Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Veracode's Chief Security Evangelist Chris Wysopal on AI's Coding Secret: 45% of Code Has Vulnerabilities Chris (aka @WeldPond), Wysopal, a veteran in application security and former member of the legendary L0pht hacker group, shares practical insights on shifting security left while embracing AI-powered development. Whether you're a CISO, AppSec leader, or developer using Copilot/GitHub Copilot, Claude, or other AI coding assistants, this discussion will change how you think about secure AI adoption.

The Django Software Foundation has released critical security fixes for CVE-2025-64459 (SQL Injection) and CVE-2025-64458 (Denial of Service) vulnerabilities. These vulnerabilities affect query construction and redirect handling in Django, putting applications and data at risk. See how AI-powered AppTrana stops these attacks from Day 0.

Why do hackers ignore your firewalls and clean code? Because they exploit your business logic and application architecture. A Business Logic Attack (BLA) is a sophisticated manipulation that uses your own system's design against you. Learn the key difference between code flaws and architectural exploits.

Targeted invoice fraud and supplier compromise wipe out small firms; strong MFA, email hygiene and verification steps stop the loss.

Customers are raving about Tanium's new remote access management solution! See a demo on today's Tanium Tech Talk. Secure shell access management for and Reduce exposure by eliminating standing privileges Create & prioritize access policies Submit requests for approval with notifications via Guide, Slack, Teams Audit activity and session logs RBAC support for auditor, user, administrator Simple setup with no additional ports to open.

Expert-led threat hunting… ️ Imagine getting golf lessons from Tiger Woods, hacking lessons from Kevin Mitnick, or gaming lessons from Valkyrae. Ok. They are the GOATs. Really good. But what about? If only someone could ride along with me, enhance my skills, and teach me how to fish (not phish). That's kinda what Tanium HuntIQ is about. Imagine threat hunting with a pro, as they teach you how to use and customize tools for your environment. Oh, and results. They help you deliver at a new level. And they do this with you for a year. That's career gold.

Tanium Endpoint Management for Operational Technology… "OT" Today see how Tanium now offers visibility for OT and ICS devices in manufacturing and industrial environments. Tanium full stack visibility at speed and scale on the OT shop floor Using native device protocols from a Tanium client satellite Query & report on devices & vulnerabilities using a familiar Tanium experience IT & OT global visibility converged into a single solution.

This week on the podcast, we review our 2025 security predictions and grade ourselves on our accuracy. We recap all 6 predictions for 2025 from multi-modal AI being used to create entire attack chains to the CISO role becoming the least desirable role in business, and follow up on this year's news to see if they hit or not.

See Attack Simulation, Automated Red Teaming, and Attack Path Validation in action—this video shows how real intrusions unfold and how to stop them.

Welcome to Data Security Decoded. In this episode, Caleb Tolin welcomes back Joe Hladik, Head of Rubrik Zero Labs, for a focused look at how identity-driven threats are redefining modern security. Drawing insights from Rubrik Zero Labs’ latest report, Identity Crisis: Understanding and Building Resilience Against Identity-Driven Threats, Joe explains why identity has become the new perimeter in an era where hybrid and multi-cloud environments dominate.