Risky Business

Chris Krebs, a former government cybersecurity official, and Alex Stamos, a prominent security expert, dive deep into the fallout from a recent incident involving CrowdStrike. They highlight the critical operational failures that led to widespread issues like blue screens. The discussion shifts to the evolving landscape of antivirus software and the importance of rigorous testing practices. They also scrutinize Microsoft's role and the urgent need for enhanced accountability and transparent security measures in the tech industry to rebuild trust.

In this podcast, they discuss CrowdStrike's faulty update affecting millions, AT&T's breached call records, Squarespace's domain hijack, and SolarWinds' SEC case. They also cover cybercriminal incidents, Ukraine malware attack, and Disney Slack dumps. Internet Explorer vulnerabilities resurface, and email security platform Sublime Security is highlighted. The podcast delves into shadow SaaS accounts, ICS malware attacks, ransomware costs, and efficient email security management.

Mike Wiacek, CEO of Stairwell, discusses file analysis for threat hunting. Stairwell provides transparency and customization for malware analysis and file relationship identification. The importance of active threat analysis, APIs in security tools, and automating threat hunting are key topics. The podcast also addresses the challenges in threat reporting and advanced malware detection.

Cybersecurity experts Alex Stamos, Chris Krebs, and Patrick Gray discuss how governments like North Korea and the Kremlin are involved in ransomware attacks for financial gain and political purposes. They highlight the challenges in combatting state-directed cybercrime and the importance of multinational efforts in disrupting cybercriminal operations.

Discussion on polyfill JavaScript supply chain attack, MacOS supply chain disaster, OpenSSH remote code execution, Google distrusts Entrust CA, South Korean telco malware attack, Microsoft disappoints, TeamViewer data breach, ransomware incidents, and more cybersecurity news.

Abhishek Agrawal, CEO of Material Security, discusses the importance of securing cloud email data and the limitations of MFA. They explore the impact of AI on security controls, evolving email security solutions, and the challenges of implementing retention policies. The conversation highlights the necessity for robust detection technologies and extending security measures to cover entire productivity suites like Google Workspace and Microsoft 365.

Crowdstrike co-founder Dmitri Alperovitch discusses Assange's release, US banning Kaspersky, CDK ransomware, healthcare attacks, Windows proximity bugs, and more. Topics include ransomware impact on cancer operations, UK government action against Russian hackers, and Telegram's engineering concerns. The episode also covers Windows bluetooth vulnerabilities, Mac security configurability, and the benefits of enterprise browser control for enhanced security.

The podcast discusses Microsoft's security troubles, from the Recall feature recall to a Windows kernel wifi code-exec vulnerability. It also covers the arrest of a Scattered Spider bigwig, flawed Pentagon info-op, and the debate around E2E crypto. The show dives into various cybersecurity news, including vulnerabilities, privacy concerns, ransomware attacks, and disinformation campaigns.

Former NSA boffin, Rob Joyce, joins to discuss Apple's leap into cloud computing, privacy concerns with iPhone-Mac integration, Snowflake breach, credit ratings impacted by cyber incidents, Microsoft Azure flaw fix, and more cybersecurity news. Yubico's COO shares insights on hardware authentication challenges.

Joseph Cox, 404 Media co-founder, discusses FBI's Anom sting in his new book Dark Wire. Topics include Snowflake breach, Operation Endgame against malware services, and potential FTC probe into Microsoft. Show also covers ransomware hits in Russia, cybersecurity incidents, and Phantom Secure's downfall. Terraform simplification and cloud security management practices are highlighted for efficient operations.