
The Defender's Advantage Podcast
Lessons Learned from Responding to Cloud Compromises
Jun 3, 2024
Mandiant consultants Will Silverstone and Omar ElAhdan share insights on cloud compromise trends, living off the land techniques, extended attack surfaces, securing identities, third-party risks. They discuss the importance of strong multi-factor authentication, detecting potential attack vectors, and managing third-party risks separately.
30:16
Episode guests
AI Summary
AI Chapters
Episode notes
Podcast summary created with Snipd AI
Quick takeaways
- Prioritize identity segmentation & MFA for better cloud security.
- Secure endpoints used by admins with dedicated workstations.
Deep dives
Identity Segmentation and Strong MFA Methods
Prioritizing identity segmentation and enforcing strong identity controls, especially focusing on privileged accounts, service accounts, and end-user accounts. Implementing robust multi-factor authentication (MFA) methods, restricting MFA modifications, and registrations to trusted locations. Monitoring and limiting the scope of non-human or service accounts' authentication processes.
Remember Everything You Learn from Podcasts
Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.