Afleveringen
-
Mitch and Alan discuss a recent security incident involving CrowdStrike, highlighting the challenges of software updates and the implications for the broader industry. They reflect on their experiences attending the Black Hat conference and the evolving intersection of software development and security. They also share personal anecdotes and insights into the importance of quality assurance in security updates.
-
Mitchell and Alan talk about the ubiquitous collection of data including geolocation data by Apple, Google and other providers. The uses of this data can be relatively innocent for marketing purposes all the way to serious security issues of life and death. Alan & Mitch also talk about the current state of Cyber AI startups. Has the bloom come off the rose? Will Cyber AI become a big company game with the giants of the field dominating? What about the Palo Alto/IBM partnership? Lots to discuss in that one.
-
Zijn er afleveringen die ontbreken?
-
Mitch and Alan take a moment to catch their breath after a great week at RSAC, Broadcast Alley interviews and the DevSecOps and GenAI conference. They affirm that security is about community for them both. They also explore the emerging discussion of whether all this spending on security technologies is making us more secure or not.Links Referenced in Podcast:https://techstrong.tv/videos/rsa-conference-2024https://www.techstrongevents.com/devopsconnect-devsecops-rsac-2024/virtual-home
-
Mitch and Alan discuss rebranding the Security Creators Network; CISA brings a new focus to open source and Alan's interview with OpenSSF governing board member Brian Fox (Sonatype) from KubeCon + CloudNativeCon Europe 2024.References mentioned in this podcast:Security Creators Network:https://securityboulevard.com/2024/04/techstrong-group-announces-rebranding-of-security-bloggers-network-to-security-creators-network/CISA:https://securityboulevard.com/2024/04/federal-support-for-open-source-security/
-
Alan and Mitch discuss self-replicating AI malware, Cloudflare's announced firewall to protect generative AI LLMs and Alan's interview with Anna Pobletts, head of passwordless at 1Password, about how devs and DevOps teams can improve cybersecurity by eliminating passwords.https://securityboulevard.com/2024/03/compromptmized-ai-worm-malware-richixbw/ https://securityboulevard.com/2024/03/cloudflare-unveils-a-firewall-designed-to-keep-llms-safe https://techstrong.tv/videos/interviews/devops-passwordless-cybersecurity-1passwords-anna-pobletts
-
Mitch and Alan discuss the State Department's intent to label fake content, expanding the Security Bloggers Network at RSAC 2024, and the government's focus on taking down LockBit and other large ransomware rings.Links Referenced in Podcast:https://securityboulevard.com/2024/02/us-russian-disinformation-richixbw/https://securityboulevard.com/security-bloggers-networkhttps://securityboulevard.com/2024/02/lockbit-op-cronos-richixbw/https://securityboulevard.com/2024/02/u-s-offers-10-million-for-info-on-blackcat-alphv-ransomware-leaders/
-
In this episode of Security Boulevard Chats, hosts Mitch and Alan delve into AI's profound impact on cybersecurity and the dual-edged nature it presents for attackers and security professionals. The conversation takes a deeper dive into the murky waters of deep fakes and AI-generated misinformation. Alan sits down with Chris Eng, Chief Research Officer at Veracode, for an insightful discussion on security debt. They peel back the layers of this often-overlooked aspect of cybersecurity, revealing the long-term consequences of postponed security measures. Join Mitch and Alan for an episode that promises to enlighten and challenge your perceptions of cybersecurity in the AI era. Whether you're a security professional, a technology enthusiast, or simply curious about the future of digital defense, this episode of Security Boulevard Chats is a must-listen.Links Referenced:https://techstrong.tv/videos/interviews/veracode-state-of-sofware-security-2024-chris-eng
-
Alan and Mitch discuss data leaks and Bank of America' recent data loss and, Alan's interview with security marketing guru and colleague Jennifer Leggio, defending the expanding attack surface.Links referenced:https://www.bleepingcomputer.com/news/security/bank-of-america-warns-customers-of-data-breach-after-vendor-hack/https://securityboulevard.com/2024/02/what-is-a-data-leak-causes-examples-and-preventionhttps://techstrong.tv/videos/interviews/how-to-lead-moveable-feast-jennifer-leggiohttps://techstrong.tv/videos/interviews/challenges-defending-attack-surface-ionix-marc-gaffan
-
Return to the office mandates are on the rise, and Mitch and Alan discuss whether security concerns over working remote is a substantial driver. Mitch and Alan also explore the realization of deepfake fears covered in Richi Jennings' "CFO Deepfake Fools Staff — Fakers Steal $26M via Video" , should HR's role expand in "Why an HR-IT Partnership is Critical for Managing Cybersecurity Risk" by Guarav Belani and who should bring the security mindset in Olga Lagunova's "Innovation With a Security-First Mindset". They wrap with Alan's video interview with Cloudflare's Grant Bourzikas on "API Security and Management in 2024" (https://techstrong.tv/videos/interviews/api-security-management-2024-cloudflare-grant-bourzikas).Links Referenced: https://securityboulevard.com/2024/02/deepfake-hong-kong-richixbwhttps://securityboulevard.com/2024/02/why-an-hr-it-partnership-is-critical-for-managing-cybersecurity-riskhttps://securityboulevard.com/author/olga-lagunovahttps://techstrong.tv/videos/interviews/api-security-management-2024-cloudflare-grant-bourzikas
-
Mitch and Alan kick off 2024 by recalling the origins of Security Boulevard Chats, which started with their first security podcast in 2004. Twenty years ago!!! They discuss how security has gone from a niche job to today, where college grads emerge with security degrees and specializations. They discuss Marty Roesch's (snort creator and Sourcefire founder) article on the importance of holistically viewing security across the cloud and on-prem, tapping into AI's potential in cybersecurity, AI's increasing role in payment fraud and an upcoming webinar on why logging is more relevant than ever.Links Referenced in Podcast:
https://securityboulevard.com/2024/01/dont-misdefine-network-security-in-2024-include-on-prem-and-cloudhttps://securityboulevard.com/2024/01/tapping-into-the-potential-of-generative-ai-in-cybersecurity/https://techstrong.tv/videos/interviews/ai-role-payment-fraud-visa-james-mirfinhttps://webinars.securityboulevard.com/loggings-not-dead-long-live-logging
