Adventures of Alice & Bob

Join hosts James Maude and Marc Maiffret as they dive into a captivating conversation with industry legend Morey Haber. With over two decades of experience—going back before CVEs were even a thing—Morey delivers a bold look at the security threats of 2025 and beyond. Is AI on the verge of bursting its hype bubble? Are hidden paths to privilege the next battleground? The group discusses how today’s identity-based attacks are reshaping cybersecurity and how Morey deep-faked himself to expose the alarming reality of AI impersonation. From the roots of early vulnerability research to the cutting edge of emerging attack vectors, this is a must-listen episode to understand how old threats are wearing new masks—and what defenders must do to keep up (and a great episode to wrap-up 2024)!

Join host James Maude as he talks all things cryptography with Sophie Schmieg, a Staff Information Security Engineer at Google. In this episode, Sophie shares her journey from pure mathematics to applied cryptography, revealing how her background in algebraic geometry provides a distinctive approach to modern security challenges. From discovering major vulnerabilities in AWS to creating solutions that will last until the year 909,000, Sophie breaks down complex cryptographic concepts with clarity and humor. She offers invaluable insights into post-quantum cryptography, the real-world implications of quantum computing, and why you probably don't need that quantum random number generator.

Today, Marc and James welcome Brooke Denney, a rising star in cybersecurity who brings a dynamic, cloud-first perspective to the ever-evolving industry. Brooke shares her inspiring journey from aspiring veterinarian to accomplished security engineer, offering insights into the fascinating world of AI-powered phishing, modern security challenges, and safeguarding critical infrastructure. As a senior information security engineer and a dedicated member of the Ohio Cyber Reserve, Brooke provides a unique and expert view on the evolution of attack chains, the importance of supply chain security, and the transformative future of cybersecurity education.

In this episode, Marc and James plunge into the world of identity security with DJ Morimanno. From his early days pf dumpster diving for computer parts to becoming a powerhouse Director of Identity and Access Management Technologies, DJ’s cybersecurity journey is what legends are made of. They dig deep into the evolution of identity security, the pivotal role of human behavior in staying cyber-safe, and how quantum computing could revolutionize the future of identity protection.

In today's episode, host James welcomes Anna Aslanishvili, the visionary founder and CEO of Pine Risk Management. Anna takes us behind the scenes of high-stakes security assessments, from testing executive protection during a CEO's morning jog to uncovering faulty panic buttons—and even dealing with the threat of mailed anthrax. With captivating stories and expert insights, Anna reveals how pushing the limits in real-world scenarios leads to safer environments for everyone.

Today, Marc and James have the pleasure of sitting down with Omar Aviles, a seasoned expert in DFIR, threat hunting, and malware analysis. Omar takes us on a journey through his early days of dismantling computers out of sheer curiosity to the high-stakes world of battling ransomware in real-time. He delves into the growing dangers of corporate espionage, nation-state attacks, and the ever-evolving landscape of cybersecurity. Throughout the conversation, Omar’s passion for protecting the digital world shines brightly, as he shares his favorite hacking techniques, insights on hunting and neutralizing threats, and invaluable advice for those looking to break into the cybersecurity field.

This episode follows the fascinating journey of Gary Bowser, a tech industry veteran whose life has been shaped by his passion for hacking and modding. From his early days tinkering with Texas Instruments computers to becoming a key figure in the controversial world of game console hacking, Gary's story is one of innovation, legal battles, and personal redemption.Host James Maude explores Gary's evolution from a curious teenager to a prominent figure in the modding community, culminating in a high-profile legal case brought by Nintendo. Gary candidly shares his experiences, including his arrest in the Dominican Republic, his challenging time in the US prison system during the COVID-19 pandemic, and the eventual resolution of his case.

In this episode, Greg Pickett takes Marc on a thrilling journey from his early days of war dialing and hacking a bank (complete with hiding under a desk to avoid detection!) to exposing credential misuse on bulletin boards and uncovering a massive security breach tied to the Chinese military—all while tackling the challenges of corporate security and internal politics.

In this episode, Marc engages in an eye-opening conversation with Robert RSnake Hansen, a true legend in the cybersecurity realm. RSnake takes us on a journey through his transformation from a mischievous hacker to a revered security expert, revealing the high-stakes moments that defined his career. He dives deep into his experience with the groundbreaking Hack the Pentagon program, where his relentless pursuit of vulnerabilities nearly landed him in prison. But the tension doesn’t stop there—RSnake also recounts a terrifying encounter with a cartel that wrongly believed he was the mastermind behind the infamous dark web site, Silk Road. With unfiltered honesty, RSnake shares his thoughts on the ever-evolving world of cybersecurity, the rise of bug bounties, and the delicate balance between safeguarding security and preserving privacy in our increasingly digital society.

In today's episode, James and Marc explore the devastating ransomware attack that crippled the Town of Truckee, shutting down phones, internet, and critical data access behind the town's firewall. With special guests Chris Hardy and Logan McDonald, you'll gain an insider's perspective on the relentless challenges they faced, the innovative strategies they used for recovery, and a surprising twist—the unique dress code of the Town of Truckee. Don't miss this captivating discussion on cybersecurity, resilience, and community spirit.