B (12:16)

It's cybersecurity.

A (12:17)

I have no tolerance for the computer. No patience.

C (12:22)

These are the cybersecurity headlines for Thursday, April 23, 2026. I'm Sarah Lane.

A (12:28)

Hey, Sarah Lane.

C (12:29)

OpenAI shares cyber product with government orgs. Axios reports that OpenAI has been briefing US federal agencies, state governments, and Five Eyes allies on its new GPT 5.4 cyber model, demonstrating its capabilities to more than 50 government cyber practitioners. As part of a controlled rollout. The model is being offered through a tiered trusted access program with vetting similar to commercial users, alongside a more restricted version with stronger safeguards. The push comes as Anthropic tests its competing Mythos model with select organizations.

A (13:06)

All right, so this shouldn't come as a surprise, right? Basically, the US Federal government, Department of Defense or Department of War, I guess, depending on what side of the aisle you're on. Try to go with Anthropic, honestly, because in my opinion, it's a better product. Claude for the win. And Anthropic said, we don't like what you're doing, my guy. So the US Government did the Heisman and kind of mushed their face and said, none shall pass. So Open AI slid in like, you know, I. I don't like Scott Farkas. Oh, my God. There's a deep cut. Anybody? Anybody with Scott Farkas references? So Open AI slides in Like Scott Farkas says while twisting a mustache, like, we'll be happy to do whatever it is you want. So now because of their cyber model, which is kind of competing with the mythos model or mythos, whatever you want to say on anthropic open AI is, you know, invited to the party. So they're briefing five eyes. They're all up in the U. S. Federal government's britches. They're basically wearing a three piece suit, talking about all the things. So five eyes. This is good for business if you're open AI because now they're briefing uk, Australia and the other three eyes, whoever they are, or two eyes. I don't even know who, who is. Who is it? Is it New Zealand, South Africa, Tanzania? I don't know who the five eyes are, but tldr, you know, all I can say is I'm super pumped. I'm super pumped that the US federal government, among others, like leading first. Oh my God, there's Scott Farkas. The leading leaders in the world are now getting integrated with AI Remember I told you guys like listen, two, three years ago when chat GPT dropped out, jumped onto the scene. Oh my God, it's so unsettling. When chat GPT got on the scene a couple years ago, you know, U.S. federal government was moving at glacial speed. And I don't mean this to be an ageist or derogatory. I'm just calling it objectively how it is. You had like 75 year old Congress people who were like, Whoa, this AI is cool. We should develop a committee to talk about this. Let's meet in six months. And it's like, my guy, like, what do you like? You are moving at glacial speed. This is not the invention of the steam engine. My guy, like, we're not doing John Henry versus the locomotive or whatever John Henry did with the, the railroad spikes. This is AI by the time you even think of putting a committee together and sending some emails and then going playing croquet on the capitol grounds, because that's what I think's happening. AI has already changed. So I'm glad that people have finally got out of their own way, it would appear, and they're moving at the speed of business instead of the speed of government. I, I've always thought that that was a massive impediment towards real legislation and real, frankly regulation and real utilization of AI for the greater good. Now of course, like any technology, it is immediately weaponized for national dominance, national power, national security. You know, there's this like wealth gap divide between the 1% and the other 99. And they're going to have access to all this other stuff. All that aside, I, I am. This is, this is promising. Now, the fact that it's open AI briefing these people. I don't know. All this Sam Altman stuff with the, the, the, the attacker and all this stuff is weird. But tldr I'm this. Listen, here's the deal. You're not going to work today if you're driving into work right now or you're going to the airport to get on a flight to go to Memphis. Like this isn't changing how you're going to do work when you get to the office later today. Okay? This is just big picture AI stuff. It's cyber because it's the cyber model. But guys, this is cyber adjacent at best. The new model, the old models could do cyber. This one they're calling cyber. I swear to God. OpenAI is just doing spin on this by calling it the cyber product. All right?

C (17:41)

Authorized Mythos access Firebox Bugs fixed by Mythos Speaking of Anthropic, couple different Mythos stories today. We Bloomberg reports a small group of unauthorized users claimed in a private discord that they were able to access Anthropic's Mythos model, which had been limited to 40 organizations because of its reported ability to find or exploit security vulnerabilities. One member of the group works for a third party contractor for Anthropic. They combine that access and other information that they gathered, like guessing the URL based on how Anthropic form formats them. Anthropic is investigating the report and says it has no evidence that the access went beyond a third party vendor's environment. Meanwhile, Mozilla said it used Mythos to look for bugs in Firefox 150 and it found 271 of them. All of the bugs could have also been found by a human. Mythos simply found them faster.

A (18:39)

Yeah, okay, so from the office of. This is how AI could be used to improve society. And again, dude, I'm all on Anthrop. Like I'm not. I don't use Anthropic and Claude because they seem to be on the side of righteousness. I use it because it's a better product in my opinion. Thank God, right? I mean, if Chachi PT crushed Anthropic, I'd probably go to the dark side and use open AI. But hey, you know, these, these large, whether large or small software companies, you know, are using Mythos to great effectiveness to find bugs and and listen, it could be low hanging fruit like they said in this story, it human could have found these eventually. AI expedites everything. AI makes you a more efficient professional. I personally use AI quite a bit and it's like it to me, it just makes me produce more work. Like I, I was already working hard, now I'm working like a lunatic. And A.I. is like, you know, sycophantically like yes, yes. Like A.I. i know this is ridiculous, but A.I. is like emperor Palpatine before he becomes like the, you know, spoiler alert before he becomes Darth Palpatine or whatever the hell his name was is when Emperor Palpatine's like, do it, do it. Like I think he's telling Anakin to eliminate Samuel L. Jackson. But like, or whatever, Darth City, whatever. Like I'm like, oh my God, I, I'm almost done with work. And then like Claude's like, you could get more done. Do it. And I'm like, yes. So anyways, dude, augmenting humans, getting it done. If you're. Listen, how can you use this? Two, two things I want to share with everyone. Number one, if you're not using AI to help you professionally, then you're going to be left behind. It's like not using the Internet 20 years ago. Like you're like, oh, I think this Internet thing is kind of like a flash in the pan. No, it is what is needed to be productive. Number two, if you do software tech, you know, fintech, software developers, whether it's open source, in house, whatever, SaaS, apps, fat apps, whatever. Use AI for your unit testing, use AI for bug hunting it. Like, why not do it? Like developers need to stop being personally offended or take it personal if they write code and it's got bugs in it. Like my, my guy. Like I was a software developer in a past life. Like I am well aware that I don't write perfect code, so I would prefer to write more secure code. So definitely utilize this. Obviously, if you're a security researcher or you're looking to get CVEs. I've said this multiple times. If you're looking to get CVES attributed to your name professionally, you have a closing window that you have to take advantage of. This is like any of those 80s action movies where the, the gate is closing and the the hero runs and then like rolls underneath the gate before it crushes them. The gate is you like finding CVEs and you sliding under AI is going to find all the low hanging fruit. Okay? So unless you want to find the hard ones which you, you know, get, you do, you boo. But like anyways, the tldr. Oh, by the way, the final thing I'll say about this because I'm saying use AI to help find bugs at your company. Make sure that you're using AI governance best practices. Don't let your developers just go ham or with whatever AIs they want on the source code and end up leaking API keys, session tokens, their developer creds. We've seen multiple instances of developers getting popped by downloading stupid AI tools from shady AF sites and then getting compromised. So work with your developers. Most of your developers again, I, I used to be one. Most of your developers want to do the right thing. Most of your developers are all about doing it the secure way. You just have to enable them. This is a PSA for all the GRC mafia people in the chat, by the way. It's hard do the work. It's hard to go find the models and go find the tools that will be secure and effective. Right? But that's on you GRC people. There's no easy button for us either.

C (23:11)

Jurors move to cap LLM jacking cyber payouts the Financial Times reports insurance, including QBE Insurance and Beasley are moving to cap payouts for AI related cyber incidents, introducing sub limits that significantly restrict coverage for risks like LLM jacking. That's where attackers exploit enterprise AI systems to avoid usage fees. Brokers and legal experts warn the changes could narrow protection across a broader range of emerging AI threats, even as insurers argue they are clarifying coverage rather than reducing it.

A (23:48)

No, let's be clear. They're reducing it. Listen, here's the reality. Insurance I, I, for those who don't know, I do dabble in the insurance space. I'm one of like eight people in the entire cyber security industry who care about cyber insurance. And talk about, talk about it. Cyber insurance is a great policy to have. Usually it deals with data breach, hiring third party people to come in, pays for the stamps and the identity theft protection that inevitably gets sent out and all these other things. But you know, the insurance companies have a tough time managing the exposure. If I'm an insurance company and I'm insuring a home, right, my house is in a flood zone. Justin Gold's place is not in a flood zone. Okay, so the insurance companies can kind of manage the risk and they say, well, the chances of a flood are pretty good here and a flood would probably cost like a hundred grand, all these homes. So the policy is this Amount versus what Justin pays at his place in the policy amount. Now fast forward with AI wannacry hits and like thousands of companies across hundreds of countries get hit. The managing the risk exposure for an insurance company of a cyber crime is ridiculous. It, it's, it scales incredibly well and it's hard to manage and all these other things. So insurance companies since 2015 have had a ton of time and opportunity to figure this out. Now here's the thing with this with AI and people going yolo with AI just, just like the last story I said with developers getting their API keys broken, People vibe coding SaaS apps and then having things just get absolutely depleted, people having their, their keys released to be able to query LLMs and burn tokens. All of that is so hot right now that Hansel so hot right now that insurance companies are like, bro, we have to put a cap on this. Like it, it's like a maximum. Like we have insurance policies for like flood or home and owners insurance. Like my home, let's just say for the sake of discussion, my home is worth 200 grand. Okay? I can't take an insurance policy out for $4 million on my home. No, no insurance company is gonna be like, yeah, that sounds good, let's do some of that. No, it has a cap on it. They're just doing that for this. Now for all the GRC people who don't want to spend time talking about insurance, let me tell you this. Have the insurance policy do the things, realize your exposure amount total. Do the risk calculation on if this thing gets popped. What's our maximum exposure? I. E. If you get a $100,000 policy related to AI LLM jacking or getting your API keys taken out, what's the MA maximum exposure at Anthropic or at OpenAI? Right? Like can you run up a bill beyond a hundred thousand dollars? There's an opportunity to say, hey, can we work with anthropic or open AI to set a limit that if we go over some, you know, threshold, you notify us. And by the way, for the individual accounts, I know for a fact you can set thresholds because I have set thresholds on my open AI, I mean on my anthropic to make sure that I don't exceed. Because as a, as a, as a wee little Pinocchio trying to have a real business, I can't absorb a hundred thousand dollar open a Chachi freaking anthropic bill because somebody stole my creds. Okay, so for all the GRC people, by the way, Shout out to Sarah Lane and the CISO series. People, today is a GRC Mafia festival. It's an absolute a smorgasbord of deep cuts on the GRC Mafia. Talking insurance. This doesn't. Listen, this doesn't mean don't get insurance, okay? It just means get it and be aware of your cap. Also, also, do not allow your management to be like. Because I. This is an older thing. But don't let your management be like, oh, we have insurance. We're not going to invest in cyber security controls. Like, no, no, no, that's a stupid. That's a stupid approach. And I would almost use like suggestive psychology on management if they do that. If someone says like, hey, like, we don't need to invest in MFA or MDR or firewalls or you, because we have cyber insurance, you know, you might want to say something like, I mean, I know that. Really? See, I mean, don't say this, but this is what I say in my inner monologue. I know that really seasoned, capable executives love investing both in insurance and cyber security controls because they understand what real cyber risk exposure is. And you, sir, are definitely a smart, effective executive. So surely you would agree, like, almost set them up so like, they either admit that they're an idiot or they agree with you to get the insurance. Little advanced psychology. GRC super math. Go ahead.

C (29:09)

Spain dismantles manga piracy platform Spanish Police have dismantled a major Spanish language manga piracy platform operating since 2014, arresting four people and seizing infrastructure that supported millions of monthly users. Authorities say the site generated more than $4.7 million in ad revenue, including some pornographic pop ups, while also uncovering hidden cryptocurrency wallets holding about $470,000. The takedown is part of a broader crackdown on large scale piracy operations that authorities say have caused significant financial and reputational damages to publishers and the wider cultural industry.

A (29:50)

All right, hey, really quick, just as a quick background on this story right here, as far as having a more polite way to say it, this one's coming in from Justin Crypto. You could ask if they push back on controls because they have cyber insurance. You can say, hey, do you have health insurance? Which the answer is yes. Okay, so does that mean you don't wear seat belts? Because who cares if you go through a windshield, you got health insurance. Maybe you don't say it like that, but my point is, just because you have health insurance doesn't mean you don't wear a seat belt. Just because you have homeowners insurance doesn't mean you don't put doors on your house, right? All right, so manga 4.7 million dollar piracy guys, whatever. If you're into One Piece, if you're into Da Da Da Donka Donk or what, Badonkadonk, whatever. This Don Don, my son's into anime right now. So I hear these, these show names like if you're an old like me and you want to talk about Akira Kool Aid man, please enter the chat. At the end of the day, it's just an entertainment industry that has money. And wherever there's money, there's going to be criminals trying to find ways to get some of that great cash, homie. And what they've done is they've opened a platform where you can basically buy access to material at a cheaper discount. Okay? So I mean this could be like, this could be like literally a streaming service. Sports. This could be comic books, Illicit magic, the Gathering cards, like whatever. It doesn't matter that it's manga. Here we go. Really quickly, Akira. Oh yeah. Thank you, Dan. All right, so anyways, law enforcement regulators, I love it, I love it, I love it. Okay, I will tell you, I've watched a couple episodes of One Piece with my son. That show is out of control. I will say that. Like, I didn't have Spain and illegal manga piracy on my bingo card for 2026, but yeah, no, they took it down. It was a torrent site. I, I, I'll tell you this, number one, this doesn't, unless you work in the manga industry again, this story has no value to us as a practitioner. My whole point of this show is to help you be a better practitioner by going beyond the headlines. Which is, which is part of the reason why we're, we're flirting with looking at different headlines in general. But for this one, what I would say is this is a macro level industry thing. So if you're new to the industry and you're not aware of this, this is a thing that you should be aware of. Anytime there is large underground criminal marketplaces, whether it is Genesis Marketplace, Alpha Bay, Silk Road, like where they're selling illegal documents, drugs, guns, crime for hire, or it's these illegal sites that sell streaming sports or whatever, once it reaches a certain threshold, you have law enforcement's attention and then these things happen, Right? If this manga thing was stealing a couple hundred grand, I don't know of law enforcement get after it. It doesn't make, doesn't make it okay. It still makes it crime. But if you think about law enforcement they only have so many resources. So who do they go after? They typically want to go after the biggest fish because you get the biggest return on your investment. I mean, it's, it's basic economics. It's not money necessarily, but it's basic economics. I also want to point out that usually when you have people like whoever's running the manga industry and making a ton of money, right? Like think about whoever owns One Piece. Think about whoever owns Pokemon, which I think is Nintendo maybe, but like we're talking multi, multi, multi million, like hundred plus million dollar industry, sometimes billion dollar industry. The people who are making that money are very serious about not leaving any money on the table. And they have tons of influence because they can pay to support political campaigns and pay to support law enforcement, elected positions like sheriff, stuff like that, right? And I'm not saying it's right or wrong. All I'm saying is human nature is If I spend $10 million to support a politician running for wherever and they get elected, I'm not ex, I, I'm not guaranteed any type of favors in return. But let's say I'm the manga industry and then all of a sudden, you know, my candidate gets elected president of Spain and then I'm like, hey, by the way, like, you know, I don't know if you got law enforcement looking at this, but this is crime. And, and it's something that would be really great for you to look at. And then boom. So that is, I don't have any evidence to support that, but it's just human nature. And there's. Dude, look at the gun lobbies. Look at all these, you know,

C (35:19)

Huge thanks to our sponsor, Threat Locker. Threat Locker is extending Zero Trust beyond Endpoint control with their recent release of Zero Trust network access and, and Zero Trust cloud access. Access isn't based on credentials alone. It requires the right user, the right device, and the right conditions. Because as we've seen in recent large scale CRM breaches, stolen credentials and misconfigurations can expose massive amounts of data. With ThreatLocker, nothing is exposed and access is limited to exactly what's needed. Learn more and start your free trial today@threatlocker.com CSEL all right, all right, all right.

A (35:59)

So check it, check it out. We're gonna do, we're not gonna do the. All right. Holla at your boy. I want to say what's up to everybody in the chat. We are at the mid roll. Thank you very much for being here. I hope you're enjoying the show. Couple minutes Over. I want to say thank you to the stream sponsors. Shout out to threat locker, anti siphon and flare. I see James McQuiggin at 35000ft joining us in the green room. Reminder to everybody that stay tuned because at the end of the show today we're going to be going to the Cyber career hotline. Phone lines are open and your smoky voice, James McQuigan will be answering all your career questions and more. But every single day of the week has a special segment and Thursdays is Dan Reardon. What you mean Thursday? Now for you first timers here like VF and Khalil, you may not know this but this man right here, not only is he a national treasure, but every single Thursday for the last two or three years, every single Thursday this man has generated a one of one low key like NFTs before NFTs were cool custom meme for the community. Sometimes it's a lot of times it's taking advantage of me and sometimes other people love what Dan does. For those who want to know, here comes the meme of the week now really quick as prefacing I I am working on a new program. It's. It's code name is Nerd Apocalypse but we may be changing that and going with a new one. The show is a a new show outside of Simply Cyber that celebrates nerd culture and all things nerd. I am a huge nerd. I love it and I feel like we nerds need a place to congregate and just be entertained and turn our brain off for 20, 30 minutes. With all the crap happening in this world right now, it'd be nice. So ladies and gentlemen, allow me to show you your meme of the week. This is it. This could be the new title of the show Nerdy by Nature. Let us know in chat if you like the new channel n the new show name It'll be a 30 minute show. Deep dive. Nerdy by nature. Nerdy by nature. Thank you very much Dan Reardon. I think that's what we're doing. And if you identify as nerdy by nature, this is for you. I do love all of the amazing. I I almost invite you to pause the video afterwards and and just look at all the nuggets in here. Also as always, there is a Dan Reardon Easter egg of his face in here. We've got magic, Sega Genesis 8 bit everything old school Avengers comics. We see he man Transformers. This is like my entire inner monologue rolled up into one fatty and then lit and smoked. We even have the old 3 1/2 inch floppy here. Keylogger backup. So exactly. Nerdy by nature. Let us know how you feel about it. But thank you very much, Dan Reardon. Let's get back into the news and finish strong. We can't get you to James McQuigan in the Cyber Career Hotline if we don't finish the news, am I right?

C (39:25)

NCSC unveils Silent Glass the National Cyber Security center announced Silent glass@cyber UK. A plug in device designed to secure HDMI and DisplayPort connections by blocking malicious or unexpected signals between computers and monitors. The device is already deployed in government environments and targets an attack vector where monitors can be exploited to access sensitive data or infiltrate networks. Developed with Goldilock Labs and Sony uk, Silent Glass is now commercially available.

A (39:59)

Contagious and okay, So this is interesting. Every once in a while we get hardware related tooling and stories and you know, hardware is so hot right now that Hansel's so hot right now. I mean, cyber shiningami shared with me on LinkedIn like some kit you can build that's like this like super oversized BlackBerry Cali thing that you build yourself. It's just like I don't even need it and I want one. This is called Silent Glass. I'm assuming it's a hardware tool. Here's the, here's the deal. All right, if you didn't know. Well, two things. One, cyber security, like digital technical software, exploitation software that does things, malware, phishing, emails, all the digital things. So hot. But if you can get physical access to something, you can bypass all the network controls and a lot of the software controls because you have physical access. So let me share this with you. And I share this with my students all the time. There are websites that provide hardware tooling for offensive security professionals to be able to do those things. Now one example, oh my God, they did their website over. But one example here is. This is called the Shark Jack. You can see it has an ethernet cable plug and you can't see it. But the other side of it is also. Oh wait, hold on. This is just a pen test in a box. So this just plugs in. This is a full os. We also have things like, oh, here we go. This is a hardware device that you plug in line on a keyboard, right? So you have a key USB keyboard. You just like literally plug this in line. The operating system has no idea about this inline thing. And it's essentially a keylogger, right? Because it's capturing everything that's typed into the keyboard. So these hardware Tools are excellent and super productive. And you can do it with the HDMI as well. So you see this right here? This is what this is. You swap, you know, the HDMI plugs directly into a monitor. You put this in line and now you could see the antenna out here. You can broadcast the screen feed. So apparently I, I guess this was like a serious enough attack that somebody invented a tool to thwart or stop that from happening. I don't quite understand how this works. I mean, clearly it does work or else they wouldn't be able to market it. But it's weird to me because how would it know that you were physically compromised? Let, let's see if we can see more information. Plug and play device. So it is a fit. You can see it is a physical hardware device. It plugs in line. So I mean technically if someone had physically compromised you, you would find, you would discover it at that point because you'd be like, what is this extra device sitting here? It protects the video connection from cyber attacks. So the only thing I wonder is like, this isn't going to stop a remote desktop, like remote management solutions are a pretty common attack vector, especially by, you know, the threat actors who socially engineer you to like, you know, through click fix or through not click fix, like pop ups where you have to call a number and then they immediately get you to download like any desk or any of these things. So that I don't understand how this would prevent that from happening. Says that silent glass addresses a gap that's been widely overlooked. The hardware interface people rely on rarely is treated as security boundary. Yeah, 100%. Most people ignore the physical boundary because normally we have swipe locks and you know, door locks. We have all the locks. We have physical security to prevent this from happening. This is why the janitor or evil maid attack is a thing. Right? If you, if you've ever heard of that. So I, I don't know if I had to guess. I mean, ncsc, the National Cyber Security center of the uk, is part a partner with this. But like, I don't know, man, if I had to, like, this is my vibe, okay? This is my vibe. My vibe is this feels like a marketing, like a, like an advertisement. I, I just don't, I get that they're doing this. I just don't know. Like in my world of like, think about this for a second. I, I, for, for a living, this is what I get paid to do. I get paid to look at what are all the risks. We can't address all the risks so which ones are we going to attack and how much is it going to cost? Like, your display is not, like, really on my threat model. Like, if you were. Do you know. Do you know the movie Mission Impossible with Tom Cruise? The very first one where he has to steal the knock list and he does that scene where he, like, spiders down from the ceiling and, and gets on that computer. That's a computer where the display probably needs to be protected, but they have infrared and sensitive floor and five different kinds of swipe access into the room and stuff like that. Like, your threat model of the display being compromised, it's nowhere near ever going to elevate to any of the other, like, any of the other levels. Like, there is no reality. And I hate to dunk on this, but I'm going to. There's no reality where you're like, well, we could buy this display port, hdmi, physical security tool, or we could put a swipe lock on the door. No, let's. Let's allow anyone to come and go as they please without any auditing or logging of who's coming in, who's going, because we've got the HDMI display control. What are we talking about here? Like, you get so much more return on investment for a freaking door lock. And again, I'm. Maybe I'm wrong and maybe there's someone from Silent Glass in the chat who's feeling like I'm telling them that their baby is ugly. But, like, I mean, if you can have both, go for it. It never hurts to have extra control. But, like, to me, like, there's a reason that this is an often overlooked area of cyber security. Because, like, there's so many other compensating controls to deal with this particular issue. Again, again, if you are super Secret Squirrel, if you're the CFO doing things, if you're working on, like, the, you know, the next big thing and you're super sweaty about it, maybe this is a control to consider. But for like, 99% of us, you're not putting this on Carl's machine. Like, listen, I'm sorry to lose my mind about this. I don't even know why I'm getting worked up. Listen, most of Us are using SaaS apps. Whatever you're typing in is going to the cloud anyways. So if you're worried about what's on your display, why don't you think about where, like, where's your data going? What's your data sovereignty situation? What's your AI governance? Like this. Like, I, I feel like this right here, this smart glass device needs to take a, a number. Like you know, at the deli line where you grab a number and they're like now serving number 17. Like silent glass needs to take the number from the purgatory in the movie Beetle Juice where it's like now serving seven and like silent glasses number is like 16 million. As far as like where I'm worried about controls. All right, all right, I'll go back and look at chat. Maybe you guys are telling me I'm crazy or out of control. James McQuigan, I invite you to comment on this particular story once Career Hotline goes. I, I need a second opinion on this one because to me, the only thing I, I don't even know why the, the government of Great Britain's involved with this. Like, like who? Again, I, I'm, I'm suspicious and cynical. I almost wonder if this is like a financial thing and someone had some financial incentive to bring this to life.

C (48:39)

Interview scams self propagate According to research from Trend Micro, North Korean threat actors are evolving the contagious interview scam into a self propagating supply chain attack using fake job offers to trick developers into running compromised code that spreads malware through.

A (48:57)

Hold on. Battle my Paul past the Casp aka sec way to go

C (49:06)

Repositories. The campaign is being attributed to the group Void Dokev and uses malicious VS code tasks and hidden repository files to deploy rats, steal credentials and infect downstream projects. When code is shared, this can rapidly cascade across open source and enterprise environments with more than 750 infected repositories now identified.

A (49:28)

All right, Kyber game. All right, so North Korea is up to it again. North Korea should have like a early 90s, you know, ABC Family Friday sitcom with their, with their fake I T. Workers. They're constantly, it's like, oh, what's North Korea up to this week? Stay tuned for more. Like, just short of being like, did I do that? Did like Steve Urkel? They're like, oh no, someone's infected a GitHub repository and there's malware spreading like a worm. And then there's like, you know, Kim Jong Un's like, did I do that? But he's wearing like, you know, the, the, the, the Urkel outfit. So let's see what North Korea is doing today. All right. Because I'm curious, I'm wondering if they're doing the actual hiring of the North Koreans or if this is where they're scamming people. All right, so this is where they're scamming people. This is not North Koreans getting jobs. This is North Koreans targeting active developers. Remember, I've said this in the past and I'll, I'll say it until I'm blue in the face. When you. And think about your own history, okay? And for the 18 to 22 year olds who don't have history, like, just believe me on this. Say you're working somewhere right now, right? Say you're working somewhere and you have someone contacts you about a job you're making. 60,000, 70,000, whatever, whatever your number is, your salary. And they contact you and they say, hey, we see you, we think you're great. You've been doing all the things that I've tell. You know, we talk about on Simply Cyber. Like, like, like, like, let's say Luke Canfield. Just to use an example, somebody contacts Luke Canfield and they're like, dude, we love all the things you're doing with drones and we want to give you a job offer and we're willing to pay twice your salary. That's appealing to anyone. But you're not going to tell your current employer that you're entertaining another job, which means you're going to start to be secretive. And chances are, like, you go out into the parking lot and you take the job interview from your car, maybe you call in sick that day, you take a long lunch or whatever it is. You're not being really transparent with your employer that you're doing this because you don't want your employer to fire you because you're seen as a flight risk. North Korea knows this and they're taking advantage of it and they're targeting developers. Developers have access to developer creds, development environments, API keys, source code, all the things. So now instead of targeting one in social engineering, they're going after the whole developer ecosystem. What they're doing is they are compromising repositories. Let's see, what do they do with these repositories? They use fake job lures to target developers. Yes, yes, yes. How's this new, though? That's what I want to know. Okay. I don't see how this is a new attack vector, though. Give me a second. Okay. All right. This doesn't look like a new attack vector. All right? So, all right, this is not. Whatever. This just is a more efficient malware infrastructure for North Korea. This isn't like a new. This, this is not. Oh, my God. This is like the newest 2027 version of the Chevy Colorado. And now they've put black Rims on the truck. Like, this is the same thing. Listen, what they're doing is they're asking developers to interview for a job and then they make them do a technical component of the job interview and they have to clone a repository as part of the job interview and then do some challenges. The repository itself has malware. Here's what I would tell you to do. Number one, make your entire business aware that North Korea is doing these fake job interviews. Share it with on social media. Share with your friends, family. A lot of people are getting laid off right now. There's a lot of uncertainty in the market. Be aware that you're, you're like, this is kind of like taboo, but like you're talking to your current workforce about interviewing for jobs, which is like, what, what? But just don't even make it like, hey you, Carl, you're, you're a risk. So don't do this. Just be like, hey, listen, threat actors are doing this. If you're going to do a job interview or you know, tell your friends if you're going to do a job interview and they ask you to download some software to do a challenge or coda, clone a repository, do it from a vm, do it from a sandbox, do it from somewhere. Or just be mindful because this is, this is, you're really gonna compromise yourself and you could lose your crypto wallets, you could lose, you could actually get fired because you're actually, you know, patient zero of a bigger infection organization. And then, and it's not a real job. So it's. Your backup plan isn't to get fired from your current job and then go work for North Korea, not a real job. So just be mindful of that. This is gross. North Korea is effective with this, which sucks. But yeah, be on the lookout for this. Also, by the way, if you push back and you're like, ah, I don't know about this, and they're like, well then you're not going to get the job. You can just give them a double finger salute and let them know that they can keep their job because you don't feel comfortable doing this. Don't let desperation be part of your calculus on deciding whether or not to like, do some of these things. Okay?

C (55:26)

Toys with Windows post quantum encryption. A new Kyber ransomware operation is targeting Windows and VMware ESXi systems, with one variant experimenting with post quantum cryptography. According to analysis from Rapid7. Researchers found the Windows version uses Kyber 1024 for key protection alongside traditional encryption with while The ESXI variant falsely claims post quantum capabilities and relies on standard algorithms. Both strains are deployed together to maximize impact, aggressively encrypting data, deleting backups, and disrupting recovery. Researchers note the use of post quantum methods doesn't materially change outcomes for victims.

A (56:10)

Yeah, all right. Like again, like now with post quantum encryption. Like, dude, if they. You listen, if somebody. Ransomware is your environment with AES 256, you're not unlocking it. If they use post quantum encryption. Wow. Ooh, did you get the shirt too while you were there? Like, who gives a damn? Like, it's. You still can't access your files. The impact is still the same. You can have, dude, you can have AI next gen terminator 1000 skynet encryption. I. I still can't access it. Chances are if you use some kind of older encryption algorithm that is breakable, I probably still can't access and it would probably be faster for me to recover from backups in the first place. Like, guys, don't lose the forest for the trees. Don't be so hyperfocused on the right here that you lose the greater perspective. Right? Okay, Kyber, make a name for yourself with your post quantum encryption

C (57:14)

compromised Kicks images and extensions hit Checkmarks socket Researchers report threat actors compromise the checkmarks supply chain by injecting malicious code into its KICS or Kicks Docker images and related Visual Studio code extensions. The tampered images enabled data collection and exfiltration of sensitive scan results, while affected VS code extensions downloaded and executed remote code without verification. Researchers warn the incident likely spans multiple distribution channels, advising organizations to treat any credentials exposed through impacted scans as compromised.

A (57:54)

All right, if you are using Checkmarks Kicks, which is a Docker container, like literally this right here, you gotta. You gotta do some threat hunting and some incident response to make sure that you didn't run the malicious version of this. I'm not 100% clear on how easy it is to inventory your environment for Docker containers. So Docker's awesome because it allows you to containerize software. So all the, all the dependencies, all that stuff is already baked into the container. So you don't have to sweat that. The thing is, that's a modern kind of architecture thing. I don't know how easy it is to query your environment. You can query your environment and see Docker running. I don't know how easy it is to query your environment and see what containers are running in that Docker container. If I'm running Docker on my own machine, I can see what containers are there, But I don't know if we have a centralized management approach to doing this. So that's one thing to be mindful of. Number two, I don't know what this, I don't know what this check marks kicks does. So you know, like it's hard for me to determine who would be in scope of this particular thing. Hold on one second. Oh my God. What is check? And then I gotta go to class. Final day of Citadel. By the way, check marks kicks Kick stands for keeping infrastructure as code secure. Lol. It's not lost on me that like this is a secure thing that's led to a compromise. It's a developer friendly tool that scans infrastructure as code like terraform, kubernetes, etc to find vulnerabilities. All right, so hey listen, if you're running this, first of all, awesome, because that means your developers are trying to find misconfigurations and security vulnerabilities in their modern infrastructure as a code environment. Just dude, get with your development team. You this, you should, if you don't already have a good relationship with the developers in your organization, take this as an opportunity to make those relationships bring donuts, bring a smile, work with them on this and then you know, when the next thing comes down the pike, you'll have that open line of communication. This is serious. This is a. Anytime a security technology or security capability gets compromised, like when defender is the one that's, you know, disabling things, when your firewall is the entry point into the environment, when your, your VPN concentrator is, has a zero day, like those are real things that you as a security professional have to be on top of. I've said this a million times and I'll say it until I'm dead. Like our job is not easy. Our job requires constant vigilance, consistency, execution and relationship building because we. I'm not patching this Docker container. The dev team is. All right, so get after it. I got to get the heck out of here.

C (61:00)

Too many vendor demos are falling.

A (61:02)

No, no, no, no, no, no, no. All right, all right, all right. Here we go. Well, I'm looking for. Guys, I hope you had a great show today. Today was Thursday, April 23rd. Hey, do me a solid favor. If you're still here and I don't ask often, but when I do ask, I, I really am asking. I really appreciate it. I need it if you guys can. Today at 4:30pm Eastern Time, simply cyber firesides like every Thursday is coming on today. We're Having Rick Miles, who's the vice president, product of cloud and Network. We're talking about modern architectures and the way that firewalls need to operate in the modern architecture. This guy's an absolute legend. West Point graduate, senior, senior, Cisco person. We're going to be talking about closing security gaps in modern environments, just like that Docker story. This is one of those firesides that I would really appreciate support. So if you can put it on your calendar or. Or if you can be there to support Simply Cyber, I would please appreciate it. Here, here's a link. I think you can go to Luma. Hold on one second. Let me see if Kimberly put it here. Yep, we did. So look it. You can go right here and get a calendar invite. Today's Fireside. Click me.

B (62:40)

Okay.

A (62:41)

All right. Sorry. I know it's a little groveling and a little begging. I don't do it often, guys. I. I feel like I allow. I leave it to you to choose your own adventure. But occasionally I need. I need support. So please come check out this fireside today. It starts at 4:30pm Eastern time. All right, guys, you know what we can do right now for value for you, VF And Khalil, first timers, we got the cyber career hotline. My main gyms. My man James Aquigin at 35, 000ft's gonna be bringing the heat. James, you've got your own intro, right? Okay, so I. Normally I would play the intro, but James has got his own. We're gonna allow him to do that. James, I'm gonna bring you on stage with me right now really quickly. We're still working through the transition, but this is all about good times. I am wearing a college shirt because I have to go look like a real professional out in the real world after this. James, you're coming on stream here.

B (63:40)

Bring it.

A (63:41)

Hi, James. How are you, Jerry?

B (63:43)

I'm well.

A (63:43)

How are you? I'm good. Hey, guys, if you don't know, James is a close personal friend of mine. I love this guy. I love everything that he's doing and what he's up to. And I'm super pumped that he's going to help you with the cyber career hotline. James, I'm going to step away. You have a great show. And until next time, stay. Stay secure.

B (64:03)

There you go. All right. There goes Jerry. Let's see if my intro works. I can't remember if I got music, but let's see what happens. I'm James McQuigan at 35,000ft. This is the Cyber Career Hotline. If you're building a career in cyber security, this show is for you. Let's get into it. I couldn't resist. That was just too much fun. After Jerry asked me to make the video. Ah, great. There's the chat in there. Let's throw on the little ticker across the bottom. Yeah. Ask me anything. Cyber security. For the Cyber Career Hotline, I am James McQuiggin here at ground level today. Next week I'll be at sea level. I'll let you take that for what it is. So, yeah, when Jerry asked for the Deepfake video, I'm like, you got it. I can do that. Buddy was able to make that. And then I'm like, hey, he can't have all the fun. I want to have some fun with this thing too. So certainly was able to, you know, tweak it. Put my face in there, a little AI work. Put my face in there, match skin tone and colors, and then recreate the video and off it went. Nice. I have plenty of audio of me to be able to have it say the actual saying. So cool. All right. I'm looking off screen because I'm trying to read the chat from everybody seeing all the. The obvious. Photoshop. Actually, no, it was just Gemini. It was Gemini to change the face. And then I used Hedra to generate the AI video overall. So kind of giving you a little sneak peek with regards to that. So let me see, where is my chat? There it is. That's what I wanted. Cool. So drop your questions in here, James. For the proper 80s feel, you should have the Terminator in the window. I tried to put a plane flying in the background. I didn't have that one on here. I wanted to have a plane flying in the background out the window. But yeah, I can certainly. I could certainly tweak that and have me as the Terminator or have Jerry poking his head in the window as the Terminator. I think that would be kind of funny as well. Alrighty, Cyber witch. Cyber risk witch. Good to see you. Good to see you here. What's your best advice for testifying in a corporate hearing? That's interesting. I've had the pleasure of doing some expert witness contracts tasks working with. Representing some folks that got scammed out of money and was able to do that. But advice for testifying, Tell the truth. Answer the question as they ask it. Don't give any more. Don't give his, you know, give the full response to the question. Don't add to it. Don't think of what they want their answer to be. Just they ask you a question, you give them the answer and be honest with it as well. Let's see, do you have any questions? Let's see what else we got here. We got coming in from Steve Young. We've yet Elevate IT conference in Minneapolis this year. I am working on trying, I've been working with Casey. I just did Elevate it in Tampa. I'm just trying to get things lined up contract wise and kind of figure out my schedule, school and my income. I, I, Casey has always told me that if I want to be an Elevate IT I, he's always got his doors open, let me be able to. Yeah. So hopefully I will be there. I need to check the dates and get all that squared away and everything else. So thanks for that Steve. Okay, here comes Carrie dropping in the dad joke for the day. Did you hear the cheesecake had a new hit on the radio? Slice, slice, baby. Okay, next question. Best method to keep focus while studying. You know, this is something I struggle with. You know, school was never my strong suit. I love learning by hands on. So when I've got to put a book in my hand and go through stuff, it kind of changes it up. So I think for me, the Marcus Cyber Miller it's going to depend on, you kind of have to do some inner reflection on how you study. How do you learn? For me, I learn better when I'm instructing, when I'm teaching and I have to kind of consume information and then be able to turn around and send it back to people that are wanting to learn and kind of look at the material and study it and then be able to teach it. Don't have to know all the answers but just got to know where I can go find the answers. So when it comes to studying a lot of it, you can do a lot of different things. For me it's okay, I'll study for half an hour and then I take a five minute break. You know, go get a glass of water, check email, play a little game as that reward. Some folks, they can go an hour or two hours and then they take a longer break. 10 or 15 minutes break. One of the things I've tried doing and it's going to sound weird but there's on YouTube there's a bunch of different channels that provide focus music and I find that if I drown out all the other distractions or noises by listening to that focus music and focusing on the book or whatever it is, I'm Reading or studying that helps as well. Ironically, when I'm studying, I find that if I'm at a conference and I'm listening to other people speak, those other what might be distractions actually help. So it's kind of funny. So a lot of it comes down to what helps you study. You know, figure that out, try different things, take. Take breaks, try music, try to teach it, make flashcards. You know, there's a whole lot of different things that you can do with regards to that. So. Alrighty, let's see here. Going back. Did you hear the cheesecake? Best method, Cyber Risk, which you're welcome. Stay with the facts. Exactly. GRC guardrail answering Cyber Risk, which is question. You know, that is just such a fun handle. Cyber Risk. Which am I coming to? The one in Houston. DJ B SEC wants to know if you're going to be there. DJ B sec. I will certainly. Look at that. I do love going to the Elevate IT events. They're really great. I have a blast moderating the CISO panel and sharing my insights as well. So I gotta. It's on my list of things to do and look at all the dates for Elevate IT and see about getting out there because it is a good event and very rewarding. Steve says he'll reach out to Casey. Cool Haircut Fish is going to B sides Charm. I do believe that's the one that's up in Maryland. Who's gonna be out there? Let let Haircut Fish now. Great meme today. Really like that one. The nerd culture. Overall, very cool stuff. Let's see. Question. Oh, here comes a fun one. I passed SEC plus. I'm finishing a master's with concentration in vulnerability management. Pen testing. Should I try to get ejpt, CCNA or CISA Plus? Ah, the dilemma of what certification to get next. For me it's going to come. My recommendation is what sort of what's the purpose of the certification? What is it you need it to do for you if you're doing pen testing? The oscp, My Siri just went off course.

C (71:27)

Education or assessment.

B (71:29)

Okay, let her, let her rant. You've got to look at what the purpose of your certification that the next one you want to get is. The CCNA is certainly as a networking one. The sizzle one is your security analyst. The Egypt. I believe that's another pen testing one as well. OSCP is kind of the, you know, the top level pen testing 1. If pen testing vulnerability management is what you're looking at, CISA gives you Kind of, you know, that security, security analyst position. That's kind of your entry level. Just a. But you know, maybe with a couple years of experience, ISC2CC, ISC2 CISSP, OSCP. Again, figure out what you want that certification to do. You're looking to try to stand out. We know in this industry people are having degrees, are coming out with certifications. How do you make yourself stand out, you know, besides having the degrees, besides having the certifications? Do you have something online that people can go see? Do you have a blog? Do you have something where you're sharing your experiences? Do you have videos? You know, it's all about you being the CEO of you marketing your brand. If there's another certification you want to take, take then, then take whichever one interests you and you thinks things that will help you advanced within your, your career overall. So good luck with that. Keep me posted. Yo EU3. Be curious to see how that goes. Here's a fun one. Space tacos. If I could go back and give my 25 year old self some career advice, what would it be when I was 25 years old? God bless. That's a long time ago. That would have been 1997. Back then when I was 25, I was working in a bank. I just finished my, essentially now looking back and finished my career in theater and I was working at a bank in finance, doing sales. And it was just something to do until I could figure out the next thing. It wasn't until the bank laid me off that I decided, hey, you know, I need to go into cyber, sorry, I need to go into computers. Because when I left high school it was either theater or it was computers. And I went into theater and did that for a number of years. Had a blast. Definitely one of my passions. And it was all about the technical side of theater, lighting and sound and stage management. I wasn't a performer as some might, not as some might think. But when I was 25, that was kind of. I was pretty well at a crossroads. And I think I would tell myself, just keep going forward, just keep moving forward, doing what you're doing. And you know, when you're 25, you know, you're got your whole life ahead of you essentially trying to figure out, okay, what am I going to do for my career? Try different things. Don't be afraid to try different things. Don't be afraid to get up in front of people and share your experiences overall. So yeah, just you know, take each day as it comes along, try different things, experiment, see what happens. Spend A month on Jurio. That's always no fun. Low fame music always puts me in the flow state regarding studying. Yep, good one from Jimmy. I like that one. Bruising hacks. Always good info coming from Bruce. When it's hands on reading and available, I find listening to and reading helps at the same time and keep the brain focused. You know, you're trying to keep your brain just, you know, free from distractions and you know, it's like, oh, look, shining object. Or you're. My biggest problem is I'm reading something and then it's like, oh, it triggers something. Oh, I need to go look that up. And then I go look it up and then I go down a rabbit hole. Sometimes what I'll do is if I'm reading and I think of something, I'll write it down and then it's out of my brain and then I look at it afterwards. So there's that as well. Oh, here's a classic. I have this one in my. In my repertoire as well. But I like this one. Roswell. What do you call a doctor who fixes? A urologist. Yes. There you go. Oh, B sides charm is in Baltimore. Yeah. Maryland. Okay. Good to do. Sure. Since when hiring a manager? Nope. I listen to music. Going to Hack Space Con Orlando. Very cool, Leon. I will be there as well. I just got my ticket the other day. I will be at Hack Spacecon on May 9th and 10th, I believe is when it is. Let's have a. Let's see here. Let's kick on the if. Where's that window? There we go. Share this one here. So. Hey, there you go, folks. Yep. Don't forget, 4:30 this afternoon Eastern. Check out the. The session that Jerry's gonna have. So hack SpaceCon 2026 here in Central Florida over at the Space Coast May 6th to 9th. But the. I know the training. Yeah. May 8th and 9th, the May 8th day. The Friday, you get access to the conference and then you also get access to Kennedy Space center to be a lot of fun. And then May 9th is at the Radisson Resort as well. So definitely check that out. Let's see. Can I hide that? Come back to me. Cool. Great. So definitely. Yeah, I will be there both days. I'm gonna see Air Crone present buddy of mine. So yeah, I'll be there. I'll have my stickers with me. My. Do I have any handy? Nope. I'm trying to look for some around my desk area. No, but I do have my new fancy business cards that I do have for Parent security with it don't come at me with the QR code. It lists the website underneath it. But the fun thing is is on the bottom of the the business card I have a dad joke. So there's that there as well. So yeah, come, come find me Leon. I'll give, I'll get the sticker for you buddy. Let's see what else we got going through here. The last couple of years you've worked recommendations. I love how you guys are all supporting each other. This is, this is one of the things I love about this community overall. Not a question. All these are always fun but what's been working from what I've seen are projects and posting in LinkedIn or creating a YouTube documenting your project process and how come helps. Yes, no, I agree. Yeah, you want to, you want to put yourself out there, be the CEO of you brand, market yourself and being out there with regards to, you know, sharing what your experiences are, commenting, connecting with people on LinkedIn because it's going to essentially be somebody that you know, knows you, knows your abilities is the one that's going to bat for you in an organization and help you get that job. I'm not sure my 25 year old self will believe what today me would say. Yeah, there's that. It's like listening to the old man. I can certainly attest to that. Keep swimming. Just keep swimming. Yeah, let's see. 25 year 25. That's so impressive for him to be get to cyber. Let's see what other questions you guys got. Sorry about my comment. Thought the joke was funny. No, it's great. It wasn't. It wasn't. James didn't laugh. Oh no, it take well it usually with dad jokes I try not to laugh because then you know, it kind of gives it up. What kind of doctor's favorite kind of tea? Immunity. Very good, very good. I would love to do one of those dad joke offs with people where you sit across from each other and you tell jokes and the first one to crack loses. I've done a couple of those before at some conferences and it's always fun. Maybe simply cybercon if I can make it out there. I'm working on it. Trust me, I'm working on it. Sans was tough. That's fancy. Looking for the more questions here. Everybody chatting back and forth was great. Have I looked into open mythos? Not yet, but random skills, random X skills. That's certainly a good question. I'm always looking at, you know, playing around with the latest AI. I've Got Olama loaded on here, playing around with the different deep fake tools and so forth. But I haven't played with Open Mythos yet. I'll have to add that to my list of tools to play. I have Open Claw loaded up on an old laptop to mess around. And I was chatting with Jax Scott, who is one of, one of the big one of our members in the Simply Cyber community. And we were chatting about openclaw and how she put it on a machine and just let it run wild on the machine. It was a.

A (79:55)

It was.

B (79:55)

There was nothing loaded on it, no data. I don't think she had her email, but basically used it to try to figure out its capabilities and potential. So maybe I'll do the same with that as well. So good stuff there. Recording people without the permission. Commenting on LinkedIn does wonders. Yes, it does. Any security awareness tips from olas4897? Any security awareness tips? How do you train people in an engaging way? There's a whole series of books and videos and people and psychologists and, you know, but engaging is always the trick you want. And it's funny when you think about what kind of training you have to do and you look at it and you go this on a topic that you're not interested in. So for me, it was always when I was working and doing the security awareness training or different training required for my role at organizations, you know, to be, you know, embargo and financial and insider threat and all the, all the finance training. And to me it wasn't interesting. And ironically, every year it was the same thing. They never mixed it, they never updated it or tweaked it. I guess not much has changed. It's still kind of the same rules, but, you know, every year it was just the same thing. They'd have fun little videos and, and pictures and stories and those kind of things to, to drive it along, but it was the same thing year after year. And it's like, you know, I just want to get through it and answer the little questions and move on. Why do I remember it? A lot of it was common sense, at least to me. You know, when it came to most of the rules with embargo, you know, not negotiating, you know, with foreign, certain countries and insider trading, you know, learning about things going on inside of our company and then going, buying stock or telling friends, you know, that kind of stuff. For me, a lot of it felt like common sense. But when it comes to security awareness, not a lot of folks are aware of, you know, the different ways that cyber criminals because it's constantly changing and constantly evolving. Maybe it's constantly changing in the finance space, I don't know, I haven't seen that. But based on the way I had training for four years and it being the same thing, there really wasn't didn't seem that there was that much changing. But with engaging, you know, whether you do it with lunch and learns, whether you do it with, you know, you have videos or you know, you might have videos that have kind of the story that's telling a story relating to whatever topic it is and then underscoring that is you know what they need to be aware of or it solidifies it. So you kind of give them the training and then the video helps kind of helps support and enforce the message that you want. If you don't enjoy watch taking your own training or taking the training then your users certainly aren't going to enjoy enjoy it as well. You've got to get buy in from the top, you've got to get them supporting it. But engaging is making it, you know, trying to make it fun for the users through different stories, through different, you know, having different people tell it, you know, those kind of things. So hopefully that helps for you there. Oh, here's a fun. This didn't have the cue it but I kind of caught a question from Jonathan here coming to us from LinkedIn. Hello Jonathan. I'm finishing my being in cybersecurity security. My senior seminar project was building a secure hub and spoke network. Oh, secure hub and spoke. Very cool with terraform and aws. I don't know iac, how can I leverage this project to get a job? What kind of jobs is this project relevant for? Very good question, which is my way of stalling until I come up with an answer.

A (83:35)

But

B (83:37)

with a hub and spoke network, if that's not something that is being you're not seeing leveraged within the network, within the industries and you don't see that it's relevant then you know, either figure out a way that you could still take that project and work it to be something that would be supportive. I know there's a lot more networking folks out there that can provide a response to that, but you could certainly leverage, you know, if you've got diagrams that don't change, show any sensitive information, you know, that you've drawn, you know, deliverables that came out of that maybe any reports that were written, analysis that got done, the benefits, you know, and have that up as a report Also looking at, you know, where is it you want to end up role wise and figure out how to create deliverables and have those available online would be my response regarding that. What kind of jobs is project I don't you know from outside of a network engineer or a security network architect. Ironically for me I'd be looking at ChatGPT. Here's a project I worked on what kind of job positions are there out there and start looking at that and then once you find the job positions, find people that do that job and find a way to be able to connect with them either in your local community, in your area or through online. Maybe even through our own, you know community as well. That always goes goes a long way. So good luck with that. Keep your supposed to be connect with me on LinkedIn too there Jonathan. Let's see start with tools. Anyone going to B side Stampa who is dropping Regine Franklin Hey Regine, I will be at B side Stampa. I know where I'm going. Ironically again my buddy Eric Crone will be presenting so I'm going along to that. Plus I know a bunch of folks over in the B side stamp at Community, Michael Rogers and a lot of folks over there so excited to go to B side Stamp. But that is the week after hack Spacecon so instead of May 9th it'll be May 16th. So looking forward to that. How are we doing on here folks? 9:28 okay, we'll do a couple extra I know we can do a couple extra minutes because Jerry ran over but I want to be respective of your time. But yes Regine says I'm pretty sure Kathy Chambers FedEx find the true two are going to be there. Yep. It's a shame Virgin Hacks won't be here yet but we'll catch you there next year. Let's see what else we got. How can James stall without horses There you good one there Carrie. We'll give you that one. But you know that if I do have my horses I will have a stable connection. Let's see what other fun questions we've got in here. Any tips on interviewing? Oh these are always fun. Any tips on interviewing for an IAM Manager Identity Access Manager position titled Manager because of the project it's around but sounds more like a Project Manager. Project Manager slash engineer role. Personally I'd be finding out how many people are going to be, you know, involved in that project. How many people are going to be supporting you? Engineer possibly Project Manager most likely. Especially if it is a manager role. You can certainly unless that organization has project managers that's overseeing it and they're looking for you to come in with your expertise. So if you're interviewing for that AIM management position, I'd be looking at, you know, a what kind of questions they might ask you. Again, play around with a large language model, give them the job description and see what kind of questions you get back there. Also have your questions ready as well. You know, figure out what questions. You know, if you're, you're already saying hey, it's a manager position so is there a team that that's working with me or am I working with other people in other departments and it's just me, am I project managing it? You know, what does that look like overall? That would be kind of where I would start and figure out and go from there with regards to the questions you want to ask, the questions you might get asked. If it's dealing with identity access management, you know, you're dealing with, you know, some sort of third party system, understanding what that is, understanding the vulnerabilities that go along with it as well. Good question there. Let's see, what else do we have? Sad, I couldn't. Oh, okay, scrolling through the list. May 16th is B sides Tampa. Yes. Did I say april? I meant May 16th. It's the week after hack spacecon. Thanks dreamlogic. Have yourself a good day. Appreciate it. Let's see, did I miss any questions? I'm going to go back up through the chat. So yeah, so I've now officially stood up a parent security, if you know, you know, but basically working to make cyber threats apparent for organizations. Whether I'm doing that through fractional or VCSO type stuff or whatever the right now just kind of have a couple contracts that have come in and coming in looking to help out with human risk management. So essentially being my own boss, it's been nice the last few months and, and kind of kind of excited to keep that going.

A (88:59)

So.

B (88:59)

But if you see me@hack Spacecon or B sides or at any other conference, I'll have my fun business cards and and my stickers with me as well. That's always a good time. Ah, best advice. Let's see. That's always fun. Hansel, best advice for transitioning into GRC IT audit from a background in accounting. Already have SEC plus and CSA cert. Congratulations. Woohoo. I don't have my came in like a wrecking ball sound effect. Let's see, do I have it?

A (89:27)

Oh, maybe I came in like a wrecking ball.

B (89:32)

So hopefully that played. So you're coming in from accounting, you've got your certs. Great start. So you're accounting whether cpa. I have a colleague of mine who was a CPA at one point. But transitioning in certainly, you know, getting the certifications is one thing. Now we have to figure out how to leverage your accounting experience in with that grc, with that auditing capability. So if you ever did audits as an accountant, or if you were just kind of pushing numbers, but figure out how to align that accounting, what did you learn, what skills did you pick up and then applying those into the GRC space. So we're dealing with governor governance, risk and compliance. We're dealing with policies, we're dealing with enforcement of those policies. We're dealing with the compliance and whether, understanding, you know, with accounting, you know, all the different financial rules, you know, whether SOC 2 or PCI compliance, you know, you've probably had some experience with those kind of being able to leverage it where you've been on that side of the, of the desk, so to speak, you were the one having to deal with all of it. Now you're going to be transitioning to the side where you're looking to do the governance aspects of IT and audit and so forth. So certainly leverage that experience that you've got with the financials. That would be different than what other people might be coming in if they just have those certs. But certainly figure out a way to be able to leverage that. Look at those different certificates. Look at those different. Like SoC2 and PCI, the financial ones, you might be evolving outside of that. You know, if you're working in the OT space with energy or electricity, you could be dealing with nercxip. If you're dealing in medical space, it could be hipaa. So each industry's got their own standards and requirements that GRC has to work with. So certainly look at seeing what those different standards are, become familiar with those and again try to leverage your. Your accounting skills that come in with it. You'd be surprised. We're all coming from different backgrounds, we all have different skill sets. Need to figure out, certainly figure out a way to be able to leverage those. Cool. Oh good, the music played. Woohoo. Awesome sauce. We are at 9:34. All right, let's see if there's one more question. Nope. Okay. All righty. Well, this has been a hoot. Certainly enjoyed this again today. So let's see. Do I have. Let's share this. I just want to put this show. All right, this should kick up. Yeah. So definitely, folks Nope, not that. Not hack space gone that 4:30 today. Definitely go. Closing this the security gap in modern environments with Rick Miles. So real excited to see that. I I should be online. I know I have a meeting this afternoon, but I should be online. So hopefully catch all of you there. But thank you to everybody that that showed up and had your questions. Always, always fun to keep me on my feet, keep me guessing, keep me laughing. But thanks for, for listening and thanks for stopping by and we'll see you all this afternoon. Have yourself a fantastic day and weekend. We'll see y' all later. Sa.