Cracking Gmail and SEO Poisoning: Inside the Latest Cyber Threats

Join us for an eye-opening discussion on cybersecurity in travel with ethical hacker Matthew Wold from Ramsey County. Matthew shares how his passion for cybersecurity took root at Ramsey County, leading to collaborations with co-hosts Eric Brown and Nick Mellem. We kick things off with a lighthearted chat about survival items on a deserted island, setting the stage for a lively and insightful conversation.From RFID shields to OMG cables, we unpack practical tips for protecting your digital and personal safety while traveling. Learn how to navigate risks like compromised USB ports, hidden cameras in hotel rooms, and data privacy challenges across borders. With advice on VPNs, securing SIM cards, managing passwords, and safeguarding luggage, this episode is packed with essential strategies to ensure your travel experiences remain secure and worry-free.

From Gmail 2FA bypass warnings to SEO poisoning campaigns, we’re diving into the latest cybersecurity headlines reshaping the industry.  We explore how attackers are using hyper-specific search terms—like the legality of Bengal cats—to deliver malware and manipulate search results. Plus, we discuss advancements in AI-powered behavioral analytics, from cutting down false alerts to streamlining incident response. With real-world insights and actionable tips, this episode is packed with must-know updates for IT professionals navigating today’s ever-evolving threat landscape. In this episode, we'll discuss: Gmail session cookie theft and bypassing two-factor authentication. SEO poisoning campaigns delivering malware via niche search terms. AI-driven behavioral analytics improving incident response. Real-world social engineering and user behavior risks. Balancing usability and security with tools like passkeys. Thanks for tuning into The Audit. Subscribe on Spotify, Apple Podcasts, or YouTube to stay informed on the latest in cybersecurity. Don’t forget to follow us on social media and share with your network! #CybersecurityNews #2FA #BehavioralAnalytics #IncidentResponse #SEOPoisoning #ITSecurity #DataProtection 

In this episode of The Audit, we dive into key takeaways from a top cybersecurity event. From IoT hacking and RFID bypasses to AI governance and vishing bots, we explore the tools and strategies shaping security. Plus, real-world lessons, social engineering insights, and a few unexpected laughs—because security isn’t always all business.  In This Episode We’ll Cover: RFID hacking and social engineering insights from WWHF. Cameron’s IoT hacking training highlights. AI advancements and governance takeaways. Challenges with regulations and compliance in cybersecurity. Project management lessons inspired by Elon Musk.  Thanks for joining us for this glimpse into one of the year’s most unique cybersecurity events. Don’t forget to subscribe and share this episode with your team—we’ll see you at the next conference. #WWHackinFest #InfoSecConferences #Cybersecurity #AIThreats #IoTSecurity #SocialEngineering 

In this episode, we dive into emerging tech with Marsha Maxwell, co-founder of If These Lands Could Talk and Head of Innovation at Atlanta International School. Marsha shares insights on empowering indigenous and underserved communities through AI and VR, the ethical challenges of integrating AI, and the importance of digital inclusion. We discuss the impact of AI on knowledge, culture, and education and examine how to responsibly bridge gaps in tech access worldwide. In this episode we cover: Exploring AI and VR for indigenous and underserved communities Bridging digital divides: Tech access for all Ethical challenges in AI and identity How to navigate digital authenticity in the age of deepfakes The future of AI in creative and cultural spaces Practical strategies for blending AI with education and learning Tune in for a compelling look at the intersection of technology, education, and culture. Don’t forget to like, subscribe, and share to stay updated with our latest episodes! #ArtificialIntelligence #EmergingTech #DigitalInclusion #CyberSecurity #DataProtection #AIinSecurity 

Building secure software isn't optional—It's critical. Here’s how you can do it right!  In this episode of The Audit presented by IT Audit Labs, we’re joined by Francis Ofungwu, CEO of DevSecFlow, to break down the urgent topic of software security. Together with Nick Mellom and Bill Harris, we dive into the common security threats developers face today and discuss the vital steps every company should take to secure their software development lifecycle. In this episode, we’ll cover: The biggest software security threats developers face in 2024 How to integrate security seamlessly into the software development lifecycle The convergence of infrastructure security and software security The role of AI in secure coding and software development The importance of threat modeling and attack surface reviews How to create a more resilient software supply chain and manage risk effectively Whether you’re a developer, security pro, or IT decision-maker, this episode is packed with actionable insights to elevate your security strategy and ensure your software is built to withstand today’s evolving cyber threats. Don’t forget to hit that subscribe button and drop a comment below on your top takeaway! #CyberSecurity #DevSecOps #SoftwareSecurity #AICoding #IncidentResponse  #ITSecurity #CloudSecurity #RiskManagement

In this episode of The Audit by IT Audit Labs, we sit down for an in-depth conversation with Eric Brown to explore the crucial topic of personal information security.  Eric breaks down essential strategies for protecting your data, starting with freezing your credit, leveraging password managers, and implementing multi-factor authentication. He also dives into how these personal security measures directly tie into a broader corporate security posture. In this episode, we cover: Credit freezes and why they’re your first line of defense How email breaches occur and what to do when your account is compromised Why password managers and passphrases are game changers for security The role of multi-factor authentication in thwarting attackers Tips for maintaining privacy in an era of data mining and social engineering Stay tuned as we dive into the details and explore how securing your personal data can help protect your organization from threats. Make sure to subscribe to The Audit on your preferred podcast platform to stay up to date on the latest insights from IT Audit Labs! #cybersecurity #datasecurity #personalinformationsecurity #informationsecurity 

Discover the vital intersection of safety science and cybersecurity, where human psychology meets technical innovation. In this episode of The Audit, special guest John Benninghoff shares his expertise in safety science and how its principles can improve cybersecurity. From applying safety protocols in the tech industry to enhancing security culture through proactive human behaviors, we dive into a range of topics. Plus, we discuss how risk quantification and ergonomics can drive better security outcomes. In this episode, we’ll cover: How safety science principles can enhance cybersecurity practices The role of human behavior and psychology in security outcomes Lessons from aviation safety and their application in risk management Real-life examples of security clutter and how to reduce it for better outcomes The importance of risk quantification and proactive system maintenance Join us as we explore key insights and practical tips on blending safety science with cybersecurity, and don't forget to subscribe to The Audit podcast for more insightful discussions covering the full spectrum of cybersecurity. #Cybersecurity #SafetyScience #RiskManagement #DataProtection 

In this episode of The Audit, we’re joined by Mick Leach from Abnormal to discuss the evolving landscape of email security and how AI is transforming both the threats and defenses in this space.  From QR code phishing to the rise of sophisticated AI-driven attacks, Mick shares insights on how organizations can stay ahead of these challenges, leveraging AI for good. We also touch on the latest trends in SaaS security and what the future of cybersecurity might look like. We'll cover: The rise of AI-driven phishing attacks How CrowdStrike’s recent issues tie into broader security concerns The evolving role of security tools like Abnormal in email protection The growing threat of QR code phishing and how to mitigate it Insights on SaaS applications and their vulnerabilities Strategies for organizations to combat AI-generated threats  Stay ahead of emerging email threats and learn how AI can protect your organization by subscribing today! #CyberSecurity #EmailSecurity #EmailCybersecurity #AI #Phishing #Quishing 

Stay informed with The Audit, your go-to podcast for the latest in cybersecurity insights, best practices, news and trends. In this month's news episode, we tackle the most significant developments shaping the industry today.  We'll cover: The latest insights from CrowdStrike on evolving cybersecurity threats The impact of the Supreme Court ruling on cybersecurity regulations The massive 10 billion password leak and how to protect your organization Guard Zoo malware targeting military personnel in the Middle East How AI is transforming proactive cybersecurity measures Best practices for password management and multi-factor authentication The role of AI in optimizing and simplifying policy management in organizations  New episodes air every 2 weeks -- Don't miss out on expert insights that will help fortify your defenses against emerging cyber threats. #Cybersecurity #AI #TechNews #ITSecurity #Malware 

Discover the fascinating world of OSINT (Open Source Intelligence) with expert insights from Melisa Stivaletti on this episode of The Audit! Hosted by Eric Brown and Nick Mellem from IT Audit Labs, we sit down with Melisa Stivaletti, Chair at Epic and OSINT Director at GuideHouse. Melisa shares her remarkable journey from working at the Department of Commerce to the Department of the Army. We dive deep into the world of OSINT, discussing the nuances of open source research, tradecraft, and the transformative power of AI. Plus, Melisa shares valuable advice for those looking to break into the OSINT field and highlights the importance of lifelong learning. In this episode, we cover:  ▪ The difference between open source research and OSINT  ▪ The tradecraft involved in OSINT, including the use of sock puppets  ▪ How AI is transforming OSINT and the guardrails needed to manage its use  ▪ The critical role of data governance and compliance in OSINT  ▪ The future of OSINT and the importance of lifelong learning in this field  ▪ Personal stories and advice for those looking to enter the OSINT community Don’t miss out on Melisa's unique insights and experiences. Listen now and elevate your understanding of cybersecurity and OSINT. #Cybersecurity #OSINT #InformationSecurity #ITSecurity #SecurityInnovation