Enterprise Security Weekly (Audio) Weekly Enterprise Security News and Tips on Building Security From Day 1 - Guillaume Ross - ESW #418
10 snips
Aug 4, 2025 Guillaume Ross, owner and consultant at Caffeine Security, shares his expertise on building security programs from scratch, particularly in the fintech space. He discusses the daunting task of being a CISO with no existing frameworks and outlines essential first steps. The conversation also delves into recent funding news in cybersecurity, key acquisitions, and the role of detection engineers. Listeners gain insights into modern security practices and the importance of resilience over mere prevention in today’s evolving landscape.
AI Snips
Chapters
Transcript
Episode notes
Old Ransomware Techniques Persist
- Old ransomware threats continue using outdated tools like php.exe to execute attacks.
- Early case experience helped break encryption due to poor entropy use in ransomware code.
Early Attack Traffic Signals
- Attack traffic spikes on vulnerabilities often occur weeks before CVEs are publicly disclosed.
- This early detection offers a strategic advantage for defenders to prepare before public vulnerability announcements.
Inventory is Security Foundation
- Many organizations waste resources on unused assets that proper inventory can reveal and remove.
- Effective security depends on knowing what assets exist and their configurations first.