IANS Research
IANS Cyber Intel
IANS Cyber Intel Podcast addresses must-know-now topics, such as AI risk, prominent breaches, Zero Day exploitation, compliance updates, and much much more. Each podcast provides actionable, practical guidance for CISOs and Information Security professionals. The podcast includes exclusive highlights from IANS client-only weekly Tech Briefings. With IANS Research, get security expertise at speed. IANS Research is a clear-headed resource for decision making and articulating risk, providing experience-based security insights for Chief Information Security Officers and their teams.
Where to listen?
Podcasts in the app Replaio Radio Coming soonPodcasts are coming to the app soon. Install now and be the first to see a whole new take on podcasts
Episodes
Security Briefing: Exchange Vulns, SonicWall Zero Day That Wasn’t, GitHub to Join MSFT’s CoreAI 13.08.2025 27:45
August 13th, 2025 Security Briefing with IANS Faculty Jake Williams and Jessica Hebenstreit This Episode Details: Exchange Server Vulns: Researchers from Outsider Security presented on a new vulnerability in Exchange Server on premises that could allow a threat actor to take control of associated M365 tenants under certain circumstances. The SonicWall Zero Day That Wasn’t: In July, security...
Security Briefing: SEC and SolarWinds, Crypto Agility and TLS Rotation, Ingram Micro Ransomware Attack 09.07.2025 30:32
July 9th, 2025 Security Briefing with IANS Faculty Wolfgang Goerlich and Jessica Hebenstreit This Episode Details: SEC and SolarWinds Make a Deal: The U.S. Securities and Exchange Commission (SEC) and SolarWinds have reached a preliminary agreement to settle the high-profile lawsuit stemming from the 2020 cyberattack. Instagram Rotating Certificates Daily: Earlier this year, the CA/Browser...
Security Briefing: Mobile Provider Leaks Location Data, ConnectWise Breach, Red Canary Acquired 04.06.2025 30:16
June 4th, 2025 Security Briefing with IANS Faculty Jake Williams and Jessica Hebenstreit This Episode Details: Virgin Media O2 Exposed Customers’ Geolocations: A network security flaw in Virgin Media O2’s 4G network and Wi-Fi calling features exposed sensitive customer data, including geolocation via Cell ID, SIM card information, and phone model details. ConnectWise Breached by Nation-State Act...
Security Briefing: Verizon DBIR 2025 Highlights, Mobile Security, Darcula GenAI Concerns 30.04.2025 30:27
April 30th, 2025 Security Briefing with IANS Faculty Dave Shackleford and Shannon Lietz This Episode Details: Verizon DBIR 2025: In this year’s version of the Verizon Data Breach Investigations Report (DBIR), there were several main takeaways. State of Mobile Security 2025: With adversaries' growing interest in mobile attack vectors, this year’s State of Mobile Security report by Now...
Security Briefing: EU Souring on US Cloud Providers, CISA Cuts, Supply Chain Cautionary Tale 09.04.2025 30:27
April 9th, 2025 Security Briefing with IANS Faculty Jake Williams and Jessica Hebenstreit This Episode Details: EU Companies Exploring Alternatives to US Cloud Providers - WIRED reported that some EU companies are exploring ways to de-risk their involvement with U.S. cloud providers by looking at alternatives to Amazon, Google, and Microsoft. More Cuts at CISA - Reporters at Politico ...
Security Briefing: Pause on Offensive Ops Against Russia, DPRK’s Bybit Heist, Copilot Exposes GitHub Pages 05.03.2025 29:52
March 5th, 2025 Security Briefing with IANS Faculty Jake Williams and Wolfgang Goerlich This Episode Details: U.S. Pauses Offensive Cyber Ops Against Moscow - The United States has suspended its offensive cyber activities targeting Russia . This decision, authorized by U.S. Defense Secretary, aims to encourage Moscow to engage in negotiations to end the ongoing conflict in Ukraine. DPRK Beh...
The State of the CISO in 2025 17.02.2025 55:02
CISOs are currently under more pressure than ever to deliver results with lean teams and increasingly scrutinized budgets. CISOs’ scope continues to expand while boards and leaders are continually focused on cyber budgets and program execution. At the same time, resources are tight and orgs are still figuring out how to navigate emerging areas of digital risk – particularly AI and its correspondin...
Infosec Trends you should be watching in 2025 15.01.2025 53:42
2025 Deep Dive Webinar and Podcast with IANS Faculty Jessica Hebenstreit and Jake Williams Infosec teams are stretched. Budgets are flat, resources are strained, and we’re always trying to stay one step ahead of adversaries. Layer in new regulations, the integration of AI into seemingly all aspects of the business, and other disruptions. It’s no wonder CISOs and their teams are constantly...
Security Briefing: Treasury Breach, Cyberhaven Chrome Extension Compromise, CDN Shutdown 08.01.2025 52:44
January 8th, 2025 Security Briefing with IANS Faculty Jessica Hebenstreit and Jake Williams This Episode Details: Treasury Gets BeyondTrusted - The Treasury Department reported that it was the victim of a compromise on its unclassified network. It reported that the source of the hack was a third party facilitating remote access into the environment, which is known to be BeyondTrust. Browser...
2024 CISO Compensation: Strategies for Thriving in a Slow-Moving Market 18.12.2024 54:38
The CISO job market has been slow in 2024 – largely due to conservative job movement caused by challenging macroeconomic conditions, but signs of improvement are emerging for 2025. Want to learn more? Download the summary version of IANS' 2024 CISO Compensation Benchmark Report here . In this webinar, IANS Faculty Steve Martano and Senior Research Director Nick Kakolowski will share insights fro...
Security Briefing: Cloudflare Loses Logs, LogoFAIL Exploited, Firefox Zero Days 04.12.2024 29:50
December 4th, 2024 Security Briefing with IANS Faculty Wolfgang Goerlich and Jake Williams This Episode Details: Cloudflare’s Missing Logs - On November 14, Cloudflare made changes to an internal service that resulted in the loss of 55% of all logs pushed to customers over a 3.5 hour period. Users of the “Cloudflare Logs” service were impacted by what can only be described as a cascading fai...
Security Briefing: More MOVEit Fallout, North Korean MacOS Malware, TSA Cyber Rules 13.11.2024 28:39
November 13th, 2024 Security Briefing with IANS Faculty Wolfgang Goerlich and Jessica Hebenstreit This Episode Details: Continued Fallout from the MOVEit Breach - From May-July 2023, Progress Software worked with CISA and the FBI to recover from an attack by the CL0P ransomware group. This week, more data leaked from this event was posted to a crime forum. North Korea Writing MacOS Malware - Jamf...
AI and your organization: Making the Case for your Use Case 28.10.2024 33:26
October 28th, 2024 AI Deep Dive with IANS Faculty Jake Williams and Jessica Hebenstreit Join IANS Faculty Jake Williams and Jessica Hebenstreit in the first episode of IANS AI Deep Dive Series for security professionals. This episode will cover: Foundational AI Concepts such as non-determinism and how to communicate these concepts to the board to build security awareness around GenAI and LLM’s. Wh...
Report Sneak Peek: IANS and Artico Search CISO Comp & Budget 17.09.2024 54:26
With budget planning season kicking off, we’re opening up the budget-related findings of the IANS and Artico CISO Compensation and Budget Survey ahead of our usual reporting cycle. The goal: Give you the benchmarking data you need to make a budget case. IANS Senior Research Director Nick Kakolowski and Faculty member Steve Martano will discuss: Key cybersecurity budget data as reported by CISOs. O...
Security Briefing: DPRK Hackers Target Devs, CISA RansomHub Advisory, Security Cam Vuln Spreads Mirai 04.09.2024 30:24
September 4th, 2024 Security Briefing with IANS Faculty Dave Shackleford and Jennifer Minella This Episode Details: North Korean Hackers Target Devs via NPM Packages - Recent reports show North Korea is intensifying its “Contagious Interview” campaign, with the latest round squarely targeting developers. CISA, FBI Advisory for RansomHub Ransomware - Recent warnings from the FBI, CISA and other age...
Security Briefing: Azure DDoS Attack, Cloudflare Malware Delivery, DNS Poisoning 07.08.2024 29:42
August 7th, 2024 Security Briefing with IANS Faculty Dave Shackleford and Shannon Lietz This Episode Details: Azure’s DDoS Outage - Microsoft experienced a major outage in its Azure service at the end of July, which it later attributed to an ongoing DDoS attack. Numerous Azure and M365 services were impacted, including Entra, Intune, Purview, Azure Policy and more. Malware Delivery via Clou...
Security Briefing: Twilio Authy Breach, Rockwell Automation PanelView Flaws, HealthEquity Data Exposed 10.07.2024 28:10
July 10th, 2024 with IANS Faculty Jessica Hebenstreit and Shannon Lietz This Episode Details: Phone Numbers Leaked in Twilio Breach - On July 1, 2024, Twilio posted a security alert on their site indicating the Authy service had a security incident following an announcement by the ShinyHunters hacking group in late June on BreachForums where they disclosed the leaked data for 33M Authy users...
Security Briefing: Snowflake Fallout, OT Device Attacks, SOHO Router Hack 05.06.2024 29:19
June 5th, 2024 with IANS Faculty Dave Shackleford and Wolfgang Goerlich This Episode Details: Snowflake Incident and the Data Breach Fallout - Snowflake, a cloud analytics and storage company, suffered an incident which led to a compromise of multiple Snowflake tenants from that point on. Microsoft Warns of Online OT Device Attacks - Microsoft’s threat intelligence team has found that attackers ha...
Security Briefing: Kaiser Data Breach, Criminals Exploit CrushFTP Vuln, Brokewell Malware Takes Over Android Devices 01.05.2024 28:59
May 1st, 2024 Security Briefing with IANS Faculty Wolfgang Goerlich and Jessica Hebenstreit Kaiser Notifies Millions of Data Breach - 13.4 insured people and patients will be receiving breach notices that their protected health information may have been compromised - considered the largest health-related data breach of 2024 to date. Criminals Exploit CrushFTP Vulnerability - Adversaries are exploi...
Security Briefing: Stolen MSFT Source Code, Possible Chinese Crane Espionage 13.03.2024 18:26
March 13th, 2024 Security Briefing with IANS Faculty Dave Shackleford and Jennifer Minella This Episode Details: Microsoft Source Code Stolen - Microsoft has revealed that the Russian 'Midnight Blizzard' hacking group gained access to source code and internal systems with harvested authentication tokens and credentials. Chinese Cranes: Possible Espionage? - In March of 2023, the U.S. Pen...
Security Briefing: Change Healthcare Hack, I-Soon Leaks, NIST CSF 2.0 28.02.2024 30:14
February 28th, 2024 Security Briefing with IANS Faculty Jessica Hebenstreit and Dave Shackleford This Episode Details: Change Healthcare Impacted by Cyber Attack - Explore the impacts of Change Healthcare's recent BlackCat breach. I-Soon Hackers for Hire Used by Chinese Government Agencies - Last week, leaks surfaced on Github that various Cinese government agencies have been using hackers f...
Security Briefing: Shim Secure Boot Bypass, Fortinet CVE, Ivanti Vulns 14.02.2024 27:04
February 14th, 2024 Security Briefing with IANS Faculty Jake Williams and Gal Shpantzer This Episode Details: Shim Secure Boot Bypass Vulnerability - New vulnerabilities in the Shim service are being used to securely boot on Linux. Impacted systems that use HTTP boot services risk full compromise of the device. New Fortinet Vulnerabilities - Following the announcement of CVE-2024-21762 from Fort...
Security Briefing: Volt Typhoon, Ivanti Zero Day, Cloudflare Breach, AnyDesk Hack 07.02.2024 25:14
February 7th, 2024 Security Briefing with IANS Faculty Jessica Hebenstreit and Jennifer Minella This Episode Details: China Targeting U.S. Infrastructure - The director of the FBU discolsed that China's "Volt Typhoon" group is ramping up hacking operations aimed at critical infrastructure in the United States in the event of a conflict over Taiwan. Ivanti: CISA Sets 48-hour Deadline...
Similar podcasts
Replaio is not a podcast publisher; show names, artwork and audio belong to their authors and are distributed through public RSS feeds.