In an era where AI accelerates the speed, scale, and polish of cyberattacks like phishing and deepfakes, the human element remains the most critical variable. This discussion explores why traditional 'checkbox' training fails and how immersive, stress-inducing simulations like the cyber range are essential for building the muscle memory, confidence, and decision-making skills needed for effective incident response.
IBM's Security Intelligence podcast discusses key cybersecurity trends for 2026, including the shift to operational resilience, Microsoft's expanded bug bounty for third-party code, the long-tail impact of the LastPass breach, OpenAI's use of AI for automated red teaming against prompt injections, and the commercialization of ClickFix attacks.
In this discussion, experts Sridhar Muppidi and Cris Thomas explore the security implications of emerging AI technologies. They analyze new attack vectors using malicious AI agents, the critical gap in AI governance, the evolution of malware to mimic human behavior, and a novel smishing scheme designed to manipulate stock markets. The conversation also covers the current state and future of bug bounty programs in an AI-driven world.
A discussion on the security risks of new AI browsers like ChatGPT Atlas, the rise of malware distribution through trusted platforms like YouTube, the emergence of "post-infrastructure" malware like GlassWorm, corporate negligence in mobile security, and the critical lessons in resiliency from the recent AWS outage.
Experts discuss the security implications of Windows 10's end-of-life, the transformative but cautious integration of AI into Security Operations Centers (SOCs), the promise and peril of AI-driven automated code repair, and the ongoing battle against social engineering attacks like payroll fraud.
A deep dive into the human side of cybersecurity, exploring the motivations of bad actors, the evolution of social engineering in the age of AI, and the defensive strategies being developed. The discussion covers the move beyond passwords with passkeys and risk-based authentication, and confronts the complex security and privacy challenges introduced by autonomous agents.