Risky Business

Risky Business #756 -- Move fast and break everything

Jul 24, 2024

In this podcast, they discuss CrowdStrike's faulty update affecting millions, AT&T's breached call records, Squarespace's domain hijack, and SolarWinds' SEC case. They also cover cybercriminal incidents, Ukraine malware attack, and Disney Slack dumps. Internet Explorer vulnerabilities resurface, and email security platform Sublime Security is highlighted. The podcast delves into shadow SaaS accounts, ICS malware attacks, ransomware costs, and efficient email security management.

58:52

Creator website

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Implementing customizable email security rules based on business context enhances security measures beyond standard solutions.

Integrating TruffleHog for secrets detection in emails broadens security scope and ensures sensitive information protection.

Automated ingestion of user-reported phishing emails through API streamlines investigation, enabling faster response and reducing cognitive load.

Deep dives

Extensibility and Customization in Email Security Rules

Being able to customize email security rules based on business context and the extensibility of Sublime Security's platform allows for more advanced and configurable email security measures. JJ Agha highlights the importance of having the ability to tailor rules for VIPs and specific business needs to enhance security beyond standard off-the-shelf solutions.

Intro

2min

Internet-wide Incident Chaos and Cybersecurity Challenges

23min

Challenges of Shadow SaaS Accounts and Cybersecurity Incidents

11min

Importance of Effective Communication for Security Professionals and Sophisticated ICS Malware Attack

4min

Cybersecurity Incidents and Ransomware-Related Costs

2min

Analysis of cybercrime landscape, Windows bug exploitation, and sponsor interview on email security platform

4min

Enhancing Email Security Through Integration with TruffleHog

9min

Efficient Email Security Management and Empowering Analysts

3min

The Risky Biz main show returns from a break to the traditional internet-melting mess that happens whenever Patrick Gray takes a holiday. Pat and Adam Boileau talk through the week’s security news, including:

Oh Crowdstrike, no, oh no, honey, no
AT&T stored call records on Snowflake and you’ll never guess what happened next
Squarespace buys Google Domains and makes a hash of it
Some but not all of the SECs case against Solarwinds gets thrown out
Pity the incident responders digging through a terabyte of Disney Slack dumps
Internet Explorer rises from the grave, and it wants SHELLS RAAAAARGH SSHHEEELLLS
And much, much more.

This week’s show is brought to you by Sublime Security, a flexible and modern email security platform. If you’re sick of using a black box email security solution, Sublime is a terrific option for you.

Show notes

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

Risky Business

Risky Business #756 -- Move fast and break everything

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Extensibility and Customization in Email Security Rules

Integration with TruffleHog for Secrets Detection

Automated Phishing Reporting and Response

Efficiency in User Report Investigations

Improving Analyst Focus with Automated Remediation

Show notes

Remember Everything You Learn from Podcasts