Helping defense's use of AI catch up with offense, cost of the vulnpocalypse, news - Evan Powell - ESW #461
From Enterprise Security Weekly (Audio) by Adrian Sanabria
June 1, 2026 · 1h 38m
About this episode
Evan Powell discusses the challenges and opportunities of using AI in cybersecurity defense.
Interview with Evan Powell - Generative and agentic AI are improving cyberattacks faster than they're improving cyber defenses. Offensive folks have been having the most luck with AI so far, which is further eroding any advantage defenders might have had. Evan Powell joins us to share some ideas on how defenders can get some benefits from AI as well, and why open source is important with this approach. Topic For this week's topic segment, we've got two very interesting data sources. The first is Anthropic's first update on Project Glasswing, where they're absolutely tearing through codebases with ultra premium Mythos tokens, but then hitting a human-shaped bottleneck as they attempt to validate all the findings. The second is the first report from Root Evidence, the latest startup from Jeremiah Grossman and Robert Hansen (aka RSnake), which aims to help organizations filter out all the vulnerabilities that don't matter. Where these two reports meet in the middle is my concern that the use of AI to scour every last bug out of code is going to be the most Sisyphean task the cybersecurity industry has ever come up with (and we have some deep experience here). The Weekly Enterprise…
People in this episode
Host: Adrian Sanabria
Guest: Evan Powell
Topics covered
- AI in cybersecurity
- cyber defense strategies
- vulnerability management
- open source in security
- cyberattack trends
- enterprise security news
Keywords
- AI
- cybersecurity
- vulnerabilities
- open source
- cyberattacks
- defense strategies
- Project Glasswing
- Root Evidence
Mentioned in this episode
Organizations: Anthropic, Root Evidence
More episodes of Enterprise Security Weekly (Audio)
- The State of AI in SecOps, the Unintended Consequences of Vulnmaxxing, and the News - Filip Stojkovski - ESW #462 · June 8, 2026 · 1h 38m
- Visibility with EDR/MDR is still important, 'the basics' are impossible, and the news - Rob Allen - ESW #460 · May 25, 2026 · 1h 45m
- AI Has a data problem, cascading breaches, and the weekly news - Dimitri Sirota - ESW #459 · May 18, 2026 · 1h 36m
- The impact of Mythos and Florida Man, confidence gaps, phishing, & AI adoption - Chris Wallis, Deepen Desai, Erich Kron - ESW #458 · May 11, 2026 · 1h 40m
- Post Quantum Migration Struggles, AI Threats, and Modern Defenses - HD Moore, Ramin Farassat, Eyal Benishti, Daniel dos Santos, Bobby Ford - ESW #457 · May 4, 2026 · 1h 33m
- Rethinking Security from the OS Up in the Age of AI and more RSAC 2026 Interviews - Karen Heart, Sachin Jade, Phil Calvin, Craig Sanderson, Travis Wong - ESW #456 · April 27, 2026 · 1h 36m
Explore listener stats, chart rankings, contacts and more on the Enterprise Security Weekly (Audio) podcast page.