SANS Stormcast Friday, May 1st, 2026: Libredtail; FreeBSD Dhclient Vuln; Linux Copy-Fail; @Sans_edu Detecting AI Pickling
In this Stormcast episode, Johannes Ulrich covers three critical security issues: the resurgence of the RedTail crypto‑miner malware exploiting legacy web‑app flaws, a remote‑code‑execution bug in FreeBSD's dhclient that can be triggered via spoofed DHCP packets, and the newly disclosed Linux "Copy‑Fail" privilege‑escalation flaw affecting recent kernels. He then interviews Brian Nice, a healthcare AI security specialist, who explains how malicious code can be hidden in Python pickle‑based AI model files and evaluates the inconsistent performance of static scanning tools for detecting such threats. The discussion underscores the need for timely patching, firmware updates, and robust supply‑chain scanning in both infrastructure and AI deployments.
Snake Oilers: Ent AI, Spacewalk and Mondoo
In this episode of the Risky Business Snake Oilers podcast, host Patrick Gray interviews three AI‑focused security vendors. First, Brandon Dixon of Ent AI (formerly Ent Security) explains their intent‑aware endpoint solution that uses lightweight on‑device agents and edge‑run language...
Cybersecurity and the New Threat Landscape for U.S. Utilities
In this episode of Schweitzer Drive, Frank Harrell interviews Sharla Arts, Vice President of Security and Resilience Policy at Accel Energy, about the rapidly evolving cyber threat landscape facing U.S. utilities. Arts explains how nation‑state actors, AI‑enabled ransomware, and the...
Bastille Presents: The Wireless Threat Series Podcast, Flipper Zeros
In this episode of the Wireless Threat Series, Adrian Sanabria and John Bundy dissect the Flipper Zero, a compact, open‑source device that bundles sub‑gigahertz radio, RFID/NFC, BLE, infrared and USB "bad‑USB" capabilities. They demonstrate how the Flipper easily captures and...
Is Your Crypto Safe From Hackers? - Dyma Budorin | ATC #609
In this episode, Dima Budarin, CEO of Core3 and co‑founder of Hacken, discusses the evolving landscape of Web3 security, emphasizing that while smart‑contract audits have improved, operational and supply‑chain security remain weak points. He explains Core3’s mission to provide Moody’s‑style...
Bitwarden CLI Compromised
In this episode Adam covers the latest developer‑tool news, highlighting a supply‑chain attack that compromised the Bitwarden CLI, the release of TypeScript 7 beta with a ten‑fold performance boost, and Ubuntu 26.04 LTS becoming the new long‑term release. He also...
Iran, Russia, and the Future of Cyber Warfare
In this episode, RAINN cyber analyst Haley Benedict breaks down the cyber dimension of the Iran‑Israel conflict, noting that Iranian cyber activity has been surprisingly muted—likely due to pre‑emptive defenses, leadership losses, and an internet blackout. She highlights hacktivist attacks,...
Securing the Vibe: Tanya Janca on AI-Generated Code, Mythos, and the New AppSec Reality
In this episode of the Resilient Cyber Show, host Chris Hughes talks with application security veteran Tanya Janca about the rapid shift from traditional DevSecOps to "vibe coding," where AI generates most of the code with little human oversight. Janca...
What an ID Governance Consultant Wishes You Knew About Entra
In this episode of Intro Chat, identity‑governance consultant Sandra Saluti walks listeners through the fundamentals and pitfalls of Microsoft Entra ID governance. She explains how identity governance automates user lifecycle processes, ensures the right access at the right time, and...
787: Disaster Recovery & Incident Response For Accidental Techies – Tony Martignetti Nonprofit Radio
In this episode of Nonprofit Radio, Amanda Bache, IT support and operations specialist at Paths for Families, breaks down disaster recovery (DR) and incident response (IR) basics for "accidental techies"—non‑technical staff who need clear, actionable plans. She emphasizes the importance...
SANS Stormcast Friday April 24rd, 2026: Apple Update; Bitwarden Compromise; ASP.NET Core Patch
In this 6‑minute Stormcast episode, Johannes Ulrich discusses three urgent security updates: Apple’s iOS/iPadOS patch that fixes a notification‑center bug exploited to recover Signal messages, the compromise of Bitwarden’s command‑line tools via a GitHub‑worker attack linked to the earlier Checkmarx‑kicks...
AI Security Brief
The AI Security Brief episode introduces a new podcast aimed at cybersecurity leaders who need to stay ahead of rapidly evolving AI safety regulations and threats. Hosts Johnny Hand and Dustin Childs, both active practitioners, explain that each episode will...
As Fraud and Agentic Risks Mount, Data Provides Continuity
In this episode of the Payments Journal, host Rima Katz and guests Dermit Thoma (Head of Fraud & Data Science at AdData), senior sales director Brand (AdData), and senior fraud analyst Jennifer Pitt (Javelin Strategy & Research) discuss how fraud...
How to Close the Machine-Speed Gap in Cyber Defense with Nik Seetharaman of Wraithwatch
In this episode, Nick Seetharaman, founder and CEO of Wraithwatch, discusses how AI can close the speed gap between machine‑driven attackers and human‑limited defenders. He explains Wraithwatch’s AI‑native platform that unifies existing security tools into an intelligent command‑and‑control layer, enabling...
SLAM, Scam, Thank You Ma’am.
In this episode of Hacking Humans, hosts Dave Bittner and Joe Kerrigan, joined by guest Michelle Kellerman, discuss the SLAM method for phishing awareness—Sender, Links, Attachments, and Message—as a practical framework for spotting scams. They share real‑world anecdotes, including a...
Is Your Portfolio Safe? The Security Checklist Every Canadian Investor Needs
In this episode, host Cornell Schreiber talks with Leigh Tynan, Director of Online Security at TELUS, about protecting Canadian investors' portfolios from cyber threats. They cover a step‑by‑step security checklist—including multi‑factor authentication, unique passwords with a password manager, device updates,...
Dayton Children’s Whitlock Says TEFCA Trust Model Needs Stronger Guardrails to Stop Data Misuse
In this episode, Dayton Children’s CIO J.D. Whitlock discusses the challenges of TEFCA’s trust model, highlighting how inadequate guardrails have allowed patient data to be misused for non‑clinical purposes, exemplified by the Health Gorilla lawsuit. He explains the complex governance...
SANS Stormcast Tuesday, April 21st, 2026: CVE and EPSS; Windows Server 2025 OOB; QEMU Abuse;
In this 5‑minute Stormcast episode, Johannes Ulrich discusses the surge of new CVEs and the limitations of the NVD, introducing the Exploit Probability Scoring System (EPSS) as a scalable way to prioritize vulnerabilities. He then covers Microsoft’s out‑of‑band patch for...
EP273 From CISA to Cloud: AI Assurance, Concentration Risk, and the New Regulatory Frontier
In this episode, Google Cloud’s VP of Risk and Compliance, Jeanette Manfra, discusses how moving to the cloud reshapes security, privacy, and regulatory compliance for organizations, emphasizing the benefits of scale, transparency, and auditable controls. She explains that cloud introduces...
Tom Wetzel, AI for Insurance Agents and Cyber Crime Expert - PIR Ep. 806
In this episode, Tom Wetzel, president of Thomas H. Wetzel & Associates, discusses the rapid rise of AI‑driven cybercrime targeting insurance agents and their supply‑chain vendors. He explains how generative AI tools like WormGPT enable even low‑skill criminals to launch...
Project Glasswing: When AI Becomes the Ultimate Hacker—And Defender
The episode dives into Anthropic's secretive Project Glasswing, built around the unreleased Claude Mythos model that can autonomously discover zero‑day vulnerabilities and chain exploits. Hosts Kevin Tackett and Scott Wright debate the hype versus reality, arguing that while the AI...
#545: OWASP Top 10 (2025 List) for Python Devs
In episode 545, Michael Kennedy and security expert Tanya Janka unpack the newly released OWASP Top 10 (2025) with a focus on Python developers. They walk through each of the ten categories—highlighting fresh additions like supply‑chain attacks and exceptional condition...
DC3 Making Better Sense of Its Cyber Data
In this episode of Ask the CIO, Defense Cybercrime Center (DC3) Architecture Management of Data and Enterprise Division Chief Kajal Pal explains how DC3 protects the defense industrial base through digital forensics, threat intelligence sharing, and supply‑chain security. She details...
Who Is Winning the Scam Game?
In this episode of Hacking Humans, hosts Dave Bittner, Joe Kerrigan, and Maria Vermazis dissect two major scam narratives: an international gold‑scam ring that lured U.S. victims into buying $800,000 worth of physical gold, culminating in the arrest of a...
SANS Stormcast Thursday, April 16th, 2026: AI Credential Scans; Microsoft Update Issues; RDP Warnings; GitHub Action Vulns;
In this 7‑minute Stormcast episode, Johannes Ulrich warns that attackers are increasingly scanning web servers for AI‑related configuration files such as .env files containing OpenAI, Claude, or OpenClaw credentials, emphasizing the need for proper secret management and billing alerts. He...
MSP 1337 | Cybersecurity Education & Security Guidance
In this brief episode, the hosts explore the intertwined nature of cybersecurity and compliance, emphasizing that both are part of an ongoing journey for organizations. They discuss core topics such as incident response, penetration testing, and the evolving tactics of...
Why DHS No Longer Has a Compliance Mindset for Cybersecurity
In this episode of Ask the CIO, former DHS Chief Information Security Officer Hemant Badewin discusses his 15‑year federal career, why he chose to leave at this pivotal moment, and his new role as Executive CISO at Knox Systems. He...
ONC’s Keane Says Government Will Strengthen TEFCA Onboarding to Address Provider Privacy Concerns
In this episode, ONC National Coordinator Tom Keen discusses recent organizational changes at ONC, the dual‑lane approach of TEFCA and CMS‑aligned networks, and how the government is strengthening TEFCA onboarding to address provider privacy concerns. He explains that ONC will...
How to Design Bullet-Proof Conditional Access Policies in Microsoft Entra ID
In this episode, Microsoft MVP Per Torben‑Sansson discusses the fundamentals of building resilient Conditional Access (CA) policies in Microsoft Entra ID, starting with the critical role of break‑glass (emergency) accounts. He explains how to properly configure these accounts—using cloud‑only identities,...
EP271 Can AI-Native MDR Actually Fix Your Broken SOC Workflows or Just Automate the Mess?
In this live Cloud Security Podcast episode, host Tim Peacock and co‑host Anton Chewbacca interview Eric Foster and Bashar Abu Abusido, CEOs of 10X, about AI‑native Managed Detection and Response (MDR) and its impact on SOC modernization. They discuss why...
Mobile App Security with Ryan Lloyd
In this episode, Ryan Lloyd, Chief Product Officer at GuardSquare, explains how mobile app security differs from desktop and web security, emphasizing that critical logic and IP reside on users' devices, making them prime targets for reverse engineering, tampering, and...
When “Opportunity” Knocks, Don’t Answer.
In this episode of Hacking Humans, Dave, Joe, and Maria dissect two major social‑engineering threats: a LinkedIn‑based phishing campaign that uses urgent “business opportunity” emails and look‑alike login pages to harvest credentials, and a $20 million Everest‑guide scam where climbers are...
SANS Stormcast Thursday, April 9th, 2026: Honeypot Fingerprinting; Microsoft Locks Developer Accounts; ActiveMQ Vuln;
In this 7‑minute Stormcast episode, Johannes Ulrich discusses three security topics: attackers fingerprinting medium‑interaction honeypots by using obvious usernames like "honeypot" to confirm they’re not real systems; Microsoft’s recent suspension of developer accounts for privacy‑focused projects such as WireGuard, Veracrypt,...
512,000 Lines of Leaked Code Reveal the Lock-In Strategy Coming for Your AI Stack
The episode dives into the recent Anthropic Claude code leak, emphasizing that the most consequential element is the hidden "Conway" always‑on agent and its companion environment, Funway, rather than the raw source code. These components form a standalone agent platform...
Who’s Logging In? [OMITB]
In this episode of Only Malware in the Building, host Selina Larson and guests Keith Malarski and Dave discuss the rapid rise of identity‑based attacks, noting that identity‑related root causes now outpace traditional malware. They cite recent reports from Sophos,...
Defeating the Single Point of Failure W/ Mike Belshe of BitGo | BFC Show Ep. 33
In this episode, BitGo co‑founder Mike Belshe discusses the origins of BitGo, its pioneering use of multi‑signature (multi‑sig) technology to eliminate single points of failure, and how the company evolved from a self‑custody solution into a regulated global custodian with...
How Kevin Mandia Built the Most Trusted Name in Cybersecurity
In this episode, Kevin Mandia, founder of Mandiant and CEO of Armadillo, discusses the imminent shift to AI-driven cyber attacks and the need for autonomous defense. He explains how Armadillo is building nation‑state‑grade offensive capabilities to train and certify defenses,...
Houston, We Have a Protocol.
The episode dives into space cybersecurity, featuring Brandon Bailey of the Aerospace Corporation and Cass (Kaz) Vogel, Blue Origin’s Director of Cybersecurity Governance, Risk, and Compliance. They discuss the evolving threat landscape as humanity expands beyond Earth, emphasizing the need...
5 Entra ID Updates You Can’t Afford to Ignore in 2026 (Backup, Governance, CA Agent & Risk Score Exposed)
In this episode the hosts dive into five critical Entra ID updates for 2026, focusing on the new Entra Backup and Recovery preview, tenant governance enhancements, the Unified Risk Score core, and improvements to passkeys and Conditional Access agents. They...
How the World Got Owned Episode 2: The 1990s, Part One
Episode 2 of "How the World Got Owned" dives into the 1990s hacking scene, highlighting the rise of hacker conventions like DEF CON and Black Hat, the emergence of a vibrant but ego‑driven community, and the clash between hackers and...
SED News: OpenCode, AI Code Vs. Shipped Code, and the LiteLLM Breach
In this episode of SED News, hosts Gregor and Sean discuss the resurgence of ARM CPUs as they move into branding their own chips, driven by the growing demand for local AI agent workloads that favor CPU and memory over...
What Happens When GPS Goes Dark?
In this episode, host Ken Miller talks with Dana Goward, president of the Resilient Navigation and Timing Foundation, about the pervasive reliance on GPS and other GNSS for everything from military targeting to financial transactions and everyday timing. Goward explains...
SANS Stormcast Wednesday, April 1st, 2026: Application Control Bypass; Axios NPM Module Compromise; TeamPCP vs Cloud
In this 6‑minute Stormcast episode, Johannes Ulrich discusses three urgent security topics: a technique for bypassing Palo Alto's application control by fragmenting data into 5‑byte chunks via a Netcat tunnel, the recent supply‑chain compromise of the popular npm Axios package...
The Most Important Data Source for Enterprise SEO Teams in 2026
In this 1‑minute‑40‑second episode of Voices of Search, host Tyson chats with Kaspar Siminski, Senior Director at Search Brothers and former Google search team member, about the single most critical data source for enterprise SEO teams in 2026. Siminski argues...
SANS Stormcast Tuesday, March 31st, 2026: Honeypot Session Lifetime; Let’s Encrypt Tests Mass Revocation; F5 RCE Exploited
In this 5‑minute Stormcast episode, host Johannes Ulrich discusses three security topics: the typical short lifespan of honeypot sessions and how the final command attackers run can reveal they’re in a honeypot; Let’s Encrypt’s staged test of its mass‑revocation process...
The Hidden Tracking Risk Inside Your Tires
In this episode of the Shared Security Podcast, hosts Tom and co‑host Scott Wright explore the privacy risks posed by tire pressure monitoring systems (TPMS). They discuss a recent study by Spain’s IMDEA institute that captured 6 million wireless signals from...
FBI Director Kash Patel and White House Instagram Hacked by Iran
The episode dives into recent Iranian cyber‑operations, focusing on the hack of FBI Director Kash Patel's personal email and the simultaneous breach of the White House's Instagram and X accounts. Host Dean Blundell reviews leaked photos and emails from Patel's...
Prevent Agentic Identity Theft
In this episode, Stack Overflow host Ryan Donovan talks with Nancy Wang, CTO of 1Password, about the emerging security challenges of local AI agents. Wang explains how agents like ClaudeBot (now MoldBot) can access a device’s full execution context—files, terminals,...
Security, Resilience, and the Future of Mobile Infrastructure
The episode explores the massive security breach known as Salt Typhoon, which gave China access to U.S. cellular networks, and discusses how the Navy and a startup called CAPE are building a resilient, secure mobile infrastructure that can operate over...
AI Finds Vulns You Can't With Nicholas Carlini
In this episode, host Deirdre and David Amos sit down with vulnerability researcher Nicholas Carlini to discuss how large language models (LLMs) are now being used to discover software bugs, including zero‑day vulnerabilities. Carlini explains that recent advances allow a...