Full transcript
[00:04.9] afternoon everybody. My name is Adam DeLuca. I'm the director of Risk Intelligence here at Everbridge. First of all, I did want to wish Everybody a happy 2026. I know it has been an eventful start to the year with what occurred in Venezuela, the Russian oil tanker, and now what happened today in Minneapolis. [00:20.5] So during a large federal immigration enforcement operation today, an ICE officer shot and killed a 37 year old woman in her car. Federal officials have come out and said the shooting occur while the woman was allegedly trying to run over the agents and the agent fired in self defense. [00:38.4] However, local authorities in some bystander video appear to contradict that federal narrative and suggested the woman was just trying to move her car when she was shot. Local, officials, including Minneapolis Mayor Jacob Fry, strongly condemned the shooting, called it reckless and called for ICE to vacate the city. [00:57.2] Protests obviously erupted at the scene. Some federal agents used tear gas to disperse the crowds. Now I am not here to comment one, way or the other on what actually happened, but I do know that incidents like these and the incidents like the George Floyd situation a few years ago can galvanize national protest movements. [01:17.8] Specifically in sanctuary cities. They increase the risk of civil disorder, especially where local leaders oppose some of the federal enforcement tactics that are being used by the current administration. One thing I've talked about many times and continues to be a major concern for businesses is domestic violent extremism. [01:35.2] Flashpoint events such as this can lead the lone wolf actors on one side of the aisle or another to take actions into their own hands based off their own ideology to conduct some of these lone wolf attacks that we've seen domestic violent extremists conduct, especially against federal, buildings or immigration facilities. [01:56.5] I expect there to be broader scrutiny of ICE operations, congressional hearings, IG reviews, probably moratorium on some of those raids. Just general discourse, on both sides of the in general, calls for restructuring and possibly defunding. [02:13.1] It's going to echo the situation in Portland back in 2020. But obviously with the higher stakes due to the fatality of the bystander today, this is expected to have a chilling effect on immigrant communities nationwide. Probably a reduced reporting in crime, some decreased civic participation, social fragmentation. [02:33.1] Regardless of the specifics of the incident, it's likely to intensify fear. And that is going to have an effect on businesses in a var different ways. Whether that's groups that offer aid to immigrant families, or just operational risk in specific sectors that rely on the immigrant communities. [02:50.2] And a big thing I touched on earlier is going to be the risk exposure to federal facilities and personnel, stemming from an incident like this. There should be an elevated security posture for those dealing with the Fed and around federal buildings nationwide following an incident like this. [03:06.1] So we're going to keep our eye on the situation, as it develops, continue to report out and provide forward leaning analysis. But definitely in the next couple days, due to the size and coverage of this event, you can expect, it to have a galvanizing effect and possibly lead to larger scale protests or civil disorders. [03:24.6] So we'll keep an eye on the situation, but, hope everybody has a good rest of the day. Take care.
Full transcript
[00:05.3]
Hello, my name is Christian Robles and I am the regional analyst for Latin America and the Caribbean here at Everbridge. Today we’re tracking fast moving developments of Venezuela following a major US military operation that has triggered political uncertainty, internal changes and broader regional ripple effects.
[00:25.7]
During the early morning hours of January 3rd, the United States carried out Operation Absolute Resolve. The strikes targeted military and communications sites and Venezuelan authorities later reported damage at or near strategic infrastructure including La Guaira port, where local officials said missiles destroyed warehouses and caused significant disruption.
[00:49.9]
According to Venezuelan and Cuban officials, more than 80 people were killed, including 32 Cuban military and intelligence personnel. Cuba confirmed the deaths, stating that those personnel were assigned to Venezuela under bilateral security cooperation and were killed during combat and bombardment.
[01:10.6]
The outcome of the operation was unprecedented. President Nicolas Maduro and his wife Celia Flores were captured and flown to the United States. And on January 5th both appeared at A Manhattan Federal court and pleaded not guilty to drug trafficking charges while Maduro told the court he had been kidnapped.
[01:35.4]
From this point forward, uncertainty is the defining feature. US messaging towards Venezuela’s interim leadership has been mixed, reinforcing ambiguity around the path ahead. President Donald Trump has publicly stated that the United States could effectively run Venezuela until a transition is achieved, framing US objectives in a way that includes leveraging the country’s oil sector.
[02:07.1]
At the same time, senior U.S. officials have indicated that they expect cooperation from Acting President Delsey Rodriguez with warnings reported that failure to cooperate could result in consequences even worse than Maduro.
[02:23.5]
In parallel, Secretary of State Marco Rubio has sought to narrow that message, emphasizing coercive leverage aimed at producing democratically elected transition rather than day to day US Governance. Rubio has also argued that Venezuela’s next leader should ultimately be determined through free elections, particularly given disputes over the legitimacy of Maduro’s 2024 electoral victory, which the United States and several other countries never recognized.
[02:58.9]
Meanwhile, in Venezuela, the Maduro aligned state structure remains in place. The country’s judicial system directed Del Rodriguez to assume executive authority. She has publicly demanded Maduro’s release while also signaling interest in diplomatic engagement.
[03:17.1]
Also adding to the uncertainty, Venezuela has declared a state of emergency. While there have been no confirmed reports of curfews, the emergency framework increases the likelihood of movement, restrictions, communication disruptions and expanded security operations.
[03:33.8]
The decree also authorizes the detention of individuals accused of supporting the US attack, raising near term repression risks. On the ground, pro regime mobilization is already visible. Reporting describes pro government rallies, some involving armed participants, including groups known as colectivos, which are motorcycle based networks that have historically functioned as informal enforcement arms aligned with the state.
[04:03.7]
This raises the risk that even with Maduro removed, localized violence or parallel security actions could complicate any transition and keep security conditions in Caracas at the regional level.
[04:19.5]
Neighboring governments are closely monitoring border dynamics to limit spillover. While borders remain largely open, heightened security postures and the potential for checkpoints or inspections could disrupt Cross border trademark logistics and migration flows.
[04:36.5]
If conditions deteriorate beyond the region, the strategic implications are significant. Internationally, the operation is raising concerns about precedent. Even as Washington frames the action as law enforcement or counternarcotics, critics argue it challenges norms around sovereignty and territorial integrity.
[05:00.2]
If normalized, this could lower the threshold for other states to justify similar cross border operations, increasing global instability. For Russia and China, Venezuela’s upheaval represents a strategic setback. Both invested heavily in Venezuela as a key partner in the Western Hemisphere.
[05:20.5]
While condemning the operation, they may now seek to reinforce influence elsewhere, including in East Asia, Africa, and the Middle East. As the United States signals renewed focus in regions nearby, we will continue to monitor developments closely, including the security environment in Caracas, emergency measures, border and trade implications, and evolving geopolitical responses.
[05:47.5]
The Global Insights Team Team will publish relevant updates as new confirmed information becomes available.
Full transcript
[00:04.9] Everybody, my name is Adam DeLuca. I'm the director of Risk Intelligence here at Everbridge. I know I've been popping on these a lot lately, but unfortunately, things, continue to happen, that we need to highlight, for our customers and partners. Just last night, gunman attacked a Hanukkah celebration at a popular tourist spot in Australia called Bondi beach. [00:28.3] They killed 11 people in an act of anti Semit. And obviously there's been a wave of anti Semitism in Australia over the past years with vandalism and attacks, on the rise throughout the country. It's the deadliest shooting in Australia in almost three decades. [00:46.0] One suspect is in custody, the other is dead. It occurred just hours after another shooting at Brown University, where an individual who's still at large opened fire in a school building, killing two and injuring dozens of other students. [01:04.0] These are horrible and sad events, but unfortunately they continue to happen. Violent extremism, something that we've talked about many times, it is cheap, it's easy to conduct, and it's very tough to detect and deter. Once an individual is motivated by ideology or something else, they're very difficult to stop. [01:23.9] And I still think organizations are overlooking this as a threat. There are things that you can do to mitigate these risks. In spite of these being cheap, easy and difficult to detect, you can conduct vulnerability and threat assessments. You need to identify your high value targets and your high value events. [01:42.5] You need to continue monitoring and understand tactics, tradecrafts and procedures like vehicle rammings, especially around this time of year. For Christmas markets in Europe and other outdoor events. You need to leverage dark web monitoring and good open source intelligence so you understand the threat landscape. [01:59.4] You need to harden perimeters, control access. You need to randomize security patterns to make yourself and your security less predictable. And you need to enhance your partnerships with law enforcement. And these are all things that you can do to mitigate these risks and keep your people safe this time of year with all these high profile events happening. [02:19.5] So, I hope everybody stays safe and has a great rest of the weekend here at Everbridge. We'll continue to monitor and provide updates as necessary. I hope everybody has a great day.
Full transcript
[00:04.9]
Hey, everybody. My name is Adam DeLuca. I’m the director of Risk Intelligence here at Everbridge. It’s good to be with you all today. I’m here with Ignacio Brarda. He is our deputy CISO here. And looking back on the last year, we just wanted to have a conversation with him about cyber security.
[00:20.4]
It’s obviously a big issue, with organizations right now, and I wanted to bring Ignacio to talk about it. So thank you very much for being here. Yeah, thank you, Adam. Excited to be here. Great. So, you know, just kind of looking back over the last year with how active the cybersecurity threat landscape was, what would you identify as maybe a significant trend or cybersecurity incident that was a real inflection point for the threat landscape?
[00:47.3]
Yeah, that’s. That’s an excellent question, because there’s definitely a lot going on this past year. But something that was very unique to, to 2025, I would say, is that we had the first reported AI orchestrated cyber espionage campaign. Right.
[01:02.5]
And in there, this is a, before and after, I think, in the industry, because bad actors are starting to use agents to do these attacks for them. Right. And so if you think right, like, bad actors organize themselves, they create their own enterprises.
[01:20.8]
But what’s different now is that by leveraging AI and these technologies that were designed, for good, they’re using them from the wrong reasons. And this means that they have an army of 24 by seven agents that can produce these attacks for them.
[01:39.9]
We know that the technology landscape is very complex. You need a lot of expertise in different areas. But just like AI helps us understand technologies better, it’s also helping these attackers quickly become experts and finding exploits on different technologies that are out there.
[01:56.0]
And with the help of AI agents, they can automate that and be constantly knocking at your door trying, to find how to get in. Yeah, it just makes them faster and more efficient and, you know, be able to change the adversary behavior and targeting and their capabilities.
[02:12.7]
Especially with the, geopolitical nation state actors, the Volt typhoon campaigns, and ransomware for a service. I think AI is just going to accelerate all that and make it that much more difficult for organizations to kind of defend against it. But again, to the ransomware point, we talk about ransomware and we talk about phishing, denial of service attacks, but what are some of the emerging cyber trends in 2026 that might not be top of mind yet for organizations?
[02:41.5]
Yeah, I think part of that is going to be Being able to respond before it was with automation and APIs, you know, it was responding at the speed of machines. Now with the AI, it’s going to be responding at the speed of AI.
[02:56.8]
And this is, a component that’s adaptive. Right. For teams. So if you think about it before, being good at security is not good enough anymore. Right. You need to take that extra level that before only certain enterprises and industries were able to get to, which is being adaptive.
[03:14.5]
How do you adapt? Attacks are going to be being modified as they start getting through defenses now. Right. With the help of AI, you know, malware can mutate in order to find the ways to get through the different defense layers. So I think, you know, besides your ransomware, your phishings, we need to be very careful with adaptive attacks.
[03:35.8]
I think they’re changing as, as they go and as they make it through your organization, in order to be ready for that. It’s kind of like fighting fire with fire. Attackers are using AI to do this, while organizations are going to have to be better at using AI to prevent them from leveraging these adaptive attacks.
[03:57.2]
So what are some ways to do that? Zero trust architecture, proactive red teaming. What are some of the uses that you could use AI for to defend against, against some of these attacks? Yeah, that’s an excellent question, Adam. I think one of them is when you look at your user behavior and even taking a step farther, your services and machine behaviors, using machine learning to understand that behavior.
[04:24.0]
So that whenever something steps away from that predefined, baseline that you have built for either that user identity or system, you can quickly identify that and have the team respond to it. Right.
[04:39.0]
And a lot of that response going to be automated in some way. Right. So you’ll have to define, I think enterprise teams are going to, are going to have to define where the risk appetite is and how much they want to let these AIs respond to these attacks for them.
[04:57.3]
Because there’s definitely risk associated with that too, right? Well, yeah, it’s not about risk avoidance. Right. It’s about risk prioritization and making sure that you’re taking on the amount of risk for certain vulnerabilities. But I think everybody’s going to want to know what’s next.
[05:13.2]
So you just touched on that. But how might organizations go about prioritizing improving their cyber posture going forward with the dynamic threat of AI and with the increased presence of nation state actors in these threat groups? Yeah, yeah.
[05:29.5]
And you know that I like, I really like that last part. Of your question, you know, state actors and threat groups, the way organizations can defend against those very advanced threats and persistent threats is really identifying what the crown jewels are.
[05:46.1]
Right. One of the key things I think for 2026 is going to be really locking down those crown jewels, really putting the focus where what are those systems, people, processes, data that are making your business money, that are critical to your operation and making sure that you’re able to protect them with the right technologies in there.
[06:07.3]
As we see the world becoming more and more digital, the landscape is growing and the amount of systems, it’s rapidly increasing. So really understanding what are my crown jewels, what are the systems that are making money to my organization that I, you know, we need to protect everything.
[06:26.3]
But my focus needs to be very adaptive, in these specific systems for my organization. So I do think, you know, CISOs and security experts are going to have to continue to work their, their business hat right. And really understanding what’s critical for, for the business and how can I protect that in 2026.
[06:44.9]
Yeah, it’s not just for cyber. It’s identifying unacceptable consequences based off of threat environment and adapting. So, you know, tabletop exercises, not just good cyber hygiene, but, you know, because the way people are attacking and going about exploiting information now is just so diverse and complicated.
[07:04.2]
Ignacio, it was great for you to take the time out today and join us on the rapid resilience pod. Anytime. You’re happy to come on and talk to us about cybersecurity, hygiene or anything else. We really appreciate the partnership over the last year. Excellent. Thanks, Adam.
[07:19.9]
All right, thanks, Ignacio.
Collapse
Full transcript
[00:04.9]
Hello, my name is Wyatt Kinney and I’m the Everbridge Global Insights team’s regional analyst for Asia Pacific. Today I’ll be providing a brief update on renewed military tensions along the Thailand and Cambodian border and what this escalation means for organizations operating in the region.
[00:21.3]
On December 8th Thailand carried out airstrikes against Cambodian military positions near the contested areas of Pre Vaheer and Tamu. And Tom, Thai authorities say the strikes were a defensive response after Cambodia deployed long range rocket systems close enough to threaten Thailand civilian areas.
[00:39.5]
Cambodia reports at least four civilian deaths, additional injuries and damage to infrastructure in the area that was impacted. Both governments initiated evacuations along the border following the strikes. This marks the most serious escalation between the two countries south since mid-2025.
[00:57.0]
Why does this matter? These strikes are part of a broader pattern of instability throughout 2025, including exchanges of fire between the two sides earlier this year in May, civilian confrontations in September along the border which included protests and a landmine blast in November that disrupted the Kuala Lumpur Peace Accord which was a US and Malaysia facilitated framework designed to help Thailand and Cambodia manage border incidents, coordinate troop movements, support joint de mining within the area.
[01:27.3]
The implementation of this peace report has been uneven as we’ve seen further escalations since it’s been implemented. At the same time the communication channels meant to prevent escalation are underdeveloped or inconsistent. Without reliable joint investigation or de escalation tactics, even routine troop movements from either side can be seen as hostile actions.
[01:51.3]
So the core of what drives the tension between the two countries, the International Court of Justice in 1962 ruled that the pre of a year of temple belongs to Cambodia. But the ruling did not clarify the surrounding territory, leaving the border ambiguous and highly dispute prone.
[02:10.8]
Domestic politics play a role as well. Thai security institutions emphasize rapid decisive responses. Cambodia faces a strong sovereignty expectation from communities living near the contested area. External actors also shape the tension.
[02:27.7]
The US and Malaysia continue to support the Kuala Lumpur process in the peace accord. Cambodia’s close relationship with China adds additional geopolitical weight to its own decision making when these disputes occur. So impacts on business operations.
[02:45.2]
For companies operating in northeastern Thailand or northwestern Cambodia, this escalation affects logistics, workforce mobility, regulatory processes and project timelines. Cross border checkpoints already seeing slower processing and heightened inspections.
[03:02.0]
Manufacturing zones reliant on cross border flows including textiles, footwear, electrical components, automotive components. It’s possible they’ll see production delays and the need for higher inventory buffers, Cambodian nationals working in Thailand may face tighter document checks, leading to temporary workforce gaps.
[03:22.1]
Infrastructure and development projects near the border, especially those requiring surveys or demining, may experience pauses or restricted access. Even administrative processes such as Cambodia’s recent e visa changes are adding uncertainty to the digital and regulatory workflows.
[03:40.5]
So, an outlook for this situation in the next 48 to 72 hours. Continued tension along the border, no doubt. Hopefully no indication of intentional escalation. But like we talked about before, you know, even a simple troop movement could spark something. The lack of joint monitoring keeps misinterpretation risks elevated.
[04:00.8]
Certainly, over the next two to six weeks, fragile standoff is most the most likely scenario. Even with occasional incidents, uneven diplomatic engagement, organizations should anticipate recurring operational variability, over the next six to 12 months going into 2026, the core issues are going to remain, which includes an unclear border, leftover mines, and weak coordination between the two governments.
[04:32.4]
Unlikely, to be resolved, be resolved quickly. Because of that, even without a full scale conflict, the border is expected to remain unstable from time to time or sporadically throughout the next year. So what should organizations do now?
[04:47.5]
Companies should ensure their business continuity plans allow rapid adjustments to routing, staffing, and facility access. Alternate transport corridors either through Laos, Vietnam, or other maritime routes may be needed if tensions increase. Non essential travel near affected districts should be limited.
[05:05.3]
Essential personnel should receive vetted route guidance and reliable communication tools. And finally, communication with staff, partners, and investors should remain factual and neutral, Given the sensitivity of the territorial issues. Thank you so much.
[05:20.6]
We’ll continue to monitor the situation closely. Have a great rest of your day.
