Security Cocktail Hour

Joe Patti and Adam Roth

Security veterans Joe Patti and Adam Roth welcome a diverse lineup of cybersecurity and information security experts to share their insights at the virtual bar. From cutting edge topics like AI and Operational Technology (OT) to the realities of careers and mental health, you'll get the inside view of what's happening across the industry and what it's really like to work in these fields, from the people who do it every day. Reach us at feedback@securitycocktailhour.com or @SecCocktailHour on Twitter.

  1. 12/22/2025

    Flipper Zero Firmware Update: If at first you don't succeed...

    Keeping your Flipper Zero's firmware updated is critical for security and performance—but the update process isn't always smooth. In this episode, we'll walk you through every step of updating your Flipper Zero firmware, including how to work through a snag you might encounter. Whether you're a security professional, pentester, or hardware enthusiast, regular firmware maintenance is essential for keeping your tools secure and functional. This guide shows you what it takes for the popular Flipper Zero. 00:00 Introduction to Flipper Zero 02:30 Laptop connection and app 06:20 Begin Update 07:23 This doesn't look right 09:40 Definitely not right 10:27 Success 12:57 Next steps Catch up with the previous episode in this series when we unboxed the Flipper Zero: https://open.spotify.com/episode/1rU2o8B5cd9MYZ4uQSB3VG?si=cce55d68cdc048b6 And our episode on the ethics of 'hacking' devices: https://open.spotify.com/episode/0olsN2LKLn09wOLpnxqeIH?si=adf4b00394714209 📧 Subscribe to Our Newsletter: Get exclusive cybersecurity insights, episode updates, and career tips delivered to your inbox. 👉 https://securitycocktailhour.com/newsletter/ 🔗 Connect With Us: Website: https://securitycocktailhour.com LinkedIn: https://www.linkedin.com/company/security-cocktail-hour/ Twitter: @SecCocktailHour

    16 min

  2. 12/15/2025

    Unboxing the Device Every Hacker Wants

    Curious about the Flipper Zero, one of the most talked-about `gadgets` out there? We give you a quick look as we unbox a new one. This is a companion to one of our earliest episodes, where we talked about the ethics and proper use of hacking tools. https://youtu.be/BVca3X8wE_c 📧 Subscribe to Our Newsletter: Get exclusive cybersecurity insights, episode updates, and career tips delivered to your inbox. 👉 https://securitycocktailhour.com/newsletter/ 🔗 Connect With Us: Website: https://securitycocktailhour.com LinkedIn: https://www.linkedin.com/company/security-cocktail-hour/ Twitter: @SecCocktailHour

    5 min

  3. 12/08/2025

    Job Scams Are Getting Worse | Four of the Most Dangerous

    Job scams are getting scary good. We're talking AI deepfakes, fake recruiters, and cryptocurrency traps that are fooling even tech-savvy professionals. In this Security Cocktail Hour holiday special, Joe and Adam break down four of the most dangerous job scams hitting people right now—because nothing says "Happy Holidays" quite like protecting yourself from scammers, right? If you're job hunting (or know someone who is), grab a drink and settle in. We're covering everything from deepfake video interviews to the bizarre world of "lucky order" scams that'll drain your crypto wallet faster than you can say "I got the job!" What You'll Learn: ✅ How scammers use real-time deepfake technology to impersonate legitimate recruiters ✅ The malware delivery tactics hidden in "competency tests" and coding exercises ✅ How to spot fake job postings before sharing personal information ✅ The "lucky order" scam that tricks workers into depleting their own accounts 00:00 Intro: Job Scams for the Holidays 01:08 AI Enhanced Interview Fraud 11:26 Packaging and Processing Scams 17:23 Mystery Shopper Scam 24:30 Gamify/Task Scams 28:48 Help Spread Awareness 29:40 Wrapup and Happy Holidays 30:58 Bonus Bloopers! Key Takeaways: 🚩 Red Flag #1: Any job asking for money upfront (deposits, equipment fees, background check fees) 🚩 Red Flag #2: Payment exclusively in cryptocurrency for employment 🚩 Red Flag #3: Requests for excessive personal information before an interview 🚩 Red Flag #4: Downloading special software for interviews or tests 🚩 Red Flag #5: "Too good to be true" easy money for simple tasks Protect Yourself: ✓ Always verify recruiters through official company websites (not LinkedIn alone) ✓ Never give MFA/2FA codes to anyone—even for "deposits" ✓ Be wary of video interviews that seem glitchy (could be deepfakes) ✓ Research the company independently before sharing personal data ✓ Use multi-factor authentication on all financial accounts 📧 Subscribe to Our Newsletter: Get exclusive cybersecurity insights, episode updates, and career tips delivered to your inbox every week. 👉 https://securitycocktailhour.com/newsletter/ 🔗 Connect With Us: Website: securitycocktailhour.com LinkedIn: https://www.linkedin.com/company/security-cocktail-hour/ Twitter: @SecCocktailHour Share This Episode: Know someone job hunting? Share this video to help protect them from these evolving scams.

    32 min
  4. Bonus: Holiday Scams Unwrapped: Tips to Stay Safe this Season

    12/02/2025

    Bonus: Holiday Scams Unwrapped: Tips to Stay Safe this Season

    Scammers stay busy during the holidays. From recognizing fake gift card requests to safe phone payments for teens, we're bringing back the best cyber security tips from last year's holiday episode, as a warmup for a new episode focusing on the latest job scams coming next week. 00:00 Introduction to the Holiday Episode 00:31 Phone malware and app privacy 06:41 EZPass Alerts and Package Delivery 08:56 Sexploitation 12:07 The Importance of Zero Trust 14:07 Gift Cards 20:54 Tap to Pay 24:52 The Debate: Debit vs. Credit Cards 29:56 Subscriptions and Hidden Costs 31:41 Wrapup Whether you’re buying gifts, traveling, or just enjoying the holidays with family, these practical tips will help you protect yourself and your loved ones. 👉 Help us fight back against the scammers: Share this episode with friends and family to keep them safe too! Leave a comment with your experiences or questions about scams. Stay safe, stay smart, and have a happy holiday season! 🎁

    33 min

  5. 11/17/2025

    Cybersecurity at Nanosecond Speed | Securing High Frequency Trading

    In this episode of the Security Cocktail Hour, guest Jatin Mannepalli introduces co-hosts Joe Patti and Adam Roth the high-speed, high stakes world of high frequency trading (HFT) and its many security challenges. The conversation delves into the intricacies of high frequency trading, the stress of incident response, and the importance of redundancy in connectivity. They discuss the evolution of data transmission methods, the challenges of security in trading environments, and the role of custom hardware. The episode also touches on the current job market in cyber security and the necessity of collaboration among firms to enhance security measures. Have you worked in cyber security for trading environments, or HFT's? Tell us about your experience in the comments. The views and opinions expressed in this podcast are solely those of the speaker, Jatin Mannepalli, and do not necessarily reflect the views, positions, or policies of IMC Trading or its affiliates.

    1 hr

  6. 11/03/2025

    AI in Cybersecurity: How CISOs Are Actually Using LLMs with Myke Lyons (Cribl CISO)

    Join Security Cocktail Hour hosts Joe Patti and Adam Roth for an in-depth conversation with Myke Lyons, Chief Information Security Officer at Cribl, about AI in cybersecurity operations. Discover how modern CISOs are actually using LLMs and AI tools in their daily work, handling the data explosion (28% CAGR growth in logs), and transforming security operations with smarter telemetry management. Myke shares practical AI adoption strategies, prompt engineering techniques, and his unique perspective on threat hunting with modern data architectures. From his non-traditional background (Culinary Institute of America graduate) to leading security at companies like Snyk, Collibra, and ServiceNow, Myke offers real-world insights on the future of AI in security.

    58 min

  7. 09/23/2025

    AI cyber attacks need AI cyber defense: Ransomware's new danger and how a top expert is fighting back

    Everyone's using AI, including ransomware gangs. Podcast guest Karin Lagziel, Director Cybersecurity at consulting firm Sygnia, gives us the news and her cyber defense strategies for fighting back: With more AI, as well as a focus on fundamentals. In this episode: 🔹 The first AI-powered ransomware "Prompt Lock" discovered in the wild 🔹 How Chinese hackers created "Villager" - the AI version of Cobalt Strike 🔹 Why traditional cybersecurity is failing against AI attacks 🔹 How attackers weaponize your own AI against you 🔹 The dark web's "AI as a Service" marketplace 🔹 Real-time deep fakes so realistic they fool security experts 🔹 AI governance frameworks 🔹 Why every organization needs agentic AI for defense 🔹 The future of cybersecurity careers (spoiler: humans aren't going away) Guest info: Karin Lagziel LinkedIn: https://www.linkedin.com/in/karinlags/ Sygnia: https://sygnia.co How are you preparing for AI-enabled cyber attacks? Tell us in the comments. 👇

    58 min

  8. 09/09/2025

    Ep. 60: Crypto Kidnappings, Lost Keys, and Million-Dollar Bug Bounties

    Forbes 30 Under 30 cybersecurity expert Yevheniia Broshevan discusses crypto security challenges, bug bounty programs, and the reality that 95% of Bitcoin has been mined while 11-18% is lost forever. 🔥 What You'll Learn: The concerning trend in crypto losses hitting $3 billion this year aloneHow bug bounties in Web3 can reach up to $10 million for critical vulnerabilitiesHow operational security failures cause more crypto thefts than code vulnerabilitiesWhy diversification is critical when storing digital assetsThe reality behind crypto kidnappingsReal-world asset tokenization and the future of digital assetsKey management best practices 🎯 Guest Spotlight: Yevheniia Broshevan – Co-Founder and CEO of Hacken, Forbes 30 Under 30 honoree, and Web3 security pioneer who has been active in crypto since 2014. Hacken, an end-to-end security and compliance partner for digital assets, has conducted security assessments for over 2,000 clients and operates a community of 50,000+ ethical hackers who have identified vulnerabilities worth millions. 💡 Key Takeaways: Access control issues and private key leakage cause majority of crypto hacksBug bounties in crypto can reach 5-10% of potential losses (millions in payouts)Hardware wallets, diversification, and proper key management are essentialThe industry lost $2.5 billion last year, $3 billion this year - trend is acceleratingPhishing and social engineering remain the weakest links in crypto security 🚨 Critical Security Insights: From penetration testing blockchain protocols to smart contract audits, Yev reveals the hidden vulnerabilities that put billions at risk. Whether you're a crypto investor, security professional, or curious about Web3 technology, this conversation delivers actionable intelligence you can't afford to miss. 💬 Comment: What's your biggest crypto security concern? Follow the Security Cocktail Hour podcast: Website: https://securitycocktailhour.comLinkedIn: https://www.linkedin.com/company/security-cocktail-hour/Twitter/X: @SecCocktailHourInstagram: https://www.instagram.com/seccocktailhour/ Guest Links: Yevheniia Broshevan LinkedIn: https://www.linkedin.com/in/broshevan/Hacken: https://hacken.io #CryptoSecurity #Web3Security #Blockchain #Cybersecurity #DigitalAssets #SmartContracts #CryptoHacking #BugBounty #Web3 #SecurityPodcast #Forbes30Under30 #EthicalHacking #PenetrationTesting #CryptoWallet #KeyManagement #SecurityAudit #DeFi #Cryptocurrency

    1h 5m
See All (69)

4.8
out of 5
5 Ratings

About

Security veterans Joe Patti and Adam Roth welcome a diverse lineup of cybersecurity and information security experts to share their insights at the virtual bar. From cutting edge topics like AI and Operational Technology (OT) to the realities of careers and mental health, you'll get the inside view of what's happening across the industry and what it's really like to work in these fields, from the people who do it every day. Reach us at feedback@securitycocktailhour.com or @SecCocktailHour on Twitter.

Information

  • Creator
    Joe Patti and Adam Roth
  • Years Active
    2023 - 2025
  • Episodes
    69
  • Rating
    Clean
  • Copyright
    © Joe Patti and Adam Roth
  • Show Website
    Security Cocktail Hour