More The Secure Disclosure episodes
Published 6 May 2026
Duration: 00:26:03
AI's impact on employment and cybersecurity risks, driven by shadow AI, phishing, and emerging threats like prompt injection, require balancing workforce skills, security measures, and organizational trust.
In this episode, we sit down with tech veteran and behavioral science enthusiast Noora Ahmed-Moshe to tackle the growing phenomenon of Shadow AI.As em...
The podcast addresses growing concerns about AI's impact on employment, emphasizing fears of job displacement and the pressure to adopt AI tools to remain competitive. It highlights that human error, such as phishing and credential leaks, remains the primary cause of cybersecurity breaches, with behavioral science being critical to fostering secure practices. The rise of shadow AIunauthorized use of AI tools by employeesposes significant risks, including data exposure, compliance issues, and security vulnerabilities, as users often bypass company policies using unregulated tools for convenience or efficiency. This phenomenon is exacerbated by the ease of accessing browser-based AI tools, blurring lines between personal and work usage, and complicating data governance in organizations.
Emerging AI technologies, such as deepfakes and autonomous agents, introduce stealthy threats that exploit human trust and complicate accountability. While enterprises widely adopt mainstream AI tools like ChatGPT, many employees use unapproved tools, risking sensitive data exposure and potential breaches. Mitigation strategies face challenges, as outright bans on AI tools often lead to workarounds, requiring a balance between security measures and employee autonomy. The discussion also underscores the need for proactive approaches, including technical monitoring, user education, and aligning AI adoption with workflow needs to ensure productivity without compromising security.
Organizational leadership and cultural factors play a pivotal role in addressing these challenges. Psychological safety and open communication between security teams and employees are essential, as is understanding human motivations to design effective strategies. Leadership must prioritize resource allocation for security teams, avoid punitive measures, and foster collaboration to address workflow bottlenecks. Continuous adaptation is stressed, as AI's rapid evolution demands ongoing efforts to build trust, improve security culture, and manage risks without achieving full visibility, recognizing that human behavior and technological complexity will remain central to the conversation.
16 Jun 2026 Your Microphone Became a Keylogger w/ David vonThenen
Machine learning analyzes keystroke acoustic signatures to infer typed characters over remote platforms, highlighting high accuracy with known keyboards, privacy risks from surveillance, and challenges in noise and variability, while proposing defenses and noting AI's dual-use implications.
9 Jun 2026 Understand the Software Supply Chain Chaos w/ Roeland Delrue
Rapidly evolving supply chain security threats, including malicious open-source components and AI-driven malware, demand advanced AI-powered solutions like Akito Securitys self-securing software and tailored tools to address vulnerabilities in developer environments and package repositories.
28 May 2026 Prompt Injection Might Never Be Solved w/ Paul Vann
The text details AI security threats like prompt injection, jailbreak attacks, and distillation attacks, along with vulnerabilities such as AI bias and autonomous agent risks, highlighting detection challenges, emerging malware, supply chain exploits, and the industry's struggle to keep pace with rapidly evolving AI technologies.
22 May 2026 AI Broke the Security Ecosystem w/ Chris Hughes
Evolving cybersecurity challenges include supply chain threats, AI vulnerabilities, and outdated tools, highlighting the need for systemic reforms like developer incentives, regulatory clarity, and industry-government collaboration to address gaps in vulnerability management and the dual risks of AI's role in both threat detection and exploitation.
15 May 2026 PostHog is placing a wild bet on AI Coding w/ James Hawkins
Recommended: Should you go open source?
PostHog's open-source analytics platform prioritizes transparency, developer autonomy, and AI integration while critiquing corporate norms, emphasizing price clarity, building in public, and balancing automation with security governance in product development.