Channel

The 229 Podcast

Podcasts Hosted by Bill Russell, Sarah Richardson, and Drex DeFord

In-depth interviews with healthcare CIOs, CISOs, and technology leaders. Bill Russell explores the decisions, strategies, and innovations shaping healthcare transformation.

Apple Podcasts Spotify

Episodes (217)

Toggle shows

The 229 Podcast UnHack the Podcast UnHack the News 2 Minute Drill Newsday Executive Interview Solution Showcase

Mar 24, 2025·2 Minute Drill

2 Minute Drill: Google's $32B Wiz Acquisition & CISA Employment Turmoil with Drex DeFord

Drex discusses Google's massive $32 billion acquisition of cloud security company Wiz and what it means for healthcare cloud infrastructure. Learn about the recent CISA employee firing controversy and subsequent court-ordered reinstatements. Plus, discover how states are competing to recruit displaced federal cybersecurity professionals - creating a potential hiring opportunity for healthcare organizations. Remember, Stay a Little Paranoid X: This Week Health LinkedIn: This Week Heal

Mar 20, 2025·2 Minute Drill

2 Minute Drill: CSA Budget Cuts Raise Security Concerns Amid Ransomware Threats with Drex DeFord

2Drex discuss CSA's decision to cut $10 million in funding to the Center for Internet Security's management of MS-ISAC and EI-ISAC programs, which coordinate critical threat information for state, local, and election infrastructure. Meanwhile, a new ransomware gang called Mora 0 0 1 is targeting 49 firewalls by exploiting known vulnerabilities to gain initial network access. The FBI and CISA have also issued warnings about the Medusa ransomware-as-a-service, which has attacked over 300 victims a

Mar 14, 2025·2 Minute Drill

2 Minute Drill: Microsoft's Zero-Day, Black Basta, and X DDoS Attack Mystery with Drex DeFord

Critical Microsoft Patch Tuesday release includes near-record number of zero-days with six already being exploited. Apple releases patches for Safari browser engine affecting all devices. Analysis of leaked Black Basta ransomware gang chat logs reveals valuable insights on attack strategies and evasion techniques. Recent DDoS attack against X (formerly Twitter) remains largely unattributed despite claims from hacker group DarkStorm and debunked assertions about Ukrainian IP addresses. Remember,

Mar 12, 2025·2 Minute Drill

2 Minute Drill: Twitter Taken Down - Massive DDoS Attack With Drex DeFord

Drex analyzes three significant cybersecurity developments: the widespread outage of a major social media platform (formerly Twitter) caused by a DDoS attack claimed by hacker group Dark Storm Team, NIST's recent addition of the "govern function" to their cybersecurity framework that emphasizes optimizing existing tools over acquiring new ones, and concerning reports that OpenAI's latest GPT-4.5 model hallucinates 37% of the time, raising important questions about AI reliability for everyday use

Mar 7, 2025·2 Minute Drill

2 Minute Drill: VMware Zero-Day Exploits, Black Basta, and Concerningly Realistic Voice AI with Drex DeFord

Broadcom reports three actively exploited zero-day vulnerabilities affecting VMware ESXi, Workstation, and Fusion products that require immediate patching. Leaked chat logs from the Black Basta ransomware group reveal internal conflicts, operational tactics, and efforts to circumvent cybersecurity tools. Lastly, A demonstration of Sesame's new voice AI technology shows concerningly realistic capabilities that could potentially lead users to inadvertently share private information. Remember, Stay

Mar 3, 2025·2 Minute Drill

2 Minute Drill: Healthcare Wins Most Breached Industry of 2024 with Drex DeFord

According to Kroll's cyber risk team, healthcare leads as the most breached industry in 2024 at 23% of all incidents, with medical data valued up to $1,000 on dark markets compared to just $5 for credit card information. Drex provides updates on the Change Healthcare breach one year later, noting that notifications are still ongoing for the incident that affected nearly half of all Americans. The episode concludes with a spotlight on "Have I Been Pwned," a valuable resource for checking if your

Feb 27, 2025·2 Minute Drill

2 Minute Drill: DIY Phishing, Warby Parker's $1.5M Fine, and CrowdStrike CSO Retirement

Darkula's new "Darkula Suite" phishing-as-a-service platform that makes creating sophisticated phishing campaigns accessible to non-technical users. Then, Warby Parker's $1.5 million fine for a 2018 security breach affecting nearly 200,000 customers. Lastly, CrowdStrike's Chief Security Officer Sean Henry announcing his retirement after serving as a key executive at the company Remember, Stay a Little Paranoid Subscribe: This Week Health Twitter: This Week Health LinkedIn: Th

Feb 21, 2025·2 Minute Drill

2 Minute Drill: CISA Shake-up, Palo Alto Vulnerability, and HealthNet's $11.2M Fine with Drex DeFord

Drex covers major developments in cybersecurity including significant staffing changes at CISA, where the DOJ has laid off 130 employees and controversially granted facility access to 19-year-old Edward Korrestien. We also discuss a critical vulnerability (CVE-2025-0111) discovered in Palo Alto firewalls that requires immediate attention. The episode concludes with news of HealthNet Federal Services receiving an $11.2M fine for falsely certifying cybersecurity compliance in their TRICARE program

Feb 19, 2025·2 Minute Drill

2 Minute Drill: OmniGPT Breach Claims, Italian Defense Minister Deepfake, and Hacking Collaborations with Drex DeFord

Drex covers the alleged breach of OmniGPT affecting 30,000+ users with 34M+ exposed messages. Then, sophisticated deepfake scam using Italian defense minister's voice targeting business leaders. Lastly, a growing partnership between financial cybercriminals and state-sponsored hackers from Russia, China, and Iran. Remember, Stay a Little Paranoid Subscribe: This Week Health Twitter: This Week Health LinkedIn: This Week Health Donate: Alex’s Lemonade Stand: Foundation f

Feb 13, 2025·2 Minute Drill

2 Minute Drill: Deepfake Job Applicants, OpenAI's Non-Breach, and iOS Updates with Drex DeFord

A San Francisco cybersecurity company recently uncovered multiple deepfake attempts by North Korean actors during their hiring process, highlighting a growing concern in technical recruitment. OpenAI has concluded an investigation finding no evidence of a system breach, despite hackers' claims of possessing 20 million user credentials. The claimed data was likely assembled from other sources according to third-party threat intelligence. Additionally, Apple has released important security updates

Feb 12, 2025·Solution Showcase

Solution Showcase: Data Monitoring to Help Clinicians Rest Easy with James Wellman and Vik Patel

February 12, 2025: James Wellman , VP and CIO of Nathan Littauer Hospital & Nursing Home , and Vik Patel , COO of Tido , as they explore advancing data integration, operational efficiency, and patient care. Learn what happens when a healthcare IT partnership transcends traditional vendor relationships to become a true team extension, and discover how trust-based partnerships drive success in healthcare IT. Don't miss this engaging solution showcase. Key Points: 01:28 The Power of Relationshi

Feb 11, 2025·2 Minute Drill

2 Minute Drill: Device Security, Federal System Concerns, and Employee Targeting with Drex DeFord

Drex explores Health-ISAC's new comprehensive paper addressing the critical aspects of medical device lifecycle security management and cybersecurity responsibilities. He discusses growing concerns among healthcare executives regarding DOGE's takeover of federal systems and its potential impact on regulatory compliance. The episode concludes with an alarming trend where cybercriminals are actively recruiting healthcare employees for insider threats, offering financial incentives for company info