Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Breach and attack simulation (BAS) as a foundational check, Hacker's Playbook, and continuous automated red teaming (CART) for offensive testing. Validating tools and detecting the human behind cyber attacks.

A new Chinese cybersecurity law just changed the global threat landscape. In this clip, Tova Dvorin and Adrian Culley break down what went into effect on January 20, 2026—and why it’s unprecedented. Under the updated law, vulnerabilities discovered by Chinese citizens or companies must be reported to the state within 48 hours and cannot be disclosed to vendors until approved. The result? A government-first window to exploit zero-days before they’re patched—at global scale.

Is AI actually making security teams safer—or just adding more noise? In this episode of IEN's Security Breach podcast, SafeBreach CTO Itzik Kotler joins Jeff Reinke to break down how attackers are using AI, why alert fatigue keeps getting worse, and what security teams should focus on before chasing the next “shiny object.” This conversation is a grounded take on preparation, detection engineering, and using AI intentionally—not reactively.

Hudney Piquant breaks down how hacker groups like Conti operate like traditional businesses—complete with structured recruitment and a focus on stealing high-value PII.

Cyber warfare isn’t coming—it’s already here. This conversation on The Cyber Resilience Brief dives into the Fifth Domain of Warfare—and why nation-state cyber activity should matter to every organization. From Russia’s chaos-driven campaigns to China’s long-game persistence, Iran’s retaliatory attacks, and North Korea’s financial theft—your network isn’t a bystander.

Hosts Tova Dvorin and Adrian Culley dive into Scattered Spider, a decentralized threat group targeting major corporations like MGM and Marks & Spencer.

In this podcast, we uncover the tactics behind Volt Typhoon, a Chinese state-sponsored operation targeting critical national infrastructure. Learn how this group is moving from espionage to disruption, using stealthy, “living off the land” techniques and exploiting legitimate system tools to hide in plain sight.

In this special episode of The Cyber Resilience Brief, Tova Dvorin and Adrian Culley break down CISA Advisory AA25-239—a joint alert from CISA, NSA, FBI, and global cyber partners on the long-running Chinese state-sponsored threat group Salt Typhoon. Salt Typhoon has been quietly infiltrating critical infrastructure for years by exploiting outdated routers, weak credentials, and “living off the land” techniques like PowerShell, WMI, scheduled tasks, and built-in administrative tools—making them nearly invisible.

Celebrate Women in Cyber Day with us on this episode of the SafeBreach podcast! We explore the evolving role of women in cybersecurity, diving into the unique challenges and privileges they face in a traditionally male-dominated field. Our guests discuss the power of mentorship, confidence, and community support, while highlighting the importance of tailored training and leadership representation. Tune in to hear inspiring insights on how creating opportunities and connections can help build a more inclusive and diverse cybersecurity landscape.

In this episode of The Cyber Resilience Brief, hosts Tova Dvorin and Adrian Culley dive into critical infrastructure security, focusing on the Dragonfly threat. In this episode, learn.