Risky Business

Former FireEye/Mandiant SVP/CTO John Laliberte discusses innovative cybersecurity solutions from three companies: Kodex revolutionizes law enforcement data requests, ClearVector offers cloud security monitoring, and Censys scans the internet for attacker infrastructure. Topics include streamlining data requests, tracking developer activities in cloud environments, managing identities and detecting risks, diverse customer profiles, internet asset discovery, and risks of unpatched systems.

Andres Freund, the Postgres developer, talks about discovering a backdoor in the xz Linux compression library. The podcast delves into the SSH backdoor issue, Microsoft's security vulnerabilities, Ukraine hacking Russia, and push-notifications vs Apple. They also discuss the implications of the supply chain attack in Linuxland and explore the technical aspects of the backdoor issue.

Haroon Meer, founder of Thinkst Canary, joins to discuss cybersecurity attitudes, China's shift to domestic tech, and Apple's antitrust issues. Topics include the DOJ targeting Chinese APT operators, China banning western CPUs, Nigeria's Binance stoush, Rowhammer on AMD Zen, and Ukraine's drone defense. The conversation also touches on Russia's wiper attacks, North Korea's crypto heists, and the challenges of balancing company success with product quality.

In this podcast, Scott Kuffer discusses the importance of assigning CVEs to cloud service vulnerabilities, challenges in vulnerability prioritization, concerns with the NVD database delays, and navigating federal government contracts. The journey of a cyber defense company from small to large enterprises is also explored.

This week's show covers AI code review flaws, Mintlify's Github token loss, UDP loop DoS attack resurgence, challenges in recon satellites, Microsoft restricting Russia's PowerShell, LockBit cyberattack aftermath, SpaceX's spy satellite network, and Russians losing access to Microsoft cloud services.

John P Carlin, former principal associate deputy attorney general, discusses SEC issues and the SolarWinds case. Topics include Midnight Blizzard's Microsoft hack, e-prescription drug sales, CISA ownership, and VMware's Tianfu Cup. Also covered are ransomware attacks, AI in cybersecurity, SEC disclosure requirements, and baselining cloud workloads.

This podcast discusses the aftermath of a healthcare ransomware attack, including a hefty payment to AlphaV and an exit scam. They explore memory safety in cybersecurity, the urgency for improved security measures after a breach, and enhancing security with continuous access evaluation profiles. Additionally, they address stability in identity infrastructure administration and highlight the importance of strong authentication measures at the IDP level.

Cybersecurity expert Dmitri Alperovitch discusses Starlink, Starshield, and Congress row about Taiwan. LockBit group resurfaces post-takedown, Russia detains Medibank hacker. ConnectWise faces attacks, Microsoft expands logging. Sandvine added to US Entity List.

Law enforcement takes down LockBit ransomware, Chinese contractor I-SOON leaks info, GRU network shutdown, Signal's username challenges, Ukrainian media targeted by Russian hackers, Pegasus spyware in Poland, hackers use facial recognition for bank fraud, Ivanti's backdoor vulnerability, Windows policy challenges discussed

Cybersecurity expert Andy Robbins from SpecterOps discusses Russia's SVR hacking Microsoft 365 tenants. Topics include Entra ID security, detecting attack paths, managing permissions, hacking tactics for email inboxes, and the importance of permissions auditing in Azure environments.