ThreatCast

Hosted by Threatscape

TechnologyInterviews guests

Website RSS feed

Episodes

Latest episode

Oct 2025

Language

EN-US

About the show

Stay informed with our exclusive interviews featuring industry experts, who share their valuable insights, expert opinions, and practical strategies to safeguard yourself and your organisation from cyber threats. In each episode, we shed light on cybersecurity trends, emerging technologies, and notable incidents shaping our digital world. Tune in to ThreatCast and embark on a journey to fortify your digital resilience.

Listen to episodes

30 recent

October 10, 2025Episode 1238 min

Stop Copying CIS! How to Build Baselines That Actually Work

👉 Click here for expert Intune implementation: Threatscape's Intune Implementation Service🎬 This is the season finale of Threatscast Season 3. We’ll be back next year with more guests and more cybersecurity topics.Security wants control. Users want flexibility. That tension breaks most Intune baseline projects.In this final episode of the season, Ru Campbell [MVP] talks with James Robinson [MVP], Solutions Architect at Threatscape and creator of the Open Intune Baseline (OIB), to unpack:Why default Intune and CIS baselines often failHow to deploy Intune security without hurting usabilityWhat makes OIB more effective in the real worldWhen to customise and when to stick with the baselineHow to get started using the OIB deployer and GitHubWhether you are securing endpoints or leading implementation, this is a must-watch.

September 30, 2025Episode 1127 min

Hackers Exploit Weak Identity Workflows [Fix: Use These Entra Settings]

[ebook: Mastering Entra ID and The Five Mistakes You Might Be Making] : https://www.threatscape.com/mastering-entra-id-and-the-five-mistakes-you-might-be-making-ebook/🚪 Identity is your first line of defence — and it's often full of holes.In this episode, Ru Campbell and Matt Levy (Threatscape) explore Entra ID Governance and why E5 alone isn't enough.🔐 Key insights:Why source of authority starts with HRHow to automate joiner, mover, leaver workflowsThe truth about PowerShell duct tapeWhat you get (and don’t) with P2 vs. the governance SKUHidden pitfalls: hire dates, time zones, and token delaysReal-time termination: the “big red button”▶️ Learn how to cut risk, automate onboarding, and remove manual errors across your identity estate.📺 Watch now and level up your identity security.Website: https://www.threatscape.com/Linkedin: https://www.linkedin.com/company/942506Email Address : info@threatscape.com

July 17, 2025Episode 1040 min

[M365 AI] Copilot & AI Agents: Tips You Must Know

🚨 Is your organisation ready for Microsoft 365 Copilot?👉 Start with the expert-led Threatscape Copilot Readiness Assessment: https://www.threatscape.com/copilot-for-m365-readiness-assessment-datasheet/Microsoft Copilot is evolving fast — but so are the risks.In this deep-dive with Microsoft AI expert Graham Hosking, we explore the real-world implications of Copilot, Copilot Studio, and AI agents in the Microsoft stack.🔐 Key Takeaways:• Declarative vs custom agents• Security Copilot examples (e.g. Conditional Access Gap Analyzer)• MXGP, agent sprawl, DSPM explained• AI model selection and governance• Prompting as a security skillIf you lead or secure Microsoft 365 environments, this is your guided tour from zero to expert.👍 Like, comment, and subscribe to stay ahead in cybersecurity and AI.

June 19, 2025Episode 940 min

[Entra ID] Gaps You Must Fix Now

Complimentary Microsoft Entra ID Advisory Service: https://www.threatscape.com/microsoft-entra-id-advisory-service/[ebook] Mastering Entra ID and The Five Mistakes You Might Be Making: https://www.threatscape.com/mastering-entra-id-and-the-five-mistakes-you-might-be-making-ebook/🔐 Are your conditional access policies actually secure?In this expert-led session, Lukas Beran from Microsoft DART breaks down the real-world gaps in identity protection across Microsoft 365 and Azure AD.✅ MFA: where it fails and how to fix it✅ Windows Hello & Platform SSO: silent MFA wins✅ Break glass accounts: best practices and pitfalls✅ Conditional access: exclusions that expose you✅ Identity as the first line of defenceLukas shares hard truths from incident response—giving you the blueprint to avoid becoming the next headline.📢 Don’t miss this if you manage identity, access, or incident response.👉 Subscribe for more cybersecurity insights.Website: https://www.threatscape.com/Linkedin: https://www.linkedin.com/company/942506Email Address : info@threatscape.com

June 5, 2025Episode 835 min

[OAuth Attacks] How App Permissions Are Dangerous

Resources:Complimentary, no-obligation Microsoft 365 Defender Advisory Service:https://www.threatscape.com/microsoft-365-defender-advisory-service/[ebook] Mastering Entra ID and The Five Mistakes You Might Be Making:https://www.threatscape.com/mastering-entra-id-and-the-five-mistakes-you-might-be-making-ebook/---------------------App to app security isn’t optional. Threat actors know it. Do you?Discover how OAuth abuse, over-permissioned apps, and non-human identities are creating blind spots in your SaaS stack.🔍 In this episode:How attackers exploit OAuth without malwareConsent phishing and admin consent abuseMicrosoft Defender for Cloud Apps explainedLeast privilege enforcement for appsXDR integration and threat disruptionExposure Management and SaaS postureSecuring endpoints isn’t enough. The cloud is the new battleground.🎯 Start protecting your SaaS estate today.🔗 Subscribe for more expert-led security insights.Website: https://www.threatscape.com/Linkedin: https://www.linkedin.com/company/942506Email Address : info@threatscape.com

May 22, 2025Episode 740 min

Shadow AI Is Leaking Your Data! [Here’s the Fix]

AI apps are inside your org—and leaking your data.In this episode, Microsoft’s David Mine joins us to expose the real-world risks of shadow AI and how Defender for Cloud Apps gives security teams full visibility and control.🔍 What you’ll learn:How to discover GenAI apps users aren’t declaringWhy blocking 1100+ AI tools isn't the answerHow to use Monitor Mode to educate, not frustrateWhere Defender for Endpoint + Cloud Apps integrateReal demo: detecting suspicious prompts in CopilotDon’t wait for a breach. See what’s already inside your network.

May 8, 2025Episode 636 min

CEO Feras Tappuni Talks AI, Cloud & SoC Strategy

Running a SoC today isn't about tech—it's about people, risk and scaling in a hyper-complex threat landscape. Learn how the pros do it.In this episode, SecurityHQ CEO reveals:• The real ROI of SoC operations• Why fully automated SoCs are a dangerous myth• How AI and quantum will shape tomorrow’s threats• Scaling from 1 to 500+ SoC staff worldwide• Must-have skills for SoC analysts and leaders• Managing misconfigurations (60% of breaches!)• Cloud-native detection & response best practices• How to prove cyber value to your boardWebsite: https://www.threatscape.com/Linkedin: https://www.linkedin.com/company/942506Email Address : info@threatscape.com

April 24, 2025Episode 433 min

How Microsoft DART Handles Real-World Breaches

Microsoft Entra ID Advisory Service: https://www.threatscape.com/microsoft-entra-id-advisory-service/Shiva P from Microsoft DART walks us through real breach response from the frontlines.🛡️ In this deep dive on Incident Response, you’ll learn:How attackers exploited weak configurationsWhat happens when endpoint protection is disabledThe critical role of multi-factor authentication failuresWhy flat networks collapse under pressureHow Microsoft DART contains lateral movementWhy Incident Response must be fast, precise, and empathetic🎯 Subscribe for more frontline Threatscape briefings.Website: https://www.threatscape.com/Linkedin: https://www.linkedin.com/company/942506Email Address : info@threatscape.com

March 26, 2025Episode 332 min

Dr Nestori Syynimaa on Key Defence Strategies Against Token Theft

🔒 How Attackers Steal Tokens & Bypass MFA – What You Need to Know!Cybercriminals are evolving—and token theft is now one ofthe biggest threats in identity security. In this episode of the Threatscape Podcast, Ru Campbell sits down with Dr Nestori Syynimaa to uncover how attackers steal authentication tokens, bypass MFA, and infiltrate organisations undetected.🔹 The rise of token theft & identity attacks🔹 How adversaries use AiTM phishing & post-issuance token theft🔹 Real-world insights from Microsoft’s security research🔹 Best practices to protect against identity compromise💡 Want to stay ahead of cyber threats? Watch now and learn how to secure your organisation against token-based attacks.📌 Resources & Links:🔗 Follow Dr Nestori Syynimaa: https://www.linkedin.com/today/author/nestori🔗 More cybersecurity insights: https://www.threatscape.com/cyber-security-insights/🔗 Subscribe for more security content!👍 Like & Share this video to spread awareness!💬 Comment below: What’s your biggest concern about token security?

March 12, 202536 min

Dan Crossley on How NDR Upgrades SOC?

🔥 Dive into the world of Network Detection and Response (NDR)! Discover how cutting-edge NDR tools transform cyber security and next-gen SOC integration with AI-powered threat detection. In this video:Explore the capabilities of NDR tools.Understand maintenance ease vs. challenges.Uncover how NDR integrates with next-gen SOC.See real-world success stories.Modern organisations must move beyond legacy IPS to uncover hidden threats and optimise network defence.👉 Follow, like, and comment for more expert cyber security insights!Website: https://www.threatscape.com/Linkedin: https://www.linkedin.com/company/942506Email Address : info@threatscape.com