Secure AF - A Cybersecurity Podcast
Think like a hacker. Defend like a pro.Welcome to the Secure AF Cybersecurity Podcast — your tactical edge in the ever-evolving cyber battlefield. Hosted by industry veterans including Donovan Farrow and Jonathan Kimmitt, this podcast dives deep into real-world infosec challenges, red team tactics, blue team strategies, and the latest tools shaping the cybersecurity landscape.Whether you're a seasoned pentester, a SOC analyst, or just breaking into the field, you'll find actionable insights, expert interviews, and unfiltered discussions with Alias team members and top-tier guests from across the cybersecurity spectrum.Stay sharp. Stay informed. Stay Secure AF.
Arch Linux AUR Compromise – Supply Chain Risks in the Open Source World
Got a question or comment? Message us here!
This #SOCBrief episode explores a recent Arch Linux AUR supply chain compromise, where malicious community packages were used to steal credentials and gain persistence.
It highlights the risks of third-party repositories and offers key detection and mitigation strategies for security teams to better protect against similar attacks.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
Qilin Ransomware Exploiting VPN Zero-Days: What SOCs Need to Do Now
Got a question or comment? Message us here!
A single unpatched VPN could be all it takes.
Qilin ransomware is actively exploiting VPN zero-days to breach networks and accelerate ransomware deployment. We walk through the tactics, the real risk to your organization, and actionable SOC strategies to stay ahead.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
You're Probably Not Hacked, You're Being Tracked
Got a question or comment? Message us here!
You probably haven’t been hacked, you’ve been tracked. This episode breaks down how ad tech, mobile apps, and data brokers create massive behavioral profiles without ever touching your phone’s security.
Learn how tracking really works, why it matters, and what you can actually do about it. 📱👁️📡
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
The SOC Brief Turns One 🎂 Insights, Stories & Lessons Learned
Got a question or comment? Message us here!
It’s our 1-year anniversary! 🎂
From bite-sized cyber insights to growing a passionate listener base, this episode reflects on the journey, the challenges, and the wins along the way. Expect laughs, lessons, and behind-the-scenes stories you won’t want to miss. 🚀
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
Kali365 Phishing-as-a-Service: FBI Warns of New M365 Credential Theft Tool
Got a question or comment? Message us here!
The FBI is warning about Kali365, a new phishing‑as‑a‑service tool designed to steal Microsoft 365 credentials and enable account takeovers at scale. In this episode, we break down how it works, why it’s so effective, and what your SOC can do right now to detect and defend against it.
🎧 Tune in now at secureafpodcast.com
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcast
Incident Response 101: What to Do When You’re Under Attack
Got a question or comment? Message us here!
What actually happens when a company gets hacked?
In this episode, we break down real-world incident response, from initial access and ransomware tactics to forensic investigation and common mistakes that make things worse. If your organization had an incident tomorrow, would you know what to do?
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
First Known AI-Powered Zero-Day Exploit: What SOCs Need to Know 🤖
Got a question or comment? Message us here!
In this episode of the #SOCBrief, we dive into the first confirmed case of an AI-powered zero-day exploit. With attackers leveraging AI to discover vulnerabilities, generate exploit code, and bypass defenses faster than ever, this marks a major shift in how threats are developed and deployed.
We break down how the attack worked, what made the exploit unique, and the key detection and defense strategies SOC teams need to start adopting now to keep pace with AI-driven adversaries.
Support the show
ShinyHunters Breach of Instructure Canvas LMS 📚✏️: Lessons for SOCs on Third-Party Vendor Risks
Got a question or comment? Message us here!
In this episode of the #SOCBrief, we break down the ShinyHunters breach of Instructure’s Canvas LMS and what it means for security teams everywhere.
From exploiting a lesser-monitored service to exfiltrating millions of records, this attack highlights the growing risk of third-party vendors and supply chain exposure. We walk through how the breach unfolded, key indicators of compromise, and the practical steps SOC teams can take to detect, monitor, and reduce vendor-related risk before it becomes a crisis.
Support the show
<...
Canvas Breach Breakdown: What 9,000+ Outages Teach Us About SaaS Risk
Got a question or comment? Message us here!
When the Canvas LMS went down, thousands of institutions came to a halt, right in the middle of finals. In this episode, we break down what really happened, what data may have been exposed, and why this incident is a wake-up call for every organization relying on SaaS platforms.
From vendor risk and contract blind spots to business continuity failures, we unpack the real lessons security leaders need to hear, and what you should be doing right now to prepare for the next breach.
MuddyWater’s Ransomware Decoy: Iranian APTs Hiding Espionage in Plain Sight
Got a question or comment? Message us here!
MuddyWater is blurring the line between ransomware and espionage... using Chaos ransomware as a decoy to distract defenders while quietly stealing data and maintaining persistence.
In this episode, we break down how this tactic works, what SOC teams should watch for, and how to detect the hidden activity beneath the noise.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
Qilin Ransomware’s EDR Killer DLL – How Attackers Are Subverting Defenses
Got a question or comment? Message us here!
Qilin ransomware is deploying a malicious DLL to disable EDR tools before encryption begins.
In this #SOCBrief, we break down how the attack works, what to look for, and how defenders can respond.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
AI’s Inflection Point: From Productivity Tool to Existential Risk
Got a question or comment? Message us here!
Artificial intelligence is evolving faster than most organizations, and regulators, are prepared for. In this episode of the #SecureAFPodcast, we sit down with Chris Hood, a veteran technologist and financial industry leader, to explore how AI has evolved from early computing to today’s large language models and agentic systems.
We discuss real‑world AI use in highly regulated environments, the benefits and risks of agentic AI, growing concerns around AI security and alignment, and why some experts believe general, and eventually superintelligence, may be clos...
Axios NPM Supply Chain Compromise – Lessons for SOCs on Third-Party Risks
Got a question or comment? Message us here!
A malicious Axios NPM package highlights how quickly supply chain compromises can spread through trusted dependencies.
In this #SOCBrief, we break down what happened, the risks to downstream applications, and what SOC teams should be monitoring to catch similar attacks early.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
Black Shrantac Ransomware – LOTL Tactics and Double Extortion on the Rise
Got a question or comment? Message us here!
A new ransomware group is blending in with legitimate tools. This #SOCBrief breaks down Black Shrantac and how to detect it early.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
Think Fast or Get Pwned: How Esports Is Forging Elite Cyber Defenders
Got a question or comment? Message us here!
Cybersecurity success increasingly hinges on cognitive readiness, the ability to spot patterns fast, make the right calls under pressure, and perform amid chaos.
On this episode of the SECURE AF PODCAST, Will Arnett sits down with Jessica Gulick, Founder and Commissioner of the U.S. Cyber Games, to discuss why cognitive training is critical, how esports players develop these skills instinctively, and why esports represents an untapped pipeline for elite cyber talent.
They also dive into how AI elevates the importance of human co...
Iranian APTs Targeting U.S. PLCs: OT Wake-Up Call for SOCs
Got a question or comment? Message us here!
Iranian-affiliated APT actors are actively targeting U.S. critical infrastructure, specifically PLCs powering essential operations across water, energy, and manufacturing.
This #SOCBrief breaks down the latest CISA alert, how attackers are exploiting OT environments, and what security teams need to be watching for right now. From key indicators to practical defense strategies, this is your wake-up call to treat OT as a high-value target.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify...
Google Chrome Zero-Days Under Active Attack – What SOCs Need to Do Now
Got a question or comment? Message us here!
Chrome just became the attack surface of the week.
We’re breaking down the latest zero-day exploits, what attackers are doing with them, and how SOC teams can respond before it turns into something bigger.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
Beyond the Network: The Rise of Medical Device Security
Got a question or comment? Message us here!
Healthcare security isn’t just about networks anymore.
In this episode, we dive into the complex world of connected medical devices, the challenges of securing them, and why organizations need a more holistic approach to cybersecurity.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
Interlock Ransomware Hits Cisco FMC Zero-Day: Lessons for SOCs on Edge Device Security
Got a question or comment? Message us here!
Your firewall could be the entry point. A critical Cisco FMC zero-day is being used in real-world ransomware attacks, turning security tools into launchpads.
In this episode, we cover what’s happening, how attackers are exploiting edge devices, and how SOC teams can stay ahead.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
Chinese Hackers Breach FBI Surveillance Network: Supply-Chain Lessons for SOCs
Got a question or comment? Message us here!
Suspected Chinese state-linked hackers breached an FBI surveillance network ... not by breaking through the front door, but through a third-party provider.
In this episode of the #SOCBrief, we break down how the attack happened, why supply chain vulnerabilities are one of the biggest risks facing SOC teams today, and what this means for organizations of all sizes. From compromised vendor access to real-world detection strategies, we’re covering how attackers are exploiting trusted connections, and how you can stay one step ahead.
Support th...
Ransomware as a Business: Inside Qilin’s Rise
Got a question or comment? Message us here!
Qilin is quickly becoming one of the most dominant ransomware groups in the world, and it’s not because of groundbreaking tactics. It’s because of their business model.
In this episode, we break down how Qilin operates as a ransomware-as-a-service group, why affiliates are flocking to them (hint: 80–85% payouts), and how that’s fueling explosive growth across industries worldwide. From real-world attack patterns to how they gain access and evade detection, we’re diving into what makes this group so effective, and why organi...
MuddyWater's New BugSleep Malware – Iran's Cyber Retaliation Ramps Up
Got a question or comment? Message us here!
In this episode of the #SOCBrief, we break down BugSleep, a new backdoor malware tied to the Iranian threat group MuddyWater, and how it’s being used in targeted spear-phishing campaigns against organizations.
Learn how the malware works, what indicators SOC teams should watch for, and practical steps to detect and defend against these evolving attacks.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
🚨 The Telus Hack – ShinyHunters Strikes a Telecom Giant 🚨
Got a question or comment? Message us here!
A massive breach has shaken the telecom world.
In this episode of the #SOCBrief, we break down the alleged TELUS hack claimed by the ShinyHunters threat group, what data may have been stolen, and why the potential exfiltration of massive datasets could have far-reaching consequences for organizations worldwide. From OAuth tokens and API keys to customer PII and enterprise systems, we explore how attacks like this unfold and what organizations should be on the lookout.
🎧 Tune in now at secureafpodcast.com<...
A.I. as a Multiplier: Introducing Vector Pulse A.I.
Got a question or comment? Message us here!
A.I. conversations are everywhere ... but how can businesses realistically use it today? In this episode of Secure AF, we introduce Vector Pulse A.I. and discuss how A.I. can help organizations automate workflows, improve operational efficiency, and support smarter decision-making.
We also dive into the growing excitement (and concerns) around A.I., common mistakes companies make when adopting it, and practical advice for leaders looking to explore A.I. responsibly.
Support the show
Watch full episodes at youtube.c...
Heightened Cyber Threats Amid U.S.-Iran Conflict Escalation
Got a question or comment? Message us here!
Geopolitical tensions are rising ... and cyber threats aren’t far behind. In this episode of the #SOCBrief, we break down the escalating U.S.-Iran conflict, the potential cyber retaliation from Iranian threat actors, and the steps SOC teams can take now to stay ahead of attacks and protect critical systems.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
OSINT Essentials – Unlocking Not So Hidden Insights for Your SOC
Got a question or comment? Message us here!
Open-source intelligence (OSINT) isn’t just for threat actors ... it’s a powerful advantage for SOC teams too. In this episode, we break down how publicly available data can help you uncover exposed assets, detect vulnerabilities early, and shrink your attack surface before attackers do.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
Talking SOC Shop: How SOCs Show Value to Leadership 📈
Got a question or comment? Message us here!
This episode of the #SOCBrief goes beyond day-to-day cybersecurity news and dives into what SOC success actually looks like from the leadership side. Andrew and CISO Jonathan Kimmitt discuss how SOC teams can communicate risk, create meaningful deliverables, use metrics effectively, and gain leadership buy-in for security decisions.
From risk profiles to reporting and real-world decision making, this episode focuses on turning SOC activity into measurable organizational value. 📊
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Keeping AI Human-Centered in Digital Forensics 🧑💻⚖️
Got a question or comment? Message us here!
AI can categorize images, analyze logs, and surface patterns faster than any human ever could, but it doesn’t understand context, legality, or nuance. In this episode, we discuss how AI is transforming criminal forensics and SOC investigations while examining the ethical, legal, and operational guardrails that must stay in place. As organizations adopt more AI-driven tools, the real challenge isn’t capability ... it’s maintaining responsible human control. 💻🔍
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and...
SmarterMail RCE Flaw – Ransomware's New Favorite Door
Got a question or comment? Message us here!
No phishing. No user interaction. Just exposed services and a missing authentication check. In this episode of the #SOCBrief, we dive into the SmarterMail RCE flaw already being exploited in the wild and why mail servers continue to be prime ransomware targets. We cover indicators to hunt for, detection tips, and practical steps SOC teams can take to reduce risk fast. 🛡️
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
MSI Mayhem – RATs Hiding in Phishing Installers to Evade Detection 🧠
Got a question or comment? Message us here!
Attackers are hiding remote access trojans (RATs) inside malicious MSI installers disguised as legit software, and it’s surging in early 2026. We break down how these phishing attacks bypass EDR, what to look for, and how SOC teams can stop them before they turn into full-blown breaches.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
Love as an Attack Vector 💌
Got a question or comment? Message us here!
Romance scams spike around Valentine’s Day ... and they’re more dangerous than you think. In this episode, we break down how scammers build emotional trust, isolate victims, and turn relationships into financial and emotional traps. Learn the warning signs, the psychology behind the scams, and how to protect yourself and the people you love 💞.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
Double Trouble: Microsoft Office and Fortinet FortiCloud Flaws Under Attack 💥
Got a question or comment? Message us here!
This week’s #SOCBrief covers a dangerous double-hit: a Microsoft Office security bypass and a Fortinet FortiCloud authentication flaw, both exploited in the wild. Andrew walks through what the CVEs mean, how attackers are abusing trusted tools, and the patching and hunting steps SOC teams should take immediately.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
Top Ransomware Threats Dominating Early 2026
Got a question or comment? Message us here!
Ransomware is kicking off 2026 at full speed. We break down the top active groups right now, how they’re getting in, what infrastructure they’re targeting, and the key indicators your SOC should be watching to stay ahead. 🔐⚠️
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
📂 Inside the Breaches: Real Insider Threat Case Files
Got a question or comment? Message us here!
Insider threats don’t start with malware ... they start with access. From disgruntled employees to overlooked contractors, this episode breaks down real-world cases, common patterns, and how organizations can better protect what matters most. 🎧🛡️
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
CISA Retires 10 Emergency Directives – Progress for Feds, Wake-Up for the Rest of Us
Got a question or comment? Message us here!
CISA has officially retired 10 emergency directives ... marking real progress for federal cybersecurity 🚀 But for the private sector, these “old” vulnerabilities are still very much in play ⚠️ In this #SOCBrief, we break down what was retired, why it matters, and what your SOC should do next.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
New Year SOC Reset: New Year, New You(r Security Posture) 🔒
Got a question or comment? Message us here!
Kick off 2026 by hitting reset on your SOC 📊. In this episode of the #SOCBrief, we break down key January priorities, from annual security posture reviews and rule tuning to training refreshers and forward planning, so your team starts the year resilient, aligned, and ready for what’s next.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
Trusted Access, Malicious Intent: Insider Threats Explained
Got a question or comment? Message us here!
When the threat isn’t external, it’s personal. This episode breaks down insider threats and corporate espionage: how trusted access turns into real risk, what warning signs to watch for, and how organizations can protect themselves. 🔐⚠️
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
🔐 Holiday Cyber Threats & What’s Coming Next
Got a question or comment? Message us here!
🎙️ In this episode, CISO Jonathan Kimmitt steps in to break down the latest cybersecurity threats impacting organizations during the holiday season and beyond. From ransomware spikes during understaffed weekends to holiday-themed phishing, critical Patch Tuesday vulnerabilities, and emerging AI-powered social engineering, Kimmitt covers what security leaders need to know as we head into 2026.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
End-of-Year Wrap: 2025 Threat Trends and Bold Predictions for 2026 🎆
Got a question or comment? Message us here!
In this special end-of-year SOC Brief, Andrew breaks down the biggest threat-actor and ransomware trends that shaped 2025, and what cybersecurity teams should be preparing for in 2026. From AI-powered ransomware and supply-chain attacks to the growing blur between nation-state operations and cybercrime, this episode connects the data, the patterns, and the predictions that matter most heading into the new year. ✨
Tune in at secureafpodcast.com to hear what’s evolving, what’s accelerating, and where defenders have a real chance to shift the advantage before 2026 begins.
Support...
🎄 Holiday Season Security: Preparing Your SOC for the Festive Chaos
Got a question or comment? Message us here!
This week’s SOC Brief dives into why the holidays are prime time for cyberattacks 🎄 from surging phishing attempts to sloppy vendor configs, alert fatigue, staffing gaps, and the seasonal spike in ransomware activity. Andrew and Dylan break down what SOCs should be watching for, how to prep, and how to stay covered even when headcount is low. Stay ahead of the threats this holiday season.
Support the show
Watch full episodes at youtube.com/@aliascybersecurity.
Listen on Apple Podcasts, Spotify and anywhere you g...
