Navigating the Complex Landscape of AI and Cybersecurity: A Conversation with Rob T. Lee

In this weekend edition of Cybersecurity Today, host Jim Love interviews Rob T. Lee, the Chief AI Officer and Chief of Research at the SANS Institute. They discuss the intersection of AI, education, and security, highlighting the dual nature of AI as both a transformative technology with immense benefits and as a significant security risk. Rob shares his insights on how organizations can mitigate these risks by adopting a 'yes' framework towards AI, fostering a culture of learning and experimentation, and acknowledging the vulnerabilities and knowledge gaps in the field. He emphasizes the importance of community engagement, practical learning, and the role of AI champions in driving innovation while maintaining security. Throughout the conversation, they address the challenges of implementing AI governance and explore the need for continual adaptation in the fast-evolving tech landscape.

00:00 Introduction and Guest Introduction
00:25 AI: Potential and Risks
01:26 Business vs. Security
03:36 Rob's Background and Experience
05:18 The Role of Practitioners in SANS
08:46 Governance and Security Challenges
17:13 The Crisis of Competency in AI
25:03 Encouraging Hands-On Learning
30:41 The Importance of Executive Involvement
33:49 The Problem with Security and Shadow AI
34:05 The Consequences of Shadow AI
34:52 Evaluating and Banning AI Tools
36:48 The Role of Executives in AI Adoption
40:04 Learning and Adapting to AI
42:47 The Importance of Community and Vulnerability
51:19 Practical Steps for AI Governance
58:47 Final Thoughts and Resources

Cybersecurity Today: Shadow Leak, SIM Farm Shutdown, Cisco Zero-Day, FBI Warning & Android Advanced Protection

In this episode of Cybersecurity Today, host Jim Love discusses several major cybersecurity issues. Key topics include the discovery of the 'Shadow Leak' vulnerability in ChatGPT servers by Radware, the dismantling of a massive SIM farm near the United Nations by the US Secret Service, a zero-day vulnerability affecting up to 2 million Cisco devices, an FBI warning about spoofed Internet Crime Complaint Center (IC3) websites, and a reminder about enabling Advanced Protection on Android phones. The episode also includes a shoutout to Jim Love's new audiobook 'Elisa, A Tale of Quantum Kisses,' available on multiple platforms.

00:00 Introduction and Sponsor Message
00:29 Shadow Leak Hits ChatGPT Servers
02:52 Massive SIM Farm Operation Uncovered
04:44 Cisco's Zero-Day Vulnerability
06:04 FBI Warns of Spoofed Crime Reporting Sites
07:07 Android's Advanced Protection Mode
08:00 Conclusion and Call to Action

Cybersecurity Today: GitHub's NPM Lockdown, Deep Fake Threats, and Yellowknife's Cyber Incident

In this episode of 'Cybersecurity Today', host Jim Love discusses GitHub's response to widespread supply chain attacks in the NPM ecosystem, the alarming rise of deep fake attacks as highlighted by Gartner, and the remarkable handling of a cyber incident by the city of Yellowknife. Tune in for the latest updates on cybersecurity threats, expert analysis, and the steps organizations are taking to combat these sophisticated attacks. Plus, discover Jim's sci-fi romance adventure audiobook 'Elisa: A Tale of Quantum Kisses' now available on major platforms.

00:00 Introduction and Sponsor Message
00:55 GitHub's Response to NPM Supply Chain Attacks
03:19 Gartner's Warning on Deep Fake and AI Attacks
06:03 Yellowknife's Cyber Incident and Response
08:20 Conclusion and Final Thoughts