ServiceNow to acquire cybersecurity startup Armis

MacSync Stealer adopts quieter installation

Nissan customer data stolen in Red Hat raid

Thanks to our episode sponsor, ThreatLocker

Spotify music library scraped

DDoS disrupts France's postal and banking services

Fake delivery websites hit holiday shoppers

Thanks to our episode sponsor, ThreatLocker

Link to episode page

This week's Department of Know is hosted by Rich Stroffolino with guests Jason Taule, CISO, Luminis Health, and Chris Ray, Field CTO, GigaOm

Thanks to our show sponsor, ThreatLocker

Want real Zero Trust training? Zero Trust World 2026 delivers hands-on labs and workshops that show CISOs exactly how to implement and maintain Zero Trust in real environments. Join us March 4–6 in Orlando, plus a live CISO Series episode on March 6. Get $200 off with ZTWCISO26 at ztw.com.

All links and the video of this episode can be found on CISO Series.com

President signs defense bill funding Cyber Command, Pentagon phone security

Iranian APT Infy resurfaces with new malware

Massive Android botnet Kimwolf launches DDoS attack

Thanks to our episode sponsor, ThreatLocker

Recent Windows updates break RemoteApp connections

France arrests threat actors for installing malware on Italian ferry

Senate Intel chair urges safeguard against open-source software threats

Huge thanks to our sponsor, Adaptive Security

This episode is brought to you by Adaptive Security, the first cybersecurity company backed by OpenAI. Security training fails when it's generic. Adaptive's platform personalizes training and runs deepfake simulations across email, SMS, voice, and video. And with Adaptive's AI Content Creator, you can drop in a breaking threat or compliance doc and instantly turn it into interactive, multilingual training – no designers, no delays. Learn more at adaptivesecurity.com.

Find the stories behind the headlines at CISOseries.com.

FTC orders crypto to pay

New exploit of React2Shell

Ukraine-based fraud ring taken down

Huge thanks to our sponsor, Adaptive Security

This episode is brought to you by Adaptive Security, the first cybersecurity company backed by OpenAI. In deepfake scams, the tells aren't glitchy video anymore – it's behavior: "Do this right now," or "keep it secret." If you hear urgency and secrecy together, stop and verify through a second channel. Call a known number, start a chat thread, or ask something only the real person would know. Adaptive trains teams against exactly these tactics. Learn more at adaptivesecurity.com.

Rogue NuGet package steals data

Venezuela's PDVSA suffers attack

Patched Fortinet flaws exploited

Huge thanks to our sponsor, Adaptive Security

This episode is brought to you by Adaptive Security, the first cybersecurity company backed by OpenAI. Picture a "new hire" who interviews well… except they're synthetic: AI video, AI voice, AI backstory. Once they're in, they go after payroll, internal docs, and access. That's the new reality: the attack surface is trust itself. Adaptive fights back with realistic deepfake simulations and training that actually sticks. Learn more at adaptivesecurity.com.

Microsoft updates cause queuing failures

Phishing campaign delivers Phantom stealer

Huge thanks to our sponsor, Adaptive Security

This episode is brought to you by Adaptive Security, the first cybersecurity company backed by OpenAI. Attackers don't need malware anymore; they need trust. Tip: set a simple passphrase for high-risk actions, like wire requests or "urgent" account recovery – especially within finance teams and families. If the caller can't answer it, pause and verify. Adaptive runs deepfake and vishing simulations so employees practice this before it's real. Learn more at adaptivesecurity.com.

Link to episode page

This week's Department of Know is hosted by Rich Stroffolino with guests Andy Ellis, Principal, Duha, and Johna Till Johnson, CEO and Founder, Nemertes Research

Thanks to our show sponsor, Adaptive Security

This episode is brought to you by Adaptive Security, the first cybersecurity company backed by OpenAI. AI is rewriting the cybersecurity rulebook, because attackers can now scale persuasion as easily as they scale code. The real target isn't just your systems anymore; it's human trust. If you aren't actively testing your organization against AI-driven phishing, vishing, and deepfakes, you're leaving a gap criminals will exploit. Adaptive runs realistic simulations and delivers tailored, engaging training so teams respond correctly when it counts. Learn more at adaptivesecurity.com. Learn more at adaptivesecurity.com.

All links and the video of this episode can be found on CISO Series.com

16TB MongoDB database exposes nearly 4.3 billion professional records

Apple posts updates after discovery of WebKit flaws

Coupang data breach traced to ex-employee

Huge thanks to our sponsor, Adaptive Security

This episode is brought to you by Adaptive Security, the first cybersecurity company backed by OpenAI. Deepfakes aren't science fiction anymore; they're a daily threat. Quick tip: if your voicemail greeting is your real voice, switch it to the default robot voice. A few seconds of audio can be enough to clone you. Adaptive helps teams spot and stop these AI-powered social engineering attacks. Learn more at adaptivesecurity.com.

Find the stories behind the headlines at CISOseries.com.

Huge thanks to our episode sponsor, Adaptive Security

This episode is brought to you by Adaptive Security, the first cybersecurity company backed by OpenAI. Security training fails when it's generic. Adaptive's platform personalizes training and runs deepfake simulations across email, SMS, voice, and video. And with Adaptive's AI Content Creator, you can drop in a breaking threat or compliance doc and instantly turn it into interactive, multilingual training – no designers, no delays. Learn more at adaptivesecurity.com.