Best They Agenda Productions Podcasts (2025)

1
Making OAuth Scale Securely for MCPs - Aaron Parecki - ASW #360 1:07:43

Play Pause

1h ago1:07:43

1:07:43

The MCP standard gave rise to dreams of interconnected agents and nightmares of what those interconnected agents would do with unfettered access to APIs, data, and local systems. Aaron Parecki explains how OAuth's new Client ID Metadata Documents spec provides more security for MCPs and the reasons why the behavior and design of MCPs required a new…

1
Fix your dumb misconfigurations, AI isn't people, and the weekly news - Wendy Nather, Danny Jenkins - ESW #436 1:34:58

1d ago1:34:58

1:34:58

Interview with Danny Jenkins: How badly configured are your endpoints? Misconfigurations are one of the most overlooked areas in terms of security program quick wins. Everyone freaks out about vulnerabilities, patching, and exploits. Meanwhile, security tools are misconfigured. Thousands of unused software packages increase remediation effort and a…

1
SOLVED! FROM THE ARCHIVES! - "Not Everything That Counts Can Be Counted" (Original Air Date: 5-26-24) 1:02:23

3d ago1:02:23

1:02:23

Re-Air Date: 12–2-25 Unless you were a member in May of 2024, this episode of SOLVED! will be brand new to you! If you were a member back then, THANK YOU and this one is worth a re-listen. We're slowing down production for a little bit to reorganize our production processes, so enjoy this episode from our archives (and B.Y: before YouTube) where Ja…

1
#1605 Our Prison System is a Demonstrable Failure (Throwback) 1:02:42

3d ago1:02:42

1:02:42

Original Air Date: 1-23-2024 The recent discovery of hundreds of bodies buried behind a jail in unmarked graves sparks a renewed discussion about the futility and counter-productiveness of our system of incarceration and the context of our history that has brought us to this point. Be part of the show! Leave us a message or text at 202-999-3991, me…

1
Toilet Cams, N. Korea, Brickstorm, MCP, React2Shell, Proxmox, Metaverse, Josh Marpet - SWN #535 33:08

3h ago33:08

33:08

Toilet Cams, North Korea, Brickstorm, MCP, India, React2Shell, Proxmox, Metaverse, Josh Marpet, and More, on the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-535

1
Holiday Hack Challenge, AI, Internet of Trash - Ed Skoudis - PSW #903 2:10:41

5d ago2:10:41

2:10:41

This week we welcome Ed Skoudis to talk about the holiday hack challenge (https://sans.org/HolidayHack). In the security news: Oh Asus Dashcam botnets Weird CVEs being issued CodeRED, but not the worm Free IP checking Internet space junk and IoT Decade old Linux kernel vulnerabilities Breaking out of Claude code Malicious LLMs Hacker on a plan gets…

1
Shadow Risks in SaaS, Cybersecurity Market Has Lost Its Mind, and Rise of the CTrO - Mike Puglia - BSW #424 1:06:01

6d ago1:06:01

1:06:01

While many businesses rely on Microsoft 365, Salesforce and Google Workspace security features, critical blind spots remain—the recent series of high profile SaaS breaches demonstrate this. So what should you do? Mike Puglia, General Manager of Kaseya Labs, joins Business Security Weekly to discuss the risks in SaaS applications. In this segment, M…

1
Shadow Risks in SaaS, Cybersecurity Market Has Lost Its Mind, and Rise of the CTrO - Mike Puglia - BSW #424 1:06:01

6d ago1:06:01

1:06:01

While many businesses rely on Microsoft 365, Salesforce and Google Workspace security features, critical blind spots remain—the recent series of high profile SaaS breaches demonstrate this. So what should you do? Mike Puglia, General Manager of Kaseya Labs, joins Business Security Weekly to discuss the risks in SaaS applications. In this segment, M…

1
Shadow Risks in SaaS, Cybersecurity Market Has Lost Its Mind, and Rise of the CTrO - Mike Puglia - BSW #424 1:06:01

6d ago1:06:01

1:06:01

While many businesses rely on Microsoft 365, Salesforce and Google Workspace security features, critical blind spots remain—the recent series of high profile SaaS breaches demonstrate this. So what should you do? Mike Puglia, General Manager of Kaseya Labs, joins Business Security Weekly to discuss the risks in SaaS applications. In this segment, M…

1
AI semantics, Calendly, Teams, Schmaltz, India, Antigravity, Scada, Aaran Leyland... - SWN #534 36:15

2d ago36:15

36:15

AI semantics, Calendly, GreyNoise, Teams, Schmaltz, India, Antigravity, Scada, Aaran Leyland, and More... Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-534

1
#1755 Affordability: Actual Economic Populism is the Kryptonite to Fake Populism 2:53:44

7d ago2:53:44

2:53:44

Air Date 12/2/2025 If you need more evidence for just how far from rationality our politics have slid in recent decades, Zorhan Mamdani is seen by many as a radical for mostly just saying that people should be able to afford to buy the things they need to live. Be part of the show! Leave us a message or text at 202-999-3991, message us on Signal at…

1
Making TN Critical Infrastructure the Most Secure in the Nation - T. Gwyddon 'Data' ("Gwee-thin") Owen, James Cotter - ASW #359 59:02

7d ago59:02

59:02

For OT systems, uptime is paramount. That's a hard rule that makes maintaining, upgrading, and securing them a complex struggle. Tomas "Data" Owens and James Cotter discuss how Tennessee is tackling the organizational and technical challenges that come with hardening OT systems across the state. Those challenges range from old technology (like RS-2…

1
SOLVED! SAMPLE! #28 - Big White Lies: The Impossible Promises of Supremacy 21:03

8d ago21:03

21:03

Air Date: 11-25-25 Today, Jay!, Amanda, Deon, and Erin discuss: Ch. 1 - The extremists trying to create race-based neighborhoods all over the U.S. Ch. 2 - What we can learn from Ireland's history of sectarian violence Ch. 3 - How the Irish became white Ch. 4 - An inconvenient truth from Frederick Douglas (and some modern, mild misreadings) Ch. 5 - …

1
From Misconfigurations to Mission Control: Lessons from InfoSec World 2025 - Marene Allison, Dr. Ron Ross, Ryan Heritage, Patricia Titus, Perry Schumacher, Rob Allen - ESW #435 1:43:23

8d ago1:43:23

1:43:23

Live from InfoSec World 2025, this episode of Enterprise Security Weekly features six in-depth conversations with leading voices in cybersecurity, exploring the tools, strategies, and leadership approaches driving the future of enterprise defense. From configuration management and AI-generated threats to emerging frameworks and national standards, …

1
Dealing with loss, phone loss with Aaran, Doug, and Josh. - SWN #533 41:44

9d ago41:44

41:44

Are you walking around with a phone in your hand? Probably, are ready for the day when it gets grabbed and disappears. Aaran, Doug, and Josh talk about phone strategies on this episode of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-533…

1
#1354 Police violence and racism are a product of our past (Uprising, Crackdown, Authoritarianism) (Throwback) 2:30:03

11d ago2:30:03

2:30:03

Original Air Date: 6–22-2020 Today we take a look at the history of racist policing which flows seamlessly into our present racist policing which itself flows into Trump's authoritarian glee at the opportunity to consolidate violent, racist power in response to protests against violent, racist power. Be part of the show! Leave us a message or text …

1
Vibe Coding For Success and Failure - PSW #902 1:06:52

12d ago1:06:52

1:06:52

Tune in for some hands-on tips on how to use Claude code to create some amazing and not-so-amazing software. Paul will walk you through what worked and what didn't as he 100% vibe-coded a Python Flask application. The discussion continues with the crew discussing the future of vibe coding and how AI may better help in creating and securing software…

1
Security Money: The Index is Back Near Highs as AI Leads the Discussion - BSW #423 1:03:20

13d ago1:03:20

1:03:20

The Security Weekly 25 index is back near all time highs as the NASDAQ hits another record high. Funding and acquisitions have shifted to AI as the security industry continues to evolve. We also had a new IPO, Netskope. They will replace CyberArk once the Palo Alto Networks acquisition closes, allowing the index to survive another public company ac…

1
Security Money: The Index is Back Near Highs as AI Leads the Discussion - BSW #423 1:03:20

13d ago1:03:20

1:03:20

The Security Weekly 25 index is back near all time highs as the NASDAQ hits another record high. Funding and acquisitions have shifted to AI as the security industry continues to evolve. We also had a new IPO, Netskope. They will replace CyberArk once the Palo Alto Networks acquisition closes, allowing the index to survive another public company ac…

1
Security Money: The Index is Back Near Highs as AI Leads the Discussion - BSW #423 1:03:20

13d ago1:03:20

1:03:20

The Security Weekly 25 index is back near all time highs as the NASDAQ hits another record high. Funding and acquisitions have shifted to AI as the security industry continues to evolve. We also had a new IPO, Netskope. They will replace CyberArk once the Palo Alto Networks acquisition closes, allowing the index to survive another public company ac…

1
AI with Dr. Shakour Abuzneid - Shakour Abuzneid - SWN #532 32:17

14d ago32:17

32:17

Doug talks about AI with Cybersecurity Expert Dr. Shakour Abuzneid from Roger Williams University. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-532

1
#1754 The Epstein Files and Donald Trump, Our Predator-in-Chief 2:38:24

14d ago2:38:24

2:38:24

Air Date 11/25/2025 We live in a world awash with baseless conspiracy theories but that doesn't mean there are no true conspiracies, as exemplified by Jeffrey Epstein. But it bears repeating, that we didn't need the exposure of a massive conspiracy to know that Donald Trump was a sexual predator because he said as much on tape before he was elected…

1
Figuring Out Where to Start with Secure Code - ASW #358 46:23

14d ago46:23

46:23

What are your favorite resources for secure code? Co-hosts John Kinsella and Kalyani Pawar talk about the reality of bringing security into a business. We talk about the role of the OWASP Top 10 and the OWASP ASVS in crafting security programs. And balance that with a discussion in what's the best use of everyone's time -- developers and appsec fol…

1
Aligning teams for effective remediation, Anthropic's latest report, and the news - Ravid Circus - ESW #434 1:38:56

15d ago1:38:56

1:38:56

Interview with Ravid Circus Ravid will discuss why security and engineering misalignment is the biggest barrier to fast, effective remediation, using data from Seemplicity’s 2025 Remediation Operations Report. This is costing some teams days of unnecessary exposure, which can lead to major security implications for organizations. Segment Resources:…

1
SOLVED! FROM THE ARCHIVES - "The Truth Shall Set Us Free" (Original Air Date: 12-6-24) 1:25:46

16d ago1:25:46

1:25:46

Re-Air Date: 11–18-25 Unless you were a member in December of 2024, this episode of SOLVED! will be brand new to you! If you were a member back then, THANK YOU and this one is worth a re-listen. We're slowing down production for a little bit to reorganize our production processes, so enjoy this episode from our archives (and B.Y: before YouTube) wh…

1
Emoticons, Sonicwall, Global Protect, Pop ups, WhatsApp, 7Zip, Roblox, Josh Marpet... - SWN #531 33:56

18d ago33:56

33:56

Emoticons, Sonicwall, Global Protect, Pop-ups, WhatsApp, 7Zip, Roblox, Josh Marpet, and More on the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-531

1
#1753 What the Shutdown and Weaponized Hunger Exposed About Our Asymmetric Morality 3:59:13

18d ago3:59:13

3:59:13

Air Date 11/21/2025 In an ethical political system, being willing to break the law in order to starve people amid a political dispute wouldn't be a source of greater leverage and power but it is in ours and the shutdown put the wildly different senses of ethics between the parties on full display. Be part of the show! Leave us a message or text at …

1
Give Me Liberty or Linux, Badge Hacking Interview - Bryce Owen - PSW #901 2:09:41

19d ago2:09:41

2:09:41

In the security news: Cloudflare was down, it was not good Logitech breached The largest data breach in history? Fortinet Fortiweb - the saga continues Hacking Linux through your malware scanner, oh the irony I never stopped hating systemd The ASUS exploit that never existed If iRobot fails, can we deploy our own hacker bot army? Firmware encryptio…

1
Health and Wellness of the CISO as They Crack Under Pressure and Need a BISO to Scale - Dr. Yonesy Núñez - BSW #422 56:46

20d ago56:46

56:46

It's a topic we discuss often on Business Security Weekly: CISO Burnout. It's real, but how should you manage it? Dr. Yonesy Núñez, Global Cybersecurity Executive at Chain Bridge Bank and former Managing Director, Chief Cybersecurity Risk Officer, and Chief Information Security Officer at The Depository Trust & Clearing Corporation (DTCC), joins Bu…

1
Health and Wellness of the CISO as They Crack Under Pressure and Need a BISO to Scale - Dr. Yonesy Núñez - BSW #422 56:46

20d ago56:46

56:46

It's a topic we discuss often on Business Security Weekly: CISO Burnout. It's real, but how should you manage it? Dr. Yonesy Núñez, Global Cybersecurity Executive at Chain Bridge Bank and former Managing Director, Chief Cybersecurity Risk Officer, and Chief Information Security Officer at The Depository Trust & Clearing Corporation (DTCC), joins Bu…

1
Health and Wellness of the CISO as They Crack Under Pressure and Need a BISO to Scale - Dr. Yonesy Núñez - BSW #422 56:46

20d ago56:46

56:46

It's a topic we discuss often on Business Security Weekly: CISO Burnout. It's real, but how should you manage it? Dr. Yonesy Núñez, Global Cybersecurity Executive at Chain Bridge Bank and former Managing Director, Chief Cybersecurity Risk Officer, and Chief Information Security Officer at The Depository Trust & Clearing Corporation (DTCC), joins Bu…

1
Cloudflare, Gh0stRAT, npm, North Koreans, Arch, Steam, Documentaries, Aaran Leyland.. - SWN #530 35:24

21d ago35:24

35:24

Cloudflare, Gh0stRAT, npm, North Korean Employees, Arch Linux Steam Machine, Documentaries, Aaran Leyland, and more on the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-530

1
Secure Coding as Critical Thinking Instead of Vulnspotting - Matias Madou - ASW #357 1:03:41

21d ago1:03:41

1:03:41

Secure code should be grounded more in concepts like secure by default and secure by design than by "spot the vuln" thinking. Matias Madou shares his experience in secure coding training and the importance of teaching critical thinking. He also discusses why critical thinking is so closely related to threat modeling and how LLMs can be a tool for h…

1
Year of the (Clandestine) Linux Desktop, topic, and the news - Rob Allen - ESW #433 1:56:49

22d ago1:56:49

1:56:49

Segment 1: Interview with Rob Allen It’s the Year of the (Clandestine) Linux Desktop! As if EDR evasions weren’t enough, attackers are now employing yet another method to hide their presence on enterprise systems: deploying tiny Linux VMs. Attackers are using Hyper-V and/or WSL to deploy tiny (120MB disk space and 256MB memory) Linux VMs to host a …

1
SOLVED! SAMPLE! #27 - Watch what you say! How weaponized language changes our reality 20:13

23d ago20:13

20:13

Air Date: 11-10-25 Today, Jay!, Amanda, Deon, and Erin discuss: Ch. 1 - "Pull yourself up by your bootstraps" Ch. 2 - "Politically correct" Ch. 3 - "Ethnic cleansing" Ch. 4 - "Meritocracy" Ch. 5 - Our current "wealth pump" crisis and how it has been solved throughout history BACKSTAGE! Beyond the Algorithm (Members Only!): The best words to articul…

1
Augustus De Morgan, Doordash, Fortiweb, Typosquatting, Vista, Ransomware, AI, More... - SWN #529 28:45

25d ago28:45

28:45

Augustus De Morgan, Doordash, Fortiweb, Typosquatting, Vista, Ransomware, AI, Josh, Rob, Aaran, Jason, Dr. Scott, Rocky, Uh., and More on this edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-529

1
#1752 Reigniting the Nuclear Arms Race: Fat Man, Little Boy, and Donald Trump 3:24:04

25d ago3:24:04

3:24:04

Air Date 11/7/2025 The most dangerous part of nuclear weapons has always been the people in charge of them. As we potentially enter a new arms race, some of the worst people in the world are in charge of the vast majority of nuclear weapons. Be part of the show! Leave us a message or text at 202-999-3991, message us on Signal at the handle bestofth…

1
Going Around EDR - PSW #900 2:06:22

26d ago2:06:22

2:06:22

This week: Minecraft on your lightbulb Sonicwall breached, who's next? Ditch Android, install Linux Hacking your face Thermostat freedom Pen test fails HackRF hacking times 2 Going around EDR Hackers in your printer Chinese data breach NFC relays and PCI Constructive construction hacks FlipperZero firmware update ICS, PLCs, and attacks Bayesian Swi…

1
Securing Model Context Protocol as Companies Plan to Replace Entry Roles with AI - Rahul Parwani - BSW #421 58:59

27d ago58:59

58:59

As AI revolutionizes how we work, it has created a new attack surface with new technologies. One of those new technologies is Model Context Protocol (MCP). MCP has emerged as the standard for connecting AI to external tools, but its flexibility has created security challenges. How do we secure MCP? Rahul Parwani, Head of Product, Security Solutions…

1
Securing Model Context Protocol as Companies Plan to Replace Entry Roles with AI - Rahul Parwani - BSW #421 58:59

27d ago58:59

58:59

As AI revolutionizes how we work, it has created a new attack surface with new technologies. One of those new technologies is Model Context Protocol (MCP). MCP has emerged as the standard for connecting AI to external tools, but its flexibility has created security challenges. How do we secure MCP? Rahul Parwani, Head of Product, Security Solutions…

1
Securing Model Context Protocol as Companies Plan to Replace Entry Roles with AI - Rahul Parwani - BSW #421 58:59

27d ago58:59

58:59

As AI revolutionizes how we work, it has created a new attack surface with new technologies. One of those new technologies is Model Context Protocol (MCP). MCP has emerged as the standard for connecting AI to external tools, but its flexibility has created security challenges. How do we secure MCP? Rahul Parwani, Head of Product, Security Solutions…

1
Miles, 10/8 time, Lost Phones, Whisper Leak, Quantum Route, AI Galore, Rob Allen... - Rob Allen - SWN #528 39:46

28d ago39:46

39:46

Miles Davis, Jimmy Buffet, 10/8 time, Lost Phones, Phishing, Whisper Leak, Quantum Route Redirect, AI Galore, Rob Allen, and more on the Security Weekly News. Segment Resources: https://www.bleepingcomputer.com/news/security/how-a-ransomware-gang-encrypted-nevada-governments-systems/ This segment is sponsored by ThreatLocker. Visit https://security…