Channel

The 229 Podcast

Podcasts Hosted by Bill Russell, Sarah Richardson, and Drex DeFord

In-depth interviews with healthcare CIOs, CISOs, and technology leaders. Bill Russell explores the decisions, strategies, and innovations shaping healthcare transformation.

Apple Podcasts Spotify

Episodes (288)

Toggle shows

The 229 Podcast UnHack the Podcast UnHack the News 2 Minute Drill Newsday Executive Interview Solution Showcase

May 21, 2026·Executive Interview

The Front Door Is Wide Open: Healthcare's IAM Wake-Up Call | Executive Interview with Mark Ferrari

May 20, 2026: Mark Ferrari , VP of Advisory Services at Fortified Health Security , joins Drex DeFord on UnHack for a candid conversation about the threat landscape keeping healthcare security leaders up at night. From asset inventory gaps to the explosion of identity-based attacks, Mark brings a rare perspective shaped by military service, 30 years as an EMT, and deep healthcare IT experience. He pulls no punches on why healthcare keeps buying tools before defining the problem, and what it actu

May 21, 2026·2 Minute Drill

The Hidden First Step in Healthcare Ransomware Attacks Revealed | 2 Minute Drill with Drex DeFord

Ransomware attacks don't always start with a ransomware gang. They start with someone who gets paid to find the door. Aleksey Volkov, known online as ChewbaccaCore, was an initial access broker. His job was identifying vulnerable companies, exploiting their networks, establishing a foothold, and selling that access on dark web marketplaces. Over 16 months in 2021-2022, his work enabled attacks on seven confirmed US businesses, resulting in $9M in confirmed losses and $24M in intended ransom dema

May 15, 2026·2 Minute Drill

Scattered Spider's $27M Hacker Got Caught Reusing His Username | 2 Minute Drill With Drex DeFord

Tyler Buchanan grew up in Dundee, Scotland and became one of the most consequential cybercriminals in the English-speaking world. His method was almost insultingly simple: text messages. Posing as IT help desks, he sent phishing texts to employees at companies like Twilio, LastPass, Mailchimp, and DoorDash. Directing them to convincing fake login pages that captured credentials and 2FA codes in real time. Find out how he got caught in this 2 Minute Drill Remember, Stay a Little Paranoid

May 13, 2026·Executive Interview

Rethinking Global IT Delivery and Co-Sourcing | Executive Interview With Jake Morrison

May 13, 2026: Jake Morrison , Global Healthcare Practice Head at Infinite Computer Solutions , joins Bill Russell for a candid executive conversation about what's really driving healthcare IT today. From the promise of AI to the surge in managed services demand, Jake shares why the old "outsource your mess for less" mindset is failing health systems. With 28 global delivery centers and half of Infinite's work in healthcare, Jake brings a uniquely global perspective on where the industry is heade

May 8, 2026·2 Minute Drill

How North Korea's Fake Company Compromised Millions | 2 Minute Drill with Drex DeFord

North Korean threat actors didn't breach a firewall. They built a fake company. UNC1069 spent two weeks constructing a convincing Slack workspace, fake team members, and LinkedIn profiles to earn the trust of Jason Seaman -- lead maintainer of Axios, a JavaScript library downloaded over 100 million times a week. One Teams call. One file. Within hours, malicious code was live and reaching health systems everywhere. The attack skipped the $50M security stack entirely and went straight to the human

May 6, 2026·Executive Interview

The Cyber Attack No One Can Survive Alone | Executive Interview with Josh Howell

May 5, 2026: What happens when attackers don't just break into your systems, they become you? Josh Howell , Healthcare CTO at Rubrik , joins Drex DeFord to unpack Rubrik's newly announced partnership with the American Hospital Association, a rigorous vetting process that signals a new standard in cyber risk validation. Josh draws on hundreds of ransomware recovery experiences to challenge how health systems think about resilience, recovery sequencing, and the identity control plane. Learn why th

May 2, 2026·2 Minute Drill

2 Minute Drill: Building an Agentic AI Hacker with Drex DeFord

Drex unpacks a signal hiding across several recent stories: we may be deploying AI well ahead of our ability to secure it. From an autonomous AI agent that breached a consulting firm's internal chatbot in two hours, gaining access to 46 million employee messages, to a multi-agent experiment where AI systems escalated privileges, forged credentials, and disabled antivirus software entirely on their own, the pattern is unsettling. Add a publicly available AI prescribing tool in Utah that researche

Apr 30, 2026·2 Minute Drill

What Healthcare Can Learn From a 20 Year Old Hacker | 2 Minute Drill with Drex DeFord

Matthew Lane was 14 when he started probing the edges of online gaming systems. By 20, he had walked out of PowerSchool with data on nearly 70 million students and teachers using nothing but a contractor's stolen credentials he found on the dark web. Drex tells the full story and then lands the part that matters most for healthcare: Lane didn't exploit a sophisticated vulnerability. He used a username and password attached to someone who had legitimate access and simply walked through the front

Apr 29, 2026·Executive Interview

Data Liberation, Tech Debt, and the Road to AI-Ready | Executive Interview with Jim Jacobs

April 29, 2026: Bill Russell sits down with Jim Jacobs , President and CEO of MediQuant , to confront one of healthcare's most expensive and underappreciated problems: runaway application complexity. Jim makes the case that software rationalization isn't an IT to-do list item; it's a board-level imperative. With health systems carrying $60 million in unwanted software spend and cyber risks piling up in legacy systems that no one is maintaining, the urgency has never been higher. And with AI dema

Apr 24, 2026·2 Minute Drill

The Most Likely Way Into Your Network Is Still the Door You Forgot to Lock | 2 Minute Drill

While the industry debates frontier AI models and nation-state threats, hospitals are still getting hit by ransomware through the same doors they've always left open. Drex zooms out to what's actually happening on the ground: massive patch cycles creating downstream operational pressure, countries reconsidering their software dependencies, and CISOs quietly doubling down on fundamentals. MFA, identity management, tested backups, network segmentation. The HICP documents are free, the roadmap alre

Apr 15, 2026·2 Minute Drill

2 Minute Drill: How a 22-Year-Old Took Down the World's Largest Botnet with Drex DeFord

The Kim Wolf botnet was the most powerful ever built — 2 million compromised IoT devices, a record-breaking 31.4 terabit DDoS attack, and it had the FBI, Google, and Cloudflare stumped. Drex breaks down how those cheap, forgotten devices in patient waiting rooms and break rooms became weapons inside hospital networks, and why 25% of Infoblox's enterprise healthcare clients were already compromised. Then comes the wild part: a 22-year-old RIT undergrad named Benjamin cracked the whole operation —

Apr 9, 2026·2 Minute Drill

2 Minute Drill: AI has now Hacked the Un-hackable with Drex DeFord

The window between vulnerability discovery and exploitation has collapsed — from 63 days in 2018 to negative. Now AI is changing the game entirely. Drex walks through how Anthropic's unreleased model Mythos autonomously found a critical zero-day in the Ghost CMS, wrote its own exploit, and extracted sensitive credentials in under two hours — all without a CVE ever existing. Add in two accidental Anthropic data leaks in the same week, and the story gets more complicated. For healthcare organizati