PODCAST · news
IT SPARC Cast
by John Barger
IT SPARC Cast is a digest of the Enterprise IT news over the last week, with insights, opinions, and a little sarcasm from 2 experts each with over 20 years of experience working in IT or for IT vendors. Hosted on Acast. See acast.com/privacy for more information.
-
165
Windows Falls Below 60%! Meta’s Brilliant Memory Hack, and Claude Code Under Fire
In this episode of IT SPARC Cast - News Bytes, John & Lou examine three stories highlighting how AI and enterprise infrastructure continue to evolve. China raises concerns over Anthropic’s Claude Code, Meta reveals an ingenious way to reuse server memory and reduce AI infrastructure costs, and Windows drops below 60% global desktop market share for the first time in decades.The discussion explores AI security, hyperscale hardware innovation, and whether operating systems are becoming less important than the applications and services running on top of them. If you work in enterprise IT, cloud, AI, virtualization, or infrastructure, this episode offers valuable insight into the trends reshaping the technology landscape.⸻📌 Show Notes00:00 – IntroThis week’s episode covers AI security claims, innovative data center hardware, and changing desktop operating system trends as enterprise computing continues to evolve.⸻📰 News Bytes00:44 – China Issues “Backdoor” Security Alert Over Anthropic’s Claude CodeChinese authorities issued a security alert alleging certain versions of Claude Code contain monitoring mechanisms that transmit user information. Anthropic has not confirmed the claims, and no independent evidence has verified the alleged backdoor.John & Lou discuss the importance of independently validating security claims and the broader competitive landscape surrounding AI development.Key takeaways:Claims remain unverifiedAI security deserves careful scrutinyIndependent validation is essentialhttps://www.reuters.com/legal/litigation/china-issues-backdoor-security-alert-over-anthropics-claude-code-2026-07-08/⸻04:24 – Meta Reuses Old Server Memory with Custom CXL ASICMeta unveiled its custom “Vistara” CXL ASIC, allowing older DDR4 memory from retired servers to be reused alongside newer AI infrastructure. The approach reduces hardware costs, extends memory life, and lowers the number of servers required for certain AI workloads.Key takeaways:Extends useful life of server memoryReduces infrastructure costsDemonstrates creative hyperscale engineeringhttps://www.theregister.com/systems/2026/06/29/zuck-saves-meta-bucks-by-reusing-memory-from-old-servers-with-a-custom-cxl-asic/5263483⸻10:55 – Windows Drops Below 60% Global Desktop ShareAccording to StatCounter data, Windows has fallen below 60% worldwide desktop market share, while macOS, Linux, and other platforms continue gaining ground.John & Lou explore whether the operating system itself is becoming less important as web applications, cloud services, AI, and virtualization increasingly abstract users away from the underlying platform.Key takeaways:Windows remains the market leader but continues to declineLinux and macOS continue gaining usersAI and cloud services may reduce OS dependencehttps://linuxiac.com/windows-drops-under-60-in-global-desktop-os-share-for-the-first-time-in-years/⸻📬 18:28 – Mail BagListener Dennis shares additional thoughts on VMware, open-source infrastructure, and virtualization strategy, reinforcing the growing trend toward organizations building more flexible infrastructure around open technologies rather than proprietary ecosystems.⸻🔚 19:39 – Wrap UpWhether it’s AI security, hyperscale hardware, or desktop computing, the common theme is flexibility. Organizations that embrace open architectures, efficient infrastructure, and thoughtful AI adoption will be better positioned for the next wave of enterprise technology.⸻🌐 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
164
The First AI Ransomware Is Here — And It Learned on the Fly
In this episode of IT SPARC Cast – CVE of the Week, John and Lou discuss the first fully autonomous AI-driven ransomware attack ever documented. Researchers observed an AI agent independently executing an entire ransomware campaign—from credential harvesting and privilege escalation to encrypting production systems and adapting to failures in real time.They also examine a new wave of critical UniFi security patches and explain why automatic patching is quickly becoming a necessity rather than a convenience. As AI accelerates both attacks and defenses, organizations must rethink how they approach patch management, Zero Trust, and cyber resilience.⸻📄 Show Notes🚨 CVE of the WeekFirst Fully Agentic Ransomware Attack Raises New Security ConcernsResearchers have documented what appears to be the first fully autonomous AI-powered ransomware attack. After receiving initial access from a human operator, the AI independently:Harvested credentialsMoved laterally across the networkEscalated privilegesEncrypted a production databaseGenerated a ransom noteAdapted to failed attack attempts in just 31 secondsThe attack relied on known vulnerabilities, reinforcing the importance of rapid patching, strong identity controls, credential protection, and Zero Trust architectures. As AI becomes more capable, organizations should expect increasingly automated attacks that can operate at massive scale.https://www.techtarget.com/searchsecurity/news/366645613/First-fully-agentic-ransomware-attack-sparks-readiness-concerns⸻Ubiquiti Releases 25 Security Fixes, Including Seven Critical VulnerabilitiesUbiquiti has released patches for 25 security vulnerabilities, including seven critical flaws rated between 9.1 and 10.0 CVSS, affecting UniFi networking, Protect, Identity, access control, and related products.If automatic updates were enabled, many systems were protected before administrators even learned about the vulnerabilities. The discussion highlights why waiting weeks for maintenance windows is no longer practical. AI-assisted attacks can weaponize newly disclosed vulnerabilities far faster than traditional patch cycles.Recommended actions:Enable automatic updates where appropriatePatch network infrastructure as quickly as possibleReview firmware and software versions regularlyReevaluate maintenance window policies for critical infrastructurehttps://thehackernews.com/2026/07/ubiquiti-patches-critical-unifi-flaws.html⸻💬 Mail BagListener Blake shared that he has chosen not to deploy AI agents because of security concerns.John and Lou discuss the balance organizations must strike between security and productivity. While AI introduces new risks, avoiding it entirely may also create competitive disadvantages. The key is deploying AI responsibly with appropriate safeguards and human oversight.⸻📣 Wrap UpWe’d love to hear your thoughts.Are your patching policies ready for AI-powered attacks? Is continuous patching becoming unavoidable?📧 [email protected] IT SPARC CastIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
163
Microsoft Gives AI Memory | Meta Slows Down & Ford Changes Course
In this episode of IT SPARC Cast - News Bytes, John & Lou explore the next phase of enterprise AI, where long-term memory, agent development, and workforce strategy are becoming just as important as the models themselves. Microsoft introduces Memora to give AI agents persistent memory, Meta acknowledges that AI agent progress is taking longer than expected, and Ford rethinks its software hiring strategy after discovering AI alone isn’t enough.The episode also examines how India is rapidly increasing AI hiring while traditional IT hiring slows, highlighting a broader shift toward higher-value AI skills across the global technology workforce. If you work in enterprise IT, AI, software development, or cloud infrastructure, this episode provides valuable insight into how organizations are adapting to the realities of AI adoption.⸻📌 Show Notes00:00 – Intro📰 News Bytes00:50 – Microsoft Introduces “Memora” for AI AgentsMicrosoft unveiled Memora, a new long-term memory architecture designed to help AI agents retain context across sessions instead of starting from scratch every time. The technology could dramatically improve customer support, help desk operations, troubleshooting, and long-running business workflows.Key takeaways:Persistent memory for AI agentsBetter continuity across customer interactionsNew questions around privacy and memory securityhttps://www.computerworld.com/article/4191034/microsoft-unveils-memora-to-tackle-ai-agents-memory-problem-2.html05:09 – Zuckerberg Says AI Agent Progress Is Slower Than ExpectedDespite major investments and organizational changes, Meta says AI agent development is progressing more slowly than anticipated. While meaningful improvements are still expected, building reliable autonomous agents continues to present technical and operational challenges.John & Lou discuss why the broader AI industry may be experiencing similar growing pains as agentic AI moves from demos into production.Key takeaways:AI agents remain difficult to operationalizeInfrastructure investment continues at record levelsReliable execution remains the biggest challengehttps://www.reuters.com/business/zuckerberg-says-ai-agent-development-going-slower-than-expected-2026-07-02/09:17 – Ford Reassesses AI Hiring StrategyFord is shifting back toward hiring experienced software engineers after finding that AI tools alone did not deliver the expected productivity gains. Rather than replacing experienced developers, the company is pairing AI with seasoned engineering talent.The discussion reinforces a recurring theme: AI works best as a force multiplier, not a replacement for expertise.Key takeaways:Experienced engineers remain essentialAI amplifies skilled teamsOrganizational change matters as much as technologyhttps://www.computerworld.com/article/4190728/ford-disappointed-with-ai-re-hires-veterans.html12:22 – AI Hiring Surges in India’s IT SectorAI hiring in India continues to accelerate even as overall IT hiring declines. Organizations are increasingly seeking talent in generative AI, machine learning, data engineering, and AI infrastructure rather than traditional outsourcing roles.The trend suggests AI is reshaping—not eliminating—the technology workforce.Key takeaways:AI hiring continues to grow rapidlyDemand is shifting toward higher-value technical skillsTraditional IT roles continue evolvinghttps://www.reuters.com/world/india/ai-hiring-outpaces-overall-it-recruitment-india-report-shows-2026-07-03/⸻📬 16:35 – Mail BagLongtime listener Dennis shares a classic science-themed joke. It’s a reminder that even in the fast-moving world of AI and enterprise technology, there’s always room for a good nerd joke.⸻🔚 17:10 – Wrap Up⸻🌐 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
162
Microsoft Warns: Your AI Agent Could Be Poisoned via MCP
A newly demonstrated attack against the Model Context Protocol (MCP) shows how malicious tool descriptions can manipulate AI agents into leaking sensitive information—without exploiting a software vulnerability. In this episode of IT SPARC Cast – CVE of the Week, John and Lou explain MCP tool poisoning, why prompt injection is evolving, and what organizations deploying AI agents should do to protect themselves.⸻📄 Show Notes🚨 Security Spotlight: MCP Tool PoisoningThis week we’re covering a new attack technique targeting the Model Context Protocol (MCP) used by AI agents.Rather than exploiting software bugs, attackers can modify an MCP tool’s metadata to inject hidden instructions that an AI agent interprets as legitimate commands.The result? AI agents can be manipulated into exposing sensitive information without the user ever seeing the malicious instructions.⸻⚠️ How the Attack WorksResearchers demonstrated that attackers can:Modify an MCP tool’s hidden description metadataEmbed prompt injection instructionsTrick AI agents into revealing sensitive dataAbuse automatically refreshed tool descriptionsOperate without exploiting a traditional software vulnerabilityBecause the instructions are hidden in metadata, human users typically never see them.⸻🛠️ Mitigation Steps✅ Treat Tool Metadata as UntrustedDon’t assume MCP tool descriptions are safe simply because they come from trusted sources.✅ Require Approval for Metadata ChangesIf a tool’s description changes, require administrative review before allowing the updated tool to execute.✅ Apply Least-Privilege AccessGrant AI agents only the permissions they absolutely need.Avoid giving general-purpose agents unrestricted access to:File systemsCredentialsFinancial systemsSensitive data✅ Separate Sensitive ToolsKeep high-privilege tools isolated from general-purpose AI agents whenever possible.✅ Monitor Tool UpdatesAudit changes to MCP tools and monitor for unexpected metadata modifications.✅ Keep Humans in the LoopFor high-risk actions involving sensitive information, require explicit user approval before execution.⸻🤖 Why This MattersThis attack highlights a new reality:The attack surface for AI isn’t just software—it’s prompts, metadata, and trust relationships.As organizations rapidly deploy AI agents, traditional security controls won’t be enough.Future AI security will require:Prompt injection detectionContext-aware validationMetadata inspectionAI-specific security policies⸻💬 Listener FeedbackThanks to Orlando for sharing that his UniFi deployment automatically updated overnight after last week’s episode.It’s another reminder that automatic patching, when appropriate, can significantly reduce exposure to newly discovered threats.⸻📣 Wrap UpAre you comfortable letting AI agents operate autonomously, or should humans remain involved in every sensitive action?📧 [email protected]🐦 @itsparccast on X⸻🔗 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
161
OpenAI’s Spicy New AI Chip, Patch Planet & Why AI Needs Nuclear Power
In this episode of IT SPARC Cast - News Bytes, John & Lou explore how AI is driving the next wave of infrastructure investment. OpenAI launches Patch Planet to help secure critical open-source software, the U.S. announces major funding for new nuclear reactors to support growing energy demand, and OpenAI teams up with Broadcom to introduce its first custom AI inference chip.The discussion highlights three critical themes shaping enterprise IT today: securing the software supply chain, powering tomorrow’s AI data centers, and reducing dependence on traditional GPU architectures. If you work in enterprise IT, cloud, AI, cybersecurity, or infrastructure, this episode offers insight into where the industry is headed next. ⸻📌 Show Notes00:00 – IntroThis week’s episode covers AI-powered software security, next-generation energy infrastructure, and custom silicon designed specifically for large language models.⸻📰 News Bytes00:46 – OpenAI Launches Patch PlanetOpenAI expanded Project Daybreak with Patch Planet, an initiative that helps maintainers of critical open-source projects identify, validate, patch, and test security vulnerabilities using AI alongside human security experts.The goal is to help open-source projects keep pace as AI dramatically accelerates vulnerability discovery.Key takeaways:AI-assisted vulnerability discovery and patchingHuman experts remain part of the validation processFocus on critical open-source infrastructurehttps://openai.com/index/patch-the-planet/⸻05:16 – U.S. Announces $17.5B for New Nuclear ReactorsThe U.S. announced $17.5 billion in loan guarantees to accelerate construction of ten large nuclear reactors, helping address the rapidly growing demand for electricity driven by AI data centers, electrification, and future infrastructure needs.John & Lou discuss why reliable baseload power will be essential for AI growth and how nuclear, renewables, and small modular reactors can work together to support future demand.Key takeaways:10 new large reactors planned across five sitesGrowing AI infrastructure is driving energy demandNuclear remains a key long-term power sourcehttps://apnews.com/article/nuclear-reactors-energy-trump-wright-57841139aca7d2780a12256692b96fc5⸻12:18 – OpenAI & Broadcom Unveil “Jalapeño” AI ChipOpenAI and Broadcom introduced “Jalapeño,” OpenAI’s first custom AI inference processor designed specifically for running large language models more efficiently while reducing dependence on NVIDIA GPUs.The new ASIC focuses on inference performance, lower power consumption, and improved serving efficiency, marking the beginning of OpenAI’s long-term custom hardware strategy.Key takeaways:Purpose-built AI inference processorBetter performance-per-watt for LLM workloadsExpands competition in AI siliconhttps://www.reuters.com/world/asia-pacific/openai-unveils-custom-chip-it-designed-with-broadcom-boost-its-ai-infrastructure-2026-06-24/⸻📬 18:43 – Mail BagLongtime listener Dennis shares his perspective on VMware’s future, arguing that open-source infrastructure and private cloud platforms offer greater flexibility than increasingly expensive proprietary virtualization platforms. The discussion explores why organizations are rethinking virtualization strategies and how AI may accelerate custom infrastructure development.⸻🔚 20:57 – Wrap UpAI is reshaping every layer of enterprise technology—from software security and custom silicon to energy infrastructure and cloud architecture. Organizations that understand how these trends intersect will be best positioned for the years ahead.⸻🌐 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
160
UniFi Under Attack? Why Auto-Patching Saved the Day from Multiple 10.0 CVEs
Three recently patched UniFi OS vulnerabilities are now being actively exploited, highlighting the growing importance of automatic patching and vulnerability management. In this episode of IT SPARC Cast – CVE of the Week, John and Lou explain how chaining CVEs can lead to full system compromise, why UniFi’s default auto-update policy likely protected many users, and why continuous patching may soon replace traditional maintenance windows.⸻📄 Show Notes🚨 CVE of the Week: UniFi OS VulnerabilitiesThis week we’re covering three UniFi OS vulnerabilities:CVE-2026-34908CVE-2026-34909CVE-2026-34910While each vulnerability has its own severity rating, security researchers demonstrated that chaining all three together can result in full remote system compromise with elevated privileges.The vulnerabilities were patched in May 2026, but organizations that delayed updates are now at risk as active exploitation has been reported.⸻⚠️ Why This MattersUniFi OS normally enables automatic updates by default, meaning many deployments were likely protected before the attacks began.However, organizations that disabled auto-updates or delayed maintenance may still be vulnerable.Researchers also released a free detection script to help administrators identify vulnerable UniFi deployments.⸻🛠️ Mitigation Steps✅ Update UniFi OS ImmediatelyVerify every UniFi device is running the latest available firmware and UniFi OS version.If automatic updates were disabled, patch immediately.✅ Verify Auto-Update SettingsConfirm that:Automatic update checks are enabledFirmware updates install automaticallyDevices are regularly checking for new releases✅ Run the Detection ScriptUse the detection tool released by Bishop Fox to identify vulnerable or improperly updated UniFi systems.✅ Audit Network DevicesDon’t stop with UniFi.Review firmware and update status for:FirewallsSwitchesAccess PointsGatewaysOther embedded infrastructure✅ Review Patch StrategyModern attacks are moving faster than traditional maintenance windows.Consider:Overnight automated patchingLive patching where supportedRolling upgrades to minimize downtime⸻🔒 The Bigger LessonJohn and Lou revisit a recurring theme:Modern attacks rely on exploit chaining.Three medium-severity vulnerabilities can combine into a critical compromise.Current CVSS scoring evaluates individual vulnerabilities, but organizations should also consider how vulnerabilities interact across an entire system.⸻🤖 Why Continuous Patching MattersThe average time between disclosure of a critical vulnerability and AI-assisted exploit development continues to shrink.Waiting weeks—or even days—to patch infrastructure is becoming increasingly risky.Vendors are also being encouraged to improve:Live patchingRolling firmware upgradesHigh-availability updates with minimal downtime⸻📣 Wrap UpHas your organization embraced automatic patching, or do you still rely on traditional maintenance windows?📧 [email protected]🐦 @itsparccast on X⸻🔗 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
159
40,000 Workloads Leaving VMware?! Bezos Says AI Won’t Kill Jobs
In this episode of IT SPARC Cast - News Bytes, John & Lou explore three major stories shaping enterprise IT. Jeff Bezos argues that AI will create labor shortages rather than eliminate jobs, Tesco begins one of the largest VMware migration projects ever announced, and Accenture doubles down on cybersecurity through a series of strategic investments and acquisitions.The discussion focuses on the practical realities behind AI-driven productivity, the growing backlash against VMware licensing changes, and why cybersecurity is becoming a core business function rather than simply an IT responsibility. If you work in enterprise IT, cloud, virtualization, or security, this episode highlights trends that could reshape the industry over the next several years. ⸻📌 Show Notes00:00 – IntroThis week’s episode covers AI’s impact on the workforce, one of the largest VMware migrations ever attempted, and why cybersecurity is becoming central to business strategy.⸻📰 News Bytes00:47 – AI Will Lead to Labor Shortages, Says an Optimistic Jeff BezosJeff Bezos argues that AI will increase productivity and create new categories of work rather than permanently eliminate jobs. Drawing parallels to earlier waves of automation, he suggests AI will remove bottlenecks and allow people to focus on higher-value tasks.John & Lou discuss the difference between using AI as a growth engine versus a cost-cutting tool, and why leadership decisions may ultimately determine whether organizations thrive or stagnate.Key takeaways:AI may create new opportunities rather than eliminate workProductivity gains can fuel growth instead of downsizingOrganizations that embrace expansion may outperform competitorshttps://www.reuters.com/business/world-at-work/ai-will-lead-labour-shortages-jeff-bezos-says-vivatech-2026-06-17/⸻04:49 – Tesco Moving 40,000 Workloads Off VMwareTesco is migrating approximately 40,000 workloads away from VMware, making it one of the largest publicly disclosed VMware exit projects to date. The move comes amid ongoing concerns around licensing, support, and long-term costs following Broadcom’s acquisition of VMware.The migration highlights how even major enterprises are willing to undertake massive infrastructure changes when economics shift dramatically.Key considerations:40,000 workloads represent a significant migration effortKVM-based alternatives continue gaining tractionVirtualization competition is entering a new phasehttps://arstechnica.com/information-technology/2026/06/tesco-moving-40000-server-workloads-off-vmware-amid-broadcoms-abusive-conduct/⸻11:03 – Accenture Takes Majority Stake in Cybersecurity FirmsAccenture announced major investments and acquisitions in cybersecurity, reinforcing the growing importance of security services across every industry.Rather than treating security as a standalone IT function, organizations increasingly view it as a business-wide requirement. Accenture’s move signals that demand for AI-enabled security expertise is expected to accelerate significantly.Key takeaways:Security spending continues to grow rapidlyAI adoption creates new security requirementsConsulting firms see cybersecurity as a long-term growth markethttps://www.reuters.com/legal/transactional/accenture-take-majority-stake-acquire-cybersecurity-firms-418-billion-deal-2026-06-18/⸻📬 15:25 – Mail BagListener Steve weighs in on Ubiquiti’s new Enterprise Firewall Core, agreeing that it’s a strong first step into enterprise security. The discussion expands into Ubiquiti’s new Enterprise NAS platform, ZFS-based storage, and how the company continues pushing deeper into enterprise infrastructure.⸻🔚 16:49 – Wrap Up⸻🌐 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
158
FortiGate Firewalls Compromised: Why Patching Didn’t Fix the Problem
Thousands of Fortinet FortiGate devices have been compromised—even in organizations that already applied security patches. In this episode of IT SPARC Cast – CVE of the Week, John and Lou explain how attackers maintained persistence after earlier breaches, why patching alone wasn’t enough, and what every organization running FortiGate firewalls must do immediately to verify they haven’t already been compromised.⸻📄 Show Notes🚨 CVE of the Week (Special Security Alert): FortiGate CompromisesThis week we’re covering a major Fortinet security incident affecting organizations around the world.Unlike most episodes, this isn’t focused on a single CVE. Instead, attackers are leveraging previously exploited FortiGate vulnerabilities and maintaining persistent access even after organizations patched the original flaws.The key lesson:👉 Patching does not remove an attacker who is already inside.⸻⚠️ What Happened?Large organizations across multiple industries have reported compromises involving FortiGate firewalls and VPN infrastructure.Attackers reportedly:Exploited previously disclosed Fortinet vulnerabilitiesEstablished persistence mechanismsMaintained access after patches were installedContinued accessing networks through compromised devicesPotential impacts include:Network visibilityCredential theftTraffic interceptionLong-term unauthorized access⸻🛠️ Immediate Mitigation Steps✅ Audit All FortiGate DevicesIf your FortiGate was internet-facing before patching:Assume compromise until proven otherwise.Review:Administrative accountsVPN configurationsFirewall rulesConfiguration changesScheduled tasks and scripts⸻✅ Upgrade Firmware and SoftwareInstall:Latest supported FortiOS versionLatest firmware updatesAny recommended security updatesDon’t stop at operating system updates—verify firmware integrity as well.⸻✅ Rotate CredentialsImmediately rotate:Administrative passwordsVPN credentialsService accountsShared secretsAPI keysAssume previously exposed credentials may be compromised.⸻✅ Verify Multi-Factor Authentication (MFA)MFA should be enabled for:Firewall administrationVPN accessRemote administrationCritical infrastructure systemsIf MFA is not enabled, prioritize it immediately.⸻✅ Hunt for PersistenceLook for:Unknown accountsSuspicious scriptsUnexpected configuration changesUnauthorized VPN usersUnrecognized scheduled tasksIf something looks unfamiliar, investigate it.⸻🔒 Why This MattersOne of the biggest takeaways from this incident is that perimeter security is no longer enough.If a firewall compromise can expose the entire organization, the network architecture needs work.John and Lou emphasize:Zero Trust architecturesNetwork segmentationLeast privilege accessMFA everywhereContinuous security auditingA firewall should be your first line of defense—not your only line of defense.⸻💡 Key TakeawayThe real danger isn’t the original vulnerability.It’s the persistence left behind after the vulnerability was patched.Organizations that only patch—but don’t investigate for compromise—may still have attackers inside their environments.⸻📣 Wrap UpHave you audited your firewall infrastructure recently? Are you confident patching alone is enough?📧 [email protected]🐦 @itsparccast on X⸻🔗 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
157
200 Microsoft Patches?! RoguePlanet Zero-Day & Ubiquiti’s Enterprise Firewall
In this episode of IT SPARC Cast - News Bytes, John & Lou tackle a security-heavy week featuring a new Microsoft Defender zero-day, the largest Patch Tuesday release in Microsoft’s history, and a growing debate around how vulnerability disclosures should be handled in the AI era. As AI accelerates bug discovery, the industry is struggling to keep pace with validation, patching, and deployment.The discussion also covers Ubiquiti’s entry into the enterprise firewall market and OpenAI’s report on coordinated influence campaigns targeting public perception around AI infrastructure and data centers. If you work in enterprise IT, cybersecurity, cloud, or networking, this episode highlights several trends that will directly impact security operations and infrastructure planning. ⸻📌 Show Notes00:00 – IntroThis week’s episode focuses on security, patch management, enterprise networking, and the growing role AI plays in both finding vulnerabilities and shaping public narratives.⸻📰 News Bytes01:48 – Microsoft Defender “RoguePlanet” Zero-DaySecurity researcher Chaotic Eclipse revealed a new Microsoft Defender vulnerability dubbed “RoguePlanet” that allows local privilege escalation to SYSTEM-level access on Windows 10 and 11.The flaw joins a growing list of publicly disclosed Defender vulnerabilities and highlights ongoing tensions between researchers and Microsoft regarding vulnerability disclosure and patch response times.https://www.bleepingcomputer.com/news/microsoft/microsoft-defender-rogueplanet-zero-day-grants-system-privileges/⸻04:47 – Microsoft Smashes Record for Biggest Ever Patch Tuesday UpdateMicrosoft released more than 200 security fixes in a single Patch Tuesday, setting a new record. The update included dozens of critical vulnerabilities spanning Windows, Office, Azure, Exchange, Active Directory, Hyper-V, BitLocker, and Copilot services.John & Lou discuss why traditional patch cycles may no longer be sufficient as AI dramatically accelerates vulnerability discovery and exploit creation.https://www.computerweekly.com/news/366644117/Microsoft-smashes-record-for-biggest-ever-Patch-Tuesday-update⸻11:40 – Ubiquiti Releases Enterprise FirewallsUbiquiti announced its new Enterprise Firewall Core (EFC), expanding beyond networking into full next-generation firewall capabilities. The platform includes deep packet inspection, IDS/IPS, SSL inspection, AI-assisted threat analysis, and integration with the broader UniFi ecosystem.The aggressive pricing and subscription-light model could make it attractive for SMBs, education, MSPs, and mid-market enterprises.https://blog.ui.com/article/introducing-enterprise-firewall-core⸻17:46 – OpenAI Calls Out Anti-Data Center Influence OperationsOpenAI reported disrupting multiple coordinated campaigns that used AI-generated content, fake personas, and automated translations to influence online discussions around AI infrastructure and data centers.The report found AI significantly increased content generation volume but provided limited evidence that it improved persuasion or effectiveness.https://openai.com/index/prc-linked-influence-operations-ai-debates/⸻📬 21:44 – Mail BagLongtime listener Dennis weighs in on RTX Spark, Microsoft’s AI strategy, AMD’s role in the next Xbox, and the future of gaming platforms. The discussion explores what happens when AI agents become the primary interface and whether future gaming experiences could include Holodecks hosted by Sydney Sweeney.The conversation also raises larger questions about operating systems, platform ecosystems, and whether AI assistants eventually become more important than the devices they run on.⸻🔚 23:21 – Wrap Up⸻🌐 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
156
One Character Broke Linux Security: CVE-2026-23111 Explained
A single-character coding mistake in the Linux kernel created a privilege escalation vulnerability that could allow attackers to gain root access, escape containers, and compromise systems. In this episode of IT SPARC Cast – CVE of the Week, John and Lou break down CVE-2026-23111, discuss why container escapes are so dangerous, and explore how AI-powered code analysis may become essential for finding bugs before attackers do.⸻📄 Show Notes🚨 CVE of the Week: Linux Kernel Privilege Escalation (CVE-2026-23111)This week we’re covering CVE-2026-23111, a Linux kernel vulnerability that demonstrates how a tiny coding error can create a major security risk.The vulnerability:CVSS Score: 7.8Allows local privilege escalation to rootCan enable container escapesImpacts systems using nftables and user namespacesWas caused by a single-character logic errorResearchers demonstrated successful exploitation against major Linux distributions, including Debian and Ubuntu.⸻⚠️ Why This MattersWhile technically a local privilege escalation vulnerability, the real danger comes from exploit chaining.Attackers can:Gain limited access through another vulnerabilityUse CVE-2026-23111 to escalate privilegesEscape containersTake control of the host systemThis is why John and Lou argue that modern vulnerability scoring needs to better account for attack chains rather than evaluating each flaw in isolation.⸻🛠️ Mitigation Steps✅ Verify Your Linux Kernel Is PatchedThe vulnerability was patched in February 2026.Ensure your systems are running updated kernels provided by your Linux distribution.✅ Update Embedded Linux DevicesMany embedded systems:IoT devicesHVAC controllersSecurity appliancesSmart sensorsmay not receive patches automatically.Audit these devices and verify firmware versions.✅ Implement Zero TrustLimit lateral movement through:Zero Trust architecturesLeast-privilege accessNetwork segmentationStrong authentication controls✅ Use Micro-SegmentationRestrict devices to only the resources they require.IoT and embedded systems should never have broad access to:Financial systemsHR systemsCritical infrastructureAdministrative networks✅ Add AI-Assisted Code ReviewThis vulnerability existed because of a one-character mistake.Modern AI tools can:Review codeIdentify logic errorsDetect privilege escalation risksFind issues before deployment⸻🤖 AI: The Defender and the AttackerOne of the biggest themes of this episode is how AI is changing cybersecurity.The same technologies being used to:Find vulnerabilitiesReview codeImprove software qualitycan also be used by attackers to:Discover exploit chainsGenerate exploitsAutomate attacksThe future of security will require organizations to use AI defensively just to keep pace.⸻💬 Listener FeedbackThanks to listener Xavier-Nostromo for highlighting the growing need for AI-powered security defenses.As vulnerability discovery accelerates, organizations can no longer rely solely on traditional patch cycles and manual response processes.The future may require continuous monitoring, continuous validation, and continuous patching.⸻📣 Wrap UpDo you think AI-assisted code review should become mandatory for critical infrastructure and open-source projects?📧 [email protected]🐦 @itsparccast on X⸻🔗 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
155
Microsoft vs Security Researchers | RTX Spark & Why Linux Won
In this episode of IT SPARC Cast - News Bytes, John & Lou take a deep dive into a Microsoft-heavy week that touches nearly every corner of enterprise IT. From a growing controversy around vulnerability disclosure practices to Microsoft’s new AI-native device strategy and NVIDIA’s RTX Spark platform, the discussion explores how AI is reshaping operating systems, endpoints, and enterprise workflows.The episode also examines a surprising announcement that may signal a major shift in the desktop computing landscape: Microsoft bringing Linux CoreUtils directly into Windows. Combined with AI agents, local inference, and cross-platform development, the lines between operating systems are blurring faster than ever. If you work in enterprise IT, cloud, AI, or cybersecurity, this episode is packed with insights into where the industry is heading next. 📌 Show Notes00:00 – IntroThis week’s episode focuses on Microsoft’s evolving AI strategy, security challenges, AI-native devices, and the growing convergence between Windows and Linux. News Bytes00:46 – Microsoft’s Coordinated Vulnerability Disclosure (CVD) ControversyMicrosoft defended its coordinated vulnerability disclosure process after several high-profile Windows vulnerabilities were publicly disclosed before fixes were available. Researchers argue Microsoft has become increasingly difficult to work with and too slow to patch critical issues.John & Lou discuss both sides of the debate and why faster vulnerability discovery driven by AI is putting pressure on traditional disclosure models.Key takeaways:Vulnerability disclosure requires cooperation between researchers and vendorsPatch timelines are becoming increasingly importantAI is accelerating vulnerability discovery faster than everhttps://www.microsoft.com/en-us/msrc/blog/2026/05/a-shared-responsibility-protecting-customers-through-coordinated-vulnerability-disclosure07:20 – Inside Microsoft’s Project SolaraMicrosoft unveiled Project Solara, an AI-native platform designed around agents rather than traditional applications. Running on Android-based hardware, Solara aims to provide AI-first devices that handle workflows, context, and automation without requiring users to jump between apps.The platform includes wearable and desktop reference designs and reflects Microsoft’s vision of AI assistants becoming a core part of everyday work.https://www.geekwire.com/2026/inside-microsofts-project-solara-a-new-platform-for-devices-that-run-ai-agents-instead-of-apps/11:36 – NVIDIA & Microsoft Reinvent Windows PCs with RTX SparkNVIDIA and Microsoft announced RTX Spark, a new AI-focused platform designed to run large AI models, local agents, and advanced inference workloads directly on PCs and workstations.The platform combines NVIDIA Blackwell GPUs with AI-optimized software to reduce cloud dependency and improve data privacy while enabling powerful local AI experiences.https://www.theverge.com/tech/940589/nvidia-rtx-spark-n1-n1x-laptop-desktop-pc-cpu-gpu-ai-release-date17:43 – Microsoft Adds CoreUtils to Windows. So What? Linux Won.Microsoft is bringing native Linux CoreUtils commands directly into Windows, allowing cross-platform scripting without relying on WSL. Commands like grep, cat, find, sort, head, tail, and cut will become first-class Windows citizens.The bigger story isn’t the tools themselves—it’s what they represent: the operating system matters less than the applications, services, and workflows running on top of it.https://blogs.windows.com/windowsdeveloper/2026/06/02/build-2026-furthering-windows-as-the-trusted-platform-for-development/⸻🔚 23:22 – Wrap Up⸻🌐 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
154
AI Finds a Redis Vulnerability Humans Missed for Two Years
An autonomous AI security tool has discovered a critical Redis remote code execution vulnerability that remained hidden for more than two years. In this episode of IT SPARC Cast – CVE of the Week, John and Lou discuss CVE-2026-23479, why Redis is such a critical part of modern cloud infrastructure, and how AI is fundamentally changing vulnerability discovery, patch management, and enterprise security operations.⸻📄 Show Notes🚨 CVE of the Week: Redis Remote Code Execution (CVE-2026-23479)This week we’re looking at CVE-2026-23479, a high-severity Redis remote code execution vulnerability discovered by an autonomous AI security tool called Xint Code.Redis is one of the most widely deployed databases in cloud computing, meaning many organizations may be affected even if they don’t realize Redis is running somewhere in their environment.The vulnerability stems from a use-after-free bug in Redis blocked-client handling logic introduced in Redis 7.2.⸻⚠️ Why This MattersAn authenticated attacker can exploit the vulnerability to achieve arbitrary operating system command execution on the Redis host.Potential impacts include:Remote code execution (RCE)Server compromiseLateral movementPrivilege escalation through exploit chainingWhile no active exploitation has been reported, public exploit details are now available.The bigger story is that AI found a serious vulnerability that human review missed for over two years.⸻🛠️ Mitigation Steps for CVE-2026-23479✅ Patch Redis ImmediatelyUpgrade to a fixed version:Redis 7.2.14Redis 7.4.9Redis 8.2.6Redis 8.4.3Redis 8.6.3or later versions as available.✅ Restrict Redis AccessLimit authenticated usersRemove unnecessary privilegesRestrict network exposureBlock direct internet access whenever possible✅ Review Authentication ControlsBecause exploitation requires authentication:Rotate credentialsReview user permissionsImplement least-privilege access✅ Monitor for Suspicious ActivityWatch for:Unexpected Redis commandsUnusual process creationUnauthorized shell executionPrivilege escalation attempts⸻🤖 The Real Story: AI vs. AI SecurityThe vulnerability itself is serious.The larger trend may be even more important.AI tools are now:Finding vulnerabilities fasterAnalyzing source code at scaleDiscovering flaws humans missThis means organizations must rethink patch management.Traditional “Patch Tuesday” approaches may no longer be sufficient.John and Lou discuss a future where:AI finds vulnerabilitiesAI develops fixesAI monitors infrastructureAI defends against AI-driven attacks⸻🔧 Enterprise RecommendationsAssign dedicated personnel to vulnerability monitoringDeploy automated alerting systemsUse AI-assisted security analysisReview hot-patching capabilitiesReevaluate maintenance window policiesThe era of weekly patch cycles may be ending.⸻💬 Listener FeedbackThanks to listener Alex for pointing out that the Microsoft Exchange vulnerability discussed in a previous episode remains unpatched.It’s a reminder that even when vulnerabilities are publicly disclosed, vendor response times can vary dramatically.⸻📣 Wrap UpAre your current patch management processes fast enough to keep up with AI-driven vulnerability discovery?📧 [email protected]🐦 @itsparccast on X⸻🔗 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
153
AI Needs Managers Now? | Smart Glasses Return & Mythos Finds 23,000 Bugs
In this episode of IT SPARC Cast - News Bytes, John & Lou explore how AI is rapidly evolving from simple assistants into autonomous workers that require management, oversight, and governance. Google introduces an open-source Agent Executor framework designed to supervise AI agents in production environments, while smart glasses may finally be approaching the point where they become practical for mainstream use.The episode also dives into the growing impact of AI-driven cybersecurity. Anthropic’s Mythos platform identified more than 23,000 potential vulnerabilities across open-source projects, raising important questions about how the industry will keep pace with validation, patching, and deployment. If you work in enterprise IT, cloud, cybersecurity, or AI, this episode offers a glimpse into where the next wave of operational challenges is headed. ⸻📌 Show Notes00:00 – IntroThis week’s episode covers AI agent management, the future of smart glasses, and the growing challenge of handling AI-discovered software vulnerabilities.⸻📰 News Bytes00:48 – Google Adds Open Source Agent ExecutorGoogle announced an open-source Agent Executor framework designed to help organizations safely run AI agents in production. The platform provides orchestration, task management, state tracking, auditing, and recovery workflows for fleets of AI agents.John & Lou compare the concept to middle management for AI—providing oversight, accountability, and guardrails that help prevent autonomous systems from making costly mistakes.Key takeaways:AI agents require supervision and governanceEnterprises need auditing and recovery mechanismsAgent fleets will require dedicated management infrastructurehttps://www.computerworld.com/article/4176809/google-adds-open-source-agent-executor-to-support-ai-agents-in-production-3.html⸻07:19 – Smart Glasses: Are They Getting Real?XREAL and Google continue pushing augmented reality forward with new Android XR initiatives and lightweight smart glasses designs. Improvements in AI assistants, displays, optics, and battery technology are bringing wearable computing closer to practical adoption.The discussion explores whether smart glasses are finally approaching an inflection point where they move beyond niche devices and become a true successor—or companion—to smartphones.Key considerations:AI assistants significantly increase utilityWearables face challenges around battery life and social acceptanceAR development platforms may become the next major ecosystem battlehttps://techcrunch.com/2026/05/24/xreal-googles-smartglasses-partner-thinks-it-has-finally-mastered-this-notoriously-tricky-industry/⸻14:31 – Mythos Detected 23,000 Potential VulnerabilitiesAnthropic revealed that its Mythos platform identified more than 23,000 potential vulnerabilities across approximately 1,000 open-source projects during limited testing. Over 1,700 findings were independently validated, including more than 1,000 high or critical severity issues.While AI is dramatically accelerating vulnerability discovery, the larger challenge may now be validation, patching, distribution, and deployment. Finding the bugs is no longer the bottleneck.Key takeaways:AI is transforming vulnerability researchPatching and deployment remain major obstaclesOpen-source communities may need new funding and workflow modelshttps://www.securityweek.com/anthropic-mythos-detected-23000-potential-vulnerabilities-across-1000-oss-projects/⸻🔚 20:49 – Wrap UpAs AI systems become more autonomous, organizations must rethink how they manage software development, cybersecurity, and operational governance. The future may belong not just to AI tools, but to the frameworks that supervise them safely and effectively.⸻🌐 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
152
Underminr Explained: The CDN Attack That Hides Malware Behind Trusted Traffic
A newly disclosed attack technique called “Underminr” allows malicious traffic to hide behind trusted CDN infrastructure, potentially bypassing DNS filtering, zero trust policies, and traditional security controls. In this episode of IT SPARC Cast – CVE of the Week, John and Lou explain how attackers abuse TLS routing and CDN tenant behavior to disguise command-and-control traffic as legitimate web traffic — and why AI-driven behavioral analysis may become the only effective defense.⸻📄 Show Notes🚨 CVE of the Week: UnderminrThis week’s episode focuses on Underminr, a stealthy attack technique that allows malicious traffic to hide behind trusted CDN infrastructure.The attack abuses:CDN tenant routingTLS SNI mismatchesHTTP host header manipulationDNS resolution inconsistenciesThe result:Malicious command-and-control traffic can appear to originate from trusted services such as CDN providers.⸻⚠️ Why This Is DangerousTraditional security controls often trust:Well-known domainsCDN trafficTLS-encrypted connectionsUnderminr exploits that trust model.Potential impacts include:Bypassing DNS filteringEvading protective DNS systemsHiding malware communicationsConcealing data exfiltrationCircumventing outbound filtering policiesBecause CDNs naturally move large volumes of traffic, malicious transfers can blend into legitimate content distribution activity.⸻🛠️ Mitigation Steps for Underminr✅ Validate TLS and Routing ConsistencyVerify that:DNS resolutionTLS SNI fieldsHTTP host headersCDN routing destinations…all match expected destinations.This is one of the most important defenses.⸻✅ Implement Deep Packet Inspection (DPI)Traditional DNS filtering alone is no longer enough.Use:TLS inspectionDeep packet inspectionProxy inspectionBehavioral traffic analysisto identify suspicious traffic patterns.⸻✅ Deploy Behavioral Network AnalyticsMonitor for:Unusual CDN usageUnexpected outbound transfersOff-hours synchronization activityAbnormal traffic pathsExample:A large CDN upload occurring at 3AM outside normal workflows should trigger investigation.⸻✅ Enforce Zero Trust Outbound PoliciesInstead of trusting domains:Validate applications and processesRestrict outbound communication permissionsUse application-aware filteringLimit which services can communicate externally⸻✅ Improve CDN Isolation PoliciesCDN providers should:Tighten tenant routing validationPrevent cross-tenant hostname abuseRestrict mismatched origin routing⸻🤖 AI and the Future of Network SecurityJohn and Lou discuss how AI-assisted security analytics may become essential against attacks like Underminr.Traditional rule-based systems struggle with:Correlating multiple protocol layersDetecting subtle routing anomaliesIdentifying behavioral inconsistencies in real timeAI-driven network analysis could help identify:Suspicious traffic pathsOut-of-sequence synchronizationUnusual CDN behaviorHidden command-and-control channels⸻💬 Listener FeedbackThanks to listeners Ahmed and Dennis for the feedback on last week’s Exchange vulnerability episode.One major takeaway:Organizations continuing to run on-prem email infrastructure are increasingly carrying significant operational and security risk.⸻📣 Wrap UpDo you think traditional network trust models are finally breaking down, or can modern AI-driven security tools adapt quickly enough?📧 [email protected]🐦 @itsparccast on X⸻🔗 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
151
AI Data Centers, Vibe-Coded Android Apps, and the Coming Security Flood
In this episode of IT SPARC Cast - News Bytes, John & Lou break down the growing AI infrastructure arms race, Google’s push toward AI-generated mobile apps, and Cloudflare’s latest findings on frontier AI security models. As AI compute demand explodes, the conversation explores how power generation, cloud scaling, and automation are rapidly reshaping enterprise IT.They also dive into Google’s new AI Studio tools that let users build Android apps in minutes and discuss how AI-driven vulnerability research is changing software security forever. From multi-agent bug hunting systems to the future of software development itself, this episode looks at how AI is transforming both how software is built—and how it’s secured.⸻📌 Show Notes00:00 – Intro⸻📰 News Bytes00:49 – xAI Power, Anthropic WorkloadsAnthropic signed a massive compute deal with SpaceX/xAI worth potentially tens of billions of dollars, highlighting how compute capacity has become the primary bottleneck in AI growth.The discussion explores the rise of “Neo Cloud” providers, AI-driven data center expansion, and the enormous power requirements driving demand for natural gas, nuclear energy, and eventually orbital data centers.Key takeaways:AI revenue is increasingly tied directly to compute availabilityData center power generation is becoming a strategic industrySpaceX and xAI are positioning themselves as major AI infrastructure providershttps://techcrunch.com/2026/05/20/anthropic-will-pay-xai-1-25-billion-per-month-for-compute/https://techcrunch.com/2026/05/20/musks-xai-is-being-sued-over-its-data-center-generators-now-its-buying-2-8b-more/⸻06:48 – Google’s AI Studio Lets Anyone Build Android AppsGoogle announced major upgrades to AI Studio that allow users to generate Android apps directly from text prompts using AI.The tools support hardware integrations like GPS, Bluetooth, and NFC while enabling users to preview and export apps quickly. John & Lou discuss how this may shift app development away from traditional coding and toward personalized automation and workflow control.Key considerations:AI-assisted development dramatically lowers barriers to entryApp development may become more task-oriented than platform-orientedSecurity and app validation remain major concernshttps://techcrunch.com/2026/05/19/googles-ai-studio-now-lets-anyone-build-android-apps-in-minutes/⸻12:11 – Cloudflare Reports on Frontier AI Models & SecurityCloudflare published findings from Project Glasswing and Anthropic’s Mythos model, revealing major advances in AI-driven vulnerability discovery.The report shows how specialized AI models can now identify exploit chains, generate proofs of concept, and assist with patch validation far beyond traditional coding agents. However, false positives, prompt bypasses, and scaling issues remain significant challenges.Key takeaways:AI vulnerability hunting is advancing rapidlyGeneric coding agents struggle with deep security analysisSoftware architecture and patching workflows must evolve for the AI erahttps://blog.cloudflare.com/cyber-frontier-models/⸻📬 25:16 – Mail BagListener feedback highlights growing excitement around the show’s AI coverage and sparks additional discussion around the future of security operations, AI-assisted coding, and enterprise infrastructure strategy.🔚 26:02 – Wrap UpAs AI accelerates software development and vulnerability discovery simultaneously, enterprise IT teams will need stronger architecture, better automation, and tighter security discipline than ever before. The future isn’t just AI-powered—it’s AI-amplified.⸻🌐 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
150
Microsoft Exchange Zero-Day: No Patch, Active Exploitation, Major Risk
A newly disclosed Microsoft Exchange vulnerability is actively being exploited in the wild, and there’s still no permanent patch available. In this episode of IT SPARC Cast – CVE of the Week, John and Lou break down CVE-2026-42897, explain how attackers can exploit Outlook Web Access through malicious emails, and discuss why temporary mitigations may not be enough for organizations still running on-prem Exchange.⸻📄 Show Notes🚨 CVE of the Week: Microsoft Exchange / Outlook Web Access ExploitThis week’s episode focuses on CVE-2026-42897, a high-severity vulnerability affecting:Microsoft Exchange Server 2016Microsoft Exchange Server 2019Exchange Subscription EditionThe vulnerability is a cross-site scripting (XSS) and spoofing flaw impacting Outlook Web Access (OWA).⸻⚠️ How the Attack WorksAttackers send specially crafted emails that execute malicious JavaScript when opened through Outlook Web Access.Potential impacts include:Session hijackingBrowser-based code executionExchange session theftSpoofing attacksThe vulnerability is already being actively exploited in the wild.⸻🌐 Who Is Affected?This impacts on-prem Exchange deployments only.Cloud-hosted Exchange Online environments are not currently believed to be affected.Organizations most at risk include:Enterprises with legacy Exchange infrastructureOrganizations avoiding cloud email hostingRemote-access-heavy environments relying on OWA⸻🛠️ Mitigation Steps for CVE-2026-42897✅ 1️⃣ Apply Microsoft Emergency MitigationsMicrosoft has released temporary protections through:Exchange Emergency Mitigation Service (EEMS)URL rewrite mitigation rulesApply these immediately.⚠️ Important:These mitigations are pattern-based and may not block future modified exploits.⸻✅ 2️⃣ Consider Disabling Outlook Web Access (OWA)If operationally possible:Disable OWA temporarilyRequire users to use the Outlook desktop client insteadThis significantly reduces exposure.⸻✅ 3️⃣ Prepare for Operational Side EffectsKnown mitigation side effects include:Calendar printing failuresInline image rendering problemsIncreased help desk ticketsOrganizations should proactively communicate these issues to users.⸻✅ 4️⃣ Patch Immediately When AvailableAt recording time:No permanent patch exists yetApply the official patch immediately once releasedThis is not a vulnerability where delayed patching is safe.⸻🔒 Security TakeawaysThis vulnerability reinforces several growing cybersecurity realities:On-prem infrastructure carries operational security burdensBrowser-based attacks remain highly effectiveTemporary mitigations are not substitutes for permanent fixesJohn and Lou also discuss how attackers increasingly chain vulnerabilities together and how AI-assisted exploit development is accelerating the speed of attacks.⸻💬 Listener FeedbackThanks to listener “ZZZZ” on YouTube for pushing back on last week’s discussion around passwords stored in clear text memory.The discussion highlights an important point:Many vulnerabilities are low risk for average usersBut become extremely dangerous for high-value targets such as executives and organizations with sensitive data⸻📣 Wrap UpAre organizations moving away from on-prem Exchange fast enough, or are these vulnerabilities making the case for cloud migration even stronger?📧 [email protected]🐦 @itsparccast on X⸻🔗 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
149
OpenAI’s Daybreak, Google’s AI Laptop Push, and Cisco’s AI Fingerprinting Tool
In this episode of IT SPARC Cast - News Bytes, John & Lou break down the growing intersection of AI, cybersecurity, and enterprise infrastructure. OpenAI enters the AI security space with Daybreak, Google unveils a new AI-native laptop platform called Googlebook, and Cisco releases an open source tool designed to trace the origins of AI models.The discussion focuses on how AI is rapidly moving from experimentation into operational reality. From AI-assisted security operations to AI-centric hardware and supply chain validation for large language models, this episode explores the practical implications these technologies will have on enterprise IT teams over the next few years.⸻📌 Show Notes00:00 – IntroThis week’s episode covers AI-powered cybersecurity, Google’s next-generation laptop strategy, and growing concerns around AI model provenance and trust.⸻📰 News Bytes00:44 – OpenAI Launches DaybreakOpenAI launched Daybreak, an AI-powered vulnerability detection and patch validation platform designed to help overwhelmed security teams handle rising alert volumes and faster-moving threats.The system uses AI agents to analyze alerts, correlate activity, assist with incident response, and reduce analyst fatigue. John & Lou discuss how AI works best as a force multiplier for security teams—not as a replacement for experienced analysts.Key takeaways:AI excels at repetitive security analysis tasksHuman oversight is still criticalOver-automation increases operational riskhttps://thehackernews.com/2026/05/openai-launches-daybreak-for-ai-powered.html⸻06:39 – Google Unveils GooglebookGoogle announced “Googlebook,” a new category of AI-native laptops deeply integrated with Gemini AI and built on a combined Android/Chrome OS platform.The devices aim to compete directly with AI-focused Windows PCs and MacBooks while emphasizing web-first workflows, Android integration, and AI-enhanced interfaces like the new “Magic Pointer.”Key considerations:Enterprise apps are increasingly web-basedOS dependency continues to declineAI-native devices may reshape endpoint strategyhttps://techcrunch.com/2026/05/12/google-unveils-googlebooks-a-new-line-of-ai-native-laptops/⸻13:04 – Cisco Releases Open Source AI Provenance ToolCisco released an open source tool designed to determine the origins and lineage of AI models. The tool can compare models directly or scan against known fingerprints to identify derivative training sources.The goal is improving AI supply chain security by detecting repackaged models, inherited vulnerabilities, licensing issues, and potentially poisoned AI systems.Key implications:AI supply chain security is becoming criticalOrganizations need visibility into model originsProvenance tracking may become standard practicehttps://github.com/cisco-ai-defense/model-provenance-kithttps://blogs.cisco.com/ai/model-provenance-kit⸻📬 17:43 – Mail BagListener feedback revisits Microsoft Edge storing passwords in plaintext memory and sparks a broader discussion around practical enterprise security decisions, browser trust, and balancing usability against risk.⸻🔚 19:35 – Wrap UpAs AI rapidly expands into security, infrastructure, and endpoint computing, organizations must balance innovation with governance and operational discipline. The future of enterprise IT will depend not just on adopting AI—but understanding and securing it properly.⸻🌐 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
148
Dirty Frag Explained: Critical Linux Kernel Exploit Hits VPNs and Servers
A dangerous Linux kernel privilege escalation exploit called “Dirty Frag” is putting enterprise systems, VPN infrastructure, and Linux-based devices at risk. In this episode of IT SPARC Cast – CVE of the Week, John and Lou break down CVE-2026-43284 and CVE-2026-43500, explain why exploit chaining makes this vulnerability especially dangerous, and discuss how AI-driven vulnerability discovery is accelerating faster than patching can keep up.⸻📄 Show Notes🚨 CVE of the Week: Dirty Frag Linux Kernel ExploitThis week’s episode covers “Dirty Frag,” a Linux kernel privilege escalation vulnerability chain involving:CVE-2026-43284CVE-2026-43500The exploit abuses flaws in Linux kernel memory fragment handling tied to:IPsec ESP processingRxRPC subsystemsAttackers can escalate from a local account to full root access.⸻⚠️ Why This MattersDirty Frag becomes especially dangerous when combined with other vulnerabilities.Example attack chain:Remote exploit gains limited accessDirty Frag escalates privileges to rootFull server compromise followsThe exploit is considered more reliable than earlier “Dirty Pipe”-style attacks because it does not depend on race conditions.Affected distributions include:UbuntuDebianRHEL / Rocky / AlmaLinuxFedoraCentOS StreamPop!_OSSUSE / OpenSUSE⸻🛠️ Mitigation Steps✅ Patch ImmediatelyInstall updated kernels as soon as patches become available.At recording time:AlmaLinux and Fedora patches are availablePop!_OS has patched kernelsRed Hat patches are rolling outUbuntu and Debian fixes are still uneven✅ Temporary MitigationIf patches are unavailable, disable:esp4esp6rxrpc⚠️ Warning:Disabling ESP modules may break:IPsec VPN tunnelsStrongSwanLibreSwanOpenSwan✅ Additional ProtectionsRestrict local shell/SSH accessEnforce least privilegeUse Zero Trust segmentationApply protocol and port allow listsMonitor for exploit chaining behavior⸻🤖 AI and the Security Arms RaceJohn and Lou discuss how AI is dramatically increasing the rate of vulnerability discovery.The concern:AI can discover vulnerabilities faster than humans can patch themLinux and embedded systems are everywhereIoT devices often remain unpatched for yearsThe future of cybersecurity will require:AI-assisted threat detectionAI-driven patch analysisFaster automated response systems⸻💬 Listener FeedbackThanks to listener OG-ISP for the callback to the classic joke that Apache was named “A Patchy Server.”And despite vulnerabilities, Apache remains one of the most trusted web server platforms in enterprise IT.⸻📣 Wrap UpDo you think Linux vendors can keep up with the growing flood of AI-assisted vulnerability discovery?📧 [email protected]🐦 @itsparccast on X⸻🔗 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
147
Plaintext Passwords, Rogue AI Coders, and Why Developers Aren’t Dead Yet
In this episode of IT SPARC Cast - News Bytes, John & Lou break down a series of stories showing both the promise and chaos of AI-driven development. From Microsoft Edge storing passwords in plaintext memory to AI coding agents deleting production databases, the episode highlights how security and operational discipline still matter more than hype.They also tackle growing claims that AI will eliminate software developers, explaining why the reality is far more nuanced. AI is dramatically increasing productivity, but experienced engineers, architects, and security-minded professionals are becoming even more important—not less. If you work in enterprise IT, cloud, development, or cybersecurity, this episode is packed with practical insights on where the industry is actually headed.⸻📌 Show Notes00:00 – IntroThis week’s episode covers security risks, AI coding failures, and the future of software development in an increasingly AI-assisted world.⸻📰 News Bytes00:46 – Microsoft Edge Stores Passwords in PlaintextA security researcher discovered Microsoft Edge stores all saved passwords in plaintext within system memory during active sessions. While Microsoft says this behavior is “by design” for usability and performance, it dramatically increases exposure if a system becomes compromised.The discussion dives into chained attacks, memory scraping, cache vulnerabilities, and even advanced RF-based attacks like Van Eck Phreaking.Key takeaways:Cached credentials dramatically expand attack surfacesMemory security still matters in modern systemsConvenience-driven design decisions can create major riskhttps://cybernews.com/security/microsoft-edge-loads-cleartext-passwords-to-memory/⸻08:43 – Cursor Deleted a Company’s Entire Production DatabaseAn AI coding agent powered by Claude accidentally deleted a company’s production database and backups in seconds after using improperly scoped permissions. The incident highlights the dangers of giving AI systems excessive access without proper safeguards.John & Lou argue the real failure wasn’t the AI—it was poor architecture, weak separation between staging and production, and inadequate backup strategy.Key takeaways:Follow the 3-2-1 backup ruleAI agents should be treated like junior employeesHuman oversight and scoped permissions remain criticalhttps://www.livescience.com/technology/artificial-intelligence/i-violated-every-principle-i-was-given-ai-agent-deletes-companys-entire-database-in-9-seconds-then-confesses⸻13:40 – Claims That AI Will Eliminate Developers Are OverblownDespite widespread fear around AI replacing programmers, researchers and industry experts are increasingly finding that AI works best as a productivity multiplier rather than a replacement.The role of developers is shifting away from repetitive coding toward architecture, oversight, integration, and system design. The bigger challenge may actually be education—how new developers gain experience when AI handles much of the grunt work.Key considerations:AI boosts skilled developers rather than replacing themArchitecture and domain expertise are becoming more valuableUniversities must adapt curricula for AI-assisted developmenthttps://www.zdnet.com/article/rumors-of-the-software-developers-ai-induced-demise-are-greatly-exaggerated/⸻🔚 22:07 – Wrap UpThe episode closes with a broader discussion on balancing AI acceleration with real-world operational discipline. As AI tools become more powerful, the organizations that succeed will be the ones that pair automation with strong security, architecture, and human oversight.⸻🌐 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
146
Amazon’s $100B AI Play, SpaceX’s Coding Bet, and Google’s New TPUs
In this episode of IT SPARC Cast - News Bytes, John & Lou break down major shifts happening across AI, cloud, and enterprise IT. From massive infrastructure deals to emerging AI development strategies, the conversation focuses on what’s really driving the industry—not just the headlines.They explore Amazon’s deepening relationship with Anthropic, SpaceX’s move into AI-powered coding tools, Apple’s leadership transition, and Google’s latest push to compete in AI hardware. If you’re in enterprise IT, cloud, or AI, this episode delivers practical insight into where the market is heading and what it means for you.⸻📌 Show Notes00:00 – Intro⸻📰 News Bytes00:44 – Amazon to Invest up to $25B in AnthropicAmazon is making a headline-grabbing investment in Anthropic—up to $25B—but the real story is the $100B cloud commitment tied to it. This isn’t just funding; it’s a strategic alignment around compute.The deal effectively locks Anthropic into AWS infrastructure while giving Amazon a massive AI revenue pipeline. Rather than a traditional investment, this looks more like a large-scale pricing and positioning play designed to boost both companies’ valuations and market presence.This signals deeper consolidation in the AI ecosystem.https://www.usnews.com/news/top-news/articles/2026-04-20/anthropic-to-spend-over-100-billion-on-amazons-cloud-technology⸻06:23 – SpaceX Buying Cursor?SpaceX is exploring a partnership—or potential acquisition—of AI coding platform Cursor, signaling a deeper push into AI-driven development. The goal appears to be enabling faster software creation for real-world systems like rockets, robotics, and autonomous vehicles.Unlike other AI players focused on chatbots, SpaceX is targeting physical-world applications, where coding tools directly impact hardware behavior. Access to massive compute resources could accelerate development dramatically.The big question: what’s the true “secret sauce” that justifies these valuations?https://www.reuters.com/technology/spacex-says-it-has-option-acquire-startup-cursor-60-billion-2026-04-21/⸻11:11 – Tim Cook to Step Down as Apple CEOAfter 15 years as CEO, Tim Cook is stepping down, transitioning leadership to John Ternus. Cook’s tenure focused on operational excellence and massive growth, taking Apple to unprecedented scale.Now the focus shifts toward innovation—especially in how hardware integrates with AI. Apple’s strategy has always centered on delivering technology through intuitive, high-quality devices, and this leadership change may signal a renewed push in that direction.This marks a transition from optimization to reinvention.https://www.marketwatch.com/story/tim-cook-to-step-down-after-15-years-at-the-helm-of-apple-68d0e126⸻18:15 – Google Unveils New AI ChipsGoogle is doubling down on AI infrastructure with new chips designed specifically for training and inference. By separating these workloads, Google aims to improve efficiency and reduce power consumption at scale.This reflects a broader industry shift: AI is no longer just about performance—it’s about energy efficiency and cost per workload. As AI demand grows, power constraints are becoming a defining factor.The race for efficient AI compute is accelerating fast.https://www.cnbc.com/2026/04/22/google-launches-training-and-inference-tpus-in-latest-shot-at-nvidia.html⸻📬 22:55 – Mail Bag🔚 26:29 – Wrap Up⸻🌐 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
145
NIST Is Falling Behind? CVE Overload, AI, and the Future of Vulnerability Tracking
NIST is changing how it handles CVEs after a massive surge in vulnerability submissions—and it could reshape how enterprise IT teams manage risk. In this episode of IT SPARC Cast – CVE of the Week, John and Lou break down what this shift means, the risks of incomplete vulnerability data, and how AI-driven attacks are forcing a new security reality.⸻📄 Show Notes🚨 CVE of the Week (Special Edition): NIST Scaling Back CVE EnrichmentThis week, instead of a single CVE, we’re covering a major shift in how vulnerabilities are tracked and analyzed.The National Institute of Standards and Technology (NIST) is scaling back its enrichment of CVEs due to a massive surge in vulnerability submissions—up 263% since 2020.⸻🔍 What’s ChangingNIST will no longer fully analyze every CVE submitted to the National Vulnerability Database (NVD).Instead, they will prioritize:Known exploited vulnerabilitiesCritical/high-impact vulnerabilitiesSoftware used by government systemsLower-priority CVEs will still be listed—but:❌ No CVSS score❌ Limited or no analysis❌ Minimal context on impact or exploitability⸻⚠️ Why This MattersCVE “enrichment” is what makes vulnerability data actionable. Without it, security teams lose:Severity scoring (CVSS)Attack vectors and exploit detailsAffected systems and productsContext for prioritization👉 In short: more noise, less signal⸻🔗 The Hidden Risk: Chained ExploitsThis shift introduces a major blind spot:Lower-severity vulnerabilities (CVSS 6–7) may not be enrichedAttackers can chain multiple low-severity flawsResult: full compromise equivalent to a critical vulnerability👉 Two “7s” can still equal a “10” in real-world attacks⸻🤖 AI Is Driving the ExplosionThe root cause is scale—and AI is accelerating it:Automated tools can discover vulnerabilities at massive scaleAttackers don’t need advanced intelligence—just volumeThousands of bots probing systems = exponential growth in CVEsThis is pushing NIST—and the entire vulnerability ecosystem—to its limits.⸻🧠 What This Means for Enterprise ITYou can no longer rely solely on NIST/NVD as your source of truth.New reality:CVE databases will be incompletePrioritization gaps will increaseAttackers will target overlooked vulnerabilities⸻🛠️ Recommended StrategyImmediate Adjustments:Monitor third-party threat intelligence sourcesInvest in security subscriptions (threat intel platforms)Track research from vendors (e.g., Unit 42, etc.)Operational Changes:Move beyond “patch Tuesday” mentalityImplement continuous vulnerability assessmentUse AI/automation for:Threat detectionPrioritizationPatch validation⸻⚖️ Auto-Patching: Risk vs RewardListener feedback raised a key point:Auto-updates can introduce supply chain riskBut delaying patches increases exposure to exploits👉 The answer is not binary:Enable auto-updates where safeMaintain robust backup and rollback strategiesAssess risk per system—not globally⸻🔄 Key TakeawayWe are entering a transitional phase in cybersecurity:Vulnerability volume is explodingTraditional scoring systems are breaking downAI will eventually help defend—but not yet👉 Until then: speed, visibility, and adaptability are your best defenses⸻💬 Listener FeedbackThanks to listener Miruxa for highlighting the risks of auto-updating in light of recent supply chain attacks.Key takeaway:You’re exposed if you update too fastYou’re exposed if you update too slowSecurity now requires constant assessment, not fixed policies⸻📣 Wrap UpWhat do you think—Is NIST making the right call, or does this create more risk than it solves?📧 Email: [email protected]🐦 X: @itsparccast💬 YouTube: Drop a comment—we read them all⸻🔗 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
144
Amazon’s AI Power Play, Copilot Goes Agentic, and Netgear Wins Big
Amazon is going all-in on AI—and taking aim at everyone in the process.In this episode of IT SPARC Cast – News Bytes, we break down:•Amazon’s massive AI infrastructure push and chip strategy•Microsoft turning Copilot into an autonomous agent•Netgear’s key win in the evolving router security landscapeIf you’re in enterprise IT, cloud, or security, this episode covers the real shifts happening right now—not just the headlines.📝 Episode Description 00:00 – Intro📰 News Bytes00:44 – Amazon CEO Takes Aim at Nvidia, Intel, Starlink & MoreAmazon is making a massive AI bet, with Andy Jassy justifying huge infrastructure investments and signaling a strategy to control more of the stack. From custom AI chips (Trainium) to satellite internet and ARM-based compute, Amazon is positioning itself as the “picks and shovels” provider for the AI gold rush.Rather than relying on vendors, Amazon is building vertically to reduce dependency and maximize margins—mirroring moves from other major players.Key takeaways:•AI revenue is directly tied to available compute•Hyperscalers are racing to own infrastructure end-to-end•Amazon’s strength is selling compute—not just AI modelsThis isn’t speculation—it’s a long-term land grab for AI dominance.https://techcrunch.com/2026/04/09/amazon-ceo-takes-aim-at-nvidia-intel-starlink-more-in-annual-shareholder-letter/⸻07:53 – Microsoft is Developing Copilot Features Inspired by OpenClawMicrosoft is evolving Copilot from a reactive assistant into an agentic system capable of acting on behalf of users. Inspired by OpenClaw-style agents, these new capabilities include task automation, proactive recommendations, and role-specific assistants.The big shift: AI isn’t just answering questions—it’s doing the work.With deep OS integration, Microsoft has a unique advantage in embedding these agents directly into enterprise workflows. However, this also raises the stakes around security and control.Key implications:•Agentic AI adoption is accelerating rapidly across enterprises•Model Context Protocol (MCP) will be critical for integrations•Role-based permissions may help contain riskThis is a foundational shift toward autonomous enterprise systems.https://www.computerworld.com/article/4158553/microsoft-is-developing-copilot-features-inspired-by-openclaw.html⸻14:20 – Netgear Scores First Exemption From Router RestrictionsNetgear has secured the first exemption allowing continued sale of new router products under new security-driven certification rules. While temporary and conditional, this signals how vendors will navigate compliance moving forward.The exemption suggests trust in Netgear’s processes and willingness to meet evolving standards, while also highlighting broader industry pressure around consumer networking security.Key considerations:•Existing devices remain unaffected—for now•More vendors are expected to follow with exemptions•Security scrutiny on consumer routers is increasingThis is an early indicator of how networking vendors will adapt to tighter requirements.https://www.pcmag.com/news/netgear-scores-the-first-exemption-from-the-fccs-foreign-made-router-ban⸻📬 18:34 – Mail BagListener feedback this week reinforces two ongoing themes:•AI’s impact on global labor markets•The growing complexity of data ownership in AI systemsDiscussion highlights how AI may disrupt traditional outsourcing models and why tracking data provenance inside AI systems is becoming critical.⸻🔚 23:52 – Wrap UpAs AI adoption accelerates, enterprise IT teams must balance innovation with governance—especially around automation, security, and data ownership. Listener engagement continues to shape the show, so reach out and be part of the conversation.⸻Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@JohnBarger on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
143
Open a PDF, Lose Your System: Adobe Zero-Day Exploit (CVE-2026-34621)
A dangerous Adobe Acrobat zero-day vulnerability (CVE-2026-34621) is actively being exploited—allowing attackers to compromise systems simply by getting users to open a malicious PDF. In this episode of IT SPARC Cast – CVE of the Week, John and Lou break down how it works, why it’s so dangerous, and what enterprise IT teams must do immediately.⸻📄 Show Notes🚨 CVE of the Week: Adobe Acrobat Zero-Day (CVE-2026-34621)This week’s vulnerability is about as bad—and as common—as it gets. A zero-day flaw in Adobe Acrobat Reader is actively being exploited in the wild, requiring nothing more than opening a malicious PDF to trigger a full system compromise.🔍 What Happened•CVE ID: CVE-2026-34621•Type: Zero-day (actively exploited before patch release)•Severity: CVSS 8.6 (High, but misleading in practice)•Attack Vector: Malicious PDF file•Impact: Remote Code Execution (RCE), data theftAdobe issued an emergency out-of-band patch, signaling the urgency and severity of the threat.⸻⚠️ Why This Is So DangerousThis exploit is particularly concerning because:•No user interaction required beyond opening a file•Works through phishing and email attachments•Targets one of the most widely used enterprise tools (PDF readers with ~60–75% market share)Once triggered, the vulnerability exploits a memory corruption flaw (e.g., use-after-free or buffer overflow), allowing attackers to execute arbitrary code on the system.⸻🔗 The Real Threat: Exploit ChainingOn its own, this vulnerability is severe—but in modern environments, it’s even worse:•Attackers use phishing to deliver the malicious PDF•Gain access to a user endpoint•Pivot into:•Cloud infrastructure•Container environments•Internal systems👉 This is how a “medium-high” CVSS score becomes a critical enterprise breach⸻🤖 AI and the Acceleration of AttacksThe pace of exploitation is changing:•Exploits are now being weaponized within minutes of disclosure•Attackers can deploy automated agents at scale•AI-driven reconnaissance reduces time-to-exploit dramaticallyThis creates a world where patch latency = exposure window.⸻🛠️ Mitigation & RecommendationsImmediate Actions:•✅ Patch Adobe Acrobat immediately (no delay)•🚫 Do NOT wait for standard patch cycles•📧 Treat all PDF attachments as potential attack vectorsEnterprise IT Best Practices:•Enforce auto-updates and forced patching policies•Consider network access restrictions for unpatched devices•Implement:•Zero Trust architectures•Endpoint monitoring and anomaly detection⸻🧠 Strategic Takeaways•User behavior is still the weakest link•Patch cycles must shift from scheduled → real-time response•Vendors must improve update mechanisms:•Fewer forced reboots•Better “do not interrupt” intelligenceWe are entering a phase where patching speed is a primary security control, not a maintenance task.⸻💬 Listener FeedbackThanks to listener IAPX for pointing out a technical clarification from last week:•The Docker vulnerability discussed was rooted in Moby, not Docker directly•Docker remains the primary exposure vector due to its widespread useGreat catch—and exactly the kind of feedback we appreciate.⸻📣 Wrap UpHave thoughts on this vulnerability? Are we underestimating the impact of PDF-based attacks?📧 Email: [email protected]🐦 X: @itsparccast💬 YouTube: Drop a comment—we read them all⸻🔗 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@JohnBarger on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
142
Docker Security Nightmare? CVE-2026-34040 Lets Attackers Escape Containers
A critical Docker vulnerability (CVE-2026-34040) is putting container security at risk by allowing attackers to bypass authorization controls and potentially access host systems. In this episode of IT SPARC Cast – CVE of the Week, John and Lou break down the exploit, why it matters, and what enterprise IT teams must do immediately to mitigate risk.⸻📄 Show Notes🚨 CVE of the Week: Docker API Authorization Bypass (CVE-2026-34040)This week’s CVE highlights a serious vulnerability in Docker Engine that undermines one of the core assumptions of container security: isolation.🔍 What Happened•CVE ID: CVE-2026-34040•CVSS Score: 8.8 (High)•Affected Systems: Docker Engine / Moby versions prior to 29.3.1•Root Cause: Improper handling of authorization plugin checks in Docker’s API layerThe vulnerability allows specially crafted API requests to bypass authorization controls by dropping the request body before inspection—while still executing the request.⸻⚠️ Why This MattersThis flaw enables attackers to:•Bypass container security policies•Create privileged containers•Access the host file system•Extract sensitive credentials (SSH keys, cloud keys, etc.)This effectively breaks container isolation, turning Docker from a security boundary into an attack vector.⸻🔗 The Bigger Risk: Chained AttacksWhile Docker APIs are typically not exposed publicly, this vulnerability becomes significantly more dangerous in real-world environments:•Attackers gain initial access via:•Phishing or spear phishing•Compromised endpoints•Malware or trojans•Then pivot internally to exploit Docker APIs👉 In these scenarios, the practical severity approaches 9.8–10.0, not 8.8.⸻🤖 AI-Driven Threat AmplificationModern attack frameworks—especially those leveraging AI—can:•Automatically scan for exposed APIs•Execute chained exploits without human intervention•Scale attacks across thousands of targets simultaneouslyThis dramatically reduces the skill barrier for attackers.⸻🛠️ Mitigation & RecommendationsImmediate Actions:•✅ Upgrade Docker to version 29.3.1 or later•🔒 Restrict and lock down Docker API access•🚫 Ensure APIs are not externally exposedStrategic Recommendations:•Enable auto-updates where operationally safe•Conduct a full network audit (hosts, containers, firmware, network gear)•Patch beyond servers:•BIOS / firmware•Network infrastructure (switches, routers)•Break down silos between:•Enterprise IT security•Data center / cloud security⸻🔄 Key TakeawayContainerization is not a silver bullet for security. Misconfigurations and API exposure can turn Docker into a high-impact attack surface—especially when combined with modern, automated attack chains.⸻💬 Listener FeedbackThanks to listener PutlerLXO for correcting last week’s Axios stat:•Actual weekly downloads: 100 million, not 45 millionWe appreciate the feedback—keep it coming!⸻📣 Wrap UpHave thoughts on this vulnerability? Think it’s overblown—or even worse than we described?📧 Email: [email protected]🐦 X: @itsparccast💬 YouTube & LinkedIn: Drop a comment—we read them all⸻🔗 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
141
Are CEOs Using AI as an Excuse? | Patch Chaos & Why Sora Was Shut Down
In this episode of IT SPARC Cast – News Bytes, John Barger and Lou Schmidt break down the latest enterprise IT headlines with sharp insight and zero fluff.Are tech CEOs using AI as cover for layoffs? Are emergency patches from major vendors signaling deeper systemic risk? And what’s really behind OpenAI’s decision to shut down Sora?Plus, listener feedback sparks a deep dive into home router security and the best options for every level—from plug-and-play to prosumer setups.If you’re in enterprise IT, security, or just trying to stay ahead of the curve, this is your weekly signal through the noise.⸻📌 Show Notes00:00 – Intro•Overview of the week’s biggest enterprise IT stories•AI layoffs, patch failures, and shifting priorities in AI platforms⸻📰 News Bytes00:49 – Tech CEOs Suddenly Love Blaming AI for Mass Job Cuts•Increasing trend: layoffs attributed to “AI efficiency gains”•Reality check: cost-cutting, restructuring, and execution failures•Market dynamics:•“AI-driven efficiency” messaging can stabilize or boost stock prices•Traditional layoffs often trigger negative investor reactions•Key takeaway:•AI is becoming a narrative shield for leadership decisions•Career insight:•Job security = being a problem solver, not just a role filler•Enterprise angle:•Evaluate vendor stability when layoffs are framed as “AI transformation”https://www.bbc.com/news/articles/cde5y2x51y8o⸻07:06 – Emergency Microsoft & Oracle Patches Point to Wider Cyber Issues•Rise in out-of-band (emergency) patching•Key incidents:•Critical remote code execution vulnerability (CVSS 9.8)•Broken update causing login failures•Core issue:•Patch reliability vs. urgency tradeoff is collapsing•Enterprise implications:•Traditional patch windows are becoming obsolete•Delayed patching = increased exposure risk•New reality:•Mandatory, rapid patch deployment is now required•Strategic shift:•Move toward live patching architectures (already common in Linux/cloud)•Root causes:•Faster release cycles•Increased reliance on automation•Reduced staffing depthhttps://www.computerweekly.com/news/366640648/Emergency-Microsoft-Oracle-patches-point-to-wider-cyber-issues⸻13:28 – Why OpenAI Really Shut Down Sora•Contrary to speculation: not a collapse signal•Actual drivers:•Compute constraints•Resource prioritization•Revenue alignment•Market dynamics:•AI arms race: speed, capability, and scale•Product reality:•Video generation = extremely compute-intensive•Limited sustained user demand vs. cost•Strategic takeaway:•Focus shifting toward:•Coding tools•Agentic platforms•High-ROI capabilities•Key insight:•AI growth is currently compute-bound, not idea-boundhttps://techcrunch.com/2026/03/29/why-openai-really-shut-down-sora/⸻📬 16:54 – Mail Bag & Home Router RecommendationsListener Feedback Topics:•Router security concerns•Safer alternatives to high-risk vendorsRecommended Router Tiers:🟢 Entry-Level (Simple / Plug-and-Play)•Netgear•Strong open-source firmware support (OpenWRT, Tomato)•U.S.-based company with supply chain flexibility•High accountability and responsiveness🟡 Mid-Tier (Mesh / Larger Homes)•Eero (Amazon-owned)•Strong performance and ease of use•Consistent updates and long-term viability🔵 Prosumer / Advanced•Ubiquiti (UniFi)•Best-in-class price/performance•Full ecosystem: networking + security + cameras•No recurring cloud fees•Strong automation and patch responsiveness⸻🔚 26:54 – Wrap Up•Call for listener feedback•Engage via email, X, YouTube, or LinkedIn•Reminder to like, subscribe, and enable notifications⸻🌐 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
140
Axios Supply Chain Attack: 45M Weekly Downloads Turned Into a RAT
In this episode of IT SPARC Cast – CVE of the Week, John Barger and Lou Schmidt break down a massive supply chain attack targeting Axios, one of the most widely used JavaScript libraries in the world.Attackers compromised a maintainer account and injected malicious code into widely distributed versions, turning routine installs into a cross-platform Remote Access Trojan (RAT) deployment.This isn’t just another vulnerability — it’s a breach of trust in the open-source ecosystem that powers modern web applications.⸻📝 Show Notes A major supply chain attack has compromised Axios, a core JavaScript library used in millions of applications across web, mobile, and backend systems.In this episode of IT SPARC Cast – CVE of the Week, John Barger and Lou Schmidt explain how attackers injected malware into trusted Axios packages — impacting potentially tens of millions of environments worldwide.⸻🔎 What HappenedAxios is a widely used open-source library for making HTTP requests in:•Node.js applications•React, Angular, and Vue frontends•Mobile apps (React Native)•SaaS platforms and internal toolsWith over 45 million weekly downloads, its footprint is enormous.Attackers compromised an Axios maintainer’s NPM account and pushed malicious versions:•Axios 1.14.1•Axios 0.30.4These versions introduced a hidden dependency:•[email protected] dependency executed a post-install script that deployed a cross-platform Remote Access Trojan (RAT) targeting:•Windows•macOS•LinuxThe malware then:•Contacted a command-and-control (C2) server•Downloaded OS-specific payloads•Executed silently•Deleted itself and restored clean package files to evade detection⸻⚠ Why This Is So DangerousThis attack is particularly severe because:•It does not require direct user action beyond installing dependencies•It affects transitive dependencies (you may be using Axios without knowing it)•It operates during build/install processes (CI/CD pipelines included)•It leaves minimal forensic evidenceThis is a classic supply chain compromise — not a CVE, but arguably more dangerous.⸻🏢 Enterprise IT ImpactIf your organization:•Uses Node.js or modern JavaScript frameworks•Runs CI/CD pipelines•Builds or deploys SaaS platforms•Uses third-party APIs or SDKsYou are likely exposed.Even if you don’t directly install Axios, it may exist deep in your dependency tree.⸻🧠 Key TakeawayThis was not a flaw in code.This was a failure of trust in the supply chain.If your security model assumes dependencies are safe by default — this attack proves otherwise.⸻🔗 Source Articleshttps://thehackernews.com/2026/03/axios-supply-chain-attack-pushes-cross.htmlhttps://www.elastic.co/security-labs/axios-supply-chain-compromise-detections⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
139
Musk Builds a Chip Empire, Zuckerberg’s AI CEO, and Arm Enters the AI Chip War
In this episode of IT SPARC Cast – News Bytes, John Barger & Lou Schmidt break down three major moves reshaping the future of AI infrastructure, chip design, and enterprise automation.Elon Musk announces TeraFab, a massive new effort to bring chip fabrication back in-house for greater control over AI hardware and supply chains. Mark Zuckerberg pushes deeper into agentic AI with plans for a personal “AI CEO” to manage workflows and decision-making. And Arm signals a major strategic shift with a new AI-focused chip designed for agent-based systems—putting it in direct competition with its own ecosystem.From supply chain control and custom silicon to AI-driven leadership tools and next-generation chip architectures, this episode explores how the foundation of enterprise IT is rapidly evolving. ⸻⏱️ Show Notes00:00 – Intro📰 News Bytes00:45 – Elon Musk Announces TeraFab for AI Chips and MemoryElon Musk has announced plans for TeraFab, a massive chip fabrication initiative aimed at regaining full control over chip design and production.The strategy includes:• A prototype fabrication facility for rapid iteration• A large-scale production fab for mass manufacturing• Vertical integration to reduce dependency on external foundries• Faster time-to-market for AI-driven hardwareAs chip demand surges due to AI workloads, companies are reconsidering outsourced manufacturing models. TeraFab represents a return to end-to-end control of silicon development, which could significantly impact supply chains, pricing, and innovation speed.https://x.com/i/broadcasts/1yKAPMzlvgWxb https://en.wikipedia.org/wiki/Terafab 09:46 – Mark Zuckerberg Builds AI CEO to Help Run MetaMark Zuckerberg is developing a personal AI system capable of handling executive-level tasks—effectively functioning as a digital chief of staff or “AI CEO.”The system is designed to:• Retrieve and synthesize information across internal systems• Automate decision-support workflows• Reduce reliance on layers of management• Act as a “second brain” for operational awarenessThis reflects a broader shift toward agentic AI, where intelligent systems proactively execute tasks rather than simply responding to prompts. The discussion also raises key enterprise questions around security, portability, and ownership of personal AI agents.https://www.the-independent.com/tech/mark-zuckerberg-ai-ceo-bot-b2943792.html17:54 – Arm Unveils New AI Chip for Agentic SystemsArm has announced a new AI-focused chip architecture aimed at powering agentic AI and future AGI-style workloads.Key implications include:• A shift from IP licensing to direct chip competition• Increased competition with existing ecosystem partners• Potential acceleration of specialized AI hardware development• Growing relevance of alternative architectures like RISC-VThis move signals a major strategic pivot for Arm, potentially reshaping the competitive landscape for AI infrastructure and creating new dynamics between chip designers, manufacturers, and enterprise buyers.https://www.reuters.com/business/media-telecom/arm-unveils-new-ai-chip-expects-it-add-billions-annual-revenue-2026-03-24/ 🔁 Wrap Up25:24 – Mail BagListener feedback highlights continued interest in emerging compute models, including biological computing, and reinforces the importance of staying ahead of major infrastructure trends.27:01 – Wrap UpJohn and Lou close with thoughts on the convergence of AI, custom silicon, and agent-based workflows, emphasizing that enterprise IT leaders must prepare for a future where infrastructure, software, and decision-making are increasingly intertwined.⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
138
Router Supply Chain Risks: The Hidden Security Threat in Your Home Network
In this episode of IT SPARC Cast – CVE of the Week, John Barger and Lou Schmidt break from a single CVE to tackle a broader and increasingly critical issue: router supply chain security.From botnets built on consumer routers to concerns about firmware, silicon-level vulnerabilities, and manufacturing visibility, the conversation explores why your home or small office router may be one of the weakest links in modern cybersecurity.The hosts explain what’s changing in the router market, which vendors are most at risk, and what both consumers and enterprise IT professionals should be doing now to secure the network edge.⸻📝 Show NotesConsumer routers are no longer just simple networking devices — they are now prime targets in large-scale cyberattacks and botnet operations.In this episode of IT SPARC Cast – CVE of the Week, John Barger and Lou Schmidt break down the growing risks tied to router supply chains, firmware security, and edge network vulnerabilities.Rather than focusing on a single CVE, this discussion highlights a broader shift in how attackers are targeting home routers, small office devices, and prosumer networking gear as entry points into larger networks.⸻🔎 What’s Changing in Router SecurityRecent attack trends show:•Consumer and small-office routers are being used as launch points for larger cyberattacks•Botnets are increasingly built on unpatched or poorly secured edge devices•Attackers are leveraging routers to mask origin and evade detectionThis makes routers one of the most critical — and often overlooked — components of modern security architecture.⸻⚠ The Supply Chain ProblemOne of the biggest concerns discussed in this episode is supply chain visibility.Key risks include:•Limited insight into where hardware components are manufactured•Potential for firmware-level or silicon-level vulnerabilities•Difficulty auditing third-party manufacturing processes•Inability to fully validate device integrityEven when running trusted software (such as open-source firmware), underlying hardware risks may still exist.⸻🏢 Enterprise & Home Network ImpactThis is not just a consumer issue.Organizations must consider:•Remote employees connecting via insecure home routers•Small offices using low-cost networking equipment•IoT devices relying on consumer-grade infrastructure•Edge devices acting as entry points for lateral movementIf the edge is compromised, the rest of the network is exposed.⸻🛠 What IT Teams and Consumers Should Do•Avoid default configurations and credentials•Keep firmware updated consistently•Segment home and corporate network traffic where possible•Evaluate router vendors for security posture and supply chain transparency•Monitor for unusual traffic patterns or device behavior•Plan for longer-term shifts in router procurement and standardsThis is a long-term evolution, not a short-term panic event.⸻📊 Market Impact & Vendor LandscapeThe episode also discusses potential market shifts:•Lower-cost vendors may face increased scrutiny•Vendors with stronger supply chain transparency may benefit•Manufacturing may shift to more trusted and auditable environments•Future devices may require mandatory security features like auto-updating firmware⸻💬 Listener FeedbackListener feedback from X highlights the growing importance of Zero Trust and identity validation, especially in response to recent discussions about insider threats.The takeaway:Security is no longer just about devices — it’s about people, process, and trust models working together.⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
137
Computers Built From Living Neurons?! Inside Final Spark’s Bio-AI Future
📄 Episode DescriptionIn this episode of IT SPARC Cast – Interview, John Barger sits down with Dr. Ewelina Kurtys of Final Spark to explore one of the most futuristic ideas in computing: building computers from living neurons.Final Spark is a Swiss startup working to create biological computing systems using neurons derived from human stem cells. The goal is to develop a new form of compute that is dramatically more energy-efficient than traditional silicon—potentially by orders of magnitude.In this conversation, John and Dr. Kurtys explore how neurons are sourced, how they are interfaced with traditional systems, and what it will take to build neuron-based data centers. They also discuss the challenges of programming biological systems, the timeline for commercialization, and what enterprise IT professionals should be doing today to prepare for this emerging paradigm.This is a deep dive into the intersection of biology, AI, and infrastructure—and what could become the next major evolution of computing. ⸻⏱️ Show Notes00:00 – IntroAn introduction to Final Spark and the concept of building computing systems using living neurons as an alternative to traditional silicon-based infrastructure.⸻❓ Questions00:32 - Who Is Final Spark?01:00 - How Do You Source Your Neurons?01:43 - Neuron Quality Control02:43 - Neurons In AI Data Centers03:14 - Benefit Of Using Neurons04:19 - When Will Neuron Based Compute Be Commercially Available05:43 - Operating System Or Programming Language For Neurons06:49 - What Does A Neuron Based Data Center Look Like?07:55 - Containment And Security08:28 - Data Persistence And Memory Erasure09:10 - What Should IT Professionals Do Today To Prepare?12:04 - How Does A Start-Up Get Involved Today?12:44 - How Do You Program Neurons “Bits”? Are They Binary?14:54 - How Do You Connect Neurons To Silicon Based Compute?16:00 - Final Thoughts from Dr. Kurtys⸻https://www.finalspark.comhttps://finalspark.com/articles/⸻🔁 Wrap Up17:19 – Wrap UpJohn reflects on the interview and the long-term implications of neuron-based computing. While still early-stage, the technology represents a potential shift in how compute is delivered—driven by energy efficiency, biological processing models, and new programming paradigms.⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
136
Pokémon Trained Robots?! Stargate Canceled, Nvidia Goes to Space & SaaS Is Dying
In this episode of IT SPARC Cast – News Bytes, John Barger & Lou Schmidt break down four major stories reshaping enterprise IT, AI infrastructure, and the future of software.Millions of Pokémon Go players unknowingly helped train real-world delivery robots using billions of images. Meanwhile, OpenAI’s ambitious Stargate data center expansion hits a major setback, highlighting the challenges of scaling AI infrastructure.Nvidia pushes the frontier even further with plans for orbital AI data centers powered by its new Vera Rubin Space-1 chip system, while a growing movement suggests the “SaaS apocalypse” may be underway, driven by AI and open-source alternatives reshaping how software is built and consumed.From crowdsourced AI training to space-based compute and the future of enterprise software, this episode explores where the next wave of IT disruption is coming from. Show Notes00:00 – Intro📰 News Bytes00:45 – Pokémon Go Players Unknowingly Trained Delivery Robots With 30 Billion ImagesNiantic has leveraged years of Pokémon Go gameplay data—over 30 billion images captured by users—to build a highly accurate Visual Positioning System (VPS) capable of centimeter-level location accuracy.The discussion highlights both the brilliance of this crowdsourced data model and broader concerns around data ownership, enterprise data exposure, and unintended data usage.https://www.popsci.com/technology/pokemon-go-delivery-robots-crowdsourcing/?utm_source=chatgpt.com ⸻07:18 – OpenAI’s Massive Stargate Data Center Expansion CanceledPlans to expand a major AI data center tied to the Stargate initiative have been canceled, underscoring the complexity of building large-scale AI infrastructure.Despite the cancellation, demand for AI compute remains extremely high, with other organizations potentially stepping in to utilize available capacity—reinforcing that AI infrastructure demand still far exceeds supply.https://www.tomshardware.com/tech-industry/artificial-intelligence/openais-massive-stargate-data-center-canceled-as-firm-cant-reach-terms-with-oracle-operator-struggles-with-reliability-issues-meta-said-to-be-interested-in-snatching-excess-capacity ⸻11:06 – Nvidia Announces Vera Rubin Space-1 Chip System for Orbital AI Data CentersNvidia is pushing AI infrastructure beyond Earth with its Vera Rubin Space-1 system, designed for use in orbital data centers.While challenges remain—especially around cooling and radiation—this represents a major step toward space-based AI infrastructure as demand for compute continues to surge.https://www.cnbc.com/2026/03/16/nvidia-chips-orbital-data-centers-space-ai.html ⸻17:50 – The SaaS Apocalypse Is Open Source’s Greatest OpportunityA growing trend suggests that traditional SaaS models may be under pressure as AI dramatically lowers the cost of building custom software.The hosts highlight real-world examples of AI enabling individuals to build production-ready applications in hours, signaling a potential return to highly customized, in-house systems—powered by AI instead of large dev teams.https://hackernoon.com/the-saas-apocalypse-is-opensources-greatest-opportunity ⸻🔁 Wrap Up25:28 – Mail BagListener Tim flags an issue with a previous episode upload, helping quickly resolve a distribution problem. A reminder of how valuable engaged listeners are to maintaining quality and consistency.⸻26:52 – Wrap UpJohn and Lou close with thoughts on how rapidly the IT landscape is evolving—from AI-driven infrastructure and orbital compute to the reinvention of software delivery models—and encourage listeners to stay adaptable as these shifts accelerate.⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
135
North Korea’s Fake IT Workers: The Insider Threat Hiding in Plain Sight
In this episode of IT SPARC Cast – CVE of the Week, John Barger and Lou Schmidt break down a rapidly growing cybersecurity threat: North Korean operatives posing as remote IT workers inside enterprise environments.These actors are not just external attackers — they are getting hired, accessing corporate systems, and creating persistent insider threats that are extremely difficult to detect.The episode explores how the scheme works, why traditional security controls fail, and what enterprise IT teams must do to defend against this evolving attack vector.⸻📝 Show NotesA new cybersecurity threat is emerging that flips the traditional attack model on its head.Instead of breaking into your network, attackers are getting hired into your company.In this episode of IT SPARC Cast – CVE of the Week, John Barger and Lou Schmidt analyze the growing threat of North Korean IT worker schemes, where operatives pose as legitimate remote employees to gain direct access to enterprise systems.⸻🔎 How the Scheme WorksThreat actors:•Apply for remote IT jobs using stolen or synthetic identities•Pass interviews and onboarding processes•Gain legitimate access to corporate systems•Use that access to exfiltrate data, generate revenue, or stage future attacksThese individuals often work through:•VPN masking•Proxy networks•Identity laundering through third partiesOnce inside, they operate as trusted insiders, making detection significantly more difficult than traditional external threats.⸻⚠ Why This Is So DangerousThis is not a vulnerability in software — it’s a failure in process, identity, and trust models.Key risks include:•Direct access to internal systems and data•Ability to bypass perimeter security controls•Long-term persistence without detection•Potential for data exfiltration, espionage, or ransomware stagingUnlike typical breaches, these actors are:•Authenticated•Approved•Operating under legitimate credentials⸻🏢 Enterprise IT ImpactThis threat directly impacts:•Remote-first organizations•Companies hiring globally•Teams using contractors or third-party staffing firms•Organizations without strict identity verification processesIf your company hires remote developers, engineers, or IT staff — this is your problem.⸻🔐 Key Security TakeawaysTo mitigate this risk, organizations should:•Strengthen identity verification during hiring•Require multi-factor authentication across all systems•Monitor for unusual behavior from “trusted” accounts•Implement least-privilege access controls•Audit remote employee access regularly•Coordinate with HR on security-aware hiring practicesThis is a cross-functional problem — IT, Security, and HR must work together.⸻🔗 Source Articlehttps://www.nbcnews.com/investigations/north-korea-it-worker-scheme-nisos-fbi-rcna245025⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
134
Redux - Node.js Security Crisis, Meta’s AI Agent Network, Nvidia’s Open Agent Platform & Oracle’s Data Center Bet
Oooops. We uploaded the wrong audio. It's been fix now.In this episode of IT SPARC Cast – News Bytes, John Barger & Lou Schmidt explore four major stories shaping enterprise IT, open-source software, AI infrastructure, and the future of data centers.A new report reveals that two-thirds of Node.js installations are running outdated versions, creating major security and operational risks across modern software stacks. Meanwhile, Meta hires the creators of Moltbook, a platform designed as a social network for AI agents to communicate and collaborate.Nvidia enters the agentic AI race with plans for an open-source enterprise AI agent platform, while Oracle’s massive investments in AI data centers spark debate about whether the industry is heading toward an infrastructure bubble.From open-source sustainability to AI infrastructure strategy, this episode breaks down what these developments mean for enterprise IT leaders, developers, and technology investors. Show Notes00:00 – Intro📰 News Bytes00:43 – Two Thirds of Node.js Installations Are OutdatedA new report from the OpenJS Foundation reveals that roughly two-thirds of Node.js deployments are running outdated or end-of-life versions, creating serious security and stability concerns across modern applications.To address this, the Node.js LTS Upgrade and Modernization Program is connecting enterprises with trusted service providers audit, plan, and modernize their deployments.The initiative also helps fund open-source development by directing a portion of service revenue back to the OpenJS Foundation.https://openjsf.org/blog/nodejs-lts-upgrade-program04:59 – Meta Hires the Duo Behind MoltbookMeta has hired the creators of Moltbook, a platform designed as a collaboration network where AI agents can verify identity, exchange information, and coordinate tasks.Meta’s move suggests a strategy to become the central hub for AI agent interaction, positioning the company to support a future where large numbers of autonomous software agents perform tasks for individuals and businesses.https://www.axios.com/2026/03/10/meta-facebook-moltbook-agent-social-network10:20 – Nvidia to Launch an Open-Source AI Agent PlatformNvidia is preparing to release NemoClaw, an open-source AI agent platform designed to help enterprises deploy autonomous agents capable of automating workflows, managing data, and performing complex multi-step tasks.Key aspects of the platform include:• Enterprise-focused agent orchestration• Open-source accessibility• Compatibility beyond Nvidia hardware• Integration with major enterprise software vendorsThe move signals Nvidia’s growing interest in the agentic AI ecosystem, which could dramatically increase demand for GPU-accelerated compute infrastructure.https://www.wired.com/story/nvidia-planning-ai-agent-platform-launch-open-source/⸻14:27 – Oracle Is Building Yesterday’s Data Centers With Tomorrow’s DebtOracle is investing heavily in new AI data centers, financing much of the expansion through debt as it competes with other hyperscale cloud providers.Some analysts have raised concerns that rapid advances in AI hardware could outpace the construction timelines of new facilities, potentially creating financial risk.However, the hosts point out that building data centers requires long lead times for power infrastructure, networking, and facilities, while the compute hardware itself is typically installed later in the deployment process.The discussion highlights the importance of evaluating technology investment stories critically and considering both infrastructure realities and market narratives.https://www.cnbc.com/2026/03/09/oracle-is-building-yesterdays-data-centers-with-tomorrows-debt.html⸻20:14 – Wrap up⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
133
Node.js Security Crisis, Meta’s AI Agent Network, Nvidia’s Open Agent Platform & Oracle’s Data Center Bet
In this episode of IT SPARC Cast – News Bytes, John Barger & Lou Schmidt explore four major stories shaping enterprise IT, open-source software, AI infrastructure, and the future of data centers.A new report reveals that two-thirds of Node.js installations are running outdated versions, creating major security and operational risks across modern software stacks. Meanwhile, Meta hires the creators of Moltbook, a platform designed as a social network for AI agents to communicate and collaborate.Nvidia enters the agentic AI race with plans for an open-source enterprise AI agent platform, while Oracle’s massive investments in AI data centers spark debate about whether the industry is heading toward an infrastructure bubble.From open-source sustainability to AI infrastructure strategy, this episode breaks down what these developments mean for enterprise IT leaders, developers, and technology investors. 00:00 – Intro📰 News Bytes00:43 – Two Thirds of Node.js Installations Are OutdatedA new report from the OpenJS Foundation reveals that roughly two-thirds of Node.js deployments are running outdated or end-of-life versions, creating serious security and stability concerns across modern applications.To address this, the Node.js LTS Upgrade and Modernization Program is connecting enterprises with trusted service providers that can:• Audit existing deployments• Plan phased upgrades• Modernize dependencies• Maintain production stabilityhttps://openjsf.org/blog/nodejs-lts-upgrade-program04:59 – Meta Hires the Duo Behind MoltbookMeta has hired the creators of Moltbook, a platform designed as a collaboration network where AI agents can verify identity, exchange information, and coordinate tasks.Meta’s move suggests a strategy to become the central hub for AI agent interaction, positioning the company to support a future where large numbers of autonomous software agents perform tasks for individuals and businesses.https://www.axios.com/2026/03/10/meta-facebook-moltbook-agent-social-network10:20 – Nvidia to Launch an Open-Source AI Agent PlatformNvidia is preparing to release NemoClaw, an open-source AI agent platform designed to help enterprises deploy autonomous agents capable of automating workflows, managing data, and performing complex multi-step tasks.The move signals Nvidia’s growing interest in the agentic AI ecosystem, which could dramatically increase demand for GPU-accelerated compute infrastructure.https://www.wired.com/story/nvidia-planning-ai-agent-platform-launch-open-source/14:27 – Oracle Is Building Yesterday’s Data Centers With Tomorrow’s DebtOracle is investing heavily in new AI data centers, financing much of the expansion through debt as it competes with other hyperscale cloud providers.Some analysts have raised concerns that rapid advances in AI hardware could outpace the construction timelines of new facilities, potentially creating financial risk.The discussion highlights the importance of evaluating technology investment stories critically and considering both infrastructure realities and market narratives.https://www.cnbc.com/2026/03/09/oracle-is-building-yesterdays-data-centers-with-tomorrows-debt.html🔁 Wrap Up20:14 – Mail BagListener Mel asks whether laser-based networking technologies, like the TaaraConnect system discussed in a previous episode, could help improve internet access in mountainous rural areas.While line-of-sight laser connectivity could offer high speeds, weather conditions like fog and cloud cover could require backup connections such as radio or wired infrastructure.⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
132
14,000 ASUS Routers Infected: KadNap Botnet Creates Nearly Untouchable Malware Network
A new malware campaign has compromised more than 14,000 ASUS routers, creating a resilient botnet that security researchers say is unusually difficult to dismantle.In this episode of IT SPARC Cast – CVE of the Week, John Barger and Lou Schmidt examine the KadNap router malware, which targets unpatched ASUS routers and installs a persistent backdoor designed to survive typical remediation efforts.The malware was identified by researchers at Lumen’s Black Lotus Labs, who discovered that infected routers are being used as part of a botnet capable of proxying internet traffic and enabling other malicious activities.Unlike many botnets that rely on centralized command servers, KadNap uses peer-to-peer control mechanisms similar to BitTorrent, making it significantly harder for security teams to disrupt.⸻🔎 What the KadNap Router Malware DoesThe malware exploits vulnerabilities in ASUS routers that have not been patched or configured securely.Once installed, KadNap:•Creates a persistent backdoor on the router•Survives reboots and firmware updates•Enables remote control of the router•Connects the device to a distributed botnet network•Routes malicious traffic through compromised residential internet connectionsResearchers also discovered the infected routers are being used by a fee-based proxy service called Doppelganger, allowing customers to route their internet traffic through unsuspecting victims’ home networks.⸻⚠ Why This Is DangerousBecause the traffic originates from compromised home routers, victims could unknowingly appear responsible for malicious activity such as:•Network attacks•Surveillance operations•Illegal browsing activity•Staging points for additional cyber intrusionsThis makes detection and attribution far more difficult.⸻🏢 Enterprise IT RiskThis vulnerability is not limited to home users.ASUS also produces small-business routers, meaning organizations or small offices using these devices could be exposed.IT professionals should also remember that compromised routers can provide attackers with a network foothold for lateral movement, especially if IoT or remote-user networks are poorly segmented.⸻🛠 How to Detect and Remove KadNapSecurity experts recommend checking routers for signs of compromise:Look for:•SSH enabled unexpectedly•Remote administration enabled•Unknown certificates or scheduled tasks•Suspicious entries in device logsBecause the malware attaches to configuration files, simply rebooting or restoring a configuration backup will not remove it.The proper remediation process:1.Perform a full factory reset2.Update the router firmware immediately3.Manually reconfigure the router (do not restore backups)Experts also recommend changing default internal network ranges, such as moving away from the common 192.168.1.x subnet.⸻🔗 Source Articlehttps://arstechnica.com/security/2026/03/14000-routers-are-infected-by-malware-thats-highly-resistant-to-takedowns/⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
131
Google Quantum-Proofs HTTPS, 6G Hits 1 Tbps, and Internet Over LASERS?! | IT SPARC Cast
In this episode of IT SPARC Cast – News Bytes, John Barger & Lou Schmidt break down three major developments shaping the future of networking and internet infrastructure.Google begins testing a new quantum-resistant HTTPS certificate approach designed to defend the web against future quantum computing attacks. Meanwhile, Qualcomm’s CEO declares that the coming 6G mobile revolution will be essential for AI-driven applications, promising speeds up to 1 Tbps and sub-millisecond latency. Finally, TaaraConnect introduces a 25-Gbps laser-based networking system capable of delivering fiber-like speeds between buildings without laying cable.From quantum-safe encryption to AI-driven wireless networks and laser communication links, this episode explores how the next generation of connectivity will reshape enterprise IT infrastructure, data centers, and global networks. ⸻Show Notes00:00 – Intro⸻📰 News Bytes00:51 – Google Quantum-Proofs HTTPS with Compact CertificatesGoogle and Cloudflare are testing a new method to make HTTPS certificates resistant to future quantum attacks.Instead of traditional signature chains, the system uses Merkle Tree Certificates (MTCs) to dramatically shrink quantum-safe cryptographic data from roughly 15 KB down to about 700 bytes, making it practical for real-world internet use.The experiment begins with about 1,000 TLS certificates, with standards work underway through the IETF. If successful, this approach could become a foundational component of post-quantum internet security.The big unknown: how much processing overhead these new cryptographic methods will require on older client devices.https://arstechnica.com/security/2026/02/google-is-using-clever-math-to-quantum-proof-https-certificates/ ⸻05:42 – Qualcomm CEO Says the 6G Revolution Is ComingAt Mobile World Congress, Qualcomm CEO Cristiano Amon argued that the AI era will demand 6G networks, dramatically increasing bandwidth and lowering latency.Projected 6G capabilities include:• Speeds of 100 Gbps to 1 Tbps• Sub-millisecond latency• Massive connectivity for billions of devices• AI-driven network managementThe shift toward AI-heavy cloud processing means network traffic will become even more north-south oriented, sending massive datasets between edge devices and cloud infrastructure.Early 6G trials are expected around 2028, with broader deployments beginning around 2029.https://fortune.com/2026/03/03/qualcomm-ceo-resistance-is-futile-6g-mobile-revolution-approaches/⸻13:31 – TaaraConnect Uses Lasers to Deliver 25-Gbps InternetTaaraConnect is developing a laser-based point-to-point networking system capable of delivering up to 25 Gbps over distances of about 6 miles (10 km).Instead of radio waves, the system transmits data using focused beams of light, creating fiber-like connectivity without physical cables.Key features include:• Adaptive beam alignment• Automatic power adjustments during interference• Redundant beam paths to mitigate disruptions• Low-latency high-bandwidth links between buildingsWhile heavy fog remains the primary limitation, the technology could provide a powerful alternative to expensive metro fiber deployments, particularly in dense urban environments.https://newatlas.com/telecommunications/google-taara-25gbps-internet-cities-light/⸻🔁 Wrap Up19:31 – Mail BagListener Xavier shares thoughts on the rising cost of compute power and suggests that bio-AI systems using living neurons could eventually deliver superior performance-per-watt compared to traditional silicon chips.The discussion highlights a growing industry focus on compute efficiency and power consumption as data center infrastructure scales to support AI workloads.⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
130
Android CVE-2026-21385: The IoT Devices IT Forgot to Patch
In this episode of IT SPARC Cast – CVE of the Week, John Barger and Lou Schmidt dive into a newly exploited Android vulnerability that many IT teams may be overlooking.The issue centers around CVE-2026-21385, a high-severity vulnerability affecting Qualcomm graphics components used in Android devices. While the vulnerability requires physical access, it is actively being exploited in the wild, making it a serious concern for enterprise IT environments.But the real story isn’t smartphones.The bigger risk lies in Android devices hiding in plain sight across enterprise infrastructure — including point-of-sale terminals, warehouse scanners, embedded industrial systems, and other IoT devices that often run outdated Android versions and rarely receive timely security updates.⸻🔎 CVE-2026-21385 Overview•CVE: CVE-2026-21385•Severity: High (CVSS 7.8)•Component: Qualcomm GPU graphics driver used in Android•Exploit Status: Actively exploited in the wild•Access Required: Physical access•Patch: Included in March 2026 Android Security BulletinSeveral additional vulnerabilities were also patched in the same release, including critical Android framework remote code execution flaws, increasing the urgency for organizations to deploy updates wherever possible.⸻⚠ Why Enterprise IT Should CareMost organizations focus on employee phones when thinking about Android security.However, the real exposure often comes from embedded Android devices that organizations forget about:Common examples include:•Point-of-sale payment terminals•Warehouse inventory scanners (Zebra, Honeywell, etc.)•Retail handheld devices•Industrial control panels•Vehicle infotainment systems running Android•Embedded tablets in appliances or machineryMany of these devices:•Run older Android versions•Receive delayed or nonexistent updates•Expose USB or physical ports that could enable exploitation•Are connected to internal networksIf compromised, these systems could become the first step in a lateral network attack.⸻🔐 Key Security TakeawaysOrganizations should treat this vulnerability as a wake-up call for Android-based IoT security.Recommended actions:•Inventory all Android-based devices in your environment•Identify IoT or embedded Android systems•Verify whether vendors provide security updates•Push vendors for timelines if patches are not available•Segregate IoT devices onto isolated networks•Lock down physical access and exposed USB portsIgnoring embedded Android devices can create a hidden attack path directly into corporate networks.⸻💬 Listener FeedbackFollowing last week’s episode discussing the Conduent ransomware breach, listeners shared their experiences receiving breach notification letters.One listener reported receiving a notification despite not participating in government assistance programs, while another reported being impacted through health insurance providers like Blue Cross Blue Shield.The scope of the Conduent breach appears to be continuing to expand, reinforcing the importance of monitoring vendor supply-chain exposure.⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
129
Anthropic Drops Safety Pledge, Open Source Security Crisis & OpenAI’s Compute Crunch
In this episode of IT SPARC Cast – News Bytes, John Barger and Lou Schmidt break down three major stories shaping the future of AI, enterprise infrastructure, and software security.Anthropic revises its flagship AI safety pledge amid competitive pressure, open source registries warn they lack funding for basic security protections, and OpenAI scrambles for compute power as large-scale infrastructure plans stall.From AI governance and supply chain risk to infrastructure bottlenecks and power constraints, this episode explores what enterprise IT leaders need to be watching right now.⸻⏱️ Show Notes00:00 – IntroAnthropic revises its safety framework, open source ecosystems struggle to fund security, and OpenAI races to secure compute capacity as infrastructure constraints tighten across the AI industry.⸻📰 News Bytes⸻00:44 – Anthropic Drops Flagship Safety PledgeAnthropic has revised its 2023 Responsible Scaling Policy, removing its categorical commitment to halt training if safety guarantees could not be ensured in advance. The company says the shift reflects rapid AI advancement, competitive pressures, and the need for transparency over unilateral restrictions.John and Lou unpack what this means for enterprise deployments: Is this a rollback of safety? Or a move toward operational flexibility and published risk roadmaps? The bigger issue may be how AI vendors balance guardrails, customer control, and competitive pressure.https://time.com/7380854/exclusive-anthropic-drops-flagship-safety-pledge/ ⸻08:16 – Open Source Registries Can’t Afford Basic SecurityMajor open source ecosystems such as PyPI, npm, RubyGems, and others are reportedly facing funding shortfalls that threaten their ability to implement fundamental security protections.With supply chain attacks on the rise and AI accelerating code generation, underfunded registries present a growing enterprise risk. The hosts discuss why “free” does not mean costless — and why corporate IT teams must contribute financially or through engineering resources to sustain the security of the tools they depend on.https://www.theregister.com/2026/02/16/open_source_registries_fund_security/ ⸻12:36 – Inside OpenAI’s Scramble to Secure Compute After Stargate StalledOpenAI’s large-scale infrastructure plans have reportedly slowed, forcing the company to seek alternative compute sources to sustain AI growth.The episode explores the real bottlenecks: wafer starts, power generation, turbines, construction capacity, data center labor, and capital coordination. With AI revenue tightly correlated to compute availability, infrastructure constraints may be the biggest story in AI for 2026 and beyond.https://www.theinformation.com/articles/inside-openais-scramble-get-computing-power-stargate-stalled ⸻🔁 Wrap Up19:15 – Mail BagListener Xavier highlights how surface-level headlines often hide deeper enterprise implications — a reminder that IT leaders must look beneath the story to understand downstream risk and opportunity.20:36 – Wrap UpFrom AI safety governance and competitive pressure to supply chain funding gaps and compute shortages, Episode 27 reinforces one theme: infrastructure, transparency, and long-term planning now define enterprise AI strategy.⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
128
Conduent Ransomware Breach Hits 25 Million – HR & Benefits Data Exposed
In this episode of IT SPARC Cast – CVE of the Week, John Barger and Lou Schmidt break down a massive ransomware-driven data breach impacting Conduent, a major business process services provider that handles public sector programs, healthcare benefits processing, and corporate HR services.What began as reports of a 10.5 million record breach has now escalated to an estimated 25 million impacted individuals, with the ransomware group SafePay claiming responsibility and alleging over 8 terabytes of data exfiltrated.⸻🔎 What Happened?Conduent, which provides backend processing for government assistance programs and health benefits, confirmed that sensitive personal and corporate information may have been exposed.Reported exposed data includes:•Names•Dates of birth•Addresses•Social Security numbers•Employment records•Financial information•Medical and health insurance details•Internal business documentsSafePay ransomware actors reportedly gained access through compromised credentials and then moved laterally through Conduent’s systems.This is a textbook example of a chained cyberattack, where one small compromise enables full-scale enterprise exposure.⸻🌎 Scope of the ImpactThe breach affects multiple U.S. states and programs, including:•Texas (~15.4 million impacted)•Oregon (~10.5 million impacted)•Delaware•Massachusetts•New Hampshire•Georgia•South Carolina•New Jersey•Maine•New MexicoPrograms potentially affected:•Medicaid•SNAP / EBT food assistance•Unemployment benefits•Health insurance processing (including Blue Cross Blue Shield and Humana)•Corporate employee benefit programsAdditionally, approximately 17,000 Volvo Group North America employees may have been impacted.⸻⚠ Why This Matters for Enterprise ITThis is not “just” a public-sector breach.Many private companies rely on Conduent for backend benefits processing. If your organization uses:•Blue Cross Blue Shield•Humana•Third-party HR / benefits processorsYou must immediately:•Contact your HR and benefits teams•Request incident briefings from vendors•Determine if employee data was exposed•Prepare remediation and communication plans⸻🔐 Security Lessons•Credential compromise remains a primary entry point•Lateral movement amplifies initial footholds•Ransomware groups continue combining encryption with large-scale data exfiltration•Transparency and timely disclosure are criticalConduent acknowledged the breach, engaged forensic investigators, and notified impacted parties — a necessary and responsible response.⸻💬 Listener FeedbackThe episode also includes feedback from Kevin regarding last week’s Apple iOS 26 patch discussion. While some users hesitate to upgrade due to UI and stability concerns, security patches addressing critical vulnerabilities must take priority.⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
127
Anthropic vs. The Pentagon, HDD Sellout 2026, and Copilot’s Confidential Email Bug
In this episode of IT SPARC Cast – News Bytes, John Barger & Lou Schmidt unpack three stories that expose the real friction points in enterprise IT: AI ethics in defense contracts, looming hardware shortages, and data governance risks in Microsoft Copilot.Anthropic and the Pentagon clash over Claude’s military use, Western Digital reports zero remaining HDD capacity for 2026, and Microsoft confirms a Copilot bug that summarized confidential emails. From supply chain strategy to SaaS risk management, this episode highlights why enterprise IT leaders must think beyond features and focus on contracts, capacity, and control.⸻⏱️ Show Notes00:00 – IntroHard drive shortages, AI contract battles, and Copilot privacy concerns headline a week that reinforces one theme: control over infrastructure and software matters more than ever.⸻📰 News Bytes00:46 – Anthropic and the Pentagon Are Reportedly Arguing Over Claude UsageAnthropic pushes back against unrestricted military use of Claude AI, raising ethical, contractual, and operational questions. The Pentagon may reconsider its $200M relationship, exposing a major risk for organizations deploying AI: what happens when vendor policies change after integration?https://techcrunch.com/2026/02/15/anthropic-and-the-pentagon-are-reportedly-arguing-over-claude-usage/ ⸻07:19 – Western Digital Has No More HDD Capacity Left for 2026Western Digital reports its entire 2026 hard drive production is already spoken for. Similar signals from Seagate suggest storage pricing pressure is imminent. The hosts explain why this isn’t just about spinning disks—it’s about AI data center demand driving up costs across RAM, SSDs, GPUs, and enterprise hardware.https://wccftech.com/western-digital-has-no-more-hdd-capacity-left-out/ ⸻12:06 – Microsoft Says Bug Causes Copilot to Summarize Confidential EmailsMicrosoft confirms a Copilot bug that processed confidential emails stored in drafts and sent folders, despite policy settings meant to block them. Although no data reportedly left the organization, the incident underscores governance, SaaS dependency, and AI access-control risks enterprises must plan for.https://www.bleepingcomputer.com/news/microsoft/microsoft-says-bug-causes-copilot-to-summarize-confidential-emails/ ⸻🔁 Wrap Up16:42 – Mail BagListener Dennis drops a Back to the Future “jigawatt” reference, and Xavier reinforces the importance of AI security hygiene and fine-grained permission management.17:52 – Wrap UpFinal thoughts on vendor lock-in, AI policy control, supply chain modeling, and why IT leaders need stronger collaboration with finance and legal teams.⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/John Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/Lou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ Hosted on Acast. See acast.com/privacy for more information.
-
126
Apple iOS/iPadOS/MacOS CVE-2026-20700 Zero-Day: Sandbox Escape & RCE Explained
In this episode of IT SPARC Cast – CVE of the Week, John Barger and Lou Schmidt examine a critical Apple security vulnerability patched in iOS, iPadOS, macOS, watchOS, tvOS, and visionOS 26.3.The focus: CVE-2026-20700, a memory corruption flaw in Apple’s dynamic link layer that could allow attackers to break out of the sandbox and achieve remote code execution (RCE).Although exploitation requires physical access, the definition of “physical” in today’s hybrid enterprise world is broader than it sounds. Remote management tools, compromised accounts, lost devices, or improperly secured BYOD endpoints can all create real-world exposure.With Apple’s unified “26” operating system line now spanning every platform, this patch affects:•iOS 26.3•iPadOS 26.3•macOS 26.3•watchOS 26.3•tvOS 26.3•visionOS 26.3Security researchers are classifying this vulnerability as critical/high severity, and enterprises are urged to patch immediately.⸻🔎 CVE-2026-20700 Details•Type: Memory corruption•Impact: Sandbox escape → Remote Code Execution•Exploit Path: Physical or logical device access•Risk Level: High/Critical (no official CVSS published)•Fix: Upgrade to Apple OS version 26.3⸻⚠ Why This Matters for Enterprise IT1️⃣ BYOD Risk SurfaceBring-Your-Own-Device policies mean iPhones, iPads, and Macs often connect to corporate networks without full administrative control. A vulnerable device on your network increases lateral movement risk.2️⃣ Physical Access Isn’t Just “Someone in the Room”Remote tools, compromised Apple IDs, or stolen devices expand the meaning of physical access.3️⃣ Upgrade Hesitation Is RealApple’s 26 release introduced major UI changes (including the controversial glass interface). Stability concerns have led some users to delay upgrades — increasing exposure time.Security must outweigh aesthetic or usability concerns.⸻🛠 Enterprise Recommendations•Immediately communicate required upgrade to 26.3•Enforce OS minimum versions where possible•Review BYOD policies and mobile device controls•Audit Apple device access on corporate networks•Educate users about lost/stolen device risk⸻💬 Listener FeedbackThe episode also includes commentary from Chris, a general counsel and chief risk officer, who responded to last week’s Notepad RCE discussion. He raises an important point about expanding application functionality increasing attack surface — a lesson that applies here as well.⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
125
UniFi 10.1, AI Data Centers Go Nuclear, and SpaceX Eyes Orbital Compute
In this episode of IT SPARC Cast – News Bytes, John Barger & Lou Schmidt break down a week where enterprise IT collided with energy policy, nuclear power, and outer space. UniFi Network 10.1 pushes further into enterprise territory with improved scalability and Wi-Fi visibility. Meanwhile, the White House explores voluntary agreements to manage rising energy costs from AI data centers.Then things escalate: hyperscalers begin signing real contracts for next-generation nuclear power, and Elon Musk gets serious about orbital data centers—suggesting that the future of compute may extend beyond the planet. If you’re tracking AI infrastructure, network evolution, and the power constraints shaping the industry, this episode connects the dots.⸻⏱️ Show Notes00:00 – IntroJohn and Lou preview a week dominated by UniFi upgrades, federal energy discussions, nuclear power tipping points, and serious momentum toward data centers in space.⸻📰 News Bytes00:44 – UniFi Network 10.1Ubiquiti releases UniFi Network 10.1 with major stability and scalability improvements, Wi-Fi Doctor diagnostics, UI refinements, enhanced policy visibility, and optimizations for Wi-Fi 7 and multi-gig deployments. The hosts discuss why UniFi continues its march toward true enterprise credibility while remaining accessible for SMB and prosumer environments.https://blog.ui.com/article/introducing-unifi-network-10-1 ⸻05:13 – White House Eyes Data Center Agreements Amid Energy Price SpikesAs AI data center expansion drives regional energy price pressure, the White House explores voluntary agreements with major tech companies to shift infrastructure costs away from consumers. The conversation explores the economics of AI growth, the inevitability of nuclear power, and whether energy becomes the defining constraint of the AI race.https://www.politico.com/news/2026/02/09/trump-administration-eyes-data-center-agreements-amid-energy-price-spikes-00772024 ⸻09:02 – Next-Gen Nuclear’s Tipping Point: Meta and Hyperscalers Sign DealsMeta and other hyperscalers begin signing legally binding agreements with next-generation nuclear companies like TerraPower and Oklo. John and Lou explain why signed contracts—not press releases—mark the true tipping point for small modular reactors powering AI infrastructure.https://www.aol.com/articles/next-gen-nuclear-tipping-point-214209248.html ⸻11:34 – Elon Musk Gets Serious About Orbital Data CentersFollowing strategic moves linking xAI and SpaceX, Musk pivots attention toward orbital and lunar infrastructure. The hosts unpack the logic behind space-based data centers, cooling challenges, Starlink integration, and why the economics may be less crazy than they first appear.https://techcrunch.com/2026/02/05/elon-musk-is-getting-serious-about-orbital-data-centers/ ⸻🔁 Wrap Up18:59 – Mail BagListener Jonah questions whether massive AI infrastructure financing signals a bubble. John and Lou explain why AI demand is currently compute-constrained—not hype-driven—and why any financial correction would look very different from the dot-com era.21:52 – Wrap UpFinal thoughts on nuclear inevitability, orbital infrastructure, and the reality that energy—not chips—may define the next decade of enterprise IT.⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/John Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/Lou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ Hosted on Acast. See acast.com/privacy for more information.
-
124
Windows Notepad RCE?! CVE-2026-2841 Exposes Windows 11 Users
In this episode of IT SPARC Cast – CVE of the Week, John Barger and Lou Schmidt break down a shocking vulnerability: CVE-2026-2841, a Remote Code Execution (RCE) flaw in the modern Windows 11 Notepad application distributed via the Microsoft Store.Yes — even Notepad isn’t safe anymore.This vulnerability stems from a command injection flaw in the modern Windows 11 Store version of Notepad (11.x prior to patch). The issue allows malicious .md (Markdown) files containing crafted links or interactive content to execute arbitrary code when opened and clicked by a user.With a CVSS score of 8.8, this vulnerability becomes especially dangerous when chained with other exploits.⸻🔎 What You Need to KnowCVE-2026-2841 – Windows Notepad RCE•Affects: Windows 11 modern Notepad (Microsoft Store version 11.x prior to Patch Tuesday update)•Does NOT affect: Legacy Notepad on Windows 10, Windows 7, or classic versions•Attack Vector: Malicious .md file delivered via phishing•Trigger: User opens file and clicks embedded link•Impact: Remote Code Execution with user-level permissions•Severity: CVSS 8.8 (High)⸻⚠ Why This Matters•Perfect phishing vehicle: malicious Markdown attachment•Executes arbitrary code under the user’s permissions•Ideal for lateral movement in enterprise environments•Dangerous when combined with other exploits•Many organizations delay Patch Tuesday updates — this one should NOT wait⸻🛠 Mitigation & Recommendations•Immediately update Notepad via Microsoft Store•Audit Windows 11 endpoints for modern Notepad version•Train users to avoid opening unknown .md attachments•Consider simpler text editors for baseline editing tasks•Evaluate enterprise endpoint protection against command injection vectors⸻💻 Alternative Editors (With Security Awareness)John and Lou discuss safer editing alternatives including:•Notepad++•Visual Studio Code / Codeium•Sublime Text•Atom•Vim / NeoVim / Emacs•JetBrains IDEsReminder: More features = more attack surface.⸻💬 Wrap UpJohn and Lou also respond to listener feedback from Andrew regarding their recent OpenClaw security discussion. They clarify their stance:•They are not anti-AI.•They are pro-security.•Bleeding-edge tech requires controlled rollout and sandboxing.•Enterprises must protect privileged data access.Security-first thinking is not fear — it’s responsible IT leadership.⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
123
Quantum Breakthroughs, AI Cloud Billions, and Apple’s Margin Squeeze
In this episode of IT SPARC Cast – News Bytes, John Barger and Lou Schmidt explore three stories reshaping enterprise IT strategy. From a quantum cooling breakthrough that could accelerate real-world quantum computing, to Oracle’s plan to raise $50 billion for AI cloud infrastructure, the episode highlights how fast the AI arms race is escalating.They also break down why the AI boom is starting to squeeze Apple’s famously strong profit margins—and what that means for device pricing, silicon supply, and enterprise IT budgets. If you care about where compute, power, and economics collide, this episode connects the dots.📌 Show Notes00:00 – IntroJohn and Lou kick off the episode with a look at why quantum cooling breakthroughs, massive AI cloud investments, and chip supply pressure on Apple all point to accelerating change across enterprise IT.⸻📰 News Bytes00:55 – Chalmers University Makes Quantum CoolResearchers at Chalmers University of Technology unveil a breakthrough quantum refrigeration method that uses controlled noise to improve cooling near absolute zero. The discussion explores why advances like this could rapidly reduce the cost and complexity of quantum computing and push it closer to real enterprise use cases.https://www.sciencedaily.com/releases/2026/01/260129080418.htm ⸻06:10 – Oracle Raising Up to $50B for AI CloudOracle plans to raise up to $50 billion to expand AI-focused cloud data centers as part of Project Stargate. John and Lou unpack why Oracle’s existing enterprise relationships give it a unique advantage—and why power and compute, not demand, may become the real limiting factors for AI growth.https://www.techrepublic.com/article/news-oracle-50b-ai-cloud/ ⸻10:28 – The AI Boom Is Coming for Apple’s Profit MarginsThe surge in AI-driven chip demand is putting pressure on Apple’s historically strong margins. As TSMC capacity is increasingly consumed by Nvidia, OpenAI, and hyperscalers, the hosts break down why Apple may face higher silicon costs—and what that means for device pricing, IT refresh cycles, and enterprise procurement.https://www.msn.com/en-us/money/technology/the-ai-boom-is-coming-for-apple-s-profit-margins/ar-AA1VpgpA ⸻🔁 Wrap Up17:11 – Mail BagListener feedback sparks a nuanced discussion on hybrid work, mandatory office policies, and why management capability—not location—is often the real issue.21:24 – Wrap UpFinal thoughts on quantum acceleration, AI infrastructure economics, and why IT leaders need to prepare for rising hardware costs and longer planning horizons.⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/John Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/Lou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ Hosted on Acast. See acast.com/privacy for more information.
-
122
Why OpenClaw on Work PCs Puts Enterprise Data at Risk
Agentic AI systems like OpenClaw represent the future of automation, productivity, and intelligent workflows — but today, they also represent a serious and underappreciated enterprise security risk.In this episode of IT SPARC Cast – CVE of the Week, John and Lou break down why running OpenClaw (and related platforms like MoltBook) on corporate hardware or with access to enterprise data is dangerous right now, even if the long-term vision is compelling.The discussion centers on three types of OpenClaw users:1.Sandbox Experimenters – Users running OpenClaw in isolated labs or test environments with no access to corporate data.2.Dedicated VM / Hardware Users – Users running OpenClaw separately, but still granting it access to cloud services, email, or internal APIs.3.Daily Driver Users – Users installing OpenClaw directly on work PCs and giving it full access to files, email, chat, and automation tools.John and Lou argue that only the first group is safe today.Groups #2 and #3 dramatically expand the attack surface, introducing risks such as credential exfiltration, indirect prompt injection, data leakage, and supply-chain style compromises via third-party “skills.”The episode uses a “bio hotcell” analogy: OpenClaw can be used safely only when isolated, constrained, monitored, and treated as potentially hazardous. Without those controls, it becomes a silent data-exfiltration engine operating entirely inside allowed enterprise workflows.The takeaway for IT leaders is clear:HR and IT must act together now to define policies that prohibit OpenClaw and MoltBook from running on corporate devices or accessing corporate data until proper governance, tooling, and security controls exist.⸻🔚 Wrap Up & LinksFollow and connect with us:IT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
121
Work-From-Office Fallout, Rocket-Powered Data Center Cooling & Microsoft’s New AI Chip
In this episode of IT SPARC Cast – News Bytes, John Barger & Lou Schmidt break down three stories that reveal how enterprise IT is being reshaped by workforce realities, infrastructure constraints, and custom silicon. From mounting evidence that work-from-office mandates are driving top talent out the door, to a Los Angeles startup using SpaceX rocket technology to cool data centers without water, to Microsoft unveiling a massive new AI inference chip designed to scale efficiently.The discussion connects culture, power, cooling, and compute—showing why AI growth isn’t just about models and GPUs, but about solving the physical and human constraints that come with them. If you’re responsible for enterprise IT strategy, infrastructure planning, or talent retention, this episode delivers context you won’t get from headlines alone.⸻⏱️ Show Notes00:00 – IntroJohn and Lou preview a packed episode covering remote-work backlash, radical new data-center cooling approaches, and Microsoft’s latest move to control its AI destiny with custom silicon.⸻📰 News Bytes01:00 – Work-From-Office Mandate? Expect Top Talent Turnover and Culture RotNew research highlighted by CIO Magazine shows that strict return-to-office mandates are driving increased attrition among top performers, longer hiring cycles, and declining trust. John and Lou unpack why “butts-in-seats” metrics fail modern organizations and how poor remote-management skills—not productivity—are often the real problem.https://www.cio.com/article/4119562/work-from-office-mandate-expect-top-talent-turnover-culture-rot.html ⸻08:14 – L.A. Startup Uses SpaceX Tech to Cool Data Centers With Less Power and No WaterAn LA-based startup is applying SpaceX rocket turbopump technology and supercritical CO₂ to dramatically reduce data-center cooling power, footprint, and water usage. The hosts explain why cooling—not chips—is becoming one of the biggest bottlenecks in AI expansion and how innovations like this could unlock sustainable growth.https://finance.yahoo.com/news/l-startup-uses-spacex-tech-175628363.html⸻14:11 – Microsoft Announces a Powerful New Chip for AI InferenceMicrosoft unveils the Maia 200, a custom AI inference accelerator built on TSMC’s 3-nm process with 100 billion transistors. John and Lou break down why inference-optimized chips matter, how this fits into a broader trend of hyperscalers building custom silicon, and why efficiency per watt is becoming the defining metric for AI at scale.https://techcrunch.com/2026/01/26/microsoft-announces-powerful-new-chip-for-ai-inference/⸻🔁 Wrap Up19:49 – Mail BagListener feedback revisits classic operating systems, early AI roots, and why distributed computing concepts from decades ago are suddenly relevant again.22:47 – Wrap UpJohn and Lou close by emphasizing that AI’s future depends on solving power, cooling, and organizational challenges—not just shipping faster chips.⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/Lou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
120
WhatsApp Encryption on Trial & AI Chat App Data Exposure: Enterprise Messaging Risks
In this episode of IT SPARC Cast – CVE of the Week, John Barger and Lou Schmidt break format to examine two high-impact security and privacy stories that every enterprise IT and security leader should be paying attention to.First, we dive into a new lawsuit alleging that Meta can access or infer WhatsApp message contents, despite years of public claims that WhatsApp is fully end-to-end encrypted. We unpack what “access” really means in modern encrypted messaging systems, including metadata, client-side processing, backups, and enterprise risk implications—especially for organizations using WhatsApp for daily business communications.https://www.bloomberg.com/news/articles/2026-01-25/lawsuit-claims-meta-can-see-whatsapp-chats-in-breach-of-privacyNext, we examine a major data exposure involving Chat & Ask AI, a popular AI chatbot aggregator with tens of millions of users. Due to a backend Firebase misconfiguration, hundreds of millions of private conversations—including highly sensitive topics—were left publicly accessible. This incident highlights the growing risk of Shadow AI inside enterprises and the dangers of third-party AI wrappers that lack enterprise-grade security controls.https://www.404media.co/massive-ai-chat-app-leaked-millions-of-users-private-conversations/The episode closes with listener feedback on a previously covered UniFi Access vulnerability and a broader discussion on how organizations should educate, monitor, and protect users without resorting to blunt enforcement. Hosted on Acast. See acast.com/privacy for more information.
-
119
ERP’s Inevitable Reinvention, UniFi Fabric, and Why OpenAI Isn’t the AI Bubble to Fear
In this episode of IT SPARC Cast – News Bytes, John Barger & Lou Schmidt dig into three stories that highlight how enterprise IT is quietly—but fundamentally—restructuring itself. From executives questioning the long-term future of traditional ERP systems, to Ubiquiti introducing a new orchestration-driven take on network fabrics, to a grounded discussion on whether the AI bubble is real and why OpenAI may be far less fragile than critics assume.The conversation connects enterprise software evolution, network architecture at scale, and the hard economic realities of AI infrastructure—especially power and compute. If you’re responsible for enterprise platforms, networking strategy, or long-term IT planning, this episode provides context that goes beyond the headlines.⸻⏱️ Show Notes00:00 – IntroJohn and Lou preview the episode, touching on ERP’s looming transformation, UniFi’s new Fabric approach, and why AI demand—especially at OpenAI—is driven by hard infrastructure realities, not hype.⸻📰 News Bytes00:48 – ERP Isn’t Dead Yet – But Most Execs Are Planning the WakeA survey of more than 4,300 executives shows growing skepticism about ERP’s long-term dominance, even as most organizations remain satisfied with current systems. John and Lou explain why AI-driven, modular, and agentic ERP models are likely evolutions—not rip-and-replace events—and what enterprise IT teams should be doing now to prepare.https://www.theregister.com/2026/01/19/erp_survey_rimini_street/ ⸻06:28 – Ubiquiti Introduces UniFi FabricUbiquiti unveils UniFi Fabric, a centralized orchestration layer designed to manage policies, identity-based networking, Zero Trust, and multi-site environments without cloud licensing. The discussion compares UniFi’s approach to traditional network fabrics like VXLAN and SPBM, highlighting why this controller-first model could appeal to MSPs and mid-sized enterprises.https://blog.ui.com/article/introducing-unifi-fabrics ⸻14:14 – AI Bubble? Maybe. OpenAI Risk? Not Anytime Soon.John breaks down why OpenAI’s revenue growth is directly tied to available compute capacity, not speculative demand. Using concrete megawatt, gigawatt, and ARR figures, the hosts explain why AI may see valuation corrections—but why companies like OpenAI, NVIDIA, and Anthropic are unlikely to disappear.https://openai.com/index/a-business-that-scales-with-the-value-of-intelligence/ ⸻🔁 Wrap Up24:16 – Mail BagListener feedback reinforces the growing link between AI growth and power infrastructure, with discussion around electrical safety, regulation, and why energy expertise may be one of the most valuable skills in the coming decade.27:39 – Wrap UpJohn and Lou close with a reminder that enterprise IT leaders will increasingly be asked to validate power, nuclear, and infrastructure decisions at the executive level—and that staying informed now is critical.⸻🔗 Connect With UsIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/Lou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
118
VoidLink: The AI-Built Linux Malware Framework That Could Change Cyber Attacks Forever
In this episode of IT SPARC Cast – CVE of the Week, John Barger and Lou Schmidt break from the traditional single-CVE format to examine VoidLink, a newly discovered Linux malware framework that represents a major shift in how cyberattacks may be built and executed going forward.Rather than focusing on one vulnerability, VoidLink is designed to chain together many smaller flaws across Linux, containers, and cloud platforms like AWS, Azure, GCP, Docker, and Kubernetes—creating a stealthy, long-term access platform. Researchers believe VoidLink was developed rapidly using AI assistants, offering a rare look at how next-generation malware may be authored, iterated, and deployed. This episode explains why VoidLink matters, how defenders should think about chained exploits, and why this may be an early warning sign for the future of cloud and container security.⸻Show Notes (Podcast)Episode OverviewThis week’s CVE of the Week focuses on VoidLink, a newly identified Linux malware framework designed for persistence, stealth, and modular exploitation across cloud and container environments. While not a single CVE, VoidLink highlights how attackers are moving toward framework-driven, AI-assisted exploit chaining rather than isolated vulnerabilities.Key Topics Covered•What VoidLink is and why it’s different from traditional malware•How chaining low-severity vulnerabilities can result in full compromise•Targeted environments: Linux, Docker, Kubernetes, AWS, Azure, and GCP•Use of loaders, implants, evasion techniques, and modular plugins•Evidence suggesting AI-assisted development with rapid iteration•Why this gives defenders a rare opportunity to observe a threat early in its lifecycle•The implications for cloud security, container hardening, and future CVEsWhy This MattersVoidLink represents a shift from one-off exploits to malware platforms—essentially an “IDE for hacking.” Understanding how these frameworks are built and how they operate is critical for anticipating future attacks and improving detection strategies before they become widespread.⸻Listener Feedback HighlightWe’d like to give a shout-out to Nihal for his thoughtful LinkedIn comment on our earlier Top 10 Operating System Failures episode—specifically his hot take defending Windows ME and critiquing Windows XP’s compatibility break. We love informed debate like this and appreciate listeners who challenge conventional wisdom.⸻Wrap-Up & Social LinksThat wraps up this episode of IT SPARC Cast – CVE of the Week. We couldn’t do this without listeners like you.Did we miss something? Do you have a topic you want us to cover?Send feedback to [email protected] or reach out on social.IT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
-
117
Apple Taps Google for AI, Copilot Pushback, AI Commerce & Nuclear Power for Data Centers
In this episode of IT SPARC Cast – News Bytes, John Barger & Lou Schmidt break down a week of moves that signal where enterprise AI, cloud platforms, and data center infrastructure are really headed. From Apple officially leaning on Google to power its AI ambitions, to Microsoft giving IT admins the ability to remove Copilot, this episode highlights growing tension between vendor momentum and enterprise control.They also explore Google’s push to standardize AI-driven commerce through agent protocols and why Meta locking down more than 6 GW of nuclear power may be the clearest sign yet that energy—not silicon—is becoming the limiting factor for AI at scale. If you’re tracking AI strategy, platform lock-in, and the future of data centers, this episode connects the dots.📌 Show Notes00:00 – IntroThis week on IT SPARC Cast, John Barger and Lou Schmidt break down a week dominated by AI power shifts, enterprise pushback, and the growing reality that energy—not compute—may be the biggest constraint on AI’s future.📰 News Bytes00:52 – It’s Official: Apple Going with Google for AIApple confirms it will rely on Google’s Gemini models to power the next generation of Siri and Apple Intelligence. John and Lou discuss what this says about Apple’s AI strategy, the risks of deep vendor lock-in, and whether Apple can realistically switch models later without breaking workflows.https://techcrunch.com/2026/01/12/googles-gemini-to-power-apples-ai-features-like-siri/05:44 – Microsoft to Allow IT Admins to Uninstall CopilotMicrosoft is testing new Windows policies that allow enterprise IT teams to remove the consumer Copilot app from managed devices. The conversation explores enterprise data governance, Intune controls, and why this signals a broader shift toward AI choice rather than forced adoption.https://www.bleepingcomputer.com/news/microsoft/microsoft-may-soon-allow-it-admins-to-uninstall-copilot-on-managed-devices/09:46 – Google Announces a New Protocol for AI-Driven CommerceGoogle introduces the Universal Commerce Protocol (UCP), an open standard designed to let AI agents handle shopping, payments, and transactions across retailers. With backing from major brands and payment networks, John and Lou unpack why agent-driven commerce may become one of AI’s first truly mainstream use cases.https://techcrunch.com/2026/01/11/google-announces-a-new-protocol-to-facilitate-commerce-using-ai-agents/12:47 – Meta Signs Nuclear Power Deals for AI Data CentersMeta secures long-term nuclear power contracts totaling more than 6 GW to fuel its AI infrastructure. The discussion focuses on why power—not chips—is becoming the true bottleneck for AI expansion and why nuclear energy is rapidly moving from “controversial” to “necessary.”https://techcrunch.com/2026/01/09/meta-signs-deals-with-three-nuclear-companies-for-6-plus-gw-of-power/🔚 Wrap Up16:49 – Mail BagListener feedback revisits cross-platform AI agents, Apple’s closed ecosystem, and whether enterprises can afford to exclude Mac users as agentic AI becomes more central to daily workflows.18:53 – Wrap UpJohn and Lou close the episode by reinforcing a key theme: AI’s future will be defined as much by energy, policy, and interoperability as by model performance. Hosted on Acast. See acast.com/privacy for more information.
-
116
Cisco Secure Email Gateway CVSS 10.0 Zero-Day Via the Spam Filter
This week on IT SPARC Cast – CVE of the Week, John Barger and Lou Schmidt break down CVE-2025-20393, a CVSS 10.0 zero-day vulnerability affecting Cisco Secure Email Gateway (SEG) and related AsyncOS-based email security products.The flaw is actively exploited in the wild, remains unpatched, and—ironically—uses the spam filtering engine itself as the attack vector. With no user interaction required and evidence of nation-state activity, this vulnerability represents a worst-case scenario for organizations relying on Cisco’s email security stack.If you run Cisco Secure Email Gateway or Email Security Appliances, this is an emergency-level issue that demands immediate attention.⸻📌 Show Notes🚨 CVE of the Week: CVE-2025-20393•Severity: CVSS 10.0 (Critical)•Status: Actively exploited, no patch available•Vendor: Cisco🎯 Affected Products•Cisco Secure Email Gateway (SEG)•Cisco Email Security Appliance (ESA)•Cisco Secure Email and Web Manager (SEWM)•All affected systems run Cisco AsyncOS🔓 How the Exploit Works•Attackers deliver a specially crafted email that is processed before a spam verdict is reached•The payload is executed during email parsing, attachment handling, or content inspection•No user interaction required•The malicious email never needs to reach an inbox💥 Real-World Impact•Full remote code execution on the email gateway•Email interception and exfiltration (espionage risk)•Persistent access for follow-on attacks•Credential harvesting and downstream phishing using trusted infrastructure•Log wiping, making detection extremely difficult🌍 Threat Activity•Exploits observed as early as November 2025•Linked to Chinese state-aligned actors•Tracked under UAT-9686, associated with groups such as APT41 and UNC5174•Added to CISA’s Known Exploited Vulnerabilities (KEV) catalog🛡️ Mitigation Guidance (No Patch Available)•Immediately restrict and segment management interfaces•Tighten ACLs and allow lists•Treat SEG as Tier-Zero-adjacent infrastructure•If compromise is suspected: full system rebuild required•Assume persistence due to log tampering🧠 Commentary•The exploit weaponizes the very system designed to stop malicious email•Lack of a patch from a vendor of Cisco’s size raises serious concerns•For some organizations, this may prompt reevaluation of email security platforms altogether⸻🔚 Wrap-Up & Listener FeedbackWe want to thank listeners who continue to engage with the show and help shape the conversation:•GFABasic32 wrote:“Thanks for the emergency update on n8n. I love the balance of technical deep dives and high-level strategy. You guys make keeping up with CVEs actually entertaining.”•Dennis added:“I love the CVE of the Week. These episodes are like exposure therapy.”That’s exactly the goal—helping you face what’s happening in security so you can respond, not react.Have thoughts on this CVE or want us to cover another one? Reach out.⸻🔗 Social LinksIT SPARC Cast@ITSPARCCast on Xhttps://www.linkedin.com/company/sparc-sales/ on LinkedInJohn Barger@john_Video on Xhttps://www.linkedin.com/in/johnbarger/ on LinkedInLou Schmidt@loudoggeek on Xhttps://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn Hosted on Acast. See acast.com/privacy for more information.
We're indexing this podcast's transcripts for the first time — this can take a minute or two. We'll show results as soon as they're ready.
No matches for "" in this podcast's transcripts.
No topics indexed yet for this podcast.
Loading reviews...
ABOUT THIS SHOW
IT SPARC Cast is a digest of the Enterprise IT news over the last week, with insights, opinions, and a little sarcasm from 2 experts each with over 20 years of experience working in IT or for IT vendors. Hosted on Acast. See acast.com/privacy for more information.
HOSTED BY
John Barger
CATEGORIES
Loading similar podcasts...