CyberWire Daily

Jennifer Walsmith, VP at Northrop Grumman, shares her journey from NSA to leading Cyber Solutions. With support from her team, she balanced career and motherhood, championed diversity, and emphasized the importance of education in cybersecurity.

Joe Carrigan, an expert in CISSP diagnostic, discusses Facebook's covert operations, AI audits, open-source framework exploitation, and recent cyber incidents. The podcast also delves into cybersecurity practices, risk assessment, and insights on the CISSP diagnostic exam breakdown. Additionally, the evolution of Smashing Security and cybersecurity oversight in the UK are explored.

Stephanie Regan, a senior consultant at Unit 42, discusses combating the Muddled Libra threat group. She emphasizes the importance of reconnaissance, strong multi-factor authentication, and rapid incident response. Learn about techniques like domain typo squatting and how Unit 42 assists clients in recovering from attacks.

Jason Kikta, CISO & Senior VP at Automox, discusses IT efficiency through automation & tool streamlining. China's hacking plot, ransomware in Florida & Texas, EU election regulations, and HHS breach. Balancing automation & human feedback for tech evaluation.

Head of Cyber Governance with Red Sift, Dr. Rois Ni Thuama shares the circuitous route of her career into cyber governance. She notes the route "looks really clean, but actually it was a bit more Jeremy Bearimy." While at Trinity College, Rois was moved to be part of history unfolding in South Africa and pause her studies. While there, she began making music videos and wildlife documentaries. Upon her return to London, Rois started working in corporate governance and risk at a music technology startup. This ignited her enthusiasm for startups. She now works in a company with several coworkers from that tech startup doing cyber governance. Rois advises law students of many ways into the industry including doing coding, learning risk management, and understanding privacy legislation, and then "just get into the game." We thank Rois for sharing her story.  Learn more about your ad choices. Visit megaphone.fm/adchoices

Anna Belak, Director of the Office of Cybersecurity Strategy at Sysdig, discusses trends in cloud-native security. Topics include supply chain attacks on Python developers, Russian hackers targeting German political parties, dismantling of a cyber-fraud gang, Mozilla's quick patching in response to Pwn2Own, and President Biden's nomination for cyber policy at the Pentagon. The importance of a dedicated US cyber service and managing cloud permissions are also highlighted.

Senior security researcher Marcelle Lee shares her unconventional journey into cybersecurity, emphasizing the importance of finding a specialty and acquiring diverse skills. She discusses exploring cyber threats, advancing in security research, and promoting diversity in the industry, particularly for women.

Exploration of the evolving threat posed by HijackLoader, with new defense evasion techniques uncovered by CrowdStrike researchers. Insights into the sophisticated tactics used by adversaries to enhance the loader's capabilities and recommendations for organizations to combat these evolving threats.

The podcast discusses advanced wiper malware targeting Ukraine, collaboration between CISA and FBI against DDoS attacks, US airlines data security review, a cyberattack in Jacksonville Beach, and insights from CEO of Xage Security. Also, it covers cyber threats on Ukrainian ISPs, dismantling of Nemesis Marketplace, Apple's vulnerability, and Chinese cyber attacks. Additionally, it talks about SISA's 2024 JCDC priorities and the security vulnerability in hotel keycard locks.

Dr. Ursula Wilder discusses psychology and intelligence, leadership assessments during the Cuban Missile Crisis, historical examples, and human nature in espionage. Insights into analyzing world leaders' hidden behaviors and communication dynamics between Spartans and Alexander the Great.