Podcasts about Socs

  • 291PODCASTS
  • 657EPISODES
  • 50mAVG DURATION
  • 5WEEKLY NEW EPISODES
  • Jun 23, 2026LATEST

POPULARITY

20192020202120222023202420252026


Best podcasts about Socs

Latest podcast episodes about Socs

The Gate 15 Podcast Channel
The Gate 15 Interview EP 71: ONE-ISAC Returns! Security, sauces and streaking, with Scott Moore and Angela Haun

The Gate 15 Podcast Channel

Play Episode Listen Later Jun 23, 2026 45:04


In this episode of The Gate 15 Interview, Andy Jabbour welcomes back ONE-ISAC Executive Director, Angela Haun, and this time with Scott Moore, ONE-ISAC Board Member and who also leads the Digital Security group for Devon Energy, a Fortune 500 oil and natural gas exploration and production company with operations focused onshore in the United States. • Scott on LinkedIn• Angela on LinkedIn• ONE-ISAC• About ONE-ISAC, including Angela, Scott, and the rest of the Board• Devon Energy• The Gate 15 Interview – Angela Haun, ONE-ISAC, good intentions, and Rick Springfield, 23 Nov 2024• The Gate 15 Special Edition: Iran, ISACs, & insomnia: What's happening, and not happening, in information sharing, 06 Mar 2026 Anna Mentzer-Hernández, Cyber Threat Intelligence Senior Analyst, ONE-ISAC“trust is bidirectional” – Scott MooreIn the podcast, the group discusses: • Angela & Scott's backgrounds and current roles.• ONE-ISAC, cyber threats, geopolitics, SOCs and TICs and some team shoutouts• The convergence of IT and OT, ransomware and the broader potential impacts to operations, as well as nation-state threats, hacktivism, and insider threats. • AI and how ONE-ISAC is addressing this emerging technology.• Public-Private Partnerships & doing the work up front.• Exercises, resilience and having the uncomfortable conversations with senior executives on security and resilience.• We play Three Questions and talk Ted Lasso, the 90s, Saucy, Spicy, Scott, streaking and more!

SECURE AF
Qilin Ransomware Exploiting VPN Zero-Days: What SOCs Need to Do Now

SECURE AF

Play Episode Listen Later Jun 17, 2026 4:52 Transcription Available


Got a question or comment? Message us here!A single unpatched VPN could be all it takes. Qilin ransomware is actively exploiting VPN zero-days to breach networks and accelerate ransomware deployment. We walk through the tactics, the real risk to your organization, and actionable SOC strategies to stay ahead.Support the showWatch full episodes at youtube.com/@aliascybersecurity.Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.

Federal Tech Podcast: Listen and learn how successful companies get federal contracts
Ep. 327 Is Cybersecurity a Data Problem? Elastic Explains Why

Federal Tech Podcast: Listen and learn how successful companies get federal contracts

Play Episode Listen Later Jun 11, 2026 23:03


Finding a needle in a haystack would seem like a minor endeavor compared to what today's federal systems managers must face. Let's take a stab at a correct farmyard analogy – the haystacks double in size every day and are moving. That sounds like an exaggeration, but recent reports show that nine million zero-day exploits are released every day. AI is putting malicious actors on steroids. Chris Townsend, Global Vice President of Public Sector at Elastic, discussed the company's role in federal cybersecurity and data management. His argument is, essentially, that cybersecurity is a data problem. If threats are viewed from that perspective, the more data you can bring into your security environment, the more effective you are at defending it. Elastic enables security operations analysts      who are responsible for detecting threats to keep up with today's tlandscape and cyber-attack velocity. Elastic's platform and tools     can reduce false positives and help federal security operations centers (SOCs) prioritize valid threats. Townsend highlighted Elastic's agentic AI tools, which help SOC operators prioritize and remediate threats, reducing mean time to detect and respond.  Elastic's partnership with CISA for a managed  Security Information and Event Management (SIEM) as-a- service was also mentioned, emphasizing the importance of standardizing data for effective AI-driven cybersecurity. Townsend goes on to articulate Elastic's launch of a SIEM-as-a-Service offering for federal civilian agencies, featuring Elastic Security on Elastic Cloud. SIEMaaS delivers a cloud-based platform for next-generation, AI-powered threat analytics, incident response, and open-standards-based cybersecurity data ingestion. Here is a link to Chris' blog describing     CISA's SIEMaaS offering and how it supports federal agencies' cybersecurity posture while reducing costs

DrZeroTrust
The Unicorn Trap and how it is failing the cybersecurity industry.

DrZeroTrust

Play Episode Listen Later Jun 10, 2026 26:03


Most venture-backed cybersecurity companies are doomed from the start. The math is rigged so only 5-10% of startups survive—and they have to return hundreds of millions, or even billions, to satisfy investors. The result? Exploding tools, premature scaling, vaporware, and a cybersecurity industry obsessed with quick exits rather than real defense. In this eye-opening episode, I pull back the curtain on how the VC funding model distorts cybersecurity innovation. You'll discover how an industry designed to fail is fueling massive failures like IronNet's $3 billion valuation crashing in just two years, Lacework's $8 billion valuation shrinking to $200 million, and Cyber Reason's 90% valuation collapse in 12 months. These aren't coincidences—they're the predictable consequences of a broken system that prizes scale over substance.I break down:* The real math behind “unicorn” valuations and their astronomical burn rates* Why premature scaling kills startups before they can build effective security* How VC incentives favor feature bloat, AI washing, and vaporware over genuine innovation* The ugly truth about the flood of tools that make SOCs worse, not better* Proven models like customer-funded R&D — exemplified by Palantir — that produce real, effective security products without sacrificing integrityIf you're a security buyer tired of bloated tools and false promises, or a founder questioning the current VC-driven chaos, this episode is your wake-up call. The industry is at a crossroads: continue chasing mythical “unicorns” or build resilient, purpose-driven solutions that actually defend us against modern threats. The stakes couldn't be higher. Because if we keep funding the same flawed cycle, our cybersecurity defenses will remain weak—and the threat actors will keep winning. But there's hope. Some companies are bucking the trend, proving that profitability and genuine innovation are possible outside the VC model. This is essential listening for security professionals, founders, and investors ready to rethink what really works. Share if you're fed up with the status quo—because the future of cybersecurity depends on it.

It's All Geek to Me With Brant and Andrew
Ep 197 - The Outsiders - Boylans's Black Cherry

It's All Geek to Me With Brant and Andrew

Play Episode Listen Later Jun 8, 2026 82:49


June is Banned Book Month, so this year we are joined by our friend and librarian Shauna to discuss S.E. Hinton's novel about Greasers, Socs, switchblades, rumbles, Cherry, sunsets, and their tuff, tuff hair. Also, we received a gift package from longtime listener David and we opened that plentiful Pandora's Box on air!Today's Sodapop (Curtis) is Boylan's Black Cherry.Send us Fan Mail

The Segment: A Zero Trust Leadership Podcast
Same Problems, Different Decade | Dr. Anton Chuvakin and Erik Bloch

The Segment: A Zero Trust Leadership Podcast

Play Episode Listen Later Jun 3, 2026 54:42


In this episode, Raghu Nandakumara sits down with two heavyweights in cybersecurity: Dr. Anton Chuvakin (Google Cloud) and Erik Bloch (Illumio), for a candid, often funny, and occasionally sobering look at why detection and response keeps fighting the same battles it was fighting 20 years ago. From the birth of SIEM and the coining of "EDR," to the short-lived reign of XDR, to today's AI hype cycle, Anton and Erik trace the full arc of the industry's evolution and interrogate why, despite decades of tooling investment, the fundamental outcomes haven't changed.  Alert fatigue, signal-to-noise ratios, and the needle-in-the-haystack problem remain as stubborn as ever –and the slides security teams are building in 2025 look suspiciously like the ones from 2003. Raghu, Anton, and Erik discuss: Why the SOC still largely runs on a 1990s operating model and what it would actually take to change that How compliance pulled SIEM away from detection for over a decade and why that hangover still lingers Why a handful of engineering-led organizations (Google, Netflix, a European bank) have cracked the code while nearly everyone else keeps applying band-aids The pharmaceutical industry analogy that explains why security startups keep building band-aids instead of solving root causes What MDRs are doing right and why enterprise SOCs have no incentive to learn from them Why AI is accelerating tooling but, for some organizations, actually slowing down the harder transformation work How securing AI is repeating the exact same mistakes made in the early days of cloud Stay connected with our host Raghu on LinkedIn For more information about Illumio, check out our website at illumio.com

Packet Pushers - Full Podcast Feed
NB577: Cisco Brings SONiC to N9000 Switches; Broadcom Debuts Wi-Fi 8 SoCs for Consumer Routers

Packet Pushers - Full Podcast Feed

Play Episode Listen Later Jun 1, 2026 36:29


Take a Network Break! We start with listener followup and a red alert affecting  ScadaBR, an open source SCADA controller. On the news front, Forward adds predictive testing to its network digital twin software, Qumulo and Cisco team up to offer cloud-bursting for file storage, and NetBrain adds new skills and other updates to its... Read more »

Packet Pushers - Network Break
NB577: Cisco Brings SONiC to N9000 Switches; Broadcom Debuts Wi-Fi 8 SoCs for Consumer Routers

Packet Pushers - Network Break

Play Episode Listen Later Jun 1, 2026 36:29


Take a Network Break! We start with listener followup and a red alert affecting  ScadaBR, an open source SCADA controller. On the news front, Forward adds predictive testing to its network digital twin software, Qumulo and Cisco team up to offer cloud-bursting for file storage, and NetBrain adds new skills and other updates to its... Read more »

Packet Pushers - Fat Pipe
NB577: Cisco Brings SONiC to N9000 Switches; Broadcom Debuts Wi-Fi 8 SoCs for Consumer Routers

Packet Pushers - Fat Pipe

Play Episode Listen Later Jun 1, 2026 36:29


Take a Network Break! We start with listener followup and a red alert affecting  ScadaBR, an open source SCADA controller. On the news front, Forward adds predictive testing to its network digital twin software, Qumulo and Cisco team up to offer cloud-bursting for file storage, and NetBrain adds new skills and other updates to its... Read more »

Technikquatsch
TQ309: Steam Deck über 200 Euro teurer; AMD Radeon RX 9070 GRE weltweit, 9070 und 9070 XT wohl bald teurer; Microsoft stellt Github Copilot auf Token-basierte Abrechnung um uvm.

Technikquatsch

Play Episode Listen Later Jun 1, 2026 71:47


Die Computex in Taipei ist in vollem Gang, einige in dieser Folge besprochenen Punkte sind inzwischen offiziell bestätigt: Die bisher nur in China erhältliche Grafikkarte AMD Radeon RX 9070 GRE wird weltweit erscheinen. In der Performance etwas unter der RX 9070, aber mit nur 12 GB VRAM, die UVP beträgt 549 Dollar, also der gleiche Preis wie die 9070 zu Release. Preissteigerungen von 9070 und 9070 XT wären daher keine Überraschung. Intel nimmt inzwischen den Markt der PC-Handhelds ernst und bietet mit Arc G3 und Arc G3 Extreme zwei darauf optimierte SoCs auf Basis von Panther Lake an. Das Angebot wird von zahlreichen Herstellern angenommen wie selbstverständlich MSI, die schon zuvor auf Intel anstelle von AMD setzten, aber auch Acer. Die Preise werden happig. So soll der MSI Claw 8 EX AI+ mit Arc G3 Extreme 1500 Dollar kosten. Das Steam Deck ist zwar grundsätzlich wieder erhältlich, aber ob das noch eine Empfehlung ist? Einerseits ist es inzwischen einfach veraltet, andererseits hat Valve die Preise massiv angezogen: Das Steam Deck OLED kostet mit 512 GB SSD 779 Euro (zuvor 569 Euro), mit 1 TB 919 Euro (zuvor 679 Euro). Da wirkt sogar das Asus ROG Xbox Ally für derzeit etwa 900 Euro wie ein guter Deal, zumal es auch deutlich mehr Performance bietet. Viel Spaß mit Folge 309! Sprecher:innen: Michael Kister, Mohammed Ali DadAudioproduktion: Michael KisterVideoproduktion: Mohammed Ali Dad, Michael KisterText: Michael KisterTitelbild: Mohammed Ali DadBildquellen: Valve/Pexels (Photy by Ibrahim Bohran)Aufnahmedatum: 29.05.2026 Besucht unsim Discord https://discord.gg/SneNarVCBMauf Bluesky https://bsky.app/profile/technikquatsch.deauf Youtube https://www.youtube.com/@technikquatsch https://www.youtube.com/@technikquatschgamingauf TikTok https://www.tiktok.com/@technikquatschauf Instagram https://www.instagram.com/technikquatschauf Twitch https://www.twitch.tv/technikquatsch RSS-Feed https://technikquatsch.de/feed/podcast/Spotify https://open.spotify.com/show/62ZVb7ZvmdtXqqNmnZLF5uApple Podcasts https://podcasts.apple.com/de/podcast/technikquatsch/id1510030975Deezer https://www.deezer.com/de/show/1162032 00:00:00 Herzlich willkommen zu Technikquatsch Folge 309! Mike zu Gast beim Pixelplausch Podcasthttps://m10z.de/podcasts/pp-18 00:06:53 Feedback: Immer wieder was Neues ausprobieren 00:11:51 Feedback: Samsung Smartphone mit DEX als Ersatz für Windows Thinclients 00:16:00 Steam Deck (mehr oder weniger) wieder verfügbar, aber über 200€ teurerhttps://www.computerbase.de/news/gaming/steam-deck-oled-handhelds-wieder-verfuegbar-aber-ueber-ein-drittel-teurer.97555/ 00:21:58 Intel greift im Handheld-Bereich mit Arc G3 (Extreme) an, hohe Preise für die entsprechenden Handhelds zu erwarten; Update: mehrere Handhelds auf der Computex vorgestellthttps://www.computerbase.de/news/prozessoren/arc-g3-extreme-und-arc-g3-intel-attackiert-amd-mit-arc-b390-und-b370-im-handheld-pc.97548/https://videocardz.com/newz/msi-provides-first-look-at-arc-g3-handheld-pcb-designhttps://www.computerbase.de/news/gaming/predator-atlas-8-im-hands-on-acer-setzt-im-gaming-handheld-auf-intel-arc-g3-extreme.97620/Gamers Nexus: RIP AMD ROG Ally: Intel Handheld G3 Technical Discussion, ft. Tom Petersen https://www.youtube.com/watch?v=zhiiOjLgwrM 00:26:20 AMD Radeon RX 9070 GRE bald weltweit verfügbar, Anzeichen für kommende Preissteigerungen bei 9070 und 9070 XT; Update: auf Computex offiziell bestätigthttps://www.computerbase.de/news/grafikkarten/handel-bestaetigt-die-radeon-rx-9070-gre-kommt-auch-nach-europa.97550/https://www.computerbase.de/news/grafikkarten/radeon-rx-9070-gre-die-china-version-mit-12-gb-kommt-weltweit-auf-den-markt.97586/ 00:34:52 Die "goldenen Zeiten" für KI sind vorbei, Preise für Nutzung werden durch Umstellung von Abo-Modellen auf Token-basierte Abrechnung massiv erhöht.https://www.it-daily.net/shortnews/claude-code-microsoft-lizenzenhttps://www.golem.de/news/microsoft-github-copilot-wird-fuer-viele-kunden-merklich-teurer-2604-208088.htmlhttps://bsky.app/profile/edzitron.com/post/3mnacilpsds2m 00:59:06 Euro-Office erscheint am 09. Juni als Verison 1.0.https://www.computerbase.de/news/apps/euro-office-europaeische-alternative-zu-office365-startet-am-09-juni.97589/https://www.heise.de/news/Kurswechsel-LibreOffice-fuer-Browser-und-Smartphone-kommt-11309343.html 01:03:40 Qualcomm Snapdragon C für Geräte im Bereich von 300 Dollarhttps://www.computerbase.de/news/prozessoren/snapdragon-c-qualcomms-pc-plattform-fuer-notebooks-ab-300-us-dollar.97522/ 01:07:14 Feierabend!

SECURE AF
First Known AI-Powered Zero-Day Exploit: What SOCs Need to Know

SECURE AF

Play Episode Listen Later May 27, 2026 4:48 Transcription Available


Got a question or comment? Message us here!In this episode of the #SOCBrief, we dive into the first confirmed case of an AI-powered zero-day exploit. With attackers leveraging AI to discover vulnerabilities, generate exploit code, and bypass defenses faster than ever, this marks a major shift in how threats are developed and deployed. We break down how the attack worked, what made the exploit unique, and the key detection and defense strategies SOC teams need to start adopting now to keep pace with AI-driven adversaries.Support the showWatch full episodes at youtube.com/@aliascybersecurity.Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.

The Cybersecurity Defenders Podcast
How analysts use cognitive reasoning in investigations with Chris Sanders / Defender Fridays [#325]

The Cybersecurity Defenders Podcast

Play Episode Listen Later May 22, 2026 32:43


Join us for this week's Defender Fridays as Chris Sanders, Founder at Applied Network Defense and the Rural Technology Fund, breaks down how analysts actually think through investigations and what separates high performers from the rest.At Defender Fridays, we delve into the dynamic world of information security, exploring its defensive side with seasoned professionals from across the industry. Our aim is simple yet ambitious: to foster a collaborative space where ideas flow freely, experiences are shared, and knowledge expands.What We'll DiscussIn this episode, Chris Sanders draws on his background in security operations and cognitive psychology to explore how metacognition shapes investigative performance, and why understanding how you think is one of the most underleveraged skills in the SOC.Key Topics:Why high-performing analysts ask better questions instead of starting with large chunks of dataHow diagnostic inquiry (DINQ) was developed by studying senior analysts in actionWhat separates one year of experience repeated twenty times from genuinely diverse experienceWhy tacit knowledge makes it hard to train new analysts and what to do about itHow AI fits into the investigative process and where humans still need to be in the loopWhy cybersecurity education has a transfer problem and what other fields like medicine get rightWhat good SOCs have in common and why it comes down to metacognitive awarenessAbout Our GuestChris Sanders is the Founder of Applied Network Defense, a training company focused on analyst and investigative roles, and the Rural Technology Fund, an organization that supports technology education in rural and underserved communities. He holds a doctorate in education and has spent his career at the intersection of cybersecurity and cognitive psychology, including time at school districts, the federal government, and Mandiant.Register for Live SessionsJoin us every Friday at 10:30am PT for live, interactive discussions with industry experts. Whether you're a seasoned professional or just curious about the field, these sessions offer an engaging dialogue between our guests, hosts, and you, our audience.Register here: https://limacharlie.io/defender-fridaysSubscribe to our YouTube channel and hit the notification bell to never miss a live session or catch up on past episodes on our website!Sponsored by LimaCharlieThis episode is brought to you by LimaCharlie, the Agentic SecOps Workspace (ASW), where AI agents operate security infrastructure using the same controls and authority as human analysts, with every action visible, governed, and auditable.Why LimaCharlie?Eliminate vendor sprawl and tool complexityDeploy and scale effortlessly on native multi-tenant architectureReduce costs with intelligent data routing and free 1-year retentionBuild custom solutions with 100+ security capabilities on-demandAccelerate response with agentic AI that acts directly within predefined workflowsTry the Agentic SecOps Workspace free: https://limacharlie.ioLearn more: https://docs.limacharlie.ioFollow LimaCharlieSign up for free: https://limacharlie.ioLinkedIn: / limacharlieioX: https://x.com/limacharlieioCommunity Discourse: https://community.limacharlie.com/Host: Maxime Lamothe-Brassard - Founder at LimaCharlieGuest: Chris Sanders - Founder at Applied Network Defense & Rural Technology Fund

SECURE AF
ShinyHunters Breach of Instructure Canvas LMS

SECURE AF

Play Episode Listen Later May 20, 2026 5:21 Transcription Available


Got a question or comment? Message us here!In this episode of the #SOCBrief, we break down the ShinyHunters breach of Instructure's Canvas LMS and what it means for security teams everywhere. From exploiting a lesser-monitored service to exfiltrating millions of records, this attack highlights the growing risk of third-party vendors and supply chain exposure. We walk through how the breach unfolded, key indicators of compromise, and the practical steps SOC teams can take to detect, monitor, and reduce vendor-related risk before it becomes a crisis.Support the showWatch full episodes at youtube.com/@aliascybersecurity.Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.

UC Today - Out Loud
AI-Driven SOCs: What PwC Is Seeing and What Security Leaders Should Do

UC Today - Out Loud

Play Episode Listen Later May 20, 2026 14:50


AI is reshaping the security operations center (SOC), shifting it from a manual, reactive function into a faster, intelligence-driven environment. For organizations dealing with alert fatigue and limited analyst capacity, AI is becoming a practical tool for improving how threats are identified and managed.In this UC Today discussion, Kristian McCann speaks with Morgan Adamsky, Principal at PwC, to explore how enterprises are operationalizing AI in the SOC. Adamsky brings a pragmatic perspective, focusing on how AI can be deployed responsibly. Her insights center on aligning technology with people and process, ensuring AI enhances rather than complicates decision-making in high-pressure environments.From Hype to Operational RealityTraditionally, analysts have had to manually review large volumes of data, often taking significant time to identify real threats. AI is changing that by rapidly surfacing anomalies and prioritizing potential risks, helping teams respond faster.Adoption, however, varies widely. Many organizations are still taking a “bolt-on” approach, adding AI into existing workflows. More advanced organizations are rethinking the SOC entirely, treating AI as a “force multiplier” and designing operations around it from the outset.This gap highlights different levels of maturity. While some are experimenting, others are investing in deeper transformation, a move Adamsky suggests will deliver greater long-term value, particularly as attackers also leverage AI to accelerate their efforts.Challenges remain. Organizations must integrate AI across the full security lifecycle, ensure outputs can be trusted, and train teams to use it effectively. As Adamsky notes, the human factor is still a key hurdle in scaling adoption.Building a Smarter, Safer SOCTo manage these challenges, organizations are introducing clearer boundaries between AI and human decision-making. AI can handle tasks like initial triage, but critical actions such as containment or shutting down systems typically require human validation.This human-in-the-loop approach helps maintain trust while still benefiting from automation. It ensures that AI supports, rather than replaces, human judgment in high-stakes scenarios.Adamsky also outlines what effective implementation looks like. This includes combining threat intelligence, vulnerability data, and network activity into a unified view. AI then helps identify patterns and surface meaningful insights, enabling more informed decisions.She also points to three priorities: faster vulnerability management, stronger third-party risk oversight, and preparing for breaches. The latter reflects a growing recognition that incidents are increasingly likely, making readiness essential.From Experimentation to TransformationThe discussion makes clear that incremental adoption is not enough. While bolt-on AI can deliver short-term gains, long-term success requires rethinking the SOC as a whole, with AI embedded across workflows.At the same time, core cybersecurity fundamentals still matter. Practices like patching, testing, and incident planning remain critical, but must now operate at greater speed to keep up with AI-driven threats.For security leaders, the focus should be on both technology and people. That means investing in tools while also upskilling teams and adapting processes to fully leverage AI.Ultimately, organizations that treat AI as foundational rather than optional will be better positioned to keep pace in an increasingly automated threat landscape.

The Cybersecurity Defenders Podcast
Does the rise of AI mean human-led SOCs are obsolete? With Dr. Adeel Shaikh Muhammad [#322]

The Cybersecurity Defenders Podcast

Play Episode Listen Later May 13, 2026 25:18


Dr. Adeel Shaikh Muhammad, a cybersecurity strategist and global speaker with over 16 years of experience across information security, networks, and systems. Adeel brings a practical perspective on how organizations can adapt to evolving cyber threats and the growing role of AI in cybersecurity. Adeel, with an extraordinary portfolio of 40+ industry certifications, including CISSP, CISM, CISA, CCISO, PMP, CEH, ISO 27001 Lead Implementer & Auditor, and a robust suite of advanced Cisco, Microsoft, Fortinet, Barracuda, ITIL, PRINCE2, and AI-related credentials, he is a benchmark of technical mastery and visionary execution. His academic excellence includes a Master's in Cybersecurity and a current Doctorate in Business Administration (DBA) focused on the impact of AI in Security Operations Centers (SOCs) in the Gulf region.Adeel is the author of two acclaimed books—“AI-Driven Transformation of Security Operations Center (SOC)” and “AI and Us: The Ethical Choices”—bridging the critical intersection of AI innovation and ethical leadership.Support our show by sharing your favorite episodes with a friend, subscribe, give us a rating or leave a comment on your podcast platform. This podcast is brought to you by LimaCharlie, maker of the SecOps Cloud Platform, infrastructure for SecOps where everything is built API first. Scale with confidence as your business grows. Start today for free at limacharlie.io

Technikquatsch
TQ306: Steam Controller veröffentlicht – und direkt ausverkauft; Fehler bei DENIC sorgt für Ausfall von .de-Domains; Alabaster Dawn angespielt; Eindrücke von der Stay Forever Con Süd

Technikquatsch

Play Episode Listen Later May 13, 2026 53:03


Der Steam Controller (2026) ist da! Also jetzt gerade nicht zu kaufen, weil sofort ausverkauft, aber so grundsätzlich zumindest schon mal veröffentlicht. Die zahlreichen Tests zeigen mehrheitlich: Der Steam Controller scheint gut, aber nicht überragend zu sein. Aber dafür hat er unter anderem mit den Trackpads ein Alleinstellungsmerkmal. Ihn außerhalb von Steam zu nutzen, kann eine Herausforderung sein. Derzeit kann man ihn zwar reservieren, aber es dürfte noch etwas dauern, bis die erste Ladung abgearbeitet ist, und wieder genug auf Lager sind. Natürlich gehen wir auch auf den großflächigen Ausfall von .de-Domains ein. Das Internet ist eben deutlich zentraler organisiert organisiert, als man manchmal glauben mag. Apple scheint nun doch den SoC im Macbook Neo, den A18 Pro, neu fertigen zu lassen, was einiges an Aufpreis bei TSMC kosten dürfte. Ob das Macbook Neo den Hammerpreis zu Release halten kann, ist fraglich. Mike hat die Demo (und inzwischen den Early Access) von Alabaster Dawn, dem neuen Action-Adventure/RPG von Radical Fish (CrossCode) angespielt und ist ziemlich begeistert. Viel Spaß mit Folge 306! Sprecher:innen: Meep, Michael Kister, Mohammed Ali DadAudioproduktion: Michael KisterVideoproduktion: Mohammed Ali Dad, Michael KisterTitelbild: MeepBildquellen: ValveAufnahmedatum: 10.05.2026 Besucht unsim Discord https://discord.gg/SneNarVCBMauf Bluesky https://bsky.app/profile/technikquatsch.deauf Youtube https://www.youtube.com/@technikquatsch https://www.youtube.com/@technikquatschgamingauf TikTok https://www.tiktok.com/@technikquatschauf Instagram https://www.instagram.com/technikquatschauf Twitch https://www.twitch.tv/technikquatsch RSS-Feed https://technikquatsch.de/feed/podcast/Spotify https://open.spotify.com/show/62ZVb7ZvmdtXqqNmnZLF5uApple Podcasts https://podcasts.apple.com/de/podcast/technikquatsch/id1510030975Deezer https://www.deezer.com/de/show/1162032 00:00:00 Herzlich willkommen zu Technikquatsch Folge 306! Hinweis auf das Special zum Film Super Mario Bros. (1993) https://technikquatsch.de/tqs-film-special-super-mario-bros-1993-chaotisch-kontrovers-faszinierend/ 00:02:44 Rekapitulation Stay Forever Con Süd 2026 in Karlsruhe 00:19:09 Steam Controller veröffentlicht, Netz voll mit Reviewshttps://www.computerbase.de/news/gaming/steam-controller-reservierbar-valve-gibt-verkauf-mit-neuen-regeln-wieder-frei.97266/Gamers Nexus: Valve Steam Controller Review | Latency Benchmarks, Battery Life, Repairability https://www.youtube.com/watch?v=wfr4QN1HvhsGamers Nexus: Impressive Repairability: Valve Steam Controller Tear-Down & Disassembly https://www.youtube.com/watch?v=hVRfie61QyEhttps://www.gamingonlinux.com/2026/05/the-new-steam-controller-from-valve-is-out-now-some-early-thoughts/ 00:28:47 Alabaster Dawn Demo und Early Accesshttps://store.steampowered.com/app/3110760/Alabaster_Dawn/ 00:33:08 Ergänzungen zu Drova von Michael Hoss (D13), siehe Folge 305 https://technikquatsch.de/tq305-framework-13-pro-reparierbarkeit-und-modularitat-mit-style-im-test-drova-forsaken-kin-das-2d-gothic-jetzt-fur-android-ios-assassins-creed-blag-flag-resynced-angekundigt-game-pass-gunstiger-aber/ 00:35:08 SoCs für Macbook Neo wohl wieder in Produktionhttps://www.heise.de/news/MacBook-Neo-Apple-verdoppelt-angeblich-Produktion-wegen-hoher-Nachfrage-11286300.html 00:39:32 Fehler bei DENIC führt zu Ausfall von .de-Domainshttps://www.heise.de/news/DNS-Probleme-mit-de-Domains-DENIC-liefert-erste-Erklaerung-11288197.html 00:48:57 RTS-Spiel R.U.S.E wieder auf Steam erhältlichhttps://store.steampowered.com/app/21970/RUSE/ 00:52:15 Vielen Dank! Bis zum nächsten Mal!

To The Point - Cybersecurity
Why Human Judgment Still Wins in the AI-Driven SOC with Monzy Merza - Part 2

To The Point - Cybersecurity

Play Episode Listen Later May 12, 2026 31:43


Welcome to another episode of Forcepoint's "To the Point Cybersecurity" podcast. This week, Rachael Lyon and Jonathan Knepher continue their deep-dive conversation with Monzy Merza, exploring the transformative impact of AI in security operations centers (SoCs) and the evolving landscape of cyber threats and defense. In this episode, Monzy Merza shares candid insights into building trust and confidence in AI tools, managing the surge in AI-generated data and requirements, and the crucial role of human judgment amid technological advancements. The discussion covers everything from the realities of AI-generated errors to the challenges and opportunities for defenders as attackers adopt agent-driven threats. For CISOs and SOC managers facing the daunting task of AI transformation, Monzy Merza offers practical strategies, hard-earned lessons from the front lines, and a glimpse into future-proofing your security teams. Tune in to hear what practitioners are really experiencing in the trenches and what key questions every leader should be asking in the race to integrate AI securely and effectively. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e380

Security Management Highlights
All About Agentic AI in Corporate Security

Security Management Highlights

Play Episode Listen Later May 4, 2026 43:44


Agentic artificial intelligence (AI) solutions are here, and they can both streamline and endanger your operations. In this episode, sponsored by global security integrator Northland Controls, the chair of the ASIS Emerging Technology Community, Quang Trinh, PSP, discusses some of the bad habits agentic AI can pick up from its users and how to help correct those assumptions. Then, Jordan Hill of Hivewatch explains how adding a flexible AI triage layer for alert monitoring can alleviate user stress, uncover activity patterns, and refine operations in SOCs. Technology writer Sage Lazzaro rounds out this episode by outlining the technical use cases of AI for security to mitigate liability risk, but also where agentic AI could complicate accountability. Additional Resources Learn more about this episode's sponsor, Northland Controls, here: https://www.northlandcontrols.com/ Read more about the importance of interoperability in security—especially during emergency response—in this sponsored article from Northland Controls CTO Henry Hoyne: https://www.asisonline.org/security-management-magazine/monthly-issues/security-technology/archive/2026/Agentic-AI/sponsored-interoperability-isnt-optional/ Explore the full Security Technology issue about agentic AI here: https://www.asisonline.org/security-management-magazine/monthly-issues/security-technology/archive/2026/Agentic-AI/ Start playing around with AI and upskill your knowledge with business courses on Coursera, as Quang Trinh, PSP, recommended: https://www.coursera.org/learn/agentic-ai ASIS members can access ASIS Upskill courses about AI for free, including sessions on AI essentials and practical AI uses at work. Explore all courses here: https://store.asisonline.org/learning-programs/asis-upskill.html Read Jordan Hill's article about how agentic AI can help address burnout in security operations centers: https://www.asisonline.org/security-management-magazine/monthly-issues/security-technology/archive/2026/Agentic-AI/human-and-tech-collaboration-how-socs-become-truly-intelligent/ Read Sage Lazzaro's deep dive into agentic AI and liability risk from Security Technology here: https://www.asisonline.org/security-management-magazine/monthly-issues/security-technology/archive/2026/Agentic-AI/Risk-vs-Reward-What-Security-Leaders-Need-to-Know-When-Using-Agentic-AI/ Explore more technology coverage by Sage Lazzaro here: https://www.sagelazzaro.com/ See new guidance from CISA, NCSC-UK, and other government agencies on implementing agentic AI safely: https://www.asisonline.org/security-management-magazine/latest-news/today-in-security/2026/may/agentic-ai-safety-guidance/ For more about how AI is affecting security, watch this on-demand ASIS webinar about navigating emerging AI-linked threats in the workplace: https://store.asisonline.org/ai-extremism-navigating-emerging-threats-in-the-workplace.html

Cybersecurity ist Chefsache - Der Podcast!
SOC-Ausschreibung: Wie Unternehmen Hunderttausende verbrennen

Cybersecurity ist Chefsache - Der Podcast!

Play Episode Listen Later May 4, 2026 55:16


In dieser Folge von „Cyber Security ist Chefsache" sprechen Nico und Ann-Katrin in einer Solo-Folge ohne externen Gast über das Thema Security Operations Center, kurz SOC. Es ist gleichzeitig die erste Folge nach längerer Pause, der Auftakt mit neuem Makeover und Nicos neuer Co-Host Ann-Kathrin, die als Security-Beraterin selbst tief in dem Thema steckt und ab sofort regelmäßig dabei ist.Zum Einstieg räumen die beiden mit einem Mythos auf: Nicht jedes SOC ist für jedes Unternehmen geeignet, und 24/7 ist nicht automatisch die richtige Antwort. Bevor man überhaupt über Anbieter, Vergleichbarkeit oder Preise spricht, muss klar sein, was das SOC eigentlich leisten soll, welche Risiken überhaupt überwacht werden und wie viel der eigene Betrieb noch selbst tragen kann.Ein zentraler Teil der Folge dreht sich um SOC-Ausschreibungen. Nico und Ann-Katrin zeigen mit vielen Beispielen aus der Beratungspraxis, warum genau dieser Beschaffungsweg in der Security so oft schiefgeht: Anbieter interpretieren Vorgaben unterschiedlich, geben generische Pauschalangebote ab, kopieren Anforderungen aus anderen Branchen oder nennen Referenzahlen, hinter denen man als Mittelständler nur eine kleine Nummer ist. Die Folge: Vergleichbarkeit, das eigentliche Ziel jeder Ausschreibung, ist am Ende oft gar nicht gegeben.Im weiteren Verlauf wird es konkret. Beide gehen detailliert auf Stolperfallen ein, die Unternehmen unbedingt auf dem Schirm haben sollten: Vendor-Lock-in, der oft erst beim Wechsel sichtbar wird, fehlende eigene Mannschaft im Hintergrund (zum Beispiel niemand, der nachts ein Passwort zurücksetzen kann, obwohl das SOC 24/7 alarmiert), reine Linearität der Ausschreibung, die der Realität eines SOC-Betriebs nicht gerecht wird, sowie kreative Preisgestaltungen, bei denen ein Anbieter eine Million, der nächste zehn Millionen aufruft und niemand mehr weiß, was eigentlich verglichen wurde.Spannend wird es bei einer kleinen Anekdote, die Nico aus seiner Beratungszeit mitbringt: Ein Kunde wird angegriffen, das eigene Monitoring schlägt an, der externe SOC-Dienstleister meldet sich aber nicht. Auf Nachfrage hieß es lapidar: „Doch, gesehen haben wir das, aber weil sich niemand gemeldet hat, sind wir davon ausgegangen, dass alles in Ordnung war." Genau solche Fälle, sagen die beiden, sind der Grund, warum eine SOC-Auswahl mehr braucht als ein gut formuliertes Lastenheft.Im Gespräch geht es außerdem um:Wann ein SOC sinnvoll ist und wann ein gut aufgestelltes internes Team reichtWarum 24/7 nicht für jedes Unternehmen die richtige Lösung istVendor-Lock-in als oft unterschätzte Red Flag bei Tooling-EntscheidungenWie man Referenzen wirklich auswertet, nämlich im direkten Gespräch mit aktiven Kunden, nicht nur über Logo-ListenWarum „SOC-Umsatz" oder „Mitarbeiterzahl" als KPI nur bedingt aussagekräftig sindWie man verhindert, dass die Vergleichbarkeit von Angeboten an unterschiedlichen vertrieblichen Auslegungen scheitertDen Unterschied zwischen Anbieter, Größe und Passung: Wer 500 Referenzen hat, kann großartig sein, oder man ist schlicht eine Nummer von vielenWarum Ausschreibungen für SOCs strukturell schwierig sind und zu generischen Antworten führenDen Praxistipp einer (gerne bezahlten) Probewoche oder eines Proof of Concepts vor jeder großen SOC-Vergabe, damit beide Seiten wissen, worauf sie sich einlassenNico und Ann-Kathrin geben einen sehr ehrlichen, hands-on-orientierten Einblick, was bei der Auswahl, Ausschreibung und Bewertung eines SOC wirklich zählt, und warum die scheinbar saubere Beschaffungslogik aus anderen IT-Bereichen bei Security oft genau das Falsche ist. Eine Folge für alle, die gerade vor einer SOC-Entscheidung stehen oder einen bestehenden Anbieter ehrlich auf den Prüfstand stellen wollen.____________________________________________

SECURE AF
Axios NPM Supply Chain Compromise – Lessons for SOCs on Third-Party Risks

SECURE AF

Play Episode Listen Later Apr 29, 2026 4:56 Transcription Available


Got a question or comment? Message us here!A malicious Axios NPM package highlights how quickly supply chain compromises can spread through trusted dependencies. In this #SOCBrief, we break down what happened, the risks to downstream applications, and what SOC teams should be monitoring to catch similar attacks early. Support the showWatch full episodes at youtube.com/@aliascybersecurity.Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.

OETA Movie Club Podcast
The Outsiders

OETA Movie Club Podcast

Play Episode Listen Later Apr 27, 2026 16:41


In Tulsa, Oklahoma in 1964, the rivalry between two gangs, the poor Greasers and the rich Socs, heats up when one gang member accidentally kills a member of the other.Support the showOETA - Home

BE THAT LAWYER
Frank Stephens: Closing the Cybersecurity Gaps Law Firms Ignore

BE THAT LAWYER

Play Episode Listen Later Apr 23, 2026 32:37


Cyberattacks against law firms are exploding, and most firms are far less protected than they think. In this episode, you'll learn how to close the biggest security gaps, modernize your tech, and treat IT as a growth engine instead of a necessary evil.   In this episode, Steve Fretzin and Frank Stephens discuss: Technical debt and outdated systems in law firms Cybersecurity attack vectors and real-world threats Cloud, backups, and the myth of “it's secure because it's in the cloud” Practical protections: MFA, training, SOCs, and remote access Evaluating vendors, cutting tech waste, and learning to delegate   Key Takeaways: Many law firms operate with significant technical debt and outdated workflows, which limit accessibility, flexibility, and security. A “we have a firewall and the cloud” mindset breeds dangerous false confidence; modern firms need layered protections across endpoints, email, cloud, and user behavior. Phishing remains the dominant entry point for breaches, making ongoing security awareness training just as critical as any software tool. Cloud platforms do not automatically guarantee robust backups or security, so firms must take ownership of their data retention, MFA, and backup strategies. Treating IT partners as strategic advisors, reviewing licenses, roadmapping upgrades, and delegating implementation, can both reduce risk and unlock significant cost savings and scalability.   "If you're don't have MFA on all your cloud solutions, you might as well just leave the doors open, and you'd be surprised at how many people don't put that in place." —  Frank Stephens   Check out my new show, Be That Lawyer Coaches Corner, and get the strategies I use with my clients to win more business and love your career again.   Ready to go from good to GOAT in your legal marketing game? Don't miss PIMCON—where the brightest minds in professional services gather to share what really works. Lock in your spot now: https://www.pimcon.org/   Thank you to our Sponsor! Rankings.io: https://rankings.io/ Lawyer.com: https://www.lawyer.com/   Ready to grow your law practice without selling or chasing? Book your free 30-minute strategy session now—let's make this your breakout year: https://fretzin.com/   About Frank Stephens: Frank Stephens founded Computing Technology Solutions (CTS) in 2001 with the idea that small and mid-sized businesses deserve the same IT proactive support, cybersecurity, and strategies that Fortune 500 organizations receive. Before starting CTS, Frank worked at several enterprise businesses such as Abbott, AT&T, CNA Insurance, and Microsoft. He is passionate about giving back to the community and has served on several boards, including the Salvation Army. Frank is married with three children, and his hobbies include boating, international travel, outdoor activities with his family, and coaching his sons' teams.   Connect with Frank Stephens: Website: https://www.onlinects.com/ LinkedIn: https://www.linkedin.com/in/frankstephens/   Connect with Steve Fretzin: LinkedIn: Steve Fretzin Twitter: @stevefretzin Instagram: @fretzinsteve Facebook: Fretzin, Inc. Website: Fretzin.com Email: Steve@Fretzin.com Book: Legal Business Development Isn't Rocket Science and more! YouTube: Steve Fretzin Call Steve directly at 847-602-6911   Audio production by Turnkey Podcast Productions. You're the expert. Your podcast will prove it.

Through the Pages
Stay Gold, Ponyboy | The Outsiders by S.E. Hinton

Through the Pages

Play Episode Listen Later Apr 16, 2026 64:42


In this month's episode, we dive into S.E. Hinton's The Outsiders, a coming-of-age novel that redefined young adult fiction - written by a young adult, for young adults. We explore the tensions between the Greasers and the Socs, unpack Ponyboy's search for identity, and discuss the novel's themes of class, loyalty, and belonging.Join us as we revisit this classic story and reflect on if and why it still resonates with readers today! Find us on Instagram @ThroughthePagesPod and let us know what you thought about this novel.

SECURE AF
Iranian APTs Targeting U.S. PLCs: OT Wake-Up Call for SOCs

SECURE AF

Play Episode Listen Later Apr 15, 2026 6:07 Transcription Available


Got a question or comment? Message us here!Iranian-affiliated APT actors are actively targeting U.S. critical infrastructure, specifically PLCs powering essential operations across water, energy, and manufacturing.This #SOCBrief breaks down the latest CISA alert, how attackers are exploiting OT environments, and what security teams need to be watching for right now. From key indicators to practical defense strategies, this is your wake-up call to treat OT as a high-value target.Support the showWatch full episodes at youtube.com/@aliascybersecurity.Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.

The Public Sector Show by TechTables
#230: LSU, NC A&T & SentinelOne on Student-Powered SOCs, Shadow AI Governance & Blocking Threats Before IT Calls

The Public Sector Show by TechTables

Play Episode Listen Later Apr 9, 2026 39:03


Episode SummaryIn this episode, Craig Woolley from LSU, Lizbeth Johnson from NC A&T, and Ron Ringgold from SentinelOne break down how a student-powered SOC model is scaling across 32+ institutions - and why the hardest part of cybersecurity leadership isn't the technology, it's the people.FeaturingCraig Woolley is CIO at LSU - 35 years in higher ed IT, architect of the student-powered SOC model now operating across 32+ institutions in partnership with TechStream, and chair of LSU's AI strategy committee that produced an 80-page institutional report.Lizbeth Johnson is Interim Chief Information Officer and Vice Chancellor for Information Technology at North Carolina Agricultural and Technical State University - three months into the CISO role after more than a year at NC A&T, bringing a change-agent approach to shadow AI governance and team-building on a growing campus.Ron Ringgold is Public Sector CISO at SentinelOne - former Army with 17 years in the Department of Defense and intelligence community, former architect of the Department of Commerce's zero trust strategy, and adjunct professor of cyber policy and governance at University of Maryland Global Campus.Timestamps(0:00) LSU's student-powered SOC - Craig Woolley on 35 years in higher ed IT and why the model works(2:00) Tiger SOC launches - scaling the LSU model to 32+ institutions and nine private industry customers(3:00) The grief of going from technician to leader - Lizbeth Johnson on the identity shift no one warns you about(9:00) Teaching cyber policy vs. living it - Ron Ringgold on why experienced practitioners sometimes make the hardest students(11:00) Shadow AI at NC A&T - how a vendor tipped off the CIO and turned a compliance risk into a partnership(14:00) Cutting Commerce's cyber budget 60% - Ron Ringgold on zero trust, bakeoffs, and building a unified security stack(20:00) The Neighborhood Watch - how 32+ schools share threat intelligence and auto-block attacks within 10 minutes(24:00) AI ROI at LSU - why Craig chaired an 80-page AI committee and what "low-hanging fruit" actually means(27:00) Building great teams - trust, empathy, and treating internal departments like customers(32:00) Open door, open calendar - Lizbeth on how she empowers her team to own their own 1-on-1 agendasListen now: YouTube x Apple x SpotifyWhenever you're ready, there are 3 ways you can connect with TechTables:1.

SECURE AF
Google Chrome Zero-Days Under Active Attack – What SOCs Need to Do Now

SECURE AF

Play Episode Listen Later Apr 8, 2026 5:27 Transcription Available


Got a question or comment? Message us here!Chrome just became the attack surface of the week.We're breaking down the latest zero-day exploits, what attackers are doing with them, and how SOC teams can respond before it turns into something bigger. Support the showWatch full episodes at youtube.com/@aliascybersecurity.Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.

Chattinn Cyber
Beyond Passwords: Passkeys, AI & Identity with Ben Wilcox

Chattinn Cyber

Play Episode Listen Later Apr 7, 2026 13:04


Summary On this episode of Chattinn Cyber, Marc is chattin' with Ben Wilcox, Chief Technology Officer and Chief Information Security Officer at ProArch. Their chat opens by focusing on high-impact, practical ways organizations can reduce cyber risk. Ben highlights identity as the top priority: his team moved to passkeys to remove passwords and lower the attack surface. He stresses that threat actors increasingly use man-in-the-middle techniques and that AI has accelerated the automation of credential-theft, which makes strengthening identity controls essential. The chat then moves to AI and data governance. Ben describes rolling out visibility tools to monitor internal AI use — what prompts users run and what data is fed into models — and pairing that with data labeling and classification. He warns organizations to restrict where AI tools are allowed and to implement compensating data controls to prevent accidental or intentional leaks of sensitive information. Ben cautions that AI and cybersecurity must be adopted in parallel, because AI will reveal existing misconfigurations and permission drift. He gives practical examples (like Copilot showing information a user shouldn't see because of incorrect permissions) to illustrate how AI surfaces weaknesses in access controls. The takeaway is that AI can be a force-multiplier but also a magnifier of existing security gaps. On leadership and tradeoffs, Ben explains how combining CTO and CSO responsibilities can be an enabler if balanced correctly. He argues for marrying a product/technology lens with a risk lens, leveraging internal expertise, and making business enablement and security complementary so organizations can move quickly while maintaining the right groundwork. Finally, Ben addresses translating cyber risk into financial terms for CFOs and boards. He recommends business impact analysis—linking key system outages (e.g., Active Directory) to production downtime costs—to quantify risk and justify security investments. He shares real incident cost ranges (low seven figures to tens of millions in some cases), underscores the role of compensating controls, and concludes with a call to monitor industry trends, assess outage and reputational costs, and prioritize risk reduction. Key Points Identity-first approach: move away from passwords (passkeys) and reduce reliance on MFA tokens that can be intercepted or automated by attackers. AI visibility and data controls: monitor internal AI usage, restrict sites/tools, and enforce labeling/classification to prevent data leakage. AI exposes existing weaknesses: adopting AI without fixing permission drift and misconfigurations surfaces risks rather than hiding them. Speed and detection advantage: AI can accelerate detection and response in SOCs—gaining even seconds can materially reduce impact. Translate risk to business terms: use business impact analysis to quantify downtime costs and build the financial case for security investments and insurance. Key Quotes “Last year we took the initiative and we moved to pass keys.” “AI has sped up that weaponization and being able to turn that around and get those tokens automatically.” “AI is going to expose the weaknesses that are inherent within your security controls that you already have in place.” “If we can get even 5 seconds faster or 10 seconds faster or 20 seconds faster, sometimes that makes a difference.” “And that’s why they should have bought cyber insurance.” About Our Guest Ben Wilcox is a seasoned technology leader with over 25 years of experience driving innovation and solving complex business challenges. Serving as both Chief Technology Officer and Chief Information Security Officer at ProArch, Ben combines a forward-looking vision with a hands-on approach to cybersecurity. He is passionate about leveraging technology to accelerate business outcomes while embedding security best practices into organizational culture and operations. Ben's strategic mindset and dedication to excellence have strengthened ProArch's resilience and helped protect clients' data and systems. Outside of work, Ben channels his relentless drive into racing as an instructor and competitor with the Northeast Audi Club, and enjoys gardening, cooking, and spending quality time with his family. As he puts it, “Security isn’t just about defending against threats—it’s about enabling trust, protecting growth, and ensuring every decision we make strengthens the foundation of the business.” Follow Our Guest LinkedIn | Website About Our Host National co-chair of the Cyber Center for Excellence, Marc Schein, CIC,CLCS is also a Risk Management Consultant at Marsh McLennan Agency. He assists clients by customizing comprehensive commercial insurance programs that minimize the burden of financial loss through cost effective transfer of risk. By conducting a Total Cost of Risk (TCoR) assessment, he can determine any gaps in coverage. As part of an effective risk management insurance team, Marc collaborates with senior risk consultants, certified insurance counselors, and expert underwriters to examine the adequacy of existing client programs and develop customized solutions to transfer risk, improve coverage and minimize premiums. Follow Our Host Website | LinkedIn

ITSPmagazine | Technology. Cybersecurity. Society
Continuous Security Validation in a World of Agentic AI | A Brand Spotlight at RSAC Conference 2026 with Matt Stewart and Alex Grohmann of Impetum

ITSPmagazine | Technology. Cybersecurity. Society

Play Episode Listen Later Apr 3, 2026 21:35


The security industry has spent years debating which tools to buy. Impetum is asking a different question: are the tools you already have actually working? Founded by incident responders who saw the same failures across hundreds of breaches, Impetum built the Persistent Purple Team platform to simulate advanced threat actors inside customer environments on a continuous monthly basis -- not as a one-time engagement, but as an ongoing relationship built around real data, custom TTPs, and a measurable Threat Resilience Score. Matt Stewart and Alex Grohmann spoke with Sean Martin and Marco Ciappelli at RSAC Conference 2026 about what they are hearing on the show floor: agentic AI is accelerating the speed of compromise and exposing vulnerabilities in legacy systems that have been dormant for decades. Against that backdrop, the value of knowing -- not assuming -- that your detection and response capabilities hold up becomes critical. The platform builds that knowledge through live-fire exercises using an organization's own data, validating patch management, XDR, SIEM tuning, and post-compromise detection in a way no annual pen test can. The conversation also touched on the structural talent problem agentic AI is creating inside SOCs. As AI fills the level one analyst role, the pipeline for developing level two analysts and incident responders is narrowing. Impetum sees persistent purple teaming as the training ground that closes that gap -- giving existing teams the repeated, realistic practice they need to respond with confidence when an actual breach begins. Impetum targets mid-size organizations that have the right security tools but lack the budget, bandwidth, and access to industry events to keep those tools continuously validated against evolving attack paths. For those teams, the platform delivers something an annual report cannot: a documented, ongoing record of what works, what does not, and where the program is heading. This is a Brand Spotlight. A Brand Spotlight is a ~15 minute conversation designed to explore the guest, their company, and what makes their approach unique. Learn more: https://www.studioc60.com/creation#spotlight GUEST Matt Stewart, Co-Founder, Impetum Alex Grohmann, Co-Founder, Impetum LinkedIn: https://www.linkedin.com/in/alexandergrohmann/ RESOURCES Impetum / Persistent Purple Team: https://www.persistentpurpleteam.com ITSPmagazine RSAC Conference 2026 coverage: https://www.itspmagazine.com/rsac-2026-conference-san-francisco-usa-cybersecurity-event-infosec-conference-coverage Are you interested in telling your story? ▶︎ Full Length Brand Story: https://www.studioc60.com/content-creation#full ▶︎ Brand Spotlight Story: https://www.studioc60.com/content-creation#spotlight ▶︎ Brand Highlight Story: https://www.studioc60.com/content-creation#highlight KEYWORDS Matt Stewart, Alex Grohmann, Impetum, Persistent Purple Team, Remedium Security, Sean Martin, RSAC Conference 2026, brand spotlight, brand story, brand marketing, marketing podcast, purple teaming, continuous security validation, threat resilience, CISO, security operations, SOC, red team, blue team, incident response, agentic AI, MITRE ATT&CK, penetration testing, cybersecurity Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

SECURE AF
Interlock Ransomware Hits Cisco FMC Zero-Day: Lessons for SOCs on Edge Device Security

SECURE AF

Play Episode Listen Later Apr 1, 2026 5:50 Transcription Available


Got a question or comment? Message us here!Your firewall could be the entry point. A critical Cisco FMC zero-day is being used in real-world ransomware attacks, turning security tools into launchpads. In this episode, we cover what's happening, how attackers are exploiting edge devices, and how SOC teams can stay ahead.Support the showWatch full episodes at youtube.com/@aliascybersecurity.Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.

SECURE AF
Chinese Hackers Breach FBI Surveillance Network: Supply-Chain Lessons for SOCs

SECURE AF

Play Episode Listen Later Mar 25, 2026 5:47 Transcription Available


Got a question or comment? Message us here!Suspected Chinese state-linked hackers breached an FBI surveillance network ... not by breaking through the front door, but through a third-party provider.In this episode of the #SOCBrief, we break down how the attack happened, why supply chain vulnerabilities are one of the biggest risks facing SOC teams today, and what this means for organizations of all sizes. From compromised vendor access to real-world detection strategies, we're covering how attackers are exploiting trusted connections, and how you can stay one step ahead.Support the showWatch full episodes at youtube.com/@aliascybersecurity.Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.

@BEERISAC: CPS/ICS Security Podcast Playlist
IT SOC vs OT SOC How & Why They're Different

@BEERISAC: CPS/ICS Security Podcast Playlist

Play Episode Listen Later Mar 6, 2026 26:17


Podcast: Industrial Cybersecurity InsiderEpisode: IT SOC vs OT SOC How & Why They're DifferentPub date: 2026-02-25Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationCraig and Dino tackle the critical differences between IT and OT Security Operations Centers, revealing why traditional IT-centric SOCs are failing to protect manufacturing environments.Drawing from real-world examples, including a global beverage company that discovered they were only monitoring one-third of their OT assets, the hosts expose the fundamental disconnect between IT security teams and operational technology environments.They discuss why IT SOCs struggle with OT visibility, the challenges of asset inventory in dynamic manufacturing environments, and the critical importance of localization in security operations.The conversation covers practical barriers like line changeovers, PLC modifications, remote access vulnerabilities, and the need for OT-specific incident response protocols.Craig and Dino emphasize that effective OT security requires IT teams to become embedded in plant operations, working collaboratively with OEMs and system integrators, and understanding the unique operational context of manufacturing assets.This episode is essential listening for CISOs, plant managers, and security professionals trying to bridge the IT-OT security gap.Chapters:(00:00:00) - The Two-Thirds Problem: When Your SOC Can't See Your Plant Floor(00:01:00) - The OT SOC Asset Visibility Problem: A Case Study(00:03:00) - Why IT SOCs Can't Manage OT Assets(00:05:00) - Line Changeovers and Operational Context(00:07:00) - First Responders and Incident Response Challenges(00:10:00) - The WannaCry Response Gap(00:12:00) - Asset Inventory and Baseline Challenges(00:15:00) - Incident Response and Phone Trees(00:17:00) - Organizational Accountability Problems(00:19:00) - Greenfield Opportunities and Standardization(00:22:00) - The IT-OT Collaboration Challenge(00:24:00) - Think Global, Act Local: Embedding IT in PlantsLinks And Resources:Want to Sponsor an episode or be a Guest? Reach out here.Industrial Cybersecurity Insider on LinkedInCybersecurity & Digital Safety on LinkedInBW Design Group CybersecurityDino Busalachi on LinkedInCraig Duckworth on LinkedInThanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you'd like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!The podcast and artwork embedded on this page are from Industrial Cybersecurity Insider, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

SECURE AF
Talking SOC Shop: How SOCs Show Value to Leadership

SECURE AF

Play Episode Listen Later Feb 25, 2026 12:11


Got a question or comment? Message us here!This episode of the #SOCBrief goes beyond day-to-day cybersecurity news and dives into what SOC success actually looks like from the leadership side. Andrew and CISO Jonathan Kimmitt discuss how SOC teams can communicate risk, create meaningful deliverables, use metrics effectively, and gain leadership buy-in for security decisions.From risk profiles to reporting and real-world decision making, this episode focuses on turning SOC activity into measurable organizational value.

DrZeroTrust
The Hidden Architecture Secrets Making Real-Time Security Data Possible

DrZeroTrust

Play Episode Listen Later Feb 24, 2026 31:11


Most organizations are drowning in data they can't process fast enough — leaving critical security gaps that adversaries exploit. Michael Cucchi, Chief Marketing Officer at Hydraulics, reveals how a groundbreaking new data architecture is transforming real-time security analytics, slashing processing costs by up to 40X while capturing every byte of telemetry across global networks.In this episode, you'll discover why traditional Security Information and Event Management (SIEM) systems are no longer sufficient for today's threat landscape. Michael breaks down the limitations of legacy data storage, ingestion bottlenecks, and costly rehydration issues that leave security teams blind during breaches. He shares how leading companies are adopting a new security data fabric designed for hyper-scalability, instant analysis, and unprecedented data retention — all at a fraction of the cost.We break down:The evolution and modern challenges of the SIM market, including why outdated architectures struggle with today's data volumes.How security analytics are rapidly moving toward real-time, agentic automation driven by AI and large-scale data fabrics.The critical importance of low-latency querying, cost-effective storage, and flexible architectures that enable security teams to operate at machine speed.Why the next wave of security operations will depend on maintaining and rehydrating vast, granular data stores without breaking the bank.How innovative companies like Hydraulics are building the emerging data fabric that will underpin zero-trust, AI-driven security in the years ahead.This episode is essential listening for security professionals, CTOs, and data architects eager to stay ahead of the exponential growth in security signals, threats, and complexity. Miss out on these insights, and your organization risks falling behind—armed only with legacy systems that can't keep up. A smarter, faster, cheaper future for security analytics is here.Plus, Michael shares exclusive research coming to RSA — including advances in AI-driven bots and zero trust frameworks. Whether you're defending enterprise assets or building next-generation SOCs, this conversation is your gateway to the future of security data management.Timestamps: 00:00 – Introduction and episode overview02:24 – Michael's background and experience in data science and security04:52 – How infrastructure and SIEM technologies have evolved over the past decade08:15 – Limitations of current SIEM architectures and data retention challenges12:10 – Hydraulics' approach to scalable, cost-effective security data platforms15:24 – The importance of real-time analytics in security operations17:00 – AI and automation in breach detection and incident response19:34 – Scaling security telemetry across global networks and CDN signals22:10 – The object-oriented storage analogy in security data management25:05 – Crossing the chasm: from traditional SIEM to real-time data fabric28:13 – Future of AI in security automation and the next decade in security tech31:01 – Final insights and how to connect with HydraulicsResources & Links:https://hydrolix.ioAWS Object StorageUnderstanding Data Fabrics in Security (hypothetical link)

Technology Tap
Pocket Revolution: How the iPhone Changed Technology and IT Skills Development

Technology Tap

Play Episode Listen Later Feb 23, 2026 34:33 Transcription Available


professorjrod@gmail.comIn this episode, we explore the 'Pocket Revolution' that transformed not just the phone but the entire technology landscape. Discover how the iPhone's breakthrough in multi-touch science, silicon strategy, and platform economics reshaped IT skills development and technology education. We also discuss the impact of Apple's innovation on enterprise communication and how understanding these shifts can help you in your CompTIA exam prep and tech certification journey. Whether you're studying with a group or using a CompTIA study guide, this episode connects revolutionary tech history with practical IT skills development tips to help you succeed.We dive into the hidden engine of the mobile era: the App Store. By standardizing distribution, payments, security reviews, and SDKs, Apple transformed a device into an ecosystem that seeded ridesharing, mobile banking, creator tools, and on‑demand everything. Security became everyday: sandboxing, code signing, and direct OS updates reduced risk for consumers while biometrics and secure enclaves made cryptography feel effortless. At the same time, attention and data became currency. Push notifications, infinite feeds, and engagement loops pulled us into a new marketplace where design and business models overlapped with our habits and mental health.Underneath the experience, custom silicon changed the game. We break down how Apple's SoCs integrated CPU, GPU, and neural engines to enable on‑device AI, privacy‑first biometrics, and unmatched performance per watt. Then we zoom out: supply chains as geopolitical power, BYOD reshaping workplace control, and regulation arriving as smartphones turn into infrastructure. Finally, we ask where we go from here—AR overlays, wearables, and ambient computing—or a cognitive leap where AI becomes the interface. Subscribe, share with a friend who still misses their keyboard, and leave a review telling us what you think replaces the smartphone next.Support the showArt By Sarah/DesmondMusic by Joakim KarudLittle chacha ProductionsJuan Rodriguez can be reached atTikTok @ProfessorJrodProfessorJRod@gmail.com@Prof_JRodInstagram ProfessorJRod

The Tech Addicts Podcast
Tech Addicts 2026 - I Saw Openclaw

The Tech Addicts Podcast

Play Episode Listen Later Feb 15, 2026 82:42


This week AI-driven RAM spikes are thinning phone specs, while uTag unlocks Samsung gear for all. KeyGo Gen 2 and NexPhone offer new hardware paths, Linux Mint 22.3 updates, and OpenClaw agents bring both utility and high-risk security warnings. With Gareth Myles and Ted Salmon Join us on Mewe RSS Link: https://techaddicts.libsyn.com/rss Direct Download | iTunes | YouTube Music | Stitcher | Tunein | Spotify  Amazon | Pocket Casts | Castbox | PodHubUK Feedback, Fallout and Contributions SomeGadgetGuy  on RAM Crisis For the RAM and component news, the most frustrating aspect of it is the speculation. The manufacturing and pricing IMMEDIATELY flipped based on the announcements from companies like OpenAI that they WOULD scale up. A company super deep in the red, generating no significant profits, just SAYING they were GOING to buy up 40% of the RAM decimated the entire consumer market. There should be antitrust investigations. When. It comes to mobile devices, we are seeing the first symptoms of component price hikes. Phones in 2025 we're largely similar to phones from 2024, often with a handful of downgrades to individual components to balance the costs of more expensive SOCs. This year, phones are even more similar to phones from 2025, and increasingly, we're seeing even more price cuts to pieces, like totally flat screens, or reducing the number of rear cameras, while we're still seeing price increases in a lot of regions. Im confident this trend will continue. As a fashion trend, companies will continue to push super thin phones as a way to sell an expensive device with fewer features. Rob DeLorean-Chamb  on uTag App I was listening to Ted on the podcast last week and heard him say he had some Samsung tags but because he hasn't got a Samsung phone he used the web interface but there is a 3rd party app that lets you natively control them as-if one's non-Samsung was actually a Samsung! UTag is an open source app too.   News KeyGo Gen 2 is a portable 2-in-1 display keyboard that can bring mini PCs to life Google confirms Gemini in Chrome is now available for Chromebook Plus laptops Attackers Attempt to Clone Google Gemini With Over 100,000 Prompts World's First 5-Ton 10-Seater eVTOL Takes Flight In China Razer's first gaming mouse is coming back with a £1,000 price tag 14 Years Later than Planned, NexPhone is Up for Preorder Banters: Knocking out a Quick Bant Linux Mint 22.3 (what's new)  OpenClaw looks interesting - Seems to get as many warnings as recommendations tho. Bargain Basement: Best UK deals and tech on sale we have spotted UGreen Ergonomic Mouse £13 from £20 BENFEI USB C to HDMI keyring - £6.85 UGreen FineTrack Duo (4-Pack) £30 from £45  INIU USB C to HDMI Adapter - £9.49 UGreen USB A/C Male/Female Adapters (2) £8 from £10 - for those who like to flipflop their gender and size! UGREEN NASync DXP4800 Plus 4-Bay NAS - £465.78 UGreen USB Microphone (for occasional Podcasters!) £24 from £37 HONOR Pad X7 - £69.99 Main Show URL: http://www.techaddicts.uk | PodHubUK Contact:: gareth@techaddicts.uk | @techaddictsuk Gareth - @garethmyles | Mastodon | Blusky | garethmyles.com | Gareth's Ko-Fi Ted - tedsalmon.com | Ted's PayPal | Mastodon | Ted's AmazonYouTube: Tech Addicts  

DH Unplugged
DHUnplugged #789: Crash Test For Dummies

DH Unplugged

Play Episode Listen Later Feb 4, 2026 65:40


WORST DAY EVER for SILVER Cold Snap in Florida – Massive Critter Drop New Fed Chair named Pausing on space PLUS we are now on Spotify and Amazon Music/Podcasts! Click HERE for Show Notes and Links DHUnplugged is now streaming live - with listener chat. Click on link on the right sidebar. Love the Show? Then how about a Donation? Follow John C. Dvorak on Twitter Follow Andrew Horowitz on Twitter Interactive Brokers  Warm-Up - WORST DAY EVER for SILVER - Cold Snap in Florida - Massive Critter Drop - New Fed Chair named - Pausing on space Markets - Bitcoin plunges - Crypto "winter" - Deep dive into January economic results - USD rises from multi-month low - EM still powered ahead - ELON - PT Barnum move Cold Snap - On February 1, 2026, Florida faced a significant drop in temperatures, reaching a record low of 24°F (-4°C) in Orlando. This marked the lowest temperature recorded in February since 1923. - Iguanas dropping from tress all over the streets - Iguanas can survive temperatures down to the mid-40s Fahrenheit (around 7°C) by entering a "cold-stunned" state, where they appear dead but are just temporarily paralyzed and immobile; however, prolonged exposure to temperatures in the 30s and 40s, especially below freezing, can be lethal, particularly for smaller individuals, leading to tissue damage and organ failure. - They get sluggish below 50°F (10°C) and fall from trees as they lose grip. - The Florida Fish and Wildlife Conservation Commission (FWC) issued Executive Order 26-03 on Friday, allowing residents to collect and surrender cold-stunned green iguanas without a permit during an unprecedented cold weather event. Right on Schedule - Remember we talked about how the Nat Gas price was going to reverse, just as quickly as it spikeed? - Nat gas down 25% today - down about 28% from recent high - Still about 50% higher than it was before the spike. THIS! - Nvidia Corp. Chief Executive Officer Jensen Huang said the company's proposed $100 billion investment in OpenAI  was “never a commitment” and that the company would consider any funding rounds “one at a time.” - “It was never a commitment,” Huang told reporters in Taipei on Sunday. “They invited us to invest up to $100 billion and of course, we were, we were very happy and honored that they invited us, but we will invest one step at a time.” Then Oracle announced that it will do a fundraiser in the form of equity and debt - needs to fund more datacenter build-out. - What happened to the OpenAI $300 Billion committment? - Or is the money that NVDA "committed to OpenAi, that they must have committed to Orcle, not a committment - GIGANTIC CIRCLE JERK Fungus - -Interesting - Did you know? Botrytis cinerea, a fungus causing grey mold, affects grapes by causing bunch rot, ruining fruit in high humidity. - While it often destroys crops, specific dry, warm conditions can transform it into "noble rot," concentrating sugars and creating high-value dessert wines (e.g., Sauternes, Tokaji) with honeyed, raisin-like, and apricot flavors. January Economic Review Employment — Job growth was nearly flat in December, with 50,000 new jobs added and earlier months revised lower. — Unemployment dipped slightly to 4.4%, but it's still higher than it was a year ago. — Long-term unemployment didn't change and remains high, and the labor force participation rate slipped to 62.4%. — Average hourly earnings rose 0.3% in December and are up 3.8% over the past year. — Weekly jobless claims stayed close to last year's levels, showing a labor market that is cooling but not weakening sharply. FOMC / Interest Rates — The Federal Reserve kept interest rates unchanged at 3.50%–3.75%. — Most policymakers agreed the economy continues to grow at a solid pace, though job gains are slowing and inflation remains above target. — Two committee members supported a small rate cut, but the majority preferred to wait. - Fed Chair Powell: Clearly, a weakening labor market calls for cutting. A stronger labor market says that rates are in a good place. It isn't anyone's base case right now that the next move will be a rate hike. - The economy has once again surprised us with its strength. Consumer spending numbers overall are good, and it looks like growth overall is on a solid footing. - Upside risks to inflation and downside risks to employment have diminished, but hard to say they are fully in balance. We think our policy is in a good place. - Overall, it's a stronger forecast since the Fed's last meeting. Haven't made any decisions about future meetings, but the economy is growing at a solid pace, the unemployment rate is broadly stable and inflation remains somewhat elevated, so we will be looking to our goal variables and letting the data light the way for us. - Most of the overrun in goods prices is from tariffs. We think tariffs are likely to move through, and be a one-time price increase. - Dissent: Miran and Waller (Miran is a admin shill and Waller wanted job as Fed Chair) GDP & Federal Budget — Economic growth remained strong in Q3 2025, with GDP rising at an annualized 4.4% driven by strong spending, higher exports, and reduced imports due to tariffs. — Investment was mixed, with business spending increasing while housing activity declined. — The federal deficit for December rose to $145 billion, though the fiscal year-to-date deficit is slightly smaller than last year. Inflation & Consumer Spending — Personal income and consumer spending rose moderately in October and November. — Inflation, measured by the PCE index, increased 0.2% in both months and roughly 2.7% year-over-year. — The Consumer Price Index rose 0.3% in December, with shelter, food, and energy all contributing. — Producer prices also increased, though 2025 producer inflation slowed compared to 2024. Housing — Existing home sales rose in December, but the number of homes for sale is still low. — Prices dipped a bit from November but remain higher than they were a year ago. — New-home sales in October were steady compared with the prior month but much higher than last year. — New-home prices fell compared to 2024, though they are still high relative to long-term norms. Manufacturing — Industrial production rose 0.4% in December and was up 2.0% for the year. — Manufacturing output increased, while mining activity declined and utility output jumped. — Durable goods orders grew sharply in November, driven by a big increase in transportation equipment, pointing to strong demand in key industries. Imports & Exports — Import and export prices rose slightly through November 2025. — The goods trade deficit widened in November because exports fell while imports increased. — For the year so far, both exports and imports are running above 2024 levels, though the overall trade deficit remains larger. Consumer Confidence — Consumer confidence fell sharply in January after improving in December. — Both views of current conditions and expectations for the future weakened, with expectations dropping well below the level that often signals recession risk. Earnings — Roughly one-third of S&P 500 companies have reported Q4 earnings, and overall results are strong. — 75% of companies have beaten EPS estimates, though this is slightly below long-term averages. Revenue beats remain solid at 65%. — Companies are reporting earnings 9.1% above estimates, which is well above the 5-and 10-year surprise averages. — The S&P 500 is on track for 11.9% year-over-year earnings growth, marking the 5th straight quarter of double-digit earnings growth. — Eight of eleven sectors are showing positive year-over-year earnings growth, led by Information Technology, Industrials, and Communication Services. — The Health Care sector shows the largest earnings declines among lagging categories. — The forward 12-month P/E ratio sits at ~22.2, elevated relative to 5-and 10-year averages, signaling continued optimism despite tariff and cost concerns. — FactSet also notes the S&P 500 is reporting a record-high net profit margin of 13.2%, the highest since 2009. INTERACTIVE BROKERS Check this out and find out more at: http://www.interactivebrokers.com/   S3XY No More - Tesla is ending production of the Model S sedan and Model X crossover by the end of Q2 2026 to focus on autonomous technology and humanoid robots (Optimus). - Do we have any idea with the TAM for either of these are? - Huge assumptions that Robotaxi will be a bug part of the global transportation. But, what if it isn't? - Unproven being built, taking out the proven - investors were not too happy about this...Stock was down after earnings showed continued sluggish EV sales and BIG Capex for Robotaxi refit, robots and chip manufacturing. But... - Friday - not to allow TESLA stock to move down tooo much. - With SpaceEx looking for an IPO in June - valuations have moved from $800B to 1.5T supposedly. - Now there is discussion of merging in xAI and possibly Tesla - Tesla shares dropped after earnings FED CHAIR PICK - Drumroll: Kevin Warsh - Seems like a good pick from the aspect of experience and ability - Deficit reducer? - More hawkish than market expected? - Announce Friday after several leaks in the morning And then... - Silver futures plummeted 31.4% to settle at $78.53, marking its worst day since March 1980. -It was down 35% during the day - the worst daily plunge ever on record. - It was the worst decline since the March 1980 Hunt Brothers crash. - The sharp moves down were initially triggered by reports of Warsh's nomination. - However, they gained steam in afternoon U.S. trading as investors who piled into the metals raced to book profits.- USD Spiked higher - Gold was down 10% - GOLD saw a drop of 10% to the close - 12% intraday - this was also a record - Bitcoin is down 25% from its recent level 2 weeks ago - ALL BEING BLAMED ON THE FED CHAIR PICK -- QUESTION - Will Trump back-peddle this OR talk to supporters in congress or tell them not to confirm him if markets continue to act squirrely? Fed Statement and Rates - Fed out with statement - no change on rates - Changes: Inflation up, employment steady, economy strong - Does not bode for much in the way of cuts - probably on hold though end of Powell term Apple Earnings - Apple reported blowout first-quarter earnings on Thursday, and predicted growth of as much as 16% in the current quarter, matching the period that just ended. - Sales could be even better, Apple said, if the company just secure enough chips to meet its customers' iPhone demands. - The company reported $42.1 billion in net income, or $2.84 per share, versus $36.33 billion, or $2.40 per share, in the year-ago period. - Apple saw particularly strong results in China, including Taiwan and Hong Kong. Sales in the region surged 38% during the quarter to $25.53 billion. - “The constraints that we have are driven by the availability of the advanced nodes that our SoCs are produced on, and at this time, we're seeing less flexibility in supply chain than normal,” Apple CEO Tim Cook said. - Stock up slightly - no great moves.... Blue Origin - Blue Origin will pause tourist flights to space for “no less than two years” to prioritize development of its moon lander and other lunar technologies. - The decision reflects Blue Origin's commitment to the nation's goal of returning to the Moon and establishing a permanent, sustained lunar presence. - The pause in tourist flights grounds the company's reusable New Shepard rocket, which has sent more than 90 people to the edge of space and back to experience brief periods of weightlessness. - Datacenters on the Moon? (sounds like a Pink Floyd album)     Love the Show? Then how about a Donation? ANNOUNCING THE WINNER OF THE THE CLOSEST TO THE PIN CUP 2025 Winners will be getting great stuff like the new "OFFICIAL" DHUnplugged Shirt!     FED AND CRYPTO LIMERICKS   See this week's stock picks HERE Follow John C. Dvorak on Twitter Follow Andrew Horowitz on Twitter

Detection at Scale
Compass' Ryan Glynn on Why LLMs Shouldn't Make Security Decisions — But Should Power Them

Detection at Scale

Play Episode Listen Later Jan 27, 2026 41:27


Ryan Glynn, Staff Security Engineer at Compass, has a practical AI implementation strategy for security operations. His team built machine learning models that removed 95% of on-call burden from phishing triage by combining traditional ML techniques with LLM-powered semantic understanding. He also explores where AI agents excel versus where deterministic approaches still win, why tuning detection rules beats prompt-engineering agents, and how to build company-specific models that solve your actual security problems rather than chasing vendor promises about autonomous SOCs.Topics discussed:Language models excel at documentation and semantic understanding of log data for security analysis purposesUsing LLMs to create binary feature flags for machine learning models enables more flexible detection engineeringAgentic SOC platforms sometimes claim to analyze data they aren't actually querying accurately in practiceTuning detection rules directly proves more reliable than trying to prompt-engineer agent analysis behaviorIntent classification in email workflows helps automate triage of forwarded and reported phishing attempts effectivelyCustom ML models addressing company-specific burdens can achieve 95% reduction in analyst workload for targeted problemsAlert tagging systems with simple binary classifications enable better feedback loops for AI-assisted detection tuningContext gathering costs in security make efficiency critical when deploying AI agents across diverse data sourcesQuery language complexity across SIEM platforms creates challenges for general-purpose LLM code generation capabilitiesExplainable machine learning models remain essential for security decisions requiring human oversight and accountabilityListen to more episodes: Apple Spotify YouTubeWebsite

Detection at Scale
Veeva Systems' Mike Vetri on Building Threat Operations Teams and AI-Powered Investigations

Detection at Scale

Play Episode Listen Later Jan 13, 2026 37:55


Mike Vetri, Sr. Director of Security Operations at Veeva Systems, reflects on transforming SOC investigations through AI-powered data aggregation and building threat operations teams with the analytical mindset required for proactive defense. Mike introduces the C3 Matrix framework for prioritizing security efforts across centers of gravity, crown jewels, and capability enablers, and explains the seven Ds of cyber defense from discovery through deception operations.  Drawing from 10+ years of Air Force cyber intelligence experience, Mike details why threat operations requires fundamentally different system-two thinking than detection engineering, and how this discipline shift moves organizations from reactive firefighting to proactive threat anticipation. He covers practical examples of AI cutting investigation time by aggregating data from multiple tools, the importance of defense in personnel for operational resilience, and strategies for preventing analyst burnout while maintaining effective security operations.  Topics discussed: How AI transforms insider threat investigations by aggregating workstation logs, browsing history, and DLP alerts into single queries The C3 Matrix framework prioritizes security controls across centers of gravity, crown jewels, and capability enablers based on organizational impact and recoverability Why threat operations requires system-two analytical thinking fundamentally different from the engineering mindset The seven Ds of cyber defense: discover, detect, deny, disrupt, degrade, destroy, and deception operations for comprehensive threat mitigation How deception operations provide the most accurate intelligence by studying adversary behavior in controlled environments The distinction between threat intelligence and threat operations, and why mature SOCs need teams focused on proactive defense strategies Defense in personnel ensures multiple team members can handle each security capability, preventing single points of failure Time-sensitive investigation scenarios where AI delivers maximum ROI by eliminating the need to manually query dozens of security tools The evolution of cyber threats from technical attacks to psychological warfare using AI to challenge human judgment and decision-making Why security culture must extend beyond traditional boundaries as AI-powered threats increasingly target HR processes, financial operations, and business functions Listen to more episodes:  Apple  Spotify  YouTube Website

mnemonic security podcast

We're kicking off the new year by taking a closer look at some of the threats that will shape 2026, and how they impact defenders.In this episode of the mnemonic security podcast, Robby welcomes Candid Wüest, Principal Security Advocate at xorlab, drawing on more than 25 years of experience in the field. After seeing Candid's talk “The Rise of AI-Driven Malware: Threats, Myths, and Defenses” at BlackHat Europe, Robby invited him to share his research and perspectives on the current state of AI-driven malware.They talk about the most common misunderstandings around AI-powered, AI-generated and AI-supported threats, as well as which types of LLM-related attacks Candid expects to make the news, and actually be effective, in 2026.Candid also shares his thoughts on how defenders' roles are evolving, where he has seen organisations successfully implement AI in defense, and why going back to basics still matters. They also explore some of the biggest topics from Black Hat Europe in December, including AI-enabled SOCs.Send us a text

SECURE AF

Got a question or comment? Message us here!This week's SOC Brief dives into why the holidays are prime time for cyberattacks

CISO Tradecraft
#264 - Behavioral Insights (with Dr. Dustin Sachs)

CISO Tradecraft

Play Episode Listen Later Dec 22, 2025 46:28


Most cybersecurity programs are built on rigid “best practices” that assume people will behave rationally, consistently, and exactly as policy dictates; even under stress, time pressure, and uncertainty. In reality, humans don't work that way. Cognitive bias, fatigue, incentives, and real-world constraints cause well-intentioned employees, analysts, and leaders to make decisions that quietly undermine security. The result? Incident response stalls, SOCs drown in noise, and organizations continue to repeat the same failures, even while believing they're “doing everything right.” In this episode of CISO Tradecraft, host G. Mark Hardy and Dr. Dustin Sachs demonstrate how applying behavioral science and human decision-making can radically improve cybersecurity outcomes. By designing security around how people actually think and operate, not how policies assume they do, leaders can build adaptable, resilient programs that work in the real world. Check out Dustin's new book: https://www.amazon.com/Behavioral-Insights-Cybersecurity-Security-Leadership/dp/1032998539 Dustin Sachs's Linkedin Profile: https://www.linkedin.com/in/dustinsachs/

The Bid Picture - Cybersecurity & Intelligence Analysis

Send Bidemi a Text Message!In this episode, host Bidemi Ologunde spoke with Bruce Johnson of TekStream Solutions to unpack how the Whole of State initiative—with the Louisiana State University, Splunk, and Amazon Web Services—is turning classrooms into 24/7, student-powered SOCs that launch graduates into mid-level roles. With nearly four decades in IT security, Bruce shares how opening the door to any discipline builds stronger teams and real-world readiness. How do these student SOCs keep organizations safe while students learn? What does a typical shift and escalation look like? Can a philosophy or nursing major really become an analyst? How is success measured—placements, detection speed, or something else? Where does AI help without replacing humans? And what changed as the model expanded to New Jersey Institute of Technology and Louisiana Tech University?Support for The Bid Picture Podcast comes from Black Rifle Coffee Company, a veteran-founded coffee brand roasting premium beans for people who love a strong start to the day. From bold blends to convenient ready-to-drink cans, Black Rifle Coffee keeps you fueled for whatever's ahead. Check them out at blackriflecoffee.com.Support for The Bid Picture Podcast comes from GymShark, performance apparel designed for people who take their training seriously. With gym-ready fits that move with you, GymShark helps you stay focused from warm-up to cooldown. Explore their latest drops at gymshark.com.Support for The Bid Picture Podcast comes from Uncommon Goods, an online marketplace filled with unique, independently made gifts. From clever gadgets to handcrafted home goods, Uncommon Goods helps you find something thoughtful for everyone on your list. Learn more at uncommongoods.com.Support the show

The CyberWire
The cloud that spies back.

The CyberWire

Play Episode Listen Later Dec 17, 2025 30:10


Researchers detail a years-long Russian state-sponsored cyber espionage campaign. Israel's cyber chief warns against complacency. Vulnerabilities affect products from Fortinet and Hitachi Energy. Studies show AI models are rapidly improving at offensive cyber tasks. MITRE expands its D3FEND cybersecurity ontology to cover operational technology. Texas sues smart TV manufacturers, alleging illegal surveillance. A fraudulent gift card locks an Apple user out of their digital life. Our guest is Doron Davidson from CyberProof Israel discussing agentic SOCs and agentic transformation of an MDR. Fat racks crack the stacks. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest On our Industry Voices segment, we are joined by ⁠Doron Davidson⁠, GM at ⁠CyberProof⁠ Israel, MD Security Operations, discussing agentic SOC and agentic transformation of an MDR. If you'd like to learn more be sure to check out ⁠CyberProof⁠. Tune into the full conversation here. Selected Reading Amazon Exposes Years-Long GRU Cyber Campaign Targeting Energy and Cloud Infrastructure (Live Threat Intelligence) IDF warns future cyberattacks may dwarf past threats (The Jerusalem Post) CISA reports active exploitation of critical Fortinet authentication bypass flaw (Beyond Machines) Hitachi Energy reports BlastRADIUS flaw in AFS, AFR and AFF Series product families (Beyond Machines) AI models are perfecting their hacking skills (Axios) AI Hackers Are Coming Dangerously Close to Beating Humans (WSJ) MITRE Extends D3FEND Ontology to Operational Technology Cybersecurity (Mitre) Texas sues biggest TV makers, alleging smart TVs spy on users without consent (Ars Technica) Locked out: How a gift card purchase destroyed an Apple account (Apple Insider) Racks of AI chips are too damn heavy (The Verge) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show.  Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

The Cybersecurity Defenders Podcast
Why most SOCs are failing (and how to fix them) with Alec Fenton from Foresite Cybersecurity

The Cybersecurity Defenders Podcast

Play Episode Listen Later Dec 10, 2025 41:33


On this episode of The Cybersecurity Defenders Podcast we speak with Alec Fenton, VP of Security Operations at Foresite Cybersecurity about his journey from SOC analyst to security leader.Alec Fenton is a seasoned Cyber Security professional with over 15 years of extensive experience across many IT domains. With a career spanning more than a decade, Alec has honed his expertise in addressing a broad spectrum of cybersecurity challenges, leveraging his analytical prowess and hands-on approach to leadership.Throughout his career, Alec has navigated the intricate landscape of IT security, working across various sectors including managed service providers and private companies. His tenure as an analyst in the cybersecurity space has not only equipped him with a deep understanding of emerging threats and vulnerabilities but has also shaped his leadership philosophy of "lead from the front."Alec's commitment to excellence and his unwavering dedication to staying ahead of the curve in the ever-evolving field of cybersecurity have earned him recognition as a trusted advisor and thought leader in the industry. When he's not immersed in the world of IT security, Alec enjoys spending time outdoors, and help coach his son's baseball/basketball teams.Support our show by sharing your favorite episodes with a friend, subscribe, give us a rating or leave a comment on your podcast platform. This podcast is brought to you by LimaCharlie, maker of the SecOps Cloud Platform, infrastructure for SecOps where everything is built API first. Scale with confidence as your business grows. Start today for free at limacharlie.io.

SECURE AF
U.S.-Venezuela Tensions: Cyber Risks for American SOCs

SECURE AF

Play Episode Listen Later Dec 3, 2025 6:32


Got a question or comment? Message us here!In this episode of the #SOCBrief, we dig into how world events can trigger cyber fallout that lands directly on the desks of security teams. From ransomware crews capitalizing on instability to hacktivists launching DDoS attacks and opportunistic actors going after vulnerable sectors, we talk through why geopolitical tension often leads to increased cyber activity. We break down real patterns, recent trends, and the warnings SOCs should be paying attention to right now ... plus practical defensive steps you can take to stay ahead of emerging threats. ⚠️

Technology Tap
A+ Fundamentals: Mobile Tech Era | CompTIA Study Guide Chapter 9

Technology Tap

Play Episode Listen Later Dec 2, 2025 30:28 Transcription Available


professorjrod@gmail.comLearn essential IT skills development for passing your CompTIA exams in mobile tech support. A detailed guide to the mobile era for tech exam prep.Phones aren't just gadgets anymore—they're identity, payments, photos, and the keys to work. We take you on a clear, practical tour of the mobile landscape that A+ technicians need to master, from touch layers and camera flex cables to SoCs, batteries, and the accessories that turn a slab of glass into a full workstation. Along the way, we connect the dots between hardware and human stakes: why a loose port mimics a dead battery, how a single certificate blocks corporate Wi‑Fi, and what swollen cells tell you about urgency and safety.We walk through laptop displays and storage—LCD vs OLED, CCFL vs LED backlights, SATA vs NVMe—and explain how soldered RAM and SSDs affect upgrade paths and purchasing advice. Then we map the wireless terrain: Wi‑Fi 5, Wi‑Fi 6, and Wi‑Fi 7 tradeoffs; Bluetooth profiles like A2DP and HID; NFC's tiny range with outsized impact; and mobile broadband with APN, hotspot, and plan pitfalls. On the software side, we compare iOS and Android security models, sandboxing, permissions, and backup strategies; we also show how iCloud, Google, and Exchange sync turn a reset from disaster into a routine fix.Security gets the spotlight: strong lock combos, malware symptoms that masquerade as battery or data issues, malicious QR codes, and why remote wipe is the right call for lost corporate devices. We share a tested troubleshooting playbook—start with simple checks like rotation lock, clean charging ports before replacing batteries, reseat camera cables before swapping modules, and confirm enterprise certs before blaming antennas. Finally, we double down on ethics and workflow: back up first, label everything, respect privacy, and return devices better than they arrived.If you care about faster fixes, safer data, and smarter mobile support, you'll find ready-to-use steps and exam-ready insights here. Subscribe, share with a friend who's studying for A+, and leave a review telling us the toughest mobile issue you want solved next.Psst! The Folium Diary has something it wants to tell you - please come a little closer...YOU can change the world - you do it every day. Let's change it for the better, together.Listen on: Apple Podcasts SpotifySupport the showArt By Sarah/DesmondMusic by Joakim KarudLittle chacha ProductionsJuan Rodriguez can be reached atTikTok @ProfessorJrodProfessorJRod@gmail.com@Prof_JRodInstagram ProfessorJRod

Detection at Scale
GreenSky's Ken Bowles on Auditing Controls before They Silently Fail

Detection at Scale

Play Episode Listen Later Nov 25, 2025 36:16


Over his 15-year journey through healthcare and financial services security, Ken Bowles, now Director of Security Operations at GreenSky, has collected a plethora of practical strategies for prioritizing crown jewels, managing cloud over-permissions, and building SOCs that scale effectively. He reflects on transforming security operations through AI and intelligent automation and discusses how AI is reducing analyst investigation time dramatically. Ken also asserts the importance of auditing security controls before they silently fail. The conversation touches on the evolving role of the MITRE framework, the concept of signaling versus alerting, and why embracing AI might be the best career move for security professionals navigating rapid technological change in cloud environments. Topics discussed: Building security operations programs around crown jewels and scaling outward to manage the most critical assets first. Managing over-permissions in cloud environments that have snowballed across multiple administrators without proper governance. Using AI to reduce analyst investigation time from 30 minutes to seconds through intelligent data enrichment and context. Creating true single-pane-of-glass visibility by connecting security tools and data sources for more effective threat detection. Training new security analysts with AI assistance to bridge knowledge gaps in SQL, SOAR platforms, and log analysis. Documenting institutional knowledge while encouraging analysts to trust their intuition when something doesn't look right. Understanding the limitations of impossible travel alerts and using AI to establish user behavior baselines for accurate detection. Applying the MITRE framework as a guideline rather than gospel, adapting detection strategies to specific organizational needs. Implementing signaling approaches that label security-relevant events without creating alert fatigue for security operations teams. Auditing security controls regularly to catch configuration drift and ensure protective measures remain effective over time.  Listen to more episodes:  Apple  Spotify  YouTube Website

Business of Tech
AI-Driven Cyber Threats Surge: SMBs Embrace MDR, Shadow AI, and Evolving Malware Tactics

Business of Tech

Play Episode Listen Later Nov 18, 2025 14:56


The rise of artificial intelligence (AI) in cyber attacks is prompting small and medium-sized businesses (SMBs) to adopt managed detection and response (MDR) services and explore autonomous security operations centers (SOCs). Research from TechAisle indicates that awareness of MDR among SMBs increased from 39% in 2023 to 61% in 2025, with 89% of mid-market firms prioritizing cyber resilience. This shift is driven by the need for effective security operations that do not rely on in-house expertise, as AI-driven threats evolve faster than traditional defenses can respond.A report from UpGuard highlights the prevalence of shadow AI, revealing that 68% of security leaders use unauthorized AI tools, with 90% of them bypassing corporate governance. This disconnect between security protocols and employee behavior underscores the need for organizations to adapt their governance strategies. Additionally, a significant cyber attack attributed to a Chinese state-sponsored group demonstrated AI's capability to autonomously conduct reconnaissance and data exfiltration, marking a shift in threat actor tactics.Retail executives are increasingly concerned about their employees' ability to identify genuine cyber threats, with 44% reporting a rise in cyber attacks. Despite this awareness, only 25% feel prepared for AI-driven incidents. The report emphasizes the necessity for retailers to adopt a resilience-focused approach, including improved application security and identity controls, to mitigate risks associated with sophisticated cyber threats. This highlights a broader trend across industries where reliance on employee training alone is insufficient to combat evolving threats.For Managed Service Providers (MSPs), these developments present both challenges and opportunities. The increasing complexity of cyber threats necessitates a shift towards operational models that prioritize continuous verification and behavioral analysis over traditional detection methods. MSPs can leverage this moment to guide organizations in developing effective cybersecurity strategies that address the preparedness gap, ensuring that clients are equipped to handle the evolving landscape of AI-driven attacks. Four things to know today00:00 AI-Powered Attacks Accelerate as SMB Security Transitions Toward Autonomous SOC Models, Exposing a Governance Gap Around Shadow AI06:43 Retail Executives Report Rising AI-Driven Threats and Low Preparedness, Underscoring the Shift from User Training to Resilience08:50 Stealthier North Korean Campaigns and a Fragmented Ransomware Ecosystem Signal Rising Detection Challenges for MSPs11:49 Cork's New Vantage Platform Targets Unified MSP Risk Validation — But Its Visibility Metrics Demand Scrutiny This is the Business of Tech.     Supported by:  https://mailprotector.com/mspradio/

Hacker Valley Studio
Can AI Run Your SOC Better Than You? with Ahmed Achchak

Hacker Valley Studio

Play Episode Listen Later Nov 13, 2025 32:48


What if your security team never missed a single alert and actually had time to think strategically? In this episode, Ahmed Achchak, CEO and Co-Founder of Qevlar AI, reveals how autonomous SOCs are reshaping security operations worldwide. From tackling alert fatigue to empowering analysts with intelligent AI-driven investigations, Ahmed shares the inside story of building a system that can act on threats faster than any human alone. Learn how Qevlar's innovative approach is giving organizations clarity, control, and measurable ROI while freeing security teams to focus on what truly matters. Impactful Moments 00:00 - Introduction 01:30 - Founding Qevlar AI by chance 03:30 - Inefficiency of current SOCs 05:00 - Augmenting analysts, not replacing them 08:00 - AI investigating alerts at scale 11:30 - How autonomous agents handle phishing 14:30 - Why tackling all alerts maximizes ROI 17:30 - Graph technology as investigation backbone 25:00 - Limitations and randomness of LLMs 30:30 - Advice for testing AI in SOCs Links Connect with our guest Ahmed on LinkedIn: https://www.linkedin.com/in/ahmed-achchak-872554109/   Check out Qevlar's website: https://www.qevlar.com/   Check out our upcoming events: https://www.hackervalley.com/livestreams Join our creative mastermind and stand out as a cybersecurity professional: https://www.patreon.com/hackervalleystudio Love Hacker Valley Studio? Pick up some swag: https://store.hackervalley.com Continue the conversation by joining our Discord: https://hackervalley.com/discord Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/    

MacBreak Weekly (Audio)
MBW 991: The Naughty List - iPhone Air's Impressive Thin Design

MacBreak Weekly (Audio)

Play Episode Listen Later Sep 24, 2025 141:15


Is the new iPhone 17 Pro and Pro Max susceptible to scratches? iFixit tears down the new iPhone Air! New immersive films are coming to the Apple Vision Pro. And is TechWoven better than its predecessor, FineWoven? iPhone 17 Pro, iPhone 17 Pro Max units cited as readily susceptible to scratches and scuffs. The wafer-thin iPhone Air is surprisingly strong. iPhone Air teardown reveals that Apple's thinnest iPhone is still very repairable. Apple announces a new set of immersive film releases. Apple's new Vision Pro films among first shot on Blackmagic Ursa Cine Immersive Cameras. Apple spotted filming in 3D at iPhone 17 launch. Two years after the FineWoven fiasco, is TechWoven better? New iPhone 17 unveiled in Moscow, as pre-orders jump despite slowing economy. Worried about phone searches? 1Password's (a sponsor of the TWiT network) Travel Mode can clean up your data. Tap to Pay on iPhone comes to yet more European countries. Apple to fix camera glitch affecting iPhone Air and iPhone 17 Pro. Inside the Apple audio lab where AirPods are tested and tuned. I went inside Apple's Labs to see how Apple Watch connectivity is tested. A19 Pro's Geekbench 6 'Performance Per Watt' analysis; achieves highest multi-core score against all SoCs with 34% better efficiency. Memory Integrity Enforcement changes the game on iOS. Liquid Glass is causing a disorienting optical illusion for some iPhone users. $599 MacBook with iPhone chip expected to enter production this year. Apple steps up war of words with European regulators. Here's everything Trump is changing with H-1B visas. Picks of the Week Jason's Picks: Final Cut Camera & Final Cut Pro for iPad. Alex's Pick: Revopoint MetroX Andy's Pick: Epson MX-80 Fonts by Micahel Walden. Hosts: Leo Laporte, Alex Lindsay, Andy Ihnatko, and Jason Snell Download or subscribe to MacBreak Weekly at https://twit.tv/shows/macbreak-weekly. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsor: threatlocker.com