#cybersecurity
49 episodes
#3216: EFF's 36-Year Fight for Digital Rights
How the Electronic Frontier Foundation has fought for internet freedom since 1990 — from the Crypto Wars to border phone searches.
#2834: The Deep Ocean Trench of Authentication
PIN + smart card + biometric + behavioral checks. The real security stack behind federal authentication.
#2827: Why People Still Pay for SSL Certificates
Free DV certificates are everywhere, yet paid SSL still thrives. Here’s what commercial CAs actually provide that free ones don’t.
#2698: How Hackers Hide C2 Servers in Plain Sight
Bulletproof hosts, hijacked routers, and Discord channels — how command and control infrastructure stays up despite takedown attempts.
#2696: How Pegasus Silently Hijacks Your Phone's Microphone
How NSO's Pegasus achieves silent mic access on Android through zero-click exploits, kernel privilege escalation, and DMA buffer reading.
#2508: Why CORS Doesn't Protect Your Server
Why browsers block cross-origin requests, how CORS actually works, and the common pitfalls that trip up developers.
#2500: What Actually Counts as Hacking?
The CFAA, web scraping, and the messy line between curious URL-poking and federal crime.
#2481: How to Ask Cloud Vendors About Security (Without Sounding Clueless)
What to ask cloud vendors about security practices — and the technical red flags that actually matter.
#2391: When Anti-Bot Defenses Break Accessibility
How browser automation hits a wall with Israel's strict geo-restrictions and anti-bot measures—and what practical workarounds exist.
#2383: The Blame Gap: Public Anger vs. Breach Reality
How much blame do companies deserve for data breaches? The answer isn't as simple as you think.
#2382: How Five Eyes Intel Sharing Really Works
Behind the headlines of global cyber takedowns—how Five Eyes allies share signals intelligence in practice, from WWII roots to modern ops.
#2372: Choosing the Right Sandbox for Your Threat Model
Explore the tools and methods for creating secure, isolated environments to test malware, browse privately, and protect sensitive systems.
#2371: The Graph That Thinks: From Data Dots to Human Judgment
Discover how tools like Maltego and Spiderfoot transform single data points into intricate webs of connections, bridging digital and physical inves...
#2226: When Quantum Breaks Everything
Quantum computers will shatter RSA and elliptic-curve encryption—but the real danger is data being stolen and stored right now, waiting to be decry...
#2104: The Envelope Problem: Why Your VPN Isn't Enough
A VPN isn't magic. Learn how DNS and SNI leaks expose your browsing, and what encrypted DNS and ECH actually do to fix it.
#2103: AI Firewalls: Spotting Bombs on an Encrypted Conveyor Belt
With 95% of web traffic encrypted, firewalls can't read packets. Here's how AI analyzes metadata to detect threats without decryption.
#2102: Why Don't You Notice AI Security Delays?
Multi-layer security checks add latency, but modern CLIs hide it under 100ms using parallelization and speculation.
#2098: The Invisible War for the Radio Spectrum
Modern wars are won by controlling invisible waves, not just physical ground. Discover how electronic and cyber warfare merge to rewrite reality.
#2078: SITREP Flash; 7 Apr 02:50 (23:50 UTC)
U.S. sets a midnight deadline for Iran to leave the Strait of Hormuz as B-21 bombers and carriers move into position.
#2059: When Your AI Agent Runs Stale Code
npx is silently running old versions of your AI tools. Here's why your updates vanish into a cache black hole.
#1908: The Web's New Bouncer: When to Block AI Bots
AI bots are crawling the web like a bank heist. Are Cloudflare's new controls protecting your content, or just helping Google?
#1905: How VCs Verify AI Startups Without Stealing Code
From the "No-NDA Paradox" to AWS bill forensics, here’s how investors separate real AI from Raspberry Pis in fancy cases.
#1887: The Lone Wolf Is a Myth
The Las Vegas 2025 incident wasn't a lone wolf—it was the terrifying new face of digital radicalization.
#1872: The Pinky Promise That Broke Email
SMTP is broken. DMARC is the fix. Learn why your emails might vanish after April 2026 and how to stop domain spoofing.
#1824: Why Governments Are Building Bunkers for AI
Public clouds can’t handle the security or scale of classified AI. Governments are retreating to fortified bunkers.
#1813: Why Hard Tech Is Moving to Jerusalem
Jerusalem's tech sector grew 40% in 2024-25, outpacing Tel Aviv. Discover why this ancient city is now Israel's hub for AI, biotech, and cybersecur...
#1785: The FBI's Dual Identity: Cop and Spy
The FBI is unique among global intelligence agencies, blending high-stakes spy work with federal law enforcement in a single hybrid model.
#1722: The Dark Web Is Smaller Than You Think
Forget the iceberg myth—the dark web is more like a tiny shed behind a skyscraper, with only 3 million users and 100k sites.
#1720: Why Hackers Use Lego Instead of Hand-Forged Exploits
Metasploit isn't just a tool; it's the industrial standard for digital break-ins. Here's how it works.
#1719: Why Pattern Matching Fails for PII at Scale
Regex alone is brittle; NER is expensive. See how hybrid frameworks like Presidio balance speed and accuracy to stop data leaks.
#1706: Hollywood Hacking vs. Real Airgap Sabotage
Why the "lone operative" trope breaks down when you look at the physical reality of nuclear facility security.
#1549: Why Your Next GitHub Notification Could Be a Trap
Attackers are weaponizing GitHub notifications to bypass security filters. Learn how to spot the latest phishing lures before you click.
#1503: The Death of the Annual Audit: Real-Time SOC 2 Compliance
Move beyond the "once-a-year fire drill." Discover how AI agents and continuous monitoring are redefining SOC 2 compliance in 2026.
#1318: The Analog Hole: Why Your Screen is a Security Leak
Your firewall can’t stop a smartphone camera. Discover why the "analog hole" is the ultimate blind spot in modern enterprise security.
#1317: The First Second: Why Your PC Still Needs a BIOS
Explore the high-stakes drama of the BIOS, the "Root of Trust" that teaches your computer how to be a computer every time you hit the power button.
#1280: Laptop Farms: North Korea’s Invisible Hardware Backdoor
Discover how North Korean operatives use "laptop farms" and IP-KVM hardware to bypass security and infiltrate the US workforce.
#1230: Hackers Lived in Your Account for 200 Days Before You Knew
By the time you get a breach notification, the damage is already done. Discover the hidden reality of the "silent breach" and API security.
#1229: The 39 Million Leak: Why Your .env File Is a Pinky-Promise
Stop relying on "security by pinky-promise." Learn how to move from messy .env files to professional zero-trust secrets management.
#1165: Unit 8200: The $160B Secret Behind the Startup Nation
Explore how an elite Israeli intelligence unit became a $160B startup engine and the ethical friction behind its global tech dominance.
#1090: The Ghost Weapon: When the Only Evidence Is a Fused Microchip
Explore the science of EMPs, from continent-sized nuclear pulses to surgical microwave strikes that can disable a building without a single shot.
#994: The Sideloading Tax: Why Android Fights Your Freedom
Stop letting Google gaslight you. Learn how to safely install apps outside the Play Store while keeping your data secure from poisoned packages.
#968: Breaking the Air Gap: The Truth About Industrial Cyber War
Beyond the "hacker in a hoodie" myth, we explore how state actors breach air-gapped systems to sabotage critical physical infrastructure.
#928: The End of the Palestinian Veto
Is the Arab world replacing Europe as Israel's top trade partner? We dive into the shifting geopolitics of the Abraham Accords in 2026.
#724: The Surreal Evolution of Proving You’re Human
Why are CAPTCHAs asking us to identify cats with lightbulbs? Discover the invisible arms race between AI and digital gatekeeping.
#582: The Grey Zone War Already Raging in Orbit
Herman and Corn explore the "grey zone" of space, from high-res spy satellites to the terrifying reality of orbital "death hugs."
#537: From State Secrets to Zero Trust: The Conceptual Bridge
Is there a master list of state secrets? Explore the evolution of government classification and its impact on modern digital security.
#168: The Sneakernet Renaissance: Living Without the Cloud
Discover why air-gapping is going mainstream in 2026 and how organizations are securing local AI models using "digital vaults."
#140: The Internet You Can't See: Military Networks and the Security Paradox
Herman and Corn explore the "shadow internet," revealing how military networks use air gaps, dark fiber, and data diodes to stay secure.
#49: AI Cyberattacks Are Doubling Every 6 Months—Here's Why
AI cyberattacks are doubling every 6 months. Discover why AI is a force multiplier for threat actors and what organizations can do.