Cyber Security Headlines Week in Review: Student hackers increase, CISA wants CVE, Microsoft called hypocritical
23 snips
Sep 19, 2025 Nick Espinosa, a cybersecurity commentator known for practical security insights, joins Jack Kufahl, CISO at Michigan Medicine, to explore some pressing cybersecurity issues. They discuss the rise of student hackers and the impact of poor data practices on school security. The duo debates the importance of stability in the CVE system and the potential implications of CISA's control. They also tackle Microsoft’s support controversies and the alarming capabilities of AI in crafting phishing schemes. Tune in for a lively conversation on current trends and challenges!
AI Snips
Chapters
Transcript
Episode notes
Boards Must Own Cybersecurity
- Boards hold fiduciary responsibility for cybersecurity but often lack programmatic understanding.
- Closing board knowledge gaps creates continuity and reduces sacrificial CISO turnover.
Stop Burning Out CISOs
- Retain experienced CISOs and fund teams to reduce burnout and improve continuity.
- Give security teams decision power and adequate budgets to keep talent and secure systems.
Supply-Chain Breaches Are Rising
- High-value security vendors are increasingly declaring breaches, signaling supply-chain risk growth.
- This trend elevates exposure across many dependent organizations.