Podcasts about passkeys

From generating passkeys and payment autofill to dark web monitoring, today's password managers aren't what you remember. Paul Thurrott breaks down the must-have features and surprising pitfalls for anyone using Windows 11. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: bitwarden.com/twit

From generating passkeys and payment autofill to dark web monitoring, today's password managers aren't what you remember. Paul Thurrott breaks down the must-have features and surprising pitfalls for anyone using Windows 11. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: bitwarden.com/twit

From generating passkeys and payment autofill to dark web monitoring, today's password managers aren't what you remember. Paul Thurrott breaks down the must-have features and surprising pitfalls for anyone using Windows 11. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: bitwarden.com/twit

From generating passkeys and payment autofill to dark web monitoring, today's password managers aren't what you remember. Paul Thurrott breaks down the must-have features and surprising pitfalls for anyone using Windows 11. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: bitwarden.com/twit

Forget the built-in Windows tools—Paul shares why third-party password managers are the secret to making passkeys smarter, more powerful, and truly universal across all your devices. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: canary.tools/twit - use code: TWIT

Forget the built-in Windows tools—Paul shares why third-party password managers are the secret to making passkeys smarter, more powerful, and truly universal across all your devices. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: canary.tools/twit - use code: TWIT

Forget the built-in Windows tools—Paul shares why third-party password managers are the secret to making passkeys smarter, more powerful, and truly universal across all your devices. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: canary.tools/twit - use code: TWIT

Forget the built-in Windows tools—Paul shares why third-party password managers are the secret to making passkeys smarter, more powerful, and truly universal across all your devices. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: canary.tools/twit - use code: TWIT

Third takes the charm, folks. Tried recording a passkey explainer while my Aussie buddy demolished a kitchen in sketchy Clearwater. Audio was trash—hammering, cursing, his sister yelling at their mum. Shoved it into Riverside AI, then Claude.ai for damage control. The gist? Passkeys are password-killers using cryptography magic tied to YOUR device. Hackers can't touch it remotely. One passkey for everything—iPhone, laptop, even that dusty iPod. My sticky notes are obsolete. Now excuse me—doctor appointment, board meeting, haircut with my sadistic ear-waxing barber awaits.#PasskeyFail #PodcastChaos #TechGoneSideways #AItoTheRescue #DailyGrateful

We gaan in gesprek met twee red teamers van de NS: Rutger Flohil en Bob van der Staak. Zij delen hun expertise over moderne hacktechnieken, van phishing campagnes tot adversary-in-the-middle aanvallen. De gesprek gaat over hoe aanvallers binnenkomem bij organisaties, waarom multi-factor authenticatie niet altijd beschermt, en welke beveiligingsmaatregelen wel écht werken.De red teamers leggen uit hoe ze simulatie-aanvallen uitvoeren om bedrijven te testen, zonder daadwerkelijk schade aan te richten. Ze bespreken de gevaren van typosquatting, hoe sessietokens binnen seconden kunnen worden gekaapt, en waarom detectie belangrijker is dan alleen preventie. Ook komt aan bod hoe cybercriminaliteit steeds toegankelijker wordt door phishing kits op de darkweb.Een eye-opening gesprek over de realiteit van moderne cybersecurity, met praktische inzichten voor organisaties die hun verdediging willen versterken.Belangrijkste inzichten:• Adversary-in-the-middle aanvallen kunnen zelfs MFA omzeilen door sessies te kapen• Phishing blijft verantwoordelijk voor 60% van alle cyberaanvallen• Microsoft's inconsistente domeinnamen (login.microsoftonline.com) maken typosquatting makkelijker• Binnen 7 seconden kunnen aanvallers persistence creëren op meerdere platforms• FIDO keys en passkeys bieden betere bescherming dan traditionele MFA• Security awareness moet gaan over melden, niet over shaming• Detectie en monitoring zijn cruciaal naast preventieve maatregelenHoofdstukken:0:09 - Introductie ethical hacking en red teaming1:29 - Security onderzoek en responsible disclosure2:17 - Red team operaties en phishing campagnes7:56 - Adversary-in-the-middle aanvallen9:26 - Domeinnamen en typosquatting19:14 - Multi-factor authenticatie en beveiliging28:03 - Phishing kits en democratisering van cybercrime30:38 - Detectie en security awarenessKeywords: ethical hacking, red teaming, phishing, adversary-in-the-middle, cybersecurity, multi-factor authenticatie, typosquatting, sessiekaping, security awareness, responsible disclosure, FIDO keys, passkeys, Microsoft security, Azure DevOps, NS security

Curious about the reality behind Microsoft's passkey promise? Find out how Windows 11's latest update makes your logins both safer and simpler across all your devices, and why Paul Thurrott thinks you shouldn't rely on the default options. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: threatlocker.com/twit

Curious about the reality behind Microsoft's passkey promise? Find out how Windows 11's latest update makes your logins both safer and simpler across all your devices, and why Paul Thurrott thinks you shouldn't rely on the default options. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: threatlocker.com/twit

Curious about the reality behind Microsoft's passkey promise? Find out how Windows 11's latest update makes your logins both safer and simpler across all your devices, and why Paul Thurrott thinks you shouldn't rely on the default options. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: threatlocker.com/twit

Curious about the reality behind Microsoft's passkey promise? Find out how Windows 11's latest update makes your logins both safer and simpler across all your devices, and why Paul Thurrott thinks you shouldn't rely on the default options. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord. Sponsor: threatlocker.com/twit

Send us a love letter (or hate mail, your choice!)Where do I begin? It's been exactly eight months since I've blasted your eardrums with my microphone, and so many things have changed in such a short period of time. Some good, and some catastrophically bad, but of course, I don't need to tell you that, just look outside!!!On the personal front: I quit my job, canceled my Hulu subscription, transferred my Spotify music library over to Tidal, started a business (insane), went to the cottage, and bought 3 new swimsuits. Watch out, world—here she comes!James and I take to our respective microphones this week to obsess over the new New York Times game, Crossplay, short-circuit over needlessly complicated passkeys (Google, seriously baby, what do you want from me!), and LOL at some of 2016's most regrettable trends.Get silly with us on social:FOLLOW THE PODCASTInstagram: @pessimisticatbestFacebook: @pessimisticatbestWebsite: pessimisticatbest.comFOLLOW SAMANTHAInstagram: @samgeorgsonTikTok: @samgeorgsonTwitter: @samgeorgsonYouTube: @samgeorgsonWebsite: samanthageorgson.comFOLLOW JAMESInstagram: @daycatcher_TikTok: @daycatcherTwitter: @daycatcherYouTube: @daycatcherWebsite: daycatcher.netSupport the show

Enjoying the content? Let us know your feedback!After sixty years of password resets, forgotten credentials, and phishing attacks, the authentication landscape is finally shifting — and 2026 marks the tipping point. In this episode, we break down what passkeys actually are, why over a billion people have already adopted them, and what the regulatory push from NIST, CISA, and global financial regulators means for your organisation. Passwords aren't dead yet, but for the first time, they're genuinely on the way out.We have all that coming up next, in this week's podcast!- https://passkeys.io: Comprehensive implementation guides, device compatibility checker, and passkey directory- https://pages.nist.gov/800-63-4: Official SP 800-63-4 with AAL2/AAL3Be sure to subscribe! You can also stream from https://yusufonsecurity.comIn there, you will find a list of all previous episodes in there too.

Ready to purge old passwords and shore up your Microsoft account? Paul Thurrott breaks down the tactics hackers hope you'll ignore—and the must-have steps to keep your digital life safe this year. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord.

Ready to purge old passwords and shore up your Microsoft account? Paul Thurrott breaks down the tactics hackers hope you'll ignore—and the must-have steps to keep your digital life safe this year. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord.

Ready to purge old passwords and shore up your Microsoft account? Paul Thurrott breaks down the tactics hackers hope you'll ignore—and the must-have steps to keep your digital life safe this year. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord.

Ready to purge old passwords and shore up your Microsoft account? Paul Thurrott breaks down the tactics hackers hope you'll ignore—and the must-have steps to keep your digital life safe this year. Host: Paul Thurrott Download or subscribe to Hands-On Windows at https://twit.tv/shows/hands-on-windows Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord.

William Brown is back! This time Josh chats with him about Passkeys. WTF are they? A Passkey is a form of multi factor authentication, but it's not super obvious what that really means. William does a fantastic job explaining what a Passkey is, how we got to where we are today with Passkeys. He shares a ton of explanations about the whole world of authentication along the way. Some of this stuff is basically magic. The show notes and blog post for this episode can be found at https://opensourcesecurity.io/2026/2026-01-passkey-william-brown/

Rob Hughes — CISO at RSA and Champion of a Passwordless FutureNo Password Required Season 7:  Episode 1 - Rob HughesRob Hughes, the CISO at RSA, has more than 25 years of experience leading security and cloud infrastructure teams. In this episode, he reflects on his unconventional career path, from co-founding the original Geek.com and serving as its Chief Technologist during the early days of the internet, to leading security and systems design at Philips Home Monitoring.Jack Clabby of Carlton Fields, P.A. and Kayley Melton welcome Rob for a wide-ranging conversation on identity, leadership, and the realities of modern cybersecurity. Rob currently leads RSA's Security and Risk Office, overseeing cybersecurity, information security governance, and risk across both RSA's products and corporate environment.Rob explains his dream for a passwordless future. He unpacks why passwords remain one of the largest sources of cyber risk, how real-world incidents and password-spraying attacks have accelerated change, and why phishing-resistant technologies like passkeys may finally be reaching a tipping point.  The episode wraps with the Lifestyle Polygraph, where Rob lightens the conversation with stories about gaming with his kids, underrated horror films, and classic cars.Follow Rob on LinkedIn: https://www.linkedin.com/in/robert-hughes-816067a4/Chapters: 00:00 Introduction to No Password Required01:43 Meet Rob Hughes, CISO at RSA02:05 The Role of a CISO in a Security Company05:09 Transitioning to the CISO Role08:00 The Early Days of Geek.com12:14 Launching a Startup During the Dot Com Boom14:30 The Push for a Passwordless Future18:21 Tipping Point for Passwordless Adoption20:20 Ongoing Learning in Cybersecurity26:09 Managing Stress in High-Pressure Environments33:46 The Lifestyle Polygraph Begins34:15 Career Insights in Cybersecurity36:08 Dream Cars and Personal Preferences39:58 Underrated Horror Films41:19 Creating a Cybersecurity Monster

Today we're going to talk about a crazy thing that's been bugging the crap out of me called Passkeys and bringing on my right hand, left hand head, top man, low man. I don't know what you call him, Larry Guerrera. It's good to help you figure this stuff out. I know you're seeing more of these all the time. Screw The Commute Podcast Show Notes Episode 1069 How To Automate Your Business - https://screwthecommute.com/automatefree/ Internet Marketing Training Center - https://imtcva.org/ Higher Education Webinar – https://screwthecommute.com/webinars See Tom's Stuff – https://linktr.ee/antionandassociates 00:23 Tom's introduction to Passkeys 01:32 Passwords are broken 06:10 What is a Passkey? 12:35 Generating a Passkey 19:09 This is where you should start 25:25 Many websites are ready to use Passkeys 27:57 Keeping notes to make it easier to remember Entrepreneurial Resources Mentioned in This Podcast Higher Education Webinar - https://screwthecommute.com/webinars Screw The Commute - https://screwthecommute.com/ Screw The Commute Podcast App - https://screwthecommute.com/app/ Screw The Commute Podcast Producer - https://screwthecommute.com/larryguerrera/ College Ripoff Quiz - https://imtcva.org/quiz Know a young person for our Youth Episode Series? Send an email to Tom! - orders@antion.com Have a Roku box? Find Tom's Public Speaking Channel there! - https://channelstore.roku.com/details/267358/the-public-speaking-channel How To Automate Your Business - https://screwthecommute.com/automatefree/ Internet Marketing Retreat and Joint Venture Program - https://greatinternetmarketingtraining.com/ This is the shopping cart system Tom uses! Kartra - https://screwthecommute.com/kartra/ Copywriting901 - https://copywriting901.com/ Become a Great Podcast Guest - https://screwthecommute.com/greatpodcastguest Training - https://screwthecommute.com/training Disabilities Page - https://imtcva.org/disabilities/ Tom's Patreon Page - https://screwthecommute.com/patreon/ Tom on TikTok - https://tiktok.com/@digitalmultimillionaire/ Email Tom: Tom@ScrewTheCommute.com Internet Marketing Training Center - https://imtcva.org/ Related Episodes Slick Signups - https://screwthecommute.com/1037/ One Business Mistake - https://screwthecommute.com/1068/ More Entrepreneurial Resources for Home Based Business, Lifestyle Business, Passive Income, Professional Speaking and Online Business I discovered a great new headline / subject line / subheading generator that will actually analyze which headlines and subject lines are best for your market. I negotiated a deal with the developer of this revolutionary and inexpensive software. Oh, and it's good on Mac and PC. Go here: http://jvz1.com/c/41743/183906 The Wordpress Ecourse. Learn how to Make World Class Websites for $20 or less. https://screwthecommute.com/wordpressecourse/

"My problem with the core side has been what we talked about with the people that are technical and don't have the empathy or understand what it was like before you were [technical]. The core people are so dismissive and the hubris is so high that they dismiss these people that are not technical but understand Bitcoin as money right. "I always say, like my Twitter phrase, Bitcoin is not open source software. Obviously that doesn't mean it's not open source, it's just so much more than that. It's not just a piece of software, it is money." ~ Praveen Perera Managing private keys remains one of the steepest learning curves for new Bitcoiners. How do we get people off exchanges and into self-custody without the terrifying risk of user error? I sit down with Praveen Perera, the builder behind Cove Wallet, to talk about his unique approach to simplified backups using Passkeys and encrypted cloud storage. We discuss the philosophy of building focused, single-purpose tools versus the 'super app' trend, and dig into the technical trade-offs of his architecture. We also wander into the implications of 'vibe coding' with AI, the contentious debates around network spam, and why maintaining a diverse ecosystem of wallet implementations might be crucial for Bitcoin's resilience. Check out our awesome sponsors! Ledn: Need fiat but don't want to sell your Bitcoin? Ledn offers secure, Bitcoin-backed loans with no credit checks, flexible repayment, and fast turnaround—often within 24 hours. With $10B+ in loans across 100+ countries and transparent Proof of Reserves, Ledn is a trusted option for unlocking liquidity without giving up your Bitcoin. (Link: https://learn.ledn.io/audible) HRF: The Human Rights Foundation is a nonpartisan, nonprofit organization that promotes and protects human rights globally, with a focus on closed societies. Subscribe to HRF's Financial Freedom Newsletter today. (Link: https://mailchi.mp/hrf.org/financial-freedom-newsletter) OFF: The Oslo Freedom Forum is a global human rights event by the Human Rights Foundation (HRF), uniting voices from activism, journalism, tech, and beyond. Through powerful stories and collaboration, OFF advances freedom and human potential worldwide. Join us next June. (Link: https://oslofreedomforum.com/) Pubky: Pubky is building the next web, a decentralized system designed to put control back in your hands. Escape censorship, algorithmic manipulation, and walled gardens by owning your identity and data. Explore the Pubky web and become the algorithm today. Don't forget to find me on my Pubky ID here: pk:5d7thwzkxx5mz6gk1f19wfyykr6nrwzaxri3io7ahejg1z74qngo. (Link: https://pubky.org) Chroma: Chroma is dedicated to advancing human performance and well-being through cutting-edge light therapy devices and performance eyewear. Their mission is to enhance physical and mental health, unlocking peak human health, cognitive function, and physical performance. Get 10% off your order with the code BITCOINAUDIBLE. (Link: https://getchroma.co/?ref=BitcoinAudible) Guest Links Praveen on X (Link: https://x.com/PraveenPerera) Cove Wallet on X (Link: https://x.com/covewallet) Cove Wallet Website (Link: https://covebitcoinwallet.com/) Cove Wallet on Github (Link: https://github.com/bit...

Happy New Year!

SummaryIn this episode of the Blue Security Podcast, hosts Andy and Adam discuss significant updates in Microsoft's security protocols, particularly regarding Kerbroasting and the transition from RC4 to AES encryption. They delve into the challenges surrounding the adoption of passkeys, emphasizing the need for user education and the importance of credential managers. The conversation highlights the friction users face when transitioning from traditional passwords to passkeys and the implications of vendor lock-in. The hosts conclude with thoughts on the future of digital security and the necessity for individuals to take control of their credential management.----------------------------------------------------YouTube Video Link: https://youtu.be/REBYRjYoEbM----------------------------------------------------Documentation:https://www.microsoft.com/en-us/windows-server/blog/2025/12/03/beyond-rc4-for-windows-authenticationhttps://fy.blackhats.net.au/blog/2025-12-17-yep-passkeys-still-have-problems/----------------------------------------------------Contact Us:Website: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://bluesecuritypod.comBluesky: https://bsky.app/profile/bluesecuritypod.comLinkedIn: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/company/bluesecpodYouTube: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.youtube.com/c/BlueSecurityPodcast-----------------------------------------------------------Andy JawBluesky: https://bsky.app/profile/ajawzero.comLinkedIn: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/in/andyjaw/Email: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠andy@bluesecuritypod.com⁠----------------------------------------------------Adam BrewerTwitter: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://twitter.com/ajbrewerLinkedIn: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/in/adamjbrewer/Email: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠adam@bluesecuritypod.com

¡Bienvenidos a un nuevo episodio de Atareao con Linux! Estamos cerrando este 2025 y toca hacer balance de las herramientas que realmente han marcado la diferencia en mi servidor. En este episodio te traigo una selección personal de los 6 contenedores Docker que se han vuelto imprescindibles en mi día a día. No solo por su funcionalidad, sino por cómo han simplificado mi flujo de trabajo, mejorado la seguridad y optimizado el rendimiento de mis sistemas.Lo que encontrarás en este episodio:1. Dodge: La alternativa ligera a Portainer que gestiona tus archivos YAML de forma reactiva y permite convertir comandos docker run a compose fácilmente.2. Pocket ID: Seguridad "passwordless" al siguiente nivel. Centraliza tus accesos mediante Passkeys y biometría con soporte OIDC.3. Doc Pick: El sustituto perfecto para la gestión de actualizaciones. Mantén tus imágenes al día con un panel visual intuitivo.4. Beszel: Monitorización de recursos (CPU, RAM, Disco) tanto del host como de cada contenedor individual.5. Quantum: Un fork de File Browser potenciado con búsqueda por lógica difusa e integración con OIDC.6. Memos: Tu centro de micro-notas privado y extremadamente versátil gracias a su API.Timestamps:00:00:00 Introducción y balance del año 202500:01:05 Los seis contenedores imprescindibles de 202500:02:14 Consideraciones sobre el flujo de trabajo y mantenimiento00:03:56 Dodge: El reemplazo moderno y ligero de Portainer00:06:07 Pocket ID: Autenticación passwordless y OIDC00:08:01 Doc Pick: Información y actualización de imágenes de contenedores00:10:40 Beszel: Monitor de recursos de CPU, RAM y Docker00:12:42 Quantum: Fork de File Browser con integración OIDC00:14:39 Memos: Gestión de micronotas y enlaces mediante API00:18:28 Resumen final y despedidaRecursos y enlaces:Más información y enlaces en las notas del episodio

Love a hot take?

It has been the year of AI.. and it seems we're just getting started OpenAI is on track to hit $13B of 2025 revenue, up from $4B in 2024, according to The Information. It's looking at annualized revenue now of up to $19B. But, Merriam Webster has named 'slop' as the word of the year - the dangerous byproduct of AI use. Slop is "digital content of low quality that is produced usually in quantity by means of artificial intelligence". You start to see it on Reddit, emails, documents.. it's now just so easy to create 'text' that it can appear in abundance - which isn't always ideal. Passkeys are starting to have their moment too The new alternative to passwords which verify the website you're trying to log into before actually sending any information to them. They're great because they eliminate phishing attacks, but.. they are a little tricky because unless they're shared to a password manager, they're stuck on that single device. So if you can't access that device, or it's destroyed, stolen etc, then you can't login. So, you need to make sure that 1) you sync them to a trusted manager like 1Password or a built in password manager like in Microsoft Edge and 2) that you have a recovery method, like a recovery email, set up on the account. LISTEN ABOVESee omnystudio.com/listener for privacy information.

Interview Segment: Tony Kelly Illuminating Data Blind Spots As data sprawls across clouds and collaboration tools, shadow data and fragmented controls have become some of the biggest blind spots in enterprise security. In this segment, we'll unpack how Data Security Posture Management (DSPM) helps organizations regain visibility and control over their most sensitive assets. Our guest will break down how DSPM differs from adjacent technologies like DLP, CSPM, and DSP, and how it integrates into broader Zero Trust and cloud security strategies. We'll also explore how compliance and regulatory pressures are shaping the next evolution of the DSPM market—and what security leaders should be doing now to prepare. Segment Resources: https://static.fortra.com/corporate/pdfs/brochure/fta-corp-fortra-dspm-br.pdf This segment is sponsored by Fortra. Visit https://securityweekly.com/fortra to learn more about them! Topic Segment: We've got passkeys, now what? Over this year on this podcast, we've talked a lot about infostealers. Passkeys are a clear solution to implementing phishing and theft-resistant authentication, but what about all these infostealers stealing OAuth keys and refresh tokens? As long as session hijacking is as simple as moving a cookie from one machine to another, securing authentication seems like solving only half the problem. Locking the front door, but leaving a side door unlocked. After doing some research, it appears that there has been some work on this front, including a few standards that have been introduced: DBSC (Device Bound Session Credentials) for browsers DPoP (Demonstrating Proof of Possession) for OAuth applications We'll address a few key questions in this segment: 1. how do these new standards help stop token theft? 2. how broadly have they been adopted? Segment Resources: FIDO Alliance White Paper: DBSC/DPOP as Complementary Technologies to FIDO Authentication News Segment Visit https://www.securityweekly.com/esw for all the latest episodes! Show Notes: https://securityweekly.com/esw-437

Interview Segment: Tony Kelly Illuminating Data Blind Spots As data sprawls across clouds and collaboration tools, shadow data and fragmented controls have become some of the biggest blind spots in enterprise security. In this segment, we'll unpack how Data Security Posture Management (DSPM) helps organizations regain visibility and control over their most sensitive assets. Our guest will break down how DSPM differs from adjacent technologies like DLP, CSPM, and DSP, and how it integrates into broader Zero Trust and cloud security strategies. We'll also explore how compliance and regulatory pressures are shaping the next evolution of the DSPM market—and what security leaders should be doing now to prepare. Segment Resources: https://static.fortra.com/corporate/pdfs/brochure/fta-corp-fortra-dspm-br.pdf This segment is sponsored by Fortra. Visit https://securityweekly.com/fortra to learn more about them! Topic Segment: We've got passkeys, now what? Over this year on this podcast, we've talked a lot about infostealers. Passkeys are a clear solution to implementing phishing and theft-resistant authentication, but what about all these infostealers stealing OAuth keys and refresh tokens? As long as session hijacking is as simple as moving a cookie from one machine to another, securing authentication seems like solving only half the problem. Locking the front door, but leaving a side door unlocked. After doing some research, it appears that there has been some work on this front, including a few standards that have been introduced: DBSC (Device Bound Session Credentials) for browsers DPoP (Demonstrating Proof of Possession) for OAuth applications We'll address a few key questions in this segment: 1. how do these new standards help stop token theft? 2. how broadly have they been adopted? Segment Resources: FIDO Alliance White Paper: DBSC/DPOP as Complementary Technologies to FIDO Authentication News Segment Visit https://www.securityweekly.com/esw for all the latest episodes! Show Notes: https://securityweekly.com/esw-437

Interview Segment: Tony Kelly Illuminating Data Blind Spots As data sprawls across clouds and collaboration tools, shadow data and fragmented controls have become some of the biggest blind spots in enterprise security. In this segment, we'll unpack how Data Security Posture Management (DSPM) helps organizations regain visibility and control over their most sensitive assets. Our guest will break down how DSPM differs from adjacent technologies like DLP, CSPM, and DSP, and how it integrates into broader Zero Trust and cloud security strategies. We'll also explore how compliance and regulatory pressures are shaping the next evolution of the DSPM market—and what security leaders should be doing now to prepare. Segment Resources: https://static.fortra.com/corporate/pdfs/brochure/fta-corp-fortra-dspm-br.pdf This segment is sponsored by Fortra. Visit https://securityweekly.com/fortra to learn more about them! Topic Segment: We've got passkeys, now what? Over this year on this podcast, we've talked a lot about infostealers. Passkeys are a clear solution to implementing phishing and theft-resistant authentication, but what about all these infostealers stealing OAuth keys and refresh tokens? As long as session hijacking is as simple as moving a cookie from one machine to another, securing authentication seems like solving only half the problem. Locking the front door, but leaving a side door unlocked. After doing some research, it appears that there has been some work on this front, including a few standards that have been introduced: DBSC (Device Bound Session Credentials) for browsers DPoP (Demonstrating Proof of Possession) for OAuth applications We'll address a few key questions in this segment: 1. how do these new standards help stop token theft? 2. how broadly have they been adopted? Segment Resources: FIDO Alliance White Paper: DBSC/DPOP as Complementary Technologies to FIDO Authentication News Segment Show Notes: https://securityweekly.com/esw-437

Interview Segment: Tony Kelly Illuminating Data Blind Spots As data sprawls across clouds and collaboration tools, shadow data and fragmented controls have become some of the biggest blind spots in enterprise security. In this segment, we'll unpack how Data Security Posture Management (DSPM) helps organizations regain visibility and control over their most sensitive assets. Our guest will break down how DSPM differs from adjacent technologies like DLP, CSPM, and DSP, and how it integrates into broader Zero Trust and cloud security strategies. We'll also explore how compliance and regulatory pressures are shaping the next evolution of the DSPM market—and what security leaders should be doing now to prepare. Segment Resources: https://static.fortra.com/corporate/pdfs/brochure/fta-corp-fortra-dspm-br.pdf This segment is sponsored by Fortra. Visit https://securityweekly.com/fortra to learn more about them! Topic Segment: We've got passkeys, now what? Over this year on this podcast, we've talked a lot about infostealers. Passkeys are a clear solution to implementing phishing and theft-resistant authentication, but what about all these infostealers stealing OAuth keys and refresh tokens? As long as session hijacking is as simple as moving a cookie from one machine to another, securing authentication seems like solving only half the problem. Locking the front door, but leaving a side door unlocked. After doing some research, it appears that there has been some work on this front, including a few standards that have been introduced: DBSC (Device Bound Session Credentials) for browsers DPoP (Demonstrating Proof of Possession) for OAuth applications We'll address a few key questions in this segment: 1. how do these new standards help stop token theft? 2. how broadly have they been adopted? Segment Resources: FIDO Alliance White Paper: DBSC/DPOP as Complementary Technologies to FIDO Authentication News Segment Show Notes: https://securityweekly.com/esw-437

Disney Gone Wild, Docker, AIs, Passkeys, Gogs, React2Shell, Notepad++, Josh Marpet, and More Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-537

Disney Gone Wild, Docker, AIs, Passkeys, Gogs, React2Shell, Notepad++, Josh Marpet, and More Show Notes: https://securityweekly.com/swn-537

Disney Gone Wild, Docker, AIs, Passkeys, Gogs, React2Shell, Notepad++, Josh Marpet, and More Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-537

Cisco has finally admitted it's time for real change and is vowing to build "secure by default" gear after decades of criticism. Steve Gibson reacts to a rare moment when a tech giant actually gets security right—and what it means for everyone running critical infrastructure. • Scattered Lapsus$ Hunters strikes (Salesforce) again. • Cisco actually (no kidding) sees the light. • Next week, Australia bans all underage social media. • The EU Parliament moves to replace US computer tech. • When to use Passwords, Passkeys or Yubikeys. • Do unpowered SSDs lose their data. • How about a "Joy of Coding" podcast. • A Bitwarden Passkeys integration glitch. • XSLT is sneaky. It's where you don't expect it. • We know where last week's picture came from. • The long-awaited return of a new Stargate series. • A simple test to check our networks for any bot infections. Show Notes - https://www.grc.com/sn/SN-1054-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: joindeleteme.com/twit promo code TWIT vanta.com/SECURITYNOW bitwarden.com/twit threatlocker.com for Security Now canary.tools/twit - use code: TWIT

Cisco has finally admitted it's time for real change and is vowing to build "secure by default" gear after decades of criticism. Steve Gibson reacts to a rare moment when a tech giant actually gets security right—and what it means for everyone running critical infrastructure. • Scattered Lapsus$ Hunters strikes (Salesforce) again. • Cisco actually (no kidding) sees the light. • Next week, Australia bans all underage social media. • The EU Parliament moves to replace US computer tech. • When to use Passwords, Passkeys or Yubikeys. • Do unpowered SSDs lose their data. • How about a "Joy of Coding" podcast. • A Bitwarden Passkeys integration glitch. • XSLT is sneaky. It's where you don't expect it. • We know where last week's picture came from. • The long-awaited return of a new Stargate series. • A simple test to check our networks for any bot infections. Show Notes - https://www.grc.com/sn/SN-1054-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: joindeleteme.com/twit promo code TWIT vanta.com/SECURITYNOW bitwarden.com/twit threatlocker.com for Security Now canary.tools/twit - use code: TWIT

Cisco has finally admitted it's time for real change and is vowing to build "secure by default" gear after decades of criticism. Steve Gibson reacts to a rare moment when a tech giant actually gets security right—and what it means for everyone running critical infrastructure. • Scattered Lapsus$ Hunters strikes (Salesforce) again. • Cisco actually (no kidding) sees the light. • Next week, Australia bans all underage social media. • The EU Parliament moves to replace US computer tech. • When to use Passwords, Passkeys or Yubikeys. • Do unpowered SSDs lose their data. • How about a "Joy of Coding" podcast. • A Bitwarden Passkeys integration glitch. • XSLT is sneaky. It's where you don't expect it. • We know where last week's picture came from. • The long-awaited return of a new Stargate series. • A simple test to check our networks for any bot infections. Show Notes - https://www.grc.com/sn/SN-1054-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: joindeleteme.com/twit promo code TWIT vanta.com/SECURITYNOW bitwarden.com/twit threatlocker.com for Security Now canary.tools/twit - use code: TWIT

Cisco has finally admitted it's time for real change and is vowing to build "secure by default" gear after decades of criticism. Steve Gibson reacts to a rare moment when a tech giant actually gets security right—and what it means for everyone running critical infrastructure. • Scattered Lapsus$ Hunters strikes (Salesforce) again. • Cisco actually (no kidding) sees the light. • Next week, Australia bans all underage social media. • The EU Parliament moves to replace US computer tech. • When to use Passwords, Passkeys or Yubikeys. • Do unpowered SSDs lose their data. • How about a "Joy of Coding" podcast. • A Bitwarden Passkeys integration glitch. • XSLT is sneaky. It's where you don't expect it. • We know where last week's picture came from. • The long-awaited return of a new Stargate series. • A simple test to check our networks for any bot infections. Show Notes - https://www.grc.com/sn/SN-1054-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: joindeleteme.com/twit promo code TWIT vanta.com/SECURITYNOW bitwarden.com/twit threatlocker.com for Security Now canary.tools/twit - use code: TWIT

Cisco has finally admitted it's time for real change and is vowing to build "secure by default" gear after decades of criticism. Steve Gibson reacts to a rare moment when a tech giant actually gets security right—and what it means for everyone running critical infrastructure. • Scattered Lapsus$ Hunters strikes (Salesforce) again. • Cisco actually (no kidding) sees the light. • Next week, Australia bans all underage social media. • The EU Parliament moves to replace US computer tech. • When to use Passwords, Passkeys or Yubikeys. • Do unpowered SSDs lose their data. • How about a "Joy of Coding" podcast. • A Bitwarden Passkeys integration glitch. • XSLT is sneaky. It's where you don't expect it. • We know where last week's picture came from. • The long-awaited return of a new Stargate series. • A simple test to check our networks for any bot infections. Show Notes - https://www.grc.com/sn/SN-1054-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: joindeleteme.com/twit promo code TWIT vanta.com/SECURITYNOW bitwarden.com/twit threatlocker.com for Security Now canary.tools/twit - use code: TWIT

Cisco has finally admitted it's time for real change and is vowing to build "secure by default" gear after decades of criticism. Steve Gibson reacts to a rare moment when a tech giant actually gets security right—and what it means for everyone running critical infrastructure. • Scattered Lapsus$ Hunters strikes (Salesforce) again. • Cisco actually (no kidding) sees the light. • Next week, Australia bans all underage social media. • The EU Parliament moves to replace US computer tech. • When to use Passwords, Passkeys or Yubikeys. • Do unpowered SSDs lose their data. • How about a "Joy of Coding" podcast. • A Bitwarden Passkeys integration glitch. • XSLT is sneaky. It's where you don't expect it. • We know where last week's picture came from. • The long-awaited return of a new Stargate series. • A simple test to check our networks for any bot infections. Show Notes - https://www.grc.com/sn/SN-1054-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: joindeleteme.com/twit promo code TWIT vanta.com/SECURITYNOW bitwarden.com/twit threatlocker.com for Security Now canary.tools/twit - use code: TWIT

Cisco has finally admitted it's time for real change and is vowing to build "secure by default" gear after decades of criticism. Steve Gibson reacts to a rare moment when a tech giant actually gets security right—and what it means for everyone running critical infrastructure. • Scattered Lapsus$ Hunters strikes (Salesforce) again. • Cisco actually (no kidding) sees the light. • Next week, Australia bans all underage social media. • The EU Parliament moves to replace US computer tech. • When to use Passwords, Passkeys or Yubikeys. • Do unpowered SSDs lose their data. • How about a "Joy of Coding" podcast. • A Bitwarden Passkeys integration glitch. • XSLT is sneaky. It's where you don't expect it. • We know where last week's picture came from. • The long-awaited return of a new Stargate series. • A simple test to check our networks for any bot infections. Show Notes - https://www.grc.com/sn/SN-1054-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: joindeleteme.com/twit promo code TWIT vanta.com/SECURITYNOW bitwarden.com/twit threatlocker.com/twit canary.tools/twit - use code: TWIT

Get featured on the show by leaving us a Voice Mail: https://bit.ly/MIPVM  AI is transforming identity security and giving cybercriminals superpowers. This episode explores the rise of deepfakes, social engineering, and why traditional MFA and recovery flows fail. Learn how businesses can protect digital trust and secure remote work in an AI-driven world. 

The expiration of the Cybersecurity Information Sharing Act (CISA) on September 30, 2025, has resulted in a notable decline in U.S. cyber defense capabilities, with a reported drop of over 70% in the sharing of threat indicators. This lapse has created a legal and operational vacuum, leading to increased delays in alert dissemination and a rise in cyber threats, particularly in critical sectors such as healthcare and energy. Federal agencies and private companies are now hesitant to report incidents without the liability protections that CISA previously provided, resulting in a fragmented response to cyber threats.In response to the growing concerns over cybersecurity, the U.S. Congress has included a provision in the federal government shutdown legislation to extend CISA through the end of January 2026. This extension is crucial for facilitating the sharing of threat data between businesses and government agencies. Meanwhile, the Cybersecurity and Resilience Bill introduced in the UK mandates that medium and large IT management and cybersecurity service providers comply with minimum security standards, reflecting a shift towards greater accountability in protecting critical infrastructure.Additionally, Microsoft and 1Password are advancing passwordless technology, with Microsoft enabling the syncing of passkeys across devices and 1Password integrating a new native Passkeys plugin API for Windows 11. These developments aim to enhance user convenience and security, signaling a shift away from traditional password reliance. EasyDMARC has also launched Touchpoint, an AI-driven sales enablement tool for MSPs, while Enable has introduced a cyber warranty program offering financial protection for cyber incidents.For MSPs and IT service leaders, these developments underscore the importance of adapting to evolving cybersecurity regulations and technologies. The expiration of CISA highlights the need for private networks and MSPs to fill the intelligence gap left by government agencies. As compliance requirements tighten in the UK and the U.S., MSPs that can navigate these changes and assist clients in maintaining security and compliance will find significant opportunities in a rapidly changing landscape. Three things to know today00:00 U.S. Cyber Defense Falters as CISA Act Expires, Threat Sharing Plummets 70% Amid Budget Cuts04:35 Compliance Crossroads: New EU, UK, and U.S. Rules Reshape Data Protection and Cybersecurity for MSPs09:42 Vendors Push Simpler, Smarter Security: Microsoft Syncs Passkeys, N-able Adds Cyber Warranty, EasyDMARC Targets MSP Sales This is the Business of Tech.     Supported by:  https://getflexpoint.com/msp-radio/https://cometbackup.com/?utm_source=mspradio&utm_medium=podcast&utm_campaign=sponsorship

Live from Authenticate 2025, Jeff Steadman and Jim McDonald sit down with the Cal Ripken of IDAC, Andrew Shikiar, Executive Director and CEO of the FIDO Alliance. Andrew shares exciting updates on the incredible progress of Passkeys, revealing that over 3 billion are now in use securing accounts. We discuss the key themes of the conference, including the ongoing arms race with AI in security and the critical role of identity verification. Andrew also unveils the new Passkey Index, an initiative to provide industry benchmarks for deployment success. Looking ahead, the conversation shifts to the FIDO Alliance's broadening focus on digital credentials and wallets, aiming to solve the usability and certification challenges that have held the space back. Finally, we hear about the global expansion of the Authenticate conference brand, with a new event launching in Singapore.Connect with Andrew: https://www.linkedin.com/in/andrewshikiar/Learn more about FIDO: https://fidoalliance.org/Connect with us on LinkedIn:Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/Visit the show on the web at http://idacpodcast.comChapter Timestamps:00:00:00 - Introduction to Authenticate 2025 Themes00:02:50 - Welcoming Andrew Shikiar of the FIDO Alliance00:04:00 - Andrew's Keynote: Passkey Progress and Future Goals00:05:17 - Over 3 Billion Passkeys in Use00:06:57 - Improving the Passkey User Experience (UX)00:09:02 - Introducing the Passkey Index for Benchmarking00:10:46 - The Growth of the Authenticate Conference00:14:55 - FIDO Alliance's New Focus: Digital Credentials and Wallets00:17:25 - Overcoming Hurdles in Digital Credential Adoption00:20:03 - The Role of Major Stakeholders in FIDO's Success00:23:05 - The Future of the Authenticate Conference00:24:00 - Announcing Authenticate APAC in Singapore00:25:07 - Global Differences in Passkey Adoption00:28:19 - Closing Thoughts and FIDO Feud RecapKeywords:Andrew Shikiar, FIDO Alliance, Passkeys, Authenticate 2025, identity verification, digital credentials, digital wallets, passwordless, WebAuthn, user experience, Passkey Index, cybersecurity, authentication, mobile driver's license, multi-factor authentication, IDAC, Identity at the Center, Jeff Steadman, Jim McDonald

We've heard that Microsoft will go off script this year with a 26H1 release of Windows 11 specifically aimed at Snapdragon X2-based PCs, as it did with the early release of 24H2 last year for the first-generation Snapdragon X. Also, Microsoft's latest earnings call left analysts baffled as execs dodged questions about multibillion-dollar AI losses and the real story behind OpenAI's ballooning deficit.26H1! Now confirmed by the release notes of a Windows Update And the Dev channel will soon switch over to 26H1 testing, with Beta moving to 25H2 (from 24H2) Expectations? All three versions will be functionally identical except for some Copilot+ PC-specific features that may be briefly only on Snapdragon X2. And then there will be a 26H2 for everyone More Windows 11 Microsoft (over) simplifies its Windows Update naming scheme, and then has to backtrack a bit because of admin/IT backlash October Preview Update screwed up Task Manager a little bit Dev/Beta update noted above included a new build with Ask Copilot in the Taskbar, Full-screen experience for Xbox gaming handhelds, Shared audio over Bluetooth LE in preview, and improvements to the WOA Prism emulator (which partially explains the expectations bit above) Microsoft Edge password manager can now save and sync passkeys, but you should still use a third-party password/identity manager Microsoft Store gets a bulk installer but only on the web Earnings learnings Microsoft earnings: Revenues up 18 percent to $77.7 billion but cost of AI is spiraling out of control and will only get bigger this FY Productivity and Business Processes revenues up 17 percent YOY to $33 billion Intelligent Cloud revenues of $30.9 billion, a gain of 28 percent YOY More Personal Computing delivered $13.8 billion in revenues, up 4 percent YOY. CapEx/AI infrastructure build-out costs are $34.9 billion (vs. $20 billion one year ago), plus a $4.1 billion loss attributed to OpenAI that was mentioned in a 10-Q (SEC) filing but not in its earnings reports Paul's analysis sticks mostly to Wall Street complicity in Microsoft's earnings non-transparency shenanigans. This is getting weird, given the amounts of money we're now talking about This isn't a first, but Spotify's earnings announcements includes a few BS sleights of hand too AMD: 36 percent revenue growth isn't enough for Wall Street Alphabet/Google: Up 16 percent to $102.3 billion, ads are 72.5 percent of revenues Amazon: Up 13 percent to $180 billion in revenues, $30 from AWS Apple: Up 8 percent to $102.5 billion, this quarter will be its best ever AI, antitrust, & dev Epic Games and Google announce settlement in Epic v. Google, a dramatic common-sense move that Apple should (but won't) emulate Regulatory filings tied to Microsoft earnings suggest OpenAI lost $12 billion in most recent quarter Freed from Microsoft, OpenAI immediately signs $38 billion infrastructure deal with AWS .NET 10 to launch next week at .NET Conf 2025 Xbox & games Xbox Game Pass getting Call of Duty Black Ops 7, five more Day One games in coming days (with an *) Xbox October Update rolls out with game shader preloading on Xbox Ally, new modules in Game Hubs on console, more games to stream on Xbox Cloud Gaming, more Nintendo Switch 2 is off to a blockbuster first year with T These show notes have been truncated due to length. For the full show notes, visit https://twit.tv/shows/windows-weekly/episodes/957 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Sponsors: helixsleep.com/windows framer.com/design promo code WW 1password.com/windowsweekly auraframes.com/ink

We've heard that Microsoft will go off script this year with a 26H1 release of Windows 11 specifically aimed at Snapdragon X2-based PCs, as it did with the early release of 24H2 last year for the first-generation Snapdragon X. Also, Microsoft's latest earnings call left analysts baffled as execs dodged questions about multibillion-dollar AI losses and the real story behind OpenAI's ballooning deficit.26H1! Now confirmed by the release notes of a Windows Update And the Dev channel will soon switch over to 26H1 testing, with Beta moving to 25H2 (from 24H2) Expectations? All three versions will be functionally identical except for some Copilot+ PC-specific features that may be briefly only on Snapdragon X2. And then there will be a 26H2 for everyone More Windows 11 Microsoft (over) simplifies its Windows Update naming scheme, and then has to backtrack a bit because of admin/IT backlash October Preview Update screwed up Task Manager a little bit Dev/Beta update noted above included a new build with Ask Copilot in the Taskbar, Full-screen experience for Xbox gaming handhelds, Shared audio over Bluetooth LE in preview, and improvements to the WOA Prism emulator (which partially explains the expectations bit above) Microsoft Edge password manager can now save and sync passkeys, but you should still use a third-party password/identity manager Microsoft Store gets a bulk installer but only on the web Earnings learnings Microsoft earnings: Revenues up 18 percent to $77.7 billion but cost of AI is spiraling out of control and will only get bigger this FY Productivity and Business Processes revenues up 17 percent YOY to $33 billion Intelligent Cloud revenues of $30.9 billion, a gain of 28 percent YOY More Personal Computing delivered $13.8 billion in revenues, up 4 percent YOY. CapEx/AI infrastructure build-out costs are $34.9 billion (vs. $20 billion one year ago), plus a $4.1 billion loss attributed to OpenAI that was mentioned in a 10-Q (SEC) filing but not in its earnings reports Paul's analysis sticks mostly to Wall Street complicity in Microsoft's earnings non-transparency shenanigans. This is getting weird, given the amounts of money we're now talking about This isn't a first, but Spotify's earnings announcements includes a few BS sleights of hand too AMD: 36 percent revenue growth isn't enough for Wall Street Alphabet/Google: Up 16 percent to $102.3 billion, ads are 72.5 percent of revenues Amazon: Up 13 percent to $180 billion in revenues, $30 from AWS Apple: Up 8 percent to $102.5 billion, this quarter will be its best ever AI, antitrust, & dev Epic Games and Google announce settlement in Epic v. Google, a dramatic common-sense move that Apple should (but won't) emulate Regulatory filings tied to Microsoft earnings suggest OpenAI lost $12 billion in most recent quarter Freed from Microsoft, OpenAI immediately signs $38 billion infrastructure deal with AWS .NET 10 to launch next week at .NET Conf 2025 Xbox & games Xbox Game Pass getting Call of Duty Black Ops 7, five more Day One games in coming days (with an *) Xbox October Update rolls out with game shader preloading on Xbox Ally, new modules in Game Hubs on console, more games to stream on Xbox Cloud Gaming, more Nintendo Switch 2 is off to a blockbuster first year with T These show notes have been truncated due to length. For the full show notes, visit https://twit.tv/shows/windows-weekly/episodes/957 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Sponsors: helixsleep.com/windows framer.com/design promo code WW 1password.com/windowsweekly auraframes.com/ink

We've heard that Microsoft will go off script this year with a 26H1 release of Windows 11 specifically aimed at Snapdragon X2-based PCs, as it did with the early release of 24H2 last year for the first-generation Snapdragon X. Also, Microsoft's latest earnings call left analysts baffled as execs dodged questions about multibillion-dollar AI losses and the real story behind OpenAI's ballooning deficit.26H1! Now confirmed by the release notes of a Windows Update And the Dev channel will soon switch over to 26H1 testing, with Beta moving to 25H2 (from 24H2) Expectations? All three versions will be functionally identical except for some Copilot+ PC-specific features that may be briefly only on Snapdragon X2. And then there will be a 26H2 for everyone More Windows 11 Microsoft (over) simplifies its Windows Update naming scheme, and then has to backtrack a bit because of admin/IT backlash October Preview Update screwed up Task Manager a little bit Dev/Beta update noted above included a new build with Ask Copilot in the Taskbar, Full-screen experience for Xbox gaming handhelds, Shared audio over Bluetooth LE in preview, and improvements to the WOA Prism emulator (which partially explains the expectations bit above) Microsoft Edge password manager can now save and sync passkeys, but you should still use a third-party password/identity manager Microsoft Store gets a bulk installer but only on the web Earnings learnings Microsoft earnings: Revenues up 18 percent to $77.7 billion but cost of AI is spiraling out of control and will only get bigger this FY Productivity and Business Processes revenues up 17 percent YOY to $33 billion Intelligent Cloud revenues of $30.9 billion, a gain of 28 percent YOY More Personal Computing delivered $13.8 billion in revenues, up 4 percent YOY. CapEx/AI infrastructure build-out costs are $34.9 billion (vs. $20 billion one year ago), plus a $4.1 billion loss attributed to OpenAI that was mentioned in a 10-Q (SEC) filing but not in its earnings reports Paul's analysis sticks mostly to Wall Street complicity in Microsoft's earnings non-transparency shenanigans. This is getting weird, given the amounts of money we're now talking about This isn't a first, but Spotify's earnings announcements includes a few BS sleights of hand too AMD: 36 percent revenue growth isn't enough for Wall Street Alphabet/Google: Up 16 percent to $102.3 billion, ads are 72.5 percent of revenues Amazon: Up 13 percent to $180 billion in revenues, $30 from AWS Apple: Up 8 percent to $102.5 billion, this quarter will be its best ever AI, antitrust, & dev Epic Games and Google announce settlement in Epic v. Google, a dramatic common-sense move that Apple should (but won't) emulate Regulatory filings tied to Microsoft earnings suggest OpenAI lost $12 billion in most recent quarter Freed from Microsoft, OpenAI immediately signs $38 billion infrastructure deal with AWS .NET 10 to launch next week at .NET Conf 2025 Xbox & games Xbox Game Pass getting Call of Duty Black Ops 7, five more Day One games in coming days (with an *) Xbox October Update rolls out with game shader preloading on Xbox Ally, new modules in Game Hubs on console, more games to stream on Xbox Cloud Gaming, more Nintendo Switch 2 is off to a blockbuster first year with T These show notes have been truncated due to length. For the full show notes, visit https://twit.tv/shows/windows-weekly/episodes/957 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Sponsors: helixsleep.com/windows framer.com/design promo code WW 1password.com/windowsweekly auraframes.com/ink