Episodes

  • IT Governance Podcast 20.10.23: Casio, Cisco, MOVEit (again) and the ICC
    Oct 23 2023
    This week, we discuss a data breach affecting Casio users in 149 countries, two zero-day vulnerabilities in Cisco’s IOS XE web user interface, a slew of legal action against Progress Software following the MOVEit Transfer breach, and an update on last month’s cyber attack on the International Criminal Court.
    Show More Show Less
    7 mins
  • IT Governance Podcast 6.10.23: TikTok, Sony and MOVEit and DarkBeam
    Oct 6 2023
    This week, we discuss another GDPR fine for TikTok relating to its processing of child users’ personal information, more data breaches caused by MOVEit Transfer, including Sony Interactive Entertainment, and the exposure of a mammoth 3.8 billion data records.
    Show More Show Less
    6 mins
  • IT Governance Podcast 22.09.23: MGM Resorts, Microsoft Azure, International Criminal Court
    Sep 22 2023
    This week, we discuss a cyber attack on MGM Resorts that has allegedly cost the company millions of dollars in revenue even before it began its remediation efforts, the leak of 38 terabytes of Microsoft data and a cyber attack on the International Criminal Court in The Hague.
    Show More Show Less
    8 mins
  • IT Governance Podcast 08.09.23: Electoral Commission (again), Meta, Pôle emploi
    Sep 7 2023
    This week, we discuss security issues at the Electoral Commission, Meta’s appeal against daily GDPR fines, and a breach affecting 10 million users of the French unemployment agency Pôle emploi.
    Show More Show Less
    6 mins
  • IT Governance Podcast 25.8.23: Tesla, Duolingo, Lapsus$ trial
    Aug 24 2023
    This week, we discuss “insider wrongdoing” at Tesla, a data breach affecting 2.6 million Duolingo users and the conclusion of a two-month court case against members of the Lapsus$ gang.
    Show More Show Less
    5 mins
  • IT Governance Podcast 11.8.23: Electoral Commission, PSNI, Capita
    Aug 10 2023
    This week, we discuss data breaches affecting the Electoral Commission and the Police Service of Northern Ireland, and the financial repercussions of Capita’s March ransomware incident.
    Show More Show Less
    7 mins
  • IT Governance Podcast 14.7.23: EU-US DPF, UK-US data bridge, MOVEit patches and other security fixes
    Jul 13 2023
    This week, we discuss the new EU adequacy decision for the US, based on the Data Privacy Framework (plus Max Schrems’s inevitable reaction), and a proposed UK-US ‘data bridge’; fixes for three more vulnerabilities in Progress Software’s MOVEit Transfer app; plus this month’s Patch Tuesday and other security updates.
    Show More Show Less
    8 mins
  • IT Governance Podcast 30.6.23: ChatGPT, LetMeSpy and MS Teams, plus Alan Calder on cyber security
    Jun 29 2023
    This week, we discuss 100,000 compromised ChatGPT credentials, a data breach affecting the LetMeSpy stalkerware app, and a potential security vulnerability in Microsoft Teams that could be exploited to spread malware. Plus, Alan Calder discusses the current cybersecurity and regulatory landscape, and how they affect organisations.
    Show More Show Less
    21 mins