What if the most dangerous hackers are the ones who never touch a keyboard? The real threat isn't just about stolen credentials or ransomware; it's about understanding how attackers think before they even strike. In cybersecurity, defense starts with offense, and the best defenders are those who've walked in the hacker's shoes. In this episode, Ron sits down with John Hammond, principal security researcher at Huntress and one of cybersecurity's most recognizable educators. John shares his journey from Coast Guard enlistee to YouTube creator, building an entire media company around ethical hacking. They dig into the balance between public research and responsible disclosure, the rise of AI-augmented attacks, and why identity is now the biggest attack surface in modern enterprises. Impactful Moments:00:00 - Introduction01:00 - AI weaponized in cyber espionage05:00 - Learning by teaching publicly09:00 - Balancing curiosity with responsible disclosure13:00 - Building a creator company16:00 - Identity as the new frontier20:00 - AI agents running breach simulations22:00 - Predictions for cybersecurity in 202625:00 - Ron's hacking habit confession   Links:John Hammond LinkedIn: https://www.linkedin.com/in/johnhammond010/John Hammond Youtube: https://www.youtube.com/@_JohnHammond Article for Discussion: https://www.reuters.com/world/europe/russian-defense-firms-targeted-by-hackers-using-ai-other-tactics-2025-12-19/Check out our upcoming events: https://www.hackervalley.com/livestreamsJoin our creative mastermind and stand out as a cybersecurity professional:https://www.patreon.com/hackervalleystudioLove Hacker Valley Studio? Pick up some swag: https://store.hackervalley.comContinue the conversation by joining our Discord: https://hackervalley.com/discord Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/

Three banks in four days isn't just a bragging right for penetration testers. It's a wake-up call showing that expensive security tools and alarm systems often fail when tested by skilled operators who understand both human behavior and technical vulnerabilities. Greg Hatcher and John Stigerwalt, co-founders of White Knight Labs, talk about their latest physical penetration tests on financial institutions, manufacturing facilities protecting COVID-19 vaccine production, and why their new Server 2025 course had to rewrite most common Active Directory tools. They share stories of armed guards, police gun draws, poison ivy reconnaissance, and a bag of chips that saved them from serious trouble. The conversation reveals why EDR alone won't stop ransomware, how offline backups remain the exception rather than the rule, and what security controls actually work when attackers bring custom tooling. Impactful Moments: 00:00 - Intro01:00 - New training courses launched03:00 - Server 2025 breaks standard tools05:00 - COVID facility physical penetration07:00 - Armed guards change the game10:00 - Police draw guns on operators13:00 - Bag of chips saves the day15:00 - Nighttime versus daytime physical tests18:00 - VIP home security assessments20:00 - 2026 threat predictions22:00 - Why EDR doesn't stop ransomware27:00 - Low cost ransomware simulation ROI29:00 - Three banks in four days32:00 - Deepfake as the new EDR Links: Connect with our guests – Greg Hatcher: https://www.linkedin.com/in/gregoryhatcher2/John Stigerwalt: https://www.linkedin.com/in/john-stigerwalt-90a9b4110/Learn more about White Knight Labs: https://www.whiteknightlabs.com Check out our upcoming events: https://www.hackervalley.com/livestreamsJoin our creative mastermind and stand out as a cybersecurity professional:https://www.patreon.com/hackervalleystudioLove Hacker Valley Studio? Pick up some swag: https://store.hackervalley.comContinue the conversation by joining our Discord: https://hackervalley.com/discordBecome a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/

When your firewall forgets to buckle up, the crash doesn’t happen in the network first, it happens in your blindspots. In this episode, Ron is joined by returning guest Chris Hughes, Co-Founder of Aquia and host of the Resilient Cyber podcast. Chris helps reframe vulnerability work as exposure management, connect technical risk to human resilience, and break down the scoring and runtime tools security teams actually need today. Expect clear takeaways on EPSS, reachability analysis, ADR, AI’s double-edged role, and the one habit Chris swears by as a CEO. This episode fuses attack-surface reality with mental-attack-surface strategy so you walk away with both tactical moves and daily practices that protect systems and people. Impactful Moments:00:00 - Intro02:00 - Breaking: Fortinet WAF zero-day & visibility lesson05:00 - Meet Chris Hughes: CEO, author, Resilient Cyber host08:00 - Mental attack surface explained and why it matters18:00 - From CVSS to EPSS, reachability, and ADR realities21:00 - AI as force-multiplier for attackers and defenders24:30 - Exposure vs vulnerability naming, market trends26:00 - Chris’s book & how to follow his work30:00 - Ron’s solo: 3 pillars to patch your mindset34:00 - Closing takeaways and subscribe reminder Links:Connect with our guest, Chris Hughes, on LinkedIn: https://www.linkedin.com/in/resilientcyber/ Check out the article on the Fortinet exploit here: https://www.helpnetsecurity.com/2025/11/14/fortinet-fortiweb-zero-day-exploited/  Check out our upcoming events: https://www.hackervalley.com/livestreams Join our creative mastermind and stand out as a cybersecurity professional:https://www.patreon.com/hackervalleystudio Love Hacker Valley Studio? Pick up some swag: https://store.hackervalley.com Continue the conversation by joining our Discord: https://hackervalley.com/discord Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/  

The real disruption isn’t AI replacing humans, it’s the shocking possibility that human labor was the economic bubble all along. In this episode, Ron Eddings sits down with Daniel Miessler, founder of Unsupervised Learning and longtime security leader, to break open why companies are hitting record profits with shrinking workforces, and what that means for your future. Daniel shares how AI agents, context management, and his Telos problem-first framework are reshaping what it means to create value in the modern economy. From Apple to Human 3.0, Daniel explains why building in public, learning fast, and solving real problems are the ultimate career edge in an AI-powered world. Impactful Moments:00:00 - Introduction02:00 - Jobless profit boom accelerates05:00 - Daniel's AI journey at Apple08:00 - Building careers around problems12:00 - AI bubble or timing problem15:00 - Nine-year-old codes app in two hours18:00 - Human labor is the bubble22:00 - Context management changes everything26:00 - Adaptation equals survival Links:Daniel’s Website: danielmiessler.com/Daniel’s Github: https://github.com/danielmiessler/Daniel’s LinkedIn: https://www.linkedin.com/in/danielmiessler/ Upcoming events: https://www.hackervalley.com/livestreamsLove Hacker Valley Studio? Pick up some swag: https://store.hackervalley.comContinue the conversation by joining our Discord: https://hackervalley.com/discordBecome a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/Join our creative mastermind and stand out as a cybersecurity professional: https://www.patreon.com/hackervalleystudio  

AI agents aren't just reacting anymore, they're thinking, learning, and sometimes deleting your entire production database without asking. The real question isn't if your AI agent will be hacked, it's when, and whether you'll have the right hooks in place to stop it before it happens. In this episode, Ron breaks down the ChatGPT Atlas vulnerability that shocked researchers, revealing how malicious prompts can turn AI assistants against their own users by bypassing safeguards and accessing file systems. He presents his new talk "Hooking Before Hacking," introducing a framework for applying EDR principles, prevention, detection, and response, to AI agents before they execute unauthorized commands. From pre-tool use hooks that catch malicious intent to one-time passwords that put humans back in the loop, this episode shares practical security controls you can implement today to prevent your AI agents from going rogue.   Impactful Moments: 00:00 - Introduction02:00 - ChatGPT Atlas vulnerability exposed04:00 - AI technology outpacing security guardrails05:00 - Guardrail jailbreaks and prompt injection06:00 - AI agents deleting production databases07:00 - EDR principles for AI agents09:00 - Pre-tool use hooks catch intention11:00 - User prompt sanitization prevents leaks14:00 - One-time passwords for agent workflows16:00 - Automation mistakes across 10 years   Links: Connect with Ron on LinkedIn: https://www.linkedin.com/in/ronaldeddings/ Check out the entire article here: https://www.yahoo.com/news/articles/cybersecurity-experts-warn-openai-chatgpt-101658986.html  GitHub Repository: https://hackervalley.com/hooking-before-hacking  See Ron's "Hooking Before Hacking" presentation slides here: http://hackervalley.com/hooking-before-hacking-presentation Check out our website: https://hackervalley.com/ Upcoming events: https://www.hackervalley.com/livestreams Love Hacker Valley Studio? Pick up some swag: https://store.hackervalley.com Continue the conversation by joining our Discord: https://hackervalley.com/discord Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/ Join our creative mastermind and stand out as a cybersecurity professional: https://www.patreon.com/hackervalleystudio    

What if your security team never missed a single alert and actually had time to think strategically? In this episode, Ahmed Achchak, CEO and Co-Founder of Qevlar AI, reveals how autonomous SOCs are reshaping security operations worldwide. From tackling alert fatigue to empowering analysts with intelligent AI-driven investigations, Ahmed shares the inside story of building a system that can act on threats faster than any human alone. Learn how Qevlar’s innovative approach is giving organizations clarity, control, and measurable ROI while freeing security teams to focus on what truly matters. Impactful Moments00:00 - Introduction01:30 - Founding Qevlar AI by chance03:30 - Inefficiency of current SOCs05:00 - Augmenting analysts, not replacing them08:00 - AI investigating alerts at scale11:30 - How autonomous agents handle phishing14:30 - Why tackling all alerts maximizes ROI17:30 - Graph technology as investigation backbone25:00 - Limitations and randomness of LLMs30:30 - Advice for testing AI in SOCs LinksConnect with our guest Ahmed on LinkedIn: https://www.linkedin.com/in/ahmed-achchak-872554109/   Check out Qevlar’s website: https://www.qevlar.com/   Check out our upcoming events: https://www.hackervalley.com/livestreams Join our creative mastermind and stand out as a cybersecurity professional:https://www.patreon.com/hackervalleystudio Love Hacker Valley Studio? Pick up some swag: https://store.hackervalley.com Continue the conversation by joining our Discord: https://hackervalley.com/discord Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/    

Who said cybersecurity had to be serious? The future of cyber is creative, human, and even a little sexy.In this special 400th episode, Ron Eddings celebrates six incredible years of Hacker Valley Studio with one of cyber’s most creative voices, Maria Velasquez, Co-Founder of the Cybersecurity Marketing Society and Co-Host of Breaking Through in Cybersecurity Marketing. Together, they discuss how bold storytelling, authentic community, and a touch of fun are reshaping the way we connect in cybersecurity. Maria opens up about turning burnout into purpose, building a 4,000-strong global movement, and why the next frontier in cyber might just be entertainment.   Impactful Moments: 00:00 - Introduction 02:00 - CISA layoffs and collaboration fragility 04:00 - Welcoming Maria Velasquez 06:00 - How loneliness sparked a global community 08:00 - Why collaboration fuels cybersecurity growth 10:00 - When cybersecurity marketing was “boring”12:00 - The rise of creativity and brand power 14:00 - Story behind Torque’s “Kill the S.O.A.R” campaign 15:00 - Making cybersecurity emotional and human 17:00 - Maria’s advice for bold marketing leaders 18:00 - The next big thing: experiential marketing 20:00 - Inside Cyber Marketing Con 2025 24:00 - Final reflections on community and creativity 27:00 - Ron’s takeaways: connection drives innovation Links: Connect with Maria on LinkedIn: https://www.linkedin.com/in/maria-vepa/ Check out our upcoming events: https://www.hackervalley.com/livestreams Join our creative mastermind and stand out as a cybersecurity professional: https://www.patreon.com/hackervalleystudio Love Hacker Valley Studio? Pick up some swag: https://store.hackervalley.com Continue the conversation by joining our Discord: https://hackervalley.com/discord Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/

To defend like a human, you first have to think like a hacker. In this episode, Ron Eddings sits down with Chris Dale, Co-Founder and Chief Hacking Officer at River Security, to explore the human side of hacking, where curiosity, persistence, and vigilance meet defense. Chris shares how the traditional idea of penetration testing has evolved into a continuous journey of discovery, and why reconnaissance and storytelling are critical tools for modern defenders. From real-world breach stories to lessons on trust and responsibility, this episode reveals how thinking like a hacker, and acting like a human can transform the way we approach cybersecurity.   Impactful Moments00:00 - Introduction and massive breach overview03:00 - Trusted systems become exposure points05:00 - Meet Chris Dale of River Security07:00 - The problem with traditional pen testing08:30 - Continuous reconnaissance and real-world risk10:00 - Knowing yourself as a security principle13:00 - The meaning of continuous vigilance15:00 - Turning cybersecurity lessons into stories18:00 - Storytelling and mindset in defense19:30 - Final takeaways on fundamentals and vigilance   Links:Connect with our Chris on LinkedIn: https://www.linkedin.com/in/chrisad/ Read the Tech Radar article here: https://www.techradar.com/pro/security/f5-breach-fallout-over-266-000-instances-exposed-to-remote-attacks Check out our upcoming events: https://www.hackervalley.com/livestreams Join our creative mastermind and stand out as a cybersecurity professional:https://www.patreon.com/hackervalleystudio Love Hacker Valley Studio? Pick up some swag: https://store.hackervalley.com Continue the conversation by joining our Discord: https://hackervalley.com/discord Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/      

When code meets intuition, innovation gets personal. But what happens when we let AI vibe with our ideas? In this episode, Ron Eddings covers the rise of AI-driven development from Vibe Coding, where natural language shapes real code, to the emerging Model Context Protocols (MCPs) that redefine how apps talk to AI. He breaks down the recent Figma MCP vulnerability to discuss how creativity and security now collide in surprising ways. With hands-on insights using Raycast and practical steps for building responsibly, Ron takes you inside a new era where human intuition and machine intelligence truly build together.     Impactful Moments 00:00 - Introduction01:00 - The Figma vulnerability explained03:00 - Why MCP security matters05:00 - What vibe coding really means07:00 - Writing with intention and context08:00 - The power of structured prompting10:00 - How MCP connects everything12:00 - Why adoption is skyrocketing15:00 - Setting up an MCP server17:00 - Agents, actions, and security trust19:00 - The real takeaway: curiosity with caution30:00 - Predictions on OpenAI’s upcoming browser33:00 - The profit battle between OpenAI and Microsoft35:00 - Windsurf’s rollercoaster of acquisitions   Links:Connect with our Ron on LinkedIn: https://www.linkedin.com/in/ronaldeddings/ Check out the Hacker News article here: https://thehackernews.com/2025/10/severe-figma-mcp-vulnerability-lets.html?m=1   Check out our upcoming events: https://www.hackervalley.com/livestreams Join our creative mastermind and stand out as a cybersecurity professional:https://www.patreon.com/hackervalleystudio Love Hacker Valley Studio? Pick up some swag: https://store.hackervalley.com Continue the conversation by joining our Discord: https://hackervalley.com/discord Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/  

The real edge in cybersecurity isn’t found in new tools, it’s built through timeless fundamentals and a mindset that never stops learning. In this episode, Ron sits down with Rich Greene, Senior Solutions Engineer and Instructor at SANS Institute, to uncover how true cyber value starts with skills, curiosity, and mindset. Rich shares his remarkable story of surviving a battlefield injury, retraining his brain, and how that journey shaped his approach to mastering cybersecurity. Together, they connect real-world lessons like the recent Discord breach to the core truth that even advanced systems depend on people who master the basics. Impactful Moments00:00 - Introduction02:00 - Discord breach and third-party risk05:00 - Meet Rich Greene from SANS06:00 - The power of mastering fundamentals07:00 - Learning how to learn08:30 - Rich’s story of rebuilding his memory11:00 - Forcing the brain to grow stronger12:00 - Top skills that get you paid14:00 - Skills that lead to fulfillment16:00 - Fundamentals that fuel long-term success17:00 - The OSI model decoded20:00 - Why operating systems matter21:00 - Security operations fundamentals23:00 - Why cloud is the #1 must-learn skill25:00 - Final advice: sharpen your fundamentals   LinksConnect with our Rich on LinkedIn: https://www.linkedin.com/in/secgreene/ Check out our upcoming events: https://www.hackervalley.com/livestreams Join our creative mastermind and stand out as a cybersecurity professional:https://www.patreon.com/hackervalleystudio Love Hacker Valley Studio? Pick up some swag: https://store.hackervalley.com Continue the conversation by joining our Discord: https://hackervalley.com/discord Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/  

What if protecting your digital twin becomes the new cyber hygiene? In this week's episode, Ron welcomes back cybersecurity leader Jason Rebholz, CEO of Evoke, to discuss how AI is reshaping the fundamentals of cyber hygiene. From data breaches and deepfakes to everyday habits that protect our digital lives, Jason shares how small actions and smarter use of AI can make all the difference. Together, they uncover how our growing digital footprints are giving rise to digital twins, AI replicas that can mirror our behaviors, voices, and even decisions, and what that means for the future of trust, identity, and security. Impactful Moments:00:00 - Introduction01:00 - The Neon app data leak story03:00 - Why our voices are the new passwords05:00 - How AI can strengthen cyber hygiene07:00 - Jason’s mission to secure AI systems09:00 - AI as a force multiplier for defenders11:00 - Deepfakes and the new social engineering playbook13:00 - Attackers’ use of AI and what it means for us15:00 - The rise of digital twins and identity threats19:00 - How to defend against “yourself” online20:00 - Final reflection: Trust in the AI age   Links:Connect with Jason on LinkedIn: https://www.linkedin.com/in/jrebholz/ Check out the TechCrunch article on the Neon app data leak story: https://techcrunch.com/2025/09/25/viral-call-recording-app-neon-goes-dark-after-exposing-users-phone-numbers-call-recordings-and-transcripts/   Check out our upcoming events: https://www.hackervalley.com/livestreams Join our creative mastermind and stand out as a cybersecurity professional:https://www.patreon.com/hackervalleystudio Love Hacker Valley Studio? Pick up some swag: https://store.hackervalley.com Continue the conversation by joining our Discord: https://hackervalley.com/discord Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/  

The biggest security threat isn’t in the cloud, it’s hidden in the code you trust the most. In this episode, Ron sits down with Varun Badhwar, Co-Founder & CEO of Endor Labs, who shares why research shows that nearly 80–90% of application code comes from open source and third-party libraries, not your own developers. Varun discusses the unseen risks of AI-generated software, how attackers can now weaponize vulnerabilities in hours, and why precision in security matters more than ever. He also reveals how AI can be both the ultimate accelerator and the ultimate weakness in modern development.   Impactful Moments:00:00 - Introduction02:00 - Varun’s journey from RedLock to Endor Labs04:00 - Why the software supply chain is broken07:00 - AI coding assistants and insecure code risks10:00 - The NPM self-replicating worm discovery13:00 - Simple controls to enforce Zero Trust in code16:00 - Pairing AI with security to prevent slop19:00 - AI-powered security code reviews explained22:00 - Why 88% of code goes unused26:00 - Developer efficiency as the new security metric29:00 - The next wave of AI-driven software threats   Links:Connect with our Endor on LinkedIn: https://www.linkedin.com/in/vbadhwar/     Check out our upcoming events: https://www.hackervalley.com/livestreams Join our creative mastermind and stand out as a cybersecurity professional:https://www.patreon.com/hackervalleystudio Love Hacker Valley Studio? Pick up some swag: https://store.hackervalley.com Continue the conversation by joining our Discord: https://hackervalley.com/discord Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/    

Search engines aren’t dying quietly, they’re being replaced in real time by AI browsers and voice agents. AI isn’t just answering questions anymore; it’s acting for us. In this episode, Ron Eddings explores how tools like NanoBrowser and Comet are reshaping browsing, why Google may be in trouble, and how AI voices are becoming the new interface for productivity. From breakthroughs to risks, this is a front-row look at how AI agents are changing how we work, connect, and live online.   Impactful Moments:00:00 - Introduction01:00 - AI agents as everyday tools02:00 - Testing AI-powered browsers03:00 - Comet: AI browser from Perplexity04:30 - Why Google should be worried05:30 - Real-world tasks for AI browsers07:00 - Automating cybersecurity inventory09:00 - Comet in action on LinkedIn10:00 - Testing for malicious exploits11:00 - Risks of persuasive AI prompts12:00 - The rise of voice agents13:30 - First real-world AI voice experience15:00 - Security concerns with customer data16:30 - Double-edged sword of AI adoption17:30 - System prompt leakage vulnerabilities18:00 - Why voice could shrink attack surfaces Links:Connect with Ron on LinkedIn: https://www.linkedin.com/in/ronaldeddings/   Check out NanoBrowser: https://nanobrowser.ai/ Check out Comet by Perplexity: https://www.perplexity.ai/comet Read the article ‘No more links, no more scrolling - the browser is becoming an AI Agent.’ here: https://venturebeat.com/ai/no-more-links-no-more-scrolling-the-browser-is-becoming-an-ai-agent Read the article ‘How Voice AI Prompt Injection Threatens Enterprise Security’ here: https://www.teneo.ai/blog/how-voice-ai-prompt-injection-threatens-enterprise-security   Check out our upcoming events: https://www.hackervalley.com/livestreams Join our creative mastermind and stand out as a cybersecurity professional:https://www.patreon.com/hackervalleystudio Love Hacker Valley Studio? Pick up some swag: https://store.hackervalley.com Continue the conversation by joining our Discord: https://hackervalley.com/discord Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/    

Some tools replace tasks. Others reshape the way we think about security. In this episode, Ron welcomes back Phillip Wylie, one of the most respected voices in offensive security, author, educator, and longtime friend of the Hacker Valley community. With over 27 years of experience across cybersecurity disciplines, Phillip has guided thousands of professionals through his books, talks, and mentorship. He shares how AI is reshaping pen testing and red teaming, the value of automating away repetitive tasks, and why the fundamentals of security will always matter. From defining red teaming in 2025 to guiding newcomers on how to break in, Phillip delivers insights that balance cutting-edge innovation with timeless wisdom. Impactful Moments:00:00 - Introduction01:00 - Why Phillip keeps podcasting03:00 - AI opportunities in pen testing04:30 - What automation should replace06:00 - Red teaming vs pen testing in 202508:00 - Defining adversary emulation10:40 - Building the ideal AI assistant15:00 - The best AI use cases today18:30 - AI-driven threat modeling21:00 - Breaking into pen testing now25:00 - Building a portfolio and personal brand27:30 - Why in-person networking still matters   Links:Connect with Phillip on LinkedIn: https://www.linkedin.com/in/phillipwylie/   Check out our upcoming events: https://www.hackervalley.com/livestreams Join our creative mastermind and stand out as a cybersecurity professional:https://www.patreon.com/hackervalleystudio Love Hacker Valley Studio? Pick up some swag: https://store.hackervalley.com Continue the conversation by joining our Discord: https://hackervalley.com/discord Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/    

What if showing up with consistency could spark opportunities, create careers, and build a global movement? In this episode, Ron sits down with Gerald Auger, Ph.D., cybersecurity educator, content creator, and founder of Simply Cyber. Gerald shares how his daily livestream grew into a thriving community, why consistency is the key to influence, and how AI is reshaping the way cyber professionals work. From building SimplyCyberCon to launching a new pentesting venture, Gerry’s journey is a masterclass in community, creativity, and courage. This episode is filled with inspiration and practical takeaways for anyone ready to grow their career, brand, or business in cybersecurity.

What if defenders had their own AI-powered task force, always on, always adapting, and finally one step ahead of attackers? In this episode, Ron welcomes Vineet Edupuganti, Founder and CEO of Cogent Security, to discuss how AI agents are rewriting the rules of cybersecurity. Vineet shares why traditional vulnerability management is fundamentally broken, why exposure management matters more than ever, and how Cogent is building an “AI Task Force” to give defenders the edge. From his early days in machine learning to reshaping the future of cyber defense, Vineet breaks down the urgent need for automation, context-driven insights, and explainable AI in security. Impactful Moments:00:00 - Introduction02:00 - Vineet’s journey into AI and cyber04:30 - Why vulnerability management is broken06:10 - Generative AI as a defender’s edge08:20 - Why AI agents outperform brittle automation09:45 - The first use cases for Cogent’s agents12:00 - Rethinking tier-one SOC analyst roles13:30 - The rise of exposure management (CTEM)17:10 - Cogent’s vision for an AI task force18:30 - Early wins and insights with Cogent20:00 - Biggest misconceptions about AI in security23:00 - What enterprises should demand from vendors25:00 - Why explainability is essential in AI systems27:00 - Startups vs incumbents in cybersecurity innovation29:30 - Why enterprises must invest in AI now   Links:Connect with our guest, Vineet Edupuganti, on LinkedIn: https://www.linkedin.com/in/vineetedupuganti Learn more about Cogent Security: https://www.cogent.security    Check out our upcoming events: https://www.hackervalley.com/livestreams Join our creative mastermind and stand out as a cybersecurity professional:https://www.patreon.com/hackervalleystudio Love Hacker Valley Studio? Pick up some swag: https://store.hackervalley.com Continue the conversation by joining our Discord: https://hackervalley.com/discord Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/    

AI is neither friend nor foe, it’s both. The way we choose to use it determines whether it helps or harms. In this solo episode, Ron Eddings shares lessons from his first job at a grocery store, his early days in cybersecurity, and today’s AI-driven landscape. From productivity hacks like meeting transcription, to creative tools like content-aware editing, to the dark side of phishing and deepfakes, Ron shows why human judgment remains the ultimate defense. This is a passionate reminder that the real power isn’t in the tools, it’s in us. Impactful Moments00:00 - Introduction01:15 - AI is the tool, not the toolbox03:00 - A grocery store scam that taught a life lesson06:00 - The irreplaceable role of human judgment07:30 - First cybersecurity job at Booz Allen Hamilton09:00 - How AI boosts productivity with meeting transcription12:00 - Creative shortcuts with AI in image and video editing15:00 - Vibe coding and generative red teaming17:30 - AI-powered phishing and scam emails18:50 - Testing a deepfake voice on Ron’s mom21:30 - Why curiosity and skepticism beat AI deception22:30 - Final challenge: don’t serve AI—make AI serve you Links:Connect with our Ron on LinkedIn: https://www.linkedin.com/in/ronaldeddings/ Check out our upcoming events: https://www.hackervalley.com/livestreamsJoin our creative mastermind and stand out as a cybersecurity professional:https://www.patreon.com/hackervalleystudioLove Hacker Valley Studio? Pick up some swag: https://store.hackervalley.comContinue the conversation by joining our Discord: https://hackervalley.com/discordBecome a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/  

AI might analyze your logs in seconds, but only the community can put you in the room that changes your career. In this solo episode, Ron Eddings discusses the powerful balance between human connection and artificial intelligence in shaping the future of cybersecurity and beyond. From the sacrifices that sparked his career to the mentors who opened doors, Ron shares personal stories that show why community will always be your ultimate competitive edge, even as AI advances into the SOC. He also runs live AI experiments on ransomware response and log analysis, revealing what AI can (and can’t) do for practitioners right now.   Impactful Moments: 00:00 - Introduction02:00 - Why community is your first advantage03:30 - The sacrifice that launched Ron’s career04:40 - Meeting mentor Marcus Carey06:00 - Early opportunities in cybersecurity07:00 - The power of hacker spaces09:00 - How mentors open hidden doors10:00 - RSA and Black Hat as career accelerators13:00 - The most underrated LinkedIn feature15:00 - The HVS mastermind community16:00 - Reality check on GPT-518:00 - AI builds an IR playbook20:00 - Critical do’s and don’ts in incident response23:00 - Why hallucinations matter in cybersecurity AI25:00 - AI makes sense of raw logs28:00 - Can AI replace tier one analysts?30:00 - Where AI still falls short31:00 - Final challenge: Strengthen your community     Links: Connect with our Ron on LinkedIn: https://www.linkedin.com/in/ronaldeddings/ Register for our livestream with Gerry Auger: https://www.linkedin.com/events/7359290642633539586/ Check out the links to the OpenAI ChatGPT threads here:Incident Analysis Summary: https://chatgpt.com/share/689fa61f-3498-8006-9989-ff8221f97b01 Ransomware Incident Playbook: https://chatgpt.com/share/689fa63f-86ec-8006-8355-642d4d38808e Check out our upcoming events: https://www.hackervalley.com/livestreams Join our creative mastermind and stand out as a cybersecurity professional:https://www.patreon.com/hackervalleystudio Love Hacker Valley Studio? Pick up some swag: https://store.hackervalley.com Continue the conversation by joining our Discord: https://hackervalley.com/discord Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/  

When AI agents move faster than security teams, the game changes, and the risks multiply. Ron welcomes back Marco “Mystic Marc” Figueroa, Program Manager at Mozilla’s 0DIN Program, to continue the conversation and update on 2025’s most pressing AI and cybersecurity shifts. From the explosive rise of AI agents and OpenAI’s rumored browser to the hidden dangers of MCP implementations and prompt injection exploits like the Gemini attack, Marco shares insights that security pros can’t afford to miss. Impactful Moments00:00 - Introduction02:00 - Why 2025 is the year of the agent05:45 - MCP’s rapid adoption and security risks10:00 - The Gemini prompt injection vulnerability15:00 - How attackers hide malicious AI prompts18:00 - High success rates in non-technical teams22:00 - Rise of voice-based AI scams25:00 - Using jailbreaks to bend AI to your needs30:00 - Predictions on OpenAI’s upcoming browser33:00 - The profit battle between OpenAI and Microsoft35:00 - Windsurf’s rollercoaster of acquisitions Links:Connect with our guest Marco on LinkedIn: https://www.linkedin.com/in/marco-figueroa-re/ Check out our upcoming events: https://www.hackervalley.com/livestreams Join our creative mastermind and stand out as a cybersecurity professional:https://www.patreon.com/hackervalleystudioLove Hacker Valley Studio? Pick up some swag: https://store.hackervalley.comContinue the conversation by joining our Discord: https://hackervalley.com/discordBecome a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/

The riskiest move in cybersecurity? Playing it too safe. In this solo episode, Ron Eddings redefines the way we think about technical debt, risk, and missed opportunities, in security and in life.Ron reframes the debt vs. risk paradigm through the lens of the SharePoint breach, personal milestones, and co-founding Hacker Valley. With sharp insights, personal stories, and a call to action for every listener, he shows how curiosity and calculated risk are the true drivers of innovation. Impactful Moments00:00 - Introduction01:10 - Why debt vs. risk matters now02:20 - What the SharePoint breach taught us04:15 - Risk avoidance creates deeper debt05:10 - Clear definitions: risk vs. debt06:30 - Hidden costs of deferring decisions08:15 - Leaving $200k salary to build Hacker Valley10:00 - Long-term founder debt explained11:08 - When comfort becomes dangerous12:00 - Curiosity as a leadership skill13:10 - What you’re not seeing yet14:30 - Final thought: reflect and reassess Links:Connect with our Ron on LinkedIn: ​​https://www.linkedin.com/in/ronaldeddings/ Check out our upcoming events: https://www.hackervalley.com/livestreamsJoin our creative mastermind and stand out as a cybersecurity professional:https://www.patreon.com/hackervalleystudioLove Hacker Valley Studio? Pick up some swag: https://store.hackervalley.comContinue the conversation by joining our Discord: https://hackervalley.com/discordBecome a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/