Episode 3: Crowdstrike, North Korean Spies, and CISO Scapegoats
MP3•Episode hjem
Manage episode 433894167 series 3577687
Indhold leveret af Distilled Security, Justin Leapline, Joe Wynn, and Rick Yocum. Alt podcastindhold inklusive episoder, grafik og podcastbeskrivelser uploades og leveres direkte af Distilled Security, Justin Leapline, Joe Wynn, and Rick Yocum eller deres podcastplatformspartner. Hvis du mener, at nogen bruger dit ophavsretligt beskyttede værk uden din tilladelse, kan du følge processen beskrevet her https://da.player.fm/legal.
Episode 3 of the Distilled Security Podcast is here!
Join us this week as we jump into:
- CrowdStrike Incident Analysis: A deep dive into a recent mishap by CrowdStrike that led to significant financial losses and operational disruptions, including 5.4 billion in estimated losses.
- Vendor Accountability: Exploring the legal and financial repercussions of security vendor failures.
- Business Continuity Planning: The importance of preparing for security vendor failures, including considering alternate vendors and the complexities of implementing such strategies.
- Kernel-Level Security Risks: A discussion surrounding kernel-level operations in security software, focusing on the controversy between CrowdStrike and SentinelOne.
- Manual Workarounds and Legacy Systems: The challenges of maintaining business operations during security incidents.
- Ransomware Recovery vs. Vendor Failures: Comparing ransomware attacks' impact and recovery processes with security vendor-induced failures.
- Password Management Vulnerabilities: The risks associated with dependency on password management systems like Thycotic/Delinea and LastPass, and the potential fallout if these systems experience downtime.
- BSides Pittsburgh Recap: the biggest BSidesPGH event yet. Hear the notes and highlights from the conference.
- North Korean Spy Hired By KnowBe4: Hear how a spy for N. Korea got by the defenses of KnowBe4, how they caught them, and steps they implemented to avoid this in the future.
- CISOs as Scapegoats: Are CISOs being pegged as scapegoats unfairly?
Links
- Crowdstrike Incident - https://www.crowdstrike.com/falcon-content-update-remediation-and-guidance-hub/
- SentinelOne Response to Crowdstrike - SentinalOne on Crowdstrike Outage - https://www.crn.com/news/security/2024/sentinelone-ceo-on-crowdstrike-outage-not-just-an-honest-mistake
- BSidesPGH - https://www.bsidespgh.com/
- TRISS - https://www.threeriversinfosec.com/
- KnowBe4 // N. Korean Spy - https://blog.knowbe4.com/cyberheistnews-vol-14-31-how-the-whole-world-now-knows-about-fake-north-korean-it-workers
- CISO as Scapegoats - https://www.thestack.technology/were-becoming-scapegoats-how-have-cisos-responded-to-sec-cyber-risk-disclosure-rules/
Spirits
- Rabbit Hole Cavehill // Four Grain Tripple Malt - https://www.rabbitholedistillery.com/pages/cavehill/
Hosts
- Justin Leapline - https://www.linkedin.com/in/justinleapline/
- Joe Wynn - https://www.linkedin.com/in/wynnjoe/
- Rick Yocum - https://www.linkedin.com/in/rickyocum/
Connect with Us
- Website: https://distilledsecuritypodcast.com
- Twitter: @DisSecPod
- Email: hello@distilledsecuritypodcast.com
6 episoder