CyberWire Daily

N2K Networks
undefined
9 snips
Aug 26, 2025 • 27min

Rolling the dice on cybersecurity.

Cristian Rodriguez, Field CTO for the Americas at CrowdStrike, reveals the growing three-front war in AI. He discusses a cyberattack disrupting Nevada's state systems and a Chinese cyber threat targeting Southeast Asian diplomats. The conversation dives into alarming new methods where attackers hide prompts in AI-processed images, raising concerns about AI's role in escalating attacks. Rodriguez also examines the implications of AI in the job market and the urgent need for stronger safeguards against emerging cybersecurity threats.
undefined
42 snips
Aug 25, 2025 • 22min

A farmers market of stolen data.

A major data breach at Farmers Insurance exposes over a million users. Cybercriminals are targeting macOS users with clever scams disguised as tech support. In a surprising twist, a bill is proposed to grant hackers special permissions against foreign enemies. Meanwhile, privacy advocates rejoice as the UK drops demands for backdoor access to Apple data. The discussion also highlights the growing threat of malware and the importance of robust cybersecurity measures. Additionally, AI tools face their own risks, revealing the vulnerabilities of digital advancements.
undefined
7 snips
Aug 24, 2025 • 11min

Julian Waits: Find a way to help society. [Serial Entrepreneur] [Career Notes]

Julian Waits, Senior VP at Rapid7 and Chairman of Cyversity, shares his inspiring journey shaped by childhood heroes like Superman. He discusses transitioning from aspiring musician to tech leader, fueled by a desire to impact society positively. Julian highlights the importance of mentorship and diversity in cybersecurity, breaking stereotypes about necessary skills. He recounts his early tech experiences and emphasizes finding one's niche in a competitive landscape while advocating for inclusive learning opportunities in the field.
undefined
19 snips
Aug 23, 2025 • 22min

Beyond the smoke screen. [Research Saturday]

Renée Burton, VP of Threat Intelligence at Infoblox, dives into the world of digital fraud through VexTrio, a traffic distribution system behind extensive scams. She reveals how just 250 virtual machines orchestrate a massive global ad fraud operation, connecting to individuals and shell companies across Europe. The discussion highlights VexTrio’s criminal supply chain—featuring fake apps and dating scams—and calls for accountability in the adtech industry to combat these threats. Burton sheds light on the critical yet overlooked role of cybersecurity in preserving trust in digital ecosystems.
undefined
33 snips
Aug 22, 2025 • 32min

A free speech showdown.

Brandon Karpf, a former colleague at N2K CyberWire, shares fascinating insights from his experience with fraudulent North Korean job applicants. The discussion highlights how smooth-talking candidates can infiltrate the cybersecurity landscape. They delve into the broader implications of hiring fraud, emphasizing the need for vigilance during interviews. Topics also include recent cyber threats, such as the actions of the Murky Panda group, and the pressing challenges in verifying the authenticity of applicants in a rapidly evolving tech job market.
undefined
22 snips
Aug 21, 2025 • 25min

Behind the lock lies a flaw.

Ron Zayas, CEO of Ironwall by Incogni, dives into the hidden data sharing and privacy risks associated with Buy Now Pay Later apps. He discusses how these services, while enticing for consumers, can lead to significant privacy concerns due to extensive data collection practices. Zayas highlights the impulsive buying behavior particularly among younger users and the implications of such trends. He also touches on the need for transparency and ethical practices in the evolving landscape of financial technology.
undefined
10 snips
Aug 20, 2025 • 32min

Undoing the undo bug.

Matt Radolec, VP of Incident Response, Cloud Operations, and Sales Engineering at Varonis, discusses critical issues in cloud security and data risk assessments. He dives into the challenges of securing Salesforce, particularly the risks of outsourcing and permissions management. Radolec highlights threats from groups like ShinyHunters and stresses the need for user awareness and strong security practices. The conversation also touches on Microsoft's Copilot and its compliance implications, emphasizing a proactive approach to cybersecurity.
undefined
10 snips
Aug 19, 2025 • 26min

Inside Intel’s internal web maze.

A researcher reveals shocking vulnerabilities within Intel's internal sites, endangering sensitive data. The Kimsuky group targets South Korean diplomatic missions, while a new DDoS flaw emerges despite past fixes. A ransomware attack on a drug company raises alarm bells. The podcast dives into the complexities of context switching for analysts in Security Operations Centers, highlighting the toll on productivity and potential automation solutions. With leaked malware code and rising digital fraud, the episode underscores the urgent need for stronger security measures.
undefined
Aug 18, 2025 • 27min

Workday’s bad day.

Tim Starks, a senior reporter at CyberScoop, dives into the fallout from Workday's recent data breach, revealing how social engineering plays into cyber threats. He discusses alarming vulnerabilities like a zero-day in Elastic’s EDR software and the rise of ghost-tapping fraud techniques. Starks also addresses the legal challenges Zelle faces over fraud claims and highlights the implications of recent executive orders on cybersecurity, showcasing mixed reactions within the cyber community. Additionally, he touches on the issue of bots creating echo chambers in online spaces.
undefined
6 snips
Aug 16, 2025 • 10min

Dr. Rois Ni Thuama: Get into the game. [Cyber governance] [Career Notes]

Rois Ni Thuama, Head of Cyber Governance at Red Sift, shares her fascinating career journey, which includes working on music videos and documentaries in South Africa before diving into tech startups. She emphasizes the importance of coding, risk management, and privacy legislation for aspiring professionals. Rois illustrates the evolving landscape of cybersecurity governance and highlights the growing opportunities for those with a legal background to enter the field. Her advice? Just get into the game!

The AI-powered Podcast Player

Save insights by tapping your headphones, chat with episodes, discover the best highlights - and more!
App store bannerPlay store banner
Get the app