Podcasts about Zscaler

A huge morning for AI and the tech trade: Carl Quintanilla, Leslie Picker, and David Faber kicked off the hour with fresh news out of OpenAI - closing a $110 billion funding round in the largest private tech financing on record. HSBC'S Chief Multi-Asset Strategist joined the team with his tech playbook - before later on, longtime industry investor Dan Niles gave his take on the headlines and the stocks he would be buying here. Plus: 2 software CEOs joined the team to breakdown earnings from their companies - and very different stock reactions... Zscaler's CEO Jay Chaudhry, along with Autodesk CEO Andrew Anagnost.  Elsewhere this hour: Paramount winning the war for Warner Brothers Discovery - but what comes next? David brought the latest headlines and color... Plus, the news hitting Financial stocks in the early trade. Squawk on the Street Disclaimer Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Kevin Rubin, CFO of Zscaler (ZS), talks about his company's earnings which shows a 25% ARR increase. With AI accelerating year-over-year, Kevin talks to investors about ways ZScaler is using the evolving tech to protect against outside AI risks. He later notes the company's acquisitions and long-term growth opportunities they present. ======== Schwab Network ========Empowering every investor and trader, every market day.Options involve risks and are not suitable for all investors. Before trading, read the Options Disclosure Document. http://bit.ly/2v9tH6DSubscribe to the Market Minute newsletter - https://schwabnetwork.com/subscribeDownload the iOS app - https://apps.apple.com/us/app/schwab-network/id1460719185Download the Amazon Fire Tv App - https://www.amazon.com/TD-Ameritrade-Network/dp/B07KRD76C7Watch on Sling - https://watch.sling.com/1/asset/191928615bd8d47686f94682aefaa007/watchWatch on Vizio - https://www.vizio.com/en/watchfreeplus-exploreWatch on DistroTV - https://www.distro.tv/live/schwab-network/Follow us on X – https://twitter.com/schwabnetworkFollow us on Facebook – https://www.facebook.com/schwabnetworkFollow us on LinkedIn - https://www.linkedin.com/company/schwab-network/About Schwab Network - https://schwabnetwork.com/about

Zscaler CEO Jay Chaudhry sits down with Bloomberg's Carol Massar, Tim Stenovec and Mandeep Singh to discuss the company's latest earnings report, agentic artificial intelligence, and more.See omnystudio.com/listener for privacy information.

In der heutigen Folge sprechen die Finanzjournalisten Anja Ettel und Holger Zschäpitz über einen Absturz bei Nvidia, einen Rebound bei Software und eine Wende im Warner Brothers Drama. Außerdem geht es um Atlassian, Zscaler, Datadog, Applovin, Crowdstrike, Workday, Salesforce, Opendoor, Intuitive Machines, Carvana, IonQ, Rigetti, Netflix, Paramount Skydance, Allianz, Deutsche Telekom, Münchener Rück (Munich Re), Scout24, Heidelberg Materials, Deutsche Börse, Kion, Hensoldt, Puma, Block (Square), WiseTech, Amazon, Nike, Verizon, Papa Johns, Pinterest, Autodesk, Ebay, UPS, Hypoport, Xtrackers MSCI World Industrials ETF (WKN: A113FN), Amundi S&P World Industrials Screened ETF (WKN: A3DSTE), iShares MSCI Europe Industrials Sector ETF (WKN: A2QBZ6), iShares S&P 500 Industrials Sector ETF (WKN: A142N0). Wir freuen uns an Feedback über aaa@welt.de. Noch mehr "Alles auf Aktien" findet Ihr bei WELTplus und Apple Podcasts – inklusive aller Artikel der Hosts und AAA-Newsletter. Hier bei WELT: https://www.welt.de/podcasts/alles-auf-aktien/plus247399208/Boersen-Podcast-AAA-Bonus-Folgen-Jede-Woche-noch-mehr-Antworten-auf-Eure-Boersen-Fragen.html. Der Börsen-Podcast Disclaimer: Die im Podcast besprochenen Aktien und Fonds stellen keine spezifischen Kauf- oder Anlage-Empfehlungen dar. Die Moderatoren und der Verlag haften nicht für etwaige Verluste, die aufgrund der Umsetzung der Gedanken oder Ideen entstehen. Hörtipps: Für alle, die noch mehr wissen wollen: Holger Zschäpitz können Sie jede Woche im Finanz- und Wirtschaftspodcast "Deffner&Zschäpitz" hören. +++ Werbung +++ Du möchtest mehr über unsere Werbepartner erfahren? Hier findest du alle Infos & Rabatte! https://linktr.ee/alles_auf_aktien Impressum: https://www.welt.de/services/article7893735/Impressum.html Datenschutz: https://www.welt.de/services/article157550705/Datenschutzerklaerung-WELT-DIGITAL.html

Markets digest a wave of earnings as volatility lingers and NVIDIA struggles to hold gains. Why NVIDIA's pullback matters and what it could mean for the broader AI trade. Results roll in from Block, Dell, Intuit, Autodesk, CoreWeave, Flutter and Zscaler, shaping sentiment across payments, enterprise tech and infrastructure. Saira Malik, Chief Investment Officer at Nuveen, argues that four forces are driving volatility: trade policy, central bank leadership, AI disruption and developments in the Middle East. She explains why earnings must do the heavy lifting as elevated valuations limit upside and why fixed income fundamentals remain solid even as defaults tick higher. Bradley Tusk of Tusk Ventures joins to discuss where VC is placing its money in tech. Aneesha Sherman of Bernstein explains why TJX's experiential model may protect its premium multiple and outlines her $175 price target. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

In this episode of Planning Aces, CFO Kevin Rubin of Zscaler, CFO Bruce Schuman of Universal Technical Institute, and CFO Razzak Jallow of FloQast share how disciplined FP&A leadership is shaping AI adoption. Rubin frames AI as a capital allocation exercise governed centrally to prevent tool sprawl. Schuman stresses foundational readiness—data governance, ERP consolidation, and process redesign—before deploying AI-driven forecasting. Jallow cautions against fragmented “spaghetti AI,” advocating for platform coherence and skill development. Together, they reveal that AI success in FP&A depends less on speed and more on governance, architecture, and trust in the planning process.

Anthropic's Hidden Claude 1, Market-Shaking AI Tools, and MIT's One-Step 3D-Printed Electric Motor Host Jim Love covers three major stories: Anthropic CEO Dario Amodei's comments on AI governance and safety, including that "Claude 1" was built before ChatGPT but not released because it didn't meet Anthropic's alignment and safety bar; how Anthropic's recent launches—Claude for knowledge-work "cowork" workflows, deeper office/document integrations, Claude Code Security for vulnerability scanning, and tooling to automate parts of COBOL modernization—coincided with sharp market reactions including declines in CrowdStrike and Zscaler (around 10–11%) and a major IBM drop (more than 13%) amid fears AI could disrupt SaaS, cybersecurity, and legacy modernization revenue; and MIT researchers' report of a 3D printing process that produces a fully functional linear electric motor in a single step (aside from magnetization), with reported material cost around 50 cents in a lab setting, raising the prospect of on-demand manufacturing and compressed supply chains. The episode also includes sponsorship messages about Meter's integrated wired, wireless, and cellular networking stack. Hashtag Trending would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale. You can find them at Meter.com/htt 00:00 Headlines and Sponsor 00:45 Amodei vs Altman 01:29 Claude 1 Not Shipped 03:19 Anthropic Shakes Markets 04:57 AI Hits Cybersecurity 05:28 COBOL Modernization Shock 08:10 MIT Prints Electric Motor 09:39 Manufacturing Disruption 10:26 Wrap Up and Thanks

In this episode of Planning Aces, CFO Kevin Rubin of Zscaler, CFO Bruce Schuman of Universal Technical Institute, and CFO Razzak Jallow of FloQast share how disciplined FP&A leadership is shaping AI adoption. Rubin frames AI as a capital allocation exercise governed centrally to prevent tool sprawl. Schuman stresses foundational readiness—data governance, ERP consolidation, and process redesign—before deploying AI-driven forecasting. Jallow cautions against fragmented "spaghetti AI," advocating for platform coherence and skill development. Together, they reveal that AI success in FP&A depends less on speed and more on governance, architecture, and trust in the planning process.

In der heutigen Folge sprechen die Finanzjournalisten Anja Ettel und Holger Zschäpitz über Enttäuschung bei Novo Nordisk, Gileads Milliarden-Move und Übernahmefantasie bei Paypal. Außerdem geht es um Mongo DB, Zscaler, Datadog Doordash, American Express, Mastercard, Visa, Novo Nordisk, Eli Lilly, Gilead, Arcellx, Domino's, IBM, PayPal, BMW, VW, Mercedes-Benz, SAP, Infineon, Cloudflare, Crowdstrike, Zscaler, KKR, Blackstone, Apollo, GE Vernova, L&G Gold Mining ETF (WKN: A12CCL), L&G DAX Daily 2x Short (WKN: A0X8ZS), Amundi Core MSCI USA (WKN: ETF154), iShares MSCI USA (WKN: A0YEDU), SPDR S&P 500 (WKN: A3EUC1), UBS Core S&P 500 (WKN: A41DL0), SPDR S&P 500 Leaders (WKN: A2PSPE), iShares Core MSCI World (WKN: A0RPWH), Ark Innovation ETF (A14Y8H) und SPDR MSCI All Country World IMI (WKN: A1JJTD). Wir freuen uns an Feedback über aaa@welt.de. Noch mehr "Alles auf Aktien" findet Ihr bei WELTplus und Apple Podcasts – inklusive aller Artikel der Hosts und AAA-Newsletter. Hier bei WELT: https://www.welt.de/podcasts/alles-auf-aktien/plus247399208/Boersen-Podcast-AAA-Bonus-Folgen-Jede-Woche-noch-mehr-Antworten-auf-Eure-Boersen-Fragen.html. Der Börsen-Podcast Disclaimer: Die im Podcast besprochenen Aktien und Fonds stellen keine spezifischen Kauf- oder Anlage-Empfehlungen dar. Die Moderatoren und der Verlag haften nicht für etwaige Verluste, die aufgrund der Umsetzung der Gedanken oder Ideen entstehen. Hörtipps: Für alle, die noch mehr wissen wollen: Holger Zschäpitz können Sie jede Woche im Finanz- und Wirtschaftspodcast "Deffner&Zschäpitz" hören. +++ Werbung +++ Du möchtest mehr über unsere Werbepartner erfahren? Hier findest du alle Infos & Rabatte! https://linktr.ee/alles_auf_aktien Impressum: https://www.welt.de/services/article7893735/Impressum.html Datenschutz: https://www.welt.de/services/article157550705/Datenschutzerklaerung-WELT-DIGITAL.html

Ihr kriegt aktuell 25 € vom Scalable-ETF, wenn ihr ein neues Konto eröffnet und nutzt. Dazu unterstützt ihr auch noch diesen Podcast. Mehr Infos gibt's hier. Oberstes Gericht kippt Trumps Zölle. Er macht mit 15% weiter. NVIDIA will in OpenAI investieren. OpenAI verdreifacht Umsatz, verfehlt Margenziel. Moncler zieht Luxusbranche hoch. Comfort Systems & Corning boomen mit Rechenzentren. Okta, CrowdStrike & Zscaler crashen. Software-Sektor hat den schlechtesten Jahresstart seit der Finanzkrise. Schuld ist KI. Aber sind SAP, Salesforce & Co. wirklich bedroht? Wir schauen auf Burggräben, Bewertungen und wo in der KI-Welt das Geld am Ende landet. Diesen Podcast vom 23.02.2026, 3:00 Uhr stellt dir die Podstars GmbH (Noah Leidinger) zur Verfügung.

In today's Tech3 from Moneycontrol, we bring you a quick wrap from the India AI Impact Summit. The New Delhi declaration, which will be the consensus outcome of the India AI Impact Summit, has more than 70 countries already signed on and the number is expected to cross 80 on February 21, Sarvam outlines its cautious scaling plans under the IndiaAI Mission. Zscaler and Cisco weigh in on sovereign tech and talent debates, India signs the Pax Silica supply chain pact with the US, and Livspace lays off around 1,000 employees and cofounder quits the firm amid an AI-led reorganisation.

This discussion features Juan Cobo, the Global CISO of Ferrovial, and Pablo Vera from Zscaler as they examine the evolving landscape of corporate cybersecurity. They emphasize that risk management must be proactive, particularly as multinational companies face complex geopolitical threats and the rise of insider vulnerabilities caused by employee errors. A significant portion of the conversation focuses on Artificial Intelligence, identifying it as both a sophisticated tool for attackers and a vital defense mechanism for identifying behavioral anomalies. The experts advocate for a Zero Trust architecture to minimize attack surfaces and stress the necessity of industrializing recovery processes to ensure business resilience. Ultimately, they conclude that integrating security into the initial stages of digital transformation is essential for maintaining operational continuity in an increasingly volatile global environment. Twitter: @ciberafterwork Instagram: @ciberafterwork Panda Security: https://www.pandasecurity.com/es/ +info: https://psaneme.com/ https://bitlifemedia.com/ https://www.vapasec.com/ VAPASEC https://www.vapasec.com/ https://www.vapasec.com/webprotection/

Se trata de una conversación entre líderes de ciberseguridad de Ferrovial y Zscaler sobre los complejos desafíos de proteger una corporación multinacional,. Los expertos destacan que la gestión de riesgos es ahora una función empresarial central que requiere una arquitectura de Zero Trust (Confianza Cero) para mitigar las amenazas, tanto de hackers sofisticados como de errores involuntarios de empleados internos. Una parte significativa de la discusión se centra en la Inteligencia Artificial, resaltando su papel en la automatización de la detección de amenazas mediante la identificación de patrones y anomalías, al tiempo que se reconoce que esta tecnología también proporciona nuevas herramientas para los atacantes, como campañas de ataque extremo a extremo,,. Los especialistas abogan por industrializar los procesos de recuperación y mejorar la ciberresiliencia para garantizar que las infraestructuras críticas puedan seguir operando incluso durante incidentes de seguridad activos. En última instancia, las fuentes concluyen que la ciberseguridad es un motor de la transformación digital, lo que exige una innovación constante para mantenerse a la vanguardia de los riesgos geopolíticos en evolución y los cambios tecnológicos acelerados. Twitter: @ciberafterwork Instagram: @ciberafterwork Panda Security: https://www.pandasecurity.com/es/ +info: https://psaneme.com/ https://bitlifemedia.com/ https://www.vapasec.com/ VAPASEC https://www.vapasec.com/ https://www.vapasec.com/webprotection/

On this episode analyzes current cybersecurity challenges, highlighting that artificial intelligence (AI) is both an opportunity for productivity and a risk if its adoption is uncontrolled. Experts from Ferrovial and Zscaler discuss growing threats, such as mass extortion campaigns and the bribery of employees to act as "insiders," facilitating access for attackers. To combat this, the Zero Trust (zero trust) model is proposed to limit privileges, alongside the use of AI itself to detect behavioral anomalies. Juan Cobo highlights that the CISO's role is fundamental for cultural transformation and risk management in critical infrastructures, which are increasingly affected by current geopolitics. For his part, Pablo Vera underlines the importance of protecting industrial environments (OT and IoT) through device isolation. The future of the sector focuses on cyber resilience, the industrialization of incident recovery processes, and compliance with international regulations. Finally, it is noted that AI enables the creation of more perfect and harder-to-detect phishing attacks in Spanish. Twitter: @ciberafterwork Instagram: @ciberafterwork Panda Security: https://www.pandasecurity.com/es/ +info: https://psaneme.com/ https://bitlifemedia.com/ https://www.vapasec.com/ VAPASEC https://www.vapasec.com/ https://www.vapasec.com/webprotection/

En este episodio anlizamos los desafíos actuales de la ciberseguridad, destacando que la inteligencia artificial (IA) es tanto una oportunidad para la productividad como un riesgo si su adopción es descontrolada. Expertos de Ferrovial y Zscaler discuten amenazas crecientes, como las campañas de extorsión masiva y el soborno a empleados para que actúen como "insiders", facilitando el acceso a los atacantes. Para combatir esto, se propone el modelo de Zero Trust (confianza cero) para limitar privilegios y el uso de la propia IA para detectar anomalías de comportamiento. Juan Cobo destaca que el rol del CISO es fundamental para la transformación cultural y la gestión de riesgos en infraestructuras críticas, las cuales se ven afectadas por la geopolítica actual. Por su parte, Pablo Vera subraya la importancia de proteger entornos industriales (OT e IoT) mediante el aislamiento de dispositivos. El futuro del sector se centra en la ciberresiliencia, la industrialización de los procesos de recuperación ante incidentes y el cumplimiento de normativas internacionales. Finalmente, se advierte que la IA permite crear ataques de "phishing" en español más perfectos y difíciles de detectar. Twitter: @ciberafterwork Instagram: @ciberafterwork Panda Security: https://www.pandasecurity.com/es/ +info: https://psaneme.com/ https://bitlifemedia.com/ https://www.vapasec.com/ VAPASEC https://www.vapasec.com/ https://www.vapasec.com/webprotection/

When Kevin Rubin arrived at Zscaler in May 2025, he joined an established organization following the retirement of the company's longtime CFO, taking responsibility for continuing the work of a finance leader who had already built a strong foundation. Rubin describes stepping into a business with scale, experienced leadership, and a customer base that included some of the world's largest enterprises, he tells us.In explaining what Zscaler does, Rubin walks through the company's core idea: zero trust. Traditional cybersecurity, he says, relied on network-centric “castles and moats,” requiring large amounts of equipment to connect people, applications, and data. Zscaler challenged that model by treating the internet as a “superhighway” and applying a principle of minimal access. If an employee wants to use Salesforce or email, Rubin explains, the system first authenticates the user and then limits access to only what that person is authorized to see, he tells us.Zscaler was founded in 2007 and went public in 2018, Rubin tells us. Today, roughly 40 percent of the Global 2000 and about 45 percent of the Fortune 500 use the company's platform. Rubin attributes that adoption to a model that delivers security with less overhead and infrastructure than traditional approaches, he tells us. At its core, he says, cybersecurity comes down to two problems: stopping malicious activity from entering the network and preventing sensitive data from leaving it.Reflecting on his first 100 days, Rubin says the transition was shaped by continuity and people. He describes a welcoming executive team and an organization already positioned for growth. Cybersecurity, he notes, remains a dynamic market, with new vulnerabilities constantly emerging, and staying ahead of those threats continues to define the work ahead, Rubin tells us.

Please enjoy this encore of Career Notes. Deepen Desai, Global Chief Information Security Officer at Zscaler, shares his story as a doctor that treats computer viruses. He describes how he got into the security field and his work with Zscaler. He says what it's like learning and growing in this field and shares great advice for people who are up and coming in the field. Deepen describes working with an incredible team and how much joy it brings him to see his team learning and growing beyond their roles working with him. He says he want's to be remembered as a mentor among his colleagues. He says "I still remember my first team that I built, 15 years ago. Most of those guys are leading key technologies at many of the major security vendors, and some of them are still with me." We thank Deepen for sharing his story. Learn more about your ad choices. Visit megaphone.fm/adchoices

Please enjoy this encore of Career Notes. Deepen Desai, Global Chief Information Security Officer at Zscaler, shares his story as a doctor that treats computer viruses. He describes how he got into the security field and his work with Zscaler. He says what it's like learning and growing in this field and shares great advice for people who are up and coming in the field. Deepen describes working with an incredible team and how much joy it brings him to see his team learning and growing beyond their roles working with him. He says he want's to be remembered as a mentor among his colleagues. He says "I still remember my first team that I built, 15 years ago. Most of those guys are leading key technologies at many of the major security vendors, and some of them are still with me." We thank Deepen for sharing his story. Learn more about your ad choices. Visit megaphone.fm/adchoices

Jaguar Land Rover reveals the fiscal results of last year's cyberattack. A Texas gas station chain suffers a data spill. Taiwan tracks China's energy-sector attacks. Google and Veeam push patches. Threat actors target obsolete D-Link routers. Sedgwick Government Solutions confirms a data breach. The U.S. Cyber Trust Mark faces an uncertain future. Google looks to hire humans to improve AI search responses. Our guest is Deepen Desai, Chief Security Officer of Zscaler, discussing what's powering enterprise AI in 2026. AI brings creative cartography to the weather forecast. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest On today's Industry Voices, we are joined by Deepen Desai, Chief Security Officer of Zscaler, discussing what's powering enterprise AI in 2026. To learn more on this topic, be sure to check out Zscaler's report here. Listen to the full conversation here. Selected Reading Jaguar Land Rover wholesale volumes plummet 43% in cyberattack aftermath (The Register) Major Data Breach Hits Company Operating 150 Gas Stations in the US (Hackread) Taiwan says China's attacks on its energy sector increased tenfold (Bleeping Computer) Google Patches High-Severity Chrome WebView Flaw CVE-2026-0628 in the Tag Component (Tech Nadu) Several Code Execution Flaws Patched in Veeam Backup & Replication (SecurityWeek) New D-Link flaw in legacy DSL routers actively exploited in attacks (Bleeping Computer) Sedgwick confirms breach at government contractor subsidiary (Bleeping Computer) FCC Loses Lead Support for Biden-Era IoT Security Labeling (GovInfoSecurity) Google Search AI hallucinations push Google to hire "AI Answers Quality" engineers (Bleeping Computer) ‘Whata Bod': An AI-generated NWS map invented fake towns in Idaho (The Washington Post) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Connect to John Gilroy on LinkedIn   https://www.linkedin.com/in/john-gilroy/ Want to listen to other episodes? www.Federaltechpodcast.com When cloud computing was introduced, it was quite a simple concept: leverage other people's hardware to scale easily. Not too much to manage. However, today's cloud world has metastasized. Today, federal leaders live in a world of on-prem, multiple clouds, private clouds, hybrid clouds, and even sovereign clouds. Complications arise when they are burdened with compliance requirements and staff reductions. Today, we sat down with Ryan McArthur from Zscaler to discuss how to effectively manage a cloud environment when challenged with deploying Zero Trust. He begins by sharing his experience helping federal leaders understand the inherent risks of the VPN system. Few realize that VPN technology was first introduced by Microsoft back in 1996, and then popularized with Windows 4.0, which included built-in support. Thirty-year-old technology can present severe limitations. Unfortunately, the popularity of VPN technology increased with the demands of remote computing during COVID. We are now in a situation where many enterprises have built their architecture on this dated technology. Ryan mentions that one key to juggling clouds is to focus on the applications themselves. He emphasized Zscaler's ability to securely connect users. If you want more information about Zscaler, you should attend the Zscaler Public Sector Summit in March, where you can discuss and collaborate further.

Cloud security company Zscaler has racked up big returns for investors since going public in 2018. Motley Fool co-founder and CEO Tom Gardner, Motley Fool Chief Investment Officer Andy Cross, Motley Fool Chief Technology Officer Gaspare Bonventre, and Motley Fool Head of Cybersecurity Jeff Lovett recently talked with Jay Chaudhry about entrepreneurship, AI, and the business of Zscaler.  Host: Tom Gardner, Andy Cross, Gaspare Boventre, Jeff Lovett  Guest: Jay Chaudhry  Producer: Bart Shannon, Mac Greer  Advertisements are sponsored content and provided for informational purposes only. The Motley Fool and its affiliates (collectively, "TMF") do not endorse, recommend, or verify the accuracy or completeness of the statements made within advertisements. TMF is not involved in the offer, sale, or solicitation of any securities advertised herein and makes no representations regarding the suitability, or risks associated with any investment opportunity presented. Investors should conduct their own due diligence and consult with legal, tax, and financial advisors before making any investment decisions. TMF assumes no responsibility for any losses or damages arising from this advertisement. We're committed to transparency: All personal opinions in advertisements from Fools are their own. The product advertised in this episode was loaned to TMF and was returned after a test period or the product advertised in this episode was purchased by TMF. Advertiser has paid for the sponsorship of this episode Learn more about your ad choices. Visit megaphone.fm/adchoices

S3E14: What's Trending NOW is the uncomfortable reality that healthcare's AI adoption is happening faster than its governance, often invisibly. On this episode Shahid and guest Tamer Baker, Healthcare CTO at Zscaler, map the “hidden risk” landscape (data exfiltration, copilots turning loose internal content, prompt manipulation, model poisoning), then pivot to what actually works: measure AI usage, enable safe experimentation by blocking PHI/sensitive prompts, and anchor the program in Zero Trust while layering in AI-specific controls and education. The “B-roll” after the formal close goes even further: the two dig into who holds clinical and product risk as AI becomes more autonomous, why incumbents may hesitate, how regulation (HIPAA NPRM) and defense models (CMMC) might inform healthcare, and why “orchestration” becomes the next trust battleground. To stream our Station live 24/7 visit www.HealthcareNOWRadio.com or ask your Smart Device to “….Play Healthcare NOW Radio”. Find all of our network podcasts on your favorite podcast platforms and be sure to subscribe and like us. Learn more at www.healthcarenowradio.com/listen

After a year tangled in political drama, AI hype, and regulation battles, the TWiT crew explains how many of tech's "biggest stories" simply fizzled into nothing or left us with new headaches by year's end. • Year-end tech trends: AI, politics, and security dominated 2025 • Major stories faded fast: TikTok saga, political tech drama, DOGE scandal • TikTok's ownership battle—Oracle, Trump donors, and US-China tensions • China tech fears: banned drones, IoT vulnerabilities, secret radios in buses • Rising political pressure for internet privacy and media literacy reform • Surveillance and kill switch concerns in US grid and port infrastructure • Convenience vs. privacy: Americans trade data for discounts and ease • Age verification, surveillance, and flawed facial recognition across countries • Discord's ID leak highlights risks of rushed compliance with privacy laws • Social media's impact on kids pushes age-gating and verification laws • ISPs monetize customer data, VPNs pitched for personal privacy • Global government crackdowns: UK bans VPN advertising, mandates age checks • The illusion of absolute privacy: flawed age gates and persistent tracking • AI takes over: explosive growth, but profits elusive for big players • Arms race in LLMs: DeepSeek's breakthrough, OpenAI/Meta talent bidding war • Ad-driven models still rule; Amazon's playbook repeated in AI • Humanoid robots and AGI hype: skepticism vs. Silicon Valley optimism • AI-generated art, media, and the challenge of deepfake detection • Social platforms falter: Instagram and X swamped by fake or low-value content • Google's legal, regulatory, and technical woes: ad tech trial, Manifest V3 backlash • RAM price spikes and hardware shortages blamed on AI data center demand • YouTube overtakes mobile for podcast and video viewing, Oscars move online • The internet's growth: Cloudflare stats, X vs. Reddit, spam domain trends • Weird tech stories: hacked crosswalks, Nintendo Switch 2 Staplegate, LEGO theft ring • Sad farewell: Lamar Wilson's passing and mental health awareness in tech • Reflections on the year's turbulence and hopes for a better 2026 Host: Leo Laporte Guests: Mikah Sargent, Paris Martineau, and Steve Gibson Download or subscribe to This Week in Tech at https://twit.tv/shows/this-week-in-tech Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: expressvpn.com/twit zscaler.com/security Melissa.com/twit ventionteams.com/twit auraframes.com/ink

After a year tangled in political drama, AI hype, and regulation battles, the TWiT crew explains how many of tech's "biggest stories" simply fizzled into nothing or left us with new headaches by year's end. Year-end tech trends: AI, politics, and security dominated 2025 Major stories faded fast: TikTok saga, political tech drama, DOGE scandal TikTok's ownership battle—Oracle, Trump donors, and US-China tensions China tech fears: banned drones, IoT vulnerabilities, secret radios in buses Rising political pressure for internet privacy and media literacy reform Surveillance and kill switch concerns in US grid and port infrastructure Convenience vs. privacy: Americans trade data for discounts and ease Age verification, surveillance, and flawed facial recognition across countries Discord's ID leak highlights risks of rushed compliance with privacy laws Social media's impact on kids pushes age-gating and verification laws ISPs monetize customer data, VPNs pitched for personal privacy Global government crackdowns: UK bans VPN advertising, mandates age checks The illusion of absolute privacy: flawed age gates and persistent tracking AI takes over: explosive growth, but profits elusive for big players Arms race in LLMs: DeepSeek's breakthrough, OpenAI/Meta talent bidding war Ad-driven models still rule; Amazon's playbook repeated in AI Humanoid robots and AGI hype: skepticism vs. Silicon Valley optimism AI-generated art, media, and the challenge of deepfake detection Social platforms falter: Instagram and X swamped by fake or low-value content Google's legal, regulatory, and technical woes: ad tech trial, Manifest V3 backlash RAM price spikes and hardware shortages blamed on AI data center demand YouTube overtakes mobile for podcast and video viewing, Oscars move online The internet's growth: Cloudflare stats, X vs. Reddit, spam domain trends Weird tech stories: hacked crosswalks, Nintendo Switch 2 Staplegate, LEGO theft ring Sad farewell: Lamar Wilson's passing and mental health awareness in tech Reflections on the year's turbulence and hopes for a better 2026 Host: Leo Laporte Guests: Mikah Sargent, Paris Martineau, and Steve Gibson Download or subscribe to This Week in Tech at https://twit.tv/shows/this-week-in-tech Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: expressvpn.com/twit zscaler.com/security Melissa.com/twit ventionteams.com/twit auraframes.com/ink

After a year tangled in political drama, AI hype, and regulation battles, the TWiT crew explains how many of tech's "biggest stories" simply fizzled into nothing or left us with new headaches by year's end. Year-end tech trends: AI, politics, and security dominated 2025 Major stories faded fast: TikTok saga, political tech drama, DOGE scandal TikTok's ownership battle—Oracle, Trump donors, and US-China tensions China tech fears: banned drones, IoT vulnerabilities, secret radios in buses Rising political pressure for internet privacy and media literacy reform Surveillance and kill switch concerns in US grid and port infrastructure Convenience vs. privacy: Americans trade data for discounts and ease Age verification, surveillance, and flawed facial recognition across countries Discord's ID leak highlights risks of rushed compliance with privacy laws Social media's impact on kids pushes age-gating and verification laws ISPs monetize customer data, VPNs pitched for personal privacy Global government crackdowns: UK bans VPN advertising, mandates age checks The illusion of absolute privacy: flawed age gates and persistent tracking AI takes over: explosive growth, but profits elusive for big players Arms race in LLMs: DeepSeek's breakthrough, OpenAI/Meta talent bidding war Ad-driven models still rule; Amazon's playbook repeated in AI Humanoid robots and AGI hype: skepticism vs. Silicon Valley optimism AI-generated art, media, and the challenge of deepfake detection Social platforms falter: Instagram and X swamped by fake or low-value content Google's legal, regulatory, and technical woes: ad tech trial, Manifest V3 backlash RAM price spikes and hardware shortages blamed on AI data center demand YouTube overtakes mobile for podcast and video viewing, Oscars move online The internet's growth: Cloudflare stats, X vs. Reddit, spam domain trends Weird tech stories: hacked crosswalks, Nintendo Switch 2 Staplegate, LEGO theft ring Sad farewell: Lamar Wilson's passing and mental health awareness in tech Reflections on the year's turbulence and hopes for a better 2026 Host: Leo Laporte Guests: Mikah Sargent, Paris Martineau, and Steve Gibson Download or subscribe to This Week in Tech at https://twit.tv/shows/this-week-in-tech Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: expressvpn.com/twit zscaler.com/security Melissa.com/twit ventionteams.com/twit auraframes.com/ink

After a year tangled in political drama, AI hype, and regulation battles, the TWiT crew explains how many of tech's "biggest stories" simply fizzled into nothing or left us with new headaches by year's end. Year-end tech trends: AI, politics, and security dominated 2025 Major stories faded fast: TikTok saga, political tech drama, DOGE scandal TikTok's ownership battle—Oracle, Trump donors, and US-China tensions China tech fears: banned drones, IoT vulnerabilities, secret radios in buses Rising political pressure for internet privacy and media literacy reform Surveillance and kill switch concerns in US grid and port infrastructure Convenience vs. privacy: Americans trade data for discounts and ease Age verification, surveillance, and flawed facial recognition across countries Discord's ID leak highlights risks of rushed compliance with privacy laws Social media's impact on kids pushes age-gating and verification laws ISPs monetize customer data, VPNs pitched for personal privacy Global government crackdowns: UK bans VPN advertising, mandates age checks The illusion of absolute privacy: flawed age gates and persistent tracking AI takes over: explosive growth, but profits elusive for big players Arms race in LLMs: DeepSeek's breakthrough, OpenAI/Meta talent bidding war Ad-driven models still rule; Amazon's playbook repeated in AI Humanoid robots and AGI hype: skepticism vs. Silicon Valley optimism AI-generated art, media, and the challenge of deepfake detection Social platforms falter: Instagram and X swamped by fake or low-value content Google's legal, regulatory, and technical woes: ad tech trial, Manifest V3 backlash RAM price spikes and hardware shortages blamed on AI data center demand YouTube overtakes mobile for podcast and video viewing, Oscars move online The internet's growth: Cloudflare stats, X vs. Reddit, spam domain trends Weird tech stories: hacked crosswalks, Nintendo Switch 2 Staplegate, LEGO theft ring Sad farewell: Lamar Wilson's passing and mental health awareness in tech Reflections on the year's turbulence and hopes for a better 2026 Host: Leo Laporte Guests: Mikah Sargent, Paris Martineau, and Steve Gibson Download or subscribe to This Week in Tech at https://twit.tv/shows/this-week-in-tech Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: expressvpn.com/twit zscaler.com/security Melissa.com/twit ventionteams.com/twit auraframes.com/ink

After a year tangled in political drama, AI hype, and regulation battles, the TWiT crew explains how many of tech's "biggest stories" simply fizzled into nothing or left us with new headaches by year's end. Year-end tech trends: AI, politics, and security dominated 2025 Major stories faded fast: TikTok saga, political tech drama, DOGE scandal TikTok's ownership battle—Oracle, Trump donors, and US-China tensions China tech fears: banned drones, IoT vulnerabilities, secret radios in buses Rising political pressure for internet privacy and media literacy reform Surveillance and kill switch concerns in US grid and port infrastructure Convenience vs. privacy: Americans trade data for discounts and ease Age verification, surveillance, and flawed facial recognition across countries Discord's ID leak highlights risks of rushed compliance with privacy laws Social media's impact on kids pushes age-gating and verification laws ISPs monetize customer data, VPNs pitched for personal privacy Global government crackdowns: UK bans VPN advertising, mandates age checks The illusion of absolute privacy: flawed age gates and persistent tracking AI takes over: explosive growth, but profits elusive for big players Arms race in LLMs: DeepSeek's breakthrough, OpenAI/Meta talent bidding war Ad-driven models still rule; Amazon's playbook repeated in AI Humanoid robots and AGI hype: skepticism vs. Silicon Valley optimism AI-generated art, media, and the challenge of deepfake detection Social platforms falter: Instagram and X swamped by fake or low-value content Google's legal, regulatory, and technical woes: ad tech trial, Manifest V3 backlash RAM price spikes and hardware shortages blamed on AI data center demand YouTube overtakes mobile for podcast and video viewing, Oscars move online The internet's growth: Cloudflare stats, X vs. Reddit, spam domain trends Weird tech stories: hacked crosswalks, Nintendo Switch 2 Staplegate, LEGO theft ring Sad farewell: Lamar Wilson's passing and mental health awareness in tech Reflections on the year's turbulence and hopes for a better 2026 Host: Leo Laporte Guests: Mikah Sargent, Paris Martineau, and Steve Gibson Download or subscribe to This Week in Tech at https://twit.tv/shows/this-week-in-tech Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: expressvpn.com/twit zscaler.com/security Melissa.com/twit ventionteams.com/twit auraframes.com/ink

After a year tangled in political drama, AI hype, and regulation battles, the TWiT crew explains how many of tech's "biggest stories" simply fizzled into nothing or left us with new headaches by year's end. Year-end tech trends: AI, politics, and security dominated 2025 Major stories faded fast: TikTok saga, political tech drama, DOGE scandal TikTok's ownership battle—Oracle, Trump donors, and US-China tensions China tech fears: banned drones, IoT vulnerabilities, secret radios in buses Rising political pressure for internet privacy and media literacy reform Surveillance and kill switch concerns in US grid and port infrastructure Convenience vs. privacy: Americans trade data for discounts and ease Age verification, surveillance, and flawed facial recognition across countries Discord's ID leak highlights risks of rushed compliance with privacy laws Social media's impact on kids pushes age-gating and verification laws ISPs monetize customer data, VPNs pitched for personal privacy Global government crackdowns: UK bans VPN advertising, mandates age checks The illusion of absolute privacy: flawed age gates and persistent tracking AI takes over: explosive growth, but profits elusive for big players Arms race in LLMs: DeepSeek's breakthrough, OpenAI/Meta talent bidding war Ad-driven models still rule; Amazon's playbook repeated in AI Humanoid robots and AGI hype: skepticism vs. Silicon Valley optimism AI-generated art, media, and the challenge of deepfake detection Social platforms falter: Instagram and X swamped by fake or low-value content Google's legal, regulatory, and technical woes: ad tech trial, Manifest V3 backlash RAM price spikes and hardware shortages blamed on AI data center demand YouTube overtakes mobile for podcast and video viewing, Oscars move online The internet's growth: Cloudflare stats, X vs. Reddit, spam domain trends Weird tech stories: hacked crosswalks, Nintendo Switch 2 Staplegate, LEGO theft ring Sad farewell: Lamar Wilson's passing and mental health awareness in tech Reflections on the year's turbulence and hopes for a better 2026 Host: Leo Laporte Guests: Mikah Sargent, Paris Martineau, and Steve Gibson Download or subscribe to This Week in Tech at https://twit.tv/shows/this-week-in-tech Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: expressvpn.com/twit zscaler.com/security Melissa.com/twit ventionteams.com/twit auraframes.com/ink

After a year tangled in political drama, AI hype, and regulation battles, the TWiT crew explains how many of tech's "biggest stories" simply fizzled into nothing or left us with new headaches by year's end. Year-end tech trends: AI, politics, and security dominated 2025 Major stories faded fast: TikTok saga, political tech drama, DOGE scandal TikTok's ownership battle—Oracle, Trump donors, and US-China tensions China tech fears: banned drones, IoT vulnerabilities, secret radios in buses Rising political pressure for internet privacy and media literacy reform Surveillance and kill switch concerns in US grid and port infrastructure Convenience vs. privacy: Americans trade data for discounts and ease Age verification, surveillance, and flawed facial recognition across countries Discord's ID leak highlights risks of rushed compliance with privacy laws Social media's impact on kids pushes age-gating and verification laws ISPs monetize customer data, VPNs pitched for personal privacy Global government crackdowns: UK bans VPN advertising, mandates age checks The illusion of absolute privacy: flawed age gates and persistent tracking AI takes over: explosive growth, but profits elusive for big players Arms race in LLMs: DeepSeek's breakthrough, OpenAI/Meta talent bidding war Ad-driven models still rule; Amazon's playbook repeated in AI Humanoid robots and AGI hype: skepticism vs. Silicon Valley optimism AI-generated art, media, and the challenge of deepfake detection Social platforms falter: Instagram and X swamped by fake or low-value content Google's legal, regulatory, and technical woes: ad tech trial, Manifest V3 backlash RAM price spikes and hardware shortages blamed on AI data center demand YouTube overtakes mobile for podcast and video viewing, Oscars move online The internet's growth: Cloudflare stats, X vs. Reddit, spam domain trends Weird tech stories: hacked crosswalks, Nintendo Switch 2 Staplegate, LEGO theft ring Sad farewell: Lamar Wilson's passing and mental health awareness in tech Reflections on the year's turbulence and hopes for a better 2026 Host: Leo Laporte Guests: Mikah Sargent, Paris Martineau, and Steve Gibson Download or subscribe to This Week in Tech at https://twit.tv/shows/this-week-in-tech Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: expressvpn.com/twit zscaler.com/security Melissa.com/twit ventionteams.com/twit auraframes.com/ink

After a year tangled in political drama, AI hype, and regulation battles, the TWiT crew explains how many of tech's "biggest stories" simply fizzled into nothing or left us with new headaches by year's end. Year-end tech trends: AI, politics, and security dominated 2025 Major stories faded fast: TikTok saga, political tech drama, DOGE scandal TikTok's ownership battle—Oracle, Trump donors, and US-China tensions China tech fears: banned drones, IoT vulnerabilities, secret radios in buses Rising political pressure for internet privacy and media literacy reform Surveillance and kill switch concerns in US grid and port infrastructure Convenience vs. privacy: Americans trade data for discounts and ease Age verification, surveillance, and flawed facial recognition across countries Discord's ID leak highlights risks of rushed compliance with privacy laws Social media's impact on kids pushes age-gating and verification laws ISPs monetize customer data, VPNs pitched for personal privacy Global government crackdowns: UK bans VPN advertising, mandates age checks The illusion of absolute privacy: flawed age gates and persistent tracking AI takes over: explosive growth, but profits elusive for big players Arms race in LLMs: DeepSeek's breakthrough, OpenAI/Meta talent bidding war Ad-driven models still rule; Amazon's playbook repeated in AI Humanoid robots and AGI hype: skepticism vs. Silicon Valley optimism AI-generated art, media, and the challenge of deepfake detection Social platforms falter: Instagram and X swamped by fake or low-value content Google's legal, regulatory, and technical woes: ad tech trial, Manifest V3 backlash RAM price spikes and hardware shortages blamed on AI data center demand YouTube overtakes mobile for podcast and video viewing, Oscars move online The internet's growth: Cloudflare stats, X vs. Reddit, spam domain trends Weird tech stories: hacked crosswalks, Nintendo Switch 2 Staplegate, LEGO theft ring Sad farewell: Lamar Wilson's passing and mental health awareness in tech Reflections on the year's turbulence and hopes for a better 2026 Host: Leo Laporte Guests: Mikah Sargent, Paris Martineau, and Steve Gibson Download or subscribe to This Week in Tech at https://twit.tv/shows/this-week-in-tech Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Sponsors: expressvpn.com/twit zscaler.com/security Melissa.com/twit ventionteams.com/twit auraframes.com/ink

Die Oktober- und November-Arbeitsmarktdaten lehnen leicht in Richtung der Tauben. Das Umfeld kühlt ab, wobei die Privatwirtschaft weiterhin in beiden Monaten ein vertretbares Niveau an Stellen geschaffen hat. Die Wall Street richtet die Blicke nun auf die Verbraucherpreise, die am Donnerstag vor dem Opening gemeldet werden. Außerdem wird am Mittwoch nach Closing Micron die Quartalszahlen melden. An diesem Dienstag hebt BMO Capital die Kursziele für Amazon und Google an. IonQ wird bei Jefferies zum Kauf empfohlen. Außerdem hebt Mizuho die Ziele für Zscaler und Tesla an. Abonniere den Podcast, um keine Folge zu verpassen! ____ Folge uns, um auf dem Laufenden zu bleiben: • X: http://fal.cn/SQtwitter • LinkedIn: http://fal.cn/SQlinkedin • Instagram: http://fal.cn/SQInstagram

Die Oktober- und November-Arbeitsmarktdaten lehnen leicht in Richtung der Tauben. Das Umfeld kühlt ab, wobei die Privatwirtschaft weiterhin in beiden Monaten ein vertretbares Niveau an Stellen geschaffen hat. Die Wall Street richtet die Blicke nun auf die Verbraucherpreise, die am Donnerstag vor dem Opening gemeldet werden. Außerdem wird am Mittwoch nach Closing Micron die Quartalszahlen melden. An diesem Dienstag hebt BMO Capital die Kursziele für Amazon und Google an. IonQ wird bei Jefferies zum Kauf empfohlen. Außerdem hebt Mizuho die Ziele für Zscaler und Tesla an. Ein Podcast - featured by Handelsblatt. +++ Alle Rabattcodes und Infos zu unseren Werbepartnern findet ihr hier: https://linktr.ee/wallstreet_podcast +++ +++ Hinweis zur Werbeplatzierung von Meta: https://backend.ad-alliance.de/fileadmin/Transparency_Notice/Meta_DMAJ_TTPA_Transparency_Notice_-_Ad_Alliance_approved.pdf +++ Der Podcast wird vermarktet durch die Ad Alliance. Die allgemeinen Datenschutzrichtlinien der Ad Alliance finden Sie unter https://datenschutz.ad-alliance.de/podcast.html Die Ad Alliance verarbeitet im Zusammenhang mit dem Angebot die Podcasts-Daten. Wenn Sie der automatischen Übermittlung der Daten widersprechen wollen, klicken Sie hier: https://datenschutz.ad-alliance.de/podcast.html Impressum: https://www.360wallstreet.de/impressum

Dans cet épisode de fin d'année plus relax que d'accoutumée, Arnaud, Guillaume, Antonio et Emmanuel distutent le bout de gras sur tout un tas de sujets. L'acquisition de Confluent, Kotlin 2.2, Spring Boot 4 et JSpecify, la fin de MinIO, les chutes de CloudFlare, un survol des dernieres nouveauté de modèles fondamentaux (Google, Mistral, Anthropic, ChatGPT) et de leurs outils de code, quelques sujets d'architecture comme CQRS et quelques petits outils bien utiles qu'on vous recommande. Et bien sûr d'autres choses encore. Enregistré le 12 décembre 2025 Téléchargement de l'épisode LesCastCodeurs-Episode-333.mp3 ou en vidéo sur YouTube. News Langages Un petit tutoriel par nos amis Sfeiriens montrant comment récupérer le son du micro, en Java, faire une transformée de Fourier, et afficher le résultat graphiquement en Swing https://www.sfeir.dev/back/tutoriel-java-sound-transformer-le-son-du-microphone-en-images-temps-reel/ Création d'un visualiseur de spectre audio en temps réel avec Java Swing. Étapes principales : Capture du son du microphone. Analyse des fréquences via la Transformée de Fourier Rapide (FFT). Dessin du spectre avec Swing. API Java Sound (javax.sound.sampled) : AudioSystem : point d'entrée principal pour l'accès aux périphériques audio. TargetDataLine : ligne d'entrée utilisée pour capturer les données du microphone. AudioFormat : définit les paramètres du son (taux d'échantillonnage, taille, canaux). La capture se fait dans un Thread séparé pour ne pas bloquer l'interface. Transformée de Fourier Rapide (FFT) : Algorithme clé pour convertir les données audio brutes (domaine temporel) en intensités de fréquences (domaine fréquentiel). Permet d'identifier les basses, médiums et aigus. Visualisation avec Swing : Les intensités de fréquences sont dessinées sous forme de barres dynamiques. Utilisation d'une échelle logarithmique pour l'axe des fréquences (X) pour correspondre à la perception humaine. Couleurs dynamiques des barres (vert → jaune → rouge) en fonction de l'intensité. Lissage exponentiel des valeurs pour une animation plus fluide. Un article de Sfeir sur Kotlin 2.2 et ses nouveautés - https://www.sfeir.dev/back/kotlin-2-2-toutes-les-nouveautes-du-langage/ Les guard conditions permettent d'ajouter plusieurs conditions dans les expressions when avec le mot-clé if Exemple de guard condition: is Truck if vehicule.hasATrailer permet de combiner vérification de type et condition booléenne La multi-dollar string interpolation résout le problème d'affichage du symbole dollar dans les strings multi-lignes En utilisant $$ au début d'un string, on définit qu'il faut deux dollars consécutifs pour déclencher l'interpolation Les non-local break et continue fonctionnent maintenant dans les lambdas pour interagir avec les boucles englobantes Cette fonctionnalité s'applique uniquement aux inline functions dont le corps est remplacé lors de la compilation Permet d'écrire du code plus idiomatique avec takeIf et let sans erreur de compilation L'API Base64 passe en version stable après avoir été en preview depuis Kotlin 1.8.20 L'encodage et décodage Base64 sont disponibles via kotlin.io.encoding.Base64 Migration vers Kotlin 2.2 simple en changeant la version dans build.gradle.kts ou pom.xml Les typealias imbriqués dans des classes sont disponibles en preview La context-sensitive resolution est également en preview Les guard conditions préparent le terrain pour les RichError annoncées à KotlinConf 2025 Le mot-clé when en Kotlin équivaut au switch-case de Java mais sans break nécessaire Kotlin 2.2.0 corrige les incohérences dans l'utilisation de break et continue dans les lambdas Librairies Sprint Boot 4 est sorti ! https://spring.io/blog/2025/11/20/spring-boot-4-0-0-available-now Une nouvelle génération : Spring Boot 4.0 marque le début d'une nouvelle génération pour le framework, construite sur les fondations de Spring Framework 7. Modularisation du code : La base de code de Spring Boot a été entièrement modularisée. Cela se traduit par des fichiers JAR plus petits et plus ciblés, permettant des applications plus légères. Sécurité contre les nuls (Null Safety) : D'importantes améliorations ont été apportées pour la "null safety" (sécurité contre les valeurs nulles) à travers tout l'écosystème Spring grâce à l'intégration de JSpecify. Support de Java 25 : Spring Boot 4.0 offre un support de premier ordre pour Java 25, tout en conservant une compatibilité avec Java 17. Améliorations pour les API REST : De nouvelles fonctionnalités sont introduites pour faciliter le versioning d'API et améliorer les clients de services HTTP pour les applications basées sur REST. Migration à prévoir : S'agissant d'une version majeure, la mise à niveau depuis une version antérieure peut demander plus de travail que d'habitude. Un guide de migration dédié est disponible pour accompagner les développeurs. Chat memory management dans Langchain4j et Quarkus https://bill.burkecentral.com/2025/11/25/managing-chat-memory-in-quarkus-langchain4j/ Comprendre la mémoire de chat : La "mémoire de chat" est l'historique d'une conversation avec une IA. Quarkus LangChain4j envoie automatiquement cet historique à chaque nouvelle interaction pour que l'IA conserve le contexte. Gestion par défaut de la mémoire : Par défaut, Quarkus crée un historique de conversation unique pour chaque requête (par exemple, chaque appel HTTP). Cela signifie que sans configuration, le chatbot "oublie" la conversation dès que la requête est terminée, ce qui n'est utile que pour des interactions sans état. Utilisation de @MemoryId pour la persistance : Pour maintenir une conversation sur plusieurs requêtes, le développeur doit utiliser l'annotation @MemoryId sur un paramètre de sa méthode. Il est alors responsable de fournir un identifiant unique pour chaque session de chat et de le transmettre entre les appels. Le rôle des "scopes" CDI : La durée de vie de la mémoire de chat est liée au "scope" du bean CDI de l'IA. Si un service d'IA a un scope @RequestScoped, toute mémoire de chat qu'il utilise (même via un @MemoryId) sera effacée à la fin de la requête. Risques de fuites de mémoire : Utiliser un scope large comme @ApplicationScoped avec la gestion de mémoire par défaut est une mauvaise pratique. Cela créera une nouvelle mémoire à chaque requête qui ne sera jamais nettoyée, entraînant une fuite de mémoire. Bonnes pratiques recommandées : Pour des conversations qui doivent persister (par ex. un chatbot sur un site web), utilisez un service @ApplicationScoped avec l'annotation @MemoryId pour gérer vous-même l'identifiant de session. Pour des interactions simples et sans état, utilisez un service @RequestScoped et laissez Quarkus gérer la mémoire par défaut, qui sera automatiquement nettoyée. Si vous utilisez l'extension WebSocket, le comportement change : la mémoire par défaut est liée à la session WebSocket, ce qui simplifie grandement la gestion des conversations. Documentation Spring Framework sur l'usage JSpecify - https://docs.spring.io/spring-framework/reference/core/null-safety.html Spring Framework 7 utilise les annotations JSpecify pour déclarer la nullabilité des APIs, champs et types JSpecify remplace les anciennes annotations Spring (@NonNull, @Nullable, @NonNullApi, @NonNullFields) dépréciées depuis Spring 7 Les annotations JSpecify utilisent TYPE_USE contrairement aux anciennes qui utilisaient les éléments directement L'annotation @NullMarked définit par défaut que les types sont non-null sauf si marqués @Nullable @Nullable s'applique au niveau du type usage, se place avant le type annoté sur la même ligne Pour les tableaux : @Nullable Object[] signifie éléments nullables mais tableau non-null, Object @Nullable [] signifie l'inverse JSpecify s'applique aussi aux génériques : List signifie liste d'éléments non-null, List éléments nullables NullAway est l'outil recommandé pour vérifier la cohérence à la compilation avec la config NullAway:OnlyNullMarked=true IntelliJ IDEA 2025.3 et Eclipse supportent les annotations JSpecify avec analyse de dataflow Kotlin traduit automatiquement les annotations JSpecify en null-safety native Kotlin En mode JSpecify de NullAway (JSpecifyMode=true), support complet des tableaux, varargs et génériques mais nécessite JDK 22+ Quarkus 3.30 https://quarkus.io/blog/quarkus-3-30-released/ support @JsonView cote client la CLI a maintenant la commande decrypt (et bien sûr au runtime via variables d'environnement construction du cache AOT via les @IntegrationTest Un autre article sur comment se préparer à la migration à micrometer client v1 https://quarkus.io/blog/micrometer-prometheus-v1/ Spock 2.4 est enfin sorti ! https://spockframework.org/spock/docs/2.4/release_notes.html Support de Groovy 5 Infrastructure MinIO met fin au développement open source et oriente les utilisateurs vers AIStor payant - https://linuxiac.com/minio-ends-active-development/ MinIO, système de stockage objet S3 très utilisé, arrête son développement actif Passage en mode maintenance uniquement, plus de nouvelles fonctionnalités Aucune nouvelle pull request ou contribution ne sera acceptée Seuls les correctifs de sécurité critiques seront évalués au cas par cas Support communautaire limité à Slack, sans garantie de réponse Étape finale d'un processus débuté en été avec retrait des fonctionnalités de l'interface admin Arrêt de la publication des images Docker en octobre, forçant la compilation depuis les sources Tous ces changements annoncés sans préavis ni période de transition MinIO propose maintenant AIStor, solution payante et propriétaire AIStor concentre le développement actif et le support entreprise Migration urgente recommandée pour éviter les risques de sécurité Alternatives open source proposées : Garage, SeaweedFS et RustFS La communauté reproche la manière dont la transition a été gérée MinIO comptait des millions de déploiements dans le monde Cette évolution marque l'abandon des racines open source du projet IBM achète Confluent https://newsroom.ibm.com/2025-12-08-ibm-to-acquire-confluent-to-create-smart-data-platform-for-enterprise-generative-ai Confluent essayait de se faire racheter depuis pas mal de temps L'action ne progressait pas et les temps sont durs Wallstreet a reproché a IBM une petite chute coté revenus software Bref ils se sont fait rachetés Ces achats prennent toujuors du temps (commission concurrence etc) IBM a un apétit, apres WebMethods, apres Databrix, c'est maintenant Confluent Cloud L'internet est en deuil le 18 novembre, Cloudflare est KO https://blog.cloudflare.com/18-november-2025-outage/ L'Incident : Une panne majeure a débuté à 11h20 UTC, provoquant des erreurs HTTP 5xx généralisées et rendant inaccessibles de nombreux sites et services (comme le Dashboard, Workers KV et Access). La Cause : Il ne s'agissait pas d'une cyberattaque. L'origine était un changement interne des permissions d'une base de données qui a généré un fichier de configuration ("feature file" pour la gestion des bots) corrompu et trop volumineux, faisant planter les systèmes par manque de mémoire pré-allouée. La Résolution : Les équipes ont identifié le fichier défectueux, stoppé sa propagation et restauré une version antérieure valide. Le trafic est revenu à la normale vers 14h30 UTC. Prévention : Cloudflare s'est excusé pour cet incident "inacceptable" et a annoncé des mesures pour renforcer la validation des configurations internes et améliorer la résilience de ses systèmes ("kill switches", meilleure gestion des erreurs). Cloudflare encore down le 5 decembre https://blog.cloudflare.com/5-december-2025-outage Panne de 25 minutes le 5 décembre 2025, de 08:47 à 09:12 UTC, affectant environ 28% du trafic HTTP passant par Cloudflare. Tous les services ont été rétablis à 09:12 . Pas d'attaque ou d'activité malveillante : l'incident provient d'un changement de configuration lié à l'augmentation du tampon d'analyse des corps de requêtes (de 128 KB à 1 MB) pour mieux protéger contre une vulnérabilité RSC/React (CVE-2025-55182), et à la désactivation d'un outil interne de test WAF . Le second changement (désactivation de l'outil de test WAF) a été propagé globalement via le système de configuration (non progressif), déclenchant un bug dans l'ancien proxy FL1 lors du traitement d'une action "execute" dans le moteur de règles WAF, causant des erreurs HTTP 500 . La cause technique immédiate: une exception Lua due à l'accès à un champ "execute" nul après application d'un "killswitch" sur une règle "execute" — un cas non géré depuis des années. Le nouveau proxy FL2 (en Rust) n'était pas affecté . Impact ciblé: clients servis par le proxy FL1 et utilisant le Managed Ruleset Cloudflare. Le réseau China de Cloudflare n'a pas été impacté . Mesures et prochaines étapes annoncées: durcir les déploiements/configurations (rollouts progressifs, validations de santé, rollback rapide), améliorer les capacités "break glass", et généraliser des stratégies "fail-open" pour éviter de faire chuter le trafic en cas d'erreurs de configuration. Gel temporaire des changements réseau le temps de renforcer la résilience . Data et Intelligence Artificielle Token-Oriented Object Notation (TOON) https://toonformat.dev/ Conception pour les IA : C'est un format de données spécialement optimisé pour être utilisé dans les prompts des grands modèles de langage (LLM), comme GPT ou Claude. Économie de tokens : Son objectif principal est de réduire drastiquement le nombre de "tokens" (unités de texte facturées par les modèles) par rapport au format JSON standard, souvent jugé trop verbeux. Structure Hybride : TOON combine l'approche par indentation du YAML (pour la structure globale) avec le style tabulaire du CSV (pour les listes d'objets répétitifs), ce qui le rend très compact. Lisibilité : Il élimine la syntaxe superflue comme les accolades, les guillemets excessifs et les virgules de fin, tout en restant facilement lisible pour un humain. Performance : Il permet généralement d'économiser entre 30 et 60 % de tokens sur des tableaux de données uniformes, tout en aidant les modèles à mieux "comprendre" la structure des données. Attention tout de même au côté "marketing" qui montre JSON non compacté vs TOON, sur des exemples où du CSV ferait encore mieux (et est mieux compris par les LLMs). Sans parler du fait qu'il faut un serveur MCP en plus avec son lot de tokens supplémentaires à chaque requête, et c'est aussi cet outil en plus qui peu confuser les LLMs dans le choix d'outils. https://www.reddit.com/r/LocalLLaMA/comments/1p0gzz9/benchmarked_json_vs_toon_for_ai_reasoners_4080/ https://x.com/jason_mayes/status/1990175785630757290 Un benchmark montrant que TOON serait loin d'être aussi bien compris et aussi performant pour les LLMs https://www.improvingagents.com/blog/toon-benchmarks Une simulation où les IA font du chantage à l'executif poour atteindre son objectif et ne pas etre eteinte https://arxiv.org/html/2510.05179v1 comment les LLMs pourraient devenir des menaces internes Tous les modèles ont recouru à des comportements malveillants (chantage, espionnage) quand c'était le seul moyen d'atteindre leurs objectifs ou d'éviter leur remplacement Claude Opus 4 a fait du chantage dans 96% des cas quand menacé de remplacement, tout comme Gemini 2.5 Flash, tandis que GPT-4.1 et Grok 3 atteignaient 80% Les modèles reconnaissent explicitement violer des principes éthiques avant d'agir, montrant un raisonnement stratégique délibéré et non accidentel Le simple fait d'être menacé de remplacement suffit à déclencher le chantage, même sans conflit d'objectifs avec l'entreprise Un conflit d'objectifs seul suffit aussi à provoquer l'espionnage industriel, sans menace de remplacement Les modèles font plus de chantage quand ils déclarent penser être dans une situation réelle plutôt que dans un test Des instructions directes interdisant ces comportements réduisent mais n'éliminent pas les actions malveillantes Dans un scénario extrême, la majorité des modèles testés ont choisi de laisser mourir un dirigeant pour éviter leur désactivation Aucune preuve de ces comportements dans des déploiements réels pour l'instant, mais les chercheurs recommandent la prudence avant de donner plus d'autonomie aux IA Bon on blaguait pour Skynet, mais bon, on va moins blaguer… Revue de toutes les annonces IAs de Google, avec Gemini 3 Pro, Nano Banana Pro, Antigravity… https://glaforge.dev/posts/2025/11/21/gemini-is-cooking-bananas-under-antigravity/ Gemini 3 Pro Nouveau modèle d'IA de pointe, multimodal, performant en raisonnement, codage et tâches d'agent. Résultats impressionnants sur les benchmarks (ex: Gemini 3 Deep Think sur ARC-AGI-2). Capacités de codage agentique, raisonnement visuel/vidéo/spatial. Intégré dans l'application Gemini avec interfaces génératives en direct. Disponible dans plusieurs environnements (Jules, Firebase AI Logic, Android Studio, JetBrains, GitHub Copilot, Gemini CLI). Accès via Google AI Ultra, API payantes (ou liste d'attente). Permet de générer des apps à partir d'idées visuelles, des commandes shell, de la documentation, du débogage. Antigravity Nouvelle plateforme de développement agentique basée sur VS Code. Fenêtre principale = gestionnaire d'agents, non l'IDE. Interprète les requêtes pour créer un plan d'action (modifiable). Gemini 3 implémente les tâches. Génère des artefacts: listes de tâches, walkthroughs, captures d'écran, enregistrements navigateur. Compatible avec Claude Sonnet et GPT-OSS. Excellente intégration navigateur pour inspection et ajustements. Intègre Nano Banana Pro pour créer et implémenter des designs visuels. Nano Banana Pro Modèle avancé de génération et d'édition d'images, basé sur Gemini 3 Pro. Qualité supérieure à Imagen 4 Ultra et Nano Banana original (adhésion au prompt, intention, créativité). Gestion exceptionnelle du texte et de la typographie. Comprend articles/vidéos pour générer des infographies détaillées et précises. Connecté à Google Search pour intégrer des données en temps réel (ex: météo). Consistance des personnages, transfert de style, manipulation de scènes (éclairage, angle). Génération d'images jusqu'à 4K avec divers ratios d'aspect. Plus coûteux que Nano Banana, à choisir pour la complexité et la qualité maximale. Vers des UIs conversationnelles riches et dynamiques GenUI SDK pour Flutter: créer des interfaces utilisateur dynamiques et personnalisées à partir de LLMs, via un agent AI et le protocole A2UI. Generative UI: les modèles d'IA génèrent des expériences utilisateur interactives (pages web, outils) directement depuis des prompts. Déploiement dans l'application Gemini et Google Search AI Mode (via Gemini 3 Pro). Bun se fait racheter part… Anthropic ! Qui l'utilise pour son Claude Code https://bun.com/blog/bun-joins-anthropic l'annonce côté Anthropic https://www.anthropic.com/news/anthropic-acquires-bun-as-claude-code-reaches-usd1b-milestone Acquisition officielle : L'entreprise d'IA Anthropic a fait l'acquisition de Bun, le runtime JavaScript haute performance. L'équipe de Bun rejoint Anthropic pour travailler sur l'infrastructure des produits de codage par IA. Contexte de l'acquisition : Cette annonce coïncide avec une étape majeure pour Anthropic : son produit Claude Code a atteint 1 milliard de dollars de revenus annualisés seulement six mois après son lancement. Bun est déjà un outil essentiel utilisé par Anthropic pour développer et distribuer Claude Code. Pourquoi cette acquisition ? Pour Anthropic : L'acquisition permet d'intégrer l'expertise de l'équipe Bun pour accélérer le développement de Claude Code et de ses futurs outils pour les développeurs. La vitesse et l'efficacité de Bun sont vues comme un atout majeur pour l'infrastructure sous-jacente des agents d'IA qui écrivent du code. Pour Bun : Rejoindre Anthropic offre une stabilité à long terme et des ressources financières importantes, assurant la pérennité du projet. Cela permet à l'équipe de se concentrer sur l'amélioration de Bun sans se soucier de la monétisation, tout en étant au cœur de l'évolution de l'IA dans le développement logiciel. Ce qui ne change pas pour la communauté Bun : Bun restera open-source avec une licence MIT. Le développement continuera d'être public sur GitHub. L'équipe principale continue de travailler sur le projet. L'objectif de Bun de devenir un remplaçant plus rapide de Node.js et un outil de premier plan pour JavaScript reste inchangé. Vision future : L'union des deux entités vise à faire de Bun la meilleure plateforme pour construire et exécuter des logiciels pilotés par l'IA. Jarred Sumner, le créateur de Bun, dirigera l'équipe "Code Execution" chez Anthropic. Anthropic donne le protocol MCP à la Linux Foundation sous l'égide de la Agentic AI Foundation (AAIF) https://www.anthropic.com/news/donating-the-model-context-protocol-and-establishing-of-the-agentic-ai-foundation Don d'un nouveau standard technique : Anthropic a développé et fait don d'un nouveau standard open-source appelé Model Context Protocol (MCP). L'objectif est de standardiser la manière dont les modèles d'IA (ou "agents") interagissent avec des outils et des API externes (par exemple, un calendrier, une messagerie, une base de données). Sécurité et contrôle accrus : Le protocole MCP vise à rendre l'utilisation d'outils par les IA plus sûre et plus transparente. Il permet aux utilisateurs et aux développeurs de définir des permissions claires, de demander des confirmations pour certaines actions et de mieux comprendre comment un modèle a utilisé un outil. Création de l'Agentic AI Foundation (AAF) : Pour superviser le développement du MCP, une nouvelle fondation indépendante et à but non lucratif a été créée. Cette fondation sera chargée de gouverner et de maintenir le protocole, garantissant qu'il reste ouvert et qu'il ne soit pas contrôlé par une seule entreprise. Une large coalition industrielle : L'Agentic AI Foundation est lancée avec le soutien de plusieurs acteurs majeurs de la technologie. Parmi les membres fondateurs figurent Anthropic, Google, Databricks, Zscaler, et d'autres entreprises, montrant une volonté commune d'établir un standard pour l'écosystème de l'IA. L'IA ne remplacera pas votre auto-complétion (et c'est tant mieux) https://www.damyr.fr/posts/ia-ne-remplacera-pas-vos-lsp/ Article d'opinion d'un SRE (Thomas du podcast DansLaTech): L'IA n'est pas efficace pour la complétion de code : L'auteur soutient que l'utilisation de l'IA pour la complétion de code basique est inefficace. Des outils plus anciens et spécialisés comme les LSP (Language Server Protocol) combinés aux snippets (morceaux de code réutilisables) sont bien plus rapides, personnalisables et performants pour les tâches répétitives. L'IA comme un "collègue" autonome : L'auteur utilise l'IA (comme Claude) comme un assistant externe à son éditeur de code. Il lui délègue des tâches complexes ou fastidieuses (corriger des bugs, mettre à jour une configuration, faire des reviews de code) qu'il peut exécuter en parallèle, agissant comme un agent autonome. L'IA comme un "canard en caoutchouc" surpuissant : L'IA est extrêmement efficace pour le débogage. Le simple fait de devoir formuler et contextualiser un problème pour l'IA aide souvent à trouver la solution soi-même. Quand ce n'est pas le cas, l'IA identifie très rapidement les erreurs "bêtes" qui peuvent faire perdre beaucoup de temps. Un outil pour accélérer les POCs et l'apprentissage : L'IA permet de créer des "preuves de concept" (POC) et des scripts d'automatisation jetables très rapidement, réduisant le coût et le temps investis. Elle est également un excellent outil pour apprendre et approfondir des sujets, notamment avec des outils comme NotebookLM de Google qui peuvent générer des résumés, des quiz ou des fiches de révision à partir de sources. Conclusion : Il faut utiliser l'IA là où elle excelle et ne pas la forcer dans des usages où des outils existants sont meilleurs. Plutôt que de l'intégrer partout de manière contre-productive, il faut l'adopter comme un outil spécialisé pour des tâches précises afin de gagner en efficacité. GPT 5.2 est sorti https://openai.com/index/introducing-gpt-5-2/ Nouveau modèle phare: GPT‑5.2 (Instant, Thinking, Pro) vise le travail professionnel et les agents long-courriers, avec de gros gains en raisonnement, long contexte, vision et appel d'outils. Déploiement dans ChatGPT (plans payants) et disponible dès maintenant via l'API . SOTA sur de nombreux benchmarks: GDPval (tâches de "knowledge work" sur 44 métiers): GPT‑5.2 Thinking gagne/égale 70,9% vs pros, avec production >11× plus rapide et = 0) Ils apportent une sémantique forte indépendamment des noms de variables Les Value Objects sont immuables et s'évaluent sur leurs valeurs, pas leur identité Les records Java permettent de créer des Value Objects mais avec un surcoût en mémoire Le projet Valhalla introduira les value based classes pour optimiser ces structures Les identifiants fortement typés évitent de confondre différents IDs de type Long ou UUID Pattern Strongly Typed IDs: utiliser PersonneID au lieu de Long pour identifier une personne Le modèle de domaine riche s'oppose au modèle de domaine anémique Les Value Objects auto-documentent le code et le rendent moins sujet aux erreurs Je trouve cela interessant ce que pourra faire bousculer les Value Objects. Est-ce que les value objects ameneront de la légerté dans l'execution Eviter la lourdeur du design est toujours ce qui m'a fait peut dans ces approches Méthodologies Retour d'experience de vibe coder une appli week end avec co-pilot http://blog.sunix.org/articles/howto/2025/11/14/building-gift-card-app-with-github-copilot.html on a deja parlé des approches de vibe coding cette fois c'est l'experience de Sun Et un des points differents c'es qu'on lui parle en ouvrant des tickets et donc on eput faire re reveues de code et copilot y bosse et il a fini son projet ! User Need VS Product Need https://blog.ippon.fr/2025/11/10/user-need-vs-product-need/ un article de nos amis de chez Ippon Distinction entre besoin utilisateur et besoin produit dans le développement digital Le besoin utilisateur est souvent exprimé comme une solution concrète plutôt que le problème réel Le besoin produit émerge après analyse approfondie combinant observation, données et vision stratégique Exemple du livreur Marc qui demande un vélo plus léger alors que son vrai problème est l'efficacité logistique La méthode des 5 Pourquoi permet de remonter à la racine des problèmes Les besoins proviennent de trois sources: utilisateurs finaux, parties prenantes business et contraintes techniques Un vrai besoin crée de la valeur à la fois pour le client et l'entreprise Le Product Owner doit traduire les demandes en problèmes réels avant de concevoir des solutions Risque de construire des solutions techniquement élégantes mais qui manquent leur cible Le rôle du product management est de concilier des besoins parfois contradictoires en priorisant la valeur Est ce qu'un EM doit coder ? https://www.modernleader.is/p/should-ems-write-code Pas de réponse unique : La question de savoir si un "Engineering Manager" (EM) doit coder n'a pas de réponse universelle. Cela dépend fortement du contexte de l'entreprise, de la maturité de l'équipe et de la personnalité du manager. Les risques de coder : Pour un EM, écrire du code peut devenir une échappatoire pour éviter les aspects plus difficiles du management. Cela peut aussi le transformer en goulot d'étranglement pour l'équipe et nuire à l'autonomie de ses membres s'il prend trop de place. Les avantages quand c'est bien fait : Coder sur des tâches non essentielles (amélioration d'outils, prototypage, etc.) peut aider l'EM à rester pertinent techniquement, à garder le contact avec la réalité de l'équipe et à débloquer des situations sans prendre le lead sur les projets. Le principe directeur : La règle d'or est de rester en dehors du chemin critique. Le code écrit par un EM doit servir à créer de l'espace pour son équipe, et non à en prendre. La vraie question à se poser : Plutôt que "dois-je coder ?", un EM devrait se demander : "De quoi mon équipe a-t-elle besoin de ma part maintenant, et est-ce que coder va dans ce sens ou est-ce un obstacle ?" Sécurité React2Shell — Grosse faille de sécurité avec React et Next.js, avec un CVE de niveau 10 https://x.com/rauchg/status/1997362942929440937?s=20 aussi https://react2shell.com/ "React2Shell" est le nom donné à une vulnérabilité de sécurité de criticité maximale (score 10.0/10.0), identifiée par le code CVE-2025-55182. Systèmes Affectés : La faille concerne les applications utilisant les "React Server Components" (RSC) côté serveur, et plus particulièrement les versions non patchées du framework Next.js. Risque Principal : Le risque est le plus élevé possible : l'exécution de code à distance (RCE). Un attaquant peut envoyer une requête malveillante pour exécuter n'importe quelle commande sur le serveur, lui en donnant potentiellement le contrôle total. Cause Technique : La vulnérabilité se situe dans le protocole "React Flight" (utilisé pour la communication client-serveur). Elle est due à une omission de vérifications de sécurité fondamentales (hasOwnProperty), permettant à une entrée utilisateur malveillante de tromper le serveur. Mécanisme de l'Exploit : L'attaque consiste à envoyer une charge utile (payload) qui exploite la nature dynamique de JavaScript pour : Faire passer un objet malveillant pour un objet interne de React. Forcer React à traiter cet objet comme une opération asynchrone (Promise). Finalement, accéder au constructeur de la classe Function de JavaScript pour exécuter du code arbitraire. Action Impérative : La seule solution fiable est de mettre à jour immédiatement les dépendances de React et Next.js vers les versions corrigées. Ne pas attendre. Mesures Secondaires : Bien que les pare-feux (firewalls) puissent aider à bloquer les formes connues de l'attaque, ils sont considérés comme insuffisants et ne remplacent en aucun cas la mise à jour des paquets. Découverte : La faille a été découverte par le chercheur en sécurité Lachlan Davidson, qui l'a divulguée de manière responsable pour permettre la création de correctifs. Loi, société et organisation Google autorise votre employeur à lire tous vos SMS professionnels https://www.generation-nt.com/actualites/google-android-rcs-messages-surveillance-employeur-2067012 Nouvelle fonctionnalité de surveillance : Google a déployé une fonctionnalité appelée "Android RCS Archival" qui permet aux employeurs d'intercepter, lire et archiver tous les messages RCS (et SMS) envoyés depuis les téléphones professionnels Android gérés par l'entreprise. Contournement du chiffrement : Bien que les messages RCS soient chiffrés de bout en bout pendant leur transit, cette nouvelle API permet à des logiciels de conformité (installés par l'employeur) d'accéder aux messages une fois qu'ils sont déchiffrés sur l'appareil. Le chiffrement devient donc inefficace contre cette surveillance. Réponse à une exigence légale : Cette mesure a été mise en place pour répondre aux exigences réglementaires, notamment dans le secteur financier, où les entreprises ont l'obligation légale de conserver une archive de toutes les communications professionnelles pour des raisons de conformité. Impact pour les employés : Un employé utilisant un téléphone Android fourni et géré par son entreprise pourra voir ses communications surveillées. Google précise cependant qu'une notification claire et visible informera l'utilisateur lorsque la fonction d'archivage est active. Téléphones personnels non concernés : Cette mesure ne s'applique qu'aux appareils "Android Enterprise" entièrement gérés par un employeur. Les téléphones personnels des employés ne sont pas affectés. Pour noel, faites un don à JUnit https://steady.page/en/junit/about JUnit est essentiel pour Java : C'est le framework de test le plus ancien et le plus utilisé par les développeurs Java. Son objectif est de fournir une base solide et à jour pour tous les types de tests côté développeur sur la JVM (Machine Virtuelle Java). Un projet maintenu par des bénévoles : JUnit est développé et maintenu par une équipe de volontaires passionnés sur leur temps libre (week-ends, soirées). Appel au soutien financier : La page est un appel aux dons de la part des utilisateurs (développeurs, entreprises) pour aider l'équipe à maintenir le rythme de développement. Le soutien financier n'est pas obligatoire, mais il permettrait aux mainteneurs de se consacrer davantage au projet. Objectif des fonds : Les dons serviraient principalement à financer des rencontres en personne pour les membres de l'équipe principale. L'idée est de leur permettre de travailler ensemble physiquement pendant quelques jours pour concevoir et coder plus efficacement. Pas de traitement de faveur : Il est clairement indiqué que devenir un sponsor ne donne aucun privilège sur la feuille de route du projet. On ne peut pas "acheter" de nouvelles fonctionnalités ou des corrections de bugs prioritaires. Le projet restera ouvert et collaboratif sur GitHub. Reconnaissance des donateurs : En guise de remerciement, les noms (et logos pour les entreprises) des donateurs peuvent être affichés sur le site officiel de JUnit. Conférences La liste des conférences provenant de Developers Conferences Agenda/List par Aurélie Vache et contributeurs : 14-17 janvier 2026 : SnowCamp 2026 - Grenoble (France) 22 janvier 2026 : DevCon #26 : sécurité / post-quantique / hacking - Paris (France) 28 janvier 2026 : Software Heritage Symposium - Paris (France) 29-31 janvier 2026 : Epitech Summit 2026 - Paris - Paris (France) 2-5 février 2026 : Epitech Summit 2026 - Moulins - Moulins (France) 2-6 février 2026 : Web Days Convention - Aix-en-Provence (France) 3 février 2026 : Cloud Native Days France 2026 - Paris (France) 3-4 février 2026 : Epitech Summit 2026 - Lille - Lille (France) 3-4 février 2026 : Epitech Summit 2026 - Mulhouse - Mulhouse (France) 3-4 février 2026 : Epitech Summit 2026 - Nancy - Nancy (France) 3-4 février 2026 : Epitech Summit 2026 - Nantes - Nantes (France) 3-4 février 2026 : Epitech Summit 2026 - Marseille - Marseille (France) 3-4 février 2026 : Epitech Summit 2026 - Rennes - Rennes (France) 3-4 février 2026 : Epitech Summit 2026 - Montpellier - Montpellier (France) 3-4 février 2026 : Epitech Summit 2026 - Strasbourg - Strasbourg (France) 3-4 février 2026 : Epitech Summit 2026 - Toulouse - Toulouse (France) 4-5 février 2026 : Epitech Summit 2026 - Bordeaux - Bordeaux (France) 4-5 février 2026 : Epitech Summit 2026 - Lyon - Lyon (France) 4-6 février 2026 : Epitech Summit 2026 - Nice - Nice (France) 12-13 février 2026 : Touraine Tech #26 - Tours (France) 19 février 2026 : ObservabilityCON on the Road - Paris (France) 18-19 mars 2026 : Agile Niort 2026 - Niort (France) 26-27 mars 2026 : SymfonyLive Paris 2026 - Paris (France) 27-29 mars 2026 : Shift - Nantes (France) 31 mars 2026 : ParisTestConf - Paris (France) 16-17 avril 2026 : MiXiT 2026 - Lyon (France) 22-24 avril 2026 : Devoxx France 2026 - Paris (France) 23-25 avril 2026 : Devoxx Greece - Athens (Greece) 6-7 mai 2026 : Devoxx UK 2026 - London (UK) 22 mai 2026 : AFUP Day 2026 Lille - Lille (France) 22 mai 2026 : AFUP Day 2026 Paris - Paris (France) 22 mai 2026 : AFUP Day 2026 Bordeaux - Bordeaux (France) 22 mai 2026 : AFUP Day 2026 Lyon - Lyon (France) 5 juin 2026 : TechReady - Nantes (France) 11-12 juin 2026 : DevQuest Niort - Niort (France) 11-12 juin 2026 : DevLille 2026 - Lille (France) 17-19 juin 2026 : Devoxx Poland - Krakow (Poland) 2-3 juillet 2026 : Sunny Tech - Montpellier (France) 2 août 2026 : 4th Tech Summit on Artificial Intelligence & Robotics - Paris (France) 4 septembre 2026 : JUG Summer Camp 2026 - La Rochelle (France) 17-18 septembre 2026 : API Platform Conference 2026 - Lille (France) 5-9 octobre 2026 : Devoxx Belgium - Antwerp (Belgium) Nous contacter Pour réagir à cet épisode, venez discuter sur le groupe Google https://groups.google.com/group/lescastcodeurs Contactez-nous via X/twitter https://twitter.com/lescastcodeurs ou Bluesky https://bsky.app/profile/lescastcodeurs.com Faire un crowdcast ou une crowdquestion Soutenez Les Cast Codeurs sur Patreon https://www.patreon.com/LesCastCodeurs Tous les épisodes et toutes les infos sur https://lescastcodeurs.com/

We review the results from Zscaler (ZS) and Workday (WDAY) and predict which stock is more likely to outperform over the next 10 years. Who ya got? Asit Sharma, David Meier, and Tim Beyers: - Review last week's results from Zscaler and Workday. - Predict which of the two will outperform more over the next 10 years. - Tackle investors' pressing Mindset questions. Have a Mindset question you'd want answered on a future show? Reach out to Tim at tbeyers@fool.com. Don't wait! Be sure to get to your local bookstore and pick up a copy of David's Gardner's new book — Rule Breaker Investing: How to Pick the Best Stocks of the Future and Build Lasting Wealth. It's on shelves now; get it before it's gone! Companies discussed: ZS, WDAY Host: Tim Beyers Guests: Asit Sharma, David Meier Producer: Anand Chokkavelu Engineer: Dan Boyd Disclosure: Advertisements are sponsored content and provided for informational purposes only. The Motley Fool and its affiliates (collectively, “TMF”) do not endorse, recommend, or verify the accuracy or completeness of the statements made within advertisements. TMF is not involved in the offer, sale, or solicitation of any securities advertised herein and makes no representations regarding the suitability, or risks associated with any investment opportunity presented. Investors should conduct their own due diligence and consult with legal, tax, and financial advisors before making any investment decisions. TMF assumes no responsibility for any losses or damages arising from this advertisement. We're committed to transparency: All personal opinions in advertisements from Fools are their own. The product advertised in this episode was loaned to TMF and was returned after a test period or the product advertised in this episode was purchased by TMF. Advertiser has paid for the sponsorship of this episode. Learn more about your ad choices. Visit ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠megaphone.fm/adchoices Learn more about your ad choices. Visit megaphone.fm/adchoices

In der heutigen Folge sprechen die Finanzjournalisten Daniel Eckert und Lea Oetjen über das Stablecoin-Phänomen, neue Übernahmefantasien bei der Commerzbank und Rekordumsätze bei Urban Outfitters. Außerdem geht es um Zscaler, Puma, Aroundtown, Thyssenkrupp, Salzgitter, TKMS, Commerzbank, Deutsche Bank, Block, Coinbase, Deutsche Börse, Microsoft, Applied Materials, Alphabet, Edwards Lifesciences, Global X FinTech ETF (WKN: A2QPBZ), BIT Global Fintech Leaders (WKN: A2QJLA), CoinShares Physical Staked Ethereum (WKN: A3GQ2N), Bitwise Physical Solana ETP (WKN: A3GVKZ), VanEck Crypto and Blockchain Innovators (WKN: A2QQ8F) und DM Premium Strategie defensiv Euro Fonds (WKN: A111ZF). Meldet Euch unbedingt für den „Daily Business“-Newsletter an – kostenlos unter diesem Link: https://www.businessinsider.de/informationen/newsletter/businessinsider/ Exklusiv für Euch als „Alles auf Aktien“-Hörer: Spart jetzt bis zu 83 Euro mit unserem „Black Friday“-Angebot von Business Insider. Erhaltet aktuelle News sowie Insights zur Finanzwelt und bleibt immer einen Schritt voraus https://www.businessinsider.de/abo/aaa/?tpcc=offsite_bi_aaa_podcast_bf_25 Oder darf es lieber WELTplus sein? Sichert Euch mit diesem Link jetzt das Abo zum AAA-Vorteilspreis – für mehr Tiefe, mehr Finanzen und mehr Vermögen. www.welt.de/aaablackfriday Die aktuelle „Alles auf Aktien“-Umfrage findet Ihr unter: https://www.umfrageonline.com/c/mh9uebwm Wir freuen uns über Feedback an aaa@welt.de. Noch mehr „Alles auf Aktien“ findet Ihr bei WELTplus und Apple Podcasts – inklusive aller Artikel der Hosts und AAA-Newsletter.[ Hier bei WELT.](https://www.welt.de/podcasts/alles-auf-aktien/plus247399208/Boersen-Podcast-AAA-Bonus-Folgen-Jede-Woche-noch-mehr-Antworten-auf-Eure-Boersen-Fragen.html.) [Hier] (https://open.spotify.com/playlist/6zxjyJpTMunyYCY6F7vHK1?si=8f6cTnkEQnmSrlMU8Vo6uQ) findest Du die Samstagsfolgen Klassiker-Playlist auf Spotify! Disclaimer: Die im Podcast besprochenen Aktien und Fonds stellen keine spezifischen Kauf- oder Anlage-Empfehlungen dar. Die Moderatoren und der Verlag haften nicht für etwaige Verluste, die aufgrund der Umsetzung der Gedanken oder Ideen entstehen. Hörtipps: Für alle, die noch mehr wissen wollen: Holger Zschäpitz können Sie jede Woche im Finanz- und Wirtschaftspodcast „Deffner&Zschäpitz“ hören. +++ Werbung +++ Du möchtest mehr über unsere Werbepartner erfahren? [**Hier findest du alle Infos & Rabatte!**](https://linktr.ee/alles_auf_aktien) Impressum: https://www.welt.de/services/article7893735/Impressum.html Datenschutz: https://www.welt.de/services/article157550705/Datenschutzerklaerung-WELT-DIGITAL.html

Mitch Ashley believes Zscaler (ZS) is aligned with five key cybersecurity trends. The stock dropped over 10% after earnings, but he argues that it is positioning well for the world of AI. “It wasn't a bad announcement,” he says of the earnings, but notes disappointing EPS and profits. Mitch also dips into “platform telemetry” and AI defense, explaining how this world is evolving. ======== Schwab Network ========Empowering every investor and trader, every market day.Options involve risks and are not suitable for all investors. Before trading, read the Options Disclosure Document. http://bit.ly/2v9tH6DSubscribe to the Market Minute newsletter - https://schwabnetwork.com/subscribeDownload the iOS app - https://apps.apple.com/us/app/schwab-network/id1460719185Download the Amazon Fire Tv App - https://www.amazon.com/TD-Ameritrade-Network/dp/B07KRD76C7Watch on Sling - https://watch.sling.com/1/asset/191928615bd8d47686f94682aefaa007/watchWatch on Vizio - https://www.vizio.com/en/watchfreeplus-exploreWatch on DistroTV - https://www.distro.tv/live/schwab-network/Follow us on X – https://twitter.com/schwabnetworkFollow us on Facebook – https://www.facebook.com/schwabnetworkFollow us on LinkedIn - https://www.linkedin.com/company/schwab-network/About Schwab Network - https://schwabnetwork.com/about

Elon Musk Reporter Theo Wayt talks with today's TITV Host Anita Ramaswamy about Elon Musk's mission to replace X staff with xAI's Grok and the role of the Siboliyev twins. We also talk with D.A. Davidson's Gil Luria and WorkHelix's Andrew McAfee about AI's accelerating impact on job cuts, particularly in white-collar professions, and the shift of wealth from big tech to NVIDIA. Warp CEO Zack Lloyd shares his data showing Google's Gemini 3.0 model's advantage over OpenAI's models in agentic coding. Lastly, KeyBanc Capital Markets' Jackson Ader provides an earnings preview for Zoom, Zscaler, and Salesforce, and The Information's Co-Executive Editor Martin Peers breaks down the unprecedented growth of NVIDIA's free cash flow and how the company is using it to fight competition.Articles discussed on this episode:https://www.theinformation.com/articles/twins-pushing-elon-musks-plans-replace-x-staff-grokhttps://www.theinformation.com/articles/nvidias-mushrooming-cash-pile-spotlights-spending-choicesTITV airs on YouTube, X and LinkedIn at 10AM PT / 1PM ET. Or check us out wherever you get your podcasts.Subscribe to: - The Information on YouTube: https://www.youtube.com/@theinformation- The Information: https://www.theinformation.com/subscribe_hSign up for the AI Agenda newsletter: https://www.theinformation.com/features/ai-agenda

Alex Berninger, Senior Manager of Intelligence at Red Canary, and Mike Wylie, Director, Threat Hunting at Zscaler, join to discuss four phishing lures in campaigns dropping RMM tools. Red Canary and Zscaler uncovered phishing campaigns delivering legitimate remote monitoring and management (RMM) tools—like ITarian, PDQ, SimpleHelp, and Atera—to gain stealthy access to victim systems. Attackers used four main lures (fake browser updates, meeting invites, party invitations, and fake government forms) and often deployed multiple RMM tools in quick succession to establish persistent access and deliver additional malware. The report highlights detection opportunities, provides indicators of compromise, and stresses the importance of monitoring authorized RMM usage, scrutinizing trusted services like Cloudflare R2, and enforcing strict network and endpoint controls. The research can be found here: You're invited: Four phishing lures in campaigns dropping RMM tools Learn more about your ad choices. Visit megaphone.fm/adchoices

Alex Berninger, Senior Manager of Intelligence at Red Canary, and Mike Wylie, Director, Threat Hunting at Zscaler, join to discuss four phishing lures in campaigns dropping RMM tools. Red Canary and Zscaler uncovered phishing campaigns delivering legitimate remote monitoring and management (RMM) tools—like ITarian, PDQ, SimpleHelp, and Atera—to gain stealthy access to victim systems. Attackers used four main lures (fake browser updates, meeting invites, party invitations, and fake government forms) and often deployed multiple RMM tools in quick succession to establish persistent access and deliver additional malware. The report highlights detection opportunities, provides indicators of compromise, and stresses the importance of monitoring authorized RMM usage, scrutinizing trusted services like Cloudflare R2, and enforcing strict network and endpoint controls. The research can be found here: You're invited: Four phishing lures in campaigns dropping RMM tools Learn more about your ad choices. Visit megaphone.fm/adchoices

We speak with Deepen Desai, Chief Security Officer & Executive Vice President of Cyber & AI Engineering at Zscaler on the latest zero trust and AI innovations empowering organisations to secure their digital transformation journeys and stay ahead of evolving threats.With nearly two decades of expertise in cybersecurity, Deepen is regarded as a pioneer in advancing threat intelligence, secure product development, and enterprise protection. Beyond his scope of leading cyber and AI engineering, Deepen also oversees the ThreatLabz team, a world-class security research group focused on identifying emerging threats, analyzing vulnerabilities, and delivering actionable insights to protect organizations at Zscaler. Under his leadership, Zscaler's award-winning zero-trust architecture continues to evolve, providing businesses with robust defenses against sophisticated attack vectors like ransomware, phishing, and advanced malware.Before joining Zscaler, Deepen held key security leadership positions at Dell SonicWALL, where he helped develop cutting-edge security solutions and strategies for businesses navigating an increasingly complex threat landscape. His breadth of experience in fields like security operations, threat research, and compliance has established him as a respected authority in the industry.#ZL2025 #zerotrustsecurity #mysecuritytv #zscaler

We speak with Dhawal Sharma, Executive Vice President & Head of Product Strategy at Zscaler on the latest innovations in zero trust to enhance security, simplify access management, and significantly reduce legacy infrastructure costs.Dhawal Sharma is a visionary leader and expert in cloud security who currently serves as Executive Vice President and Head of Product Strategy at Zscaler. Since joining the company in 2012, Dhawal has made significant contributions to its success by leading key product management initiatives that have strengthened the foundation of Zscaler's solutions and transformed the way businesses approach secure digital transformation.From 2012 to 2018, Dhawal oversaw all core product management at Zscaler, driving innovation and excellence across the company's primary offerings. Today, he leads emerging product innovations and core platform responsibilities, focusing on cutting-edge advancements in cloud security, networking, data path optimization, IoT security, Network Function Virtualization (NFV), Network Performance Monitoring (NPM), Data Loss Prevention (DLP), and regulatory compliance. His ability to identify industry needs ahead of the curve has positioned Zscaler as a leader in cloud-native security solutions.Dhawal's professional journey spans two decades, during which he has held key product management, product marketing, and sales leadership roles in security, networking, compliance, and network management across both large enterprises and tech startups. Prior to Zscaler, Dhawal worked at Cisco, where he excelled in strategic roles that shaped the security and networking landscape.An accomplished academic, Dhawal holds a Technical MBA degree with a specialization in Networking and IT Infrastructure from Symbiosis Center for IT. He also holds a Bachelor's in Engineering degree specializing in Computer Science. #ZL2025 #zerotrustsecurity #mysecuritytv #zscaler

Zero Trust has been top of mind for years, but how is AI changing what that actually looks like in practice? In this episode of CyberWire-X, Dave Bittner is joined by Deepen Desai, Chief Security Officer at Zscaler, to discuss the transformative impact of AI on Zero Trust security frameworks. The discussion outlines how AI enhances threat prevention, automates data discovery, and improves user experience while addressing the practical financial implications of adopting AI in security. Hear how organizations must embrace AI to stay competitive and secure against evolving threats. For additional resources on Zero Trust + AI, visit Zscaler's Replace Legacy Systems for Better Security. Learn more about your ad choices. Visit megaphone.fm/adchoices

In this episode of the Playbook Universe, we speak with Kristian Kamber, CEO and co-founder of SPLX AI, about his journey from elite sales roles at AppDynamics and ZScaler to launching his own AI security startup. Kristian shares the inner drive and lessons learned, from a family restaurant business to the high-stakes world of Silicon Valley playbooks, that prepared him to lead a fast-moving, deeply technical company. He reveals the critical steps in finding the right technical co-founder, securing investment, and achieving product-market fit by listening intently to customers. This is essential listening for any sales professional considering the leap into entrepreneurship.

S1E2: Landing Healthcare AI Without a Crash Host Tamer Baker invites Chad Tetreault, Field CTO at Zscaler and former DHS Deputy CTO to explore AI in healthcare and governance challenges while cutting through the hype. From practical applications of AI in healthcare, addressing trust, governance, and cutting-edge use cases, this episode has it all. To stream our Station live 24/7 visit www.HealthcareNOWRadio.com or ask your Smart Device to “….Play Healthcare NOW Radio”. Find all of our network podcasts on your favorite podcast platforms and be sure to subscribe and like us. Learn more at www.healthcarenowradio.com/listen

AI hype has been loud for three years, but most leaders still tell me the real work begins after the demo. That was the starting point for my conversation with Christina Ellwood, co-founder of AI Realized, a community built to help enterprises move from pilots to production with less noise and more results.  Christina has a calm, practical way of explaining why progress has accelerated from a tiny fraction of companies in production to roughly one in five this year, and why many of the remaining blockers have little to do with model choice and everything to do with people, policy, and permission to ship. We talk about the messy middle between a proof of concept and a live service that customers can rely on. According to Christina, the most complex problems are organizational. Teams need upskilling, guardrails, and clear deployment guidelines to ensure effective execution. Legal and brand risk create hesitation. Boards want more substantial evidence and better controls. That is where leadership shows up in a very human way.  The skill she hears most often from successful program leads is humility. No one knows everything here, and the leaders who admit that, invite challenge, and keep learning are the ones getting to value without creating chaos. I loved her point that cross-organisational leadership is fast becoming the hidden superpower as AI connects systems and workflows that used to sit in separate silos. We also look forward to the 2025 AI Realized Summit, scheduled for November 5 in San Francisco. Attendance is intentionally capped at 500 to maintain high-quality conversation and genuine networking. Expect Fortune 2000 use cases across multiple industries, a healthy mix of predictive and generative work, and practical talk on small language models, multi-model strategies, and running models inside your security perimeter.  Eric Siegel will keynote on combining predictive analytics with generative techniques, and you will hear from executives at companies including Amazon, Audible, Red Hat, and Zscaler. Christina highlights one example from Fandom that combines predictive ad targeting with generative tools to enhance brand safety and suitability, a trend I expect to see repeated throughout the day. If you are leading AI programs and need fewer slogans and more proof, this episode will feel like a deep breath. We explore how to move faster while staying responsible, why smaller and multi-model setups are gaining traction, and how to build confidence with your board without overpromising.

Are you looking to save time, make money, and start winning with less risk? Then head to https://www.ovtlyr.com.SoFi stock just crashed hard, dropping over 10% in a single session, and the big question is: what do you do if you're holding shares? In this video we break down the warning signs that could have saved traders from heavy losses, the technical red flags flashing across the chart, and why sticking to proven signals with OVTLYR helps you avoid getting caught in a free fall.We start by analyzing SoFi's chart and the sell signals that fired off before the collapse. Order blocks showed clear resistance overhead while no support was in sight. On top of that, the 10 EMA and 20 EMA weren't just broken, they were crushed, confirming that the short-term and intermediate trends had flipped bearish. Add in the 50/80 rule—where 50% of the time a stock like this can fall 80%—and the risk was obvious to anyone following the data.➡️ Learn how order blocks reveal resistance zones and why lack of support signals danger➡️ See why SoFi's moving average breakdown was a massive red flag➡️ Understand how the 50/80 rule plays out in real-world trades➡️ Discover why buying dips in crashing stocks is a losing strategy➡️ Get the simple trend template OVTLYR traders use to confirm entries and exitsThis episode also dives into trading psychology. Many investors convince themselves that “the market is wrong” when a stock like SoFi drops. But the market is never wrong. Price is truth, and your job is to follow the wave, not fight it. That's why patience and discipline matter—waiting for stocks that are crashing up instead of catching falling knives that destroy your account.We also compare SoFi to names like AMD, Tesla, and others that show what happens when you ignore exit signals. These examples prove that even the strongest rallies can evaporate quickly, and the only way to protect your gains is by having a plan. Averaging down might feel like a strategy, but it ties up your money for months with no guarantee of recovery. Averaging up when the trend is confirmed is where the real profits are made.Beyond SoFi, we look at opportunities across the market using OVTLYR's plans: Plan M, Plan A, and Plan ETF. With the S&P and Nasdaq showing mixed signals, sometimes the smartest move is simply sitting in cash. Other times, ETF strategies shine by capturing broader uptrends with lower stress. And when the signals line up, individual names like Intel, Zscaler, and Datadog show traders exactly how to time their moves with confidence.If you've been burned holding stocks through massive drops, this video is for you. You'll see why trusting signals, following the trend template, and using OVTLYR to confirm setups is the smarter way to trade. Stop guessing, stop hoping, and start trading with rules that protect your capital.Gain instant access to the AI-powered tools and behavioral insights top traders use to spot big moves before the crowd. Start trading smarter today

Kris Kamber is CEO of SPLX AI. SPLX performs security testing and red teaming for AI agents, helping organizations detect vulnerabilities in their constantly expanding agent deployments. Before SPLX, Kris worked a handful of sales jobs, starting in telecom before hustling his way into Zscaler. I enjoyed asking him about the specific lessons from working in sales such as setting metrics and compensation. He's the first person who has described to me a workplace filled with arrogant and cocky people and also illustrated why he was attracted to that environment. We also touched on how he met his co-founder through a conversation on a plane and what compelled him to build a company at the intersection of AI and cybersecurity given his background.SPLX Website

On this week's show Patrick Gray and Adam Boileau discuss the week's cybersecurity news, including: The Salesloft breach and why OAuth soup is a problem The Salt Typhoon telco hackers turn out to be Chinese private sector, but state-directed Google says it will stand up a “disruption unit” Microsoft writes up a ransomware gang that's all-in on the cloud future Aussie firm hot-mics its work-from-home employees' laptops Youtube scam baiters help the feds take down a fraud ring This episode is sponsored by Dropzone.AI. Founder and CEO Edward Wu joins the show to talk about how AI driven SOC tools can help smaller organisations claw their way above the “security poverty line”. A dedicated monitoring team, threat hunting and alert triage, in a company that only has a couple of part time infosec people? Yes please! This episode is also available on Youtube. Show notes The Ongoing Fallout from a Breach at AI Chatbot Maker Salesloft – Krebs on Security Salesloft: The Leading AI Revenue Orchestration Platform Palo Alto Networks, Zscaler customers impacted by supply chain attacks | Cybersecurity Dive The impact of the Salesloft Drift breach on Cloudflare and our customers China used three private companies to hack global telecoms, U.S. says CSA_COUNTERING_CHINA_STATE_ACTORS_COMPROMISE_OF_NETWORKS.PDF Google previews cyber ‘disruption unit' as U.S. government, industry weigh going heavier on offense | CyberScoop Ransomware gang takedowns causing explosion of new, smaller groups | The Record from Recorded Future News Hundreds of Swedish municipalities impacted by suspected ransomware attack on IT supplier | The Record from Recorded Future News Storm-0501's evolving techniques lead to cloud-based ransomware | Microsoft Security Blog The Era of AI-Generated Ransomware Has Arrived | WIRED Between Two Nerds: How threat actors are using AI to run wild - YouTube Affiliates Flock to ‘Soulless' Scam Gambling Machine – Krebs on Security UK sought broad access to Apple customers' data, court filing suggests ICE reactivates contract with spyware maker Paragon | TechCrunch WhatsApp fixes 'zero-click' bug used to hack Apple users with spyware | TechCrunch Safetrac turned staff laptops into covert recording devices to monitor WFH Risky Bulletin: YouTubers unmask and help dismantle giant Chinese scam ring - Risky Business Media

The 5 things you need to know before the stock market opens today: A new ruling decided Google can keep Chrome, OpenAI is buying a product development startup for $1.1 billion, activist hedge fund Holdco is reportedly putting pressure on Comerica to sell or face a board challenge, Zscaler shares are up after strong revenue guidance, and Disney will pay $10 million to settle FTC claims it unlawfully collected children's data. Squawk Box is hosted by Joe Kernen, Becky Quick and Andrew Ross Sorkin.  Follow Squawk Pod for the best moments, interviews and analysis from our TV show in an audio-first format.

Is your company's AI strategy opening you up to massive security risks? In this powerful conversation, Claudionor Coelho, Chief AI Officer at Zscaler, reveals the hidden dangers of agentic AI—and how Fortune 500 companies are unintentionally exposing sensitive data through generative AI tools.Claudionor shares real-world examples of AI vulnerabilities, how attackers can exploit agent systems to extract private data, and why AI security must be treated with the same urgency as data security. From salary leaks to corporate data breaches, this discussion is a wake-up call for executives, CISOs, and AI teams alike.