Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

This week on the podcast, we cover a Politico report detailing a security lapse at CISA in the United States involving sensitive data and a public version of ChatGPT. Next, we dive into a couple of recently resolved vulnerabilities in the SolarWinds Web Help Desk application. Finally, we end with some closure on a story about two Coalfire penetration testers who were arrested several years ago for completing a penetration test in Iowa.

Watch Claude Code generate production-ready Cobalt Strike detection rules in LimaCharlie. The agent defines detection requirements, creates rule logic for high-signal patterns, validates syntax, and deploys rules to the tenant. Named-pipe indicators and process-based signatures are tested against positive and negative controls to confirm accuracy. Security teams can operationalize threat-specific detections in minutes instead of hours.

In this episode of The Cybersecurity Defenders Podcast, we discuss some intel being shared in the LimaCharlie community. Support our show by sharing your favorite episodes with a friend, subscribe, give us a rating or leave a comment on your podcast platform. This podcast is brought to you by LimaCharlie, maker of the SecOps Cloud Platform, infrastructure for SecOps where everything is built API first. Scale with confidence as your business grows.

Claude Code automates the entire detection export pipeline from LimaCharlie to AWS S3. The agent confirms AWS access, creates buckets with proper regional placement, provisions IAM policies with appropriate permissions, stores credentials securely, and enables continuous delivery. Security data flows from LimaCharlie to S3 for retention and analysis without manual AWS configuration.

See Claude Code provision a new LimaCharlie security tenant with regional data residency, enable detection extensions, generate API credentials, create SSH keys, and establish Git as the single source of truth. Security teams can manage their entire LimaCharlie detection infrastructure through version-controlled code rather than point-and-click interfaces.

Attackers continue to move faster, automate more aggressively, and operate with greater precision at the endpoint. Detection alone is no longer enough. Security teams need clarity, context, and the ability to act decisively as threats unfold. Yet many endpoint approaches still rely heavily on manual investigation and response workflows that require human intervention. The result is alert overload, delayed response, increased operational effort, and growing pressure on already-stretched security teams.

Nearly 80% of security breaches involve compromised privileged credentials, according to Forrester. Since privilege abuse is a major attack vector, managing privileged access and the associated attack surface is crucial. In this webinar, we explore how ManageEngine PAM360 and Endpoint Central can catalyse your journey toward achieving privileged access security—all within the unified ManageEngine ecosystem!

Join us for a special Defender Fridays Office Hours session where the LimaCharlie team demonstrates the new Agentic SecOps Workspace (ASW) and explores what's possible when AI agents operate security infrastructure directly. At Defender Fridays, we delve into the dynamic world of information security, exploring its defensive side with seasoned professionals from across the industry. Our aim is simple yet ambitious: to foster a collaborative space where ideas flow freely, experiences are shared, and knowledge expands.