Risky Business
Risky Business #784 -- GitHub supply chain attack steals secrets from 23k projects
Mar 19, 2025
Aaron Steinke, Head of Infrastructure at La Trobe Financial, shares his insights on implementing Zero Networks' micro-segmentation product, transforming a legacy tech environment. The conversation dives into a significant GitHub supply chain attack that compromised 23,000 projects, revealing sensitive information. They also discuss the complex geopolitical tensions surrounding cyber threats, especially between Taiwan and China, and the rise of malicious hacks involving North Korean groups. Steinke's experience illustrates the challenges and innovations in modernizing cybersecurity practices.
56:58
Episode guests
AI Summary
AI Chapters
Episode notes
Podcast summary created with Snipd AI
Quick takeaways
- The recent GitHub supply chain attack compromised 23,000 projects by extracting sensitive credentials, highlighting significant vulnerabilities in public repositories.
- China's public attribution of cyberattacks to Taiwanese hackers emphasizes growing geopolitical tensions and raises concerns for cybersecurity professionals in Taiwan.
Deep dives
Micro Segmentation Success
A new micro-segmentation product by Zero Networks demonstrates promise in automating network security controls. This technology simplifies the management of machine communications by learning interactions, which reduces the manual effort required in traditional systems. A case study featuring La Trobe Financial highlights the effectiveness of the product, with the user reporting less hassle in segmentation compared to prior alternatives. The implementation was seen as both a time-saver and a solution to previously complex challenges in network security management.
Remember Everything You Learn from Podcasts
Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
