Blue Security

Summary

In this episode of the Blue Security Podcast, hosts Andy Jaw and Adam Brewer discuss significant updates in Microsoft's security landscape, including the shift to passwordless authentication, cross-tenant synchronization, and the convergence of sensitivity labels with security groups. They also delve into Azure role governance and the implications of Facebook's new camera roll settings on user privacy.

-----------------------...

Summary

In this episode of the Blue Security Podcast, hosts Andy Jaw and Adam Brewer discuss critical cybersecurity topics, including newly discovered Windows Zero Days, insights from Verizon's latest Data Breach Investigations Report, and a significant credential leak at CISA. They emphasize the importance of vulnerability management, the evolving threat landscape, and best practices for securing sensitive data. The conversation hi...

Summary

In this episode of the Blue Security Podcast, hosts Andy Jaw and Adam Brewer discuss two significant topics: Agent 365, a new dashboard for monitoring AI agents in the Microsoft ecosystem, and MDash, a multi-model vulnerability scanner. They explore the importance of visibility and control over AI agents, the innovative licensing model for Agent 365, and the multi-model approach of MDash that enhances vulnerability detection...

Summary

In this episode of the Blue Security Podcast, hosts Andy Jaw and Adam Brewer discuss two significant topics: Agent 365, a new dashboard for monitoring AI agents in the Microsoft ecosystem, and MDash, a multi-model vulnerability scanner. They explore the importance of visibility and control over AI agents, the innovative licensing model for Agent 365, and the multi-model approach of MDash that enhances vulnerability detection...

Summary

In this episode of the Blue Security Podcast, hosts Andy Jaw and Adam Brewer discuss two significant topics: Agent 365, a new dashboard for monitoring AI agents in the Microsoft ecosystem, and MDash, a multi-model vulnerability scanner. They explore the importance of visibility and control over AI agents, the innovative licensing model for Agent 365, and the multi-model approach of MDash that enhances vulnerability detection...

Summary

This episode covers Apple Lockdown Mode's effectiveness against spyware, the Phantom Device attack exploiting Azure AD, and best practices for securing device registration and conditional access policies.

----------------------------------------------------

YouTube Video Link: https://youtu.be/g68OMWYIc0k

----------------------------------------------------

Documentation:

https://techcrunch.com/2026/03/27/apple-says-no-one-using...

Summary

This episode covers Apple Lockdown Mode's effectiveness against spyware, the Phantom Device attack exploiting Azure AD, and best practices for securing device registration and conditional access policies.

----------------------------------------------------

YouTube Video Link: https://youtu.be/g68OMWYIc0k

----------------------------------------------------

Documentation:

https://techcrunch.com/2026/03/27/apple-says-no-one-using...

Summary

In this episode of the Blue Security Podcast, hosts Andy Jaw and Adam Brewer discuss significant topics in cybersecurity, including the discovery of a critical Linux vulnerability known as Copy Fail, the introduction of Cloud Security in public beta, and Microsoft's comprehensive AI security strategy. They explore how AI is revolutionizing vulnerability scanning, the implications of the Copy Fail bug, and the proactive measu...

Summary

In this episode of the Blue Security Podcast, hosts Andy Jaw and Adam Brewer discuss significant topics in cybersecurity, including the discovery of a critical Linux vulnerability known as Copy Fail, the introduction of Cloud Security in public beta, and Microsoft's comprehensive AI security strategy. They explore how AI is revolutionizing vulnerability scanning, the implications of the Copy Fail bug, and the proactive measu...

Summary

In this episode, Andy and Adam discuss a recent vulnerability in the Signal messaging app that allowed the FBI to recover deleted messages from an iPhone due to a flaw in Apple's notification system. They emphasize the importance of user settings and the need for regular updates. The conversation then shifts to the UK National Cyber Security Centre's endorsement of passkeys as a preferred login method for consumers, highligh...

Summary

In this episode, Andy and Adam discuss a recent vulnerability in the Signal messaging app that allowed the FBI to recover deleted messages from an iPhone due to a flaw in Apple's notification system. They emphasize the importance of user settings and the need for regular updates. The conversation then shifts to the UK National Cyber Security Centre's endorsement of passkeys as a preferred login method for consumers, highligh...

Summary

In this episode, Andy and Adam discuss significant changes in cybersecurity, focusing on NIST's new policy for handling CVEs, the alarming statistics from the FBI's 2025 Cybercrime Report, and the introduction of a new password protection feature in Defender for Identity. They explore the implications of these developments, including the increasing effectiveness of AI-driven scams and the challenges faced by organizations in...

Summary

In this episode, Andy and Adam discuss significant changes in cybersecurity, focusing on NIST's new policy for handling CVEs, the alarming statistics from the FBI's 2025 Cybercrime Report, and the introduction of a new password protection feature in Defender for Identity. They explore the implications of these developments, including the increasing effectiveness of AI-driven scams and the challenges faced by organizations in...

Summary

In this episode of the Blue Security Podcast, hosts Andy and Adam discuss the recent FCC ban on foreign-made routers, citing national security concerns and the implications for consumer cybersecurity. They explore the potential negative effects of the ban, including the risk of forcing consumers to use older, less secure devices. The conversation then shifts to the introduction of Claude Mythos, an advanced AI model from Ant...

Summary

In this episode of the Blue Security Podcast, hosts Andy and Adam discuss the recent FCC ban on foreign-made routers, citing national security concerns and the implications for consumer cybersecurity. They explore the potential negative effects of the ban, including the risk of forcing consumers to use older, less secure devices. The conversation then shifts to the introduction of Claude Mythos, an advanced AI model from Ant...

Summary

In this episode of the Blue Security Podcast, hosts Andy and Adam discuss significant cybersecurity incidents, including a cloud code leak from Anthropic and a supply chain attack on the Axios NPM package. They explore the implications of these events for developers and organizations, emphasizing the need for caution when handling leaked code and the risks associated with supply chain vulnerabilities. The conversation also t...

Summary

In this episode of the Blue Security Podcast, hosts Andy and Adam discuss significant cybersecurity incidents, including a cloud code leak from Anthropic and a supply chain attack on the Axios NPM package. They explore the implications of these events for developers and organizations, emphasizing the need for caution when handling leaked code and the risks associated with supply chain vulnerabilities. The conversation also t...

Summary

In this episode of the Blue Security Podcast, hosts Andy and Adam discuss various aspects of cybersecurity, particularly focusing on small business security challenges and the features available in Microsoft 365. They address a listener's email regarding the limitations of basic licensing for small businesses and explore the available alerts, security features, and compliance tools. The conversation also covers the importanc...

Summary

In this episode of the Blue Security Podcast, hosts Andy and Adam discuss various aspects of cybersecurity, particularly focusing on small business security challenges and the features available in Microsoft 365. They address a listener's email regarding the limitations of basic licensing for small businesses and explore the available alerts, security features, and compliance tools. The conversation also covers the importanc...