Security Intelligence Podcast

IBM

Security Intelligence is a weekly news podcast for cybersecurity pros who need to stay ahead of fast-moving threats. Each week, we cover the latest threats, trend, and stories shaping the digital landscape, alongside expert insights that help make sense of it all. Whether you’re a builder, defender, business leader or simply curious about how to stay secure in a connected world, you’ll find timely updates and timeless principles in an accessible, engaging format. New episodes weekly on Wednesdays at 6am EST.

  1. Fable 5, GPT-5.6 and the high stakes of AI safeguards. Plus: Agentic ransomware, and ClickFix reigns supreme

    há 7 h

    Fable 5, GPT-5.6 and the high stakes of AI safeguards. Plus: Agentic ransomware, and ClickFix reigns supreme

    Read Itzhak Chimino’s research on UnregStealer → https://www.ibm.com/think/news/unregstealer-human-operated-browser-credential-theft-targeting-brazilian-banking When it comes to Fable 5, Mythos 5, and GPT-5.6 Sol, the real story is in the safeguards. Last week, Anthropic and OpenAI both rolled out some powerful new models. And for perhaps the first time, the protections surrounding these models got almost as much airtime as the models’ themselves. On this week’s episode of IBM Security Intelligence, Sophie Cunningham, Diego Matos Martins and Jeff Crume join host Matt Kosinski to talk about an emerging paradigm in frontier models: Safety first. What’s gained and what’s lost when security controls take center stage? And just how effective are the ones we’ve developed? Then, we dive into Sysdig’s report on JADEPUFFER, the first agentic ransomware. But not every security expert agrees with that conclusion. So where do we land? Plus: ClickFix is the new king of social engineering schemes—and it’s coming for your developers. Finally, Senior Threat Researcher Itzhak Chimino shares his technical research into UnregStealer, a credential-theft campaign targeting Latin American banks. All that and more on Security Intelligence. Segments: 00:00 -- Introduction 01:38 -- Fable 5 and GPT-5.6 13:26 -- Agentic ransomware. Maybe. 24:08 -- ClickFix: top social engineering attack 32:51-- Analyzing UnregStealer The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity. Follow the Security Intelligence podcast on your preferred platform → https://www.ibm.com/think/podcasts/security-intelligence

    42 min
  2. The new post-quantum cryptography executive order. Plus: What is Q-Day, really?

    1 de jul.

    The new post-quantum cryptography executive order. Plus: What is Q-Day, really?

    Learn more about Q-Day → https://www.ibm.com/think/news/q-day-has-already-begun-are-you-ready On June 22, US President Donald Trump signed a pair of executive orders for the quantum computing, and post-quantum future. On this episode, Mason Molesky breaks down the post-quantum EOs: “Securing the Nation Against Advanced Cryptographic Attack,” which establishes a government‑wide mandate to accelerate the United States’ transition to post‑quantum cryptography. Mason covers what it is, why you should care and what you should do. Then: Suja Visewesan and Mark Hughes join host Matt Kosinski to discuss Q-Day, the anticipated future day when quantum computing will become “cryptographically relevant” — or put another way: powerful, reliable and accessible enough to make our current approach to public key cryptography obsolete. But what if Q-Day isn’t a day at all? What if it’s a process—a long, slow evolution rather than a sudden leap? And what if it’s already happening right now, under our noses? We chat about the risks—and benefits!—of quantum computing to cybersecurity, the reality of and post-quantum cryptography and how organizations can become “crypto-agile” to keep up with the rapid pace of change. All that and more on Security Intelligence. 00:00 – Introduction 01:23 – Post-quantum cryptography executive order 13:30 – What is Q-Day? Read Suja and Mark’s article → https://www.ibm.com/think/perspectives/quantum-computers-are-speeding-towards-cryptographic-relevancy The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity.

    44 min
  3. Patch management is dead. Here’s what’s taking it place

    26 de jun.

    Patch management is dead. Here’s what’s taking it place

    Patch management, as most organizations practice it, is fundamentally broken. It treats what should be a strategic, risk-informed decision as a checkbox item. And checkboxes don't get done. The fix isn't better patching. It's exposure management: a risk-based approach that connects your vulnerabilities to your business context, your attack surface and the real-world threat landscape. In this episode of Security Intelligence, IBM X-Force North America Leader of Incident Response Ryan Anschutz walks us through why patch management fails, what exposure management does differently and what it all means for defenders right now. Ryan shares war stories from the field, including a firmware vulnerability that turned into a multi-continent ransomware outbreak and a MOVEit response that kept one organization out of the headlines while its competitors made them for all the wrong reasons. The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity. Follow the Security Intelligence podcast on your preferred platform: https://www.ibm.com/think/podcasts/security-intelligence Subscribe to the IBM Think newsletter: https://www.ibm.com/forms/news-mkt-52954 Follow the Security Intelligence podcast on your preferred platform: https://www.ibm.com/think/podcasts/security-intelligence Learn more about cybersecurity: https://www.ibm.com/think/security "How IBM Can help" component at the bottom driving to www.ibm.com/products/guardium-ai-security and www.ibm.com/solutions/data-security

    22 min

Sobre

Security Intelligence is a weekly news podcast for cybersecurity pros who need to stay ahead of fast-moving threats. Each week, we cover the latest threats, trend, and stories shaping the digital landscape, alongside expert insights that help make sense of it all. Whether you’re a builder, defender, business leader or simply curious about how to stay secure in a connected world, you’ll find timely updates and timeless principles in an accessible, engaging format. New episodes weekly on Wednesdays at 6am EST.

Você também pode gostar de