Three Buddy Problem
By Security Conversations
Listen to a podcast, please open Podcast Republic app. Available on Google Play Store and Apple App Store.
Image by Security Conversations
Category: Technology
Open in Apple Podcasts
Open RSS feed
Open Website
Rate for this podcast
Subscribers: 47
Reviews: 0
Episodes: 162
Description
The Three Buddy Problem is a popular Security Conversations podcast that goes beyond industry talking points to discuss what others won’t -- nation-state malware, attribution, cyberwar, ethics, privacy, and the messy realities of securing computers and corporate networks.
Hosted by three veteran security pros -- journalist Ryan Naraine and malware paleontologists Costin Raiu and Juan Andres Guerrero-Saade -- the weekly show attracts a highly engaged audience of security researchers, corporate defenders, CISOs, and policymakers.
Connect with Ryan on Twitter (Open DMs).
| Episode | Date |
|---|---|
|
Signalgate redux, OpenAI's Aardvark, normalizing cyber offense
|
May 03, 2025 |
|
Thomas Rid joins the show: AI consciousness, TP-Link's China connection, trust in hardware security
|
Apr 25, 2025 |
|
China doxxes NSA, CVE's funding crisis, Apple's zero-day troubles
|
Apr 17, 2025 |
|
NSA director fired, Ivanti's 0day screw-up, backdoor in robot dogs
|
Apr 04, 2025 |
|
Signalgate and ID management hiccups, PuzzleMaker and Chrome 0days, Lab Dookhtegan returns
|
Mar 28, 2025 |
|
China exposing Taiwan hacks, Paragon spyware and WhatsApp exploits, CISA budget cuts
|
Mar 21, 2025 |
|
A half-dozen Microsoft zero-days, Juniper router backdoors, advanced bootkit hunting
|
Mar 14, 2025 |
|
Revisiting the Lamberts, i-Soon indictments, VMware zero-days
|
Mar 08, 2025 |
|
Lazarus ByBit $1.4B heist was supply chain attack on developer
|
Mar 01, 2025 |
|
North Korea's biggest ever crypto heist: $1.4B stolen from Bybit
|
Feb 23, 2025 |
|
An 'extremely sophisticated' iPhone hack; Google flags major AMD microcode bug
|
Feb 15, 2025 |
|
Unpacking the UK government's secret iCloud backdoor demand
|
Feb 08, 2025 |
|
Inside the DeepSeek AI existential crisis, Chinese 'backdoor' in medical devices
|
Jan 31, 2025 |
|
Death of the CSRB, zero-days storms at the edge, Juniper router backdoors
|
Jan 24, 2025 |
|
Inside the PlugX malware removal operation, CISA takes victory lap and another Fortinet 0day
|
Jan 17, 2025 |
|
Hijacking .gov backdoors, Ivanti 0days and a Samsung 0-click vuln
|
Jan 10, 2025 |
|
US Treasury hacked via BeyondTrust, MISP and the threat actor naming mess
|
Jan 03, 2025 |
|
Palo Alto network edge device backdoor, Cyberhaven browser extension hack, 2024 research highlights
|
Dec 27, 2024 |
|
US government's VPN advice, dropping bombs on ransomware gangs
|
Dec 23, 2024 |
|
Surveillance economics, Turla and Careto, and the AI screenshots nobody asked for
|
Dec 13, 2024 |
|
Inside the Turla Playbook: Hijacking APTs and fourth-party espionage
|
Dec 07, 2024 |
|
Volexity’s Steven Adair on Russian Wi-Fi hacks, memory forensics, appliance 0days and network inspectability
|
Nov 30, 2024 |
|
Sid Trivedi on the RSA Innovation Sandbox $5 million investment gambit
|
Nov 28, 2024 |
|
Russian APT weaponized nearby Wi-Fi networks in DC, new macOS zero-days, DOJ v Chrome
|
Nov 22, 2024 |
|
What happens to CISA now? Is deterrence in cyber possible?
|
Nov 15, 2024 |
|
Mysterious rebooting iPhones, EDR vendors spying on hackers, Bitcoin 'meatspace' attacks
|
Nov 09, 2024 |
|
The Sophos kernel implant, 'hack-back' implications, CIA malware in Venezuela
|
Nov 03, 2024 |
|
Fortinet 0days, Appin hack-for-hire exposé, crypto heists, Russians booted from Linux kernel
|
Oct 25, 2024 |
|
ESET Israel wiper malware, China's Volt Typhoon response, Kaspersky sanctions and isolation
|
Oct 18, 2024 |
|
Typhoons and Blizzards: Cyberespionage and national security on front burner
|
Oct 11, 2024 |
|
Careto returns, IDA Pro pricing controversy, crypto's North Korea problem
|
Oct 04, 2024 |
|
Exploding beepers, critical CUPS flaws, Windows Recall rebuilt for security
|
Sep 28, 2024 |
|
Ep13: The Consolation of Threat Intel (JAG-S LABScon keynote)
|
Sep 21, 2024 |
|
Ep12: Security use-cases for AI chain-of-thought reasoning
|
Sep 14, 2024 |
|
Ep11: Cyberwarfare takes an ominous turn
|
Sep 06, 2024 |
|
Ep10: Volt Typhoon zero-day, Russia's APT29 reusing spyware exploits, Pavel Durov's arrest
|
Aug 30, 2024 |
|
Ep9: The blurring lines between nation-state APTs and the ransomware epidemic
|
Aug 23, 2024 |
|
Ep8: Microsoft's zero-days and a wormable Windows TCP/IP flaw known to China
|
Aug 17, 2024 |
|
Ep7: Crowd2K and the kernel, PKFail supply chain failures, Paris trains sabotage and Russian Olympic attacks
|
Aug 02, 2024 |
|
Ep6: After CrowdStrike chaos, should Microsoft kick EDR agents out of Windows kernel?
|
Jul 26, 2024 |
|
Ep5: CrowdStrike's faulty update shuts down global networks
|
Jul 19, 2024 |
|
Ep4: The AT&T mega-breach, iPhone mercenary spyware, Microsoft zero-days
|
Jul 12, 2024 |
|
Ep3: Dave Aitel joins debate on nation-state hacking responsibilities
|
Jul 05, 2024 |
|
Ep2: A deep-dive on disrupting and exposing nation-state malware ops
|
Jun 29, 2024 |
|
Ep1: The Microsoft Recall debacle, Brad Smith and the CSRB, Apple Private Cloud Compute
|
Jun 22, 2024 |
|
Cris Neckar on the early days of securing Chrome, chasing browser exploits
|
Apr 11, 2024 |
|
Costin Raiu joins the XZ Utils backdoor investigation
|
Apr 05, 2024 |
|
Katie Moussouris on building a different cybersecurity businesses
|
Jan 19, 2024 |
|
Costin Raiu: The GReAT exit interview
|
Jan 15, 2024 |
|
Danny Adamitis on an 'unkillable' router botnet used by Chinese .gov hackers
|
Jan 05, 2024 |
|
Allison Miller talks about CISO life, protecting identities at scale
|
Dec 21, 2023 |
|
Rob Ragan on the excitement of AI solving security problems
|
Dec 07, 2023 |
|
Seth Spergel on venture capital bets in cybersecurity
|
Nov 21, 2023 |
|
Dan Lorenc on fixing the 'crappy' CVE ecosystem
|
Nov 14, 2023 |
|
Cisco Talos researcher Nick Biasini on chasing APTs, mercenary hackers
|
Nov 07, 2023 |
|
Allison Nixon on disturbing elements in cybercriminal ecosystem
|
Nov 01, 2023 |
|
Dakota Cary on China's weaponization of software vulnerabilities
|
Sep 15, 2023 |
|
Abhishek Arya on Google's AI cybersecurity experiments
|
Sep 12, 2023 |
|
Dr Sergey Bratus on the 'citizen science' of hacking
|
Aug 31, 2023 |
|
DARPA's Perri Adams on CTF hacking, new $20M AI Cyber Challenge
|
Aug 20, 2023 |
|
Ryan Hurst on tech innovation and unsolved problems in security
|
Aug 16, 2023 |
|
Jason Chan on Microsoft's security problems, layoffs and startups
|
Aug 07, 2023 |
|
GitHub security chief Mike Hanley on secure coding, AI and SBOMs
|
Aug 02, 2023 |
|
Jason Shockey, Chief Information Security Officer, Cenlar FSB
|
Jul 26, 2023 |
|
Federico Kirschbaum on a life in the Argentina hacking scene
|
Jul 19, 2023 |
|
Kymberlee Price reflects on life at the MSRC, hacker/vendor engagement, bug bounties
|
Jul 12, 2023 |
|
OpenSSF GM Omkhar Arasaratnam on open-source software security
|
Jul 05, 2023 |
|
Serial entrepreneur Rishi Bhargava on building another cybersecurity company
|
Apr 10, 2023 |
|
Claude Mandy on CISO priorities, data security principles
|
Mar 06, 2023 |
|
Sidra Ahmed Lefort dishes on VC investments and cyber uncertainties
|
Feb 15, 2023 |
|
Paul Roberts on wins and losses in the 'right to repair' battle
|
Jan 19, 2023 |
|
Katie Moussouris on where bug bounties went wrong
|
Dec 08, 2022 |
|
Robinhood CSO Caleb Sima on a career in the security trenches
|
Nov 08, 2022 |
|
Charlie Miller on hacking iPhones, Macbooks, Jeep and Self-Driving Cars
|
Oct 18, 2022 |
|
JAG-S on big-game malware hunting and a very mysterious APT
|
Oct 17, 2022 |
|
Chainguard's Dan Lorenc gets real on software supply chain problems
|
Oct 13, 2022 |
|
Vinnie Liu discusses a life in the offensive security trenches
|
Aug 07, 2022 |
|
Down memory lane with Snort and Sourcefire creator Marty Roesch
|
Jul 25, 2022 |
|
Subbu Rama, co-founder and CEO, BalkanID
|
Jun 01, 2022 |
|
Project Zero's Maddie Stone on the surge in zero-day discoveries
|
May 10, 2022 |
|
Prof. Mohit Tiwari on the future of securing data at scale
|
May 06, 2022 |
|
Google's Shane Huntley on zero-days and the nation-state threat landscape
|
Apr 04, 2022 |
|
Lamont Orange, CISO, Netskope
|
Mar 21, 2022 |
|
Haroon Meer on the business of cybersecurity
|
Mar 19, 2022 |
|
Tony Pepper, co-founder and CEO, Egress
|
Feb 22, 2022 |
|
Microsoft's Justin Campbell on offensive security research
|
Jan 08, 2022 |
|
Costin Raiu on the .gov mobile exploitation business
|
Dec 23, 2021 |
|
Amanda Gorton, co-founder and CEO, Corellium
|
Dec 20, 2021 |
|
Intel's Venky Venkateswaran on hardware-enabled security
|
Sep 09, 2021 |
|
Sounil Yu on SBOMs, software supply chain security
|
Jul 13, 2021 |
|
Algirde Pipikaite, Centre for Cybersecurity, World Economic Forum
|
Jul 06, 2021 |
|
Josh Schwartz on red-teaming and proactive security engineering
|
Jun 18, 2021 |
|
Michael Laventure, threat detection and response, Netflix
|
Jun 10, 2021 |
|
Google's Heather Adkins on defenders playing the long game
|
May 26, 2021 |
|
Collin Greene, head of product security, Facebook
|
May 25, 2021 |
|
Alex Matrosov on the state of security at the firmware layer
|
May 23, 2021 |
|
Charles Nwatu, Security Technology & Risk, Netflix
|
May 11, 2021 |
|
Doug Madory on the mysterious AS8003 global routing story
|
Apr 29, 2021 |
|
Crossbeam CISO Chris Castaldo on securing the start-up
|
Apr 23, 2021 |
|
Shubs Shah on finding riches (and lessons) from bug bounty hacking
|
Apr 20, 2021 |
|
Fahmida Rashid, Executive Editor, VentureBeat
|
Apr 09, 2021 |
|
Microsoft's David Weston on the surge in firmware attacks
|
Apr 06, 2021 |
|
Lena Smart, CISO, MongoDB
|
Apr 02, 2021 |
|
Patrick Howell O'Neill, Cybersecurity Editor, MIT Technology Review
|
Mar 30, 2021 |
|
Nico Waisman, Head of Privacy & Security, Lyft
|
Mar 26, 2021 |
|
Ron Brash on the water plant hacks and the state of ICS security
|
Mar 11, 2021 |
|
Throwback: Zero-day exploit broker Chaouki Bekrar
|
Mar 03, 2021 |
|
Selena Larson, Intelligence Analyst, Dragos
|
Sep 16, 2020 |
|
Fredrick Lee, Chief Security Officer, Gusto
|
Sep 10, 2020 |
|
Zack Whittaker, Security Editor, TechCrunch
|
Sep 01, 2020 |
|
Jason Chan, VP, Information Security, Netflix
|
Aug 18, 2020 |
|
Matt Honea, Senior Director, Cybersecurity, Guidewire
|
Aug 11, 2020 |
|
Andy Greenberg, Senior Writer, Wired
|
Aug 11, 2020 |
|
Brooke Pearson, Security Awareness, Uber
|
Jun 18, 2020 |
|
Tim MalcomVetter, Red Team Lead, Walmart
|
May 05, 2020 |
|
Matt Suiche, Comae Technologies
|
Apr 17, 2020 |
|
Jaime Blasco, AT&T Cybersecurity
|
Apr 14, 2020 |
|
Collin Mulliner, Security Engineer, Cruise
|
Apr 04, 2020 |
|
Michael Piacente, Principal, Hitch Partners
|
Mar 30, 2020 |
|
Dave Aitel, Founder and CEO, Immunity
|
Mar 23, 2020 |
|
Sounil Yu, Cyber Defense Matrix
|
Mar 17, 2020 |
|
Andy Ellis, Chief Security Officer, Akamai Technologies
|
Mar 11, 2020 |
|
Costin Raiu, Global Director, GReAT, Kaspersky Lab
|
Sep 03, 2018 |
|
Josh Lefkowitz, Founder and CEO, Flashpoint
|
Aug 28, 2018 |
|
Christine Gadsby, Director of Product Security Operations, BlackBerry
|
Aug 06, 2018 |
|
Chad Loder, co-founder and CEO, Habitu8
|
Jul 31, 2018 |
|
Chris Castaldo, Senior Director of Cybersecurity, 2U
|
Jul 26, 2018 |
|
Wim Remes, CEO and Principal Researcher, Wire Security
|
Jul 23, 2018 |
|
Dan Hubbard, Chief Security Architect, Lacework
|
Jul 16, 2018 |
|
David Weston, Principal Security Engineering Manager, Microsoft
|
Jun 25, 2018 |
|
Rich Seiersen, SVP and CISO, Lending Club
|
Jun 18, 2018 |
|
Andrew Morris, Founder and CEO, GreyNoise Intelligence
|
May 31, 2018 |
|
Yoav Leitersdorf, Managing Partner , YL Ventures
|
May 21, 2018 |
|
Juan Andrés Guerrero-Saade, Principal Security Researcher, Recorded Future
|
May 14, 2018 |
|
Robert M. Lee, Chief Executive Officer, Dragos Inc.
|
May 10, 2018 |
|
Brandon Dixon, Vice President, RiskIQ
|
May 09, 2018 |
|
Ryan Huber, Security Architect, Slack
|
May 08, 2018 |
|
Ivan Arce, CTO at Quarkslab
|
May 04, 2018 |
|
Sinan Eren, Founder and CEO, Fyde
|
May 02, 2018 |
|
Stephen Ridley, Founder and CTO, Senrio
|
Apr 30, 2018 |
|
Mischel Kwon, Founder and CEO, MKA Cyber
|
Apr 26, 2018 |
|
Rick Holland, CISO and VP of Strategy, Digital Shadows
|
Apr 24, 2018 |
|
Thomas Ptacek, Founder, Latacora
|
Apr 23, 2018 |
|
Zane Lackey, Chief Security Officer, Signal Sciences
|
Apr 16, 2018 |
|
Haroon Meer, CEO, Thinkst Applied Research
|
Apr 12, 2018 |
|
David (int eighty), Dual Core
|
Apr 11, 2018 |
|
Dennis Fisher, Editor-in-Chief, Decipher
|
Apr 05, 2018 |
|
Tim Maurer, Scholar, Carnegie Endowment for International Peace
|
Mar 05, 2018 |
|
Will Lin, Principal and Founding Investor, ForgePoint Capital
|
Mar 02, 2018 |
|
Pete Chronis, CISO, Turner Broadcasting
|
Feb 26, 2018 |
|
Brad Arkin, Chief Security Officer, Adobe
|
Feb 23, 2018 |
|
Aanchal Gupta, Director of Security, Facebook
|
Feb 14, 2018 |
|
Tom Conklin, Director of Security and Compliance, Vera Security
|
Feb 08, 2018 |
|
John Terrill, CISO, Fox News, Fox Business and Fox Television
|
Feb 06, 2018 |
|
Christopher Ahlberg, CEO, Recorded Future
|
Jan 30, 2018 |
|
Masha Sedova, co-founder, Elevate Security
|
Jan 26, 2018 |
|
Paul Roberts, Editor-in-Chief, Security Ledger
|
Jan 19, 2018 |
|
Dino Dai Zovi, co-founder and CTO, Capsule8
|
Jan 11, 2018 |
|
Sharon Anolik, President and Founder, Privacy Panacea
|
Jan 04, 2018 |
|
Kim Zetter, Journalist and Author
|
Dec 29, 2017 |
|
Kelly Jackson Higgins, Executive Editor, Dark Reading
|
Dec 20, 2017 |
|
Katie Moussouris, co-founder and CEO, Luta Security
|
Dec 06, 2017 |