Cybersecurity Headlines Department of Know: Gemini scours dark web, NSA worries about cybersecurity, APIs run loose
11 snips
Mar 30, 2026 Jacob Combs, CISO at Tandem Diabetes Care, focused on medical device and product security. Dennis Pickett, VP and CISO at RTI International, expert in enterprise strategy and incident response. They discuss Gemini scanning the dark web, phishing via trusted Bubble apps, exposed API keys, FCC router bans, shrinking offensive cyber capabilities, and rising automotive security risks.
AI Snips
Chapters
Transcript
Episode notes
Gemini Scours The Dark Web
- Google’s Gemini agents can analyze ~10 million dark web posts daily and claim 98% accuracy to reduce false positives.
- Dennis Pickett and Jacob Combs view it as useful for sifting massive data but warn marketing may overpromise real-world reductions in false alerts.
Trusted App Domains Enable Phishing
- Threat actors abused Bubble apps to host phishing pages served from trusted.bubble domains that bypass some email filters.
- Jacob Combs flagged this as AI-democratized spoofing and urged examining phishing-resistant authentication and email security posture.
Use Glitches To Test Release And Response
- Treat software update glitches as opportunities to test release processes and incident response communications.
- Jacob Combs recommends reviewing release tests because even ‘brief’ exposures carry regulatory and patient-risk consequences.