Cybersecurity Burnout: Not a Character Flaw, a System Problem

Microsoft Exchange Zero-Day Under Attack: One Email Hijacks OWA

It's Monday morning. You open the third email of the day. Nothing visible happens, but in the background, an attacker just borrowed the proof you were logged in. Episode 28 of Plaintext with Rich is a hot take on CVE-2026-42897, the Microsoft Exchange Server zero-day under active exploitation right now. We break down what cross-site scripting actually does inside Outlook Web Access, why session hijacking is more dangerous than the underlying bug, and how a single crafted email becomes business email compromise. We look at the on-premises versus Exchange Online divide, why ProxyLogon and ProxyShell aren't ancient history yet, and what CISA's Known Exploited Vulnerabilities catalog listing and the May 29 federal deadline mean for everyone else. The episode closes with a Plaintext Starter Kit of four moves any on-prem Exchange team should make this week. If you run on-prem Exchange, support someone who does, or you've been putting off the migration conversation, this one is for you. Ten minutes. One topic. No panic. Is there a topic/term you want me to discuss next? Text me!! [https://www.buzzsprout.com/2566974/fan_mail/new] YouTube more your speed? → https://links.sith2.com/YouTube   Apple Podcasts your usual stop? → https://links.sith2.com/Apple   Neither of those? Spotify’s over here → https://links.sith2.com/Spotify   Prefer reading quietly at your own pace? → https://links.sith2.com/Blog   Join us in The Cyber Sanctuary (no robes required) → https://links.sith2.com/Discord   Follow the human behind the microphone → https://links.sith2.com/linkedin   Need another way to reach me? That’s here → https://linktr.ee/rich.greene

Work-Life Balance in Cybersecurity: The Structural Fix

You finish at 6:00pm. At 6:47 you reopen the laptop, 'just to check something.' By 9:00 the evening is gone. The boundary didn't fail tonight. It was never there. Episode 27 of Plaintext with Rich closes the Month of Mindfulness, a five-week series on self-care for people working in security and tech. This week we're talking about work-life balance, but not as willpower or time management. As protective infrastructure. We pull the arc together, mental, spiritual, physical, and burnout, and land on the idea that balance is what keeps the first three from collapsing into the fourth. We borrow briefly from Cal Newport's concept of deep work and Jocko Willink's framing of discipline as freedom, neither as sermon, both as shorthand. The episode closes with a Plaintext Starter Kit of structural defaults, not resolutions, designed to protect a sustainable career in a job that otherwise won't let you have one. If you've made it to the end of this series and you're asking 'okay, but how do I actually live this on a Tuesday,' this one is for you. Ten minutes or less. One topic. No panic. Cal Newports "Deep Work: Rules for Focused Success in a Distracted World [https://www.amazon.com/Deep-Work-Focused-Success-Distracted/dp/1455586692]" Jocko Willink [https://jocko.com/] Is there a topic/term you want me to discuss next? Text me!! [https://www.buzzsprout.com/2566974/fan_mail/new] YouTube more your speed? → https://links.sith2.com/YouTube   Apple Podcasts your usual stop? → https://links.sith2.com/Apple   Neither of those? Spotify’s over here → https://links.sith2.com/Spotify   Prefer reading quietly at your own pace? → https://links.sith2.com/Blog   Join us in The Cyber Sanctuary (no robes required) → https://links.sith2.com/Discord   Follow the human behind the microphone → https://links.sith2.com/linkedin   Need another way to reach me? That’s here → https://linktr.ee/rich.greene

Cybersecurity Burnout: Not a Character Flaw, a System Problem

You're reading a breach report. Third one this month. Last year a story like this would have lit something in you. Today you scroll past it. That's not you. That's the bill. Episode 26 of Plaintext with Rich is the fourth installment of the Month of Mindfulness, a five-week series on self-care for people working in security and tech. This week we're talking about burnout, what it actually is and why the cybersecurity industry produces it reliably. We use the World Health Organization's classification of burnout as an occupational phenomenon and Christina Maslach's three dimensions (exhaustion, cynicism, reduced efficacy) to name what most of us feel but can't label. We get into the systemic causes specific to our field: always-on culture, headcount lag, and job designs that treat recovery as a perk instead of infrastructure. The episode lands with a Plaintext Starter Kit split between what the individual can do and what only leadership can fix. If you've ever caught yourself scrolling past a breach report that used to light a fire and realized you don't feel anything, this one is for you. Whether you're the one carrying the load or the one supposed to be protecting the people who are. Ten minutes or less. One topic. No panic. Christina Maslach -> https://www.linkedin.com/in/christinamaslach/ World Health Organization -> https://www.linkedin.com/company/world-health-organization/ Is there a topic/term you want me to discuss next? Text me!! [https://www.buzzsprout.com/2566974/fan_mail/new] YouTube more your speed? → https://links.sith2.com/YouTube   Apple Podcasts your usual stop? → https://links.sith2.com/Apple   Neither of those? Spotify’s over here → https://links.sith2.com/Spotify   Prefer reading quietly at your own pace? → https://links.sith2.com/Blog   Join us in The Cyber Sanctuary (no robes required) → https://links.sith2.com/Discord   Follow the human behind the microphone → https://links.sith2.com/linkedin   Need another way to reach me? That’s here → https://linktr.ee/rich.greene

Physical Health in Cybersecurity: The Body Keeps the Receipts

It's Friday morning. You stand up to refill your water and your back doesn’t move the way it used to. The systems are up and running smoothly. Your body hasn’t gotten the same memo. Episode 25 of Plaintext with Rich is the third installment of the Month of Mindfulness, a five-week series on self-care for people working in security and tech. This week we’re talking about physical health, the silent receipt your body keeps for the cumulative load of this job. We get into the specific body costs of security work: long incident response shifts, screen time, the cortisol of on-call, sleep disruption from pages, and the war-room conditions that turn your spine into a slow-motion lawsuit. The episode lands with a Plaintext Starter Kit of habits you can start this week, no programs to join and no protocols to memorize. If you’ve ever come off a long incident and felt every hour you spent at the keyboard in your shoulders, this one is for you. Whether you’re an analyst, an engineer, or the one person doing security at a 40-person company, the body keeps the bill. For community around this conversation, find Rich’s LinkedIn group, Desk to Deadlifts. The name is catchy, but it’s not a powerlifting group. It’s a space for professionals trying to fit physical health into busy lives. Ten minutes or less. One topic. No panic. Desk to Deadlift (LinkedIn Group) https://www.linkedin.com/groups/13248033/ Is there a topic/term you want me to discuss next? Text me!! [https://www.buzzsprout.com/2566974/fan_mail/new] YouTube more your speed? → https://links.sith2.com/YouTube   Apple Podcasts your usual stop? → https://links.sith2.com/Apple   Neither of those? Spotify’s over here → https://links.sith2.com/Spotify   Prefer reading quietly at your own pace? → https://links.sith2.com/Blog   Join us in The Cyber Sanctuary (no robes required) → https://links.sith2.com/Discord   Follow the human behind the microphone → https://links.sith2.com/linkedin   Need another way to reach me? That’s here → https://linktr.ee/rich.greene

Spiritual Health in Cybersecurity: The Why Behind the Work

Spiritual health on a cybersecurity podcast sounds like a stretch. Stay with us. Because somewhere between the vendor pitches, the patch cycles, and the 3 a.m. page, a lot of us stopped working for the why and started working for the number. Episode 24 of Plaintext with Rich is the second installment of the Month of Mindfulness, a five-week series on self-care for people working in security and tech. This week we define spiritual health as the values that make up who you are, the things you won’t trade even for a raise. We get into mission drift, the quiet trap of lifestyle creep in a high-paying field, and the 3 a.m. test for whether your values are still alive when the paycheck isn’t watching. We acknowledge that for some listeners these values come from a faith tradition and for others they don’t, and both are valid. The episode lands with a Plaintext Starter Kit, including the simple act of writing your values down, asking yourself what ‘enough’ actually looks like, and finding people (including communities like Shield that are built for grounded, sustainable careers in tech and cyber) who remind you who you are before the title does. If you’ve ever wondered why the bigger paycheck stopped making the work feel better, this one is for you. Whether you’re a SOC analyst, an engineer, a CISO, or the one person doing security at a 40-person company, your values have to outrun your comp. Ten minutes or less. One topic. No panic. Shield Community, a wellness program built specifically for technology and cybersecurity professionals. https://www.shield.community/ [https://www.shield.community/] Is there a topic/term you want me to discuss next? Text me!! [https://www.buzzsprout.com/2566974/fan_mail/new] YouTube more your speed? → https://links.sith2.com/YouTube   Apple Podcasts your usual stop? → https://links.sith2.com/Apple   Neither of those? Spotify’s over here → https://links.sith2.com/Spotify   Prefer reading quietly at your own pace? → https://links.sith2.com/Blog   Join us in The Cyber Sanctuary (no robes required) → https://links.sith2.com/Discord   Follow the human behind the microphone → https://links.sith2.com/linkedin   Need another way to reach me? That’s here → https://linktr.ee/rich.greene