Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

All North Korean IT worker schemes hinge on one thing: a willing participant in America. We found one, and knocked on her door. Experts have dubbed some of these Americans “laptop farmers.” The North Koreans call them “facilitators” – people willing to host multiple laptops in their home and happy to not ask too many questions. But identifying these people can be hard: unless you have access to a private Discord channel where North Korean IT workers talk freely among themselves.

Restoring data is only half the battle. You must validate every privileged account and device relationship before going back to production.

For the first time ever, host and former lead cybersecurity and digital espionage reporter for The New York Times Nicole Perlroth partners with a team of private investigators as they infiltrate a North Korean worker cell.

A new breed of worker is quietly clocking in across the United States. They’re writing code, managing your passwords, training the next generation of AI models. They’re gaining trust and access. On paper, they’re the dream hire: skilled, low maintenance, always remote, and often affordable. By most accounts, they’re doing the work. But strange things are happening.

Modern cybercrime is more sophisticated than it was even two years ago.

Phishing is evolving, not disappearing. Allison Wikoff explains why the human element remains the most consistent target for threat actors. Watch the full video on our channel.

Healthcare cyber resilience depends on ransomware recovery and patient care continuity. Christian Lindmark of Stanford Health Care joins Josh Howell to discuss an innovative approach to building an isolated recovery environment. Instead of requesting significant new capital from the board, Christian proposes a hybrid model that utilizes existing disaster recovery hardware for cyber response. They explore the shift from physical disaster planning to addressing the persistent reality of cyber attacks that compromise environment trust.

Cynthia Kaiser explains how Mythos and AI are making initial access easier for ransomware groups. Watch the full video on our channel.

- What happens when the adversary’s dwell time is measured in years, but your defense is measured in tickets? Adam Karcher, FBI Supervisory Special Agent, Cyber Division, and a member of the Bureau’s AI Working Group, joins the show to break down the "convergent evolution" of modern cyber threats. Karcher explains why defenders are often stuck in a cleanup cycle, while threat actors operate in a sophisticated, compartmentalized ecosystem that requires a fundamental shift in defensive strategy.

- Dr. Ido Sivan Sevilla joins host Caleb Tolin to break down battlefield stories from a massive analysis of over 3,000 local government entities. Dr. Sivan Sevilla, who serves as an Assistant Professor at the UMD College of Information and holds joint positions at the Hebrew University School of Public Policy & Governance and the School of Computer Science and Engineering, brings a multidisciplinary lens to the alarming reality of risk clusters.