Risky Business

David Cottingham, CEO of Airlock Digital, shares insights on building robust security management platforms for critical systems. He delves into evolving allow listing software and the challenges of securing user permissions in diverse environments. The discussion also covers recent cyber threats, including vulnerabilities in SharePoint servers and a significant hacking incident in Brazil. Cottingham emphasizes the importance of automation and identity management in enhancing security, while also addressing the need for timely system updates.

Toni de la Fuente, the founder of Prowler, a multi-cloud security platform, shares insights from his extensive experience as a cloud security architect. He reveals Prowler's evolution from an open-source project to a robust SaaS offering, highlighting its AI-enhanced features like Prowler Lighthouse. The discussion covers Prowler’s community-driven journey and its innovative pricing model, emphasizing the importance of usability and compliance in cloud security. Toni also explores the impact of AI on security interfaces, making cloud management simpler and more efficient.

This week features Jimmy Mesta, co-founder of RAD Security and a specialist in AI automation for cloud security. He shares insights on the rise of technical surveillance tactics by drug cartels to target FBI informants, showcasing a chilling intersection of cybercrime and law enforcement. The conversation also dives into how AI is revolutionizing vulnerability management in cloud environments, emphasizing its role in enhancing security posture. Fascinatingly, it highlights the growing complexities that cyber threats pose to organizations today.

Andrew Morris, founder of GreyNoise Intelligence, provides insights into the world of cyber threats, discussing a botnet comprised of ASUS routers. The conversation unpacks the absurdity behind a recent claim of 16 billion leaked credentials, dives into the complexities of state-sponsored cyber attacks, and highlights vulnerabilities in modern technology. Morris also shares his expertise on detecting and dealing with advanced botnets, emphasizing the significance of staying vigilant against evolving cyber threats. It's a blend of humor and serious cybersecurity discussion!

Chris Krebs, former Director of CISA, joins the hosts to delve into the latest cybersecurity threats. They analyze a bold cyber attack against Iran's Bank Sepah by Israeli hacktivists, discussing its implications for banking security. Krebs shares insights on the rising identity threats in the insurance sector and the shift towards zero trust models. The conversation also covers Microsoft's strategy to address European concerns over data sovereignty and highlights emerging AI vulnerabilities within M365 and Azure. This engaging chat is packed with vital security trends and challenges.

Ed Wu, founder of Dropzone AI and a former leader at ExtraHop Networks, discusses the revolutionary impact of AI in Security Operations Centers (SOCs). The conversation dives into the debate on AI's capabilities and limitations in threat detection. Wu highlights how multi-model AI systems enhance efficiency by automating various tasks and the significant transition from skepticism to acceptance among professionals. He also emphasizes the importance of coachability in AI, showcasing how adaptable models perform better in dynamic cybersecurity environments.

Alex Tilley, Global Threat Research Coordinator at Okta and former investigator for the Australian Federal Police, joins to discuss pressing cybersecurity concerns. They tackle the alarming trends in social engineering, particularly focusing on Salesforce vulnerabilities. Tilley shares insights on identifying North Korean tactics in job scams, underscoring the need for collaboration between security teams and HR. The conversation also highlights the rise of cybercrime dynamics and how organizations can enhance their defenses against evolving threats.

Matt Muller, Field CISO at Tines, joins the discussion to dive into critical issues surrounding SaaS security. He highlights an open letter from JP Morgan Chase’s CISO urging SaaS providers to enhance their security measures. The conversation touches on the complexities of cybersecurity risk management and the need for better collaboration among vendors. Muller emphasizes the importance of transparency and improved compliance as businesses increasingly adopt AI solutions. The lively exchange also covers unconventional communication tactics used by cyber threat actors.

Dmitri Alperovitch, a cybersecurity expert and co-founder of CrowdStrike, teams up with Haroon Meer, founder of Thinkst Canary, to dive deep into the latest cyber threats. They discuss a Scattered Spider crew hijacking DNS records for rapid enterprise breaches and the rising dangers of SVG images used in phishing attacks. Alperovitch shares insights on the volatile state of cybersecurity leadership in the U.S., while Meer critiques the AI hype in security, stressing the need for grounded solutions over empty promises.

Toni de la Fuente, founder of Prowler, dives into the complexities of cybersecurity, discussing recent breaches like the Coinbase data theft by a contractor. He shares insights on the importance of open-source tools and their adaptability for cloud security. The conversation highlights Telegram's crackdown on crime, the rising threat of phishing, and the challenges UK businesses face amid data vulnerabilities. Toni also introduces Prowler's exciting new features, including AI assistance for enhanced security checks.