In this episode of The Covi Way, Tier 3 tech expert Thomas Bray joins host Dave Vent for a candid, eye-opening conversation about the rapidly evolving cybersecurity landscape — and why security in 2025 is no longer just about tools and tech.
From ransomware-as-a-service and credential stuffing to phishing simulations and cultural awareness, Thomas breaks down what businesses of all sizes need to know to stay protected in an era where attacks are no longer a question of if, but when.
It’s not just about blocking threats — it’s about creating resilient systems, embedding security into culture, and empowering people to recognize risk before it becomes a breach. Whether you're a business leader, IT pro, or nonprofit exec, this episode will shift how you think about cybersecurity.
KEY TAKEAWAYS:
Cybersecurity is no longer just technical — it must be cultural
Social engineering is still the top threat, even in 2025
Multi-factor authentication isn’t perfect — but it’s essential
Simple steps like credential managers and email spoofing protection go a long way
Awareness training tools like Usecure can transform employee behavior
KEY QUOTES:
“Security isn't just the IT department’s job — it's everybody’s job.”
“We build better castles, they build bigger ladders.”
“More than 50% of small businesses experience a breach — and many don’t recover.”
“The most secure computer is at the bottom of the ocean… but that’s not very productive.”
“You’re either preparing or you’re reacting. One costs a lot less.”
CHAPTERS:
00:00 – Welcome + Meet Thomas Bray
01:12 – How Cybercrime Became a $10.5T Industry
05:30 – The Rise of Ransomware-as-a-Service
08:20 – Social Engineering + Why It Still Works
13:00 – Balancing Security + Productivity
17:45 – Culture, Training, and the Role of People
22:30 – Usecure + Behavioral Awareness
26:00 – Free, High-Impact Security Tips
29:15 – Final Thoughts + Start the Conversation
