Shared Security Podcast
Tom Eston, Scott Wright, Kevin Johnson
Shared Security is the the longest-running cybersecurity and privacy podcast where industry veterans Tom Eston, Scott Wright, and Kevin Johnson break down the week’s security WTF moments, privacy fails, human mistakes, and “why is this still a problem?” stories — with humor, honesty, and hard-earned real-world experience. Whether you’re a security pro, a privacy advocate, or just here to hear Kevin yell about vendor nonsense, this podcast delivers insights you’ll actually use — and laughs you probably need. Real security talk from people who’ve lived it.
Episodes
Mentioned books
Sep 15, 2025 • 5min
Best of Shared Security (2020) History Repeats Itself: Cybersecurity Challenges that Still Haunt Us
In this “best of” episode of the Shared Security Podcast, we revisit a discussion from September 2020 that’s just as relevant today as it was then. First, we cover how ransomware attacks forced several school districts—including Hartford, CT and Toledo, OH—to delay or shut down classes on the very first day of school. Then we […]
The post Best of Shared Security (2020) History Repeats Itself: Cybersecurity Challenges that Still Haunt Us appeared first on Shared Security Podcast.
Sep 8, 2025 • 17min
Salesforce Under Fire: The Salesloft Drift Supply-Chain Breach
In this episode, we discuss a recent significant cyber attack where Palo Alto Networks experienced a data breach through their Salesforce environment due to a compromised SalesLoft drift integration. Throughout the discussion, we highlight why Salesforce, a crucial CRM platform for many businesses, is becoming a prime target for supply chain attackers. The hosts discuss […]
The post Salesforce Under Fire: The Salesloft Drift Supply-Chain Breach appeared first on Shared Security Podcast.
Sep 1, 2025 • 4min
Convenience vs. Privacy: Can We Have Both?
In this episode, we discuss if the convenience of modern technology compromises our privacy. Inspired by a thought-provoking Reddit post, we explore how everyday actions like saving passwords, enabling location tracking, and using cloud backups put our personal data at risk. Learn about the trade-offs between convenience and privacy, and get tips on using privacy-focused […]
The post Convenience vs. Privacy: Can We Have Both? appeared first on Shared Security Podcast.
Aug 25, 2025 • 18min
Public Wi-Fi Myths: Why You’re Probably Safer Than You Think
Public Wi-Fi has a bad reputation — but in 2025, the “you’ll get hacked instantly” fear is largely outdated. In this episode, Tom and Kevin dig into real research and modern protections that make most public Wi-Fi connections reasonably safe. We’ll explore why HTTPS, device security, and updated standards have drastically reduced the risks, what […]
The post Public Wi-Fi Myths: Why You’re Probably Safer Than You Think appeared first on Shared Security Podcast.
Aug 18, 2025 • 15min
The Tea App Hack: How a “Safe” Space Leaked 13,000 ID Photos & 1.1M Messages
In this episode we’re discussing the alarming breach of the Tea app, a platform intended for women to share dating experiences. The hack resulted in the exposure of over 13,000 government ID photos, 72,000 user images, and over a million private messages due to poor security practices. We’ll discuss the role of sloppy coding, an […]
The post The Tea App Hack: How a “Safe” Space Leaked 13,000 ID Photos & 1.1M Messages appeared first on Shared Security Podcast.
Aug 11, 2025 • 4min
Random Smishing Text Scams: Why “Do I Know You?” Texts Are Dangerous
In this episode, we discuss a rising scam involving random smishing text messages. Learn how these messages work, why they’re effective, and what you can do to protect yourself. Discover the dangers of replying to vague text messages from unknown numbers and get practical tips on how to block and report spam texts. Stay safe […]
The post Random Smishing Text Scams: Why “Do I Know You?” Texts Are Dangerous appeared first on Shared Security Podcast.
Aug 4, 2025 • 16min
Leaked, Patched, and Still Hacked: The SharePoint Zero-Day Crisis
This week we explore the recent Microsoft SharePoint vulnerability that has led to widespread exploitation by ransomware gangs and Chinese State-sponsored hackers. We also cover the confirmed compromise of multiple US agencies, including the Department of Homeland Security, in a large-scale cyber espionage campaign. Kevin Johnson joins to discuss the implications of these events, the […]
The post Leaked, Patched, and Still Hacked: The SharePoint Zero-Day Crisis appeared first on Shared Security Podcast.
Jul 28, 2025 • 19min
Doorbells, Dystopia, and Digital Rights: The Ring Surveillance Debate
In this episode, we examine Amazon’s Ring doorbell camera amid rising privacy concerns and policy changes. The Electronic Frontier Foundation’s recent report criticizes Ring’s AI-first approach and the rollback of prior privacy reforms, describing it as ‘techno authoritarianism.’ We also discuss a recent scare among Ring users on May 28, related to an unexplained series […]
The post Doorbells, Dystopia, and Digital Rights: The Ring Surveillance Debate appeared first on Shared Security Podcast.
5 snips
Jul 21, 2025 • 20min
Passwords and the Elderly: Why Writing Them Down Might Be OK
In this episode, join hosts Tom Eston, Scott Wright, and Kevin Johnson as they discuss the controversial topic of seniors writing down passwords. They discuss how threat modeling differs for the elderly, the practicality of using password managers, two-factor authentication, and future solutions like passkeys. The conversation includes humorous anecdotes and touches on broader cybersecurity […]
The post Passwords and the Elderly: Why Writing Them Down Might Be OK appeared first on Shared Security Podcast.
Jul 14, 2025 • 16min
The Google Workspace Security Gap: Why Traditional Tools Fall Short
In this episode, we discuss the often overlooked security issues within Google Workspace. Rajan Kapoor, Field CISO at Material Security, joins us to talk about how Material Security is redefining the protection of documents, email accounts, and data in Google Workspace. We explore the unique challenges Workspace presents compared to traditional tools, and how Material […]
The post The Google Workspace Security Gap: Why Traditional Tools Fall Short appeared first on Shared Security Podcast.
