Risky Business

Feross Aboukhadijeh, the founder and CEO of Socket, dives into the complexities of software supply chain security. He discusses how to measure the reachability of vulnerabilities in applications, emphasizing the importance of knowing whether a CVE actually impacts your project. Feross shares insights on the evolution of Socket from tracking malicious packages to tackling CVEs. He also highlights challenges in navigating legacy applications and the critical need for effective detection of malicious packages, advocating for a nuanced approach to software security.

Justin Kohler, Chief Product Officer at SpecterOps and the mastermind behind Bloodhound, dives into the world of cybersecurity vulnerabilities and innovations. He discusses the urgent alerts around Microsoft Exchange systems and the risks of integrating legacy and cloud-based applications. Kohler also unveils Bloodhound's latest enhancements, including expanded attack path modeling, and the collaborative efforts within the cybersecurity community. Expect insights into the evolution of identity attacks and how new tools aim to secure complex infrastructures more effectively.

Sean Ollerton, Head of Solutions at Devicie, shares insights on the end of Windows 10's mainstream support and the transition to Windows 11. He reassures listeners that the new OS isn't as daunting as it's made out to be. The discussion also addresses the urgency of updating to Windows 11, emphasizing potential security risks in remaining on an unsupported system. Additionally, the rise of AI in cybersecurity is explored, highlighting its impact on bug detection and the need to balance AI tools with human expertise.

Josh Kamdjou, CEO of Sublime Security, dives into the intricate world of AI in cybersecurity. He candidly discusses how AI can enhance security while also acknowledging its limitations. The conversation highlights the critical balance between AI and human oversight, emphasizing that no AI can compensate for poor product design. They explore the challenges and innovations in email security, including the evolution of real-time detection systems and the complexities of automating incident responses, complete with humorous anecdotes about AI mishaps.

Daniel Cuthbert, a cybersecurity expert from Santander Bank, shares insights on the importance of telemetry for securing browser interactions. He highlights how Push Security enhances detection engineering, crucial for responding to threats. The conversation dives into the fallout from a serious SharePoint bug and its implications for organizations, including the US Department of Energy. Cuthbert discusses the importance of user authentication and the struggles many face in maintaining robust security measures amidst rising cyber threats.

David Cottingham, CEO of Airlock Digital, shares insights on building robust security management platforms for critical systems. He delves into evolving allow listing software and the challenges of securing user permissions in diverse environments. The discussion also covers recent cyber threats, including vulnerabilities in SharePoint servers and a significant hacking incident in Brazil. Cottingham emphasizes the importance of automation and identity management in enhancing security, while also addressing the need for timely system updates.

Toni de la Fuente, the founder of Prowler, a multi-cloud security platform, shares insights from his extensive experience as a cloud security architect. He reveals Prowler's evolution from an open-source project to a robust SaaS offering, highlighting its AI-enhanced features like Prowler Lighthouse. The discussion covers Prowler’s community-driven journey and its innovative pricing model, emphasizing the importance of usability and compliance in cloud security. Toni also explores the impact of AI on security interfaces, making cloud management simpler and more efficient.

This week features Jimmy Mesta, co-founder of RAD Security and a specialist in AI automation for cloud security. He shares insights on the rise of technical surveillance tactics by drug cartels to target FBI informants, showcasing a chilling intersection of cybercrime and law enforcement. The conversation also dives into how AI is revolutionizing vulnerability management in cloud environments, emphasizing its role in enhancing security posture. Fascinatingly, it highlights the growing complexities that cyber threats pose to organizations today.

Andrew Morris, founder of GreyNoise Intelligence, provides insights into the world of cyber threats, discussing a botnet comprised of ASUS routers. The conversation unpacks the absurdity behind a recent claim of 16 billion leaked credentials, dives into the complexities of state-sponsored cyber attacks, and highlights vulnerabilities in modern technology. Morris also shares his expertise on detecting and dealing with advanced botnets, emphasizing the significance of staying vigilant against evolving cyber threats. It's a blend of humor and serious cybersecurity discussion!

Chris Krebs, former Director of CISA, joins the hosts to delve into the latest cybersecurity threats. They analyze a bold cyber attack against Iran's Bank Sepah by Israeli hacktivists, discussing its implications for banking security. Krebs shares insights on the rising identity threats in the insurance sector and the shift towards zero trust models. The conversation also covers Microsoft's strategy to address European concerns over data sovereignty and highlights emerging AI vulnerabilities within M365 and Azure. This engaging chat is packed with vital security trends and challenges.