Episodes

  • Expel CEO Dave Merkel on the impact of AI & Automation in modern SOCs

    Expel CEO Dave Merkel on the impact of AI & Automation in modern SOCs
    May 8 2025
    In this episode, we sit down with Dave Merkel, CEO of Expel to take an honest, practical look at how AI and automation are reshaping the modern Security Operations Center (SOC). Our discussion covers the most tangible changes in daily SOC operations since AI adoption, cutting through industry hype to reveal which claims deserve skepticism and which use cases have delivered meaningful, measurable value. Dave also gives insights into quantifying unique workloads, shaping policies, and fostering understanding between tech teams and business leaders are also addressed, along with the unintended risks AI can introduce to analyst workflows. In our reporter chat, Greg Otto talks with Tim Starks about a jury verdict that compels NSO Group to pay $168M in damages to WhatsApp over spyware infections.
    Show More Show Less
    32 mins
  • Recorded Future’s Alexander Leslie on the ‘MarkoPolo’ traffer team

    Recorded Future’s Alexander Leslie on the ‘MarkoPolo’ traffer team
    May 1 2025
    In this episode, Greg talks with Alexander Leslie, Threat Intelligence Analyst for Recorded Future’s Insikt Group and his research on “Marko Polo” – a notorious cybercriminal empire that orchestrates an array of scams, primarily using infostealer malware. Discover how this sophisticated syndicate has victimized tens of thousands worldwide and raked in millions in illicit revenue. Our guest breaks down the inner workings of these elusive "traffer teams," exploring their adaptable tactics, relentless persistence, and the insidious underground economy they fuel. Greg Otto breaks down his biggest takeaways from the RSAC 2025 Conference.
    Show More Show Less
    33 mins
  • Verizon’s Alex Pinto on the takeaways from the 2025 DBIR

    Verizon’s Alex Pinto on the takeaways from the 2025 DBIR
    Apr 24 2025
    On this episode of Safe Mode, Greg talks with Alex Pinto, Associate Director of Threat Intelligence at Verizon Business, as we unpack the key findings from this year’s Data Breach Investigations Report (DBIR). Pinto offers expert analysis on the most pressing cybersecurity trends impacting organizations worldwide—including ransomware’s dramatic spike, shifting attacker tactics, and evolving victim responses. We explore why ransomware now features in 44% of breaches, what’s driving a surge in exploited vulnerabilities and zero-day attacks on edge devices, and why small and mid-sized businesses are seeing more frequent and devastating impacts. Pinto sheds light on the motivations behind declining ransom payments, the rise of third-party risks, and the complex challenge of timely patching and remediation. In our reporter chat, Greg talks with Derek Johnson on one company’s security testing of OpenAI’s newest GPT model.
    Show More Show Less
    39 mins
  • Will Pearce on the ever-changing field of offensive AI security

    Will Pearce on the ever-changing field of offensive AI security
    Apr 17 2025
    In this episode, Greg talks with Will Pearce, CEO and Co-founder of Dreadnode about the rapidly evolving field of offensive AI security. Greg and Will discuss the unique challenges researchers face in testing AI models for vulnerabilities compared to traditional software, unveiling how adversarial attacks impact AI security and the ethical considerations at play. We also examine the role of regulatory frameworks and emerging threats, shedding light on how insights from offensive AI security can enhance human-AI interactions and elevate security standards across industries. In our reporter chat, Greg talks with Matt Kapko on Ivanti’s issues with security in their network edge devices.
    Show More Show Less
    41 mins
  • Lior Div on how security teams should be using AI agents

    Lior Div on how security teams should be using AI agents
    Apr 10 2025
    In this episode, Greg talks with Lior Div, co-founder and CEO of 7AI. Lior and Greg explore how security teams are being reinforced with AI Agents and identify the areas where CISO are embracing this technological shift to optimize their talent resources. We'll also discuss the specific security functions these agents are performing, including email security, threat hunting, and other critical cybersecurity domains. Join us as we delve into the future of AI-augmented cybersecurity teams and the potential impact on the industry's ongoing battle against sophisticated cyber threats. In our reporter chat, Greg talks with Derek Johnson about Google’s experimental LLM made for cybersecurity analysts.
    Show More Show Less
    35 mins
  • Silent Push’s Ken Bagnall on how companies can work with governments to take down malicious infrastructure

    Silent Push’s Ken Bagnall on how companies can work with governments to take down malicious infrastructure
    Apr 3 2025
    In this episode, Greg Otto talks with Ken Bagnall, CEO of Silent Push Ken sheds light on the dynamics of the current cybercrime ecosystem. Ken reveals that a significant portion of the infrastructure is actually operated by affiliate networks using pre-existing technologies. During the discussion, Ken elaborates on how this ecosystem is fueled and examines the influential role played by affiliate groups, particularly those emerging from Africa and other developing countries. By offering these insights, the episode provides a fresh perspective on the often-overlooked aspects of global cybercrime operations. In our reporter chat, Greg talks with Matt Kapko about the growing problem with remote IT workers from North Korea.
    Show More Show Less
    33 mins
  • Edera’s Alex Zenla on how to make cloud computing and AI secure-by-design

    Edera’s Alex Zenla on how to make cloud computing and AI secure-by-design
    Mar 27 2025
    In this episode, Greg Otto talks with Edera co-founder and CTO Alex Zenla, charting her path from beginnings in Minecraft IRC channels to pioneering container isolation technology. Alex discusses her unique expertise in container security, GPU protection, and AI infrastructure, and how Edera is transforming the tech landscape with a commitment to balancing open-source benefits with robust security, setting new standards for cloud security's future. In our reporter chat, Greg talks with Derek B. Johnson about a controversial executive order from Donald Trump that upends the way elections could be conducted in the future.
    Show More Show Less
    47 mins
  • Allie Bohan on how to handle the non-technical side of a ransomware attack

    Allie Bohan on how to handle the non-technical side of a ransomware attack
    Mar 20 2025
    In this episode, Greg Otto talks with FTI Consulting’s Allie Bohan exploring the challenges organizations face in maintaining effective communication during cyberattacks. Allie and Greg uncover essential strategies for incidents, ensuring companies remain connected with stakeholders even when digital channels are compromised. We also talk on how to keep morale boosted within an organization during a time that many would consider one of the worst chapters in a business’s history. In our reporter chat, Greg talks with Matt Kapko about who is sending those massively annoying scam text messages about unpaid toll violations.
    Show More Show Less
    36 mins