The Cyber Resilience Brief: A SafeBreach Podcast

SafeBreach
  • 5.0 (2)
  • TECHNOLOGY
  • UPDATED BIWEEKLY

The Cyber Resilience Brief is your 15-minute pulse on how organizations can build stronger defenses and achieve true cyber resilience. Each episode dives into the practical realities of Breach and Attack Simulation (BAS), adversarial exposure validation, and the evolving strategies that keep modern enterprises secure. Hosted by Tova Dvorin and brought to you by SafeBreach — the leader in Adversarial Exposure Validation — this podcast features insights from cybersecurity leaders, integration partners, CISOs, technical experts, and forward-thinking customers. Whether you’re in the EU navigating DORA requirements, managing a global security program, or simply looking to better validate your defensive posture, The Cyber Resilience Brief delivers actionable guidance, partner perspectives, and the latest trends to help your business stay ahead. 🎧 Subscribe and join us as we explore what it takes to proactively defend, adapt, and thrive in today’s threat landscape.

  1. 6D AGO

    Ep. 57 - Russia's Proxy Bridge: BlackCat, Scattered Spider, and the Kremlin

    In Part 4 of our Russian intelligence series, host Tova Dvorin and Adrian Culley map the proxy bridge between Western teenage hackers and Moscow. BlackCat (ALPHV) ransomware-as-a-service is the operational hinge: Scattered Spider breaks in, BlackCat encrypts, and the FSB watches the dashboard. Hear how the Kremlin earns plausible deniability, why a $115M extortion stream self-funds Russian intelligence, and what MI6's new "hybrid shadow war" warning means for defenders simulating Rust-based ransomware in their own networks.

    12 min

  2. APR 29

    Ep. 56 - 10,000 Bugs, 12 That Matter: Using AI to Cut Through Exposure Noise with CTEM

    Are you still stuck on the vulnerability hamster wheel? In this episode of the Cyber Resilience Brief, host Tova Dvorin is joined by SafeBreach VP of Product Koby Bar and offensive security expert Adrian Culley to unpack a major shift in how enterprises approach proactive security — and to announce the launch of SafeBreach Helm, the AI validation layer built for Continuous Threat Exposure Management (CTEM). They break down all five pillars of CTEM — scoping, discovery, prioritization, validation, and mobilization — and explain exactly why most organizations stall before operationalizing any of them. You'll learn why nearly 40% of actionable exposures aren't CVEs at all, why CVSS scores without context are dangerous, and how an LLM-driven engine can turn 10,000 vulnerabilities into 12 surgical priorities — validated against your actual environment. Whether you're a CISO trying to prove security ROI, a security engineer drowning in alerts, or a practitioner exploring CTEM frameworks, this episode delivers the blueprint for moving from theoretical risk to proven, validated exposure management. Topics covered: What CTEM actually means and why the detect-and-patch model is brokenHow AI-powered scoping keeps pace with a dynamic attack surfaceWhy toxic combinations of misconfigs and identity risks outrank many high-CVSS CVEsAdversarial Exposure Validation (AEV): testing controls, not just checking boxesHow Helm bridges the IT/security communication gap to accelerate remediation Learn more about how SafeBreach supports CTEM: https://www.safebreach.com/solution-brief/ctem-by-safebreach/

    14 min

  3. APR 22

    Ep. 55 - The ‘Typhoon’ Hack: How China Hid Inside Your Home Router

    Your home router isn’t just sitting there. It might already be part of a global cyberattack. In Part 2 of our deep dive into Chinese cyber operations, Tova Dvorin and Adrian Culley unpack the “Typhoon” threat groups—Volt Typhoon, Salt Typhoon, and Flax Typhoon—and how they’re quietly reshaping modern cyber warfare. This isn’t about stealing data. It’s about staying hidden, pre-positioning, and being ready to strike. In this episode, you’ll learn: How hackers are living inside networks for years without detectionWhat “living off the land” really means—and why security tools miss itHow compromised home routers became a global proxy networkWhy telecom systems—and even lawful surveillance tools—were targetedThe real strategy behind China’s cyber operations: preparing for future conflict From power grids to personal devices, this episode reveals how the battlefield has already expanded—and why most organizations still aren’t ready.

    10 min

  4. APR 15

    Ep. 54 - EU Cyber Resilience Act (CRA) Explained: What Every Security Leader Must Do Now

    The EU Cyber Resilience Act (CRA) is set to transform cybersecurity—from a best practice into a legal requirement. But what does that actually mean for security teams, product leaders, and CISOs? In this episode of The Cyber Resilience Brief, host Tova Dvorin and cybersecurity expert Adrian Culley break down the CRA in plain terms—and explain why the shift to continuous security validation is unavoidable. You’ll learn: What the CRA means by “products with digital elements (PDEs)”—and why almost everyone is in scopeThe real obligations manufacturers, importers, and distributors must meetHow CRA connects to DORA and TIBER—and why this is just the beginning of a broader regulatory waveWhy point-in-time testing is officially obsoleteHow BAS, CART, and Adversarial Exposure Validation (AEV) enable continuous compliance and real resilience With enforcement deadlines approaching and significant penalties on the horizon, the message is clear: If your security testing isn’t continuous, it’s not CRA-ready. Whether you're selling into the EU or building digital products anywhere in the world, this episode will help you understand what’s coming—and how to stay ahead of it. Listen now to learn how to shift from reactive security to continuous cyber resilience. Read more about EUCRA in our blog: https://www.safebreach.com/blog/eu-cyber-resilience-act-readiness/

    10 min

  5. APR 8

    Ep. 53 - The Dragon’s Shadow: China’s Silent Cyber War Has Already Begun

    What if the next cyberattack doesn’t steal your data… but quietly prepares to break your infrastructure? In this premiere episode of our series on Chinese threat actors, we uncover how China transformed from noisy, smash-and-grab hackers into the world’s most sophisticated cyber power—one focused not just on espionage, but on pre-positioning inside critical infrastructure. Through a chilling real-world scenario, we explore a new kind of threat: digital landmines—subtle, invisible changes inside power grids, telecommunications networks, and industrial systems that can be triggered at any time. You’ll learn: How China’s cyber strategy evolved from IP theft to operational controlThe role of the PLA’s Strategic Support Force and the “Three Dominances”Why recent campaigns like Volt Typhoon signal a shift to long-term persistenceHow new Chinese cybersecurity laws are reshaping the global threat landscapeWhat “living off the land” means—and why it’s so hard to detect This isn’t about ransomware or data breaches. It’s about access, leverage, and timing. Because in today’s cyber battlefield, the most dangerous attack… is the one that hasn’t happened yet.

    11 min

  6. APR 1

    Ep. 52 - The Russian Cyber Triad: GRU, SVR, FSB Explained

    In this episode of the Cyber Resilience Brief, we shift from chaotic cybercriminals to the calculated world of Russian nation-state threat actors—breaking down the three agencies that dominate Russia’s cyber operations: the GRU, SVR, and FSB. What many organizations mistakenly treat as a single “Russian threat” is actually a complex ecosystem of competing intelligence agencies—each with distinct goals, tactics, and operational philosophies. The GRU (military intelligence) acts as the sledgehammer, driving destructive campaigns like NotPetya and operating groups such as Fancy Bear and Sandworm.The SVR (foreign intelligence service) is the scalpel, specializing in stealth, long-term espionage, and persistent access through groups like Cozy Bear.The FSB (domestic security) plays a unique role—bridging the gap between nation-state operations and the cybercriminal underground, recruiting and leveraging hackers to extend its reach. We also explore how FSB-linked actors use advanced social engineering and persona development, how their tactics compare to groups like Scattered Spider, and why this convergence of espionage and cybercrime poses a growing risk to organizations worldwide. Understanding these distinctions is critical for accurate threat attribution, effective defense strategies, and cyber resilience planning. 🎧 In this episode, you’ll learn: The key differences between GRU, SVR, and FSB cyber operationsHow Russian intelligence agencies compete—and why that mattersThe role of cybercriminal groups in nation-state campaignsEmerging risks from the blending of high-volume attacks and targeted espionage 🔐 Whether you’re a CISO, security practitioner, or cyber threat intelligence professional, this episode will help you better understand—and defend against—modern Russian cyber threats.

    10 min

  7. MAR 25

    Ep. 51 - 2026 Cyber War Update: Handala, MuddyWater, and the Rise of Destructive Attacks

    Iranian cyber attacks are escalating—shifting from espionage to destructive, large-scale operations. In this episode, we break down what CISOs need to know. Host Tova Dvorin and offensive security expert Adrian Culley analyze the latest Iranian cyber threat activity, including groups like Handala (Void Manticore) and MuddyWater (Mango Sandstorm), and how their tactics are evolving. You’ll learn how attackers are using malwareless techniques like Microsoft Intune device wipes, blockchain-based command-and-control via Ethereum, and Telegram-driven infrastructure to bypass traditional defenses. We also explore how IRGC-linked operations are targeting critical infrastructure, including water and power systems. Finally, we cover what this means for defenders, including why Continuous Threat Exposure Management (CTEM), Breach and Attack Simulation (BAS), and Continuous Automated Red Teaming (CART) are now critical for modern security teams. This episode delivers a practical breakdown of the 2026 cyber threat landscape and how organizations can better prepare.

    8 min

  8. MAR 18

    Ep. 50 - Inside Trump’s 2026 Cyber Strategy: Why “Check-the-Box Security” Is Dead

    The U.S. just made its boldest move in cybersecurity in decades. In this episode of the Cyber Resilience Brief, Tova Dvorin and Adrian break down President Trump’s 2026 Cyber Strategy—and why it signals a massive shift from reactive defense to proactive, offensive cybersecurity. What does this mean for CISOs, security leaders, and the private sector? We unpack the strategy’s most critical pillars, including: Why “checklist compliance” is officially deadThe rise of offensive cybersecurity and adversary disruptionHow AI and agentic systems are reshaping cyber defenseThe growing mandate for Continuous Threat Exposure Management (CTEM)What Zero Trust and post-quantum cryptography really require in practiceWhy critical infrastructure and supply chains are now front and centerHow this strategy pulls the boardroom into cybersecurity accountability This isn’t regulation—it’s a call to action. And for organizations that fail to validate their defenses continuously, the risks have never been higher. If you’re a CISO, security practitioner, or executive, this episode will help you understand what’s coming—and how to prepare. Read the full blog here: https://www.safebreach.com/blog/the-2026-white-house-cyber-strategy/

    12 min
See All (57)

Ratings & Reviews

5
out of 5
2 Ratings

About

The Cyber Resilience Brief is your 15-minute pulse on how organizations can build stronger defenses and achieve true cyber resilience. Each episode dives into the practical realities of Breach and Attack Simulation (BAS), adversarial exposure validation, and the evolving strategies that keep modern enterprises secure. Hosted by Tova Dvorin and brought to you by SafeBreach — the leader in Adversarial Exposure Validation — this podcast features insights from cybersecurity leaders, integration partners, CISOs, technical experts, and forward-thinking customers. Whether you’re in the EU navigating DORA requirements, managing a global security program, or simply looking to better validate your defensive posture, The Cyber Resilience Brief delivers actionable guidance, partner perspectives, and the latest trends to help your business stay ahead. 🎧 Subscribe and join us as we explore what it takes to proactively defend, adapt, and thrive in today’s threat landscape.

Information

You Might Also Like