Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

AI is everywhere in cybersecurity. For partners, the real question is not about the technology. It is about your people. Is AI replacing analysts, or making them more effective? In this session, we break down the differences between automation and augmentation and why they matter for MSPs delivering security services. Automation removes repetitive SOC work such as triage, enrichment, and basic containment. Augmentation strengthens human experts with faster investigation, clearer attack mapping, and smarter response decisions.

This week on the podcast, we cover the cyber attack that managed to wipe more than 200,000 resources off of the medical technology giant Syryker's network. After that, we review a research post on a good chrome extension gone bad. We end by discussing a recent Microsoft threat intelligence post on how North Korean-backed threat actors have operationalize AI for job scams.

This week on the podcast, we chat about an OpenClaw bot that moved beyond vulnerability research and into malicious activity. Before that, we cover an AI-discovered vulnerability in the pac4j-jwt authentication library before ending with a discussion on an upcoming California law designed to help make age verification in the digital age easier, but with massive consequences.

Many MSPs rely on Microsoft Defender as a starting point for protecting customer environments. It’s built in, familiar, and good at generating alerts. But modern attacks don’t stop when an alert appears. They often use stolen credentials, legitimate tools, and cloud access to move quickly after detection. In this session, WatchGuard’s Worldwide MDR Channel Sales Manager Jen Rose will look at how attacks unfold in Microsoft Defender environments and why detection alone leaves gaps for MSPs and their customers.

This week, Marc and Corey break down a recently disclosed and patched 0-Day vulnerability in Cisco’s Catalyst SD-WAN Controller that was actively exploited for three years.

This week on the podcast, we discuss the recently disclosed and patched 0-Day vulnerability in Cisco's Catalyst SD-WAN Controller which has been under active exploit for 3 years. After that, we cover the latest open source supply chain attack involving a self-propagating worm targeting AI tools. We end with a discussion about another social engineering campaign targeting job hunters in the software development world.

Join WatchGuard CSO Corey Nachreiner and Director of Security Operations Marc Laliberte as they discuss key findings from the WatchGuard Threat Lab’s H2 2025 Internet Security Report, the first of our biannual release version of the report. During Inside the Threat Landscape: Biannual Cybersecurity Briefing, they’ll cover the latest malware and network attack trends targeting small and midsize enterprises, along with defensive tips you can take back to your organization to stay ahead of modern threat actor tactics.

New episode of The 443 Podcast is live Marc and Corey break down our recent Biannual Internet Security Report, covering the threat trends that matter most right now.

This week on the podcast, we cover the WatchGuard Threat Lab's Internet Security Report for the second half of 2025. In this episode, we cover the latest trends in malware at both the network perimeter and endpoints, network attacks, and the top malicious domains from the period before, and end with some tips everyone can use to defend their networks.

Open-source AI tools are exploding in popularity. But what risks are they introducing inside your organization? If AI is in your environment, this is a conversation you cannot ignore.