Sooner or later, but cybersecurity incidents happen in every company. Sam and Ivan talk the walk through normal incident response routines, highlighting the most crucial nuances of what's important before, during, and after the cybersecurity incident.

WHAT WE COVER

00:00 Introduction

00:32 Prepare, Prepare, Prepare

04:55 How to calm down the victims

05:56 What to do when the incident happens

10:37 The real reason why we need security policies

12:40 Event log

18:21 How to get hired to the Incident Response team

23:00 The Starting Point to prepare the defense

27:20 Ransom: to pay or not to pay

32:24 How to understand that the incident is DONE and we can CELEBRATE?

38:23 How to pick good vendors (the process)

48:03 The most important asset to protect (it's not your intellectual property)

1:00:08 Outro

SUBSCRIBE & FOLLOW

Sam Lyhin - Emotionally Intelligent Penetration Tester & Founder of LSCP LLC

LinkedIn → /in/samlyhin

https://lscp.llc

Ivan Melnik - Security Engineer / Incident Responder

LinkedIn → /in/imelnik/

https://medium.com/@ivan-melnik

Today we will strip IT testing back to the core principles. When tools evolve daily and buzzwords multiply, which fundamentals still reliably decide product quality - and how do they protect security and business value?

WHAT WE COVER

00:00 Introduction

00:35 What fundamental things in QA will not change

03:08 Approach to Tools

05:52 Unquantifiable QA standards - Shift Left the Testing

16:36 What skills are always in demand to get hired on a QA position

19:58 Vendor Management is ethernal

23:18 How to manage technical debt

30:38 Bugs are like unexpected checks in chess. The more unexpected, the more devastating the consequences.

33:15 Outro

SUBSCRIBE & FOLLOW

Sam Lyhin - Emotionally Intelligent Penetration Tester & Founder of LSCP LLC

LinkedIn → /in/samlyhin

https://lscp.llc

Sergii Rusinchuk - Director of Quality Assurance & Founder of Rusinchuk Consulting

LinkedIn → /in/sergii-rusinchuk

https://rusinchuk.com

In this thought-provoking episode, cybersecurity researcher Sam Lyhin joins forces with AI researcher Vlad Grankovsky to explore the darker side of artificial intelligence: AI-powered social engineering attacks.

Together, we dive deep into how both AI and hacking really work - and imagine what the future might look like. From exploiting business logic with AI to training AI to manipulate human psychology, Sam and Vlad break down how emerging technologies could revolutionize the way attackers target people - and how we can defend against it.

🧠 Topics explored include:

- Can AI discover business logic flaws?How can AI adapt its strategy during an attack?

- Does AI have intuition - and can we define or formalize it?

- How do attacker AIs "visualize" and approach their human targets?

- What could effective AI-driven education look like?

- Why can’t we remove tech-savvy users from the Internet - and how do we still protect them?

🔒 Whether you're in tech, cybersecurity, or just curious about the risks and potential of AI, this is a conversation you won't want to miss.

👉 Like, comment, and subscribe for more deep dives into the intersection of AI and cybersecurity.

https://www.linkedin.com/in/samlyhinhttps://www.linkedin.com/in/vladimir-grankovsky/