And Security For All

Kim Hakim

Cyber security is not only important to everyone, it is critical to the future of every American. Each show details specific points in history and provides guidance and insights of both a technical and societal nature to help you understand and address cyber security issues more effectively. Our approach makes the often misunderstood and highly technical jargon of cyber security advisories, and popular media digestible for anyone that listens.brbr Anyone that leverages or uses internet and cyber related services, which in today’s world is basically everyone, stands to benefit from the show. You’ll gain insight into the reality of the space around cyber security and learn more details and truths on what is actually necessary to operate and be more secure at both the business and personal levels in an ever-changing technology space. We can help you truly understand a vast technology space and be better prepared in a dynamic technology ecosystem.

  1. LockBit Changed Everything and Locked Up Tells Why

    -1 J

    LockBit Changed Everything and Locked Up Tells Why

    What really happens during a ransomware attack? In this powerful episode of And Security For All, host Kim Hakim sits down with Zach Lewis, CIO & CISO at the University of Health Sciences and Pharmacy in St. Louis, to break down the real-world story behind his new book Locked Up — a firsthand account of surviving a major ransomware incident. From negotiating with the notorious LockBit ransomware group to navigating board-level decisions about paying (or not paying) a ransom, Zach shares what most organizations never talk about publicly. 🔐 In this episode, we cover: What actually happens during a ransomware attack (pre, during & post-breach)How ransomware groups like LockBit operate as “ransomware-as-a-service”Why some organizations pay — and what happens after they doDouble extortion & the evolving tactics of cybercriminalsAI-powered phishing, deepfakes, and the new threat landscapeHow boards are responding to growing cyber riskPractical advice for small and mid-sized organizations with limited security budgetsLessons learned from real breach recoveryWith ransomware, AI-driven attacks, and data extortion on the rise in 2026, this conversation is essential listening for CISOs, IT leaders, board members, business owners, and anyone responsible for protecting sensitive data. 🎧 Whether you're in healthcare, education, finance, or enterprise security — this episode delivers actionable insight from someone who’s lived through it.

    49 min
  2. Disrupt or Be Breached: The New Cyber Reality

    17 FÉVR.

    Disrupt or Be Breached: The New Cyber Reality

    Cybersecurity isn’t slowing down — it’s accelerating. In this episode of And Security For All, host Kim Hakim is joined by Arun DeSouza, Managing Director at ProFortis Solutions and President of the ISSA Detroit Chapter, for a powerful conversation on emerging cyber trends, AI disruption, and the evolution of the modern CISO From supply chain risk and ransomware evolution to OT security, cloud vulnerabilities, regulatory accountability, and AI-powered threats, this episode explores the real-world challenges security leaders are navigating right now. Topics include: The rise of cyber resilience over pure preventionWhy supply chain risk is now bigger than ransomwareOT and critical infrastructure targetingThe API economy and expanding attack surfacesAI as both attacker and defenderDeepfakes, autonomous attacks, and data poisoningObservability vs visibility in modern security operationsThe revolutionary evolution of the CISO role Arun also shares practical strategies for embedding security into innovation lifecycles, building AI governance frameworks, and preparing organizations for the next wave of disruption. If you’re a CISO, security practitioner, board member, or technology leader, this episode delivers actionable insight on how to stay ahead in an era where innovation and risk move at warp speed.

    47 min
  3. Welcome to the Runtime Era & the Rapid Shift in AppSec 📈

    10 FÉVR.

    Welcome to the Runtime Era & the Rapid Shift in AppSec 📈

    In this episode of And Security For All, host Kim Hakim sits down with Jeff Williams, Founder and CTO of Contrast Security, for a deep dive into why application security is undergoing its most dramatic shift in decades. Jeff shares his journey from helping create the OWASP Top Ten to building one of the leading runtime application security platforms, and explains why traditional AppSec approaches are no longer keeping up with modern software development. 🎙️ In this episode, we cover: Why 2026 is shaping up to be the year of runtime securityHow traditional AppSec tools create noise instead of clarityWhat runtime security reveals that static and perimeter tools cannotWhere AI truly helps in AppSec—and where the hype falls shortHow European regulatory changes are redefining software liabilityWhy security teams must prioritize context over volumeWhat developers, CISOs, and security leaders should focus on nextThis conversation breaks down complex topics like runtime protection, AI-driven remediation, regulatory pressure, and developer enablement into clear, practical insights for today’s security practitioners. Whether you’re a CISO, AppSec leader, developer, or security architect, this episode offers a forward-looking perspective on how application security is evolving—and what it takes to stay ahead.

    48 min
  4. Securing Intelligence: AI’s Impact on Cyber Risk

    28 JANV.

    Securing Intelligence: AI’s Impact on Cyber Risk

    In this episode of And Security For All, host Kim Hakim is joined by Jessica Couto, VP of Channels & Alliances at Harmonic Security, for an in-depth conversation on Securing Intelligence: AI’s Impact on Cyber Risk. Together, they explore how generative AI has rapidly shifted from a productivity tool to a new source of organizational risk—and why blocking AI outright is no longer a viable strategy. Jessica shares real-world insights on how employees are using AI both inside and outside corporate environments, the growing risks of data exposure, phishing, deepfakes, and shadow AI usage, and what security leaders must do to regain visibility and control. The discussion also covers how organizations can safely enable AI without sacrificing productivity, the evolving role of the CISO, the rise of fractional CISOs, and how security teams can communicate AI risk in business terms that resonate with leadership. Topics include: How AI is changing the cyber threat landscapeWhy blocking generative AI puts organizations at risk of falling behindData leakage, shadow AI, and employee behaviorDeepfakes, phishing, and AI-driven social engineeringAI governance, visibility, and policy challengesThe future of the CISO role and cybersecurity careers This episode is a must-listen for CISOs, security leaders, IT professionals, and anyone navigating the fast-changing intersection of AI, cyber risk, governance, and workforce impact.

    45 min
  5. Inside The Lion’s Den: Part 2

    25/11/2025

    Inside The Lion’s Den: Part 2

    In this follow-up episode, guest host Jonathan Kimmitt sits down again with Matthew Maynard, Security Operations Specialist at BJC HealthCare and Dark Web Researcher, to take an even deeper dive into the inner workings of ransomware crews and the people behind them. Matthew takes listeners deeper into the “lion’s den,” revealing what he has learned from directly engaging with threat actors on the dark web—how they think, how they operate, and why the human element inside these criminal ecosystems matters more than most organizations realize. In this episode, they break down: What motivated Matthew to enter ransomware intelligence and begin infiltrating criminal groupsHow ransomware crews recruit, organize, and operate like legitimate businessesKey differences between the clear web and dark web, and common misconceptionsEssential OPSEC practices and how both researchers and criminals protect their identitiesHow personas are created and maintained when engaging directly with threat actorsHuman drivers of cybercrime—from financial incentive to desperation and coercionInsider risks, layoffs, and how human vulnerability contributes to modern breachesMajor intelligence wins and insights that help organizations make stronger security decisions This episode offers rare, firsthand insight into the techniques, mindset, and operational flow of active cybercriminals—paired with practical guidance for defenders. Whether you’re in security leadership, incident response, threat intel, or simply curious about the dark web, this conversation will challenge your assumptions and expand your understanding of today’s most dangerous threats. Listen now and hear why knowing your adversary is one of the most powerful defenses in cybersecurity.

    46 min
  6. Inside The Lion’s Den: Infiltrating Ransomware Groups

    18/11/2025

    Inside The Lion’s Den: Infiltrating Ransomware Groups

    In this eye-opening episode of And Security For All, host Kim Hakim sits down with Matthew Maynard, Information Security Operations Specialist at BJC HealthCare and dark web researcher who has spent the last year doing the unthinkable—infiltrating active ransomware groups from the inside. Matthew shares how he entered closed cybercriminal communities, built trust, gathered intelligence, and passed critical findings to government agencies—all while maintaining a full-time role protecting one of the largest healthcare systems in the Midwest. His research provides a rare, real-time window into ransomware crews, their structure, their onboarding process, their business platforms, and the tactics they use to select, study, and strike their victims. What You’ll Learn in This Episode How ransomware groups actually operate behind closed doorsWhat “initial access brokers” are and why they’re the real first step in most attacksHow threat actors select targets, test stolen credentials, and prepare for exploitationWhy holidays and long weekends remain prime attack windowsWhat defenders consistently overlook—and the fixes that matter mostHow Matthew manages OPSEC, safety, and reporting while undercoverWhy MFA gaps, vendor access, phishing, and unpatched systems remain the top entry pointsThe surprising internal rules, ethics, and boundaries some threat groups enforceHow organizations should rethink backups, insurance, and negotiating ransom demands Matthew also discusses the psychological side of this work—the fear, the risk, and the personal motivation that keeps him in the fight. His insights provide actionable takeaways for CISOs, SOC teams, and anyone responsible for protecting an enterprise today. This is a rare interview with someone who has seen ransomware operations from the inside. It’s a conversation every cybersecurity leader should hear.

    44 min
  7. SOTI Fraud & Abuse Report: Charting a Course Through AI’s Murky Waters

    12/11/2025

    SOTI Fraud & Abuse Report: Charting a Course Through AI’s Murky Waters

    In this episode of And Security For All, guest host Steve Winterfeld, Advisory CISO at Akamai Technologies, teams up with Tricia Howard, Security Evangelist and “Scrybe of Cybersecurity Magicks,” to unpack Akamai’s State of the Internet: Fraud & Abuse Report 2025. They explore how AI-driven bots are reshaping the landscape of digital fraud—surging over 300% in the past year—and what that means for businesses, defenders, and everyday users. From ad fraud and data scraping to compliance challenges and the ethics of AI, this conversation dives deep into the tension between innovation and exploitation in cybersecurity. Listen as Steve and Tricia discuss: The explosive growth of AI bots and their impact on digital operationsAd fraud, zero-click searches, and the dark economy of stolen dataWhy healthcare and commerce are prime targets for automated attacksThe evolving balance between compliance, risk, and real securityHow organizations can defend against this new wave of AI-powered fraud With insights from Akamai’s global research team, this episode offers a grounded look at how to navigate the rise of generative AI, protect brand integrity, and build trust in a rapidly changing threat environment.

    45 min

  8. 10/11/2025

    The Current State of Cyber and AI in the Workforce

    In this episode of And Security For All, host Kim Hakim sits down with cybersecurity expert Ken Foster to explore how artificial intelligence is reshaping the modern workforce — and what that means for security professionals, organizations, and the future of work. From layoffs and talent shortages to the rise of agentic AI, Kim and Ken break down how automation, machine learning, and new attack surfaces are changing the cybersecurity landscape in real time. They discuss: How AI is transforming security operations and workforce dynamicsThe growing risk of over-automation and the loss of human oversightWhy data governance and validation are critical to AI successThe double-edged sword of AI in threat detection — and how bad actors are using it tooThe looming impact of quantum computing and what it means for encryption and defense strategiesThe importance of Zero Trust, segmentation, and continuous monitoring in today’s AI-driven worldKen also shares candid insights on hiring trends, upskilling the next generation of cybersecurity professionals, and how leaders can prepare for a workforce that increasingly depends on — and is challenged by — artificial intelligence. Whether you’re a CISO, IT leader, or security practitioner, this conversation offers practical perspective on where AI, automation, and human expertise intersect — and how to stay ahead in a rapidly evolving cyber landscape.

    43 min
Tout afficher (171)

À propos

Cyber security is not only important to everyone, it is critical to the future of every American. Each show details specific points in history and provides guidance and insights of both a technical and societal nature to help you understand and address cyber security issues more effectively. Our approach makes the often misunderstood and highly technical jargon of cyber security advisories, and popular media digestible for anyone that listens.brbr Anyone that leverages or uses internet and cyber related services, which in today’s world is basically everyone, stands to benefit from the show. You’ll gain insight into the reality of the space around cyber security and learn more details and truths on what is actually necessary to operate and be more secure at both the business and personal levels in an ever-changing technology space. We can help you truly understand a vast technology space and be better prepared in a dynamic technology ecosystem.

Informations

  • Création
    Kim Hakim
  • Années d’activité
    2025 - 2026
  • Épisodes
    171
  • Classification
    Tous publics
  • Copyright
    © Kim Hakim
  • Site web de l’émission
    And Security For All