DrZeroTrust

Most companies inadvertently sabotage their cybersecurity by ignoring the biggest digital threats lurking right in front of them. I want to pull back the curtain on shocking case studies—like alleged hackers tied to major cybercrime rings and even connections to billionaires—and show how these hidden threats could hit your organization next.In this eye-opening episode, you'll discover how a person linked to a major security company (name redacted) allegedly crafted zero-day exploits that were sold to governments, terrorists, and shadowy organizations. We break down the obscure world of cyber black markets, revealing how powerful hackers undermine national security while hiding behind a web of proxies and laundering schemes. I will provide surprising insights into the illegal trade in exploits, insider information on classified cyber projects, and the real risks of unsecured infrastructure, from Chinese data leaks to exposed AI gateways.We also explore the alarming implications of these cyber shadows—how they threaten your business, your privacy, and even global stability. Learn about the latest breaches, overlooked vulnerabilities in critical infrastructure, and what your company must do to avoid becoming the next headline. If you’re in cybersecurity, a tech leader, or just concerned about the dark side of digital innovation, this episode is your wake-up call.Brace yourself for stories you won’t believe—about hackers with ties to organized crime, clandestine government cyber ops, and billionaires involved in clandestine tech wars. Whether you're a security pro or a tech enthusiast, you’ll gain actionable intelligence to spot the risks before it’s too late.This episode isn’t just about the threats—it’s about the opportunities to stay ahead in a rapidly evolving digital battlefield. If you want to understand the underground world shaping the future of cybersecurity—and how to defend against it—don’t miss this deep dive into the shadows.

Cybersecurity in 2026 is more dangerous—and more invisible—than ever. Passwords are still the weakest link, with over 6 billion stolen in the past year alone, including common ones like 123456 and admin. Yet, despite decades of awareness, predictable passwords remain the primary entry point for hackers. Meanwhile, attacker tactics have evolved from noisy, overt breaches to stealthy, living-off-the-land operations—using legitimate tools like VPNs, DNS tunneling, and even marketing infrastructure like Kataro to hide in plain sight.
Join me as I dive into the latest breach and compromise reports, revealing how adversaries made a strategic pivot to resilience and invisibility. You’ll discover how threat actors have shifted focus from traditional malware to infrastructure abuse, leveraging open-source projects, cloud services, and commercial-grade tools to stay under the radar. Learn about the top attack techniques, from privilege escalation to command-and-control protocols, and get insights on how defenders can adapt in an era where the perimeter no longer exists.
This episode unpacks the disturbing reality: when breaches happen inside your network, the damage is already done. You’ll hear concrete analysis of data from Lumoo’s threat intelligence—highlighting the rise of anonymization tools like Tor and NordVPN used by hackers, and how education, financial services, and government sectors are prime targets. Plus, get expert tips on effective defenses like behavioral detection, password management, and monitoring legitimate-looking traffic.
Perfect for cybersecurity pros, IT leaders, and anyone serious about staying ahead of the evolving threats—this episode is your urgent wake-up call. We’re entering an era where assumptions no longer hold, and understanding the latest tactics could be the difference between breach and defense. Don’t get left behind—hit play and upgrade your security mindset now.

My conversation with Kurtis Minder cuts through the fantasy land most people live in when they talk about ransomware.This isn’t about movie-style hackers or “just restore from backup” nonsense. It’s about the industrialized ransomware economy—where threat actors operate with rules, quotas, minimum payouts, and negotiation playbooks that look a lot more like organized business than random crime.We get into the ugly realities organizations face when ransomware hits:How ransom negotiations actually work todayWhy cyber insurance often shapes decisions more than security teams doAnd the uncomfortable ethical tradeoffs executives are forced to make under real pressureWe also call out one of the biggest contributors to successful ransomware attacks: complacency. Most organizations have incident response plans that look great in PowerPoint and fall apart the second reality shows up. If you’re not rehearsing, testing, and updating those plans, they’re effectively worthless.Finally, we talk about what actually moves the needle. Not buzzwords. Not vendor bingo. Real strategy:Zero Trust done correctlyLeast privilege enforced, not “eventually planned”Microsegmentation that limits blast radius instead of praying backups workRansomware isn’t going away. The only question is whether your organization is architected to absorb impact and survive, or whether you’re funding the next criminal enterprise.Key TakeawaysRansomware is a structured business model, not chaos—negotiations follow rules and economics.Complacency kills response efforts; untested incident plans fail every time.Zero Trust, least privilege, and microsegmentation materially reduce ransomware blast radius when implemented correctly.

In this conversation, I break down the state of cybersecurity heading into 2025—and it’s not pretty. Ransomware isn’t “ramping up,” it’s eating the market alive, while too many organizations are still betting their future on outdated controls, checkbox compliance, and the fantasy that perimeter security is a strategy. I call out the continued failure of traditional security models, the uncomfortable reality of high-profile vendor missteps, and the industry’s habit of confusing tool sprawl with actual risk reduction.My bottom line is simple: Zero Trust isn’t a buzzword; it’s the only approach that aligns with how modern environments actually operate—cloud-first, identity-driven, and constantly under attack. If you want real improvement, start treating identity like the control plane, tighten your cloud and endpoint fundamentals, get serious visibility into what’s connecting and what’s executing, and stop pretending “prevention” alone is a plan. Initial access is going to happen—so engineer for containment and resiliency. I wrap up with practical steps you can apply immediately to harden posture and quit treating cyber defense like a yearly renewal rather than a continuous operational discipline.TakeawaysRansomware incidents surged in 2025, impacting critical infrastructure.Traditional defenses are failing to contain ransomware attacks.Using a password manager is essential for security.Cybercrime costs are projected to reach $10 trillion by 2025.Misconfigurations in cloud services are a major risk factor.Identity management is a solvable problem that needs attention.Vendors in cybersecurity are not immune to breaches.Organizations should partner with service providers for cybersecurity.Research and data should guide cybersecurity strategies.A proactive approach is necessary to mitigate cyber threats.

In this episode, we take a hard look at how AI is being integrated into cybersecurity—and where the narrative often diverges from reality. The discussion spans offensive and defensive use cases, the structural challenges facing SMBs, and why open-source cyber threat intelligence (CTI) remains a critical foundation despite aggressive vendor marketing.
We also explore the economic pressures shaping today’s security market, including broken pricing models, unrealistic expectations placed on small teams, and the growing gap between compliance optics and real risk reduction. The episode concludes with a forward-looking discussion on applied machine learning, mathematical modeling, and how these approaches can meaningfully support incident responders in the field.
Practical applications of AI in cybersecurity operations

Offensive vs. defensive AI tradeoffs

The SMB security gap and market failure

Open-source CTI as a force multiplier

Pricing models and market distortion

Applied ML and mathematics for real-world incident response

Product direction and long-term vision

00:00 — Introduction and company overview

38:10 — Pricing models, market dynamics, and systemic issues

39:26 — Future plans, roadmap, and strategic vision

52:00 — AI in offensive and defensive cybersecurity operations

58:54 — Open-source CTI and applied AI capabilities

Key Topics CoveredChapters