The CyberCall Podcast cover art

The CyberCall Podcast

The CyberCall Podcast

By: Andrew Morgan
Listen for free

The Voice of Cybersecurity for MSPs & MSSPs!

The CyberCall is the weekly podcast where cybersecurity meets business reality. Hosted by Andrew Morgan, Founder of Right of Boom, this is the go-to show for Managed Service Providers (MSPs), virtual CISOs (vCISOs), and IT leaders navigating the complex world of cyber risk, compliance, and AI.


Each episode features raw, practical conversations with the sharpest minds in cybersecurity—from operators in the trenches to CISOs, researchers, policymakers, and toolmakers shaping the future. If you care about protecting your clients, growing your practice, and becoming the security partner businesses trust—this podcast is your playbook.

Co hosts: Phyllis Lee, VP of Content at CIS & Gary Pica, President of TruMethods

© 2026 The CyberCall Podcast
Episodes
  • Who’s Breach Is It – The Legal Grey Area of MSP Client Transitions
    Jul 14 2026

    Here's a scenario that's playing out right now, for several MSPs across the country, and based on our research, most do not have it covered in writing.

    A client decides to switch providers. The new MSP starts rolling out EDR and standing up monitoring. The old MSP begins winding down. Somewhere in that overlap, credentials are still active, agents are only half deployed, and it isn't clear who's actually watching. Then the breach hits.

    Now two MSPs are pointing at each other, the client's data is exposed, and everyone reaches for the contract, only to find the transition period was not CLEARLY defined. Who was responsible? When did one watch end and the other begin? The MSA doesn't say. The SOW doesn't say.

    This is one of the biggest gray areas in managed services, and it's the one that ends up in court.

    To help us walk through it, we are joined by Melissa Ventrone, attorney at Clark Hill, who has lived this from the incident response side, where she sees what happens after the handoff goes wrong. We're going to dig into the controls and monitoring gap, who owns the risk during a transition, and what every MSP should put in writing before they ever take on, or hand off, a client.

    Show More Show Less
    1 hr
  • Inside the Credential Spray Hitting Microsoft 365
    Jul 6 2026

    This week we're digging into a Huntress report that came out on June 30th, updated just a couple days ago on July 2nd a large-scale password spray campaign that hit Microsoft 365 environments through Azure CLI. Between June 12th and June 26th, Huntress tracked more than 81 million login attempts, leading to at least 78 compromised accounts across 64 organizations.

    What makes this one worth a full conversation isn't just the volume it's that a lot of the businesses hit already had Conditional Access policies and MFA in place. The attackers got in anyway, by using a deprecated OAuth flow called ROPC that quietly sidesteps MFA if your policy isn't scoped correctly. So this is really a story about the gap between "MFA is turned on" and "MFA is actually enforced everywhere it needs to be."

    Andrew “Spike” Brandt, Principal Threat Intelligence, Incident Commander at Huntress, sat down with us to unpack what happened, why it worked, and what to actually go check in your own client environments this week.

    Show More Show Less
    1 hr
  • The Vulnpocalypse is here and your MSP can survive it
    Jun 30 2026

    Today we have one of the most important voices in cybersecurity joining us.

    Chris Hughes started his career defending the nation in the United States Air Force. He's spent over two decades in the trenches from the Department of Defense to the federal government to the commercial world as a CISO, security architect, and engineer.

    Today he's VP of Security Strategy at Zenity, where his focus is on what he believes is the defining security challenge of our era: agentic AI.

    He's the author of multiple books published by Wiley, including Modern Vulnerability Management, and he runs Resilient Cyber, a newsletter and podcast that reaches over 31,000 security professionals every single week.

    But here's what you really need to know walking into today’s session, CVE counts are on pace to exceed 50,000 this year. NIST has conceded it can no longer keep up with enriching vulnerability data. And exploit timelines have collapsed from weeks to hours. Our guest has a word for what's coming and he coined it himself: the Vulnpocalypse. But, there’s hope, as Chris will share

    Show More Show Less
    1 hr and 2 mins
adbl_web_anon_alc_button_suppression_t1
No reviews yet