Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

This week on the podcast, we discuss the wave of extortion attacks targeting companies that use Salesforce. After that, we discuss Discord's breach involving their customer support application. Finally, we dive deep into the recent Oracle E-Business Suite zero-day vulnerability and how attackers chained together multiple low-severity findings into a critical issue.

AI is reshaping how we detect and stop cyber threats, but not always how headlines suggest. This, Luke Wolcott joins to unpack how real ML drives real defense.

This week on the podcast, we bring on WatchGuard's head of MDR data science Luke Wolcott to discuss the evolution of machine learning and artificial intelligence in cybersecurity. We dive into the differences in common (and uncommon) machine learning models, the pros and cons of supervised vs unsupervised learning, and why some of the coolest things happening in AI aren't the ones you hear about in the news.

WatchGuard CSO Corey Nachreiner and Director of Security Operations Marc Laliberte discuss key findings from the WatchGuard Threat Lab’s Q2 2025 Internet Security Report. They’ cover the latest malware and network attack trends targeting small and mid-sized enterprises and defensive tips you can take back to your organization to stay ahead of modern threat actor tactics.

As a 2025 Cybersecurity Awareness Month Champion with the National Cybersecurity Alliance, WatchGuard leads by example.

The perimeter is gone. Hybrid work is here to stay. And MSPs sit at the crossroads of a network security evolution. This webinar focuses on how Network Detection and Response (NDR) and Secure Access Service Edge (SASE) are changing security delivery, showing MSPs how to lead this evolution. It will help you distinguish between hype and actionable strategies, empowering you to approach hybrid environments with a security-first mindset and evolve network security beyond traditional firewalls.

This week on the podcast, we discuss Cisco's recent zero-day vulnerabilities before covering a Microsoft Threat Intelligence post on a phishing campaign that abuses SVG files. After that, we review GitHub's proposed changes for securing the open source software supply chain.

AlphaV isn’t just another ransomware gang - they’re innovating how cybercriminals break in. Their latest move? Pass-the-Cookie attacks; hijacking session cookies to bypass MFA and silently infiltrate your cloud.

Cyberattacks evolve faster than aging infrastructure can keep up, and expired hardware is one of the biggest blind spots organizations face today. The recent Akira ransomware campaign targeting SonicWall VPNs is a powerful reminder of what happens when devices slip out of support.

This week on the podcast, we cover a vulnerability in Entra ID that could have allowed attackers to gain Global Admin access to any and all Entra ID tenants. After that, we discuss the Shai Hulud NPM worm that ran rampant over the last week, infecting hundreds of packages. Finally, we end with a quick reminder to WatchGuard Firebox customers to update their devices to the latest firmware to resolve CVE-2025-9242z.