Reimagining Cyber - real world perspectives on cybersecurity

In this episode, cybersecurity expert Tyler Moffitt unpacks how modern cyberattacks have evolved into a seamless, scalable pipeline. What once appeared as separate threats—phishing, info stealers, credential theft, and ransomware—are now deeply interconnected stages of a single attack chain.
The conversation explores how attackers no longer need to “hack” their way in. Instead, they log in using stolen credentials and session data bought and sold in thriving underground marketplaces. With the rise of automated platforms and tools powered by AI, cybercrime has become more accessible, efficient, and difficult to detect than ever before.
Tyler breaks down the full attack lifecycle—from initial infection to credential theft, marketplace distribution, and eventual account takeover—highlighting why traditional defenses are struggling to keep up. The episode also examines the declining reliance on ransomware, as attackers increasingly favor silent data exfiltration and extortion tactics that are faster, quieter, and often more profitable.
For defenders, the message is clear: identity is now the frontline. With attackers blending in as legitimate users, organizations must shift their focus from keeping threats out to detecting suspicious behavior from within.
A sobering look at the current state of cybersecurity—and why the biggest threat may already be inside.
As featured on Million Podcasts' 
Best 100 Cybersecurity Podcasts  
Top 50 Chief Information Security Officer CISO Podcasts 
Top 70 Security Hacking Podcasts
This list is the most comprehensive ranking of Cyber Security Podcasts online and we are honoured to feature amongst the best!
Follow or subscribe to the show on your preferred podcast platform.
Share the show with others in the cybersecurity world.
Get in touch via [email protected]

Identity has long been the foundation of cybersecurity—but what if that foundation is starting to crack?
In this episode of Reimagining Cyber, Tyler Moffitt unpacks a major shift happening right now: attackers aren’t breaking in anymore—they’re logging in. As AI accelerates phishing, fuels hyper-personalized social engineering, and powers a growing underground market for stolen credentials, traditional defenses like passwords and even MFA are being quietly bypassed.
Tyler explains how identity has become the new primary attack surface, why concepts like “trusted users” no longer hold up, and how session hijacking, info-stealer malware, and token theft are changing the rules of the game. From help desk impersonation attacks to the rise of deepfake-enabled fraud, this conversation reveals just how far attackers have evolved.
Most importantly, the episode explores what organizations are getting wrong—and what they need to do differently. From shortening trust windows and monitoring behavior to embracing layered defenses and a true zero trust mindset, this is a wake-up call for anyone relying on identity as a security perimeter.
If you’re still treating identity as proof of trust, it’s time to rethink everything.
As featured on Million Podcasts' 
Best 100 Cybersecurity Podcasts  
Top 50 Chief Information Security Officer CISO Podcasts 
Top 70 Security Hacking Podcasts
This list is the most comprehensive ranking of Cyber Security Podcasts online and we are honoured to feature amongst the best!
Follow or subscribe to the show on your preferred podcast platform.
Share the show with others in the cybersecurity world.
Get in touch via [email protected]

In this episode of Re-Imagining Cyber, host Tyler Moffitt sits down with senior threat research analyst Kelvin Murray to unpack a hard truth: luck has nothing to do with surviving a cyber attack.
From the rise of AI-powered cybercrime to the persistence of old attack methods like RDP, the conversation explores why ransomware gangs continue to thrive in an increasingly industrialized underground economy. The duo breaks down how cybercrime now operates more like a business—complete with subscription models, affiliate programs, and even “ransomware-as-a-service.”
They also dive into:
How AI is lowering the barrier to entry for cybercriminals
Why legitimate tools are being repurposed for malicious use
The ongoing risks of poorly secured remote access systems
The shift from data encryption to data theft and extortion
The hidden dangers of AI agents with excessive permissions
The key takeaway? Technology alone isn’t the ultimate defense—preparation, training, and strong security fundamentals are.
If you think cyber resilience comes down to luck, think again.
As featured on Million Podcasts' 
Best 100 Cybersecurity Podcasts  
Top 50 Chief Information Security Officer CISO Podcasts 
Top 70 Security Hacking Podcasts
This list is the most comprehensive ranking of Cyber Security Podcasts online and we are honoured to feature amongst the best!
Follow or subscribe to the show on your preferred podcast platform.
Share the show with others in the cybersecurity world.
Get in touch via [email protected]

What if the next cyberattack doesn’t just steal your data—but turns off your water, power, or access to healthcare?
In this eye-opening episode, Josh Corman (I Am The Cavalry Dot Org) returns to unpack a rapidly evolving threat landscape where cyberattacks are no longer just about information theft—they’re about real-world disruption and destruction. From nation-state actors pre-positioning inside critical infrastructure to the chilling reality of “digital time bombs” lying dormant in water and power systems, Josh explains why the rules of cybersecurity are changing—and why we’re not ready.
The conversation dives into the rise of campaigns like Volt Typhoon, the strategic implications of a potential Taiwan conflict, and how adversaries are targeting civilian infrastructure to sow chaos and weaken response efforts. Josh also shares insights from his “Undisruptable 27” initiative, focused on protecting the most critical lifeline systems before it’s too late.
But this isn’t just about global conflict—it’s personal. Listeners will walk away with practical steps to protect their households, challenge assumptions about resilience and insurance, and rethink what preparedness really means in a world where cyber and physical risks collide.
This is a candid, sobering, and essential discussion on the future of cyber warfare—and what you can do about it today.

Relevant links:
I Am the Cavalry Dot Org
Undisruptable27
Institute for Security and Technology
Unrestricted Warfare - China's Master Plan to Destroy America 

As featured on Million Podcasts' 
Best 100 Cybersecurity Podcasts  
Top 50 Chief Information Security Officer CISO Podcasts 
Top 70 Security Hacking Podcasts
This list is the most comprehensive ranking of Cyber Security Podcasts online and we are honoured to feature amongst the best!
Follow or subscribe to the show on your preferred podcast platform.
Share the show with others in the cybersecurity world.
Get in touch via [email protected]

AI is transforming every corner of technology—but it’s also creating an entirely new frontier for cybersecurity.
In just a few short years, AI security has exploded into one of the fastest-growing segments in the industry. New startups are emerging almost weekly, regulators are racing to keep up, and security leaders are grappling with a fundamental question: how do you secure systems that are learning, evolving, and increasingly making decisions on their own?
Today’s guest has been tracking the cybersecurity industry longer—and more closely—than almost anyone.
Richard Stiennon is a renowned cybersecurity analyst, industry historian, and author of The Security Yearbook, widely regarded as the most comprehensive desk reference for the cybersecurity market. Now he’s turning his attention to the next era of digital risk.
His new book, Guardians of the Machine Age: Why AI Security Will Define the Future of Digital, is released this Wednesday, March 11—the same day this episode drops.
In this conversation, we explore why AI security has exploded so quickly, the forces driving this new market—from regulation to real-world attacks—and why Richard believes the standalone category of “AI security” may disappear entirely within the next year as AI becomes embedded in every security product.
We also dig into the rise of AI-driven SOC automation, what it means when machines begin triaging—and even responding to—threats autonomously, and the biggest misconceptions CISOs still have about securing AI systems.
If you want to understand where cybersecurity is heading in the age of intelligent machines, this is a conversation you won’t want to miss.
As featured on Million Podcasts' 
Best 100 Cybersecurity Podcasts  
Top 50 Chief Information Security Officer CISO Podcasts 
Top 70 Security Hacking Podcasts
This list is the most comprehensive ranking of Cyber Security Podcasts online and we are honoured to feature amongst the best!
Follow or subscribe to the show on your preferred podcast platform.
Share the show with others in the cybersecurity world.
Get in touch via [email protected]