Episode #47 - We’re Addicted to Short-Term Thinking (And It’s Screwing Us All)
Recorded Live on YouTube: Thursday, September 11, 2025 – 9:00 PM CTThis week on InfoSec to Insanity, Evan Francen and Matt Goodacre dive headfirst into a problem that’s bigger than firewalls, frameworks, or fancy AI tools—our obsession with short-term thinking. Inspired by Evan’s latest blog post, We’re Addicted to Short-Term Thinking (And It’s Screwing Us All), we’ll break down how chasing the next quick win, quarterly number, or shiny product is wrecking cybersecurity, business, and even our personal lives.Why do we keep doing what we know doesn’t work? Why do leaders mortgage long-term resilience for short-term gains? And most importantly—how do we break the cycle before it breaks us?As always, expect the full InfoSec to Insanity treatment:🔥 WTF Happened This Week? – The biggest security stories, stripped of the nonsense.🤣 CISO Humor – Because if we don’t laugh, we’ll cry.🎤 No-BS conversation – The kind the industry doesn’t want you to hear.💥 Join us live, bring your questions, and let’s talk about building something real instead of just patching over the cracks.
--------
1:35:40
--------
1:35:40
Episode #46 - Selling Fear – Why the Cybersecurity Industry Loves the Chaos
Streamed live on Sep 4, 2025In this episode, Evan Francen and Matt Goodacre are back with Part 5 of the Accountability in Cybersecurity is Broken series: Selling Fear – Why the Cybersecurity Industry Loves the Chaos.Confusion sells. Simplicity doesn’t. And that’s not an accident—it’s a business model. Too many vendors, “experts,” and even practitioners are getting rich off of fear, uncertainty, and doubt (FUD), while the people they’re supposed to protect are left confused, vulnerable, and broke. Evan and Matt will tear into how snake oil gets sold, why simple fixes get ignored (remember the Senate hearing where nobody would admit a firewall could’ve helped?), and what real accountability looks like.Of course, it wouldn’t be InfoSec to Insanity without the fun:WTF Happened This Week? – The biggest security stories, with a dose of sanity.CISO Humor – Laugh so you don’t cry.And plenty of candid, no-BS conversation the industry doesn’t want you to hear.Join us live, bring your questions, and be part of the conversation.Subscribe and hit the bell so you don’t miss it.
--------
1:32:24
--------
1:32:24
Episode #45 - Breach? Jackpot. How the Legal System Profits from Failure
Part 4 of the “Accountability in Cybersecurity is Broken” series - Recorded LIVE August 21, 2025 on YouTube.Every breach is a gold mine—but not for the victims. In this episode, Evan Francen (30+ year InfoSec badass) and Matt strip away the shiny headlines to expose the ugly truth: when cyber disasters strike, lawyers strike the jackpot. We’re unpacking how class-action lawsuits have turned cybersecurity disasters into bonanzas for law firms—while the real victims get scraps.From Equifax to AT&T to Meta, we’re talking grotesque settlements, insane legal fees, and a broken accountability loop that thrives on failure.Raw and unapologetic—this is the conversation no one else (or at least, not enough of us) is having.Highlights you won’t want to miss:Why class-action law firms rake in millions every time your data gets exposedHow breach settlements often benefit lawyers more than the victims themselvesThe real numbers behind Equifax, AT&T, Meta—and the legal fee loot they generatedWhy the legal system might be perpetuating failure, not fixing itReal talk on how cyber accountability dies in the courtroom, not the boardroomSubscribe so you don’t miss the chaos.
--------
1:24:50
--------
1:24:50
Episode #44 - Cybersecurity Doesn’t Win Elections: So Politicians Don’t Give a Sh*t
Accountability in Cybersecurity Is Broken, Part 3 – “Cybersecurity Doesn’t Win Elections: So Politicians Don’t Give a Sh*t”Cybersecurity doesn’t win votes—so politicians don’t care. That political apathy leaves CEOs, boards, and tech giants free to make terrible security decisions with no real accountability. In this episode, Evan Francen (30+ year veteran, co-founder of FRSecure & SecurityStudio, author of UNSECURITY) and co-host Matt Goodacre rip into how politics fuels the accountability crisis in cybersecurity. From Citrix zero-days and hacked U.S. courts to Russian hackers opening a dam in Norway, Evan and Matt deliver WTF headlines, CISO humor, and hard-hitting fixes that don’t need a campaign trail. Expect sharp insights, raw honesty, and a heavy dose of sarcasm aimed at the broken system we’re all stuck with.Highlights:Why politicians ignore cybersecurity until it costs votesWTF news: Citrix, U.S. courts, hacked dams, and vendor disastersCISO humor: therapy for the blame-soaked security prosFive fixes to force accountability—without waiting on lawsA preview of Part 4: Breach? Jackpot. How the Legal System Profits from FailureKey Quote: “Politicians don’t care about cybersecurity because it doesn’t win elections—just lawsuits.”
--------
1:17:32
--------
1:17:32
Episode #43 – It’s Not Real Until It Hurts: Why No One Demands Change
Part 2: It’s Not Real Until It Hurts Cybersecurity doesn’t change because we know better. It changes because someone bleeds. Not until the breach is splashed across headlines. Not until patients are turned away mid-surgery. Not until your CEO’s kid finds their identity on the dark web. In Part 2 of our six-part series, Accountability in Cybersecurity is Broken, Evan Francen (30+ years of cyber trench warfare) and Matt Goodacre (logic ninja, cyber smartass) rip into the ugly truth: in this industry, pain is the only language leaders understand.We’re talking WTF news—from grounded airlines to vishing attacks against Google—CISO Humor that’ll make you laugh-cry, and a no-B.S. deep dive into why our so-called “leaders” only act after the damage is done. You’ll walk away with a “fix list” for pain-proofing your security strategy, so maybe next time you don’t have to bleed to get budget.If you’ve ever warned about a risk months in advance, only to be ignored until disaster hit—this one’s for you. You’re not crazy. You’re just ahead of the blast radius.This ain’t your compliance department’s podcast. This is InfoSec to Insanity.
Welcome to the InfoSec to Insanity Podcast, a wild, unfiltered ride through the crazy world of information security. Hosted by the legendary Evan Francen—the man on a mission to fix the broken InfoSec industry—you’ll get straight talk, insane stories, and no-nonsense advice on how we can make real change in cybersecurity.Evan is no stranger to breaking down tough topics, with over 30 years of practical InfoSec experience, founding FRSecure and SecurityStudio, and helping the world make sense of security risks. He’s also written UNSECURITY, where he tells it like it is—our industry is failing, but it’s fixable. If you’ve ever felt like InfoSec was more chaos than clarity, then this podcast is exactly what you need.Why Tune In?Candid Conversations: No fluff, no corporate BS. Just real talk about the state of security.Battle Stories: Evan’s got tales—from advising on the infamous Target breach to helping protect companies like Wells Fargo and Blue Cross/Blue Shield.Fixing the Industry: Join us as we tackle the tough questions: Why do breaches keep happening? What’s wrong with InfoSec? And how can we fix it?Fun and Relatable: Evan brings his humor, hacker mindset, and love for diving into problems head-on—sometimes literally when he’s out scuba diving or tearing down a motorcycle!This podcast isn’t your standard cybersecurity chat. It’s a mix of tech talk, leadership insight, and just the right amount of insanity. Whether you’re a seasoned InfoSec pro or just trying to keep your company safe, there’s something for everyone here.
![Podcast Finding Peak [Formerly The Ryan Hanley Show]](https://www.radio.net/podcast-images/175/finding-peak-podcast.jpeg?version=82b124b0ff069964372f0fb64b11dde9)
USA