Podcasts

A criminal complaint filed against Uber’s former chief security officer this week was an extraordinary event because Uber’s response to its 2016 breach was anything but ordinary. There are nonetheless some hard lessons in it for every CSO.

On this week’s show Patrick, Adam and Sherrod DeGrippo discuss the week’s security news, including:

• NSA and FBI doxx GRU malware. Lol.
• Malicious Azure app snags SANS staffer
• Oracle to acquire TikTok?
• Trump weighs Snowden pardon
• Much, much more

This week’s show is brought to you by Airlock Digital. They make allowlist/safelist software that is actually manageable at scale! David Cottingham, an Airlock co-founder, joins the show this week to talk through a few product updates.

If the SANS Institute can fall victim to OAuth phishing, what hope do most Microsoft customers have?

The Australian Government has unveiled plans for unprecedented interventions in the operations of critical infrastructure providers.

American technology companies must accept they have a role to play in national security, and that the return of Great Power competition requires them to choose sides.

On this week’s show Patrick and Adam discuss the week’s security news, including:

• WeChat joins TikTok in the naughty corner
• TLS 1.3 with ESNI will have a massive impact on censorship AND security
• Belarus goes dark after dodgy election
• Capital One fined $80m
• Much, much more

A US-China trade war and a global pandemic have in a few short months accelerated a drift into ‘network sovereignty’: a world in which the internet is no longer a truly open, global network.

Australia’s 2020 cyber security strategy is the latest national plan to propose that company directors be held accountable for meeting minimum information security baselines prescribed by the government.

In the absence of anything specific in the strategy document, Risky.Biz talked to some real experts on measuring cyber security maturity to suggest some ways forward.

On this week’s show Patrick and Adam discuss the week’s security news, including:

• Trump’s war on TikTok (featuring guest Alex Stamos)
• Twitter hackers caught. Pretty embarrassing stuff, really.
• NSO implants target Easter Bunny
• Garmin may need a good OFAC lawyer (featuring comment from Dmitri Alperovitch)
• Blackberry cracked after five years leads to multiple arrests in Australia
• Much, much more

Donald Trump’s personal involvement in threats to ban TikTok is distracting from any legitimate national security concerns the video sharing app might present to the United States. What started as some half-hearted sabre rattling after he was thoroughly punk’d by TikTok teens at his Tulsa rally in late June has spiralled into a theatre of the absurd.