Risky Business cover image

Risky Business

Risky Business #775 -- Cl0p is back, SEC hack disclosures disappoint

Dec 18, 2024
Robby Winchester from SpecterOps, a leading cybersecurity firm renowned for its penetration testing expertise, joins the discussion. He shares insights on the evolution of penetration testing, highlighting the growing importance of identity-centric approaches. The conversation also dives into the recent resurgence of the Cl0p ransomware crew and their alarming hacks. The hosts critique the SEC's uninspiring cyber incident reporting rule and examine the implications of vulnerabilities within Java enterprise software, emphasizing the pressing challenges in today's cybersecurity landscape.
01:01:06

Podcast summary created with Snipd AI

Quick takeaways

  • The SEC's cyber incident reporting rule has disappointed expectations, resulting in only 71 filings over 11 months with minimal impact reported.
  • Penetration testing has evolved towards an identity-centric approach, focusing more on understanding risk in complex cloud environments than merely proving access.

Deep dives

Launch of the New Website

The podcast discusses the launch of a new website for Risky Business, which consolidates various forms of content including written articles, podcasts, and videos. This marks a significant upgrade from an outdated and inefficient content management system that had been in use for many years. The new site, designed by Dave Snellgrove, enhances user experience by providing access to all content in one place. The transition reflects the team’s commitment to improving the platform for their audience.

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
App store bannerPlay store banner