Andy Jaw & Adam Brewer

Blue Security

A podcast for information security defenders (blue team) on best practices, tools, and implementation for enterprise security.

Author

Andy Jaw & Adam Brewer

Category

Technology

Podcast website

bluesecuritypod.com

Latest episode

Jul 7, 2026

Where to listen?

Podcasts in the app Replaio Radio Coming soon

Podcasts are coming to the app soon. Install now and be the first to see a whole new take on podcasts

Get it on Google Play Install for free Android 5M+ downloads · 4.8 rating iOS soon

Episodes

Spies, Wipes, and AI Gripes 17.03.2026

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam discuss significant developments in AI ethics and cybersecurity. They delve into the legal battles between Anthropic and the US government, Microsoft's support for Anthropic, and the backlash against OpenAI's military contract. The conversation shifts to the misuse of a US cyber weapon, Karuna, and concludes with a c...

Spies, Wipes, and AI Gripes 17.03.2026

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam discuss significant developments in AI ethics and cybersecurity. They delve into the legal battles between Anthropic and the US government, Microsoft's support for Anthropic, and the backlash against OpenAI's military contract. The conversation shifts to the misuse of a US cyber weapon, Karuna, and concludes with a c...

Dial 'F' for Fraud: Uncovering IRSF 16.03.2026

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam delve into a significant surge in external ID charges experienced by a customer, leading to the discovery of an international revenue share fraud attack. They discuss the mechanics of this fraud, how it exploits telecommunication systems, and the importance of monitoring and mitigating such attacks. The conversation emphasiz...

Dial 'F' for Fraud: Uncovering IRSF 10.03.2026

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam delve into a significant surge in external ID charges experienced by a customer, leading to the discovery of an international revenue share fraud attack. They discuss the mechanics of this fraud, how it exploits telecommunication systems, and the importance of monitoring and mitigating such attacks. The conversation emphasiz...

Guardrails or Going Off the Rails: Anthropic vs US Government 03.03.2026

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam delve into the recent tensions between the U.S. government and the private tech sector regarding artificial intelligence. They discuss the clash between Anthropic and the Department of Defense over AI safety guardrails, the implications of designating Anthropic as a supply chain risk, and the broader impact on the defense se...

Guardrails or Going Off the Rails: Anthropic vs US Government 03.03.2026

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam delve into the recent tensions between the U.S. government and the private tech sector regarding artificial intelligence. They discuss the clash between Anthropic and the Department of Defense over AI safety guardrails, the implications of designating Anthropic as a supply chain risk, and the broader impact on the defense se...

ClawdBot, MoltBot, and OpenClaw 24.02.2026

Summary In this episode, Adam and Andy explore the security challenges and risks associated with OpenClaw, an AI assistant with extensive system access, highlighting recent incidents, vulnerabilities, and best practices for security in AI development. ---------------------------------------------------- YouTube Video Link: https://youtu.be/TGAbhPQa9iw ----------------------------------------------...

ClawdBot, MoltBot, and OpenClaw 24.02.2026

Summary In this episode, Adam and Andy explore the security challenges and risks associated with OpenClaw, an AI assistant with extensive system access, highlighting recent incidents, vulnerabilities, and best practices for security in AI development. ---------------------------------------------------- YouTube Video Link: https://youtu.be/TGAbhPQa9iw ----------------------------------------------...

Notepad++ supply chain compromise and 7-Zip malware 17.02.2026

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam discuss significant cybersecurity incidents involving Notepad++ and 7-Zip, highlighting the vulnerabilities in open-source software and the importance of enterprise software management. They emphasize the need for ad blockers, the challenges of identifying legitimate software downloads, and the necessity of implementing robu...

Notepad++ supply chain compromise and 7-Zip malware 17.02.2026

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam discuss significant cybersecurity incidents involving Notepad++ and 7-Zip, highlighting the vulnerabilities in open-source software and the importance of enterprise software management. They emphasize the need for ad blockers, the challenges of identifying legitimate software downloads, and the necessity of implementing robu...

Do we need phishing sims & Upcoming Intune changes 17.02.2026

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam discuss the evolving landscape of cybersecurity training, particularly in light of generative AI and the limitations of traditional phishing simulations. They argue that expecting employees to outsmart sophisticated cybercriminals is unrealistic and emphasize the need for a robust security architecture that assumes clicks wi...

Do we need phishing sims & Upcoming Intune changes 10.02.2026

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam discuss the evolving landscape of cybersecurity training, particularly in light of generative AI and the limitations of traditional phishing simulations. They argue that expecting employees to outsmart sophisticated cybercriminals is unrealistic and emphasize the need for a robust security architecture that assumes clicks wi...

Smartphone Privacy, Know Your Rights 03.02.2026

Summary In this episode of the Blue Security Podcast, hosts Andy Jaw and Adam Brewer discuss the intersection of cybersecurity, user rights, and the evolving landscape of threats. They explore the importance of understanding the rights individuals have when interacting with law enforcement. The conversation also touches on one's rights at the border. Throughout the episode, the hosts emphasize the...

Smartphone Privacy, Know Your Rights 03.02.2026

Summary In this episode of the Blue Security Podcast, hosts Andy Jaw and Adam Brewer discuss the intersection of cybersecurity, user rights, and the evolving landscape of threats. They explore the importance of understanding the rights individuals have when interacting with law enforcement. The conversation also touches on one's rights at the border. Throughout the episode, the hosts emphasize the...

BSP Maturity Model - Data Security with guest Amren Gill 27.01.2026

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam, along with expert Amren Gill, delve into the critical topic of data security. They discuss the importance of data classification and identification, the challenges of data loss prevention, and the significance of lifecycle management in maintaining data integrity. The conversation emphasizes the need for a strong security c...

BSP Maturity Model - Data Security with guest Amren Gill 27.01.2026

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam, along with expert Amren Gill, delve into the critical topic of data security. They discuss the importance of data classification and identification, the challenges of data loss prevention, and the significance of lifecycle management in maintaining data integrity. The conversation emphasizes the need for a strong security c...

WEF Security Survey, AI Browsers, NTLMv1 20.01.2026

Summary In this episode of the Blue Security Podcast, hosts Andy Jaw and Adam Brewer delve into the latest AI security concerns facing leaders today. They discuss a World Economic Forum report highlighting the divergence in priorities between CEOs and CISOs, with CEOs focusing on cyber-enabled fraud and AI vulnerabilities, while CISOs are more concerned with ransomware and supply chain resilience....

LinkedIn job scams and Zero-Click Gemini Vulnerability 13.01.2026

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam discuss the challenges faced in the job market, particularly the rise of scams on platforms like LinkedIn. They emphasize the importance of verifying recruiters and job postings to avoid falling victim to scams. The conversation then shifts to the vulnerabilities associated with AI tools, particularly a recent incident invol...

RC4 Deprecated, Are passkeys still an issue? 06.01.2026

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam discuss significant updates in Microsoft's security protocols, particularly regarding Kerbroasting and the transition from RC4 to AES encryption. They delve into the challenges surrounding the adoption of passkeys, emphasizing the need for user education and the importance of credential managers. The conversation highlig...

Our 2026 Predictions 30.12.2025

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam discuss key cybersecurity predictions for 2026, focusing on the rise of agentic AI, quantum computing threats, deepfakes, the expanding attack surface due to IoT, the evolution of cybercrime into corporate structures, and the necessity for cybersecurity to be viewed as a strategic business pillar. They emphasize the importan...

Introducing the BSP Maturity Model for Identity 23.12.2025

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam discuss the Security Maturity Model, focusing on identity security. They explore the current state of security practices, identifying areas where organizations may be behind the curve, on track, or ahead of the curve in their security measures. Key topics include the importance of multi-factor authentication (MFA), the trans...

Microsoft Bug Bounty, CISA hiring surge, US goes offensive in cyber ops, OWASP Top 10 16.12.2025

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam discuss significant updates in cybersecurity, including Microsoft's overhaul of its bug bounty program, CISA's hiring strategy amidst workforce challenges, the US's shift towards a more aggressive cyber strategy, and insights from the updated OWASP Top 10 vulnerabilities. The conversation emphasizes the importanc...

Salt Typhoon - The Growing China Threat 09.12.2025

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam delve into the growing cybersecurity threat posed by the Chinese state-sponsored group, Salt Typhoon. They discuss the group's tactics, motivations, and the implications for global security. The conversation highlights China's strategic focus on economic power as a means of national security, their long-term approach...

Chat app vulnerabilities, Use AI or else 02.12.2025

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam discuss vulnerabilities in popular chat applications, particularly focusing on Line and WhatsApp. They explore the implications of these vulnerabilities for user privacy and security, emphasizing the importance of API security and rate limiting. The conversation then shifts to the integration of AI in the workplace, highligh...

2025 Microsoft Ignite Recap for Security 25.11.2025

Summary In this episode of the Blue Security Podcast, hosts Andy and Adam discuss the major announcements from Microsoft Ignite, focusing on the introduction of Security Copilot for Microsoft 365 E5 customers, innovations in identity management through Entra, and the integration of Defender for Cloud with GitHub. They also explore the new capabilities in Intune for remote management of Windows dev...

Listen to the Blue Security podcast in Replaio

Radio and podcasts in one app - free, with no sign-up. Install today and do not miss the launch

Get it on Google Play

Replaio is not a podcast publisher; show names, artwork and audio belong to their authors and are distributed through public RSS feeds.