In this episode of Cybersecurity Today, host Jim Love welcomes David Shipley, CEO of Beauceron Security, as a guest. Together, they delve into the latest research from Beauceron Security with assistance from he University of Montreal. They discuss the effectiveness of phishing simulations, the importance of reporting suspicious activities, and the psychological factors that lead to clicking on phishing emails. The episode also highlights the surprising advantages small businesses have over larger organizations in phishing defense, and how management's attitude towards cybersecurity significantly impacts a company's overall security culture. Don't miss this thorough, insightful conversation that will change how you think about cybersecurity training and culture!

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:19 Meet the Guest: David Shipley
01:46 David's Research with University of Montreal
02:17 Phishing Simulation Training Insights
03:16 The Importance of Real Research
04:30 Human Risk Management vs. Security Awareness
05:49 Understanding Phishing and Its Impact
11:10 The Role of Technology and Human Resilience
14:34 Effective Phishing Training Strategies
19:02 Analyzing Click Behavior and Reporting
27:17 Why People Click: Survey Insights
36:07 High Click Rates and Psychological Safety
38:13 Management's Role in Cybersecurity Culture
39:29 Impact of Tenure and Compensation on Click Rates
40:58 The Importance of Security Awareness Programs
43:35 Feedback and Reporting in Cybersecurity
54:12 Small Companies vs. Large Companies in Cybersecurity
56:44 Surprising Findings and Future Directions
01:02:12 Conclusion and Report Availability

In this episode of Cybersecurity Today, host Jim Love explores the burgeoning world of actionable AI agents, examining key developments from companies like Google and Anthropic. The episode delves into the rapid rise of MoltBot, an open-source AI agent tool that has taken the developer community by storm. Jim also highlights the significant security concerns associated with these advanced AI systems, including delegated control, exposable credentials, and the potential for real-world consequences due to misuse. The podcast wraps up with a discussion on the future implications of these technologies and a preview of upcoming research by David Shipley from Beauceron Security on phishing. Brought to you with the support of Meter, delivering integrated networking solutions for optimized performance and scale.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:24 Emerging AI Agents: Google and Anthropic
01:59 The Rise of Molt Bot
07:51 Security Concerns with AI Agents
11:09 Looking Ahead: The Future of AI Agents
13:47 Conclusion and Upcoming Episodes

Cybersecurity Today: WhatsApp Privacy Lawsuit, Google's Personal AI, Canada Computers Breach, and Mass Password Leak

In this episode, host Jim Love discusses pressing cybersecurity issues, including a lawsuit against WhatsApp for allegedly misleading users about message privacy, concerns over Google's new personal AI and its data security implications, a delayed response to a credit card skimming attack at Canada Computers, and the exposure of 149 million stolen passwords. Sponsored by Meter, the podcast also highlights the risks of using the same passwords and the importance of timely breach responses.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:21 WhatsApp Privacy Lawsuit
02:48 Google's Personal AI Security Concerns
05:58 Canada Computers Payment Card Breach
09:10 149 Million Stolen Passwords Exposed
12:16 Conclusion and Sponsor Message

Cybersecurity Today: Critical Fortinet Flaws, Windows 11 Issues, and Major Cloud Security Near Miss

In today's episode of Cybersecurity Today, host David Shipley covers several pressing cybersecurity topics including the continued exploitation of Fortinet flaws despite recent patches, Windows 11 systems failing to boot after January updates, a thwarted cyber attack on Poland's energy sector by the Sandworm group, a sophisticated phishing campaign targeting the energy sector, and a critical AWS vulnerability that posed a significant risk to cloud security globally. Stay informed on these key issues and more.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:48 Fortinet Flaws Still Actively Exploited
03:08 Windows 11 Update Issues
04:44 Cyber Attack on Poland's Energy Systems
06:18 Phishing Campaign Targeting Energy Sector
07:48 AWS CodeBuild Vulnerability
10:26 Conclusion and Final Thoughts

Discovering Void Link: The AI-Generated Malware Shaking Up Cybersecurity

In this episode, we explore the fascinating discovery of 'Void Link,' one of the first documented cases of advanced malware authored almost entirely by artificial intelligence. Hosts delve into an eye-opening interview with experts from Checkpoint Research—Pedro Drimel and Sven Rath—who were integral to uncovering this next-gen cyber threat. Learn how Void Link's design, rapid development, and sophisticated features signify a new age in malware creation, and understand the implications for cybersecurity, particularly in cloud and Linux environments. This episode provides a compelling look into the tools and methodologies behind the groundbreaking find, and a rare glimpse into the evolving landscape of AI-driven cyber threats.

LINK TO CHECKPOINT RESEARCH PAPER:
https://research.checkpoint.com/2026/voidlink-early-ai-generated-malware-framework/

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:19 AI-Generated Malware: The Void Link Case
03:16 Interview with Checkpoint Researchers
04:05 Background of the Researchers
06:56 Discovering Void Link
10:27 Analyzing the Malware
14:46 AI's Role in Malware Development
19:55 Implications and Future of AI in Cybersecurity
21:21 Introduction to IDE and Agent Support
21:45 Jailbreaking AI Models for Malware Development
22:24 Challenges and Implications of AI in Malware
23:43 AI's Role in Malware Detection and Development
26:35 The Future of AI in Cybersecurity
32:30 Operational Security and AI Limitations
33:59 Concluding Thoughts and Future Research
36:28 Final Remarks and Acknowledgements
37:32 Show Wrap-Up and Sponsor Message

Fortinet Firewall Breached, Hidden Linux Vulnerability & Ransomware Boss Pleads Guilty | Cybersecurity Today

In this episode of Cybersecurity Today, host David Shipley discusses the latest breach involving Fortinet FortiGate firewalls, an 11-year-old critical Linux vulnerability that was recently discovered, and a rare courtroom case where a ransomware boss pleaded guilty. The episode also highlights a report on widespread credential exposure in the retail sector. Stay informed on the latest cybersecurity news and developments. Sponsored by Meter.

00:00 Introduction and Sponsor Message
00:39 Fortinet Firewalls Breached
02:05 Critical Linux Vulnerability Exposed
03:31 Ransomware Boss Pleads Guilty
04:52 Widespread Credential Exposure in Retail
05:47 Conclusion and Sign-Off
06:11 Sponsor Message and Closing Remarks

Critical Cybersecurity Updates: Microsoft, Goot Loader, Anthropic, and AI-Generated Malware

In this episode of Cybersecurity Today, host Jim Love discusses the latest security patches and threats in the industry. Topics include Microsoft's recent patch for a Windows Admin Center flaw, the resurgence and evolution of Goot Loader malware, Anthropic's quiet patching of key vulnerabilities in their Git MCP server, and the emergence of Void Link, an advanced AI-generated malware targeting Linux-based servers. Tune in to learn about the implications of these updates and what steps you can take to protect your systems.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:20 Microsoft Patches Critical Windows Admin Center Flaw
02:54 Goot Loader Malware Resurgence
06:18 Anthropic Patches Git MCP Vulnerabilities
09:55 Void Link: AI-Generated Malware

Critical Security Flaws Patched by Cisco and Fortinet Amidst Recent Cyber Threats

In this episode of Cybersecurity Today, host David Chipley covers several pressing cybersecurity issues. Cisco has patched a maximum severity zero-day vulnerability in its Async OS software, which has been exploited by a Chinese state-linked group. Fortinet has also addressed a critical vulnerability in its 40 Seam product, which is being actively exploited in the wild. The Dutch National Police are still recovering from a Citrix breach, emphasizing the need for modern infrastructure. Meanwhile, a spear-phishing campaign targeting US organizations uses Venezuela-themed lures. The episode wraps up with a discussion on a recent study revealing that training AI to produce insecure code can lead to broader problematic behaviour.

Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale.

You can find them at Meter.com/cst

00:00 Introduction and Sponsor Message
00:46 Cisco Patches Critical Async OS Bug
02:26 Fortinet Vulnerability Exploited in the Wild
04:04 Dutch National Police and Aging IT Infrastructure
05:55 Spear Phishing Campaign with Venezuelan Lure
07:54 AI Writing Buggy Code: Unexpected Consequences
10:21 Conclusion and Final Thoughts