CyberWire Daily

Caleb Barlow, CEO of Cyberbit, dives into the pressing issue of the cyber skills gap, highlighting the contradictions between academic training and employer needs. He advocates for upskilling existing employees rather than just hiring new talent. Barlow also discusses the recent surge in cyber threats, such as new malware and high-profile data breaches, including the education sector. The conversation reveals the importance of practical experience and the evolving landscape of cybersecurity, emphasizing adaptability to meet modern security challenges.

Join AJ Gemer, co-founder and CTO of Lunar Outpost, and Salem El Nimri, CTO at AWS Aerospace & Satellite, as they venture into the future of space exploration. They discuss groundbreaking innovations in lunar robotics, including AI-driven navigation and the intricacies of the Stargate system for data analysis. The duo also highlights how AWS technology is revolutionizing missions on the Moon and Mars, emphasizing collaborative efforts in overcoming challenges. Learn how advanced rovers and swarm robotics are unlocking lunar mysteries!

Kevin Magee, Global Director of Cybersecurity Startups at Microsoft for Startups, joins to share high-energy insights from the RSAC show floor. He highlights the fallout from a $167 million verdict against NSO Group and discusses urgent hacktivist threats to U.S. infrastructure. Magee also delves into privacy risks with government apps and outlines the implications of NSA workforce reductions and evolving deepfake technologies. With server room humor, he wraps up a whirlwind of cybersecurity challenges and emerging AI trends.

Monzy Merza, Co-Founder and CEO of Crogl, dives into the pressing issues faced by Chief Information Security Officers in a rapidly evolving AI landscape. The podcast discusses a critical vulnerability in Samsung’s MagicINFO, which is currently being exploited. Malware threats like ClickFix and sophisticated phishing tactics from the Luna Moth Group are highlighted. Merza also emphasizes the need for innovative tools to enhance security analysis, as traditional methods struggle to keep up with increasing cyber threats.

Critical vulnerabilities in a Signal messaging app used by top government officials bring hard-coded credentials to light. A leaked API key from xAI raises questions about security practices. The discussion includes a new SS7 zero-day exploit and the implications of SteelC malware updates. Experts advocate for viewing cybersecurity as a business-wide responsibility, emphasizing effective collaboration and communication. The move towards a passwordless future with Passkeys also highlights innovation in cybersecurity practices.

Discover Joe Bradley’s fascinating journey from aspiring opera singer to Chief Scientist in tech. He reflects on how diverse interests, like music and literature, enhance mathematical intuition. Joe emphasizes the importance of deep exploration in one's field to foster growth and innovation. The conversation also touches on the interplay between science and effective management within teams, highlighting how structured processes can lead to better outcomes and a focus on cybersecurity risks.

Shaked Reiner, Security Principal Security Researcher at CyberArk, dives into the intriguing realm of Agentic AI and its security challenges. He elaborates on how these AI systems can perform autonomous tasks, but also become potential threats through vulnerabilities like prompt injections. Shaked emphasizes treating agent outputs as untrusted code to mitigate risks. The conversation also touches on the vital need for monitoring, auditing, and innovative security strategies to keep pace with the rapidly evolving landscape of AI threats.

The podcast unpacks recent cybersecurity incidents like the Canadian power company's breach and the attempted attack on Harrods. Key insights from the RSA Conference 2025 reveal the vital role of AI in cybersecurity and the need for better networking. Kevin Magee shares energetic interviews with industry leaders discussing innovation, compliance challenges, and startup journeys. Plus, there's a dive into regulatory actions, including the EU's fine on TikTok for GDPR violations, highlighting the ever-evolving landscape of cyber threats and solutions.

At RSAC 2025, experts express concerns about AI developing advanced software exploits. A former NSA chief identifies China as a primary threat to U.S. infrastructure. North Korean IT operatives are infiltrating global companies, while France accuses a Russian group of targeting its government. New high-severity vulnerabilities are surfacing, and a Scottish hacker is extradited to the U.S. Meanwhile, emerging malware like Gremlin Stealer poses serious risks. Innovations in cybersecurity are discussed, highlighting the need for continuous adaptation.

We're sharing a episode from another N2K show we thought you might like. It's the third episode of the new season of the show CISO Perspectives with Kim Jones. Enjoy! Show Notes: While the cybersecurity industry has expanded and grown in recent years, newcomers still struggle to gain relevant "experience" before officially beginning their cyber careers. In this episode of CISO Perspectives, host Kim Jones sits down with Kathleen Smith, the Chief Outreach Officer at clearedjobs.net and the co-host of Security Cleared Jobs: Who’s Hiring & How, to discuss this dilemma and what new entrants can do to account for these difficulties. Throughout the conversation, Kathleen and Kim will discuss the challenges associated with entry-level cyber positions, how to gain meaningful experience, and how the industry as a whole contributes to this problem. Want more CISO Perspectives?: Check out a companion ⁠blog post⁠ by our very own Ethan Cook, where he breaks down key insights, shares behind-the-scenes context, and highlights research that complements this episode. It’s the perfect follow-up if you’re curious about the cyber talent crunch and how we can reshape the ecosystem for future professionals. Learn more about your ad choices. Visit megaphone.fm/adchoices