Risky Business

Risky Business #745 – Tales from the PANageddon

Apr 17, 2024

Founder of Panther, Jack Naglieri, discusses detection-as-code approaches on a podcast covering Palo Alto's firewall vulnerabilities, Sisense data breach, FISA reauthorization, Apple's India link, and more cybersecurity news.

58:10

Creator website

Episode guests

Jack Naglieri

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Implementing business and identity logic into detection rules enhances accuracy.

Advanced data analysis techniques like AI improve detection capabilities against modern attacks.

Combining high and low signal events from various sources strengthens threat identification.

Deep dives

Main Focus on Detection as Code

The use of detection as code in real-world scenarios is emphasized, focusing on covering tactics and techniques relevant to a specific company. Implementing business logic and identity logic into detection rules, based on reliable data correlations, is highlighted to enhance detection accuracy.

Introduction

2min

Analyzing Security Vulnerabilities in Palo Alto Devices

19min

Discussion on Reforms and Oversight of Data Collection for National Security Purposes

4min

Cybersecurity Threats and Espionage Concerns

14min

Security Flaw on Twitter's Domain Rewriting and Technology Sovereignty

6min

Enhancing Cybersecurity Measures through Data-Driven Tactics and Techniques

10min

Enterprise Transition from Splunk to Cloud-Based Security Solutions

3min

On this week’s show Patrick and Adam discuss the week’s security news, including:

Palo Alto’s firewalls have a ../ bad day
Sisense’s bucket full of creds gets kicked over
United Healthcare draws the ire of congress
FISA 702 reauthorisation finally moves forward
Apple warns about “mercenary exploitation” but what’s the India link?
And much, much, more

This week’s sponsor is Panther, a platform that does detection as code on massive amounts of data. Panther’s founder Jack Naglieri is this week’s sponsor guest, and we spoke with him about some common detection-as-code approaches.

Show notes

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

Risky Business

Risky Business #745 – Tales from the PANageddon

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Main Focus on Detection as Code

Enhanced Data Analysis

Signaling Complexity and Contextual Triggers

Varied Adoption Patterns

Evolution of Security Operations

Show notes

Remember Everything You Learn from Podcasts