https://cybersecpods.com The home of cybersecurity podcasts. Curated shows on threat intel, identity, cloud security, red team, blue team, and more — with the latest episodes always at your fingertips. en-us Tue, 05 May 2026 10:00:00 GMT https://cybersecpods.com/podcasts/ciso-series-podcast/ai-confidence-its-a-trap-live-in-san-francisco/ https://cybersecpods.com/podcasts/ciso-series-podcast/ai-confidence-its-a-trap-live-in-san-francisco/ Tue, 05 May 2026 10:00:00 GMT All links and images can be found on CISO Series This week's episode is hosted by David Spark , producer of CISO Series and Mike Johnson , CISO, Rivian . Joining is Sara Madden , CISO, Convera . This episode was recorded live at BSidesSF 2026. In this episode: Playing vendor roulette Confident and wrong Making conferences count The stakes problem in tabletops A huge thanks to our sponsor, QuilrAI Can you tell if an action in your environment was performed by a human — or an AI agent? QuilrAI's Decision Engine evaluates content, context, and intent before actions complete — across browsers, end CISO Series Podcast https://cybersecpods.com/podcasts/down-the-security-rabbithole/dtsr-episode-704-market-saturation-innovation-and-procurement/ https://cybersecpods.com/podcasts/down-the-security-rabbithole/dtsr-episode-704-market-saturation-innovation-and-procurement/ Tue, 05 May 2026 10:00:00 GMT TL;DR: Buckle up. Howard Holton, CEO of GigaOm , joins for a 2-part special on the cybersecurity market, innovation, market saturation, and more. What an absolute blast of a podcast. YouTube video (apologies for the crap quality): https://youtube.com/live/q15xAwcPur8 Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= YouTube home: https://youtube.com/playlist?list=PLyo0dkKRvfVtWXjRxNISrhme1MgBj3C2U&si=scHDiTuLXSEQ9qHq LinkedIn Page: https://www.linkedin. Down the Security Rabbithole Podcast (DtSR) https://cybersecpods.com/podcasts/application-security-weekly/keeping-up-with-the-owasp-genai-project-scott-clinton-asw-381/ https://cybersecpods.com/podcasts/application-security-weekly/keeping-up-with-the-owasp-genai-project-scott-clinton-asw-381/ Tue, 05 May 2026 09:00:00 GMT Speed is the most common theme among developers and appsec teams working with LLMs and agents, from trying to keep up with patterns for deploying agents to dealing with more code faster to how the latest models impact code quality and security. The OWASP GenAI Project is helping organizations keep up with the speed of those changes and engaging the appsec community for sharing effective ways to keep systems secure. Scott Clinton shares the latest progress on the the project, its roadmap for the year, and how appsec practitioners can shape its future. Resources: https://genai.owasp.org/2026/04/ Application Security Weekly (Audio) https://cybersecpods.com/podcasts/click-here/it-didnt-look-like-propaganda/ https://cybersecpods.com/podcasts/click-here/it-didnt-look-like-propaganda/ Tue, 05 May 2026 07:00:00 GMT Propaganda works best when it disappears—into morning assemblies, lesson plans, even the alphabet on the wall. That’s what Pavel “Pasha” Talankin saw inside his classroom in Russia. So he started filming it all and what he captured became not just an Oscar-winning movie — but a record of how control settles in, one school day at a time. Learn about your ad choices: dovetail.prx.org/ad-choices Click Here https://cybersecpods.com/podcasts/cyber-security-headlines/instructure-discloses-breach-digicert-revokes-certificates-silver-fox-targets-in/ https://cybersecpods.com/podcasts/cyber-security-headlines/instructure-discloses-breach-digicert-revokes-certificates-silver-fox-targets-in/ Tue, 05 May 2026 07:00:00 GMT Instructure discloses breach amid leak threats DigiCert revokes certificates Silver Fox targets Indian and Russian orgs Get the show notes here: Thanks to our episode sponsor, Vanta Risk and regulation ramping up—and customers expect proof of security just to do business. Vanta's automation brings compliance, risk, and customer trust together on one AI-powered platform. So whether you're prepping for a SOC 2 or running an enterprise GRC program, Vanta keeps you secure—and keeps your deals moving. Learn more at vanta.com/ciso . Cybersecurity Headlines https://cybersecpods.com/podcasts/darknet-diaries/174-pacific-rim/ https://cybersecpods.com/podcasts/darknet-diaries/174-pacific-rim/ Tue, 05 May 2026 07:00:00 GMT For six years, Sophos fought a secret cyber war against a state-backed hacking group targeting its firewalls. This forced Sophos to drastically change tactics to properly secure their firewalls. Was it ethical? Was it effective? They disrupted nine zero-day attacks, exposed who was hacking them, and forced the hackers to change tactics. But at what cost? You have to listen to one of the most audacious corporate cyber defenses ever conducted. Sponsors Support for this show comes from ThreatLocker® . ThreatLocker® is a Zero Trust Endpoint Protection Platform that strengthens your infrastructure Darknet Diaries https://cybersecpods.com/podcasts/hacking-humans/mythbehavior-under-investigation-omitb/ https://cybersecpods.com/podcasts/hacking-humans/mythbehavior-under-investigation-omitb/ Tue, 05 May 2026 07:00:00 GMT Welcome in! You’ve entered, Only Malware in the Building. Join us each month to sip tea and solve mysteries about today’s most interesting threats. Your host is ⁠⁠⁠⁠⁠⁠⁠⁠⁠Selena Larson⁠⁠⁠⁠⁠⁠⁠⁠⁠ , ⁠⁠⁠⁠⁠⁠⁠⁠⁠Proofpoint⁠⁠⁠⁠⁠⁠⁠⁠⁠ intelligence analyst and host of their podcast ⁠⁠⁠⁠⁠⁠⁠⁠⁠DISCARDED⁠⁠⁠⁠⁠⁠⁠⁠⁠ . Inspired by the residents of a building in New York’s exclusive upper west side, Selena is joined by her co-hosts ⁠⁠⁠⁠⁠⁠⁠⁠⁠N2K Networks⁠⁠⁠⁠⁠⁠⁠⁠⁠ ⁠⁠⁠⁠⁠⁠⁠⁠⁠Dave Bittner⁠⁠⁠⁠⁠⁠⁠⁠⁠ and ⁠⁠⁠⁠⁠⁠⁠⁠Keith Mularski⁠⁠⁠⁠⁠⁠⁠⁠ , former FBI cybercrime investigator and now Chief Global Ambassador at ⁠⁠⁠⁠⁠⁠⁠⁠Qintel⁠⁠ Hacking Humans https://cybersecpods.com/podcasts/hacking-humans/cirt-noun-word-notes/ https://cybersecpods.com/podcasts/hacking-humans/cirt-noun-word-notes/ Tue, 05 May 2026 07:00:00 GMT Please enjoy this encore of Word Notes. A team responsible for responding to and managing cybersecurity incidents involving computer systems and networks in order to minimize the damage and to restore normal operations as quickly as possible. CyberWire Glossary link: ⁠https://thecyberwire.com/glossary/cirt⁠ Audio reference link: Avery, B., 2017. 24 TV May 05 Season4 [WWW Document]. YouTube. URL ⁠https://www.youtube.com/watch?v=Gq_2xPuqI-E&list=PLGHedLavrFoGsea1ZCHBm9-nK5FdM3_Kd&index=10. Hacking Humans https://cybersecpods.com/podcasts/cyberwire-daily/security-without-a-login-screen/ https://cybersecpods.com/podcasts/cyberwire-daily/security-without-a-login-screen/ Mon, 04 May 2026 20:30:00 GMT Progress Software urges customers to patch a critical MOVEit authentication bypass. Washington worries about limited access to advanced AI tools. Paid influencers promote pro-American AI. CISA warns Copy Fail is under active exploitation. The Canvas educational platform suffers a data breach. The Lazarus Group uses ClickFix to target high-value enterprise users. U.S. and Chinese authorities raid scam centers in Dubai. Monday Business Brief. On Afternoon Cyber Tea with Ann Johnson: Tony Sager, Senior VP & Chief Evangelist, Center for Internet Security, joins Ann to discuss the accelerating pace CyberWire Daily https://cybersecpods.com/podcasts/ciso-tradecraft/282-top-10-agentic-ai-attacks-with-rock-lambros/ https://cybersecpods.com/podcasts/ciso-tradecraft/282-top-10-agentic-ai-attacks-with-rock-lambros/ Mon, 04 May 2026 20:13:21 GMT In this CISO Tradecraft episode, host G Mark Hardy interviews recovering CISO Rock Lambros (Zenity) about securing Agentic AI and the emerging risks beyond LLM hallucinations. Lambros recounts his path from Oracle developer to CISO and AI standards work, then explains how agentic AI increases risk by connecting models to tools and actions. They discuss agentic AI supply chain attacks, including backdoored LiteLLM packages on PyPI and a compromised Amazon Q update, and the resulting shift from “patch fast” to more cautious dependency controls. The conversation highlights the OWASP Top 10 for Ag CISO Tradecraft® https://cybersecpods.com/podcasts/risky-bulletin/between-two-nerds-the-wild-wild-west/ https://cybersecpods.com/podcasts/risky-bulletin/between-two-nerds-the-wild-wild-west/ Mon, 04 May 2026 19:45:48 GMT In this edition of Between Two Nerds Tom Uren and The Grugq discuss the breakdown of cyber norms. What would have been an unthinkable cyber operation just a few years ago is now a regular occurrence. This episode is also available on YouTube . Show notes Fast16 analysis by SentinelOne Fast16 malware Zero Day on the wiper targeting Venezuela's state oil company Risky Bulletin https://cybersecpods.com/podcasts/the-443/you-wouldnt-download-a-shipment-the-443-podcast-episode-369/ https://cybersecpods.com/podcasts/the-443/you-wouldnt-download-a-shipment-the-443-podcast-episode-369/ Mon, 04 May 2026 15:04:43 GMT This week on the podcast, we discuss a recent warning from the FBI about hacking leading to stolen shipments. Before that, we cover the Vercel software supply chain incident before discussing the Vect Ransomware-as-a-service turned accidental wiper. The 443 - Security Simplified https://cybersecpods.com/podcasts/cybercrime-magazine/cybercrime-wire-for-may-4-2026-ddos-attack-strikes-linux-os-provider-ubuntu-wcyb/ https://cybersecpods.com/podcasts/cybercrime-magazine/cybercrime-wire-for-may-4-2026-ddos-attack-strikes-linux-os-provider-ubuntu-wcyb/ Mon, 04 May 2026 13:10:32 GMT The Cybercrime Wire, hosted by Scott Schober, provides boardroom and C-suite executives, CIOs, CSOs, CISOs, IT executives and cybersecurity professionals with a breaking news story we’re following. If there’s a cyberattack, hack, or data breach you should know about, then we’re on it. Listen to the podcast daily and hear it every hour on WCYB. The Cybercrime Wire is brought to you Cybercrime Magazine, Page ONE for Cybersecurity at https://cybercrimemagazine.com. • For more breaking news, visit https://cybercrimewire.com Cybercrime Magazine Podcast https://cybersecpods.com/podcasts/cybercrime-magazine/cybercrime-news-for-may-4-2026-no-secrets-in-americas-new-surveillance-dragnet-w/ https://cybersecpods.com/podcasts/cybercrime-magazine/cybercrime-news-for-may-4-2026-no-secrets-in-americas-new-surveillance-dragnet-w/ Mon, 04 May 2026 12:52:02 GMT The Cybercrime Magazine Podcast brings you daily cybercrime news on WCYB Digital Radio, the first and only 7x24x365 internet radio station devoted to cybersecurity. Stay updated on the latest cyberattacks, hacks, data breaches, and more with our host. Don't miss an episode, airing every half-hour on WCYB Digital Radio and daily on our podcast. Listen to today's news at https://soundcloud.com/cybercrimemagazine/sets/cybercrime-daily-news. Brought to you by our Partner, Evolution Equity Partners, an international venture capital investor partnering with exceptional entrepreneurs to develop marke Cybercrime Magazine Podcast https://cybersecpods.com/podcasts/cybersecurity-defenders/how-ai-adoption-in-enterprise-infrastructure-has-expanded-the-attack-surface-wit/ https://cybersecpods.com/podcasts/cybersecurity-defenders/how-ai-adoption-in-enterprise-infrastructure-has-expanded-the-attack-surface-wit/ Mon, 04 May 2026 10:00:19 GMT Today on Defender Fridays, Katherine McNamara, Cybersecurity Technical Solutions Architect at Cisco, joins us to discuss how AI and ML adoption in enterprise infrastructure has expanded the attack surface for AI-driven systems. She'll walk through the security challenges unique to generative AI and ML-based architectures, and cover the four critical components: Model, Data, Application, and System, that organizations need to secure to maintain integrity. Katherine works for Cisco as a Cybersecurity Systems Engineer by day and by night, she's labbing and trying new things with the resources she The Cybersecurity Defenders Podcast https://cybersecpods.com/podcasts/enterprise-security-weekly/post-quantum-migration-struggles-ai-threats-and-modern-defenses-hd-moore-ramin-f/ https://cybersecpods.com/podcasts/enterprise-security-weekly/post-quantum-migration-struggles-ai-threats-and-modern-defenses-hd-moore-ramin-f/ Mon, 04 May 2026 09:00:00 GMT Interview with Daniel dos Santos: Post-Quantum Cryptography and the Risks No One Is Talking About Post-quantum cryptography (PQC) is quickly shifting from theory to inevitability. In this segment, Daniel dos Santos, VP of Research at Forescout, explains why PQC isn't the most immediate threat today—but still demands early attention as standards solidify and timelines accelerate. The discussion highlights overlooked risks beyond encrypted traffic, including digital signatures, firmware integrity, and blockchain systems. Daniel also emphasizes the real challenge: migration. While client-side ado Enterprise Security Weekly (Audio) https://cybersecpods.com/podcasts/identity-at-the-center/419-identity-management-day-2026-idac-live/ https://cybersecpods.com/podcasts/identity-at-the-center/419-identity-management-day-2026-idac-live/ Mon, 04 May 2026 09:00:00 GMT Recorded live as part of the Identity Management Day 2026 streaming program, Jeff and Jim mark their fifth IMD episode. Introduced by Jeff Reich from the Identity Defined Security Alliance, they reflect on how the IAM industry has evolved since their first IMD episode in 2021 and grade overall progress a C. Topics include what has genuinely improved (passkeys, MFA adoption, broader awareness), what hasn't (compliance fatigue, security theater, persistent credential theft), the exploding challenge of non-human identity governance, whether AI will eventually need to certify other AI, and how AI- Identity at the Center https://cybersecpods.com/podcasts/cyber-security-headlines/telegram-mini-apps-malware-cpanel-is-sorry-patch-wave-warning/ https://cybersecpods.com/podcasts/cyber-security-headlines/telegram-mini-apps-malware-cpanel-is-sorry-patch-wave-warning/ Mon, 04 May 2026 07:00:00 GMT Telegram Mini Apps deliver Android malware CISA orders Federal agencies to patch cPanel bug by Sunday British cyber agency warns of looming 'patch wave' due to speedy AI flaw discovery Get the show notes here: https://cisoseries.com/cybersecurity-news-telegram-mini-apps-malware-cpanel-is-sorry-patch-wave-warning/ Thanks to our episode sponsor, Vanta Risk and regulation ramping up—and customers expect proof of security just to do business. Vanta's automation brings compliance, risk, and customer trust together on one AI-powered platform. So whether you're prepping for a SOC 2 or running an ente Cybersecurity Headlines https://cybersecpods.com/podcasts/risky-bulletin/risky-bulletin-digicert-hacked-with-a-malicious-screensaver-file/ https://cybersecpods.com/podcasts/risky-bulletin/risky-bulletin-digicert-hacked-with-a-malicious-screensaver-file/ Mon, 04 May 2026 05:10:33 GMT DigiCert got hacked via a malicious screensaver file, two ransomware negotiators each get four years in prison, Trellix discloses a security breach, and another Russian hacker gets arrested while vacationing in the wrong place. Show notes Risky Bulletin: DigiCert hacked with a malicious screensaver file Risky Bulletin https://cybersecpods.com/podcasts/shared-security-podcast/fake-party-invites-and-the-rise-of-social-phishing-attacks/ https://cybersecpods.com/podcasts/shared-security-podcast/fake-party-invites-and-the-rise-of-social-phishing-attacks/ Mon, 04 May 2026 04:00:54 GMT Attackers are now impersonating invitation services to trick people into clicking malicious links and sharing sensitive information. These phishing attempts look like legitimate event invites, making them especially effective. In this episode, we discuss how these scams work and what steps you can take to stay protected. Special thanks to Guardsquare for sponsoring this episode! Guardsquare is the leader in mobile application security, with multi-layered protection for your Android and iOS apps. Learn more at Guardsquare.com. ** Links mentioned on the show ** New Phishing Scam: Fake Invitation Shared Security Podcast https://cybersecpods.com/podcasts/open-source-security/how-to-actually-test-a-disaster-plan-with-david-bernstein/ https://cybersecpods.com/podcasts/open-source-security/how-to-actually-test-a-disaster-plan-with-david-bernstein/ Mon, 04 May 2026 00:00:00 GMT Josh and David finish up the disaster recovery and emergency planning trilogy. In this one David tells us how to test the plan he told us how to build in the last episode. There are some great ideas in this one about how to test the process not the people. How to construct the plan, and even some tips to go from a plan to some actual real world testing. It's another episode filled with great and practical advice. The show notes and blog post for this episode can be found at https://opensourcesecurity.io/2026/2026-05-testing-the-plan-david-bernstein/ Open Source Security https://cybersecpods.com/podcasts/unsupervised-learning/most-companies-arent-anywhere-near-ready-for-ai/ https://cybersecpods.com/podcasts/unsupervised-learning/most-companies-arent-anywhere-near-ready-for-ai/ Sun, 03 May 2026 23:37:38 GMT Most Companies Aren't Anywhere Near Ready for AI. It's not that companies aren't using AI—it's that they can't. Become a Member: https://danielmiessler.com/upgrade See omnystudio.com/listener for privacy information. Unsupervised Learning https://cybersecpods.com/podcasts/risky-bulletin/sponsored-james-kettle-built-an-ai-hacker/ https://cybersecpods.com/podcasts/risky-bulletin/sponsored-james-kettle-built-an-ai-hacker/ Sun, 03 May 2026 21:16:46 GMT In this sponsored interview, James Wilson talks with James Kettle and Daf Stuttard from PortSwigger about the incredible research James will unveil at Black Hat US this July, and how that research will be productised into Burp Suite. It shouldn’t be surprising that when James Kettle bolts an LLM into his research methodology that insanely dangerous things happen. This interview is a window into the future of AI-enabled hacking and security testing. This interview is also available on YouTube . Show notes Risky Bulletin https://cybersecpods.com/podcasts/lock-and-code/cyberattacks-are-raising-your-prices-feat-eva-velasquez/ https://cybersecpods.com/podcasts/lock-and-code/cyberattacks-are-raising-your-prices-feat-eva-velasquez/ Sun, 03 May 2026 15:45:00 GMT Your prices could be going up because of a little something that one group has started calling the “cyber tax.” Not a “tax” in any regulatory sense of the word, this newly named “cyber tax” is instead a consequence of the growing number of cyberattacks on small businesses. According to the latest research from the Identity Theft Resource Center, 81% of small- and medium-sized businesses suffered a data breach, a security breach, or both, within the past year. And of those businesses, more than 50% of lost more than $250,000. According to the most recent data from the US Federal Reserve , the m Lock and Code https://cybersecpods.com/podcasts/cyberwire-daily/kayla-williams-not-everything-related-to-cybersecurity-is-a-fire-drill-ciso-care/ https://cybersecpods.com/podcasts/cyberwire-daily/kayla-williams-not-everything-related-to-cybersecurity-is-a-fire-drill-ciso-care/ Sun, 03 May 2026 07:00:00 GMT Please enjoy this encore of Career Notes. Kayla Williams, CISO of Devo, sits down to share her story, from graduating with a finance degree to rising to where she is now. She quickly learned that finance was not for her and changed paths, working towards gaining an information security certificate. From there she was able to excel and was offered the opportunity to move to England which changed her life. Working in her new role, she really enjoys thriving with her team. She says "We really try to be the department of no problem versus the department of no." She mentions how her and her team wo CyberWire Daily https://cybersecpods.com/podcasts/nexus-claroty/rob-king-on-ot-asset-exposures-mitigations/ https://cybersecpods.com/podcasts/nexus-claroty/rob-king-on-ot-asset-exposures-mitigations/ Sun, 03 May 2026 04:00:00 GMT Rob King, Director of Applied Research at RunZero, joins the Nexus Podcast to discuss the security risks and exposures introduced by digital transformation to operational technology environments. As many OT and cyber-physical systems assets are connected online, there could be signification exposures introduced to these internet-facing devices and systems. Rob also discusses the effectiveness of popular mitigations such as segmentation and other controls. Subscribe and listen to the Nexus Podcast here . Nexus: A Claroty Podcast https://cybersecpods.com/podcasts/cyber-crime-junkies/insider-threats-or-when-the-hacker-already-has-a-badge/ https://cybersecpods.com/podcasts/cyber-crime-junkies/insider-threats-or-when-the-hacker-already-has-a-badge/ Sat, 02 May 2026 16:00:00 GMT 🔥The Cybercrime Junkies show debunks the myth of the typical cyber villain, focusing on how everyday situations can lead to significant `cyber security` breaches. We discuss real-world `cybercrime` scenarios involving `insider` threats and the critical need for `insider threat detection`. Understanding these risks is key to effective `risk management` in today's digital landscape. New Episode🔥Insider Threats | When Employees Become the BIGGEST Attackers! The Cybercrime Junkies show dives into the world of cybercrime and cybersecurity, offering insights for cybersecurity for beginners and sea Cyber Crime Junkies https://cybersecpods.com/podcasts/entra-chat/how-to-secure-copilot-agents-azure-devops-and-defender-more-with-maester-21-full/ https://cybersecpods.com/podcasts/entra-chat/how-to-secure-copilot-agents-azure-devops-and-defender-more-with-maester-21-full/ Sat, 02 May 2026 15:58:15 GMT Maester is back with one of its biggest release since launch. In this episode, we are joined by Sam Erde, Architect at Patriot Consulting and one of Maester’s core maintainers, to walk through everything that’s landed in Maester 2.1. Since the December release, the community has shipped 540 new commits , grown the test suite from 128 to 168 tests, and added coverage across entirely new product areas. Here’s a taste of what’s covered: 🤖 Securing Your AI Agents (Copilot Studio) With Microsoft’s Agent 365 going GA and organisations rapidly deploying Copilot Studio agents, Maester now includes te Entra.Chat https://cybersecpods.com/podcasts/cyberwire-daily/double-edged-threat-research-saturday/ https://cybersecpods.com/podcasts/cyberwire-daily/double-edged-threat-research-saturday/ Sat, 02 May 2026 07:00:00 GMT Today we are joined by Justin Albrecht , Principal Researcher at Lookout , discussing "Attackers Wielding DarkSword Threaten iOS Users." DarkSword is a highly sophisticated iOS exploit chain discovered by Lookout that targets iPhones (iOS 18.4–18.6.2), enabling near zero-click compromise and rapid theft of sensitive data, including credentials and cryptocurrency wallet information. Likely deployed by a Russia-linked threat actor (UNC6353) against Ukrainian users, it uses watering hole attacks on compromised websites and operates in a “hit-and-run” fashion—exfiltrating data within minutes befor CyberWire Daily https://cybersecpods.com/podcasts/cybercrime-magazine/cybercrime-wire-for-may-2-3-2026-weekend-update-wcyb-digital-radio/ https://cybersecpods.com/podcasts/cybercrime-magazine/cybercrime-wire-for-may-2-3-2026-weekend-update-wcyb-digital-radio/ Sat, 02 May 2026 05:00:17 GMT The Cybercrime Wire, hosted by Scott Schober, provides boardroom and C-suite executives, CIOs, CSOs, CISOs, IT executives and cybersecurity professionals with a breaking news story we’re following. If there’s a cyberattack, hack, or data breach you should know about, then we’re on it. Listen to the podcast daily and hear it every hour on WCYB. The Cybercrime Wire is brought to you Cybercrime Magazine, Page ONE for Cybersecurity at https://cybercrimemagazine.com. • For more breaking news, visit https://cybercrimewire.com Cybercrime Magazine Podcast https://cybersecpods.com/podcasts/hacked/wizard-spider/ https://cybersecpods.com/podcasts/hacked/wizard-spider/ Sat, 02 May 2026 03:59:00 GMT Investigative journalist Geoff White has spent a lot of time inside the leaked communications of Conti — the Russian ransomware gang that ran like a corporation, hit Ireland's national health service, extorted the Costa Rican government, and pulled in $180 million in a single year. Geoff joins us to break down how Conti operated, the internal moral debate over hitting hospitals, the jewellery heist that spooked them into apologizing to Saudi royals, and how he tracked down rare video of the gang's elusive alleged boss, a man almost nobody had ever seen. It's a preview of his new BBC series Cyb Hacked https://cybersecpods.com/podcasts/cyber-security-headlines/the-department-of-know-github-drama-ai-deletes-production-data-claude-security-b/ https://cybersecpods.com/podcasts/cyber-security-headlines/the-department-of-know-github-drama-ai-deletes-production-data-claude-security-b/ Fri, 01 May 2026 21:17:00 GMT This week's Department of Know is hosted by Rich Stroffolino , with guests Janet Heins , CISO, ChenMed , and TC Niedzialkowski , Head of IT & Security, Opendoor . Missed the live show? Check it out on YouTube. The Department of Know is live every Friday at 4:00 p.m. ET. Join us each week by registering for the open discussion at CISOSeries.com . Get the show notes here: https://cisoseries.com/cybersecurity-news-critical-cpanel-zero-day-swiss-black-axe-arrests-hhs-data-center-questions/ Thanks to our episode sponsor, Guardsqaure Attackers are treating your mobile app like an open book. Sixty-th Cybersecurity Headlines https://cybersecpods.com/podcasts/cyberwire-daily/think-before-you-deploy-the-agent/ https://cybersecpods.com/podcasts/cyberwire-daily/think-before-you-deploy-the-agent/ Fri, 01 May 2026 20:30:00 GMT Five Eyes agencies issue agentic AI guidance. A federal database leaks Social Security numbers. A stealthy worm poisons open source packages. OT firms are sidelined from frontier cyber models. The FBI warns of a surge in cyber-enabled cargo theft. Officials flag likely election interference as security programs face cuts. Researchers uncover a covert Python backdoor. Ubuntu’s site takes Iranian-linked DDoS fire. Cyber pros are sentenced in a ransomware case. Our guest is Andrew Carr, Global Head of Threat Management at Booz Allen, discussing how AI is accelerating cyberattacks. OpenAI joins th CyberWire Daily https://cybersecpods.com/podcasts/hacker-valley-studio/turning-30000-findings-into-50-that-matter-with-dan-pagel-and-brad-hibbert/ https://cybersecpods.com/podcasts/hacker-valley-studio/turning-30000-findings-into-50-that-matter-with-dan-pagel-and-brad-hibbert/ Fri, 01 May 2026 19:32:40 GMT Mythos just found 30,000 new vulnerabilities, and now every security team is asking the same question: what actually matters? In this episode, Ron Eddings sits down with Dan Pagel, CEO at Brinqa, and Brad Hibbert COO & CSO at Brinqa, to break down the Anthropic Mythos moment that rattled the security industry. From the panic of millions of new findings dropping overnight to the strategy of narrowing them down to the 50 that actually matter in YOUR environment, this episode is a masterclass in exposure management at machine speed. Dan and Brad share how Brinqa helps organizations make sense of Hacker Valley Studio https://cybersecpods.com/podcasts/7-minute-security/7ms-720-tales-of-pentest-pwnage-part-84/ https://cybersecpods.com/podcasts/7-minute-security/7ms-720-tales-of-pentest-pwnage-part-84/ Fri, 01 May 2026 16:44:00 GMT Hey friends! Today's another Tales of Pentest Pwnage! Quick tangent first on a couple side projects: I've got a music thing at quack.house (like the duck noise, not the drug) and a podcast with my dancer son Atticus at DadOfADancer.com . Speaking of Atticus — he just landed a spot in Master Ballet Academy's summer program in Phoenix, and I am a very proud dance dad over here. OK, on to the pentest: A weird runas quirk: If your AD test account password ends in a percent sign, runas seems to misbehave (Claude thinks Windows is interpreting the % as a variable delimiter). Workaround: runascs.exe, 7 Minute Security https://cybersecpods.com/podcasts/cyber-crime-junkies/us-secret-service-in-action-exclusive/ https://cybersecpods.com/podcasts/cyber-crime-junkies/us-secret-service-in-action-exclusive/ Fri, 01 May 2026 16:00:00 GMT Paul Eckloff was a US Secret Service Agent for 23 years. 14 of which were spent protecting the US Presidents. Before that? Paul was a High School Teacher. Today? Paul is one of the top cybersecurity, privacy and data experts in the world and a leader with Lexis/Nexis Risk Solutions. Questions? Text our Studio direct. We read these and when helpful we give a special shout out for those to contact us. New non-fiction Book Series is out! Moving Target: The Art of Online Camouflage drops April 14. Moving Target: The Obedient Machine drops April 21. Book 3 -- Ghost and the Machin e -- out soon! 4 y Cyber Crime Junkies https://cybersecpods.com/podcasts/cybercrime-magazine/cybercrime-wire-for-may-1-2026-amtrak-data-breach-leaks-millions-of-records-wcyb/ https://cybersecpods.com/podcasts/cybercrime-magazine/cybercrime-wire-for-may-1-2026-amtrak-data-breach-leaks-millions-of-records-wcyb/ Fri, 01 May 2026 13:54:17 GMT The Cybercrime Wire, hosted by Scott Schober, provides boardroom and C-suite executives, CIOs, CSOs, CISOs, IT executives and cybersecurity professionals with a breaking news story we’re following. If there’s a cyberattack, hack, or data breach you should know about, then we’re on it. Listen to the podcast daily and hear it every hour on WCYB. The Cybercrime Wire is brought to you Cybercrime Magazine, Page ONE for Cybersecurity at https://cybercrimemagazine.com. • For more breaking news, visit https://cybercrimewire.com Cybercrime Magazine Podcast https://cybersecpods.com/podcasts/cybercrime-magazine/cybercrime-news-for-may-1-2026-us-troops-get-threats-from-iran-linked-hackers-wc/ https://cybersecpods.com/podcasts/cybercrime-magazine/cybercrime-news-for-may-1-2026-us-troops-get-threats-from-iran-linked-hackers-wc/ Fri, 01 May 2026 13:15:47 GMT The Cybercrime Magazine Podcast brings you daily cybercrime news on WCYB Digital Radio, the first and only 7x24x365 internet radio station devoted to cybersecurity. Stay updated on the latest cyberattacks, hacks, data breaches, and more with our host. Don't miss an episode, airing every half-hour on WCYB Digital Radio and daily on our podcast. Listen to today's news at https://soundcloud.com/cybercrimemagazine/sets/cybercrime-daily-news. Brought to you by our Partner, Evolution Equity Partners, an international venture capital investor partnering with exceptional entrepreneurs to develop marke Cybercrime Magazine Podcast https://cybersecpods.com/podcasts/click-here/access-denied/ https://cybersecpods.com/podcasts/click-here/access-denied/ Fri, 01 May 2026 07:00:00 GMT You buy a phone. A car. A tractor. But what do you actually own? We talk to legal scholar Aaron Perzanowski about how software and contracts are reshaping ownership — and why the right-to-repair movement is gaining traction. Learn about your ad choices: dovetail.prx.org/ad-choices Click Here https://cybersecpods.com/podcasts/cyber-security-headlines/critical-cpanel-zero-day-swiss-black-axe-arrests-hhs-data-center-questions/ https://cybersecpods.com/podcasts/cyber-security-headlines/critical-cpanel-zero-day-swiss-black-axe-arrests-hhs-data-center-questions/ Fri, 01 May 2026 07:00:00 GMT Critical cPanel and WHM bug exploited as zero-day Swiss police arrest suspected members of Black Axe group HHS ponders government posture for protecting data centers Get the show notes here: https://cisoseries.com/cybersecurity-news-critical-cpanel-zero-day-swiss-black-axe-arrests-hhs-data-center-questions/ Thanks to our episode sponsor, Guardsqaure Attackers are treating your mobile app like an open book. Sixty-three percent of security leaders recently detected app tampering, cloning, or unauthorized modifications. When your code runs in an untrusted environment, you need runtime self-protec Cybersecurity Headlines https://cybersecpods.com/podcasts/risky-bulletin/risky-bulletin-cpanel-auth-bypass-exploited-in-wild/ https://cybersecpods.com/podcasts/risky-bulletin/risky-bulletin-cpanel-auth-bypass-exploited-in-wild/ Fri, 01 May 2026 05:07:47 GMT The Copy Fail vulnerability impacts all Linux distros going back to 2017, hackers are exploiting a cPanel auth bypass, every Moldovan citizen has their data stolen, and some scam compounds got raided raided… in Dubai. Show notes Risky Bulletin: The mysterious hack of Moldova's healthcare database Risky Bulletin https://cybersecpods.com/podcasts/risky-business/snake-oilers-ent-ai-spacewalk-and-mondoo/ https://cybersecpods.com/podcasts/risky-business/snake-oilers-ent-ai-spacewalk-and-mondoo/ Fri, 01 May 2026 00:58:34 GMT In this edition of the Snake Oilers podcast three vendors stop by to pitch the audience on their products: Ent AI : Co-founder Brandon Dixon pitched Ent, an intent-aware, AI-powered endpoint security control. Spacewalk AI : Founders Chris Fuller and Tim Wenzlau pitch Spacewalk, an AI-powered incident response platform. Mondoo : Co-founder Dominik Richter pitches Mondoo, an AI-powered “service as software” in the vulnerability management space. This episode is also available on YouTube . Show notes Risky Business https://cybersecpods.com/podcasts/paul-s-security-weekly/firestarter-psw-924/ https://cybersecpods.com/podcasts/paul-s-security-weekly/firestarter-psw-924/ Thu, 30 Apr 2026 21:00:00 GMT This week in the security news: Are you a FIRESTARTER? Eavesdropping via fiber-optic cables Copy Fail - more Linux LPE Github RCE Running Linux on a PS5 BadUSB tricks SilentGlass and HDMI threats Sonicwall and vague details Universities are for porn? The Banshee Before CVEs comes scanning Vendor addresses AirSnitch GitHub and not serious work Routers have country-specific backdoors Phones with Hotspot are fine Visit https://www.securityweekly.com/psw for all the latest episodes! Show Notes: https://securityweekly.com/psw-924 Paul's Security Weekly (Audio) https://cybersecpods.com/podcasts/cyberwire-daily/one-copy-too-many/ https://cybersecpods.com/podcasts/cyberwire-daily/one-copy-too-many/ Thu, 30 Apr 2026 20:30:00 GMT A critical Linux flaw dubbed “Copy Fail” raises alarm. The House moves to extend Section 702. The White House pushes back on expanded Mythos access. cPanel and SonicWall rush out security patches. Researchers warn AI agents may leak credentials. Smishing targets key industries. Ukrainian police arrest suspects in a massive Roblox account theft scheme. Our guest is Jamie Moles, technical manager at ExtraHop, discussing how the pace of vibe coding is creating major AI blind spots. Honeypot hijinks get halted by curious clicks. Remember to leave us a 5-star rating and review in your favorite podc CyberWire Daily https://cybersecpods.com/podcasts/cybercrime-magazine/agentic-ai-powered-digital-executive-protection-matt-polak-founder-and-ceo-vanis/ https://cybersecpods.com/podcasts/cybercrime-magazine/agentic-ai-powered-digital-executive-protection-matt-polak-founder-and-ceo-vanis/ Thu, 30 Apr 2026 19:43:34 GMT An army of AI agents that never stops fighting. That's VanishID. Executive personal data is already out there, waiting to be weaponized. VanishID's agents hunt it down, remove it, and watch for it to resurface. Around the clock. VanishID provides solutions for Digital Executive Protection, Workforce Protection, Family Office Protection, and Public Sector Protection. Learn more at https://vanishid.com Cybercrime Magazine Podcast https://cybersecpods.com/podcasts/cybercrime-magazine/ciso-confidential-disruptive-defense-james-howley-cummins-and-bobby-ford-doppel/ https://cybersecpods.com/podcasts/cybercrime-magazine/ciso-confidential-disruptive-defense-james-howley-cummins-and-bobby-ford-doppel/ Thu, 30 Apr 2026 18:50:40 GMT James Howley is the Director of Cybersecurity Governance & Risk Management at Cummins. In this episode, he joins host Scott Schober and Bobby Ford, Chief Strategy and Experience Officer at Doppel, to discuss disruptive defense, including AI's impact on phishing, implementing a successful human risk management model, and more. This episode of CISO Confidential is brought to you by Doppel. Learn more about our sponsor at https://doppel.com. Cybercrime Magazine Podcast https://cybersecpods.com/podcasts/cybercrime-magazine/french-credit-card-hacker-discusses-his-crimes-after-two-decades-a-conversation-/ https://cybersecpods.com/podcasts/cybercrime-magazine/french-credit-card-hacker-discusses-his-crimes-after-two-decades-a-conversation-/ Thu, 30 Apr 2026 16:15:16 GMT Serge Humpich is a hacker who discovered a flaw in the Carte Bleue system used in France for credit cards. He tried to warn banks, but was unsuccessful, and therefore decided to perform a public "show" where he bought subway tickets while using the flaw in the card system. He was convicted in 2000 to a ten months suspended sentence, and lost his job as a result of the case. In this episode, Humpich joins host Heather Engel to discuss his experience, the ethical hacking landscape over 25 years later, and more. • For more on cybersecurity, visit us at https://cybersecurityventures.com Cybercrime Magazine Podcast https://cybersecpods.com/podcasts/azure-security-podcast/episode-127-threat-intel-update-and-ai/ https://cybersecpods.com/podcasts/azure-security-podcast/episode-127-threat-intel-update-and-ai/ Thu, 30 Apr 2026 15:41:54 GMT In this episode, Michael, Sarah and Mark talk with Sherrod DeGrippo about some of the latest tactics and strategies used by modern threat actors, we also wander into the AI security weeds! We only have one news item related to Azure SQL databases. https://aka.ms/azsecpod The Azure Security Podcast https://cybersecpods.com/podcasts/cybercrime-magazine/ransomware-minute-mcgraw-hill-hit-135m-records-exposed-scott-schober-wcyb-digita/ https://cybersecpods.com/podcasts/cybercrime-magazine/ransomware-minute-mcgraw-hill-hit-135m-records-exposed-scott-schober-wcyb-digita/ Thu, 30 Apr 2026 14:22:59 GMT The Ransomware Minute is a rundown of the latest ransomware attacks & news, brought to you Cybercrime Magazine, Page ONE for Cybersecurity. Listen to the podcast weekly and read it daily at https://ransomwareminute.com. For more on cybersecurity, visit us at https://cybercrimemagazine.com. Cybercrime Magazine Podcast https://cybersecpods.com/podcasts/cybercrime-magazine/cybercrime-news-for-apr-30-2026-texas-man-gets-23-years-for-dollar1b-crypto-scam/ https://cybersecpods.com/podcasts/cybercrime-magazine/cybercrime-news-for-apr-30-2026-texas-man-gets-23-years-for-dollar1b-crypto-scam/ Thu, 30 Apr 2026 13:48:55 GMT The Cybercrime Magazine Podcast brings you daily cybercrime news on WCYB Digital Radio, the first and only 7x24x365 internet radio station devoted to cybersecurity. Stay updated on the latest cyberattacks, hacks, data breaches, and more with our host. Don't miss an episode, airing every half-hour on WCYB Digital Radio and daily on our podcast. Listen to today's news at https://soundcloud.com/cybercrimemagazine/sets/cybercrime-daily-news. Brought to you by our Partner, Evolution Equity Partners, an international venture capital investor partnering with exceptional entrepreneurs to develop marke Cybercrime Magazine Podcast