![CyberWire Daily at 10: The breaches we still talk about. [Special Edition] - CyberWire Daily cover](/_next/image?url=https%3A%2F%2Fmegaphone.imgix.net%2Fpodcasts%2F0763b4cc-29fc-11f1-b106-97d617cd6f62%2Fimage%2F9d064a62daa0817d3d0bde95f8f0f94f.jpg%3Fixlib%3Drails-4.3.1%26max-w%3D3000%26max-h%3D3000%26fit%3Dcrop%26auto%3Dformat%2Ccompress&w=3840&q=75)
CyberWire Daily at 10: The Breaches We Still Talk About [Special Edition]
Date: March 29, 2026
Host: Maria Varmazes, N2K Networks
Guest: Dave Bittner, Host of CyberWire Daily
Overview
In this special edition episode marking a decade of CyberWire Daily, host Maria Varmazes sits down with long-time host Dave Bittner to reflect on the most significant and memorable data breaches of the past ten years. Together, they discuss watershed incidents, the changing landscape of threat actors, evolving industry response, and the human side of dealing with a never-ending tide of cyber threats. The conversation is candid, rich with personal perspective, and focused on key industry lessons learned.
Notable Data Breaches of the Decade
Sony Hack: The Global Wake-Up Call
Timestamp: 04:04-05:07
- Dave Bittner describes the 2014 Sony hack as a milestone, one that “gained national attention,” involved geopolitics, intelligence gathering, and put a beloved, global brand in the spotlight.
- “It grabbed a lot of people’s attention that a big, major brand could get hit this way and sort of, I think, set the global stage for these large scale breaches.” — Dave Bittner [04:42]
- Maria recalls the almost cinematic intrigue around it, with discussions about “the movie,” and involvement from high-profile figures.
- The breach is remembered as the first incident to jolt public and enterprise perception of what was possible through a cyberattack.
OPM Breach: Lessons in Negligence and Attribution
Timestamp: 05:07-08:42
- The Office of Personnel Management (OPM) breach in 2015 struck particularly close for Dave, occurring as he entered the cybersecurity field.
- “Several of my co workers had been personally affected by that because they had security clearances...our adversaries, we think was China, was in there for a long time.” — Dave Bittner [05:42]
- It highlighted the risks of outdated systems and “retrospective negligence.”
- On attribution, Dave observes that while “we’ve gotten better at knowing different groups’ signatures,” threat actors imitate each other, making certain attribution complex.
- “There are people out there who say attribution doesn’t matter. I’m not sure I agree with that.” — Dave Bittner [07:50]
Ransomware and Supply Chain Shocks: WannaCry, NotPetya, Equifax, SolarWinds
Timestamps: 08:57-11:38
- WannaCry & NotPetya (2017): Showed the global disruption possible when networks are affected.
- “Aha moment of what happens if somebody can...hit the off switch on a global network.” — Dave Bittner [09:29]
- Equifax (2017): Still resonates due to the enduring impact on personal data and credit monitoring.
- SolarWinds (2020): Marked a paradigm shift concerning supply chain security and legal responsibilities for CISOs.
- “At that time, if you were a CISO, you were like, what?” — Dave Bittner [10:26]
- Led to questions about executive accountability and risk management, changing conversations around personal liability for breaches.
23andMe: Immutable Data and Privacy Fears
Timestamp: 12:10-13:45
- Maria highlights this breach as it deals with data that can’t be changed—your DNA.
- Dave emphasizes the unique threat: “You can change your credit card number…you can’t change your DNA...The idea that...such deeply personal information, that also affects not just you, but people you know...”
- Leads to fresh, unnerving privacy concerns and a “recalibration” of expectations around personal data.
Threat Actors: Evolution and Blurred Lines
Timestamp: 14:04–17:30
- Dave identifies two dominant motives: nation-state espionage and financially-driven attack groups.
- Notes an unexpected shift: Crypto mining was once thought to eclipse ransomware as a threat due to its “victimless” nature, but instead ransomware exploded, driven by the “eye-opening numbers” and the accelerant of cryptocurrency.
- “A way to sling money around the globe in a way that's hard to track. That really made it a lot easier...” — Dave Bittner [16:29]
- Increasingly, distinctions blur—nation-state actors freelancing for cash, states “looking the other way,” leading to more complex threat landscapes.
Targeted Sectors: Who’s Taken It on the Chin?
Timestamp: 17:54–19:54
- Healthcare:
- Dave describes ransomware attacks on healthcare providers as “despicable,” noting that lives are often on the line and such institutions usually lack security funding.
- The ethics are compared to the laws of armed conflict, highlighting the heartlessness of targeting hospitals for profit.
- Early in the ransomware wave, operators would occasionally apologize and provide decryption keys if they hit hospitals unintentionally. No more: “Now it’s just heartless. It’s become so much of a game about money and greed...” — Dave Bittner [19:28]
- Maria shares a personal account of being in a hospital during a ransomware incident right after her daughter's birth, underscoring the real-world consequences.
Reflections: Acceptance, Empathy, and Community
Timestamp: 21:26–26:19
- The Inevitability of Breaches:
- “It's not a matter of if, it's a matter of when.” — Dave Bittner [21:33]
- Dave likens cybersecurity to public health, stressing that even best effort is probabilistic rather than guaranteed—no one is immune.
- “You don't get violated because you're stupid, you get violated because you're human.” — Dave Bittner [22:54]
- Culture and Attitude:
- Dave stresses the importance of rejecting smugness and superiority, advocating for empathy toward victims.
- Hope and Progress:
- Despite the constant barrage of bad news, Dave finds hope in the community’s innovation and mutual support.
- “We're in this together, we're trying to fight the good fight...it's a fight worth fighting.”
- Gratitude for Community:
- Dave closes with thanks for his colleagues and the cybersecurity community, who helped him learn and continue to “get out there and share information.”
Memorable Quotes
- “It grabbed a lot of people’s attention that a big, major brand could get hit this way.” — Dave Bittner [04:42]
- “We contributed to that breach through retrospective negligence as much as their own.” — Dave Bittner [06:50]
- “There are people out there who say attribution doesn’t matter. I’m not sure I agree with that.” — Dave Bittner [07:50]
- “You don’t get violated because you’re stupid, you get violated because you’re human.” — Dave Bittner [22:54]
- “It's a fight worth fighting. So I'm glad to play a very small part in helping, try to keep people up to date and informed.” — Dave Bittner [25:09]
Key Takeaways
- Major breaches (Sony, OPM, Equifax, SolarWinds) have driven public awareness, policy, and industry change.
- Attribution remains complex, but it's more relevant and developed than ever.
- Ransomware has redefined priorities, especially in sectors like healthcare.
- No one is immune from breaches—focus should be on resilience, not just prevention.
- Cybersecurity is a communal, collaborative effort, where empathy, support, and gratitude are crucial for progress and sustainability.
“We're in this together, we're trying to fight the good fight and we're making progress. So it's not as fast as any of us would hope that it is, but it's a fight worth fighting.”
— Dave Bittner [25:08]