Episodes
-
Follow the Security Intelligence podcast on your preferred platform → https://www.ibm.com/think/podcasts/security-intelligence
Someone finally cracked the Xbox One after 13 years. Here’s why security pros should care.
On this episode of Security Intelligence, panelists Ian Molloy, Seth Glasgow and Kimmie Farrington discuss the Xbox One hack presented at RE//verse 2026. More than just a neat story of one hacker’s ingenuity, there are some important takeaways for practitioners here.
But before that, we get into promptware, a new model for understanding attacks on LLMs that goes beyond the basics of prompt injections. Formulated by a handful of prominent cybersecurity researchers, including Bruce Schneier, promptware urges defenders to start thinking about the full AI attack kill chain, not just the front door.
Then we dive into a new analysis of cloud attack trends from IBM X-Force's Omari Jones, which finds that cybercriminals are targeting cloud ecosystems rather than cloud infrastructure. How do we need to shift our own mindsets to counter this?
Meanwhile, Google Threat Intelligence Group and Coveware find ransomware gangs increasingly ditching their flashy external tools in favor of PowerShell and other built-in system utilities—making detection significantly harder.
And Chuck Everette's Dark Reading op-ed raises a question that doesn't get enough airtime: With everyone focused on cutting-edge AI tech, what about the downright ancient OT systems and PLCs that underpin large swaths of American critical infrastructure?
All that and more on Security Intelligence.
In this episode:
00:00 – Introduction
1:01 -- From prompt injection to promptware
11:15 -- Cloud security trends 2026
19:59 -- Ransomware attackers live off the land
28:53 -- OT security: cybersecurity’s “rusting edge”
34:41 -- The Xbox One hack
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity.
Cloud attacks are evolving: What 2025 trends mean for defenders in 2026 → https://www.ibm.com/think/x-force/cloud-attacks-evolving-what-2025-trends-mean-defenders-2026 -
LiteLLM is a nifty little Python library that gives you access to about 100 different AI services through one API. It gets an estimated 3.4 million downloads a day. And last week, it was turned into a Trojan horse, distributing infostealers to hundreds of thousands of devices. (At least, that’s what TeamPCP says—the hackers behind the LiteLLM breach and a slew of other high-profile software supply chain attacks in recent weeks.)
Quote Andrej Karpathy: This is “basically the scariest thing imaginable in modern software.”
On this episode of Security Intelligence, Suja Viswesan, Dave McGinnis and Jeff Crume help us break down the LiteLLM breach and the broader campaign TeamPCP is waging. We’re also joined by HashiCorp Field CTO Jake Lundberg in the first segment for a discussion of how organizations are trying—with varying degrees of success—to tackle the agentic AI problem. AI agents are identities—but identities our existing frameworks weren’t built to house. Simply porting existing human and non-human identity management practices onto them won’t cut it. But the question remains: What do we need instead?
All that and more on Security Intelligence.
00:00 – Intro1:13 – Who will fix AI agent security? 21:17 – RSAC 2026 Recap 29:31 – 2026’s most dangerous cyberattacks 40:45 – The LiteLLM breachThe opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity.
-
Missing episodes?
-
Do you think you could get scammed by a chatbot?
Neither did IBM Chief People Hacker Stephanie Carruthers—until she went toe to toe with one.
In this episode of Security Intelligence, we take you inside the John Henry Competition at DEF CON 2024, where Carruthers competed with an AI-powered vishing bot to see who was the better con artist.
The results just might surprise you.
Along the way, we explore how generative AI is transforming social engineering, why vishing and voice cloning attacks are surging and what it all means for defenders who’ve spent years training people to spot phishing emails—but not phone calls that sound exactly like their boss.
All that and more—on Security Intelligence.
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity. -
Explore the podcast → https://www.ibm.com/think/podcasts/security-intelligence
AI-generated malware has officially arrived. But does it matter all that much?
This week on Security Intelligence, Suja Viswesan, Dave Bales and Dustin Heywood join us to discuss VoidLink, which might just be the first thoroughly documented case of a malware framework generated with significant AI help. The question is: What really changes when malware is no longer the handiwork of human hackers?
We also explore the World Economic Forum’s Global Cybersecurity Outlook 2026, where CEOs and CISOs are split on what they fear most: cyber fraud or ransomware? Then we cover the debate over data protection vs. service resilience, and we dig into the takedown of RedVDS, a major player in the cybercrime-as-a-service supply chain.
Finally, we reflect on the 40th anniversary of “The Hacker Manifesto,” asking what’s changed—and what hasn’t—in hacker culture.
All that and more on Security Intelligence
00:00 -- Introduction
01:40 -- CEOs vs. CISOs: 2026 cyberthreats
11:10 -- VoidLink: Documented AI malware
19:28 -- Are we too worried about our data?
27:28 -- Cybercrime supply chains
34:05 -- 40 years of hacking culture
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity.
Learn more about cybersecurity → https://www.ibm.com/think/podcasts/techsplainers#tabs-fw-44e285b2cc-item-df35f5fbab-tab -
AI has changed the speed of cyberattacks. But it hasn’t changed the most important variable: people.
In this episode of Security Intelligence, panelists Jake Paulson, Stephanie Carruthers and Matt Cerny dig into how AI-driven threats—phishing, deepfakes and disinformation—are reshaping the cyberthreat landscape. Organizations, too, are adopting AI tools to help detect these attacks.
But even in the era of AI, people are ultimately our first and last lines of defense. And all too often, we don’t give them what they need to succeed. How do we help human beings adapt to the increased speed, scale and impact of AI threats?
The answer, our panel argues, isn’t more checkbox training or prettier slides. It’s realistic, immersive training that builds muscle memory, confidence under stress and decision-making skills for moments when things don’t go according to plan.
We talk about:
00:00 -- Introduction
01:48 -- AI phishing, deepfakes and modern social engineering tactics
09:19 -- Why humans are still the primary attack surface—and the strongest defense
17:03 -- The difference between tabletop exercises and cyber range training
22:00 -- How immersive simulations prepare teams for real incident response pressure
42:00 -- Why preparedness matters more than awareness in the age of AI attacks
Because when AI accelerates attacks, training determines the outcome.
All that and more on Security Intelligence.
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity. -
Explore the podcast → https://www.ibm.com/think/podcasts/security-intelligence
Between LockBit, RansomHub and BlackSuit, law enforcement racked up some big wins against ransomware gangs last year. So why aren’t the attacks letting up?
In this episode of Security Intelligence, panelists JR Rao, Jeff Crume and Michelle Alavarez unpack what the state of ransomware in 2025 really looked like, and why things haven’t slowed things down as much as we might hope.
Then, we turn to identity security and cloud breaches as we consider the striking case of Zestix, the lone threat actor linked to breaches at 50 global enterprises. And all he needed were some passwords.
From there, we look at what the future of hacking might hold. Palo Alto’s Wendi Whitmore issued a warning about how AI agents could become devastating insider threats, and security researchers at GEEKCon demonstrated how AI-powered robots can be hijacked using voice commands alone, turning prompt injection into a physical-world security risk.
It’s a niche scenario today. But is it also a preview of what happens when AI, robotics and operational technology collide?
Listen to Security Intelligence to find out.
00:00 -- Introduction
01:05 -- Ransomware in 2026
09:26 -- Zestix linked to 50 hacks
18:42 -- AI agents as insider threats
31:20 -- Hacking humanoid robots
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity.
Subscribe to the IBM Think newsletter → https://www.ibm.com/account/reg/us-en/signup?formid=news-urx-52120 -
Say your cloud storage service gets hacked. Say the attackers broke in by exploiting a vulnerability in an open-source library your organization used to build the service. Who owns that vulnerability?
Microsoft is trying to clear some of the smog obscuring the software supply chain by expanding its bug bounty program to include some third-party code that affects it services. In this episode of Security Intelligence, panelists Jeff Crume, Nick Bradley and Claire Nuñez discuss what that move means for cybersecurity responsibility models going forward.
We also analyze how a three-year-old LastPass breach is still giving cybercriminals new credentials to steal. Turns out “harvest now, decrypt later” isn’t just a quantum concern.
Plus: OpenAI fights prompt injections with an automated, AI-powered red team, hackers have a new tool to make ClickFix attacks even easier and we share the New Year’s Resolutions we hope organizations will make in 2026.
All that and more on Security Intelligence.
00:00 – Introduction
1:11 -- Cybersecurity resolutions
6:51 -- Microsoft’s new bug bounties
14:00 -- The LastPass breach’s long tail
26:07 -- Automated red teaming
33:22 -- ClickFix-as-a-service
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity. -
Why does it cost so much more to get hacked in the United States than anywhere else in the world?
In this special bonus episode of Security Intelligence, we sit down with Michelle Alvarez, Manager of Strategic Threat Analysis at IBM X-Force, for a deep dive into IBM’s 2025 Cost of a Data Breach report—and one of its most surprising findings: global breach costs are falling, but US breach costs just hit a record high.
What’s driving the gap?
In this episode, we unpack:
Why faster detection and containment are lowering breach costs globally
Why shadow AI is quietly increasing breach risk and driving up response costs
Why regulatory fines, global operations and organizational scale hit US companies especially hard
And how supply chain breaches, cloud complexity and shadow IT amplify the damage
We also explore a critical inflection point ahead: AI isn’t a major attack target yet—but once adoption crosses key market concentration thresholds, attackers will follow the ROI.
All that and more on Security Intelligence
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity. -
Explore the podcast → https://www.ibm.com/think/podcasts/security-intelligence
In this special year-end episode of Security Intelligence, we reflect on 2025, a year of new attack methods (ClickFix), new vulnerabilities (vibecoding) and new worries on the horizon (shadow agents).
From hijacked AI agents to massive supply chain breaches, 2025 forced security leaders to confront a sobering reality: trust might just be our biggest attack surface.
Join hosts Matt Kosinski and Patrick Austin for a jam-packed look back at the biggest cybersecurity trends and cyberattacks of 2025, the lessons we can learn from them and what the road ahead looks like. Featuring:
00:00 -- Introduction
4:10 -- AI and data security with Michelle Alvarez and Jeff Crume
22:42 – Biggest cyberattacks of 2025 with Dave Bales and Nick Bradley
38:18 – Major lessons, innovations and failures of cybersecurity in 2025 with Suja Viswesan and Sridhar Muppidi
All that and more on Security Intelligence.
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity.
Learn more about cybersecurity → https://www.ibm.com/think/security -
Explore the podcast → https://www.ibm.com/think/podcasts/security-intelligence
AI browsers are neat—but are they more trouble than they’re worth?
In this episode of Security Intelligence, Austin Zeizel, Evelyn Anderson and Ryan Anschutz discuss Gartner’s recent advisory warning organizations to ban AI browsers from the workplace for the time being. Is there anything we can do to make them safe enough to use?
And that leads to a broader conversation about the relationship between AI model providers and the cybersecurity community. In the wake of some high-profile attacks using AI models—like the spy ring Anthropic busted—cybersecurity pros are split on whether AI vendors are pulling their weight in threat intel circles. This one has it all: spam bombing, social engineering and malicious virtual machines.
All that and more on Security Intelligence.
00:00 – Introduction
01:14 -- Gartner: No AI browsers at work
13:38 -- Should AI vendors share threat intel?
23:11 -- MITRE’s top 25 most dangerous software flaws
33:15 -- Are social logins safe?
41:54 -- Bring-your-own-VM attacks
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity.
Learn more about cybersecurity → https://www.ibm.com/think/security -
Explore the podcast → https://www.ibm.com/think/podcasts/security-intelligence
Just how big a deal is React2Shell? Depending on who you ask, it’s either a Log4Shell-level event or just another average, everyday application security vulnerability. Patch and move on.
This week, on Security Intelligence, panelists Sridhar Muppidi, Claire Nuñez and Ian Molloy weigh in on the contentious debate React2Shell has sparked. However it shakes out, one thing is for sure: The response to this vulnerability has been anything but typical.
We also dive into:
13:01 -- Whether malicious LLMs like WormGPT live up to the hype
23:40 -- How hackers can lock you out of your Gmail account by changing your age
34:09 -- What happens when two different threat actors attack you at the same time
42:37 -- Why cybersecurity pros should care about solar radiation grounding 6,000 flights
All that and more on Security Intelligence.
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity.
Subscribe for AI and security updates → https://www.ibm.com/account/reg/us-en/signup?formid=news-urx-52120 -
One of the most common tips for avoiding online scams is to only shop at reputable retailers. But what happens when those very retailers are turned into social engineering vectors?
In this week's episode of Security Intelligence, host Matt Kosinski and panelists Bryan Clark, Michelle Alvarez and Dave Bales talk about the streaming devices that promise to let you watch all your favorite shows for free—so long as you don’t mind turning your house into a botnet, that is. And to make matters worse, they’re often sold through legitimate online marketplaces.
We also cover:
The Shai-Hulud worm is back and wreaking havoc on the software supply chain
Developers leaking secrets and PII to unsecured, publicly available dev tools
What the Gainsight data breach teaches us about cyberattack timelines
How to jailbreak an AI model with the power of poetry
00:00 – Introduction
1:34 - Shai-Hulud returns
10:50 - Developers can’t keep a secret
16:17 - Gainsight data breach hits 200 companies
22:39 - Is your house a botnet?
35:35 - Malicious poems break AI guardrails
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity. -
Being a malware reverse engineer isn’t always glamorous work. You spend a lot of time digging through junk emails.
But when you find something in there—well, that’s a whole different story.
On this episode of Security Intelligence, X-Force Malware Reverse Engineer Raymond Joseph Alfonso tells us about the time he discovered a curious new malware loader in the honeypot. And that leads to a bigger conversation about how hackers hide malicious code from view—and some of the new techniques they’re cooking up to stay hidden.
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity.
Learn more about QuirkyLoader → https://www.ibm.com/think/x-force/ibm-x-force-threat-analysis-quirkyloader -
Do you think you’re too smart to fall for a Black Friday scam? Generative AI might knock you down a few pegs. On this episode of Security Intelligence, host Matt Kosinski and panelists Suja Viswesan, Dave McGinnis and Nick Bradley discuss how threat actors are using AI to turbocharge holiday scam season. Plus:
IBM X-Force makes malware research tools public
The dark web job market is thriving
AI fraud schemes are getting quite elaborate
And the story of an enterprising insider threat who tried to turn his employer’s wind turbines into cryptojacking machines. Spoiler: He got caught.
00:00 – Introduction
02:45 – Holiday scam season
13:37 – X-Force malware research tools
19:47 – Dark web jobs report
24:41 – Factory finds an AI fraud ring
31:48 – Cryptojacking wind turbines
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity. -
Explore the podcast → https://www.ibm.com/think/podcasts/security-intelligence
Anthropic says it disrupted a nearly fully autonomous espionage campaign carried out by AI agents. But some cybersecurity pros are skeptical of the framing.
On the latest episode of Security Intelligence, host Matt Kosinski is joined by Ryan Anschutz, Evelyn Anderson, Seth Glasgow and Mixture of Experts podcast fixture Chris Hay to dig into Anthropic’s report and the range of responses to it. Plus: The newest OWASP Top 10 is here, the ransomware landscape is cracking up and does cyber insurance just encourage hackers? All that and more on Security Intelligence.
00:00 -- Introduction
01:29 -- Anthropic’s AI spy ring bust
15:44 -- OWASP Top 10 2025
24:41 -- Small ransomware gangs
33:45 -- Is cyber insurance worth it?
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity.
Subscribe for AI and security updates → https://www.ibm.com/account/reg/us-en/signup?formid=news-urx-52120 -
Explore the podcast → https://www.ibm.com/think/podcasts/security-intelligence
Have we lost the plot when it comes to AI malware?
This week, host Matt Kosinski and panelists Claire Nunez, Austin Zeizel and Dave Bales discuss the growing trend of cybersecurity pros pushing back on AI malware “research.” Is it all puffery? Genuine threat? Some secret third thing?
Plus: How hackers are stealing real-world cargo, time-delayed malware, the Louvre’s weak password and why don't more people patch their OT systems?
00:00 – Introduction
01:15 – The IT-OT gap
11:18 – Digital cargo thieves
20:12 – Time-delayed logic bombs
25:53 – AI malware vs. AI slop
33:47 – The Louvre’s password
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity.
Learn more about AI malware → https://www.ibm.com/think/insights/defend-against-ai-malware -
What do AI agents, the stock market and behavior-based threat detection tools have in common? You’ll need to listen to this week’s episode of Security Intelligence to find out.
Join host Matt Kosinski and panelists Sridhar Muppidi and Cris Thomas for a jam-packed conversation, including new ways to build malicious AI agents, a malware strain that types like a person, a social engineering scheme that manipulates stock prices and a banner year for bug bounties.
Plus: When it comes to new tech, why does governance always lag so far behind implementation?
All that and more on Security Intelligence.
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity. -
Is a safe AI browser even possible?
On this week’s super spooky Halloween episode of Security Intelligence, host Matt Kosinski and panelists Suja Viswesan, J.R. Rao and Dave McGinnis discuss the terrifying security risks of ChatGPT Atlas. Plus: The ghost network spreading malware on YouTube, an invisible worm that drops a “Zombi” payload and AWS’s brush with the grave. (Notice a theme?)
And stick around for a sneak peek of a very special episode at the end.
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity. -
What does it take to trick an AI agent?
Not a whole lot, it turns out.
This week, panelists Nick Bradley, Claire Nuñez and Jeff Crume join host Matt Kosinski to discuss a couple of new methods for hijacking AI agents and breaking their guardrails. We also talk recent evolutions in DDoS attack trends, the legacy of zero trust and some glaring security flaws in an extremely popular AI training app.
Plus: We ring in Cybersecurity Awareness Month with the traditional airing of grievances.
00:00 – Introduction
01:38 – Tricking AI agents
15:18 – The DDoS comeback
26:03 – 15 years of zero trust
36:02 – Neon exposes user calls
44:34 – Cybersecurity myths
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity. -
Subscribe to the IBM Think newsletter: https://www.ibm.com/account/reg/us-en/signup?formid=news-urx-52120
An AI security CEO thinks we’re six months away from an “AI vulnerability cataclysm.” Is this a legitimate threat, or just fear-mongering? On this week’s episode, host Matt Kosinski and panelists Cris Thomas, Suja Viswesan and Troy Bettencourt debate whether we're headed straight for an AI security disaster. We also react to reports on Scattered Spider’s return (surprise!), a potential new strain of the devastating Petya ransomware and a survey of common cloud misconfigurations. Plus: Hot takes on dumb cybersecurity rules. All this and more, on Security Intelligence.
00:00 – Introduction
01:02 – The AI apocalypse
12:53 – Scattered Spider’s back
23:41 – Misconfiguration risks
32:35 – What is HybridPetya?
42:46 – Dumb cybersecurity rules
The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity.
Follow the Security Intelligence podcast on your preferred platform: https://www.ibm.com/think/podcasts/security-intelligence - Show more
