{"podcast":{"title":"Easy Prey","slug":"easy-prey-456730","podcast_index_feed_id":456730,"rss_url":"https://easyprey.libsyn.com/rss","website_url":"https://www.easyprey.com","image_url":"https://static.libsyn.com/p/assets/d/a/7/b/da7b4263e01762f1d959afa2a1bf1c87/EASY_PREY_-_PODCAST_COVER-20250929-rgdpfg4wki.jpg","author":"Chris Parker","episode_count":325,"summary":"Chris Parker, the founder of WhatIsMyIPAddress.com, interviews guests and tells real-life stories about topics to open your eyes to the danger and traps lurking in the real world, ranging from online scams and frauds to everyday situations where people are trying to take advantage of you—for their gain and your loss. Our goal is to educate and equip you, so you learn how to spot the warning signs of trouble, take quick action, and lower the risk of becoming a victim.","last_synced_at":null,"page_url":"https://stenobird.com/podcast/easy-prey-456730"},"episode":{"title":"Surviving a Ransomware Attack","slug":"surviving-a-ransomware-attack","published_at":"2026-01-14T11:00:00+00:00","page_url":"https://stenobird.com/podcast/easy-prey-456730/surviving-a-ransomware-attack","show_page_url":"https://stenobird.com/podcast/easy-prey-456730","url":"https://www.easyprey.com/306","audio_url":"https://traffic.libsyn.com/secure/easyprey/EP306.mp3?dest-id=1655398","summary":"A ransomware attack doesn't always announce itself with flashing warnings and locked screens. Sometimes it starts with a quiet system outage, a few unavailable servers, and a sinking realization days later that the threat actors were already inside. This conversation pulls back the curtain on what really happens when an organization believes it's dealing with routine failures only to discover it's facing a full-scale cyber extortion event. My guest today is Zachary Lewis, CIO and CISO for a Midwest university, a 40 Under 40 Business Leader, and a former Nonprofit CISO of the Year. Zachary shares the inside story of a LockBit ransomware attack that unfolded while his team was still building foundational security controls, forcing real-time decisions about recovery, disclosure, negotiations, and whether paying a ransom was even an option. We talk about the shame that keeps many cyber incidents hidden, the emotional weight leaders carry during these moments, and the practical realities that don't show up in tabletop exercises from buying bitcoin to restoring systems when password managers are encrypted. It's an honest, grounded discussion about resilience, preparedness, and why sharing these stories openly may be one of the most important defenses organizations have. Show Notes: [04:05] Zachary Lewis explains why the absence of an immediate ransom note delayed suspicion of an attack. [06:00] The first technical indicators suggest something more serious is unfolding. [07:45] Discovering encrypted hypervisors and realizing recovery won't be straightforward. [09:30] Zachary outlines when data exfiltration became a real concern. [11:05] Receiving the LockBit ransomware note confirms the organization has been compromised. [12:55] The 4:30 a.m. phone call pushes leadership into…","meta_description":"A ransomware attack doesn't always announce itself with flashing warnings and locked screens. Sometimes it starts with a quiet system outage, a few unavai…","key_points":[],"chapters":[],"topics":[],"duration_seconds":2859,"processing_state":"not_requested","actions":[{"name":"request_transcript","method":"POST","url":"https://stenobird.com/v1/public/podcasts/easy-prey-456730/episodes/surviving-a-ransomware-attack/transcription-requests","description":"Idempotently request low-priority transcript generation for this episode."},{"name":"read_markdown","method":"GET","url":"https://stenobird.com/podcast/easy-prey-456730/surviving-a-ransomware-attack.md","description":"Read the agent-friendly Markdown representation of this episode resource."}]}}