CISO Tradecraft®

#210 - Salt Typhoon and Vulnerable Telecoms

Dec 9, 2024

Join cybersecurity experts Adam Isles and Andreas Kurland from the Chertoff Group as they delve into the pressing 'Salt Typhoon' threat from state actors targeting telecoms. They explore the vulnerabilities within telecommunications infrastructure, emphasizing the importance of encryption and secure communication methods. Learn about the risks of messaging platforms, voice communication security, and best practices for maintaining privacy during virtual meetings. They offer actionable insights to enhance corporate cybersecurity and protect against sophisticated attacks.

45:39

Creator website

Episode guests

Andreas Kurland

Adam Isles

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The 'Salt Typhoon' threat emphasizes the urgent need for organizations to adopt end-to-end encrypted messaging services to protect sensitive communications.

Enterprises must evaluate their cybersecurity vulnerabilities through a structured risk framework to effectively respond to state-level cyber threats like Salt Typhoon.

Deep dives

Understanding Salt Typhoon

Salt Typhoon represents a concerning cybersecurity threat attributed to Chinese state actors involving ongoing compromises within the telecommunications sector. Reports indicate that these actors have penetrated multiple U.S. telecom providers, emphasizing the strategic nature of their access rather than mere information theft. Government warnings have escalated, urging citizens and organizations to utilize end-to-end encrypted messaging services to safeguard their communications. This situation reflects a pressing need for heightened defenses and risk mitigation strategies within essential telecommunications infrastructures.

Intro

4min

Evaluating Cybersecurity Risks in Telecommunications

2min

Navigating Executive Communication Security

23min

Securing Virtual Meetings: A Deep Dive

10min

Enhancing Document Security and Addressing Telecom Risks

4min

Balancing Security and Usability in Organizational Processes

2min

In this crucial episode of CISO Tradecraft, host G Mark Hardy delves into the urgent topic of the 'Salt Typhoon' threat, with insights from experts Adam Isles and Andreas Kurland from the Chertoff Group. The episode covers the implications for corporate security using SMS text messages when Chinese actors are breaking into major telecommunication entities. The conversation focuses on encryption, secure communications, and measures to mitigate risks from vulnerabilities in telecommunications infrastructure. The discussion includes practical steps for securing messaging, voice calls, virtual meetings, and emails. Learn actionable strategies to bolster your organization’s cybersecurity posture and ensure robust defense against sophisticated state-level cyber threats.

Thank you to our sponsor Threat Locker

https://www.threatlocker.com/pages/essential-eight-fast-track?utm_source=ciso_tradecraft&utm_medium=sponsor&utm_campaign=essential-eight_q4_24&utm_content=essential-eight&utm_term=podcast

Link to recommendations:

https://chertoffgroup.com/end-to-end-encryption-is-essential/

Transcripts https://docs.google.com/document/d/13NKPUBU3c-qYQtX18NR08oYVRSSnHD_a

Chapters:

00:00 Introduction to Salt Typhoon
01:31 Meet the Experts: Adam Isles and Andreas Kurland
02:03 Understanding the Salt Typhoon Threat
04:49 Telecommunications and Security Risks
07:37 Messaging Security: Risks and Recommendations
20:14 Voice Communication Security
28:44 Securing Virtual Meetings
34:45 Email Security: Challenges and Solutions
41:35 Conclusion and Contact Information

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

CISO Tradecraft®

#210 - Salt Typhoon and Vulnerable Telecoms

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Understanding Salt Typhoon

Risk Assessment Framework

Secure Communication Channels

Email Encryption Challenges

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

CISO Tradecraft®

#210 - Salt Typhoon and Vulnerable Telecoms

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Understanding Salt Typhoon

Risk Assessment Framework

Secure Communication Channels

Email Encryption Challenges

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights