Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Transparency isn’t optional—it’s foundational to cyber resilience. In this clip from the Exposed: Cyber Risk in the Financial Sector and its Supply Chain webinar, Roland Cloutier, Global CSO and Digital Business Enablement Executive (TikTok, ADP, EMC), explains why visibility across the financial ecosystem is essential for managing third-party risk and preventing cascading cyber attacks.

Cyber warfare isn’t coming—it’s already here. This conversation on The Cyber Resilience Brief dives into the Fifth Domain of Warfare—and why nation-state cyber activity should matter to every organization. From Russia’s chaos-driven campaigns to China’s long-game persistence, Iran’s retaliatory attacks, and North Korea’s financial theft—your network isn’t a bystander.

Can OpenAI’s GPT 5.2 actually build a production-ready, secure application from a single prompt? In this video, we put the latest model to the test by asking it to build a full-stack Node.js note-taking app. We evaluate its dependency choices, dive into a surprising fix for a long-standing CSRF vulnerability, and run a full security audit using Snyk. Is this the new gold standard for AI coding models?

This week on the podcast, we discuss the recently disclosed React2Shell vulnerability affecting a wide array of web applications. Before that, we review a new phishing campaign that that uses a newly-coined ConsentFix technique before discussing a security misstep from HomeDepot.

Title: 2025 Ends With a Bang This week on the podcast, we cover a wave of attacks against network edge equipment and internet-exposed systems including an update on the recently patched Firebox 0-Day. After that, we cover two stories on browser extensions siphoning off data and making unwanted modifications to victim’s web browsing activity.

This episode unpacks the accelerating threat of phishing, account takeover (ATO), and digital impersonation in the age of AI. Gideon Hazam, Co-Founder at Memcyco, explains why brand impersonation is still treated as “lower urgency” by many organizations, how that blind spot enables real-world fraud, and what preemptive, real-time defense looks like when attackers operate at machine speed.

AI isn’t creating new security problems, it’s exposing existing ones at scale. GitGuardian saw 24M secrets leaked on public GitHub last year (+25%), and private repos are far more likely to contain secrets because people get careless when they feel safe. AI also enables more non-developers to ship apps without security training and generates oversized PRs that can’t be realistically reviewed, increasing leak risk. Attackers increasingly don’t “hack”, they use leaked credentials to log in and blend in like normal users, making traditional incident response less effective.

Cyberattacks are evolving fast; powered by AI, deepfakes, ransomware, phishing, and growing software supply chain risk. So how prepared is your organization? In this webcast, we breakdown key findings from the 2025 LevelBlue Futures Report (in partnership with FT Longitude). The report is based on a global survey of 1,500 C-suite and senior executives across 16 countries and seven industries, including healthcare, financial services, energy, and manufacturing.