What happens when your carefully crafted incident response playbook becomes worthless? Cody Sullivan from OpsBook reveals the brutal truth about tabletop exercises: most organizations are practicing with medieval armor for a drone war. From 70-participant, 6-hour exercises spanning three continents to the harsh reality of insider threats, this conversation exposes the gaps that could leave your organization bleeding when the real attack comes.

Key Topics Covered:

• Why "tribal knowledge" is your organization's biggest security risk
• The insider threat scenario that makes every tabletop exercise go sideways
• How AI is revolutionizing incident response preparation through OpsBook's ontology
• Why your playbooks are useless if hackers have them too
• The "Derek Jeter approach" to cybersecurity preparedness
• From real estate to tech: spotting warning signs before the industry shift

The crew shares fresh insights from a recent school district tabletop that exposed critical single points of failure, while Cody demonstrates how modern organizations are turning decision-making into muscle memory, not just memos. This isn't theory—it's the frontlines of organizational resilience where one overlooked vulnerability could trigger catastrophic failure.

Like, share, and subscribe for more in-depth security discussions that prepare you for tomorrow's threats, not just today's compliance checkboxes!

#tabletopexercise #incidentresponse #cybersecurity #infosec #AI #opsbook

Think you can manage industrial systems like your IT infrastructure? Think again. In this episode of The Audit, Dino Busalachi unpacks the high-stakes complexity of OT-IT convergence—and why your trusty IT playbook flatlines on the plant floor.

Join the IT Audit Labs crew as we dive into the chaos of managing 10,000+ industrial assets across a sprawling landscape of vendors, protocols, and operational rules that laugh in the face of standardization. From Siemens to Rockwell to Honeywell, Dino draws sharp parallels to hospital systems juggling specialized third-party contractors—because in the world of OT, consistency is a luxury and adaptability is survival.

🔧 Key Topics Covered:
• Why OT environments resist IT standardization efforts
• Managing thousands of industrial assets from multiple vendors
• The hospital analogy: treating OT specialists like medical contractors
• Building effective partnerships between OT and IT teams • Real-world challenges of securing industrial control systems

#OTSecurity #ITConvergence #IndustrialCybersecurity #SCADA #PLC #CriticalInfrastructure

What happens when you cross a Tamagotchi with a Wi-Fi hacking tool? You get the Pwnagotchi—a pocket-sized device that "feeds" on Wi-Fi handshakes and learns from its environment. In this episode, Jayden Traufler and Cameron Birkland join the crew to demonstrate how this deceptively cute device can passively capture encrypted Wi-Fi credentials from any network in range, autonomously gather handshakes, share intelligence with other Pwnagotchis, and operate completely under the radar from conference floors to airplane cabins in ways that might surprise you.

• Key Topics Covered:
• How the Pwnagotchi captures Wi-Fi handshakes through deauthentication attacks
• Why WPA3 networks are immune (and why most networks still aren't using it)
• Building your own Pwnagotchi vs buying a Flipper Zero with Wi-Fi dev board
• Real defense strategies beyond "just turn off your Wi-Fi"
• The legal gray areas of passive Wi-Fi monitoring
• Conference horror stories and the 600-handshake airplane incident

Whether you're a security professional looking to understand emerging threats or someone curious about DIY hacking tools, this episode delivers practical insights you can use to protect your networks today. The Pwnagotchi proves that the most dangerous attacks often come in the most innocent packages.

Don't let your organization become the next victim of passive Wi-Fi attacks. Like, share, and subscribe for more hands-on cybersecurity content that keeps you ahead of emerging threats!

#Pwnagotchi #cybersecurity #wifihacking #ethicalhacking #infosec #flipper zero

Relevant Links:

Jayden Traufler

• LinkedIn

Your network is talking behind your back—but Pi-hole is listening. Join The Audit as Pi-hole co-founders Dan Schaper and Adam Warner reveal how their open-source DNS sinkhole technology has become the secret weapon for over 200,000 privacy-conscious users worldwide.

In this episode, we discuss:

• How Pi-hole evolved from a simple ad blocker to a critical network security tool
• Why DNS-level filtering stops threats before they reach any of your devices
• The performance benefits that make browsing noticeably faster
• Setting up Pi-hole on everything from Raspberry Pi to enterprise hardware
• How the global development team maintains this powerful security shield
• Protecting vulnerable IoT devices from malicious traffic
• The future roadmap for Pi-hole and opportunities to contribute

Don't miss this deep dive into the technology that's reclaiming control of digital footprints one DNS request at a time. Connect with the Pi-hole community at discourse.pi-hole.net and discover why cybersecurity professionals consider this an essential defensive tool.

Like, share, and subscribe for more cutting-edge cybersecurity insights and expert analysis!

#pihole #DNSfiltering #networksecurity #adblocking #privacytools #cybersecurity #opensource #infosec

Join The Audit for a news-packed episode as cybersecurity expert Matt Starland recounts a chilling near-miss with an E-Z Pass phishing scam—received just minutes after renting a car in Florida. His close call highlights how scammers exploit timing and context to deceive even seasoned professionals.

In this episode, we discuss:

• How a security pro nearly fell for a perfectly timed phishing text
• The FBI’s 2023 Internet Crime Report and its $16.6B warning
• Why nearly $5B in losses hit Americans over 60—and why many stay silent
• The psychological barriers victims face when reporting cybercrime
• The rise of the “Dead Internet Theory” and AI-generated online content
• How Meta and others are blurring the line between real and artificial
• Practical ways to spot AI-generated interactions
• Why maintaining human connection is key in the age of AI

Don’t miss this timely conversation packed with real-world insights and strategies to help you stay secure in an increasingly digital (and artificial) world.

Like, share, and subscribe for more cutting-edge cybersecurity stories and expert analysis.

#infosec #cybersecurity #E-ZPass #phishing #FBI #deadinternet #meta

Join The Audit as we dive into the high-stakes intersection of critical infrastructure and cybersecurity with Tim Herman, President of InfraGard Minnesota. InfraGard is a unique public-private partnership with the FBI designed to protect the 85% of America's essential systems owned by the private sector. From power grids to transportation, the vulnerabilities are real—and increasingly complex.

In this episode, we discuss:

• How joystick-operated tugboats on the Mississippi reveal hidden cyber risks
• Why tabletop exercises are vital for incident readiness
• Common mistakes in organizational response plans (and how to fix them)
• The importance of physical backups and redundant communication systems
• Actionable steps to bridge the gap between planning and execution

Cybersecurity isn’t just an IT issue—it’s national security. Don’t miss this compelling conversation on how InfraGard is helping organizations build resilience before the next breach hits.

Like, share, and subscribe for more expert insights from the frontlines of cybersecurity.

Join The Audit as we explore the cutting-edge world of quantum computing with information security architect, Bill Harris. Quantum technology is advancing at breakneck speed, pushing the boundaries of computation, while Quantum Key Distribution (QKD) is making encrypted communications nearly unbreakable.

As multiple sectors race to integrate quantum and AI, cybersecurity experts are racing to implement quantum-resistant encryption before traditional cryptographic methods become obsolete. Beyond the technical breakthroughs, quantum computing is also raising profound questions about reality itself.

In this episode, we discuss:

• The rise of 1,000-qubit machines and persistent error challenges
• How QKD is reshaping secure communication worldwide
• Microsoft’s Majorana particle claims—fact or hype?
• NASA’s mysterious quantum shutdown in February 2024
• Google’s research into quantum and unexpected findings
• The cybersecurity arms race to counter quantum decryption

Quantum computing isn’t just the future—it’s here, and it’s reshaping everything from cybersecurity to our understanding of the universe. Don’t miss this deep dive into the most mind-bending technology of our time!

Like, share, and subscribe for more in-depth cybersecurity insights.

#QuantumComputing #Cybersecurity #Encryption #AI #ParallelUniverses

What Really Happens to Your Trash? Inside Modern Waste Management

Is your trash really being recycled, or is it ending up in a landfill? In this episode of The Audit, we sit down with Trista Martinson, Executive Director at Ramsey Washington Recycling & Energy, to uncover the surprising technology and cybersecurity challenges behind modern waste management.

Trista joins the IT Audit Labs team to reveal how AI, robotics, and environmental science are transforming recycling, while also sharing how The Audit's own Eric Brown helped strengthen her organization’s cybersecurity to protect critical infrastructure.

In this episode, we discuss:

• How AI and robotics are revolutionizing waste processing
• The reality behind China’s global recycling market
• Why recycling facilities are prime targets for cyberattacks
• The role of cybersecurity in protecting critical infrastructure
• How a military mindset influences risk assessment
• The biggest mistakes people make when disposing of trash

From optimizing recycling with data to securing waste facilities against ransomware, this episode dives deep into the hidden world of trash, tech, and security.

🔔 Subscribe for more cybersecurity and technology insights!

#Cybersecurity #WasteManagement #Recycling #AI #TheAuditPodcast