And Security For All

AI and the Future of Offensive Security

In this episode of #AndSecurityForAll, Kim Hakim sits down with Boris Goncharov, cybersecurity strategist and offensive security expert, for a deep dive into how #AI is rapidly reshaping the future of offensive security, penetration testing, and cyber defense. From AI-powered attacks and agentic pen testing to the growing risks facing businesses of every size, this conversation breaks down the real-world implications of artificial intelligence in cybersecurity. Boris shares insights from over 20 years in the industry, discussing how organizations can better prepare for emerging threats, why traditional security approaches are struggling to keep up, and how AI is changing both the speed and scale of cyberattacks. The episode also explores the future of human-led security, third-party risk, offensive security strategies, and what companies should look for in cybersecurity partners moving forward. Topics covered in this episode include: • How AI is transforming offensive security and penetration testing • Why organizations are struggling to keep up with evolving cyber threats • The rise of agentic AI and automated vulnerability discovery • Real-world risks facing small and mid-sized businesses • Human behavior, identity security, and third-party vendor risk • The future of AI-driven cyberattacks and AI-powered defense • What companies should look for in a cybersecurity partner • Why cybersecurity fundamentals still matter more than ever If you’re interested in AI, cybersecurity leadership, offensive security, penetration testing, cyber risk, or the future of cyber defense, this is a must-listen episode packed with practical insights and expert perspective. 🔐⚛️

The Canvas Attack Proves Attackers Aren’t Slowing Down in 2026

Cyberattacks aren’t slowing down in 2026 — and the recent Canvas attack is proof. On this episode of #AndSecurityForAll, host Kim Hakim sits down with Jonathan Kimmitt, CISO at Alias CyberSecurity and former University of Tulsa CISO, to discuss the recent Canvas breach that impacted thousands of educational institutions and millions of students worldwide. Together, they explore: ▪️ How the attack unfolded ▪️ Why universities are increasingly targeted ▪️ The growing risks surrounding SaaS and third-party vendors ▪️ The rise in healthcare and enterprise breaches ▪️ Business continuity and incident response challenges ▪️ Cybersecurity burnout among practitioners The episode also touches on the Stryker Cyberattack, CareCloud Patient Records Breach, hacktivism, vendor trust, and the evolving tactics threat actors are using to disrupt organizations at scale. If you’re a security leader, IT professional, student, or simply interested in today’s cyber threat landscape, this is an episode you won’t want to miss.

AI Ethics and Governance: Building Trustworthy Systems

In this episode of #AndSecurityForAll, Kim Hakim sits down with Tony North, Director of Technology Support for the City of Seattle, to discuss the growing importance of AI ethics and governance in today’s cybersecurity landscape. From AI bias and data privacy to trust, transparency, and real-world failures like Delta Airlines and Amazon’s AI recruiting challenges, this conversation breaks down what organizations need to know as AI rapidly transforms the industry. Tony also shares insights into AI governance roles, support teams on the front lines, and why cybersecurity professionals must stay ahead of emerging technologies like quantum computing. 🎙️ Topics include: * AI ethics & governance * Building trustworthy AI systems * Data privacy and bias * AI support and security operations * Real-world AI failures and lessons learned * The rise of AI officers and governance teams * Preparing for the future of AI & cybersecurity As AI adoption continues to accelerate across every industry, understanding how to balance innovation with accountability has never been more important. This episode offers practical insights for cybersecurity leaders, IT teams, and anyone navigating the rapidly evolving world of AI-driven technology

Quantum Is Coming: What It Means for Cybersecurity Today

Quantum computing is no longer science fiction—it’s on the horizon, and it could redefine cybersecurity as we know it. In this episode of And Security For All, host Kim Hakim sits down with Jonathan Kimmitt to break down quantum computing in simple, practical terms. From understanding what quantum actually is to why security professionals are paying attention, this conversation cuts through the noise and focuses on what matters most today. You’ll learn: * What quantum computing is (without the complex math) * Why it’s faster—and why that matters * The real risks to encryption and data security * What organizations should be doing now to prepare * Whether quantum is hype, risk, or opportunity While large-scale quantum threats may still be years away, the implications for data protection, encryption, and long-term risk are very real. 🎧 If you work in cybersecurity, IT leadership, or simply want to understand what’s coming next—this episode is your starting point.

Apps APIs and DDoS Threat Trends

Cyber attacks are faster, smarter, and more scalable than ever. In this episode of #AndSecurityForAll, guest host Steve Winterfeld, Advisory CISO, sits down with Kim Gomez, Director of Security Research, to break down key insights from Akamai’s latest State of the Internet Security Report. Together, they explore how today’s threat landscape is rapidly evolving—from surging API attacks and advanced DDoS tactics to the growing impact of AI on both attackers and defenders. Key topics include: * Why APIs are now one of the fastest-growing attack surfaces (and what that means for your organization) * The continued rise of DDoS attacks and how “turbo” botnets are changing the game * How AI and automation are accelerating attack speed, scale, and sophistication * The concept of “vibe coding” and how it’s lowering the barrier to entry for attackers * Why visibility gaps across applications, APIs, and AI are creating new security risks * The shift from large outages to performance degradation and business impact * How attack motivations are evolving—from hacktivism to financial extortion and geopolitics * What CISOs should be communicating to the board right now * The importance of multi-layered defense strategies and real-world mitigation planning If you want to understand where cybersecurity is heading—and how to prepare—this episode delivers practical insights you can apply immediately.