🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com Model Extraction Attacks | Episode 24 In this solo episode of BHIS Presents: AI Security Ops, Brian Fehrman explores the stealthy world of Model Extraction Attacks—where hackers clone your AI model without ever touching your code. Learn how adversaries can reverse-engineer your multimillion-dollar model simply by querying its API, and why this threat is more than just academic. We break down: - What model...
Oct 11, 2025•20 min•Ep. 24
🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com In this episode of AI Security Ops, Brian Fehrman and Joff Thyer dive into the latest AI news of the month, exploring how rapidly evolving technologies are reshaping cybersecurity. Topics covered include: - How AI is changing cybersecurity monitoring - Expanding from email to Slack, Teams, and other chat platforms - Addressing insider threats and phishing campaigns in new channels - The rapid pace of AI i...
Oct 02, 2025•34 min•Ep. 23
🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com Insider Threat 2.0 - Prompt Leaks & Shadow AI | Episode 22 In this episode of BHIS Presents AI Security Ops, we dive into Insider Threat 2.0: Prompt Leaks & Shadow AI. The panel explores the hidden risks of employees pasting sensitive data into public AI tools, the rise of unauthorized “Shadow AI” in organizations, and how policies—or lack thereof—can expose critical information. Learn why free AI...
Sep 25, 2025•26 min•Ep. 22
🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com Episode 21 - Deepfakes And Fraudulent Interviews In Remote Hiring In this episode of AI Security Ops by Black Hills Information Security, the crew explores the alarming rise of deepfakes and fraudulent interviews in remote hiring. As virtual work expands, cybercriminals are using AI-driven impersonation tactics to pose as job candidates, deceive recruiters, and gain unauthorized access to organizations. J...
Sep 18, 2025•28 min•Ep. 21
🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com Episode 20 - The Hallucination Problem In this episode of AI Security Ops, Joff Thyer and Brian Fehrman from Black Hills Information Security dive into the hallucination problem in AI large language models and generative AI. They explain what hallucinations are, why they happen, and the risks they create in real-world AI deployments. The discussion covers security implications, practical examples, and str...
Sep 11, 2025•27 min•Ep. 20
Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com AI News of the Month | Episode 19 In Episode 19,Brianand Derek cover a zero-click indirect prompt injection attack against ChatGPT connectors and seemingly innocent Google Calendar events that hijack smart homes via Gemini, with possible consequences for the power grid. They'll discuss the impact of Microsoft patching a critical Azure OpenAI SSRF vulnerability and go over new NIST AI security standards, IBM’...
Sep 04, 2025•37 min•Ep. 19
🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com Malware in the Age of AI | Episode 18 In Episode 18, hosts Joff Thyer, Derek Banks and Brian Fehrman discuss the rise of AI-powered malware. From polymorphic keyloggers like Black Mamba to the use of ChatGPT, WormGPT, and fine-tuned LLMs for cyberattacks, the team will explain how generative AI is reshaping the security landscape. They'll break down the real risks vs. hype, including prompt injection, jai...
Aug 28, 2025•33 min•Ep. 18
Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com Community Q&A | Episode 17 In episode 17 of the AI Security Ops Podcast, hosts Joff Thyer, Derek Banks, Brian Fehrman and Bronwen Aker answer viewer-submitted questions about system prompts, prompt injection risks, AI hallucinations, deep fakes, and when (and when not) to use AI in cybersecurity. They'll discuss the difference between system and user prompts, how temperature settings impact LLM outputs, ...
Aug 21, 2025•37 min•Ep. 17
A Conversation with Daniel Miessler In Episode 16, Joff and the team welcome human-centric AI innovator Daniel Miessler, creator of Fabric, an AI framework for solving real-world problems from a human perspective. The conversation covers AI’s role in cybersecurity, the importance of clarity in “intent engineering” over prompt tricks, and the risks and opportunities of deploying large language models. They explore the shift from “vibe coding” to “spec coding,” the rise of AI scaffolding over raw ...
Aug 14, 2025•45 min•Ep. 16
🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com In this episode, we'll discuss Palo Alto Networks’ acquisition of Protect AI, the rise of “Shadow AI” in enterprises, alarming AI-driven data leaks, and vibe coding gone wrong. We'll dive into critical issues like AI hallucinations and the growing need for "human in the loop" oversight. We'll wrap up with a discussion of Proton’s Lumo AI chatbot, disappearing medical disclaimers in AI chatbots and data po...
Aug 07, 2025•39 min•Ep. 15
🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com In Episode 14 of the AI Security Ops Podcast, hosts Joff Thyer, Derek Banks, and Brian Fehrman answer questions submitted by viewers. The team will cover how effective prompt engineering can transform LLMs into workflow accelerators, and debate AI tool strengths— when to use Claude, ChatGPT, or Notebook LM. They'll discuss the importance of human oversight when integrating AI into operations, highlighting...
Jul 31, 2025•39 min•Ep. 14
🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com Augmenting Red Teaming with AI | Episode 13 In Episode 13 of the AI Security Ops Podcast, hosts Joff Thyer, Derek Banks, and Brian Fehrman dive into the exciting world of **Agentic AI in Red Teaming**. Discover how augmenting red teams with AI-driven tools helps automate penetration testing, tackle low-hanging fruit vulnerabilities, and provide comprehensive security coverage. The team discusses the impor...
Jul 24, 2025•30 min•Ep. 13
🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com Regulating the Machine: Global AI Laws and the Impact of GDPR | Episode 12 In Episode 12 the hosts discuss the complexities of regulating artificial intelligence (AI) technology across the globe. Highlighting the rapid advancement of AI and its challenges for lawmakers, the episode explores how the GDPR framework in the European Union provides clear guidelines addressing AI-related issues like data privac...
Jul 17, 2025•27 min•Ep. 12
🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com In this episode of AI Security Ops, we explore major AI news, including the Scale AI data leak impacting giants like Google and Meta, a novel jailbreak attack technique dubbed the Echo Chamber, and Anthropic's Claude-Gov, tailored for U.S. national security. We discuss ethical AI management solutions, the innovative use of AI to detect shoplifting via behavioral gestures, IBM's WatsonX platform, and criti...
Jul 10, 2025•35 min•Ep. 11
🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com Explore the rising security risks and challenges associated with agentic AI in Episode 10 of AI Security Ops. Join Cybersecurity experts Joff Thyer, Bronwen Aker, Derek Banks, and Brian Ferhman as they unpack the complexities of AI gaining autonomy and agency. This episode covers key topics such as defining agentic AI, real-world vulnerabilities like prompt injection, potential implications for cybersecur...
Jul 03, 2025•37 min•Ep. 10
Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com Episode 9 of AI Security Ops! AI Model Usage and Comparisons In this exciting episode, we explore practical uses and comparisons of popular AI models including OpenAI, Claude, Gemini, and Copilot. Join our expert panelists as they discuss personal workflows, share experiences with AI-driven coding and text processing, and examine strengths and weaknesses of these powerful technologies. Discover insights into...
Jun 26, 2025•14 min•Ep. 9
🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com AEO vs SEO | Episode 8 Explore how Artificial Intelligence (AI) is revolutionizing online search in this insightful episode of the AI Security Ops Podcast. Learn about Search Engine Optimization (SEO) versus Answer Engine Optimization (AEO), and understand the shift from link-based results to rich, AI-driven answers. Discover the security challenges and ethical implications surrounding the use of AI in se...
Jun 19, 2025•30 min•Ep. 8
🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com R.A.G. (Retrieval Augmented Generation) is a powerful technique for enhancing Large Language Model (LLM) outputs with real-time, external data. RAG bridges the gap between static model knowledge and dynamic, context-aware responses. Join hosts Brian Fehrman, Derek Banks, Bronwen Aker, and Ben Bowman as they break down how RAG improves the reliability and relevance of generative AI systems. You’ll learn wh...
Jun 12, 2025•27 min•Ep. 7
🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com Episode 6: LLM Guardrails We dive deep into the evolving world of LLM guardrails. We explore why guardrails are essential for securing large language models, the challenges of implementing them effectively, and how current approaches often resemble the patchwork fixes of early InfoSec days. From input/output filtering and prompt injection defenses to the emerging trend of LLMs guarding other LLMs, we anal...
Jun 05, 2025•22 min•Ep. 6
ChatGTP created summary, because of course we're gonna use A.I. on our A.I. podcast: In this episode of the AI Security Ops podcast, the panel discusses the challenges and risks of harmful content generated by AI, particularly focusing on generative models like GPT. They explore how powerful prompt engineering can lead to the creation of misleading or dangerous outputs, and highlight the importance of detection methods, ethical oversight, and regulatory standards. The conversation emphasizes the...
May 22, 2025•37 min•Ep. 5
In this episode, we dive into how AI is revolutionizing cybersecurity—especially in spam detection using classic machine learning models like logistic regression and support vector machines. Join us as we explore real-world applications, teaching approaches in AI courses, and why your spam folder is smarter than ever. Topics : AI in email spam detection Teaching machine learning through real datasets NLP's role in cybersecurity Behind-the-scenes on building practical AI models...
May 15, 2025•33 min•Ep. 4
Welcome to another thought-provoking episode of AI Security Ops , hosted by Joff Thyer alongside Brian Fehrman and Derek Banks. In this episode, we dive deep into one of the most alarming developments in artificial intelligence— AI-generated deepfakes . 🔍 What We Cover: What deepfakes are and how they’re created using generative adversarial networks (GANs) and diffusion models Real-world deepfake incidents, including multimillion-dollar fraud The growing accessibility of deepfake tools and the ...
Apr 28, 2025•29 min•Ep. 3
🔗 Register for FREE Infosec Webcasts, Anti-casts & Summits – https://poweredbybhis.com Welcome to Episode 2 of AI Security Ops! In this episode, Joff Thyer, Derek Banks, Brian Fehrman, and Ben "The Heretic" Bowman take a deep dive into Prompt Injection — one of the most fascinating and misunderstood attack techniques in the AI space. We break down: 🛠️ What large language models (LLMs) are and how they work 💣 What prompt injection is, and why it matters for AI security 🎭 How attackers man...
Apr 23, 2025•23 min•Ep. 2
Welcome to the first episode of AI Security Ops! This week, join Brian Fehrman, Derek Banks, and Joff Thyer as they dive into why AI security matters more than ever. From how large language models work to the risks of prompt injection, jailbreaking, and AI-powered social engineering, this episode unpacks the challenges and opportunities at the intersection of AI and cybersecurity.
Apr 17, 2025•47 min•Ep. 1
