IBM
Security Intelligence Podcast
Security Intelligence is a weekly news podcast for cybersecurity pros who need to stay ahead of fast-moving threats. Each week, we cover the latest threats, trend, and stories shaping the digital landscape, alongside expert insights that help make sense of it all. Whether you’re a builder, defender, business leader or simply curious about how to stay secure in a connected world, you’ll find timely updates and timeless principles in an accessible, engaging format. New episodes weekly on...
Where to listen?
Podcasts in the app Replaio Radio Coming soonPodcasts are coming to the app soon. Install now and be the first to see a whole new take on podcasts
Episodes
Exploits of public-facing apps are surging. Why? 25.02.2026 47:16
Explore the Threat Intelligence Index 2026: https://www.ibm.com/reports/threat-intelligence#sipod For years, stolen credentials were king—the hacker’s attack vector of choice. Until now. The 2026 IBM X-Force Threat Intelligence Index reveals a surge in the exploitation of public-facing applications, overtaking identity-based attacks as the top initial access vector. Why are threat actors changing...
Romance scams: How they work, how they win and what we do about 18.02.2026 37:28
Explore the podcast → https://www.ibm.com/think/podcasts/security-intelligence Valentine’s day might be over, but love is in the air. The love a scammer has for their victim’s wallet, that is. In this special episode of Security Intelligence, host Matt Kosinski sits down with Claire Nunez, Suja Viswesan, and Dave Bales to break down how modern romance scams actually work: from the “wrong number” t...
OpenClaw and Claude Opus 4.6: Where is AI agent security headed? 11.02.2026 47:49
Are enterprises moving too fast with AI—and breaking security in the process? In this episode of Security Intelligence, host Matt Kosinski is joined by Sridhar Muppidi, Nick Bradley and Jeff Crume to unpack a pivotal moment in cybersecurity. The panel dives into the rapid rise of AI agents and the growing risks of shadow AI in the enterprise, comparing open-source agent platforms like OpenClaw wit...
What cybersecurity pros need to know about OpenClaw and Moltbook 04.02.2026 45:23
OpenClaw and Moltbook are extremely cool. They're also extremely dangerous. And they tell us just how far AI agent security has to go. In this episode of Security Intelligence, Dave McGinnis, Seth Glasgow and Evelyn Anderson unpack how locally run AI agents are becoming a brand-new attack surface, and why defenders may be underestimating the risks. From misconfigured agent databases leaking API ke...
John Henry vs. the chatbot: Can humans outsmart AI scam artists? 30.01.2026 18:45
Do you think you could get scammed by a chatbot? Neither did IBM Chief People Hacker Stephanie Carruthers—until she went toe to toe with one. In this episode of Security Intelligence, we take you inside the John Henry Competition at DEF CON 2024, where Carruthers competed with an AI-powered vishing bot to see who was the better con artist. The results just might surprise you. Along the way, we exp...
The newest AI malware vs. 40 years of hacker culture 28.01.2026 39:36
Explore the podcast → https://www.ibm.com/think/podcasts/security-intelligence AI-generated malware has officially arrived. But does it matter all that much? This week on Security Intelligence, Suja Viswesan, Dave Bales and Dustin Heywood join us to discuss VoidLink, which might just be the first thoroughly documented case of a malware framework generated with significant AI help. The question is:...
Most cybersecurity training doesn’t work. Can we change that? 21.01.2026 32:16
AI has changed the speed of cyberattacks. But it hasn’t changed the most important variable: people. In this episode of Security Intelligence, panelists Jake Paulson, Stephanie Carruthers and Matt Cerny dig into how AI-driven threats—phishing, deepfakes and disinformation—are reshaping the cyberthreat landscape. Organizations, too, are adopting AI tools to help detect these attacks. But even in th...
Ransomware whack-a-mole, AI agents as insider threats and how to hack a humanoid robot 14.01.2026 41:18
Explore the podcast → https://www.ibm.com/think/podcasts/security-intelligence Between LockBit, RansomHub and BlackSuit, law enforcement racked up some big wins against ransomware gangs last year. So why aren’t the attacks letting up? In this episode of Security Intelligence, panelists JR Rao, Jeff Crume and Michelle Alavarez unpack what the state of ransomware in 2025 really looked like, and why...
Why it costs so much to get hacked in America 29.12.2025 22:59
Why does it cost so much more to get hacked in the United States than anywhere else in the world? In this special bonus episode of Security Intelligence, we sit down with Michelle Alvarez, Manager of Strategic Threat Analysis at IBM X-Force, for a deep dive into IBM’s 2025 Cost of a Data Breach report—and one of its most surprising findings: global breach costs are falling, but US breach costs jus...
Cybersecurity’s Year in Review: ClickFix Attacks, Vibecoding Vulnerabilities & Shadow Agents 23.12.2025 57:18
Explore the podcast → https://www.ibm.com/think/podcasts/security-intelligence In this special year-end episode of Security Intelligence, we reflect on 2025, a year of new attack methods (ClickFix), new vulnerabilities (vibecoding) and new worries on the horizon (shadow agents). From hijacked AI agents to massive supply chain breaches, 2025 forced security leaders to confront a sobering reality: t...
AI browser bans and the top software flaws of 2025 17.12.2025 51:42
Explore the podcast → https://www.ibm.com/think/podcasts/security-intelligence AI browsers are neat—but are they more trouble than they’re worth? In this episode of Security Intelligence, Austin Zeizel, Evelyn Anderson and Ryan Anschutz discuss Gartner’s recent advisory warning organizations to ban AI browsers from the workplace for the time being. Is there anything we can do to make them safe eno...
React2Shell makes waves, WormGPT falls flat and the latest threat to your Gmail account 10.12.2025 50:12
Explore the podcast → https://www.ibm.com/think/podcasts/security-intelligence Just how big a deal is React2Shell? Depending on who you ask, it’s either a Log4Shell-level event or just another average, everyday application security vulnerability. Patch and move on. This week, on Security Intelligence, panelists Sridhar Muppidi, Claire Nuñez and Ian Molloy weigh in on the contentious debate React2S...
Your house might be a botnet, your devs are leaking secrets and poems are breaking your AI guardrails 03.12.2025 42:59
One of the most common tips for avoiding online scams is to only shop at reputable retailers. But what happens when those very retailers are turned into social engineering vectors? In this week's episode of Security Intelligence, host Matt Kosinski and panelists Bryan Clark, Michelle Alvarez and Dave Bales talk about the streaming devices that promise to let you watch all your favorite shows for f...
Trawling the honeypot: What it’s like to discover a new malware strain 28.11.2025 14:12
Being a malware reverse engineer isn’t always glamorous work. You spend a lot of time digging through junk emails. But when you find something in there—well, that’s a whole different story. On this episode of Security Intelligence, X-Force Malware Reverse Engineer Raymond Joseph Alfonso tells us about the time he discovered a curious new malware loader in the honeypot. And that leads to a bigger c...
The dark web job market thrives, AI fraud rings rise and it’s holiday scam season 26.11.2025 39:59
Do you think you’re too smart to fall for a Black Friday scam? Generative AI might knock you down a few pegs. On this episode of Security Intelligence, host Matt Kosinski and panelists Suja Viswesan, Dave McGinnis and Nick Bradley discuss how threat actors are using AI to turbocharge holiday scam season. Plus: IBM X-Force makes malware research tools public The dark web job market is thriving AI f...
Anthropic stops AI spies, the new OWASP Top 10 and the rise of small-time ransomware 19.11.2025 40:13
Explore the podcast → https://www.ibm.com/think/podcasts/security-intelligence Anthropic says it disrupted a nearly fully autonomous espionage campaign carried out by AI agents. But some cybersecurity pros are skeptical of the framing. On the latest episode of Security Intelligence, host Matt Kosinski is joined by Ryan Anschutz, Evelyn Anderson, Seth Glasgow and Mixture of Experts podcast fixture...
AI slop in cybersecurity, OT security fails and lessons from the Louvre heist 12.11.2025 41:37
Explore the podcast → https://www.ibm.com/think/podcasts/security-intelligence Have we lost the plot when it comes to AI malware? This week, host Matt Kosinski and panelists Claire Nunez, Austin Zeizel and Dave Bales discuss the growing trend of cybersecurity pros pushing back on AI malware “research.” Is it all puffery? Genuine threat? Some secret third thing? Plus: How hackers are stealing real-...
Android malware that acts like a person and AI agents that act like malware 05.11.2025 41:31
What do AI agents, the stock market and behavior-based threat detection tools have in common? You’ll need to listen to this week’s episode of Security Intelligence to find out. Join host Matt Kosinski and panelists Sridhar Muppidi and Cris Thomas for a jam-packed conversation, including new ways to build malicious AI agents, a malware strain that types like a person, a social engineering scheme th...
How to break into an office: A social engineering expert talks physical security 31.10.2025 12:52
Could you break into an office armed with nothing more than a coffee-stained resume and some charisma? Meet someone who can. Today’s bonus episode of Security Intelligence features an in-depth interview with Stephanie Carruthers, Global Head of Cyber Range and Chief People Hacker at IBM X-Force. Stephanie shares the harrowing tale of one of her most daring physical security assessments. Along the...
Is ChatGPT Atlas safe? Plus: invisible worms, ghost networks and the AWS outage 29.10.2025 44:07
Is a safe AI browser even possible? On this week’s super spooky Halloween episode of Security Intelligence, host Matt Kosinski and panelists Suja Viswesan, J.R. Rao and Dave McGinnis discuss the terrifying security risks of ChatGPT Atlas. Plus: The ghost network spreading malware on YouTube, an invisible worm that drops a “Zombi” payload and AWS’s brush with the grave. (Notice a theme?) And stick...
RIP Windows 10, automated code repair and battling the payroll pirates 22.10.2025 46:18
Is Windows 10 dead? This week, panelists Michelle Alvarez, Sridhar Muppidi and Jeff Crume join host Bryan Clark to discuss support for Windows 10 coming to an end. We also talk AI use in SOCs, automated code repair and the battle against payroll pirates coming after your next paycheck. 00:00 – Introduction 01:10 – RIP Windows 10 08:38 – The future of SOCs 19:41 – AI code repair 31:27 – Plundering...
How to scam an AI agent, DDoS attack trends and busting cybersecurity myths 01.10.2025 50:07
What does it take to trick an AI agent? Not a whole lot, it turns out. This week, panelists Nick Bradley, Claire Nuñez and Jeff Crume join host Matt Kosinski to discuss a couple of new methods for hijacking AI agents and breaking their guardrails. We also talk recent evolutions in DDoS attack trends, the legacy of zero trust and some glaring security flaws in an extremely popular AI training app....
The AI vulnerability apocalypse, a new strain of Petya and dumb cybersecurity rules 24.09.2025 42:45
Subscribe to the IBM Think newsletter: https://www.ibm.com/account/reg/us-en/signup?formid=news-urx-52120 An AI security CEO thinks we’re six months away from an “AI vulnerability cataclysm.” Is this a legitimate threat, or just fear-mongering? On this week’s episode, host Matt Kosinski and panelists Cris Thomas, Suja Viswesan and Troy Bettencourt debate whether we're headed straight for an AI sec...
AI ransomware, hiring fraud and the end of Scattered Lapsus$ Hunters 17.09.2025 46:17
Has the most notorious cybercrime gang of the moment really hung up its keyboards? In this episode of Security Intelligence, host Matt Kosinski along with panelists Dave Bales, Michelle Alvarez and Sridhar Muppidi discuss Scattered Lapsus$ Hunters’ retirement announcement. They also discuss the ethics of ransomware research, software supply chain security lessons from the npm hack, the state of OT...
Vibe hacking, HexStrike AI and the latest scheme from Scattered Lapsus$ Hunters 10.09.2025 38:20
Have we made cybercrime too easy? In the very first episode of Security Intelligence, panelists Jeff Crume, Suja Viswesan and Nick Bradley join host Matt Kosinski to discuss the invention of vibe hacking and HexStrike AI, an offensive security framework that threat actors are co-opting to command their own AI agent armies. We also discuss Scattered Lapsus$ Hunters’ unconventional new ransom demand...
Similar podcasts
Replaio is not a podcast publisher; show names, artwork and audio belong to their authors and are distributed through public RSS feeds.