Securiosity

Microsoft is sending out early warnings about the 2020 election, Bluekeep patching is a mixed bag, and a company wants to use diamonds in the supply chain. In our interview, we talk with Casey Ellis from Bugcrowd on how his company has meshed the nature of pen testing with bug bounty programs to form what’s considered to be “crowdsourced security.”

This week, the cybersecurity world turned on a popluar video conferencing app, more home security services are being attacked, and we have what we believe to be the first compliance unicorn. In our interview we talk to JP Keating from Zimperium about the security around mobile banking apps.

Iran and U.S. are trading cyberattacks, another Florida city has paid a ransom and two big cybersecurity companies are suing each other. We cover it all. In our interview, we talk with Kowsik Guruswamy, CTO of Menlo Security. Menlo is a startup in the browser isolation space — which is a piece of technology is becoming more and more popular inside enterprises. He tells how the business is evolving and how the tech changes the way people work.

Welp, the hostage takers won this a round: a city in Florida paid up to get rid of some ransomware. We talk about what it means and why it was a bad idea. We also hit on the Black Hat speaker controversy and all the money that's still flying around. In our interview, we David Damato, Chief Security Officer of Tanium. We talked to David on the sidelines of the Gartner summit in Maryland this week, and spoke about patching, cyber hygiene, and whats like to be in charge of cybersecurity inside a cybersecurity company.

It was another week filled with M&A, venture and IPO talk. There was a bunch of hacker talk, sure, but the deals kept comin', so we talked about it a lot. In our interview, we talked to Distil Networks CEO Tiffany Kleeman to learn what's next for Distil (it was acquired earlier this week) and how her customers are stopping all those bad ad fraud bots.

This week was a lot. A lot of bickering, a lot of confusion, and a lot of money flying around. But the real fun is Greg and Jen finally talking about that 'Crypto' movie. We watched so you don't have to. In our interview, we talk with Andrea Little Limbago, chief social scientist at Virtru. Andrea wrote an op-ed of CyberScoop on the noise around encryption and the changes we are seeing to privacy laws on the state and local level.

The U.S. government has been all over the map on Huawei. Google flubbed its password storage. And identity management is getting a ton of money. In our interview, we talk with Justin Shattuck of Baffin Bay Networks. He goes into his work with threat intelligence and what bothers him with the scene today.

What didn't go down this week? Intel chip flaws, Cisco server issues, WhatsApp exploits, Microsoft RDP issues, IPOs....it's all happening! In our interview, we talk to IDExperts CEO Tom Kelly about all the noise surrounding Facebook and what needs to be done to give social media users more privacy.

Among the things discussed this week: NSA tools being repurposed, the DOJ indicting or extraditing a ton of hackers, cryptocurrency being stolen, kinetic attacks, election security drama, dark web marketplaces, and multiple rounds of funding. Yeah, it was a busy week. In our interview, we talk to Associate Editor Jeff Stone about his in-depth reporting on ad fraud and how its being leveraged by criminals to the tune of billions in losses.

Jen and Greg discuss Trump's cybersecurity workforce executive order, the Vault7 accuser's preposterous civil rights filing, and Fiserv's latest lawsuit. In our interview, we talk with HyperQube CEO Craig Stevenson and CRO Jessica Crytzer on spinning up cyber ranges quicker that ever before....and how Craig used to be a professional arm wrestler. Yup, you read that last part right.

ES&S wants to pen test its way to better security. But that may not be the best way to go about it. Greg and Jen discuss. In the interview, we talk with Flashpoint CEO Josh Lefkowitz about the new features to his company's dashboards, including information from dark web marketplaces and underground chats.

Operations around the world were unearthed this week. Brazil, India, Iran, Ukraine...you name the country, and we will tell you the info sec issue. In our interview, we talk with Andrew Morris of Greynoise about the way he is making it easier for security analysts to do their jobs.

Greg & Jen debate what the charges against Julian Assange really mean, a new plan to get people into the infosec workforce and a whole new spin on the word “cyberspace” In our weekly interview, we talk with Eric Heitzman from Security Compass, who looks to peel back all the buzzwords and tell us some practical ways on how DevSecOps can work for your organization.

People are just waltzing into Mar-A-Lago with thumb drives full of malware. Probably should be frowned upon, but we live in wild times. In our interview, we talk to Gordon Benoit of D3 Security about his SOAR product. Also, some 14-year-olds DDoSed their school's WiFi because they didn't want to take tests. We laugh about it for a bit.

Harold Martin copped a plea, saying that he wanted to put an end to his saga. But does his guilty plea close this chapter in NSA leaker history? In our interview, we talk to Aviv Grafi of votiro about how he got his start and why fileless malware is so hard to detect.

Norway's aluminum giant was rekt, but it was the best-case scenario. Facebook had another fail, but it wasn't the worst-case scenario. We'll explain. In our interview, we talk to Jonas Gyllensvaan, CEO of SyncDog, about his work in the MDM space.

It was a lighter week in news, as RSA is in the rearview mirror. We talk to Master Peace CEO Drew Cohen about his unique business that leverages cybersecurity talent in both the public and private sector. But, really, the big thing is the gift from the heavens that is the 'Crypto' movie trailer. Haven't heard of it. Oh man, you really should listen. TRAILER HERE: https://www.youtube.com/watch?v=kYZut3DWvek

A big week in cybersecurity means an extra big podcast. We talk about it all: Ghidra, Backstory, digital trust, smart house hacks, -- it's all in here. We talk to Christian Lees, CISO for InfoArmor. Christian gets into his role scouring the dark web, figuring out how people’s data ended up on dark web forums. Speaking of the dark web, we also are going to talk to RunSafe CEO Joe Saunders — RunSafe and CyberScoop launched the RunSafe Pwn Index this week. What is that, you ask? Listen and we'll tell you, duh.

There is a new report out on how fast nation-state hackers are moving from system to system. Thats only one of, like, eight stories around nation-state hacking this week. Those hacker spies are a busy bunch. In our interview, we talk to NormShield CEO Mohamoud Jibrell. His company just landed a round of seed funding for its third-party risk assessment scorecard.

There was a lot of news around dumb cyber criminals this week, and that led Jen to ask Greg what would he do in certain black hat scenarios. Greg is very adamant that this is all hypothetical and for the sake of your entertainment. In our interview, we talk to Threatcare CEO Marcus Carey about his new book Tribe of Hackers. He's talks about his various inspirations for the book, which ranges from hacker Ron Gula to rapper Jadakiss. (It will make sense when you listen).Marcus is giving away his book for free! Check it out here: https://www.threatcare.com/tribe-of-hackers/