Pwned: The Information Security Podcast

Pwned: The Information Security Podcast

Pwned is a weekly information and cyber security podcast addressing real-world security challenges. Occasionally funny, always informational, and driven by those who live and breathe security. Each episode we dive into the latest and greatest in technology, security frameworks, best practices, and how-tos. We’ll chat with industry leaders to learn how they got to where they are, what they see coming, and how they learned from their mistakes.

Episodes

January 26, 2023 26 min

Following well-publicized comments from Zurich Insurance CEO Mario Greco on the potential demise of cyber insurance, Justin and Jack are digging deep. They describe the challenge to insurers, the potential for unlimited liability, and propose a new and more intentional model that benefits insurers, clients, and the CISOs involved. It’s a new take on a thorny problem, with lessons for all players.

Links:

Are Cyber Attacks Uninsurab...

Mark as Played

In this last episode of PWNED Season 3, Justin and Jack are paying off the year’s debts from infractions against the Pit of Despair, while analyzing a BlackHat announcement by a leader in the market. There are debts to be paid, and there’s a striking new example of the old security tendency to obscure, over-the-top messaging. The season is going out with a bang, and it looks like Season 4 will start with a blank slate but a full l...

Mark as Played

After much work and a little fanfare, the 2022 SLED Cybersecurity Priorities Report has been publicly released.  Justin and Jack are giving a quick overview of the findings, along with their usual, and unavoidable, take on some of the results. For those of you who have participated in the research or have been following the lead-up to this day, you’ll be glad to hear that the result does not disappoint.

Here’s the announcement: SL...

Mark as Played

In this episode of PWNED, Justin springs an unexpected topic, based on his deep affection for social media. Seeing a post from a security leader who feels he has been unfairly held accountable by his company, he’s bringing it to the podcast. We’ve got victimhood, CISO expectation setting, transparency, and disappointment, all in one episode as Jack and Justin take this common feeling apart.

As referenced in this episode, you can f...

Mark as Played

In this episode, Justin and Jack are talking about the trends, common concerns, and research done to support the soon-to-be-released 2022 SLED Cybersecurity Priorities Report. Input from hundreds of sources has been combined with insights from major vendors and the NuHarbor team to deliver some surprising conclusions about the state of the SLED cybersecurity landscape and the leaders that are transforming protection of public serv...

Mark as Played
November 22, 2022 16 min

Following the news that Twitter, now owned by Elon Musk, is charging users for a “blue check” next to their name — an icon that once signaled a verified and authentic user, Justin and Jack discuss the cybersecurity implications behind this new phenomenon, and clear away the confusion and chaos that comes with it.

If you have any questions or suggestions, send us an email at pwned@nuharborsecurity.com.

If you like our content, ...

Mark as Played
November 3, 2022 29 min

In this RightSwipes episode of Pwned, Justin and Jack start with an analysis of the recent CrowdStrike acquisition of Reposify, and while they may not agree on the love match, it starts an interesting new debate on “Best-in-Breed” versus “Combined Value” players in cybersecurity. It’s an important point of inflexion for companies, and maybe for the cybersecurity market, so listen in.

If you have any questions or suggestions, send ...

Mark as Played

In this final episode with Justin and Jack speaking to a group of state security leaders, the PWNED team is talking about a series of topics from new, more successful awareness campaigns to the challenges of avoiding being a target in the first place. This entire session is driven by audience questions, and you may hear one that you’d have asked were you there.

If you have any questions or suggestions, send us an email at pwned...

Mark as Played

In their second episode in front of a group of public sector tech execs, Justin and Jack are talking about the challenge and risks of application security, including the cascading exposure from supply chain vulnerabilities like log4j. They also spend some time talking about the attack trend towards automation and the ubiquitous threats that indiscriminately target organizations regardless of size or specialty. It’s another episode...

Mark as Played

In this first installment of a three-part series, Justin and Jack are speaking with public sector leaders about the unique challenges and successes of securing platforms and systems within the State, Local, and higher Ed (SLED) community.  They’ve got plenty of experience and plenty to say as they answer questions about current threats, new approaches, and the patterns of success that NuHarbor has seen over the past few years.

If ...

Mark as Played
September 14, 2022 10 min

Following another school system breach and some pretty dire reporting, Justin and Jack are reviewing current events and talking about the current environment of risk and impact to K-12. There is plenty to discuss, but the result is a much more balanced view and some thoughts on applying a reasonableness filter to the stories we’re hearing.

If you have any questions or suggestions, send us an email at pwned@nuharborsecurity.com...

Mark as Played

In a new two-for-one Breach of the Week, Justin and Jack discuss a couple of controversial events from the news this week.  First, the recent disclosures by Twitter’s Pieter (Mudge) Zatko and a follow-on article by long-time security icon Edward Amoroso, have our hosts sharing two different points of view on what the story means.  Second, we get back to a harmonious Pwned cast as Justin and Jack discuss the recent LastPass source ...

Mark as Played
August 23, 2022 28 min

Justin and Jack join John Egan, founder of Mad River Distillers, for a chat about his thoughts on cybersecurity acquisitions, and his own experience as a lawyer in the technology field. Special thank you to John, Mad River Distillers President Mimi Buttenheim, and General Manager/Head Distiller Alex Hilton for welcoming the team and giving their time. To view the Mad River crew, click here.

Justin and Jack took the time to write o...

Mark as Played

We’ve got more mail! Thank you to Mike for sending in this intriguing question about how to decide what cybersecurity college program to attend to get the most for your future. Justin and Jack have an answer for you, and it’s a little more complicated than you would think; take a look at a program’s past and present successes to determine what you want your future to be.

If you have any questions or suggestions, send us an email a...

Mark as Played
August 9, 2022 21 min

With the release of the new Enterprise Strategy Group (ESG) report, by Jon Oltsik, in late July, Justin and Jack sit down and discuss their thoughts on the research and the importance of consolidating industry-wide terminology and technology. Will they deem the report to be spot-on, or are there just too many unrealistic expectations? Tune in to find out!

If you would like to read through the ESG report, please click here.

For inf...

Mark as Played

Jack is back at it this time at the National Association of Counties (NACo) conference in Aurora, Colorado. Justin attempts to remotely highjack the microphone to discuss Maslow’s Hierarchy of Needs for Cybersecurity with the audience. Justin checks in before and after the presentation to discuss talking points, maturity of an organization, and how the presentation went.

If you have any questions or suggestions, send us an email a...

Mark as Played

In this special Pwned episode, Justin and Jack discuss Almanna Cyber – their new cybersecurity accelerator fund. Almanna, derived from the Old Norse word for “everyone”, is just that: a cyber accelerator for everyone. The J’s are inviting new cyber startups and individuals with a great ideas to apply for membership in their first cohorts. Sharing over 50 years of experience in the industry, and having built multiple successful cyb...

Mark as Played

US birth rates are the lowest in 40 years, and we may be seeing a spread of that trend into our RightSwipes matchups. With no meaningful Swipes in sight, Jack and Justin are taking a look at the SwipeScene and drawing some conclusions (and predictions) about the Swipeless period we find ourselves in. Is it a return to the bright lights of fundamental analysis showing some of the real faces behind the carefully crafted cosmetics, o...

Mark as Played

In this GOGO (Give One, Get One) episode of Pwned, Justin and Jack discuss two recent breaches. The first, a breach of 23 million compromised accounts from CafePress that was disguised to users as a password policy update; and the other a recipe for a hot tub breach with a side of “hot, stinky soup”.

To access the articles we reference in this episode, check out these links below:

  • Judgment against CafePress
  • CafePress Fined $500,000...
  • Mark as Played

    An overachieving heart surgeon in Venezuela has turned his hand to ransomware, and it looks like his heart was really in it. Sadly for him, but great for those us losing “patients” with this cottage economy, he was busted by the FBI, and it’s Code Blue for his highly-rated, 5-star reviewed, $10K+/month, custom ransomware platform and SDK. Justin and Jack break it down and talk through the details and the factors that are makin...

    Mark as Played

    Popular Podcasts

      Current and classic episodes, featuring compelling true-crime mysteries, powerful documentaries and in-depth investigations.

      Crime Junkie

      If you can never get enough true crime... Congratulations, you’ve found your people.

      Stuff You Should Know

      If you've ever wanted to know about champagne, satanism, the Stonewall Uprising, chaos theory, LSD, El Nino, true crime and Rosa Parks then look no further. Josh and Chuck have you covered.

      Morbid

      It’s a lighthearted nightmare in here, weirdos! Morbid is a true crime, creepy history and all things spooky podcast hosted by an autopsy technician and a hairstylist. Join us for a heavy dose of research with a dash of comedy thrown in for flavor.

      The Dan Bongino Show

      He’s a former Secret Service Agent, former NYPD officer, and New York Times best-selling author. Join Dan Bongino each weekday as he tackles the hottest political issues, debunking both liberal and Republican establishment rhetoric.

    Advertise With Us

    For You

      Music, radio and podcasts, all free. Listen online or download the iHeart App.

      Connect

      © 2023 iHeartMedia, Inc.