In this Risky Business News sponsor interview, Catalin Cimpanu talks with Airlock Digital founders Daniel Schell and David Cottingham about vulnerable drivers, BYOVD attacks, and the problem with driver-based attacks.
A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.
You can find the newsletter version of this podcast here.
This Soap Box edition of the podcast is sponsored by Proofpoint.
Proofpoint offers email security and DLP products and services, and they’re probably best known for being the biggest email security company on the planet.
That means they process a LOT of emails in the hopes of throttling the number of malicious emails that organisations have to deal with, whether that’s malware, phishing or BEC.
So, with that in mind, what role could large language models play in email security?
Now that the initial ChatGPT hype has died off a little, we spoke with Proofpoint’s VP of cybersecurity strategy Ryan Kalember about large language models and how they’re going to help defenders and attackers alike.
A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.
You can find the newsletter version of this podcast here.
In this podcast Patrick Gray and Tom Uren talk about recent breaches of JumpCloud and Microsoft cloud services. It’s great they disclosed these incidents voluntarily, but cloud companies are so important that detailed postmortems shouldn’t be voluntary.
They also discuss the Biden administration’s cyber security strategy implementation plan and the opportunity to collect email destined for the US military by typo-squatting on the ‘.ml’ domain.
A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.
You can find the newsletter version of this podcast here.
On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news. They cover:
This week’s show is brought to you by security focussed enterprise browser maker Island. Dan Amiga, Island’s CTO and co-founder, is this week’s sponsor guest. He talks about why widespread enterprise browser deployment is inevitable.
Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that’s your thing.
In this edition of Between Two Nerds Tom Uren and The Grugq look at the idea of actively shaping ransomware group behaviour to get the type of behaviour we’d prefer.
A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Kaitlyn Sawrey.
You can find the newsletter version of this podcast here.
A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Kaitlyn Sawrey.
You can find the newsletter version of this podcast here.
In this podcast Patrick Gray and Tom Uren talk about Citizen Lab’s analysis of WeChat’s behaviour and its privacy policy. That report misses the point: WeChat is an integral part of the PRC’s architecture of censorship and repression, and the Chinese government isn’t constrained by WeChat’s privacy policy.
They also discuss a new report that proposes a human-centred framework for assessing client-side Child Sexual Abuse Material (CSAM) detection technologies. It’s a step forward because it makes clearer the tradeoffs that are being made when these technologies are suggested.
A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.
You can find the newsletter version of this podcast here.
On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news. They cover:
This week’s show is brought to you by Netwrix. Martin Cannard, Netwrix’s VP of Product Strategy, is this week’s sponsor guest. He talks about why zero standing privilege is a worthy goal.
Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that’s your thing.
In this Risky Business News sponsor interview, Catalin Cimpanu talks with Scott Hanson, Head of Global Security Operations at Kroll, on how the company has adopted Detection-as-Code for its approach to writing, managing, and rolling out detection rules for its customers.
A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.
You can find the newsletter version of this podcast here.
A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.
You can find the newsletter version of this podcast here.
In this podcast Patrick Gray and Tom Uren talk about the regular extradition battles that occur between the US and Russia whenever a Russian cybercriminal is arrested in a third country. It’s less about protecting cybercriminals and more about Russia trying to poke the USA in the eye.
They also discuss recent Ukrainian hacktivist operations that have been extremely successful, but also don’t seem to have had any really meaningful impact.
A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.
You can find the newsletter version of this podcast here.
In this edition of Between Two Nerds Tom Uren and The Grugq look at the EU’s proposed media freedom act and how one of its goals is to protect journalists from spyware.
In this Risky Business News sponsor interview Tom Uren talks to RunZero’s CEO Chris Kirsch about how RunZero has evolved from an IT network active scanning product to one that can now discover assets on OT and cloud environments using both active and passive scanning approaches.
