In this RSA Conference 2025 special episode, we explore two critical frontiers shaping the

future of cybersecurity.

First, Jon DiMaggio (Author of The Ransomware Diaries, Analyst1) breaks down the hidden

supply chains behind ransomware gangs, including the economics of affiliate betrayal and the

challenge of accurate attribution. He walks us through his methodology for identifying

ransomware rebrands like BlackCat and RansomHub using evidence-based frameworks

designed to eliminate human bias.

Then we’re joined by Matt Radolec (VP of Incident Response at Varonis), who brings a fresh

perspective on talent development in cybersecurity. Drawing from his keynote "From Gamer to

Leader", Matt argues that gamers possess untapped potential as cybersecurity professionals

and it’s time to design leadership pipelines like quest lines.

From ransomware negotiations on underground forums to using AI-enhanced playbooks and

transforming threat response teams into RPG-style guilds, this episode blends technical insight

with cultural reflection.

Welcome to a special RSAC 2025 episode of the Breaking Badness Cybersecurity Podcast!

Today, we delve into the critical role of domains in modern cyber attacks. From sophisticated nation-state operations to AI-powered phishing kits and malicious browser extensions, domains are the foundational infrastructure for threat actors.

Host Kali Fencl is joined by four leading cybersecurity experts Joe Slowik, Robert Duncan, John Fokker and Vivek Ramachandran to

break down how domains are weaponized and what organizations can do to defend themselves on this ever-evolving frontline

In this episode of Breaking Badness, we sit down with Raji Vannianathan, a cybersecurity leader at Microsoft driving the charge on AI security and safety. Raji shares her experience leading the team responsible for managing the end-to-end lifecycle of AI vulnerability disclosures, building proactive safety frameworks, and cultivating a global community of AI security researchers.

From developing Microsoft's AI Bug Bar to launching the "Guardians of AI Safety" Discord

community, she brings both vision and practical strategies to a rapidly evolving field.

We discuss the shifting threat landscape as threat actors begin to leverage generative AI, the

critical need for shared language and cross-functional collaboration, and how Microsoft is

thinking about trust, transparency, and incident response in the AI era. If you’re navigating the

challenges of AI risk, vulnerability coordination, or ethical deployment, this is an essential listen.

In this episode of Breaking Badness, Kali Fencl sits down with Mick Baccio, Global Security

Advisor at Splunk and former CISO for Pete Buttigieg’s 2020 presidential campaign. Mick

shares his journey from aspiring Navy nuclear engineer to leading security in some of the

highest-stakes environments, including the White House.

They explore how threat intelligence, storytelling, and mentorship shape the future of

cybersecurity. From his early days in government to his work on the Splunk SURGe team, Mick

opens up about what it takes to build secure systems, stronger teams, and more empathetic

leadership in cybersecurity.

In this episode of Breaking Badness, we sit down with John Donovan of ZEDEDA to unpack the

lighter and more profound sides of cybersecurity’s biggest gatherings. From RSA’s unexpected

baby goats and vendor booth antics to BSides San Francisco’s community-driven keynote

stage, John shares personal stories, industry insights, and valuable advice on how newcomers

and veterans alike can navigate events like RSA, BSides, and DEF CON. You’ll hear how he

"hacked" his way onto the main stage, what it means to wear a “No Purchasing Authority” pin,

and why protecting your mom from scams might be more urgent than defending your enterprise.

In this episode of Breaking Badness, the crew investigates two escalating threats in the cybercrime ecosystem: the cleverly named phishing-as-a-service platform Morphing Meerkat, and the bulletproof hosting provider Proton66, a favorite among amateur cybercriminals.

First, they dig into how Morphing Meerkat uses DNS-over-HTTPS (DoH) and clever phishing kits to evade detection. Then, they shift focus to Proton66, a Russian-based bulletproof host that shelters a new generation of low-skill attackers, including a threat actor known as "Coquettte" with ties to the Horrid Hacking group.

In this powerful continuation of our DFIR series, cybersecurity experts Daniel Schwalbe, David

Bianco, Lesley Carhart, and Sarah Sabotka dissect the heart of effective incident response,

containment, eradication, recovery, and lessons learned. Packed with firsthand war stories,

sharp tactical advice, and honest debates, this episode is a must-listen for anyone building or

refining their digital forensics and incident response capabilities. Tune in to learn why planning

matters, what to do (and not do) during a breach, and how to make the adversary's job harder,

one containment plan at a time.

In Part 1 of this special two-part panel, the Breaking Badness podcast gathers leading

cybersecurity experts to explore the foundations of DFIR - Digital Forensics and Incident

Response. Featuring Daniel Schwalbe (DomainTools), Lesley Carhart (Dragos), David Bianco

(Splunk), and Sarah Sabotka (Proofpoint), the panel dives into what makes an effective incident

response program, why preparation is often overlooked, and how to bring technical and human

elements together during high-stakes security events.

In this episode of Breaking Badness, host Kali Fencl is joined by DomainTools' Daniel Schwabe

and disinformation expert Scot Terban to uncover how modern Russian disinformation

campaigns are using domain registrars, homoglyph attacks, and generative AI to mimic

legitimate news outlets and manipulate public perception. From the eerie sophistication of

Doppelganger operations to the exploitation of domain infrastructure, this episode sheds light on how truth is being weaponized in the digital era.

We also explore how AI is accelerating the speed and scale of these attacks, and the limited

levers defenders have to push back.

In this special DNS Masterclass episode of Breaking Badness, hosts Kali Fencl, Tim Helming, and Taylor Wilkes-Pierce take a deep dive into the Domain Name System often dubbed the backbone and battleground of the internet. From its humble beginnings with host files to its critical role in modern security, the episode unpacks DNS’s evolution, vulnerabilities, and impact on InfoSec.