Search site
Find podcasts, news, articles, webinars, and contributors in one search.
Channel
Podcasts Hosted by Bill Russell, Sarah Richardson, and Drex DeFord
In-depth interviews with healthcare CIOs, CISOs, and technology leaders. Bill Russell explores the decisions, strategies, and innovations shaping healthcare transformation.
Apr 11, 2025·2 Minute Drill
Drex examines The alarming rise of intimate deepfakes targeting primarily women and children, with 18 states currently offering no legal protection against these digital sex crimes. Various state legislative efforts including Montana's focus on combating political deepfakes, particularly within 60 days of elections; and OpenAI's first investment in cybersecurity through a $43 million funding round for Adaptive Security, a company specializing in training organizations to recognize deepfake attac
Apr 9, 2025·2 Minute Drill
Drex covers three critical cybersecurity stories: Oracle's evolving response to two separate breaches affecting healthcare customers, with the company gradually changing its stance from denial to downplaying the significance of compromised data. Next Arizona-based Simon Med imaging practice facing multiple federal class action lawsuits after the Medusa cyber gang stole sensitive information from over 132,000 patients across seven states. Ukraine's innovative cyber warfare tactic of planting malw
Apr 4, 2025·2 Minute Drill
Class action lawsuits have been filed against Oracle in Texas following recent cyber incidents, with lawyers alleging poor security framework, inadequate staff training, and failure to implement preventative software. The Health Sector Coordinating Council's cybersecurity working group testified to Congress about medical device security and the suspended HIPAA security rule update, citing unrealistic cost estimates and implementation challenges. Additionally, critical zero-day vulnerabilities in
Apr 1, 2025·2 Minute Drill
Drex covers two separate Oracle security incidents affecting healthcare organizations. The Rose87168 hacking group claims to have stolen 6 million user records from Oracle Cloud, now for sale on the dark web. Oracle denies the breach, but independent researchers confirm data authenticity. A second breach on older Cerner servers (not yet migrated to Oracle Cloud) exposed patient medical information, with hackers attempting to extort several US healthcare organizations. The full scope of affected
Mar 31, 2025·2 Minute Drill
Drex covers a major security breach where Trump administration officials shared classified military operation details via Signal chat with an unauthorized reporter, Broadcom's release of critical security updates for VMware tools addressing high-severity vulnerabilities, and a dramatic HHS restructuring that eliminates 10,000 positions, reduces divisions from 28 to 15, and transfers key healthcare security offices including ASPR to CDC and realigns the Office of Civil Rights overseeing HIPAA com
Mar 25, 2025·2 Minute Drill
Drex covers reports of an alleged Oracle Cloud security incident affecting login infrastructure with over 6 million records at risk across 140,000 tenants (though Oracle denies any breach), and 23andMe's bankruptcy filing. Security recommendations include rotating credentials, resetting passwords for Oracle Cloud users, and downloading then deleting personal genetic data from 23andMe as a precautionary measure. Remember, Stay a Little Paranoid X: This Week Health LinkedIn: This Week
Mar 24, 2025·2 Minute Drill
Drex discusses Google's massive $32 billion acquisition of cloud security company Wiz and what it means for healthcare cloud infrastructure. Learn about the recent CISA employee firing controversy and subsequent court-ordered reinstatements. Plus, discover how states are competing to recruit displaced federal cybersecurity professionals - creating a potential hiring opportunity for healthcare organizations. Remember, Stay a Little Paranoid X: This Week Health LinkedIn: This Week Heal
Mar 24, 2025·UnHack the Podcast
March 24, 2025: Heather Costa , Director of Technology Resilience at Mayo Clinic , shares her journey of rebranding her team from "disaster recovery operations" to "technology resilience operations," emphasizing that cyber incidents require a fundamentally different approach than physical disruptions. The conversation delves into the challenges of communicating technical needs with clinical staff, with Heather explaining her philosophy of "meeting people where they are" and focusing on their wor
Mar 20, 2025·2 Minute Drill
2Drex discuss CSA's decision to cut $10 million in funding to the Center for Internet Security's management of MS-ISAC and EI-ISAC programs, which coordinate critical threat information for state, local, and election infrastructure. Meanwhile, a new ransomware gang called Mora 0 0 1 is targeting 49 firewalls by exploiting known vulnerabilities to gain initial network access. The FBI and CISA have also issued warnings about the Medusa ransomware-as-a-service, which has attacked over 300 victims a
Mar 14, 2025·2 Minute Drill
Critical Microsoft Patch Tuesday release includes near-record number of zero-days with six already being exploited. Apple releases patches for Safari browser engine affecting all devices. Analysis of leaked Black Basta ransomware gang chat logs reveals valuable insights on attack strategies and evasion techniques. Recent DDoS attack against X (formerly Twitter) remains largely unattributed despite claims from hacker group DarkStorm and debunked assertions about Ukrainian IP addresses. Remember,
Mar 12, 2025·2 Minute Drill
Drex analyzes three significant cybersecurity developments: the widespread outage of a major social media platform (formerly Twitter) caused by a DDoS attack claimed by hacker group Dark Storm Team, NIST's recent addition of the "govern function" to their cybersecurity framework that emphasizes optimizing existing tools over acquiring new ones, and concerning reports that OpenAI's latest GPT-4.5 model hallucinates 37% of the time, raising important questions about AI reliability for everyday use
Mar 7, 2025·2 Minute Drill
Broadcom reports three actively exploited zero-day vulnerabilities affecting VMware ESXi, Workstation, and Fusion products that require immediate patching. Leaked chat logs from the Black Basta ransomware group reveal internal conflicts, operational tactics, and efforts to circumvent cybersecurity tools. Lastly, A demonstration of Sesame's new voice AI technology shows concerningly realistic capabilities that could potentially lead users to inadvertently share private information. Remember, Stay
Page 7 of 18
Apple Podcasts
