Risky Business

Josh Kamdjou, co-founder and CEO of Sublime Security, dives into the significant challenges facing email security. He discusses how attackers exploit trusted platforms like DocuSign for phishing campaigns. The conversation also touches on recent cybersecurity breaches, the complexities of managing government IT systems, and the necessity for advanced detection methods in email security. Kamdjou highlights the continuous evolution of scammers’ tactics and the importance of robust defenses to safeguard sensitive information.

Luke Jennings, a security researcher at Push Security, dives into the pitfalls of federated authentication, emphasizing how attackers exploit unexpected identity providers. He highlights alarming vulnerabilities in SonicWall devices and a comical DNS mishap involving MasterCard. The discussion also touches upon the risks of using personal Google accounts for corporate access and the complexities of managing multiple identity providers. With an eye on emerging threats, Jennings provides insights into securing user authentication in today's digital landscape.

Craig Rowland, founder of Sandfly Security, brings his expertise in Linux EDR solutions to the conversation. He discusses the pressing challenges in Linux security monitoring, emphasizing the lack of standardized detection and response methods. The podcast also examines political influences on cybersecurity during the Trump administration and the implications of recent U.S. policies. Key topics include the complexities of securing Linux systems compared to Windows and addressing vulnerabilities in critical infrastructure. Tune in for insights into how organizations can fortify their defenses!

Michael Fey, CEO of Island, shares insights on their innovative enterprise browser designed for compliance and security. He discusses clever ways the browser meets cybersecurity and regulatory challenges, particularly around user access and GDPR. The conversation also delves into the risks of using Gen.ai chatbots in corporate settings and how a specialized browser can enhance secure collaborations during mergers and acquisitions. Fey's engaging take on compliance makes it a surprisingly fun listen!

Robby Winchester from SpecterOps, a leading cybersecurity firm renowned for its penetration testing expertise, joins the discussion. He shares insights on the evolution of penetration testing, highlighting the growing importance of identity-centric approaches. The conversation also dives into the recent resurgence of the Cl0p ransomware crew and their alarming hacks. The hosts critique the SEC's uninspiring cyber incident reporting rule and examine the implications of vulnerabilities within Java enterprise software, emphasizing the pressing challenges in today's cybersecurity landscape.

Chris Krebs, Chief Intelligence Officer at SentinelOne and former director of CISA, dives deep into the world of Chinese cyber operations. He discusses the evolution of these tactics over the last 20 years, spotlighting campaigns like Salt Typhoon and Vault Typhoon. Krebs unravels the roles of China’s Ministry of State Security and People’s Liberation Army, shedding light on the impact of corporate management styles on cybersecurity. He emphasizes the critical need for robust defenses and the implications of industrial espionage on global security.

Jacob Torrey, an expert from Thinkst Canary, dives into the critical flaws in Cleo file transfer appliances and the ongoing exploitation by ransomware groups. He also discusses Snowflake's upcoming shift to mandatory multi-factor authentication to combat credential theft. With a focus on innovative cybersecurity techniques, Torrey reveals fascinating operating system tricks, including canary tokens that can trigger alarms in your environment. Plus, he delves into the complexities of enhancing security in Windows, keeping attackers at bay!

Jerrod Chong, COO and President of Yubico, discusses exciting advancements in YubiKey technology, including the new pre-registration feature that facilitates easier onboarding for enterprises. He highlights the seamless integration with Okta and Microsoft, streamlining security measures for staff. Jerrod shares insights from his recent trip to Singapore, focusing on the critical cybersecurity challenges facing the energy sector and emphasizes the importance of proactive risk management in infrastructure. The conversation also touches on the slow adoption of passwordless authentication in various industries.

In this discussion, Vijit Nair, VP of Product at Corelight, sheds light on the future of cloud security, revealing the complexities organizations face in multi-cloud environments. He emphasizes the need for standardized monitoring approaches. The conversation also highlights recent trends in cybercrime, notably Russian hackers facing severe consequences. Nair dives into the inadequacies of traditional security solutions in cloud contexts and advocates for innovative tools that can enhance protection across dynamic infrastructures.

Matt Muller from Tines, a security automation expert, dives into the provocative assertion by Gartner that SOAR is dead. The chat reveals the complexities of ransomware attacks, focusing on Blue Yonder and the tough choices companies must make when traditional recovery fails. They also discuss how the evolving tactics of state-backed hackers, particularly Salt Typhoon's telecom assaults, have raised national security alarms. The conversation wraps up with insights on the integration of AI in security and the necessity for adaptive approaches in ever-changing cyber landscapes.