Sign up to save your podcasts
Or
Share How Breach Recovery Became Big Business with John Anthony Smith
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
How Breach Recovery Became Big Business with John Anthony Smith
What if everything you thought you knew about cybersecurity was dangerously wrong? John Anthony Smith, founder and Chief Security Officer of Conversant Group, delivers a wake-up call that will fundamentally change how you think about protecting your organization's digital assets.
The hard truth: 86% of organizations don't have a single survivable backup copy, and since January, over 90% of backups examined didn't survive breaches. "You're never going to be able to prevent a breach," Smith explains. "You will have a breach, period." This isn't fatalism, it's realism from someone who's spent decades on the cybersecurity frontlines.
Most breaches aren't sophisticated technical exploits but embarrassingly simple social engineering. The most common attack vector? Calling the help desk, claiming to be an employee, and requesting a password reset with no identity verification. This basic failure has crippled major corporations, including recent high-profile cases that shut down Las Vegas casinos and healthcare systems, resulting in billions in losses.
What's truly alarming is the organizational inertia Smith encounters. "We have entities that we've recovered more than three times from breach for the exact same things, over and over again." Leadership often mischaracterizes breaches as random "drive-by shootings" rather than systematic exploitation of known vulnerabilities they've chosen not to address.
Drawing from his experience with countless breaches across global organizations, Smith advocates a fundamental shift in approach: accept breaches as inevitable and build resilient recovery capabilities first. This means properly isolated backups, strict identity verification protocols, removing critical consoles from Active Directory domains, and embracing a security-first mindset even when it impacts usability.
Ready to transform your organization's approach to cybersecurity? Listen now to discover why prevention alone is a failed strategy and how building true resilience might be the only thing standing between your organization and catastrophe.
For more information, visit our website www.spectruss.com
View all episodes
By SpectrussWhat if everything you thought you knew about cybersecurity was dangerously wrong? John Anthony Smith, founder and Chief Security Officer of Conversant Group, delivers a wake-up call that will fundamentally change how you think about protecting your organization's digital assets.
The hard truth: 86% of organizations don't have a single survivable backup copy, and since January, over 90% of backups examined didn't survive breaches. "You're never going to be able to prevent a breach," Smith explains. "You will have a breach, period." This isn't fatalism, it's realism from someone who's spent decades on the cybersecurity frontlines.
Most breaches aren't sophisticated technical exploits but embarrassingly simple social engineering. The most common attack vector? Calling the help desk, claiming to be an employee, and requesting a password reset with no identity verification. This basic failure has crippled major corporations, including recent high-profile cases that shut down Las Vegas casinos and healthcare systems, resulting in billions in losses.
What's truly alarming is the organizational inertia Smith encounters. "We have entities that we've recovered more than three times from breach for the exact same things, over and over again." Leadership often mischaracterizes breaches as random "drive-by shootings" rather than systematic exploitation of known vulnerabilities they've chosen not to address.
Drawing from his experience with countless breaches across global organizations, Smith advocates a fundamental shift in approach: accept breaches as inevitable and build resilient recovery capabilities first. This means properly isolated backups, strict identity verification protocols, removing critical consoles from Active Directory domains, and embracing a security-first mindset even when it impacts usability.
Ready to transform your organization's approach to cybersecurity? Listen now to discover why prevention alone is a failed strategy and how building true resilience might be the only thing standing between your organization and catastrophe.
For more information, visit our website www.spectruss.com