Episode 3: Crowdstrike, North Korean Spies, And CISO Scapegoats Distilled Security podcast

Artwork

Tech Business Distilled Security Joe Wynn Justin Leapline Rick Yocum Cybersecurity Government Risk

Inhalt bereitgestellt von Distilled Security, Justin Leapline, Joe Wynn, and Rick Yocum. Alle Podcast-Inhalte, einschließlich Episoden, Grafiken und Podcast-Beschreibungen, werden direkt von Distilled Security, Justin Leapline, Joe Wynn, and Rick Yocum oder seinem Podcast-Plattformpartner hochgeladen und bereitgestellt. Wenn Sie glauben, dass jemand Ihr urheberrechtlich geschütztes Werk ohne Ihre Erlaubnis nutzt, können Sie dem hier beschriebenen Verfahren folgen https://de.player.fm/legal.

Distilled Security Podcast « »
Episode 3: Crowdstrike, North Korean Spies, and CISO Scapegoats

3M ago 1:10:52

Teilen

MP3•Episode-Home

Inhalt bereitgestellt von Distilled Security, Justin Leapline, Joe Wynn, and Rick Yocum. Alle Podcast-Inhalte, einschließlich Episoden, Grafiken und Podcast-Beschreibungen, werden direkt von Distilled Security, Justin Leapline, Joe Wynn, and Rick Yocum oder seinem Podcast-Plattformpartner hochgeladen und bereitgestellt. Wenn Sie glauben, dass jemand Ihr urheberrechtlich geschütztes Werk ohne Ihre Erlaubnis nutzt, können Sie dem hier beschriebenen Verfahren folgen https://de.player.fm/legal.

Episode 3 of the Distilled Security Podcast is here!

Join us this week as we jump into:

CrowdStrike Incident Analysis: A deep dive into a recent mishap by CrowdStrike that led to significant financial losses and operational disruptions, including 5.4 billion in estimated losses.
Vendor Accountability: Exploring the legal and financial repercussions of security vendor failures.
Business Continuity Planning: The importance of preparing for security vendor failures, including considering alternate vendors and the complexities of implementing such strategies.
Kernel-Level Security Risks: A discussion surrounding kernel-level operations in security software, focusing on the controversy between CrowdStrike and SentinelOne.
Manual Workarounds and Legacy Systems: The challenges of maintaining business operations during security incidents.
Ransomware Recovery vs. Vendor Failures: Comparing ransomware attacks' impact and recovery processes with security vendor-induced failures.
Password Management Vulnerabilities: The risks associated with dependency on password management systems like Thycotic/Delinea and LastPass, and the potential fallout if these systems experience downtime.
BSides Pittsburgh Recap: the biggest BSidesPGH event yet. Hear the notes and highlights from the conference.
North Korean Spy Hired By KnowBe4: Hear how a spy for N. Korea got by the defenses of KnowBe4, how they caught them, and steps they implemented to avoid this in the future.
CISOs as Scapegoats: Are CISOs being pegged as scapegoats unfairly?

Links

Crowdstrike Incident - https://www.crowdstrike.com/falcon-content-update-remediation-and-guidance-hub/
SentinelOne Response to Crowdstrike - SentinalOne on Crowdstrike Outage - https://www.crn.com/news/security/2024/sentinelone-ceo-on-crowdstrike-outage-not-just-an-honest-mistake
BSidesPGH - https://www.bsidespgh.com/
TRISS - https://www.threeriversinfosec.com/
KnowBe4 // N. Korean Spy - https://blog.knowbe4.com/cyberheistnews-vol-14-31-how-the-whole-world-now-knows-about-fake-north-korean-it-workers
CISO as Scapegoats - https://www.thestack.technology/were-becoming-scapegoats-how-have-cisos-responded-to-sec-cyber-risk-disclosure-rules/

Spirits

Rabbit Hole Cavehill // Four Grain Tripple Malt - https://www.rabbitholedistillery.com/pages/cavehill/

Hosts

Justin Leapline - https://www.linkedin.com/in/justinleapline/
Joe Wynn - https://www.linkedin.com/in/wynnjoe/
Rick Yocum - https://www.linkedin.com/in/rickyocum/

Connect with Us

Website: https://distilledsecuritypodcast.com
Twitter: @DisSecPod
Email: hello@distilledsecuritypodcast.com

… continue reading

6 Episoden

#Tech #Business #Distilled Security #Joe Wynn #Justin Leapline #Rick Yocum #Cybersecurity #Government #Risk

Artwork

Episode 3: Crowdstrike, North Korean Spies, and CISO Scapegoats

Distilled Security Podcast

published 3M ago

Teilen

MP3•Episode-Home

Inhalt bereitgestellt von Distilled Security, Justin Leapline, Joe Wynn, and Rick Yocum. Alle Podcast-Inhalte, einschließlich Episoden, Grafiken und Podcast-Beschreibungen, werden direkt von Distilled Security, Justin Leapline, Joe Wynn, and Rick Yocum oder seinem Podcast-Plattformpartner hochgeladen und bereitgestellt. Wenn Sie glauben, dass jemand Ihr urheberrechtlich geschütztes Werk ohne Ihre Erlaubnis nutzt, können Sie dem hier beschriebenen Verfahren folgen https://de.player.fm/legal.

Episode 3 of the Distilled Security Podcast is here!

Join us this week as we jump into:

CrowdStrike Incident Analysis: A deep dive into a recent mishap by CrowdStrike that led to significant financial losses and operational disruptions, including 5.4 billion in estimated losses.
Vendor Accountability: Exploring the legal and financial repercussions of security vendor failures.
Business Continuity Planning: The importance of preparing for security vendor failures, including considering alternate vendors and the complexities of implementing such strategies.
Kernel-Level Security Risks: A discussion surrounding kernel-level operations in security software, focusing on the controversy between CrowdStrike and SentinelOne.
Manual Workarounds and Legacy Systems: The challenges of maintaining business operations during security incidents.
Ransomware Recovery vs. Vendor Failures: Comparing ransomware attacks' impact and recovery processes with security vendor-induced failures.
Password Management Vulnerabilities: The risks associated with dependency on password management systems like Thycotic/Delinea and LastPass, and the potential fallout if these systems experience downtime.
BSides Pittsburgh Recap: the biggest BSidesPGH event yet. Hear the notes and highlights from the conference.
North Korean Spy Hired By KnowBe4: Hear how a spy for N. Korea got by the defenses of KnowBe4, how they caught them, and steps they implemented to avoid this in the future.
CISOs as Scapegoats: Are CISOs being pegged as scapegoats unfairly?

Links

Crowdstrike Incident - https://www.crowdstrike.com/falcon-content-update-remediation-and-guidance-hub/
SentinelOne Response to Crowdstrike - SentinalOne on Crowdstrike Outage - https://www.crn.com/news/security/2024/sentinelone-ceo-on-crowdstrike-outage-not-just-an-honest-mistake
BSidesPGH - https://www.bsidespgh.com/
TRISS - https://www.threeriversinfosec.com/
KnowBe4 // N. Korean Spy - https://blog.knowbe4.com/cyberheistnews-vol-14-31-how-the-whole-world-now-knows-about-fake-north-korean-it-workers
CISO as Scapegoats - https://www.thestack.technology/were-becoming-scapegoats-how-have-cisos-responded-to-sec-cyber-risk-disclosure-rules/

Spirits

Rabbit Hole Cavehill // Four Grain Tripple Malt - https://www.rabbitholedistillery.com/pages/cavehill/

Hosts

Justin Leapline - https://www.linkedin.com/in/justinleapline/
Joe Wynn - https://www.linkedin.com/in/wynnjoe/
Rick Yocum - https://www.linkedin.com/in/rickyocum/

Connect with Us

Website: https://distilledsecuritypodcast.com
Twitter: @DisSecPod
Email: hello@distilledsecuritypodcast.com

… continue reading

6 Episoden

#Tech #Business #Distilled Security #Joe Wynn #Justin Leapline #Rick Yocum #Cybersecurity #Government #Risk

כל הפרקים

×

Willkommen auf Player FM!

Player FM scannt gerade das Web nach Podcasts mit hoher Qualität, die du genießen kannst. Es ist die beste Podcast-App und funktioniert auf Android, iPhone und im Web. Melde dich an, um Abos geräteübergreifend zu synchronisieren.

Höre 500+ Themen zu