ers actually want kings; Social safety net; v27 Aaron's hands?; Freewill offerings; Idols?; Sheep shearing?; Laban's statues; Genocide?; Benefit addiction; Covetousness; Network of priests; Becoming a real Christian; Garments?; Caring for needy; Unmoored imagery; Moses' real intention; Constantine?; Repentance and atonement; Jesus did his part; Distribute all that is offered; Going the ways of Christ; Faith hope and charity; Pure religion; No exercising authority; Ps 104:1; Corban of violence?; Opting out of the world's covetous systems; Urim and Thummim; Seek His kingdom and righteousness - Become a Doer Now!

#SecurityConfidential #DarkRhiinoSecurityDiyar Saadi Ali is a cybersecurity professional specializing in cybercrime investigations, SOC operations, and malware analysis. A contributor to the MITRE ATT&CK framework, Diyar has helped strengthen global threat intelligence efforts and defensive strategies. Diyar regularly speaks at international cybersecurity conferences including Arab Cyber Security, DeepSec, GISEC, BlackHat, and SulyCon, contributing to the advancement of the global cyber community.00:00 Intro02:26 Our Guest03:42 Learning Cybersecurity in Iraq07:40 The MITRE attack Framework: Is that all the knowledge we know? 11:30 There are still tons of unknown vulnerabilities13:30 You can't fake motivation17:00 Defenders are to blame19:16 Who is coming up with Malware?22:10 Every crime leaves a trace24:12 AI is making malware easy29:00 Governance and Trust38:02 Presentations and News from Diyar----------------------------------------------------------------------To learn more about Diyar visit https://www.linkedin.com/in/diyarsaadi/To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurity.com

Diyar Saadi Ali is a cybersecurity professional specializing in cybercrime investigations, SOC operations, and malware analysis. A contributor to the MITRE ATT&CK framework, Diyar has helped strengthen global threat intelligence efforts and defensive strategies. Diyar regularly speaks at international cybersecurity conferences, including Arab Cyber Security, DeepSec, GISEC, BlackHat, and SulyCon, contributing to the advancement of the global cyber community.00:00 Intro02:26 Our Guest03:42 Learning Cybersecurity in Iraq07:40 The MITRE attack Framework: Is that all the knowledge we know? 11:30 There are still tons of unknown vulnerabilities13:30 You can't fake motivation17:00 Defenders are to blame19:16 Who is coming up with Malware?22:10 Every crime leaves a trace24:12 AI is making malware easy29:00 Governance and Trust38:02 Presentations and News from Diyar

William Morgan is the co-founder and CEO of Buoyant, creators of Linkerd. Prior to Buoyant, he was an infrastructure engineer at Twitter, where he helped move Twitter from monolith to microservices. He was a software engineer at Powerset, Microsoft, and Adap.tv, and a research scientist at MITRE.You can find William on the following sites:BlueskyLinkedInHere are some links provided by William:BuoyantLinkerdPLEASE SUBSCRIBE TO THE PODCASTSpotifyApple PodcastsYouTube MusicAmazon MusicRSS FeedYou can check out more episodes of Coffee and Open Source on https://www.coffeeandopensource.comCoffee and Open Source is hosted by Isaac Levin

In this episode of the “We Speak CVE” podcast, MITRE's CVE and CWE Project Lead Alec Summers chats with Yves Younan of Cisco, Alex Kreilein of Qualys, Pedro Sampaio of Red Hat, and Anthony Singleton of the MITRE Top-Level Root, about the CVE Record dispute process.Topics include how the dispute policy came to exist and the two types of CVE Record disputes; a walk-through of the process for disputing a CVE Record, including what steps to take and what to expect; why some disputes persist indefinitely; whether all CVE Record disputes need to be resolved; why some disputes remaining visible to the downstream consumer is healthy; an overview of how the CVE Record Dispute Policy was created and how it continues to updated over time; how the CVE Program continuously seeks community input on the dispute process; and more.Resources mentioned in the podcast include:CVE Record Disputes Explained blogCVE Program Dispute Policy (PDF)Dispute Policy Feedback survey formCVE Record Disputes panel discussion at VulnCon 2026

Astronomy Daily S05E65 — 17 March 2026 Six stories from the frontiers of space and astronomy, hosted by Anna and Avery.   IN THIS EPISODE: •    

We've had many conversations on Raise the Line about the challenges of health communication in today's world of information overload, but none of our guests have the kind of expertise Dr. Tesfa Alexander has acquired in a career that has taken him from Madison Avenue to the halls of government and academia. From guiding tobacco education research at the FDA to leading public health initiatives at MITRE, Dr. Alexander has developed a deep understanding of the science and strategy behind effective health communication. “Successful campaigns keep the long game in mind where you want to develop a lasting relationship with your target audience,” he tells host Lindsey Smith. That relationship needs to be built on understanding culture, beliefs, priorities and daily realities, and only then can you develop messaging that will resonate, he explains. Dr. Alexander also believes these relationships can be leveraged to help people sort out facts from misleading or inaccurate claims. “I strongly recommend shifting our focus from combating misinformation head on, and instead working with the communities who we are seeking to serve.” This fascinating look at communication science also covers: How stories drive belief; The importance of working with community partners who are trusted messengers;  The power of audience segmentation. Tune in as Dr. Alexander unpacks what it takes to influence beliefs, and ultimately behaviors, in an era defined by misinformation and institutional mistrust. Mentioned in this episode:Lerner Center for Public Health Advocacy If you like this podcast, please share it on your social channels. You can also subscribe to the series and check out all of our episodes at www.osmosis.org/podcast

⬥EPISODE NOTES⬥ What happens when a cybersecurity professional knows exactly what's wrong but can't get anyone to act on it? It's a problem that affects security teams across every industry, and it's the central question driving Josh Mason's new book, Speaks Security with a Business Accent. In this conversation, Josh Mason joins Sean Martin to unpack why technical accuracy alone doesn't move the needle and what it takes to communicate security in terms the business actually understands. Josh Mason brings a perspective shaped by years as an Air Force pilot and cyber warfare officer, where mission-first thinking wasn't optional, it was survival. As a safety officer, he studied aircraft mishaps, analyzed black box recordings, and learned that risk awareness doesn't mean risk paralysis. The same philosophy, he argues, applies to cybersecurity: teams can acknowledge risk without letting fear of failure prevent them from supporting the mission. Drawing from books like Dale Carnegie's How to Win Friends and Influence People, The Phoenix Project, and The Goal, Josh Mason structured his own book as a narrative, telling the story of a CIO who transforms a disconnected security team into one that communicates effectively with colleagues, leadership, the board, and eventually beyond the organization. A recurring theme in this conversation is the danger of perfection as the enemy of progress. Josh Mason uses the Iron Man analogy of building an imperfect prototype, flying it, learning from the failure, and iterating, to argue that security teams need to embrace a similar mindset. DevOps teams have already adopted this approach, and security can learn from it. Inaction for perfection's sake, he warns, isn't going to get anyone anywhere. The conversation also examines whether the cybersecurity industry does enough to learn from its own incidents. Unlike aviation, where the FAA and NTSB mandate rigorous post-incident analysis, cybersecurity lacks a centralized authority enforcing that same discipline. Organizations like MITRE, Verizon, and Mandiant publish valuable trend reports, and the data is there for those willing to use it, but it ultimately comes down to individual responsibility and leadership within each organization. For anyone who has ever felt technically right but strategically sidelined, this conversation offers a practical lens on bridging the gap between what security teams know and what the business needs to hear. ⬥GUEST⬥ Josh Mason, Author of Speaks Security with a Business Accent | Air Force Veteran, Cybersecurity Professional, and Founder of Noob Village | Website: https://www.mason-sc.com | On LinkedIn: https://www.linkedin.com/in/joshuacmason/ ⬥HOST⬥ Sean Martin, Co-Founder at ITSPmagazine, Studio C60, and Host of Redefining CyberSecurity Podcast & Music Evolves Podcast | Website: https://www.seanmartin.com/ ⬥RESOURCES⬥ Speaks Security with a Business Accent by Josh Mason | https://www.mason-sc.com The Future of Cybersecurity Newsletter | https://www.linkedin.com/newsletters/7108625890296614912/ More Redefining CyberSecurity Podcast episodes | https://www.seanmartin.com/redefining-cybersecurity-podcast Redefining CyberSecurity Podcast on YouTube | https://www.youtube.com/playlist?list=PLnYu0psdcllS9aVGdiakVss9u7xgYDKYq ⬥ADDITIONAL INFORMATION⬥ ✨ More Redefining CyberSecurity Podcast:

⬥EPISODE NOTES⬥ What happens when a cybersecurity professional knows exactly what's wrong but can't get anyone to act on it? It's a problem that affects security teams across every industry, and it's the central question driving Josh Mason's new book, Speaks Security with a Business Accent. In this conversation, Josh Mason joins Sean Martin to unpack why technical accuracy alone doesn't move the needle and what it takes to communicate security in terms the business actually understands. Josh Mason brings a perspective shaped by years as an Air Force pilot and cyber warfare officer, where mission-first thinking wasn't optional, it was survival. As a safety officer, he studied aircraft mishaps, analyzed black box recordings, and learned that risk awareness doesn't mean risk paralysis. The same philosophy, he argues, applies to cybersecurity: teams can acknowledge risk without letting fear of failure prevent them from supporting the mission. Drawing from books like Dale Carnegie's How to Win Friends and Influence People, The Phoenix Project, and The Goal, Josh Mason structured his own book as a narrative, telling the story of a CIO who transforms a disconnected security team into one that communicates effectively with colleagues, leadership, the board, and eventually beyond the organization. A recurring theme in this conversation is the danger of perfection as the enemy of progress. Josh Mason uses the Iron Man analogy of building an imperfect prototype, flying it, learning from the failure, and iterating, to argue that security teams need to embrace a similar mindset. DevOps teams have already adopted this approach, and security can learn from it. Inaction for perfection's sake, he warns, isn't going to get anyone anywhere. The conversation also examines whether the cybersecurity industry does enough to learn from its own incidents. Unlike aviation, where the FAA and NTSB mandate rigorous post-incident analysis, cybersecurity lacks a centralized authority enforcing that same discipline. Organizations like MITRE, Verizon, and Mandiant publish valuable trend reports, and the data is there for those willing to use it, but it ultimately comes down to individual responsibility and leadership within each organization. For anyone who has ever felt technically right but strategically sidelined, this conversation offers a practical lens on bridging the gap between what security teams know and what the business needs to hear. ⬥GUEST⬥ Josh Mason, Author of Speaks Security with a Business Accent | Air Force Veteran, Cybersecurity Professional, and Founder of Noob Village | Website: https://www.mason-sc.com | On LinkedIn: https://www.linkedin.com/in/joshuacmason/ ⬥HOST⬥ Sean Martin, Co-Founder at ITSPmagazine, Studio C60, and Host of Redefining CyberSecurity Podcast & Music Evolves Podcast | Website: https://www.seanmartin.com/ ⬥RESOURCES⬥ Speaks Security with a Business Accent by Josh Mason | https://www.mason-sc.com The Future of Cybersecurity Newsletter | https://www.linkedin.com/newsletters/7108625890296614912/ More Redefining CyberSecurity Podcast episodes | https://www.seanmartin.com/redefining-cybersecurity-podcast Redefining CyberSecurity Podcast on YouTube | https://www.youtube.com/playlist?list=PLnYu0psdcllS9aVGdiakVss9u7xgYDKYq ⬥ADDITIONAL INFORMATION⬥ ✨ More Redefining CyberSecurity Podcast:

Mitre 10's Stan Scott is with us to answer any DIY questions you might have, and to talk us through creating a path and paving in general.

DOGE staff face scrutiny over possible Hatch Act violations. GitLab fixes a serious 2FA bypass. North Korean hackers target macOS developers through Visual Studio Code. Researchers say the VoidLink malware may be largely AI-built. MITRE rolls out a new embedded systems threat matrix. Oracle drops a massive patch update. Minnesota DHS reports a breach affecting 300,000 people. Germany looks to Israel for cyber defense lessons. A major illicit marketplace goes dark. Our guest is Ashley Jess, Senior Intelligence Analyst from Intel 471, with a “crash course” on underground cyber markets. And auditors emerge as an unlikely line of cyber defense. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Today we have Ashley Jess, Senior Intelligence Analyst from Intel 471, sharing a “crash course” on how underground cyber markets and emerging trends. Selected Reading Trump administration concedes DOGE team may have misused Social Security data (POLITICO) GitLab warns of high-severity 2FA bypass, denial-of-service flaws (Bleeping Computer) North Korean Hackers Target macOS Developers via Malicious VS Code Projects (SecurityWeek) Voidlink Linux Malware Was Built Using an AI Agent, Researchers Reveal (Infosecurity Magazine) MITRE Launches New Security Framework for Embedded Systems (SecurityWeek) Oracle's First 2026 CPU Delivers 337 New Security Patches (SecurityWeek) Minnesota Agency Notifies 304,000 of Vendor Breach (GovInfo Security) Germany and Israel Pledge Cybersecurity Alliance (BankInfo Security) $12B Scam Market Tudou Guarantee Shuts Down (GovInfo Security) Research reveals a surprising line of defence against cyber attacks: accountants (The Conversation) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Neste episódio fazemos uma retrospectiva dos assuntos mais importantes tratados em 2025 no Segurança Legal. Você irá descobrirá os principais temas que dominaram o ano em inteligência artificial, segurança da informação e direito digital. O episódio traz uma análise sobre o aparecimento do Deepseek, explorando como a inteligência artificial transformou o cenário de segurança cibernética. Você irá descobrir os riscos de atrofia cognitiva causados pelo uso excessivo de IA, a importância da proteção de dados pessoais com a LGPD, e como os backdoors em modelos de linguagem ameaçaram a supply chain. O podcast também aborda questões de vigilância digital, as novas regras do Banco Central após fraudes bancárias, a inconstitucionalidade do artigo 19 do Marco Civil, a aprovação do ECA Digital, vulnerabilidades no gov.br e a questão crítica do analfabetismo funcional digital. Esta retrospectiva cobre ainda aspectos geopolíticos da IA, regulação de inteligência artificial, conformidade com políticas de proteção de dados, e o papel das bigtechs em 2025.  Esta descrição foi realizada a partir do áudio do podcast com o uso de IA, com revisão humana.  Visite nossa campanha de financiamento coletivo e nos apoie!  Conheça o Blog da BrownPipe Consultoria e se inscreva no nosso mailing Imagem do Episódio – Por trás do tempo – Guilherme Goulart

The White House bans foreign-made drones. African law enforcement agencies crackdown on cybercrime. A new phishing campaign targets Russian military personnel and defense-related organizations. A University of Phoenix data breach affects about 3.5 million people. A pair of Chrome extensions covertly hijack user traffic. Romania's national water authority suffered a ransomware attack. A cyberattack in France disrupts postal, identity, and banking services for millions of customers. NIST and MITRE announce a $20 million partnership for AI research centers. A think-tank says the U.S. needs to go on the cyber offensive. Tim Starks from CyberScoop discusses the passage of the defense Authorization Bill and a look back at 2025. In high school, it's no child left unscanned. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Today we are joined by Tim Starks from CyberScoop discussing the passage of the Defense Authorization Bill and a look back at 2025. Selected Reading Trump Administration Declares Foreign-Made Drones a Security Threat (The New York Times) Hundreds of Arrests as Operation Sentinel Recovers $3m (Infosecurity Magazine) Cyber spies use fake New Year concert invites to target Russian military (The Record) University of Phoenix Data Breach - 3.5 Million+ Individuals Affected (CybersecurityNews) Malicious extensions in Chrome Web store steal user credentials (BleepingComputer) Ransomware Hits Romanian Water Authority, 1000 Systems Knocked Offline (Hackread) Cyberattack knocks offline France's postal, banking services (BleepingComputer) NIST, MITRE announce $20 million research effort on AI cybersecurity (CyberScoop) US Must Go on Offense in Cyberspace, Report Warns (Govifosecurity) AI Bathroom Monitors? Welcome To America's New Surveillance High Schools (Forbes) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Anthropic says Chinese hackers used its Claude chatbot to automate a cyberespionage campaign against tech firms, financial institutions and government agencies, marking what could be the first large-scale AI-driven attack. Joining me to explain what this means for defenders and what's next for nation-state tactics is the former department head of AI security at MITRE and co-founder of AI security consulting firm, Fire Mountain Labs, Dr. Josh Harguess.See Privacy Policy at https://art19.com/privacy and California Privacy Notice at https://art19.com/privacy#do-not-sell-my-info.

Researchers detail a years-long Russian state-sponsored cyber espionage campaign. Israel's cyber chief warns against complacency. Vulnerabilities affect products from Fortinet and Hitachi Energy. Studies show AI models are rapidly improving at offensive cyber tasks. MITRE expands its D3FEND cybersecurity ontology to cover operational technology. Texas sues smart TV manufacturers, alleging illegal surveillance. A fraudulent gift card locks an Apple user out of their digital life. Our guest is Doron Davidson from CyberProof Israel discussing agentic SOCs and agentic transformation of an MDR. Fat racks crack the stacks. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest On our Industry Voices segment, we are joined by ⁠Doron Davidson⁠, GM at ⁠CyberProof⁠ Israel, MD Security Operations, discussing agentic SOC and agentic transformation of an MDR. If you'd like to learn more be sure to check out ⁠CyberProof⁠. Tune into the full conversation here. Selected Reading Amazon Exposes Years-Long GRU Cyber Campaign Targeting Energy and Cloud Infrastructure (Live Threat Intelligence) IDF warns future cyberattacks may dwarf past threats (The Jerusalem Post) CISA reports active exploitation of critical Fortinet authentication bypass flaw (Beyond Machines) Hitachi Energy reports BlastRADIUS flaw in AFS, AFR and AFF Series product families (Beyond Machines) AI models are perfecting their hacking skills (Axios) AI Hackers Are Coming Dangerously Close to Beating Humans (WSJ) MITRE Extends D3FEND Ontology to Operational Technology Cybersecurity (Mitre) Texas sues biggest TV makers, alleging smart TVs spy on users without consent (Ars Technica) Locked out: How a gift card purchase destroyed an Apple account (Apple Insider) Racks of AI chips are too damn heavy (The Verge) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show.  Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

How exposed is your trucking operation to cybercrime right now, and are you relying too much on trust and automation? Listen to our guest today, Artie Crawford of NMFTA, breaking down the real cybersecurity threats facing transportation. The biggest takeaway is simple: no fleet, broker, or carrier is too small to be targeted! We discuss how AI-driven cyber fraud, business email compromise, and fake load schemes are hitting trucking companies hard, why small companies are often the most vulnerable, and how multi-person verification, cybersecurity training, and multi-factor authentication can dramatically reduce risk! 2026 NMFTA Cybersecurity Trends Report: https://bit.ly/4oYPTds   About Artie Crawford Artie Crawford, CISSP, CISM, is the Director of Cybersecurity at the National Motor Freight Traffic Association, Inc. (NMFTA)™. Artie is a seasoned professional with extensive experience in cybersecurity strategy and deep technical expertise in addressing complex cybersecurity challenges. He possesses a thorough understanding of the tools, techniques, procedures, and attack vectors employed by cyber adversaries. Artie has a proven track record of providing strategic guidance, collaboration, and engineering support to a wide range of organizations, including state and local governments, educational institutions, intelligence agencies, transportation authorities, and the Department of Defense, all in support of their cybersecurity missions. Throughout his distinguished career, Artie has held pivotal roles at organizations such as the Cybersecurity & Infrastructure Security Agency (CISA), Microsoft, MITRE, and others. His work has been centered on developing advanced techniques and tools for real-world operations. A 27-year veteran of the U.S. Marine Corps, Artie retired in 2011 as the Cybersecurity Chief of the Marine Corps, where he served as the Senior Technical Advisor to the CIO and Director of C4.  

Link to episode page This week's Department of Know is hosted by Rich Stroffolino with guests Andy Ellis, Principal, Duha, and Johna Till Johnson, CEO and Founder, Nemertes Research Thanks to our show sponsor, Adaptive Security This episode is brought to you by Adaptive Security, the first cybersecurity company backed by OpenAI. AI is rewriting the cybersecurity rulebook, because attackers can now scale persuasion as easily as they scale code. The real target isn't just your systems anymore; it's human trust. If you aren't actively testing your organization against AI-driven phishing, vishing, and deepfakes, you're leaving a gap criminals will exploit. Adaptive runs realistic simulations and delivers tailored, engaging training so teams respond correctly when it counts. Learn more at adaptivesecurity.com. Learn more at adaptivesecurity.com. All links and the video of this episode can be found on CISO Series.com

A new executive order targets states' AI regulations, while the White House shifts course on an NSA deputy director pick. The UK fines LastPass over inadequate security measures. Researchers warn of active attacks against Gladinet CentreStack instances. OpenAI outlines future cybersecurity plans. MITRE ranks the top 25 vulnerabilities of 2025. CISA orders U.S. federal agencies to urgently patch a critical GeoServer vulnerability. An anti-piracy coalition shuts down one of India's most popular illegal streaming services. Our guest Mark Lance, Vice President, DFIR & Threat Intelligence, GuidePoint Security, unpacks purple team table top exercises to prepare for AI-generated attacks. Hackers set their sights on DNA. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Mark Lance, Vice President, DFIR & Threat Intelligence, GuidePoint Security, is discussing purple team table top exercises to prepare for AI-generated attacks. Selected Reading Trump Signs Executive Order to Block State AI Regulations (SecurityWeek) Announced pick for No. 2 at NSA won't get the job as another candidate surfaces (The Record) LastPass Data Breach — Insufficient Security Exposed 1.6 Million Users (Forbes) Gladinet CentreStack Flaw Exploited to Hack Organizations (SecurityWeek) OpenAI lays out its plan for major advances in AI cybersecurity features (SC Media) MITRE Releases 2025 List of Top 25 Most Dangerous Software Vulnerabilities (SecurityWeek) CISA orders feds to patch actively exploited Geoserver flaw (Bleeping Computer) MKVCinemas streaming piracy service with 142M visits shuts down (Bleeping Computer) The Unseen Threat: DNA as Malware (BankInfoSecurity) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Over his 15-year journey through healthcare and financial services security, Ken Bowles, now Director of Security Operations at GreenSky, has collected a plethora of practical strategies for prioritizing crown jewels, managing cloud over-permissions, and building SOCs that scale effectively. He reflects on transforming security operations through AI and intelligent automation and discusses how AI is reducing analyst investigation time dramatically. Ken also asserts the importance of auditing security controls before they silently fail. The conversation touches on the evolving role of the MITRE framework, the concept of signaling versus alerting, and why embracing AI might be the best career move for security professionals navigating rapid technological change in cloud environments. Topics discussed: Building security operations programs around crown jewels and scaling outward to manage the most critical assets first. Managing over-permissions in cloud environments that have snowballed across multiple administrators without proper governance. Using AI to reduce analyst investigation time from 30 minutes to seconds through intelligent data enrichment and context. Creating true single-pane-of-glass visibility by connecting security tools and data sources for more effective threat detection. Training new security analysts with AI assistance to bridge knowledge gaps in SQL, SOAR platforms, and log analysis. Documenting institutional knowledge while encouraging analysts to trust their intuition when something doesn't look right. Understanding the limitations of impossible travel alerts and using AI to establish user behavior baselines for accurate detection. Applying the MITRE framework as a guideline rather than gospel, adapting detection strategies to specific organizational needs. Implementing signaling approaches that label security-relevant events without creating alert fatigue for security operations teams. Auditing security controls regularly to catch configuration drift and ensure protective measures remain effective over time.  Listen to more episodes:  Apple  Spotify  YouTube Website

Oracle Identity Manager Exploit Observation from September (CVE-2025-61757) We observed some exploit attempts in September against an Oracle Identity Manager vulnerability that was patched in October, indicating that exploitation may have occurred prior to the patch being released. https://isc.sans.edu/diary/Oracle%20Identity%20Manager%20Exploit%20Observation%20from%20September%20%28CVE-2025-61757%29/32506 https://slcyber.io/research-center/breaking-oracles-identity-manager-pre-auth-rce/ DigitStealer: a JXA-based infostealer that leaves little footprint https://www.jamf.com/blog/jtl-digitstealer-macos-infostealer-analysis/ SonicWall DoS Vulnerability Sonicwall patched a DoS vulnerability in SonicOS https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0016 Adam Wilson: Automating Generative AI Guidelines: Reducing Prompt Injection Risk with 'Shift-Left' MITRE ATLAS Mitigation Testing

Tyler Martin, Senior Director of Enterprise Security Engineering & Operations at FanDuel, reflects on revolutionizing security operations by replacing traditional analyst tiers with security engineers supported by custom AI agents. Tyler shares the architecture behind SAGE, FanDuel's phishing automation system, and explains how his team progressed from human-in-the-loop validation to fully autonomous triage through bronze-silver-gold maturity stages.  The conversation explores practical challenges like context enrichment, implementing user personas connected to IDP and HRIS systems, and choosing between RAG versus CAG models for knowledge augmentation. Tyler also discusses shifts in detection strategy, arguing for leaner detection catalogs with just-in-time, query-based rules over maintaining point-in-time codified detections that no longer address active risks. Topics discussed: Restructuring security operations teams to include only security engineers while AI agents handle traditional level 1-3 triage work. Building Security Analysis and Guided Escalation, an AI-powered phishing automation system that reduced manual ticket volume. Implementing bronze-silver-gold maturity stages for AI triage: manual validation, automated closures with oversight, and full autonomous operations. Enriching AI agents with organizational context through connections to IDP systems, HRIS platforms, and user behavior analytics. Creating user personas that encode access patterns, permissions, security groups, and typical behaviors to improve AI decision-making accuracy. Designing incident response automation that spins up Slack channels, Zoom bridges, recordings, and comprehensive documentation through simple commands. Eliminating 90% of missing PIR action items through automated documentation capture and stakeholder tagging in Confluence. Shifting detection strategy from maintaining large MITRE-mapped catalogs to just-in-time query-based rules written by AI agents. Balancing signal volume and enrichment data against inference costs while avoiding context rot that degrades LLM performance. Evaluating RAG versus CAG models for knowledge augmentation and exploring multi-agent architectures with supervisory oversight layers.  Listen to more episodes:  Apple  Spotify  YouTube Website

On this episode I kikback with the homie from Panama, Iris Mitre and talk about her transition to america, how she got into fashion and we talk about gardening and why she reached out to me and gave me plants to get started. Dope fun show!!!

Christina Irene is a disability and diversity speaker who works with corporations, not-for-profit organizations, government entities, and educational institutions all over the world. Her clients include Target, Redfin, Maersk, U.S. Department of State, U.S. Navy, National Credit Union Administration, FINRA, MITRE, the Brookings Institution, Johns Hopkins University, Technology University of Eindhoven, Penn State Health, Pueblo of Jemez, and many more. Using a lived-experience approach, she invented the Splat system of communication and published a series of books on it, including Talking Splat: Communicating About Hidden Disabilities, Splatvocate: Supporting People With Hidden Disabilities, and Spactivity Book: Self-Care and Carefree Distractions for Adults with Hidden Disabilities. Christina's past careers include high school English and theater teacher and nationally-touring stand-up comedian. She lives with physical, cognitive, and mental health disabilities. To learn more about Christina Irene: Website: ChristinaIrene.com YouTube: @ChristinaIreneInspires (or use the url ChristinaIreneTube.com which redirects to my channel) Instagram: @TalkingSplat (all Splat-related content) and @InstaChristinaIrene  TikTok: @TalkingSplat Facebook: @SplattiePage (Splat-related content) and @ChristinaIreneInspires

New DShield Support Slack Workspace Due to an error on Salesforce s side, we had to create a new Slack Workspace for DShield support. https://isc.sans.edu/diary/New%20DShield%20Support%20Slack/32376 Attackers Exploiting Recently Patched Cisco SNMP Flaw (CVE-2025-20352) Trend Micro published details explaining how attackers took advantage of a recently patched Cisco SNMP Vulnerability https://www.trendmicro.com/en_us/research/25/j/operation-zero-disco-cisco-snmp-vulnerability-exploit.html https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snmp-x4LPhte Framework BIOS Backdoor The mm command impleneted in Framework BIOS shells can be used to compromise a device pre-boot. https://eclypsium.com/blog/bombshell-the-signed-backdoor-hiding-in-plain-sight-on-framework-devices/ SANS.edu Research: Mark Stephens, Validating the Effectiveness of MITRE Engage and Active Defense https://www.sans.edu/cyber-research/validating-effectiveness-mitre-engage-active-defense/

Cold cases test the patience, persistence, and creativity of any investigator. Few know this better than Pete Hughes.In this episode of Fed Time Stories, hosts Dave Brant and John Gill talk with Pete about his four decades in law enforcement, from his early years as a patrol officer to his leadership role at NCIS. Pete shares how he helped shape the agency's cold case program and the unique methods investigators use when re-examining unsolved crimes years later.He also reflects on one of his most challenging investigations, a decades-old disappearance that had long been considered unsolvable, and how determined investigative work ultimately brought long-awaited resolution for a grieving family. Beyond cold cases, Pete discusses his later work uncovering fraud and corruption in Afghanistan and at MITRE, showing how the same skills and values carried across each stage of his career.Tune in for an inside look at investigative persistence, lessons from decades of service, and what it takes to bring closure after so many years.Fed Time Stories is brought to you by Kaseware, an investigative case management solution. Learn more at www.kaseware.com/fedtimestoriespodcast

This Episodes Questions: Brians Questions: I've been making music boxes and trying to replicate the traditional style (see attached photos). I'm struggling to get the curved edge just right. I've tried using a planer, but I keep messing up and have ended up wasting a lot of boards. Router round-overs almost work, but still need planed or sanded after routing to get the shape just right, and also they're pretty dangerous given the small and awkward size of the pieces—I'm working with ¾-inch thick wood that's 2.5 inches high for the box sides. I'd like a repeatable process that provides consistent shapes, but can't seem to find a way to achieve it.  Advice? Trish I've heard a few of your podcasts where you speak about making boxes and using a router to make the miter. I'm assuming you're using a bit with a 45° angle. What I don't understand is, how do you get the sides to be the exact same length while using your router table. It would seem to me that having the top of the angle (the point of the angle) against the fence would be almost impossible to get perfectly sized sides.  Can you please describe what I am missing here, since a perfect 45° angle using a route a bit seems incredibly simple. Mike G. Guys Questions: I have always tried to select straight grain for legs, aprons, stretchers and the frame of a frame and panel.  I am now thinking this may be too much straight grain in a piece of furniture. When are the times that you would not do this and would instead use a more interesting grain pattern in these pieces.  Does the wood species affect your choice? For example, it seems like the current trend with walnut is not worrying about getting any straight grain in the pieces at all.  Thanks for all your help. Jeff Hi from Melbourne Australia. I've been listening for years, and I like how y'all do things! Thanks for making the best woodworking pod. Like everyone, I have a small shop, that I fit a lot into. Without listing every item… I've got stationary machines covered with a euro style slider (Hammer K3), a 14” bandsaw (N4400) and a combo planer/thicknesser (A3-31). Those 3 cover my needs really well, and I've learned to work within the capacity of my tools and space. It's the secondary/benchtop machines that are causing trouble. Mitre saw was first to go. Don't miss it, don't need it. I'm looking at sanders next. The disc sander stays, couldn't live without it. But the 1632 drum sander and the oscillating bobbin sander are both rarely used and take up space I want back. Could you life without them? If not, what's the essential job they do for you? I'm usually making furniture sized objects. With the finish I get off the helical thicknesser, I find that hand planes/scrapers, ROS, and hand sanding is usually all I need. For bigger flat things, I'm gonna pay a pro shop to put it thru a wide belt sander anyway. Johnny Huys Questions: I was trained on a belt sander, and as Guy has mentioned, there is a learning curve. I'm now very proficient with one and it is a central part of my stock prep: from the planer, I belt sand a rough-sized board with 80 grit, wet it down and let it dry to raise any remaining compression marks from the planer, and then belt sand with 120. I then cut the board to final dimension, random orbital sand with 120, cut the joinery, and then random orbital sand the fitted piece to 180 before final assembly. The process leaves flawless surfaces every time. For panel glue-ups and tabletops, I glue up from the planer using cauls and then make sure the 80 grit belt sanding that follows evens out any discrepancies in height along the joints (hopefully they are minimal). I have zero experience with a drum sander, but I would consider getting one if it could replace some of the above belt sanding, as the belt sander is no light weight hand tool, and it's a killer on my back when I have to sand a full width dining table. I would likely get the PM2244, as I have heard it is the easiest to adjust. You all have mentioned that a drum sander does NOT offer a finish ready surface, as it leaves sanding ridges along the workpiece. This is not a problem in my workflow if it replaces the belt sander. My questions: Are these ridges similar to what I get with the belt sander for a given grit, or are they deeper, requiring by comparison to the belt sander extra time on the following grit? Since I am not seeking to dimension or flatten, but merely prep the surface for the next grit, would one pass in the drum sander for each grit be enough, or am I looking at multiple passes per grit? With a belt sander, there is a lot of back and forth, but with a drum sander I'm wondering if a single pass through will give the same result. How easy and fast is it to change the grit on a drum sander if I want to run 80 grit and then 120 in each sanding session? A dual drum unit is not in the budget. Finally, how reasonable is it to get good results sanding a tabletop that exceeds the width of the sander (i.e., the 22 in the Powermatic) but is within the bounds of the larger number (here, the 44)? With some practice, can I get reliable results, or does this just create more work after sanding, where I'll likely be pulling out the belt sander to even out a center ridge anyway? Keep in mind this could include tabletops from small night stands to full 8' dining tables. As a professional shop, the whole endeavor would be to save me some time and labor. Is it worth getting a drum sander for my workflow, or should I just stick to the belt sander? Michael After listening to your podcast this week I listened with interest the question that was posted by Jose about track saw blade deflection and you guys had a great response.  Unfortunately I was hoping that you would address the issue that I'm having with my Makita SP 6000 unit.  I bought this unit a couple of years ago and despite great reviews have been a little disappointed.  The saw seems to be underpowered.  It struggles getting through material whether its 3/4" plywood or thicker hardwood.  I started with the stock Makita blade 165x20 48 tooth then with with a CMT 165x20 24 tooth and am currently using a Ridge Carbide TRK16048A 48 tooth blade.  I have a Festool extractor and using Makita tracks.  The problem is the saw bogs down (I have to creep with the feed rate  and still have the issue although not as bad) and burning.  Also sometimes the right side of the track edges up where two tracks join causing the saw to catch.  I have the good TSO GRC12 track connectors.  The Makita ones are junk.  I What's up with this?  Do I need to move this thing out the door, bite the bullet and buy a Festool? Love the podcast. Tom

A major ransomware attack disrupts airport operations across Europe. Congress is on the verge of letting major cyber legislation expire. A critical flaw nearly allowed total compromise of every Entra ID tenant. Automaker Stellantis confirms a data breach. Fortra patches a critical flaw in its GoAnywhere MFT software. Europol leads a major operation against online child sexual exploitation. Three of the cybersecurity industry's biggest players opt out of MITRE's 2025 ATT&CK Evaluations. A compromised Steam game drains a cancer patient's donations. Business Breakdown. Andrzej Olchawa and Milenko Starcik from VisionSpace join Maria Varmazis, host of T-Minus Space on hacking satellites. How one kid got tangled in Scattered Spider's web. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Andrzej Olchawa and Milenko Starcik from VisionSpace are speaking with Maria Varmazis, host of T-Minus Space on hacking satellites. Selected Reading EU cyber agency says airport software held to ransom by criminals (BBC News) Cyber threat information law hurtles toward expiration, with poor prospects for renewal (CyberScoop) Microsoft Entra ID flaw allowed hijacking any company's tenant (Bleeping Computer) Stellantis says a third-party vendor spilled customer data (The Register) Fortra Patches Critical GoAnywhere MFT Vulnerability (SecurityWeek) AI Forensics Help Europol Track 51 Children in Global Online Abuse Case (HackRead) Cyber Threat Detection Vendors Pull Out of MITRE Evaluations Test (Infosecurity Magazine) Verified Steam game steals streamer's cancer treatment donations (Bleeping Computer) CrowdStrike and Check Point intend to acquire AI security firms. (N2K CyberWire Business Briefing)  ‘I Was a Weird Kid': Jailhouse Confessions of a Teen Hacker (Bloomberg) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

The FTC warns one country's “online safety” may be another's “censorship.” A new bipartisan bill aims to reduce barriers to federal cyber jobs. MURKY PANDA targets government, technology, academia, legal, and professional services in North America. MITRE updates their hardware weaknesses list. Customs and Border Protection conducts a record number of device searches at U.S. borders. A recent hoax exposes weaknesses in the cybersecurity community's verification methods. A Houston man gets four years in prison for sabotaging his employer's computer systems. A Florida-based provider of sleep apnea equipment suffers a data breach. Interpol dismantles a vast cybercriminal network spanning Africa.  Brandon Karpf shares his experience with fake North Korean job applicants. Being a smooth-talking English speaker can land you a gig in the cybercrime underworld.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Today we are joined by Brandon Karpf, friend of the show discussing his experience with fake North Korean job applicants. You can also hear more from Brandon on our show T-Minus Daily, where he's a regular guest on a monthly space segment—catch his latest episode this Monday! Selected Reading US warns tech companies against complying with European and British ‘censorship' laws (The Record) House lawmakers take aim at education requirements for federal cyber jobs (CyberScoop) MURKY PANDA: Trusted-Relationship Cloud Threat (CrowdStrike) MITRE Updates List of Most Common Hardware Weaknesses (SecurityWeek) Phone Searches at the US Border Hit a Record High (WIRED) The Cybersecurity Community's Wake-Up Call: A Fake Reward and Its Lessons (The DefendOps Diaries) Chinese national who sabotaged Ohio company's systems handed four-year jail stint (The Record) CPAP Medical Data Breach Impacts 90,000 People (SecurityWeek) Interpol-Led African Cybercrime Crackdown Leads to 1209 Arrests (Infosecurity Magazine) 'Impersonation as a service' next big thing in cybercrime (The Register) Audience Survey Complete our annual audience survey before August 31. Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

A DOGE employee leaks private API keys to GitHub. North Korea's “Contagious Interview” campaign has a new malware loader. A New Jersey diagnostic lab suffers a ransomware attack. A top-grossing dark web marketplace goes dark in what experts believe is an exit scam. MITRE launches a cybersecurity framework to address threats in cryptocurrency and digital financial systems. Experts fear steep budget cuts and layoffs under the Trump administration may undermine cybersecurity information sharing. A Maryland IT contractor settles federal allegations of cyber fraud. Kim Jones and Ethan Cook reflect on CISO perspectives. A crypto hacker goes hero and gets a hefty reward.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Today Kim Jones, host of CISO perspectives, sits down with N2K's analyst Ethan Cook to reflect on highlights from this season of CISO Perspectives. They revisit key moments, discuss recurring themes like the cybersecurity workforce gap, and get Ethan's outsider take on the conversations. It's all part of a special wrap-up to close out the season finale. If you like this conversation and want to hear more from CISO Perspectives, check it out here. Selected Reading DOGE Employee exposes AI API Keys in source code, giving access to advanced xAI models (Beyond Machines) DOGE Denizen Marko Elez Leaked API Key for xAI (Krebs on Security) North Korean Actors Expand Contagious Interview Campaign with New Malware Loader (Infosecurity Magazine) Avantic Medical Lab hit by ransomware attack, data breach (Beyond Machines) Abacus Market Shutters After Exit Scam, Say Experts (Infosecurity Magazine) MITRE Unveils AADAPT Framework to Tackle Cryptocurrency Threats (SecurityWeek) How Trump's Cyber Cuts Dismantle Federal Information Sharing (BankInfo Security) UK launches vulnerability research program for external experts (Bleeping Computer) Federal IT contractor to pay $14.75 fine over ‘cyber fraud' allegations (The Record) Crypto Hacker Who Drained $42,000,000 From GMX Goes White Hat, Returns Funds in Exchange for $5,000,000 Bounty (The Daily Hodl) Audience Survey Complete our annual audience survey before August 31. Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices