Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Episode 17 - Home Labs and Tinted Windows: Why Network Visibility Starts at Your Front Door

In this episode, host Richard Bejtlich and guest Ricky Lin explore the practical—and often personal—side of network defense: monitoring the home network. Ricky shares how he uses Corelight and Zeek to track everything from his children's YouTube habits to the constant chatter of IoT devices like Tesla vehicles and smart appliances. They delve into the "tinted windows" analogy to explain why visibility into encrypted traffic is still possible through network metadata, even when the contents are hidden.

20,000 Instagram accounts hacked with AI tool abuse

A bug in Meta's AI-powered account recovery tool compromised 20,000 Instagram accounts. In this week's Intel Chat, Chris and Matt discuss how the flaw allowed attackers to bypass email verification. Meta patched the tool after discovering the abuse on May 31st. Matt's takeaway: tools given broad API access become attractive targets. Meta should have caught this in basic testing, yet it took an adversary to expose the weakness.

How to Setup AI Rules, Skills, Hooks and MCPs

In this video, we break down how to properly set up and use AI extension points - specifically MCP (Model Context Protocol) servers, Rules, Skills, and Hooks - to supercharge your development workflow. Using practical, security-flavored examples with Claude Code and Snyk, you'll learn how to configure a local project environment that automatically catches vulnerabilities before they ever hit your codebase. Whether you use the Claude CLI, VS Code extensions, or alternate AI ecosystems like Cursor or Gemini, you can use these exact steps as a blueprint to automate any workflow in your project.

Strategic Investment: Navigating Cybersecurity in an Autonomous Era

Unlock the secrets to strategic investment in cybersecurity that every business leader needs to know. Avoid the pitfalls of over-investment and instead, focus on understanding your cybersecurity architecture, processes, and unique risks. Discover how a solid foundation can bolster your security architecture and enhance business operations. Protect your critical assets and ensure real-time visibility across your network.

VMware ESXi 8.0 System Storage Changes Explained | ESX-OSData, Boot Partitions & Upgrade Guide

VMware ESXi 8.0 introduces significant changes to its system storage architecture, making storage management more flexible, scalable, and efficient. In this video, we explore the new ESXi 8.0 system storage layout, including the System Boot, Boot-bank 0, Boot-bank 1, and ESX-OSData partitions. Learn how the redesigned storage structure impacts performance, storage efficiency, virtual environment management, and upgrade planning. We also cover key storage behavior changes, ESX-OSData partition sizing, and important considerations for administrators upgrading to ESXi 8.0.

Export Code42 cases to Jira and email automatically

If your security team is managing insider risk or data loss investigations in Code42, keeping Jira and your inbox in sync is tedious. This story from the Tines library solves that by automating the full export process end-to-end. In under five minutes, you'll see how Tines lists all open Code42 cases, deduplicates them to avoid repeat alerts, downloads each full case export as a zip file, creates a pre-populated Jira ticket with key case details, attaches the export to that ticket, and emails it directly to the relevant recipient.