Risky Business

Risky Business #778 -- Musk's child soldiers seize control of FedGov IT systems

Feb 5, 2025

Josh Kamdjou, co-founder and CEO of Sublime Security, dives into the significant challenges facing email security. He discusses how attackers exploit trusted platforms like DocuSign for phishing campaigns. The conversation also touches on recent cybersecurity breaches, the complexities of managing government IT systems, and the necessity for advanced detection methods in email security. Kamdjou highlights the continuous evolution of scammers’ tactics and the importance of robust defenses to safeguard sensitive information.

56:28

Creator website

Episode guests

Josh Kamdjou

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Elon Musk's aggressive oversight of U.S. government tech raises concerns about data management and transparency amidst previous breaches.

DeepSeek's exposed database vulnerabilities underscore the systemic flaws in security measures frequently encountered by rapidly growing startups.

The rise of malicious apps targeting cryptocurrency highlights the sophistication of cybercriminals using deception to exploit user trust and security.

Deep dives

Elon Musk's Data Governance Impact

Elon Musk has assembled a team tasked with overseeing various arms of the U.S. government, raising concerns about data governance. Reports indicate that this team is taking an aggressive approach, including overnight work sessions within government offices. This shift has led to worries about the management and oversight of sensitive data, especially considering past breaches like the one at the Office of Personnel Management (OPM). The implications of this data control dynamics are significant, as Musk's approach may lack proper transparency and oversight.

Intro

2min

Concerns Over IT Management in Government Offices

2min

Navigating Cybersecurity Breaches

35min

Understanding Forgivable Vulnerabilities in Cybersecurity

2min

Exploiting Trust: The Dark Side of Email Security

12min

Enhanced Algorithms for Efficient Incident Response in Security Operations

3min

On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:

DeepSeek leaves an unauthed database on the internet
Russia hacked UK prime minister’s personal mail
Australia sanctions a Telegram group… which is more sensible than it sounds
Medical device backdoor turns out to be just poorly thought out upgrade feature
Google abuses weak hashing to patch AMD CPU microcode
And much, much more.

This week’s episode is sponsored by email security boffins Sublime. Their co-founder and CEO Josh Kamdjou joins to talk about how attackers’ abuse of legitimate services like Docusign is a challenge for email security vendors.

This episode is also available on Youtube.

Show notes

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

Risky Business

Risky Business #778 -- Musk's child soldiers seize control of FedGov IT systems

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Elon Musk's Data Governance Impact

Deep Seek's Security Vulnerabilities

Malicious Apps Targeting Cryptocurrency

Email Security Challenges from Trusted Sources

Consequences of Targeting Political Figures

Show notes

Remember Everything You Learn from Podcasts