Keep Quiet, Blame the Insider, and Hope Nobody Notices

In this week’s episode, Javvad Malik and Erich Kron wade through the latest cybersecurity soap opera where silence, spin, and shady stats take center stage:

• 61% of U.S. companies claim they’ve been hit by insider breaches. Is this a shocking revelation… or just the result of someone finally checking the logs?

• CISOs are under growing pressure to zip it about incidents. Because nothing says “strong security posture” like sweeping breaches under the rug and hoping the auditors don’t trip over the lump.

• Hackers are holding Google’s data hostage unless two threat intel employees get the boot. Extortion? Performance review outsourcing? You decide.

• Meanwhile in the UK, the government sat on a secret breach review for two years before sheepishly releasing it. Because transparency apparently has an expiration date.

Grab your headphones as we unpack what these stories really mean for security leaders, why “insider risk” is the boogeyman of the week, and how the industry’s favorite strategy still seems to be: “Shh… maybe they won’t notice.”