Find partners
Biz & Tech Podcasts — Collaboration Platform
Menu
HomeBusiness and Technology PodcastsAboutBlogContactSubmit Podcast
Shared Security

Shared Security

Hosted by Tom Eston, Scott Wright, Kevin Johnson

NewsInterviews guests
WebsiteRSS feedYouTube

Episodes

453

Latest episode

Jun 2026

Language

EN

About the show

Shared Security is your premier cybersecurity and privacy podcast where we explore the bonds shared between people and technology. Join industry experts Tom Eston, Scott Wright, and Kevin Johnson as they deliver the latest news, actionable tips, expert guidance, and insightful interviews with top cybersecurity and privacy specialists. Stay informed and take control of your online security and privacy in today's interconnected world. Tune in every week to discover invaluable insights, strategies, and tools to live confidently and safeguard your digital life.

Listen to episodes

60 recent
June 15, 202611 min

Guarding AI Agents: Boundaries and Safeguards

AI agents are useful, but they become risky when they can take action in real systems. In this episode, Tom Eston discusses recent reporting about attackers tricking Meta's AI support chatbot into helping hijack Instagram accounts, and why that story matters far beyond social media. Tom explains practical guardrails for AI agents: read-only access first, human approval for consequential actions, separated accounts and contexts, prompt-injection awareness, least privilege, logging, monitoring, and adversarial testing for support and account recovery workflows. Show notes: https://sharedsecurity.net/2026/06/15/guarding-ai-agents-boundaries-and-safeguards/

June 10, 202631 min

Mobile Application Security: What Every Organization Needs to Know

Mobile apps are now deeply connected platforms for identities, payments, sessions, APIs, healthcare, retail, gaming, and cloud services. In this special episode, Tom Eston talks with Joel Destefano, Senior Product Manager at Guardsquare, about the modern mobile app threat landscape and why organizations can't treat mobile security as an afterthought. Topics include runtime manipulation, API abuse, account takeover, fake apps, overlays, malware-assisted fraud, reverse engineering, iOS vs Android risk, AI-assisted attacks, and why backend-only security is not enough. Special thanks to Guardsquare for sponsoring this episode! Guardsquare is the leader in mobile application security, with multi-layered protection for your Android and iOS apps. Learn more at Guardsquare.com. Show notes: https://sharedsecurity.net/2026/06/10/mobile-application-security-what-every-organization-needs-to-know/

June 8, 202617 min

Microsoft Threatens Legal Action Over Exploit Disclosure

Microsoft's handling of a zero-day disclosure dispute sparked fresh debate about responsible disclosure, public proof-of-concept exploit releases, and how vendors should treat security researchers. Tom and Scott discuss why disclosure exists in the first place, how bug bounty programs changed researcher incentives, what makes the Nightmare Eclipse case messy, and why legal threats can damage trust between vendors, researchers, and customers. The practical takeaway: researchers should follow coordinated disclosure whenever possible, but vendors need clear processes, appeals paths, and responses that prioritize fixing issues over intimidating the people who find them. Show notes: https://sharedsecurity.net/2026/06/08/microsoft-threatens-legal-action-over-exploit-disclosure/

June 1, 202614 min

Apple Finally Fixes One of Texting's Biggest Security Problems

Apple and Google are finally bringing end-to-end encrypted RCS messaging to iPhone and Android chats. In this episode, Tom Eston and Kevin Tackett explain why that matters, why insecure SMS is not going away anytime soon, and why Signal is still the better choice for truly sensitive conversations. They also revisit the green bubble versus blue bubble debate, platform trust issues, and what everyday users should understand before assuming every text message is private. Show notes: https://sharedsecurity.net/2026/06/01/apple-finally-fixes-one-of-textings-biggest-security-problems/

May 25, 202624 min

Should AI Have Access to Your Financial Life?

OpenAI is now allowing some ChatGPT users to connect their bank accounts and financial data directly to the platform. In this episode, we discuss the technology behind the feature, the convenience it promises, and the serious privacy and security questions it raises. From AI-generated budgeting advice to the risks of centralized financial profiling, we examine what happens when conversational AI gains visibility into your spending habits, debts, subscriptions, and financial goals. Special thanks to Guardsquare for sponsoring this episode! Guardsquare is the leader in mobile application security, with multi-layered protection for your Android and iOS apps. Learn more at Guardsquare.com. Show notes: https://sharedsecurity.net/2026/05/25/should-ai-have-access-to-your-financial-life/

May 18, 202616 min

Canvas Cyberattack Exposes Student Data Risks at Universities

In this episode we discuss the recent cyber attack targeting Instructure's widely used learning platform, Canvas, and the major late-breaking development that Instructure reached an "agreement" with the ShinyHunters cybercriminal group after threats to leak large amounts of stolen student and faculty data. Instructure says the stolen data was returned and that attackers provided digital confirmation that the information was destroyed, but the company did not deny making a payment—language that many in cybersecurity interpret as a ransom settlement. Show notes: https://sharedsecurity.net/2026/05/18/cybersecurity-lessons-from-the-canvas-data-breach/

May 11, 202621 min

Passwords Are Still Failing Us (World Password Day 2026)

World Password Day was on May 7th—but are we actually getting better at password security? In this episode, we discuss why compromised credentials are still behind the majority of breaches in 2026. From password reuse and phishing to infostealer malware and MFA bypass techniques, attackers are finding it easier than ever to log in instead of hack in. We also talk about whether passkeys can finally shift the landscape—and what organizations should be doing right now to reduce risk. Special thanks to Guardsquare for sponsoring this episode! Guardsquare is the leader in mobile application security, with multi-layered protection for your Android and iOS apps. Learn more at Guardsquare.com. Show notes: https://sharedsecurity.net/2026/05/11/passwords-are-still-failing-us-world-password-day-2026/

May 4, 202615 min

Fake Party Invites and the Rise of Social Phishing Attacks

Attackers are now impersonating invitation services to trick people into clicking malicious links and sharing sensitive information. These phishing attempts look like legitimate event invites, making them especially effective. In this episode, we discuss how these scams work and what steps you can take to stay protected. Show notes: https://sharedsecurity.net/2026/05/04/fake-party-invites-and-the-rise-of-social-phishing-attacks/

April 27, 202615 min

New York's 3D Printing Crackdown: Security or Surveillance?

New York's latest budget proposal could fundamentally change how 3D printers work—requiring built-in software that scans and blocks certain designs. Supporters say it's about stopping ghost guns. Critics say it opens the door to surveillance and limits innovation. Show notes: https://sharedsecurity.net/2026/04/27/new-yorks-3d-printing-crackdown-security-or-surveillance/

April 20, 202628 min

Project Glasswing: When AI Becomes the Ultimate Hacker—and Defender

Anthropic has introduced Project Glasswing, a cybersecurity initiative powered by an unreleased AI model called Claude Mythos. This system can identify zero-day vulnerabilities, generate exploits, and even help fix them—often without human input. But there's a catch: it's considered too powerful for public release. In this episode we discuss what Project Glasswing is, why it matters, and what it means for the future of cybersecurity, red teaming, and AI-driven threats. Is this the beginning of AI defending us—or the start of something much harder to control? Show notes: https://sharedsecurity.net/2026/04/20/project-glasswing-when-ai-becomes-the-ultimate-hacker-and-defender/

Is this your show?

Claim this listing to keep it up to date, reach guests who want to pitch you, and manage bookings with Guestify.

Claim this listing