Best Networksecurity Podcasts (2025)

1
Why Ransomware, Credential Theft and Phishing Schemes Persist 39:52

4d ago39:52

39:52

One of the great things about covering industrial cybersecurity is the number of reports, studies and white papers being produced right now to help provide intelligence on threats, research on new tools, and data on leading trends. The tough part is sorting through all this data and, at some point, prioritizing it in order to get the most and best …

1
Insecure Webcam Was All a Ransomware Group Needed 31:53

13d ago31:53

31:53

Endpoint security tools worked, but the hackers worked harder for their payday. While everyone likes to know how someone else might have screwed up and what the fallout looks like, the more import elements of episodes like this one come from the in-depth conversations about new tactics and strategies that are being used by the bad guys, and simulta…

1
IABs, Dark Web Fueling Ransomware Surge 39:12

29d ago39:12

39:12

We talk a lot about the growing complexity of hacking groups and how their tools and tactics continue to evolve. One such evolution is the ongoing specialization that runs rampant throughout the black hat community – especially when it comes to ransomware. The rise of initial access brokers, affiliate programs, spoofing domain creators, dark web co…

1
Manufacturing’s Internal Cyber Struggles 27:48

2M ago27:48

27:48

Breaking down silos while securing the cloud and leveraging secure-by-design advancements. The challenges facing the industrial OT landscape that emanate from external sources are … varied, complex and constantly evolving. Smarter hacking groups, AI-driven phishing schemes and deceptive malware viruses head the list of concerns. And while these fac…

1
Observations of an Ethical Hacking Researcher 36:06

2M ago36:06

36:06

One of the goals of the show is to help you better understand all the threats facing your OT assets, your data and your people. In order to do that, we work to identify those individuals with a feel and in-depth understanding of these threats and the evolving network of threat actors. And I can’t think of anyone better to break down the hacker land…

1
The Evolution of OT Vulnerabilities 37:18

2M ago37:18

37:18

When we talk about the threat landscape for the industrial sector, the eye-catching, headline-grabbing hacking groups with nefarious names typically lead the list of concerns. And while understanding their well-publicized exploits are important, what is often overlooked are all the little things these groups were able to do before dropping malware,…

1
The Legacy of AI in Cybersecurity 27:16

3M ago27:16

27:16

While we’re still in the infancy of 2025, the New Year has proven to have no issues in welcoming in a number of pre-existing challenges – whether we’re talking about cybersecurity or … other social topics. So, in continuing this trend, we tapped into a unique collection of voices to discuss a topic that has, and will continue to be, vital to indust…

1
A Happy Ending to the Latest ICS Hack 29:55

3M ago29:55

29:55

The continued evolution of the CyberAv3ngers hacking group and its IIoT-focused malware. We talk a lot about change on Security Breach. Some of it’s good and obviously some of it makes us want to tear our hair out. Well, this episode, surprisingly, should go easy on the scalp, even though it will focus on the IOCONTROL malware strand recently detec…

1
The Biggest Hacks of 2024 40:31

4M ago40:31

40:31

Winston Churchill famously stated that, “Those who fail to learn from history are doomed to repeat it.” His concerns about applying lessons learned to post WWII foreign policy initiatives rings just as true in the current cybersecurity climate. So, in an effort to ensure we repeat as few of 2024’s mistakes in 2025, we’re going to take a look at som…

1
Looking Back to Move Forward 41:59

5M ago41:59

41:59

As we begin to close out 2024 and look ahead to 2025, I couldn’t resist the urge to revisit some of my favorite guests from the last couple of months. While I’m grateful for everyone we’ve had on the show, and all the support we continue to receive from the industrial cybersecurity community, I felt these comments were worth another listen, with sp…

1
AI Is Exposing Your Most Vulnerable Attack Surface 35:48

5M ago35:48

35:48

According to Fortinet’s 2024 State of Operational Technology and Cybersecurity Report, 43 percent of those surveyed reported a loss of business critical data or intellectual property so far in 2024– a number this is up nearly 10 percent from last year. And we all know what happens with this hijacked data. Per the World Economic Forum’s May 2024 whi…

1
Minimizing Hacks by Focusing on Uptime 39:06

5M ago39:06

39:06

Next to artificial intelligence, one of the biggest buzz terms in industrial cybersecurity right now might be SBOM, or software bill of materials. The term generates equal parts concern and eye roll as those entrusted with enterprise defense look to ensure that there are no embedded vulnerabilities amongst the data platforms they are both sourcing …

1
What Cybersecurity Can Learn from Tom Brady 53:11

5M ago53:11

53:11

We assembled some "nerds from the basement" to cover a key strategy in combatting evolving threats. Today’s episode is going to take on a little different flavor, as we’re going to show you one particular tool that can impact a number of your security planning, training and discovery strategies. While table top exercises are nothing new, we’re goin…

1
Threat Landscape Update 38:47

6M ago38:47

38:47

For this episode, instead of tapping into one source for feedback and updates on industrial cybersecurity, we’re going to look at some of the key insights previous guests have offered on the evolving threat landscape – from increased risks emanating from technological integrations and an uptick in automation, to the more traditional adversaries res…

1
The Little Things That Kill 38:35

6M ago38:35

38:35

While there are plenty of unknowns when it comes to protecting the OT attack surface, there are some things that are undeniably true. We know that the frequency of attacks will continue to increase. We know that it’s not if your ICS will be probed, but when. And we also know that asset and connection visibility is an ongoing challenge due to the im…

1
Phishing Attack Defense 'Not Rocket Science' 22:22

6M ago22:22

22:22

Maybe you’re sick of hearing about phishing schemes and the way hackers are using this strategy to infiltrate your networks, access intellectual data, shut down production, or hold your assets for ransom. If that’s the case, then you’ve made a lot of hackers very happy. And based on Proofpoint’s 2024 State of Phish report, protecting against phishi…

1
Legacy Mindsets Are Helping Hackers Weaponize Networks 42:40

6M ago42:40

42:40

So, my daughters like to give me a hard time about growing old. Said another way, I’m a legacy asset - just like most of the devices many of you observe, manage and secure every day. Your machines are still in place because they work. While the technology around these assets has evolved, their core functionality and value to the production process …

1
Using Force Multipliers to Protect Against Next-Gen Stuxnet 40:13

7M ago40:13

40:13

While the justifications for additional cybersecurity spending is easy to explain, getting buy-in at the C-level can be difficult. However, some recent research might help you win over those controlling the purse strings. SonicWall’s Mid-Year Cyber Threat Report found that their firewalls were under attack 125 percent of the time during a 40-hour w…

1
Never Let a Good Hack Go to Waste 33:29

7M ago33:29

33:29

One of the most common topics we explore here on Security Breach is the ongoing challenge of asset visibility in the OT landscape. It's frustrating because it would seem that the solution starts with basic inventory management approaches, i.e. the first step in developing frameworks and plans for everything from tool selection to attack response. O…

1
Finding Your 'Creative Maliciousness' 39:09

7M ago39:09

39:09

According to Veeam’s 2024 Ransomware Trends Report, cyber victims stated that they were unable to restore 43 percent of whatever data was affected by ransomware attacks. This reaffirms what a number of Security Breach guests have stated about trusting hackers after paying their extortion demands. Another finding shows that 63 percent of ransomware …

1
Getting Past the Whack-A-Mole Approach 36:01

7M ago36:01

36:01

The ongoing theme in industrial cybersecurity centers on two competing dynamics – the desire to expand our implementation of automation and Industry 4.0 technologies with the goal of using more and faster connections, along with the decision-making data each generates to improve the efficiency and quality of production. However, these goals now nee…

1
Inside the Growing Complexity of Ransomware Hacking Groups 32:32

8M ago32:32

32:32

We’re back to discuss an all-too-familiar topic – ransomware. Ironically enough, it seems the topics we describe in this manner become so familiar because we can’t figure out viable, long-term solutions. I think part of the challenge for industrial organizations dealing with ransomware is that we have to divide our energy and resources between prev…

1
Time to 'Rip off the Band-Aid' to Ensure Security 39:43

8M ago39:43

39:43

A smarter, well-funded hacker community means embracing basic, yet daunting cyber challenges. In manufacturing, regardless of your role, avoiding downtime is an obvious priority, and one of the motivating factors driving investments in cybersecurity. In working to mitigate potential DDoS attacks or malware drops, manufacturers are tapping into more…

1
Combating the 20th Century Mafia with a Stronger Human Firewall 46:38

8M ago46:38

46:38

Sophos recently reported that 65 percent of manufacturing and production organizations were hit by ransomware last year, which, unlike other sectors, is an increase. Overall, these attacks have increased by 41 percent for manufacturing since 2020. Additionally, the cybersecurity firm found that 44 percent of computers used in manufacturing have bee…

1
Tearing Down the 'Set It and Forget It' Mindset 42:24

8M ago42:24

42:24

I recently watched an interesting documentary called Turning Point: The Bomb and the Cold War on Netflix. Great watch – I’d highly recommend it. Essentially it positioned nearly every prominent geo-political event since World War II as fallout from the U.S. dropping the nuclear bomb on Japan to end World War II. Similarly, we can look at a number o…

1
Bridging the IT-OT Divide 20:30

9M ago20:30

20:30

When I was a kid, we always looked forward to my dad’s work picnic. He was a tool and dye maker for a leading caster manufacturer that would rent out a local park, make a ton of food and put on various games and activities for the families. One of the highlights of this day was a softball game pitting the office versus the shop. The good-natured sh…

1
'There's No Bulletproof Vest' in Cybersecurity 51:59

9M ago51:59

51:59

An ethical cyber researcher breaks down the 'tsunami of exposed data' he continues to uncover. When it comes to solving industrial cybersecurity's biggest challenges, I think we have to continue to ask questions that simultaneously tackle basic blocking and tackling concerns, as well as those that lead to bad news. Both prevent us from putting our …

1
Are We Over-Connected? 19:51

9M ago19:51

19:51

The landscape of industrial cybersecurity continues to change and evolve, and demands a vigilant monitoring of the next threat, vulnerability or potential soft spot in our defenses. That’s why we continue to produce Security Breach, and, by the way, continue to be so appreciative of the growth and support we’ve received from each of you. That said,…

1
The $25M 'Wake-Up Call' Supply Chain Hack 31:13

9M ago31:13

31:13

According to IBM’s Cost of a Data Breach Report, nearly 20 percent of the organizations surveyed stated that they have experienced a breach stemming from a compromise in their supply chain, or a vulnerability related to it. The average cost of these breaches was estimated at just under $4.5 million. Their data also found that attacks emanating from…

1
The Dollars and Sense of Cybersecurity 40:57

9M ago40:57

40:57

Due to the rise in attacks on manufacturing and critical infrastructure, and the devasting impacts these attacks have on daily lives around the world, the World Economic Form recently unveiled a report entitled Building a Culture of Cyber Resilience in Manufacturing. This initiative not only identified the sector’s primary challenges for developing…

1
There's No 'Plant the Flag' Moment in Cybersecurity 33:38

10M ago33:38

33:38

When looking at industrial cybersecurity, more attention is being paid to how workers are logging in to access critical machinery, software or data. And according to Trustwave Threat Intelligence’s recent Manufacturing Threat Landscape report, 45 percent of attacks experienced by manufacturers stemmed from the bad guys accessing credentials. Whethe…

1
'Nobody Should Get Ransomwared' 38:34

10M ago38:34

38:34

As we’ve discussed numerous times on Security Breach, terms like change, evolution and constant are more than just buzz terms – they’re a simple reality of working in the industrial OT space. Whether we’re discussing threat actors from Stuxnet to Lockbit, tactics from social engineering to double-extortion ransomware, or vulnerability sources rangi…

1
The Protection and Productivity of Zero Trust 43:39

10M ago43:39

43:39

Over the last nearly 100 episodes of Security Breach we’ve discussed a wide range of strategies for protecting the manufacturing enterprise. But perhaps the most polarizing of these has been Zero Trust. While some unwaveringly champion the cause of this approach, others question the ways in which it is typically deployed. Perhaps this dichotomy is …

1
OT's Legacy Tech Challenges 28:44

11M ago28:44

28:44

One of the more common obstacles that we discuss here on Security Breach is how increased connectivity has combined with new Industry 4.0 technologies to constantly expand the OT attack surface. In the midst of all this expansion, it’s easy to either overlook cybersecurity concerns, or put too much trust in the embedded security features of the new…

1
Shutting Down 'Spy Board' Threats 34:52

11M ago34:52

34:52

Those of you with a military or law enforcement connection are probably, and unfortunately, familiar with the term collateral damage. While this phrase has a legacy in these environments, it’s also become an unwelcome addition to the realm of cybersecurity. Examples of this dynamic can be found in a number of hacktivist attacks that targeted infras…

1
The OT Threat Landscape's Infectious Nature 44:06

11M ago44:06

44:06

Viewing hacks as diseases to address evolving threats, vulnerabilities and tools like AI. Like many of you, I recently dove into Verizon’s 2024 Data Breach Investigations Report (DBIR). And while there’s a plethora of data housed in the report that could fuel conversations on a multitude of topics, I chose the following two pieces of information: W…

1
Knowing How to Arm Yourself for Battle 37:12

11M ago37:12

37:12

It starts with a dedication to enhanced visibility. One of the big conversations regarding OT security revolves around the use of tools. Some have too many, others not enough and everyone is searching for the funds to mange and obtain the right ones for a constantly evolving threat landscape. The key to understanding which tools are right for you a…

1
Supply Chains Are a Hacker's Gateway 33:48

12M ago33:48

33:48

Many attacks on manufacturers are just the first step in going after even bigger targets. One of the inescapable truths about the industrial sector is that it is usually the ultimate proving ground for product performance. When we look at some of the technologies that have created seismic social shifts, tools like operational software, wireless con…

1
The Hacks! 16:04

12M ago16:04

16:04

In this episode, we dive into some of the most notorious attacks to hit manufacturing over the last six months. In addition to speaking with cybersecurity experts from around the world for this podcast, I’ve also been able to do a fair amount of reporting on our websites regarding several high-profile industrial attacks. So, I felt like it could be…

1
Security Breach: Predictions That Landed 31:58

12M ago31:58

31:58

A look back at Security Breach guest's most accurate and timely industrial cybersecurity predictions. As we near our 100th episode of Security Beach, I thought it would be a good time to take a look back at some of our guest’s predictions from the previous 12 months. If you want to check out the full episodes from any of these previous guests, you …

1
DMZs, Alarm Floods and Prepping for 'What If?' 48:21

1y ago48:21

48:21

The new factors impacting a growing attack surface, and how to evolve your cyber risk strategies. The origins of what we talk about here on Security Breach can go back to any number of transformational events, but the reality is that all of them contributed an individual component to the unique mosaic that is the legacy of industrial cybersecurity.…

1
Weaponizing Secure-By-Design 42:55

1y ago42:55

42:55

How a greater focus on new and legacy OT connections could alter the cybersecurity battlefield. Everything old … is new again. While that might seem like a natural lead-in for discussing hacker tactics, that same mantra rings true when discussing OT technology. Mordor Intelligence recently reported that U.S. manufacturing spent over $307 billion on…

1
The Impacts of Over-Connectivity and Mobile Defeatism 49:14

1y ago49:14

49:14

The good, the bad and the ugly of mobile device security in the expanding OT attack landscape. Included in the challenges associated with securing an ever-expanding OT attack surface is the role played by the increasing use of mobile devices – at both the enterprise and individual level. In fact, according to a recent report from Imprivata, only 46…

1
Hackers Learn How to Attack You, From You 35:06

1y ago35:06

35:06

It's not always about the ransom, data theft or denial of service. Many cheered with the recent crackdowns on groups like LockBit, and rightfully so. However, the harsh reality is that most of these victories are short-lived. For example, after law enforcement seized control of multiple LockBit websites and stolen data, the group was back to runnin…

1
The Largest Attack Surface - People 44:55

1y ago44:55

44:55

How we're failing to properly support and train our most important cybersecurity asset. According to Nozomi Networks February 2024 OT-IoT Security Report, manufacturing was exposed to more common vulnerabilities and exposures, or CVEs, than any other sector - realizing a 230 percent year-over-year increase in this area. Addressing even a fraction o…

1
Avoiding a 'Chicken Little' Cybersecurity Strategy 39:55

1y ago39:55

39:55

Threat intelligence is important, but why manufacturers should focus on risk factors first. When it comes to the industrial sector’s ongoing cybersecurity challenges, we all know that there's more to defend, but what is most concerning is that we’re not responding quickly enough to the expanding threat landscape. In case you needed proof, here are …

1
Cybersecurity's Greatest Weapon - Awareness 37:27

1y ago37:27

37:27

The sector's (forced) cyber awakening needs to focus on making it harder to be a hacker. Regardless of how complex the attack, how organized the hacker, or how advanced the tools and tactics, security solutions usually lie in very fundamental practices. So, while you might think you already know enough about segmentation strategies, framework devel…

1
Chasing Cyber Ghosts 29:05

1y ago29:05

29:05

How thinking like a hacker can lead to better cybersecurity ROI and avoid the dreaded "hope" strategy. Regardless of what you might hear from some, ransomware in the industrial sector is at an all-time high in terms of frequency and cost. Zero day and day one vulnerabilities are being discovered at a historic level and patching continues to be a ch…

1
Missteps Creating 'An Internal Collection of Hackers' 40:31

1y ago40:31

40:31

Creating an OT vision, and why hackers are "like water." With hackers repeatedly demonstrating that that they play no favorites in terms of the sector of manufacturing, its location, or the size of the enterprise, detection and response strategies can be universally dissected in addressing ransomware, phishing or any number of social engineering ap…

1
Leveraging Threat Intelligence Data 38:27

1y ago38:27

38:27

Hacker insight and vulnerability updates are great, but that's only half the battle. An ever-expanding attack surface has created a number of complexities when it comes to combining the benefits of new automation technologies with the challenges of securing the OT environment and supply chain. This led Cybersixgill to predict that in 2024, more com…

Podcasts Worth a Listen

Networksecurity Podcasts

Podcasts Worth a Listen