
About this episode
The episode discusses a malwareless attack that led to a corporate wipeout and recovery strategies.
What happens when an "assume breach" scenario turns into a total corporate wipeout? In this episode of Safe Mode, host Greg welcomes Brandon Willitts, Director of Cyber Resilience at Everpure, to pull back the curtain on a devastating "malwareless" attack that deleted over 80,000 endpoints at a Fortune 100 company. When adversaries exploit valid credentials to compromise the entire identity plane, your own endpoint management tools can be weaponized against you. Brandon breaks down how separating the storage layer from the identity blast radius—and leveraging immutable snapshot technology—allowed a non-technical engineer to jumpstart a full recovery in just days rather than months. In our reporter chat, Greg talks with Derek Johnson about all the AI security news that has happened over the past week.
People in this episode
Host: Greg
Guest: Brandon Willitts
Topics covered
- cybersecurity
- malwareless attacks
- corporate resilience
- AI security
- endpoint management
Keywords
- cyber resilience
- malwareless attack
- endpoint management
- immutable snapshot technology
- AI security news
Mentioned in this episode
Organizations: Everpure, Fortune 100
More episodes of Safe Mode Podcast
- Why the autonomous SOC Is the wrong goal · June 11, 2026 · 34 min
- From Two Weeks to Three Days: The KEV Deadline Debate · May 29, 2026 · 37 min
- Can specialized security survive Daybreak and Mythos? · May 21, 2026 · 38 min
- Why access brokers have stubbornly remained successful · May 14, 2026 · 32 min
- Can you prove which agent did what? · May 7, 2026 · 28 min
- How government and Industry can raise the cost of cybercrime · April 30, 2026 · 43 min
Explore listener stats, chart rankings, contacts and more on the Safe Mode Podcast podcast page.