How AI adoption in enterprise infrastructure has expanded the attack surface with Katherine McNamara from Cisco / Defender Fridays [#318]

How AI adoption in enterprise infrastructure has expanded the attack surface with Katherine McNamara from Cisco / Defender Fridays [#318]

Today on Defender Fridays, Katherine McNamara, Cybersecurity Technical Solutions Architect at Cisco, joins us to discuss how AI and ML adoption in enterprise infrastructure has expanded the attack surface for AI-driven systems. She'll walk through the security challenges unique to generative AI and ML-based architectures, and cover the four critical components: Model, Data, Application, and System, that organizations need to secure to maintain integrity. Katherine works for Cisco as a Cybersecurity Systems Engineer by day and by night, she's labbing and trying new things with the resources she has available. Katherine loves technology and getting her hands into the CLI or trying something new. She holds a Bachelors of Science and Masters of Information Security and Assurance from Western Governors University as well as several industry certifications. Register for Live Sessions Join us every Friday at 10:30am PT for live, interactive discussions with industry experts. Whether you're a seasoned professional or just curious about the field, these sessions offer an engaging dialogue between our guests, hosts, and you – our audience. Register here: https://limacharlie.io/defender-fridays [https://limacharlie.io/defender-fridays] Subscribe to our YouTube channel and hit the notification bell to never miss a live session or catch up on past episodes! Sponsored by LimaCharlie This episode is brought to you by LimaCharlie, a cloud-native SecOps platform where AI agents operate security infrastructure directly. Founded in 2018, LimaCharlie provides complete API coverage across detection, response, automation, and telemetry, with multi-tenant architecture designed for MSSPs and MDR providers managing thousands of unique client environments. Why LimaCharlie? * Transparency: Complete visibility into every action and decision. No black boxes, no vendor lock-in. * Scalability: Security operations that scale like infrastructure, not like procurement cycles. Move at cloud speed. * Unopinionated Design: Integrate the tools you need, not just those contracts allow. Build security on your terms. * Agentic SecOps Workspace (ASW): AI agents that operate alongside your team with observable, auditable actions through the same APIs human analysts use. * Security Primitives: Composable building blocks that endure as tools come and go. Build once, evolve continuously. Try the Agentic SecOps Workspace free: https://limacharlie.io [https://limacharlie.io/] Learn more: https://docs.limacharlie.io/ [https://docs.limacharlie.io/] Follow LimaCharlie Sign up for free: https://limacharlie.io/ [https://limacharlie.io/] LinkedIn: / limacharlieio X: https://x.com/limacharlieio [https://x.com/limacharlieio] Community Discourse: https://community.limacharlie.com/ [https://community.limacharlie.com/] Host: Maxime Lamothe-Brassard - CEO / Co-founder at LimaCharlie

Cybersecurity is a core leadership issue & opportunity with David Chernitzky from Armour Cybersecurity [#317]

Today David Chernitzky, Co-Founder and CEO of Armour Cybersecurity, breaks down the challenges small and mid-sized businesses face in the new blink-and-you-miss-it cybersecurity landscape. Don't be left behind and open yourself to AI-driven attacks from threat actors. David Chernitzky brings over 25 years of deep cybersecurity and military cyber intelligence experience, with a career rooted in strategic risk management and protecting critical systems against advanced threats. As the driving force behind Armour Cybersecurity, he has guided the company’s growth into a trusted global security partner for enterprises and small-to-midsized organizations. David combines strategic vision with hands-on expertise to deliver practical, high-impact cyber defence solutions. Learn more here: https://armourcyber.io/ [https://armourcyber.io/] Support our show by sharing your favorite episodes with a friend, subscribe, give us a rating or leave a comment on your podcast platform. This podcast is brought to you by LimaCharlie, maker of the SecOps Cloud Platform, infrastructure for SecOps where everything is built API first. Scale with confidence as your business grows. Start today for free at limacharlie.io [https://limacharlie.io/]

Millions in crypto stolen, Vercel breach, Mastodon DDoS attack, North Korean IT workers at 100s of U.S. companies & ransomware negotiator pleads guilty / Intel Chat [#316]

In this episode of The Cybersecurity Defenders Podcast, we discuss some intel being shared in the LimaCharlie community [https://community.limacharlie.com/]. * North Korea-linked hackers are believed to be responsible for a $290 million cryptocurrency theft targeting the Kelp DAO decentralized finance protocol [https://www.securityweek.com/290-million-kelp-dao-crypto-heist-blamed-on-north-korea/]. * Vercel, the company behind the popular Next.js web framework and a frontend cloud platform for deploying and hosting web applications, has confirmed that it suffered a security breach involving unauthorized access to internal systems [https://www.securityweek.com/next-js-creator-vercel-hacked]. * The decentralized social media platform Mastodon experienced a major distributed denial-of-service attack that caused a significant outage on its flagship server, Mastodon.social [https://www.securityweek.com/after-bluesky-mastodon-targeted-in-ddos-attack/]. * Two U.S. nationals have been sentenced for helping North Korean remote IT workers fraudulently obtain jobs at more than 100 U.S. companies using stolen American identities [https://www.justice.gov/opa/pr/two-us-nationals-sentenced-facilitating-fraudulent-remote-information-technology-worker]. * A former ransomware negotiator has pleaded guilty to conspiring with the BlackCat/ALPHV ransomware group to conduct attacks against U.S. organizations in 2023 [https://www.darkreading.com/insider-threats/ransomware-negotiator-pleads-guilty-blackcat-scheme]. Support our show by sharing your favorite episodes with a friend, subscribe, give us a rating or leave a comment on your podcast platform. This podcast is brought to you by LimaCharlie, maker of the SecOps Cloud Platform, infrastructure for SecOps where everything is built API first. Scale with confidence as your business grows. Start today for free at limacharlie.io [https://limacharlie.io/].

Real examples of AI-powered code scanning with Jeff McJunkin from Rogue Valley Information Security / Defender Fridays [#315]

Jeff McJunkin, Founder of Rogue Valley Information Security, joins Defender Fridays to talk AI-powered code scanning for vulnerabilities. Jeff walks through real examples including using AI to find privilege escalation bugs in the Linux kernel. Jeff McJunkin is the founder of Rogue Valley Information Security, a consulting firm specializing in penetration testing and red team engagements. Jeff found the offensive side of cyber security very alluring during one the first penetration tests of his career. Feeling the challenge of host defenses like AV and centralized logging, and, at the time, knowing nothing about AV evasion or avoiding events that are likely to cause alerts, it was all very exciting. The challenge of successfully accomplishing the goal of that pen test, using essentially only native tools, was addictive for Jeff. He was hooked. Since those first penetration tests, Jeff has gone on to become an expert in the field, doing assessments for Fortune 100 companies, architecting two major versions of Core NetWars Experience, and contributing a vast amount of material to SANS Penetration Testing. Register for Live Sessions Join us every Friday at 10:30am PT for live, interactive discussions with industry experts. Whether you're a seasoned professional or just curious about the field, these sessions offer an engaging dialogue between our guests, hosts, and you – our audience. Register here: https://limacharlie.io/defender-fridays [https://limacharlie.io/defender-fridays] Subscribe to our YouTube channel and hit the notification bell to never miss a live session or catch up on past episodes! Sponsored by LimaCharlie This episode is brought to you by LimaCharlie, a cloud-native SecOps platform where AI agents operate security infrastructure directly. Founded in 2018, LimaCharlie provides complete API coverage across detection, response, automation, and telemetry, with multi-tenant architecture designed for MSSPs and MDR providers managing thousands of unique client environments. Why LimaCharlie? * Transparency: Complete visibility into every action and decision. No black boxes, no vendor lock-in. * Scalability: Security operations that scale like infrastructure, not like procurement cycles. Move at cloud speed. * Unopinionated Design: Integrate the tools you need, not just those contracts allow. Build security on your terms. * Agentic SecOps Workspace (ASW): AI agents that operate alongside your team with observable, auditable actions through the same APIs human analysts use. * Security Primitives: Composable building blocks that endure as tools come and go. Build once, evolve continuously. Try the Agentic SecOps Workspace free: https://limacharlie.io [https://limacharlie.io/] Learn more: https://docs.limacharlie.io/ [https://docs.limacharlie.io/] Follow LimaCharlie Sign up for free: https://limacharlie.io/ [https://limacharlie.io/] LinkedIn: / limacharlieio X: https://x.com/limacharlieio [https://x.com/limacharlieio] Community Discourse: https://community.limacharlie.com/ [https://community.limacharlie.com/] Host: Maxime Lamothe-Brassard - CEO / Co-founder at LimaCharlie

How can we improve global security? With J. Michael Daniel from Cyber Threat Alliance [#314]

J. Michael Daniel, President and CEO of Cyber Threat Alliance (CTA), gives us a peek behind the U.S. Government cybersecurity curtain and how he has helped improve the nation's security through the CTA. Michael leads the CTA team and oversees the organization's operations. Prior to joining the CTA in February 2017, Michael served from June 2012 to January 2017 as Special Assistant to President Obama and Cybersecurity Coordinator on the National Security Council Staff. In this role, Michael led the development of national cybersecurity strategy and policy, and ensured that the US government effectively partnered with the private sector, non-governmental organizations, and other nations. Learn more at: https://www.cyberthreatalliance.org/ [https://www.cyberthreatalliance.org/] Support our show by sharing your favorite episodes with a friend, subscribe, give us a rating or leave a comment on your podcast platform. This podcast is brought to you by LimaCharlie, maker of the SecOps Cloud Platform, infrastructure for SecOps where everything is built API first. Scale with confidence as your business grows. Start today for free at limacharlie.io [https://limacharlie.io/]