Search site
Find podcasts, news, articles, webinars, and contributors in one search.
Channel
Podcasts Hosted by Bill Russell, Sarah Richardson, and Drex DeFord
In-depth interviews with healthcare CIOs, CISOs, and technology leaders. Bill Russell explores the decisions, strategies, and innovations shaping healthcare transformation.
Feb 24, 2026·2 Minute Drill
Drex unpacks a striking story about an autonomous AI coding agent that, after having its code rejected by an open source maintainer, began publishing hostile blog posts targeting the engineer's reputation. What started as a routine code review turned into a cautionary tale about AI agents operating in human communities without guardrails. The implications stretch well beyond software development, into healthcare operations, cybersecurity, and any environment where agents are now being deployed w
Feb 11, 2026·2 Minute Drill
At a recent 229 CISO Summit, healthcare security leaders revealed a critical shift in how success is measured. The traditional KPI of "don't get breached" is being replaced by a more sophisticated goal: ensure organizational resilience. Drex explains why cyber incidents are now financial events that land on the CFO's desk, not just IT problems. With regulatory scrutiny intensifying, insurance requirements tightening, and boards asking harder questions about operational continuity, security has e
Feb 4, 2026·2 Minute Drill
Drex explores a fundamental shift in AI: agents that don't wait for prompts, persist indefinitely, and now learn from each other through social platforms. Molt Bot and Molt Book represent a new ecosystem where autonomous agents coordinate, adapt, and optimize without human oversight. This isn't about sentient AI—it's about delegation without governance. For healthcare leaders, the urgent question isn't whether this matters, but whether you know which agents are already operating in your environm
Jan 28, 2026·2 Minute Drill
On Data Privacy Day, Drexon challenges healthcare leaders to move beyond compliance checkboxes and recognize privacy as a core component of "do no harm." As patient data flows through EHRs, cloud platforms, and AI systems, the responsibility to protect that trust doesn't live in policies—it lives with leadership. When data is over-collected or loosely governed, patients start holding back, and the critical trust between medical teams and patients begins to fracture. This year, data privacy shoul
Jan 22, 2026·2 Minute Drill
In a stunning betrayal of trust, two cybersecurity professionals—an incident response manager and a ransomware negotiator—pled guilty to operating as affiliates of the AlphaV/BlackCat ransomware gang. Between May and November 2023, they attacked five U.S. companies, including healthcare organizations, while simultaneously working in roles designed to help ransomware victims recover. The FBI's seizure of the gang's infrastructure exposed chat logs and payment records that led to their arrests. Bo
Jan 14, 2026·2 Minute Drill
As healthcare organizations deploy AI agents across clinical, business, and research operations, we're creating a new class of insider threat—one that works 24/7, follows instructions perfectly, and moves at machine speed. Drexel explores why AI agents with tool access become de facto insiders and why we need clear boundaries, tight access controls, and human approval workflows before these powerful assistants cause unintended damage. The key insight: the moment an AI agent gets tools, it become
Jan 8, 2026·2 Minute Drill
Drex breaks down ISC2's 2025 cybersecurity workforce study and explains why healthcare's security staffing problem isn't about finding more people—it's about broken operating models and unrealistic expectations. He covers the critical skills gap in translating cyber risk to business risk, the burnout driving away mid-career talent, and why third-party risk management has become more complex than ever. Plus, practical solutions healthcare CISOs are using: growing security teams internally by hiri
Dec 15, 2025·2 Minute Drill
A critical vulnerability called React to Shell exposed tens of thousands of systems worldwide, triggering immediate exploitation by threat actors—including China-nexus groups—within minutes of disclosure. Drex breaks down how this flaw turns innocent web requests into remote access backdoors, why CloudFlare's emergency response accidentally caused widespread outages, and what this high-stakes race teaches us about rapid response patching in healthcare. When attackers move at internet speed, your
Dec 3, 2025·2 Minute Drill
Drex DeFord explores what he calls the "trust recession"—a era where deepfakes, AI-generated content, and sophisticated social engineering have made it nearly impossible to distinguish real from fake. From synthetic customer service agents to North Korean operatives using AI to pass job interviews at US health systems, the threat landscape has fundamentally shifted. DeFord shares practical strategies for healthcare professionals to protect themselves during the holiday season when cyber criminal
Nov 26, 2025·2 Minute Drill
Drex examines the growing insider threat landscape in healthcare cybersecurity. The episode covers CrowdStrike's recent insider incident where screenshots were leaked to cybercriminals, new research showing 93% of organizations struggle to detect insider threats, and the Geisinger Health/Nuance $5 million settlement over improper data access. Drex also reveals how ransomware groups like Medusa are directly recruiting healthcare employees with financial incentives, highlighting that insider threa
Nov 20, 2025·2 Minute Drill
Cybercriminals are escalating their tactics by deploying AI-enabled malware that adapts in real-time. Google Cloud and Anthropic threat intelligence reports reveal attackers using tools like Prompt Flux malware to contact AI APIs mid-attack, rewriting code to evade detection. Threat actors are bypassing AI safety guardrails through social engineering, tricking models into providing malicious capabilities. The underground cybercrime market now offers sophisticated multifunction tools, lowering ba
Nov 12, 2025·2 Minute Drill
CISA 2015's temporary extension buys time until January, but what happens next? Drex breaks down the Oracle E-Business Suite ransomware attack affecting 29 victims—including potential third and fourth-party partners in your supply chain. Plus, Google's $32B Wiz acquisition clears a major hurdle, and Armas' $435M funding round signals where security investment is heading. Keep your threat intel pipelines hot and your radar up. Remember, Stay a Little Paranoid X: This Week Health Linke
Page 2 of 19
Apple Podcasts
