Risky Business Features Podcast

Analysis and news podcasts published weekly

Mythos on your desk? Using local LLMs for code reviews

Presented by

James Wilson
James Wilson

Technology Editor

In this podcast episode James Wilson chats with Karsten Nohl about his research into using local LLMs to replace cloud AI in security code reviews.

In essence, Karsten created a hybrid code reviewing system where both cloud and local models are used to orchestrate, triage outputs, and write reports. In this system, only the local LLMs have source code access, with the cloud models used to manage the local models.

In this “source-local” review technique, the source code never leaves the local endpoint, which is a requirement for some reviews. But funnily enough, Karsten was able to use this system to generate findings that were as impressive as when using frontier models directly.

In a nutshell, Karsten proved it’s possible to use locally-hosted, open-weight models running on commodity hardware to produce findings comparable to those discovered by frontier cloud models.

This episode is also available on YouTube.

Mythos on your desk? Using local LLMs for code reviews
0:00 / 71:29

Pitching security startups to VCs in the AI era

Presented by

James Wilson
James Wilson

Technology Editor

Patrick Gray
Patrick Gray

CEO and Publisher

In this podcast Patrick Gray and James Wilson chat with Decibel Partners founder and Managing Partner Jon Sokoda to talk about pitching cybersecurity startups to VC firms in the AI age.

Coding agents and large language models have made it easier than ever to create software products, but despite this, the bar for what interests an investor is still largely the same. Everyone can run the marathon, but it’s usually the same few folks who finish first.

So tune in to hear Jon share with us his wisdom on when to start the conversation with investors, how to leverage the experience of the founder community, and what founders should watch out for.

This episode is also available on YouTube

Pitching security startups to VCs in the AI era
0:00 / 35:14

How using open weight models can blow up in your face

Presented by

James Wilson
James Wilson

Technology Editor

In this podcast episode James Wilson and Brad Arkin talk about how to safely use open weight large language models in the enterprise. The cost of frontier models was already driving interest in freely available open weight models like DeepSeek, Kimi and Qwen. But now the US government is forcing Anthropic to pull its Fable and Mythors models from the market, the argument for having greater control over your own AI stack is stronger than ever.

But as you’ll hear in this episode, the model itself is just one component of the complex tech stack you’ll need to spin up if you want local inference. There’s a lot of moving parts, each of which comes with its own supply chain risks.

So whether you’re hosting these models on your own hardware or via a SaaS provider, there’s a lot to ponder!

How using open weight models can blow up in your face
0:00 / 43:05

The state of the art in AI model jailbreaks

Presented by

James Wilson
James Wilson

Technology Editor

In this solo podcast episode, James Wilson breaks down the current state of AI model jailbreaks.

If you’ve somehow missed the story, last week Anthropic released its Fable 5 and Mythos 5 models to the public. In the name of safety, both models were guardrailed up the wazoo, but that didn’t stop a bunch of jailbreakers from figuring out how to bypass at least some of their safety restrictions.

In response to these guardrail bypasses the White House issued an export control directive on the models, citing national security concerns. But was the Trump administration right to do this? Do these jailbreaks represent a threat to the security of the USA, or was the export restriction overkill? Tune in to find out!

The state of the art in AI model jailbreaks
0:00 / 52:39

Why NPM v12 won’t stop supply chain attacks

Presented by

James Wilson
James Wilson

Technology Editor

In this podcast episode, James Wilson is joined by Open Source Malware Security co-founder Paul McCarty to talk about the supply chain attack mitigations coming in NPM v12.

NPM disabling (by default) auto-run install scripts and dynamic dependencies is a positive step forward… but it’ll take years for this new version to be adopted, and these changes do nothing to prevent malicious packages being imported into projects.

Further, Paul thinks disabling these features by default will introduce friction that will cause them to be re-enabled. When the choice is “this builds” and “this is less prone to malware”, the former will always win.

Why NPM v12 won’t stop supply chain attacks
0:00 / 38:32

Everything is getting much worse, much faster

Presented by

James Wilson
James Wilson

Technology Editor

In this podcast Brad Arkin joins James Wilson to talk about how the fear of being left behind in the AI era means enterprises are taking risks that would have been considered insane just a couple of years ago.

Fears around outages or being hacked have been trumped by fears of being labelled an AI laggard.

So where are we all going? Say hello to tech debt-riddled, vibe-coded apps, crazy dependencies on AI providers, and an emerging threat landscape that can’t be mitigated by a contemporary SOC. Sounds like fun, eh?

Everything is getting much worse, much faster
0:00 / 23:02

Solo podcast: A deep dive on TeamPCP

Presented by

James Wilson
James Wilson

Technology Editor

In this solo episode, James Wilson takes a detailed look at TeamPCP.

It started off by launching clumsy attacks against misconfigured Kubernetes clusters in September 2025. But by February this year, TeamPCP had skilled up and was smashing global software supply chains in the highest profile attacks of 2026.

TeamPCP upskilled and turned the software development ecosystem into its personal credential harvesting machine.

Here’s how TeamPCP did it, and what we can learn from it.

Solo podcast: A deep dive on TeamPCP
0:00 / 64:01

How to survive supply chain attacks

Presented by

James Wilson
James Wilson

Technology Editor

In this podcast James Wilson chats with Brad Arkin about why software supply chain attacks have gone from rare, once-in-a-while disasters to an operational problem affecting mainstream enterprises almost daily.

AI has made attackers faster, and “vibe coding” means the number of environments pulling packages from the internet has gone to the moon. It also means legacy tooling that seeks out the bad packages and cleans them up isn’t enough. Package cooldown windows won’t fix this either.

But all hope is not lost! Tune in to this podcast to find out how you can get a grip on the disaster de jour!

How to survive supply chain attacks
0:00 / 36:51

How the CopyFail disclosure went sideways

Presented by

James Wilson
James Wilson

Technology Editor

In this episode, Theori’s Brian Pak and Andrew Wesie join James Wilson to discuss why the CopyFail exploit was publicly disclosed before Linux distributions had their patches ready. As you’ll hear in this episode, mistakes were made and lessons learned. It’s worth a podcast, too, because in our opinion this incident foreshadows the inevitable problems that open source software will face in the unfolding vulnpocalypse.

How the CopyFail disclosure went sideways
0:00 / 18:56

NCSC’s Ollie Whitehouse on surviving the "bugpocalypse"

Presented by

James Wilson
James Wilson

Technology Editor

Patrick Gray
Patrick Gray

CEO and Publisher

In this edition of Risky Business Features Ollie Whitehouse, the CTO of the UK’s National Cyber Security Centre, joins Patrick Gray and James Wilson to talk about why “patch faster” will only get organisations so far in the face of the AI “bugpocalypse”.

As Ollie explains, organisations will need to reduce internet-facing attack surface and make better architecture decisions as 0day discovery speeds up.

This episode is also available on YouTube.

NCSC’s Ollie Whitehouse on surviving the "bugpocalypse"
0:00 / 29:25