The Defender's Advantage Podcast

Back in April 2018, FireEye CTO, Grady Summers had the chance to talkwith Ken Bagnall, VP for Email Security at FireEye. At the time, Kenand Grady chatted about FireEye’s acquisition of the company The EmailLaundry, which took place late 2017, and about some of the newcapabilities that was gained in FireEye Email Security from thatintegration. They also discussed some of the trends that had beenobserved in the email security space.Grady recently met back up with Ken to continue their chat, and thistime were also joined by Levi Lloyd, Senior Manager for DetectionServices at FireEye. During the conversation, the three of them dove alittle bit deeper into some of the details behind the changes in emailattacks that they've seen. They then went on to discuss some of thereally cutting-edge techniques that FireEye is using to respond tothose email attacks, including blocking impersonation attacks andURL-based attacks.Check-out the podcast, and also learn more about how FireEye EmailSecurity can help defend against today’s most widely used – and lesserknown – email attacks.

FireEye Chief Intelligence Strategist, Christopher Porter had theopportunity to speak with Jared Semrau, head of our Vulnerability andExploitation intelligence team. Jared discusses how his team gathersinformation on new and existing exploitable bugs, combines that withwhat FireEye knows from engagements and device detections, and howthey map that intelligence to known threat actors. There are a lot ofmyths going around about how vulnerability management should behandled and this discussion helped cut through a lot of that.Listen to the podcast to join this conversation and to learn whyFireEye rates less than 0.01% of its vulnerabilities as critical,compared to 10% of vulnerabilities being rated critical by publicsources. Jared did a great job explaining for me how this focus ononly the truly critical and exploitable vulnerabilities helps ourclients better utilize their limited threat hunting resources and keepoperational systems online as much as possible without unnecessaryout-of-cycle patching.

It’s hard to believe, but April 2018 marked the release of our 9thedition of M-Trends. To learn more about the latest report, FireEyeCTO, Grady Summers sat down and spoke with one of the keycontributors: Jurgen Kutscher, senior vice president responsible forall Mandiant Consulting and Managed Defense offerings at FireEye.During their conversation, Jurgen and Grady discussed a wide varietyof topics touched on in the M-Trends report, including the significantincrease in attacks originating from threat actors sponsored by Iran,a typically dwindling global median dwell time increasing from 99 daysin 2016 to 101 days in 2017, how more than half of organizations thatwere victims of a targeted attack were getting re-attacked by the sameor similarly motivated threat actors, and much more.Check out our podcast today, and also read the M-Trends report toexplore the latest and greatest trends that define today’s threatlandscape athttps://www.fireeye.com/current-threats/annual-threat-report/mtrends.html

FireEye CTO, Grady Summers discussed email security with Ken Bagnall,VP of the FireEye Email Security side of the business. Ken came toFireEye following its 2017 acquisition of The Email Laundry, where hewas a founder and CEO.<br><br>During their chat, Ken and Grady discussed a wide variety of topics,including Ken's history in the industry and how he got into emailsecurity, how the merging of The Email Laundry with FireEye was theperfect fit, up-and-coming email threats such as malware-less attacksand imposter-based attacks, and what FireEye is doing to stay ahead ofthese threats and ensure customers remain protected.<br><br>Check out the podcast, and learn more about how FireEye Email Securitycan help defend against today's most widely used - and lesser known -email attacks.

Chris Porter, chief intelligence strategist at FireEye had theopportunity to speak with Parnian Najafi Borazjani, senior cybersecurity analyst at FireEye, and Michael Rastigue, vice president,cyber risk practice growth leader for the central zone at Marsh, oncyber threats to the manufacturing industry.Listen to the podcast to learn about today's threats, including whothe bad actors are, what assets are they going after, and what aresome possible motivators for bad actors to target the industry.Additionally, Parnian and Michael discussed common exploit routes, andimprovement in risk mitigation and transfer options.

Chris Porter, chief intelligence strategist at FireEye had theopportunity to speak with Parnian Najafi Borazjani, senior cybersecurity analyst at FireEye, and Michael Rastigue, vice president,cyber risk practice growth leader for the central zone at Marsh, oncyber threats to the manufacturing industry.Listen to the podcast to learn about today's threats, including whothe bad actors are, what assets are they going after, and what aresome possible motivators for bad actors to target the industry.Additionally, Parnian and Michael discussed common exploit routes, andimprovement in risk mitigation and transfer options.

FireEye CTO, Grady Summers spoke about cyber security in 2018 withFireEye CSO, Steve Booth. They touched on various topics, includingthe threat landscape, threat actor techniques, nation-state activity,and the General Data Protection Regulation (GDPR).Check-out the podcast to hear more about what the new year has instore, and also learn a little bit about what organizations should bedoing to stay ahead of these threats – everything from basic upkeep tomanaging priorities.

Grady Summers, CTO, FireEye recently sat down to speak about FireEyeHelix with Paul Nguyen, Vice President and General Manager for Helixat FireEye. During their conversation, Paul reiterated a key focus ofHelix, which is to the help analysts be more effective at their jobs.Check out the podcast to hear all about the latest release (Helix1.2), how FireEye is able to pivot data from the consul throughorchestration, and more.

Chris Porter, chief intelligence strategist at FireEye recently satdown with Jeffrey Ashcraft, senior analyst at FireEye, and MatthewMcCabe, senior vice president and advisory specialist at Marsh, todiscuss cyber threats to the utilities sector and how much of what yousee hackers do in the movies really happens when utilities arebreached in the real world?Listen to our podcast to find out what the difference between anespionage attempt and preparation for an attack is, the importance ofterms and conditions in cyber insurance, and how to best distinguishbetween an attack and an intrusion to your organization.

Given recent high-profile incidents, cyber security has quickly risento the top of the priority list for many organizations, includinggovernments. As with many organizations these days, governmentinformation technology and security is migrating to the cloud. Asgovernment and public education entities migrate to Office 365, GoogleMail or other solutions for their primary email management service,theyâre also looking for email security that delivers advancedthreat protection, and this requires a service that is FedRAMPauthorized. FireEye CTO Grady Summers spoke with FireEye Global GovtCTO, Tony Cole and Risk Management Lead, Stacey Ziegler on how FireEyewill support the government as it moves to the cloud.