Security Community

Microsoft’s Zero-Day Disclosure Backlash: Did Legal Threats Go Too Far?

Microsoft Threatens Legal Action Over Exploit Disclosure

| | BitLocker, bug bounty, Cybersecurity, cybersecurity law, Digital Privacy, Episodes, full disclosure, GitHub, Microsoft security, MSRC, Podcast, Privacy, Proof-Of-Concept Exploit, responsible disclosure, Security Community, security researchers, surveillance, Vendor Accountability, Vulnerability Disclosure, Weekly Edition, zero-day vulnerabilities
Microsoft’s response to a researcher publicly disclosing proof-of-concept exploit code has reignited an old debate in security: where does responsible disclosure end and reckless disclosure begin? Tom and Scott discuss the Nightmare ...
Shared Security Podcast
Offensive AI Is Here. Is the Industry Ready? | Andrew Wilson on the State of Offensive Security

The Real State of Offensive Security: AI, Penetration Testing & The Road Ahead with Andrew Wilson

| | Adversarial Emulation, AI Research, Andrew Wilson, Artificial Intelligence, Bishop Fox, CactusCon, Compliance Testing, Controls Validation, Cybersecurity, Digital Privacy, Episodes, Future Of Security, Guadalajara, Hacker Cognition, Mexico Tech Industry, Next Generation Hackers, Offensive Security, Penetration Testing, PhD Research, Podcast, Privacy, Red Teaming, Security Community, Security Conferences, surveillance, Talent Development, Weekly Edition
Tom Eston interviews offensive AI researcher and PhD candidate Andrew Wilson, a former Bishop Fox partner who helped grow the firm from under 20 people to nearly 500, built award-winning AI solutions ...
Shared Security Podcast
AI-Powered Cyber Espionage Campaign: What You Need to Know #podcast

AI Agent Does the Hacking: First Documented AI-Orchestrated Cyber Espionage

| | AI, AI guardrails, AI-Orchestrated Cyber Espionage, Anthropic, Anthropic Disclosure, china, Claude Code Manipulation, Cyber Security, Cybersecurity, Data Privacy, Digital Privacy, Episodes, Human In The Loop, Information Security, Infosec, Penetration Testing, Podcast, Podcasts, Privacy, risk management, security, Security Community, state-sponsored attacks, technology, Weekly Edition
In this episode, we discuss the first reported AI-driven cyber espionage campaign, as disclosed by Anthropic. In September 2025, a state-sponsored Chinese actor manipulated the Claude Code tool to target 30 global ...
Shared Security Podcast
OWASP Top 10 for 2025: What's New and Why It Matters #podcast

OWASP Top 10 for 2025: What’s New and Why It Matters

| | Application Security, bug bounty, Compliance, Cyber Security, Cybersecurity, Data Privacy, Digital Privacy, Episodes, Industry Impact, Information Security, Infosec, Logging And Alerting, owasp, OWASP Top 10, pen testing, Podcast, Podcasts, Privacy, Release Candidate, secure design, security, Security Community, security standards, software-vulnerabilities, Supply chain failures, technology, Vulnerability Categories, Weekly Edition
In this episode, we discuss the newly released OWASP Top 10 for 2025. Join hosts Tom Eston, Scott Wright, and Kevin Johnson as they explore the changes, the continuity, and the significance ...
Shared Security Podcast