In this episode of 'Cybersecurity Today,' hosts John Pinard and Jim Love introduce their unique show, 'The Secret CISO,' which aims to dive deep into the lives and thoughts of CISOs and similar roles, beyond the usual interview-style format. The guest for this episode is Priya Ali, CISO at Sheridan College, who shares her journey from engineering to cybersecurity, her global experiences, and how she manages her multifaceted role. Another guest, Mosen, Director of Cyber Defense in the financial sector, discusses his career path, which includes notable stints in entertainment and consulting. The conversation explores the pressing challenges in cybersecurity such as AI threats, burnout, and vendor tool overload, while emphasizing the importance of people skills and relationship-building within organizations. The episode wraps up with a promise of a follow-up discussion to delve deeper into the impact of AI on cybersecurity.

00:00 Introduction to the Secret CISO Show
00:51 Guest Introductions: Meet Priya Ali
01:59 Priya's Career Journey and Insights
06:44 Mosen's Background and Career Path
13:12 John's Career and Cybersecurity Evolution
15:58 Current Cybersecurity Challenges
24:04 Adapting to New Roles in Cybersecurity
25:36 Managing People and Preventing Burnout
27:08 Servant Leadership and Team Dynamics
31:16 Strategic Hiring and Team Cohesion
33:42 Handling Stress and Personal Well-being
35:46 The Role of CISOs as Organizational Psychologists
40:54 Influencing Behavior and Building a Security Culture
44:28 Coping with the Barrage of Cybersecurity Tools
51:10 Conclusion and Future Discussions

In this episode of Cybersecurity Today, host Jim Love discusses critical AI-related security issues, such as the Echo Leak vulnerability in Microsoft's AI, MCP's universal integration risks, and Meta's privacy violations in Europe. The episode also explores the dangers of internet-exposed cameras as discovered by BitSight, highlighting the urgent need for enhanced AI security and the legal repercussions for companies like Meta.

00:00 Introduction to AI Security Issues
00:24 Echo Leak: The Zero-Click AI Vulnerability
03:17 MCP Protocol: Universal Interface, Universal Vulnerabilities
07:01 Meta's Privacy Scandal: Local Host Tracking
10:11 The Peep Show: Internet-Connected Cameras Exposed
12:08 Conclusion and Call to Action

This episode of 'Cybersecurity Today' hosted by Jim Love covers various significant events in the cybersecurity landscape. OpenAI has banned multiple ChatGPT accounts linked to state-sponsored hackers from countries including China, Russia, North Korea, Iran, and the Philippines for developing malware, generating disinformation, and conducting scams.

The episode also discusses the Dark Gaboon hacker group, which targets Russian companies with Lock Bit 3.0 ransomware.

Furthermore, it highlights the controversial installation of a Starlink satellite internet terminal at the White House by Elon Musk's DOGE team, bypassing normal security measures, and a hardware enthusiast's successful use of ChatGPT to unlock an Android tablet's BIOS, raising questions about firmware security.

00:00 Open AI Bans ChatGPT Accounts used by state backed hackers
00:25 State-Sponsored Threat Actors Exploiting ChatGPT
04:36 Dark Gaboon: A New Hacker Group Targets Russia
07:11 Elon Musk's DOGE Team Installs Starlink at the White House
09:57 Unlocking an Android Tablet with ChatGPT
12:07 Conclusion and Contact Information

In this episode of Cybersecurity Today, host David Shipley delves into alarming developments in the cybersecurity landscape. The FBI has flagged a massive malware campaign named Bad Box 2.0, which has compromised 1 million consumer devices globally, turning them into residential proxies. Additionally, a new variant of the Mirai malware is targeting DVR devices via a critical vulnerability. Meanwhile, criminals are shifting their operations from bulletproof hosts to harder-to-trace VPNs and residential proxy networks.

The episode also covers urgent calls for post-quantum cryptography readiness amidst looming quantum computing threats, alongside a significant policy shift in the US. President Trump has signed an executive order dismantling former President Biden's extensive cybersecurity initiatives, including efforts focused on AI and quantum cryptography. These regulatory rollbacks emphasize minimal federal oversight and leave long-term digital defense strategies in question.

00:00 Introduction and Major Headlines
00:32 FBI Warns About Bad Box 2.0 Botnet
02:47 DVR Botnet Threats and Exploits
03:59 Shift in Cybercriminal Tactics
05:33 Quantum Computing and Encryption Concerns
07:08 Trump's Cybersecurity Policy Overhaul
11:36 Conclusion and Final Thoughts

In this episode of the 'Cybersecurity Today: The Month in Review' show, host Jim welcomes regular guests Laura Payne and David Shipley, along with newcomer Anton Levaja. The trio dives deep into various cybersecurity stories, analyzing trends, threats, and recent incidents. Topics include the intriguing Mystery Leaker exposing cyber criminals, the rise and sophistication of LockBit ransomware, the devastating ransomware attack on Coinbase and their bold counter-response, and the physical dangers faced by cryptocurrency entrepreneurs. The episode also highlights the innovation in law enforcement tactics and the pressing need for better cybersecurity awareness and education. They wrap up on a hopeful note, showcasing a young scout's inspiring project on cyber fraud prevention that gained support from the local police.

00:00 Introduction and Panelist Welcome
00:38 Show Format and Story Introduction
01:28 The Mystery Leaker Story
03:35 Law Enforcement and Cyber Crime
10:51 Coinbase Ransomware Incident
18:04 Physical Threats in the Crypto World
24:56 Operation Shamrock and Organized Crime
25:19 Breaking News: Kidnapping Mastermind Arrested
26:18 Quishing: The Clever Side of Cybercrime
27:11 QR Code Scams and Consumer Protection
31:08 Generational Differences in Cyber Threats
32:05 The Evolution of Cyber Attacks
38:40 Physical Crime in the Digital Age
41:10 Law Enforcement and Cybersecurity
43:55 Government Surveillance and Privacy Concerns
46:08 Feel-Good Story: Young Cybersecurity Advocate

Cybersecurity Today, hosted by Jim Love, delves into the latest in cyber threats. Cyber criminals have breached 20 organizations via convincing fake IT support calls, targeting Salesforce data for extortion. Ukraine's intelligence claims a significant cyber operation against Russia's aircraft manufacturer, stealing sensitive data and highlighting Ukraine's growing cyber capabilities. Google Chrome will stop trusting certificates from two major authorities due to compliance failures, affecting millions of web visitors. Lastly, a $400 million hack on Coinbase was executed using phone cameras, reminding us of the potency of simple attacks.

00:00 Introduction and Headlines
00:23 Fake IT Support Scam Hits 20 Companies
03:52 Ukraine's Cyber Operation Against Russia
07:05 Google Chrome Stops Trusting Two Certificate Authorities
09:11 $400 Million Hack from a Phone Camera
11:24 Conclusion and Contact Information

In this episode of Cybersecurity Today, host Jim Love discusses the latest urgent security updates and cyber threats. Google has released an emergency Chrome patch to fix a high-severity zero-day vulnerability, while Microsoft issued an emergency patch to resolve Windows 11 boot failures caused by their May 2025 update. A mysterious whistleblower known as 'Gang Exposed' is doxing major ransomware leaders, providing invaluable intelligence for global cybersecurity efforts. Additionally, 'Quishing,' or QR code phishing, is emerging as a new threat, with cybercriminals taping malicious QR codes on public lampposts and street corners. This trend bypasses traditional digital defenses, underscoring the need for public awareness and vigilance. The episode emphasizes the importance of immediate updates, informed vigilance, and proactive cybersecurity measures.

00:00 Emergency Chrome Patch and Windows 11 Boot Fix
00:28 Google's Zero-Day Vulnerability in Chrome
02:28 Microsoft's Emergency Update for Windows 11
05:35 Gang Exposed: Unmasking Ransomware Leaders
07:55 Quishing: The New QR Code Phishing Threat
10:22 Conclusion and Viewer Engagement

In this episode of Cybersecurity Today, host David Shipley discusses several key cyber incidents affecting organizations and individuals. A new rust-based information stealer, known as Eddie Steeler, is being distributed via deceptive CAPTCHA verification pages. ConnectWise, a management software firm, has been breached in an attack suspected to be linked to a nation-state actor, affecting a limited number of its ScreenConnect customers. Additionally, threat actors are now abusing Google App Script to bypass phishing defenses, exploiting the trusted Google brand to trick users. Lastly, a significant data breach at Nova Scotia Power has exposed the social insurance numbers of up to 140,000 customers, making it one of the largest utility data breaches in North America.

00:00 Introduction to Today's Cybersecurity News
00:31 Eddie Steeler Malware Campaign
02:32 ConnectWise Cyber Attack
04:49 Google App Script Phishing Attacks
06:50 Nova Scotia Power Data Breach
08:02 Conclusion and Listener Engagement