The Department of Know: Vercel breach, a "Contagious Interview," and ghost breaches
Get the full intelligence
Search transcripts, export clips, track mentions, and explore all topics from “The Department of Know: Vercel breach, a "Contagious Interview," and ghost breaches” inside PodZeus.
This episode of Cybersecurity Headlines dives into several high-impact security incidents, starting with insurers introducing sublimits on AI-related cyber claims—a move seen as both a market correction and a signal of the nascent state of AI risk modeling. The discussion then shifts to a reported unauthorized access to Anthropic's Mythos model via a Discord group exploiting a third-party contractor’s credentials, highlighting the dangers of supply chain risk and identity sprawl. The long-term impact of a 2024 ransomware attack on London hospitals underscores the critical gap between 'recovered' and 'restored' systems, with lasting operational and patient safety consequences. A separate story reveals the FBI used a flaw in iOS’s notification system to access deleted messages, reinforcing the principle that strong encryption can be undermined by endpoint artifacts. The centerpiece is the Vercel breach, triggered by an employee installing a browser extension and granting 'allow all' OAuth access to a compromised third-party tool, Context.ai—exposing customer environment variables. The hosts emphasize that OAuth token sprawl is now a primary attack vector, urging organizations to prioritize visibility and governance over default 'allow all' permissions. The episode closes with a strong call to action: invest in resilience, not just prevention, and treat identity and access control as foundational to modern security strategy.
Insurers are introducing AI-specific sublimits, signaling that AI risk is still poorly understood and underpriced—this is a market signal, not just risk aversion.
The Vercel breach was not a zero-day exploit but a classic identity compromise via 'allow all' OAuth access—highlighting that human behavior and permission sprawl are the new attack surface.
Supply chain risks extend to fourth-party vendors; a single compromised contractor can lead to access to high-value systems.
Ransomware recovery is not the same as restoration—many organizations remain in degraded operational states months after an attack.
Endpoint artifacts (like iOS message previews) can undermine even the strongest encryption, proving that security must be end-to-end, not just app-level.
…and 3 more takeaways available in PodZeus
Welcome & Priorities
Host Rich Trafalino opens the show with guest CISOs Mike Bickford and Brett Conlin sharing their personal and professional priorities for the week, setting a reflective tone on managing evolving cybersecurity challenges.
Insurers Cap AI Cyber Payouts
“It's not just insurers being insurers. It's the market signaling that AI risk is still poorly understood and hard to price.”
Anthropic Mythos Access Claim
“The real issue isn't the access. It's control over the supply chain, right? I want to know more about how is that happening with the convergence of identity vendor risk and telemetry gaps.”
London Hospitals Still Recovering from 2024 Ransomware
“The long tail of ransomware is where the real damage is occurring. Delayed care, manual workarounds, degraded trust.”
FBI Exploited iOS Notification Flaw
Apple patched a flaw in iOS’s notification system that allowed the FBI to access deleted message previews, illustrating how strong encryption can be undermined by endpoint artifacts.
“The long tail of ransomware is where the real damage is occurring. Delayed care, manual workarounds, degraded trust.”
“OAuth tokens are the new lateral movement. The breach didn't have an exploit. There was not a zero day to it. It wasn't phishing.”
“Kill the allow all and make the OAuth sprawl visible. And if you do that, I think you're going to get ahead of the problem.”
Host
Guests
Mike Bickford
person
Brett Conlin
person
Rich Trafalino
person
Vercel
organization
Anthropic
organization
Mythos
product
Context.ai
organization
ThreatLocker
organization
NHS
organization
iOS
product
Department of Know: Axios malware, TeamPCP campaign, New Storm infostealer
Cybersecurity Headlines • 31m • 4/6/2026
The Department of Know: Mythos Mayhem, critical infrastructure targeted, NVD changes
Cybersecurity Headlines • 38m • 4/17/2026
The Department of Know: GitHub drama, AI deletes production data, Claude Security Beta
Cybersecurity Headlines • 39m • 5/1/2026
The Department of Know: AI "transformation paradox," Copy Fail chaos, hacked lawnmowers
Cybersecurity Headlines • 38m • 5/8/2026
The Department of Know: GemStuffer attack, AI SBOMs, and AI-created zero-days
Cybersecurity Headlines • 34m • 5/15/2026
Get the full intelligence
Search transcripts, export clips, track mentions, and explore all topics from “The Department of Know: Vercel breach, a "Contagious Interview," and ghost breaches” inside PodZeus.
Start discovering podcast insights today
Start with a 7-day trial and explore a growing catalog of popular podcasts. No credit card required.
No credit card required • 7-day trial • Cancel anytime