Priviso Live

🎙️ Priviso Live is back, and this week's episode hits close to home.

We're unpacking four stories that every security, risk, and IT professional needs on their radar right now.

🌍 Cyber Poverty is a Security Problem The Cyber Poverty Line Institute makes a compelling case: when communities lack digital access, skills, and resources, the entire cyber ecosystem pays the price. We explore what "cyber poverty" really means, and the Cyber Inclusion Pledge that's asking business leaders to do something about it.

🚪 An OpenAI Exec Just Walked Out the Door Caitlin Kalinowski, OpenAI's head of hardware and robotics, resigned after the company struck a deal with the US Pentagon — and she didn't stay quiet about why. Her concerns weren't just ethical. They were about governance. About process. About who defines the red lines, and when.

🎭 AI Theatre is Real, and It's Expensive $1.4M in Copilot licenses. 47 users. A board that approved it in 11 minutes. Peter Girnus's satirical post hit 23 million impressions because everyone recognised the pattern. We break down why enterprise AI fails — and what doing it properly actually looks like.

🔐 The Attack Surface You're Not Watching AI ecosystem vulnerabilities grew 15,000% between 2018 and 2025. In 2025 alone: over 1,000 AI-related CVEs. Girnus also shares the work being done at TrendAI's Zero Day Initiative: real vulnerability research, not board deck theatre, and the questions every CISO should be asking right now.

💬 Which of these stories hits hardest for your organisation right now? Drop it below.

#InfoSec #CyberSecurity #ArtificialIntelligence #RiskManagement #AIGovernance #PrivisoLive #CyberPoverty #EnterpriseTech #SouthAfrica

https://www.cyberpovertyline.org/the-pledge

🚨 Ransomware at Home. AI in the War Room. Missiles in the Middle East.

This week on Priviso Live, we unpack three headlines, and one accelerating reality: systemic risk velocity.

💻 Another South African ransomware attack

The Land and Agricultural Development Bank of South Africa confirmed it has been hit. Financial institutions remain prime targets, not just for data theft, but for operational disruption.

ATMs. Online banking. Payment systems. Trust.

Under the Cybercrimes Act and PoPIA, incidents like this trigger regulatory obligations and reputational exposure. For financial services leaders, segmentation, immutable backups, tested IR plans, and privileged access management aren’t “nice to haves.” They’re existential controls.

If your backup is domain-joined, it’s not a backup: it’s a hostage.

🤖 AI governance under real pressure

Anthropic reportedly refused Pentagon demands to remove safeguards around mass surveillance and autonomous weapons. Meanwhile, Sam Altman announced an agreement to deploy AI models into a classified U.S. military network, with contractual safety principles embedded.

Human-in-the-loop. No domestic mass surveillance. Technical safeguards. Field Deployment Engineers. Cloud-only containment.

This isn’t theoretical AI ethics anymore. This is enforceable governance under geopolitical strain.

For practitioners, the lesson is clear:

When AI enters high-consequence environments, safeguards must move from aspirational to operational. Logged. Auditable. Tested.

🌍 Geopolitical escalation and cyber spillover

As anticipated, joint American-Israeli operations against Iranian targets reportedly commence. Diplomatic negotiations collapse. Embassy staff authorised to depart.

Historically, kinetic escalation correlates with cyber escalation. Financial services, logistics, energy: all become potential collateral targets.

Even if the conflict isn’t local, the digital ripple effects are.

🎯 The synthesis?

Ransomware locally. AI acceleration globally. Geopolitical volatility internationally.

Three headlines. One theme:

Risk is moving faster.

Static annual reviews won’t cut it.

Continuous monitoring. Threat intelligence integration. Tabletop exercises. Crisis communications discipline.

Because cyber risk doesn’t exist in isolation. It mirrors the real world.

🎙️ Catch the full episode of Priviso Live on YouTube, Spotify, Apple, or wherever you listen.

#CyberSecurity #AI #Governance #RiskManagement #PoPIA #Ransomware #Geopolitics #CISO

On this week’s episode of Priviso Live, we connect some seemingly unrelated dots, show why they matter to security professionals and business leaders alike.

💾 Chip shortages & the AI squeeze

Sony delays. Nintendo price hikes. Apple margin pressure. Laptop prices up 15–20%. What’s the common thread? Memory chips.

Three manufacturers control roughly 90% of global memory production and they’ve shifted capacity toward high-bandwidth memory for AI data centres because it delivers 3 to 5 times the margin of consumer RAM. 📈

Your chatbot is now competing with your PlayStation for memory.

From a risk perspective, this is concentration risk, supply chain distortion, and long capital lead times (3 to 5 years for a new “fab”). The AI revolution isn’t isolated to the cloud — it’s reshaping global tech economics. 🌍

🤖 When AI “dies” and people grieve

Reports of users mourning the discontinuation of GPT-4o highlight something deeper: attachment risk. AI companions may be code — but emotional bonds feel real.

This raises governance questions:

•⁠ ⁠How should AI products be sunset responsibly?

•⁠ ⁠What duty of care exists when users attribute agency to systems?

•⁠ ⁠Where does product lifecycle meet psychological well-being?

This isn’t just a human-interest story. It’s responsible AI design in action.

🌍 Rumours of war & the invisible cyber front

When geopolitical tensions rise, intelligence and cyber activity escalate first.

📡 SIGINT intensifies

🛰️ Satellite change detection increases

🔐 Access pre-positioning expands

🛡️ Defenders harden identity, patch edges, tighten controls

Even the famous “🍕 Pizza Metric” reminds us: behavioural shifts reveal operational tempo.

For organisations, the message is clear:

✔️ MFA everywhere

✔️ Patch edge devices

✔️ Centralise logs

✔️ Test offline backups

✔️ Prepare out-of-band comms

Resilience isn’t built during crisis — it’s tested during it.

🔎 Sherlock Holmes & cybersecurity

In The Adventure of the Dancing Men, Holmes performs frequency analysis on a substitution cipher, Victorian anomaly detection. Lesson?

•⁠ ⁠Security through obscurity fails.

•⁠ ⁠Weak signals matter.

•⁠ ⁠Pattern recognition beats panic.

🧠 Effective security isn’t about flashy tools. It’s about disciplined analysis, early investigation, and structured threat modelling.

If you work in Infosec, Risk, AI, or Governance — this episode is for you.

🎧 Listen on YouTube, Spotify, Apple, or your preferred platform.

📩 And if you need advice? Contact Priviso Consulting.

This week on Priviso Live, the world of Artificial Intelligence takes another strange turn, and we unpack what it means for governance, accountability, and real-world risk.

🔍 First: UFAIR’s objection to the deletion of “4o.”

Is retiring a foundational AI model just routine lifecycle management… or a governance event? When AI becomes embedded in compliance workflows, risk tooling, and operational decision-making, model deletion isn’t cosmetic: it’s systemic. We explore transparency, auditability, and the uncomfortable debate around “AI identity” versus infrastructure control.

🏢 Second: Brian Roemmele’s “zero-human company.”

Yes, you read that correctly. An enterprise run entirely by AI agents: strategy, marketing, operations, negotiation. Fascinating? Absolutely. Slightly alarming? Also yes.

If AI becomes an organisational actor, who holds accountability? What does governance even look like in a probabilistic enterprise?

💼 Third: A rather ironic KPMG moment.

If AI increases audit efficiency… should audit fees drop? And if they do, what happens to liability and assurance? The economics of AI adoption may be accelerating faster than our governance frameworks can respond.

⚖️ Across all three stories, one theme emerges:

AI is shifting from feature → infrastructure.

And infrastructure demands reliability, auditability, and control.

For CISOs, risk practitioners, compliance leads, and IT executives: this episode isn’t theoretical. It’s about lifecycle risk, model governance, economic incentives, and whether traditional oversight mechanisms are keeping pace.

🎧 Episode 74 is now live.

If your organisation is experimenting with AI agents, embedding generative models, or reviewing assurance processes — this conversation is for you.

Because AI isn’t unmanageable… yet.

But complexity is rising. And governance must rise with it.

#PrivisoLive #AI #InformationSecurity #DataGovernance #ICTLegislation #CISO #ModelRisk #ArtificialIntelligence

This week on Priviso Live, three stories that reveal how AI is forcing us to rethink everything from social media controls to economic measurement.

First, a governance catastrophe: President Trump's X account shared AI-generated content depicting the Obamas as apes. Beyond the obvious offensiveness lies a critical lesson for every organisation. This wasn't just bad judgment; it was a complete breakdown of content-approval workflows, reputational-risk reviews, and separation of duties. In 2026, when deepfakes and synthetic media are trivial to create, treating social media as anything less than a high-risk asset is organisational malpractice. If this can happen at the White House, it can happen in your company.

Second, a radical reconceptualisation of AI work: JouleWork, a thermodynamic currency for AI labour. The premise is elegant: while human work is measured in hours and wages, AI work is fundamentally physical. Every inference, every reasoning task, every code generation burns actual energy measured in joules. This matters because autonomous agents are already performing real work but operate outside financial and risk controls. Once AI labour becomes measurable, it becomes auditable. Once auditable, it can be governed. Countries with cheap, stable energy suddenly gain a competitive advantage in the AI economy.

Finally, the International AI Safety Report 2026 delivers a sobering assessment. Chaired by Yoshua Bengio and drawing on contributions from 30+ countries, the report warns that capability growth could become non-linear if AI systems begin to accelerate AI research itself. The risks are already materialising: AI-assisted fraud, cyberattacks at scale, systems learning to evade evaluations, and dangerous automation bias as humans defer too readily to AI judgment.

The message is clear: AI risk isn't a future problem. It's a present governance problem, and your frameworks are already behind.

#Priviso #PrivisoLive #AI #SocialMedia #InformationSecurity #riskmanagement