Épisodes

  • Scattered Spider: the Evolution of Identity-Based Ransomware

    Scattered Spider: the Evolution of Identity-Based Ransomware
    Sep 23 2025
    In this episode of Data Security Decoded, join Caleb Tolin as he welcomes back Joe Hladik, Head of Rubrik Zero Labs, to explore how modern adversaries like Scattered Spider are reshaping the ransomware landscape. From double extortion schemes to identity compromise and hypervisor encryption, Joe explains why these attackers succeed where traditional defenses fail and what security leaders must do to embed resilience and recovery at the core of their strategy. • Learn how double extortion turns data theft into a two-payout playbook • Hear why identity compromise and social engineering bypass even strong defenses • Understand why breakout times as fast as 48 minutes change the response equation • Get practical ways to build resilience and recovery without reintroducing attacker backdoors
    Voir plus Voir moins
    12 min
  • Five-Year Plans, Forever Wars: China's Blueprint for Cyber Dominance

    Five-Year Plans, Forever Wars: China's Blueprint for Cyber Dominance
    Aug 26 2025
    In this episode of Data Security Decoded, join Caleb Tolin as he sits down with Mei Danowski, Co-Founder of Natto Thoughts and expert in geopolitical intelligence, to explore the realities of Chinese state-backed cyber operations. From the fragmented nature of China’s threat actor ecosystem to its growing focus on critical infrastructure, discover how cultural, political, and economic structures shape one of the world's most strategic cyber landscapes. Whether you’re defending critical infrastructure or shaping policy, this conversation provides clarity on China’s cyber strategy and what it means for global security. • Learn why Chinese cyber operations are fragmented, not centrally controlled • Explore how cultural and political structures influence Chinese threat actors • Understand which critical infrastructure sectors are most frequently targeted and why • See how China’s 14th Five-Year Plan shaped cyber operations and what to expect from the 15th
    Voir plus Voir moins
    28 min
  • Breaking the Intelligence-Defense Divide with Scott Scher

    Breaking the Intelligence-Defense Divide with Scott Scher
    Aug 13 2025
    In this episode of Data Security Decoded, join Caleb Tolin as he sits down with Scott Scher, a cyber threat intelligence (CTI) expert with an unconventional backstory, to explore how his four years living off the grid shaped his belief that protecting technology isn’t just technical work, it’s about resilience, strategy, and thinking differently. From redefining CTI as “counter-threat intelligence” to breaking down the walls between intelligence teams, defenders, and policy leaders, Scott explains how to turn raw intel into actionable security decisions that strengthen organizations where it matters most. • Learn why threat intelligence should be seen as cover, helping defenders justify and prioritize their actions • Hear how Scott’s off-grid lifestyle influenced his approach to resilience and technology reliance • Understand why “intel vs. defense” is the wrong mindset and what real collaboration looks like • Get practical ways to transform raw threat data into clear, actionable defense strategies
    Voir plus Voir moins
    24 min
  • The Geopolitical Security Playbook: When Nations Clash in Cyberspace

    The Geopolitical Security Playbook: When Nations Clash in Cyberspace
    Jul 31 2025
    In this episode of Data Security Decoded, host Caleb Tolin sits down with Dustin Droullard, a cyber threat intelligence expert and former Army intelligence analyst and cyber operations officer. They explore the growing overlap between global conflict and cybersecurity, unpacking how nation-state actors use cyber-espionage, disinformation, and digital sabotage in geopolitical conflicts. Whether you're leading cybersecurity efforts or simply navigating today’s volatile digital landscape, this conversation offers valuable insights into preparing your organization for the rising tide of cyber threats driven by global conflict. Discover how geopolitical tensions trigger cyber fallout for businesses Learn the tactics behind influence operations and digital sabotage Understand why anthropology and business skills matter in cyber careers Explore what schools are still missing in cybersecurity education
    Voir plus Voir moins
    23 min
  • HIPAA 2.0, Minimum Viable Hospitals, and Strategies for Cyber Resilience within Healthcare

    HIPAA 2.0, Minimum Viable Hospitals, and Strategies for Cyber Resilience within Healthcare
    Jul 15 2025
    Welcome to the Data Security Decoded podcast, brought to you by Rubrik Zero Labs. In each episode, we discuss cybersecurity with thought leaders and industry experts, getting their take on trends, themes, and how they see data security evolving. This is a must-listen for security and IT leaders looking to better understand trends shaping data security and how they can achieve cyber resilience. In this episode, our host, Caleb Tolin, is joined by Errol Weiss, Chief Security Officer at Health-ISAC and former cybersecurity leader at Citi and Bank of America. Errol shares his journey from the NSA to building one of the most collaborative threat intelligence networks in healthcare, discussing cyber recovery, the minimum viable hospital model, and why culture and community matter in achieving true resilience.
    Voir plus Voir moins
    21 min
  • Securing the Software Supply Chain

    Securing the Software Supply Chain
    Jun 24 2025
    In this episode of Data Security Decoded, Allison Wikoff, a 20-year cybersecurity veteran and threat intelligence expert, cuts through the noise and identifies some unique threats within today's security landscape. From the surprising shift toward exploiting old vulnerabilities to the reality of AI-powered attacks, discover why the fundamentals of cybersecurity matter more than ever. Whether you're a CISO navigating supply chain risks or a security analyst trying to separate hype from reality, this episode delivers practical intelligence from someone who tracks threats for a living. • Understand why known vulnerabilities have become the dominant attack vector (even for criminal groups) • Learn to identify and manage third-party risks before they become ransomware nightmares • Discover the truth about AI attacks and why they're not as revolutionary as headlines suggest • Get actionable steps to strengthen your security posture without massive budget increases
    Voir plus Voir moins
    16 min
  • AI-Driven Cyber Defense in Action: How AI Agents Are Saving SOC Analysts From Burnout

    AI-Driven Cyber Defense in Action: How AI Agents Are Saving SOC Analysts From Burnout
    Jun 4 2025
    In this episode of Data Security Decoded, join Caleb Tolin as he sits down with Grant Oviatt, Head of Security Operations at Prophet Security, to explore the transformative impact of AI agents in SOC environments. From reducing false positives by 95% to dramatically improving incident response times, discover how AI is augmenting human analysts rather than replacing them. Whether you're a CISO looking to optimize your security operations or a SOC analyst concerned about AI's impact on your role, this episode offers practical insights into successfully implementing AI-driven security solutions while building trust in automated systems. • Learn how AI agents handle tedious security tasks, freeing analysts for strategic work • Explore real-world success stories of AI-powered threat detection and response • Understand the critical balance between AI automation and human expertise • Get practical steps for deploying AI agents in your SOC
    Voir plus Voir moins
    23 min
  • Making Generative AI Transparent

    Making Generative AI Transparent
    May 20 2025
    In this episode of Data Security Decoded, host Caleb Tolin sits down with Gabrielle Hibbert, a pioneering researcher developing a nutrition labeling system for generative AI tools. They explore how this innovative framework could transform transparency in AI, making complex privacy policies and data usage understandable for everyone from consumers to enterprise users. Whether you're implementing AI solutions in your organization or concerned about data privacy, this conversation offers valuable insights into creating better standards for AI transparency and user trust. • Discover how video game design principles influence user-friendly AI documentation • Learn why current privacy policies fail to protect consumers • Explore the regulatory implications of standardized AI labeling • Understand the challenges of keeping labels current with rapid AI advancement
    Voir plus Voir moins
    31 min