CyberWire Daily

Mason Amadeus, co-host of The Fake Files podcast, brings his deepfake and forensics expertise. He discusses widespread iPhone exploit code and its risks. Conversations cover synthetic media detection, forensic techniques, and how to stay pragmatic against evolving threats.

Iran’s cyber ops stay resilient. U.S. lawmakers press Big Tech on EU rules. Researchers expose a Fancy Bear server. Japan moves toward offensive cyber. CISA calls for cross-agency teamwork. New malware targets network infrastructure. AI fooled by font-based attacks. Schneider Electric warns of critical flaws. Quantum cryptography earns top honors. Guest Bradon Rogers, Chief Customer Officer at Island, discusses making AI browsers safe for enterprises. Smart glasses on the witness stand. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest On our Industry Voices segment, guest Bradon Rogers, Chief Customer Officer at Island, discusses making AI browsers safe for enterprises. You can dig into the details of what Bradon discussed in Gartner’s “Cybersecurity Must Block AI Browsers for Now.” You can hear the full interview here. Selected Reading U.S Strikes Killed Iranian Cyber Chiefs, But The Hacks Continued (Forbes) US committee demands Big Tech share private comms with EU officials (POLITICO) FancyBear Exposed: Major OPSEC Blunder Inside Russian Espionage Ops (Ctrl-Alt-Intel) Japan to allow ‘proactive cyber-defense’ from October 1st (The Register) CISA official advises agencies not to get too hung up on who takes lead in critical infrastructure sectors (CyberScoop) New Malware Highlights Increased Systematic Targeting of Network Infrastructure (Eclypsium) Poisoned Typeface: How Simple Font Rendering Poisons Every AI Assistant, And Only Microsoft Cares (LayerX) Schneider Electric Patches Critical RCE Vulnerability in SCADAPack RTUs (Beyond Machines) Turing Award Goes to Inventors of Quantum Cryptography (The New York Times) Witness Caught Using Smartglasses in Court Blames it all on ChatGPT (404 Media) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show.   Want to hear your company in the show? N2K CyberWire helps you reach the industry’s most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Erica L. Shoemate, former FBI intelligence analyst and public policy strategist, now leads The EN Strategy Group. She discusses how AI is compressing decision timelines and reshaping who holds power. They cover changing threat dynamics, the need for human-in-the-loop controls, and how ethics and accountability must be designed into systems.

Kim Jones, a seasoned cybersecurity and risk leader with decades in intelligence and CISO roles, reflects on the season's arc. She revisits talent debates, the pull of poaching over development, and why consistent strategies matter. She highlights diversity as essential for problem solving and questions education and certification expectations. Short teasers hint at remaining installments and the finale.

Tim Starks, senior reporter at CyberScoop who covers national security and cyber conflict, unpacks the Stryker wiper strike and its operational impact. He explores the murky trail of Iranian-linked activity and why broader campaigns remain hard to spot. Short takes also touch on AI toys confusing preschoolers and the rise of novel cybercrime trends like loyalty-fraud markets.

Christian Lees, CTO at Resecurity, went from a donated PC to roles in desktop support, network and security engineering, and CISO work. He talks about starting late, cutting his teeth at IBM and Level 3, moving into pen-testing and PCI work, building dark-web alerting and product diversification, and why curiosity and persistence matter.

Or Eshed, Co-founder and CEO of LayerX Security, a browser security leader who uncovered a campaign of malicious ChatGPT-themed extensions. He discusses how extensions posed as productivity tools, intercepted ChatGPT tokens, and formed a coordinated cluster of 16 malicious add-ons. The conversation covers distribution tactics, enterprise risk, and defensive controls in brief, punchy segments.

Jack R. Bialik, engineer and author of In Lost in Time, Our Forgotten and Vanishing Knowledge, explores forgotten technologies and why some knowledge vanishes. He talks about ancient innovations resurfacing, risks of our fully digital society, short lifespans of modern storage, and practical steps for preserving culture and personal archives.

Patty Ryan, an experienced cybersecurity executive and long-time CISO, reflects on how the CISO role evolved and why it often lacks clear authority. She talks about career pathways that shape security leaders. She explores burnout, shifting from tactical fixes to strategic risk management, and growing security talent with coaching and soft skills.

Paul Kocher, security technologist and longtime Innovation Sandbox judge, and Cecilia Marinier, RSAC innovation and programming lead, talk about the RSAC Innovation Sandbox finalists. They also cover an FBI file breach, Iran-linked cyber activity, a Stryker attack, EU moves on digital sovereignty, SolarWinds emergency patching, and AI/ChatGPT controversies.