Monday, September 23, 2019
The Security Ledger

RSA warns Digital Transformation is supercharging Digital Risk

“Digital transformation” is the buzz word du jour in industry. But executives at RSA Security warn that it is also magnifying digital risk in ways that are easy to miss.Related StoriesThird Party Cyber Risk is growing. Most Companies aren’t...
The Security Ledger

Spotlight Podcast: Security Automation is (and isn’t) the Future of Infosec

n this Spotlight Podcast, we speak with David Brumley, the Chief Executive Officer at the security firm ForAllSecure and an expert on the use of machine learning and automation to cyber security problems. We talk about the growing demand...
The Security Ledger

Spotlight Podcast: Rethinking Your Third Party Cyber Risk Strategy

Third party cyber risk is growing. Despite that, most companies are unprepared to address it in a systematic way. In this Spotlight Podcast, a companion to our new eBook, Rethinking Third Party Cyber Risk Management, we go deep on...
The Security Ledger

Third Party Cyber Risk is growing. Most Companies aren’t prepared.

Third party cyber risk is a growing concern for organizations, as breaches and hacks tied to third party providers and applications multiply. How do you know if your third party cyber risk management program is up to the task?...
The Security Ledger

Episode 161: 3 Years after Mirai, IoT DDoS Problem may get Worse

Three years after the Mirai botnet launched some of the biggest denial of service attacks ever seen, DDoS is a bigger problem and ever. Even worse: we stand on the made up of webcams and other Internet of things...
The Security Ledger

Episode 160 Right to Repair’s Summer of Love – Sort of.

call it Right to Repair's "Summer of Love." Summer 2019 saw developments on a number of fronts in the nation-wide battle to win a digital right to repair. In this podcast, we talk with Nathan Proctor of US PIRG's...
The Security Ledger

Episode 159: Deep Fakes and Election (in)Security with ZeroFOX

In this weeks podcast, we delve into the myriad challenges to election security with Sam Small, the Chief Security Officer at the firm ZeroFOX Related StoriesEpisode 160 Right to Repair’s Summer of Love – Sort of.Episode 155: Disinformation is a...
The Security Ledger

Episode 158: How NotPetya has Insurers grappling with Systemic Cyber Risk

We talk to Bruce McDonnell of the East West Institute about how insurers are responding. Related StoriesEpisode 155: Disinformation is a Cyber Weapon and APTs warm to Mobile MalwarePodcast Episode 117: Insurance Industry Confronts Silent Cyber Risk, Converged ThreatsNotPetya Horror...
The Security Ledger

Episode 157: Do we need an FDA for Software? Also: operationalizing Threat Intelligence

Sarah Zatko of the Cyber Independent Testing Lab joins us to talk about CITL's big new study of firmware security. In our second segment, we’re joined by Allan Thomson who is the Chief Technology Officer at LookingGlass Cyber Solutions...
The Security Ledger

Huge Survey of Firmware Finds No Security Gains in 15 Years

A survey of more than 6,000 firmware images spanning more than a decade finds no improvement in firmware security and lax security standards for the software running connected devices by Linksys, NETGEAR and other major vendors.Related StoriesCritical Flaws in...
The Security Ledger

Digital Right to Repair Movement seeks Allies at DEF CON

A grass roots movement to win a legal right to repair digital devices arrived at DEF CON in Las Vegas on Saturday with a message for an estimated 30,000 attendees: 'fight for repair.'Related StoriesEpisode 160 Right to Repair’s Summer...
The Security Ledger

Spotlight Podcast: Unpacking Black Hat Hacks with Digicert CTO Dan Timpson

In this Spotlight Podcast, we broadcast from the Black Hat Briefings in Las Vegas Nevada. Dan Timpson, the Chief Technology Officer at DigiCert joins us to talk about some of the high profile hacks at this week's "hacker summer...
The Security Ledger

Episode 156: Looming over Black Hat: doing Security at Massive Scale

In this episode of the Security Ledger Podcast (#156), we're joined by Michael Coates, the former Chief Information Security Officer at Twitter and the CEO and co-founder of Altitude Networks.* With "hacker summer camp" kicking off in Las Vegas,...
The Security Ledger

Episode 155: Disinformation is a Cyber Weapon and APTs warm to Mobile Malware

In this week’s episode of the Podcast (#155): Jerome Segura of Malwarebytes joins us to talk about how disinformation campaigns and cyber crime are part of the same toxic cocktail in the world's trouble spots, like Ukraine. Also: Adam...
The Security Ledger

Critical Flaws in VxWorks affect 200 Million Connected Things

Serious and exploitable security flaws in VxWorks, a commonly used operating system for embedded devices, span 13 years and could leave hundreds of millions* of connected devices vulnerable to remote cyber attacks and hacks. The security firm Armis on...
SC Magazine

Ning Wang – Offensive Security

Ning WangCEO Offensive Security Why Nominated: Ning Wang is a rising star has worked to break the boundaries in the security industry, so that people can see that anyone is capable of starting a career in cybersecurity and advancing it –...
SC Magazine

Dani Martínez – IOActive

Dani MartínezSecurity ConsultantIOActive Why nominated: Dani Martínez proved to be a self-starter, beginning his career in IT he soon developed an interest in cybersecurity and began taking online courses in his spare time. Martínez also dove write in and began a cybersecurity blog...
SC Magazine

Maurice Stebila – Harman, a Samsung Company

Maurice StebilaDigital Security,Compliance and Privacy OfficerHarman, a Samsung Company Why nominated: Maurice Stebila has spent more than 30 years in the automotive, manufacturing and financial services industry supporting two of the world’s largest companies – EDS/General Motors and Harman by Samsung...
SC Magazine

Ed Adams – Security Innovation

Ed AdamsPresident and CEOSecurity Innovation Why Nominated: A highly respected veteran of the cybersecurity industry, Security Innovation CEO Ed Adams has taken on several new leadership roles in the year or so. Last April, he was named to board of directors of...
SC Magazine

David Archer – Galois

David ArcherPrincipal scientistGalois Why Nominated: Archer, an advocate for preserving privacy of data even when it’s used in decision-making both within the U.S. at all levels of government as well as internationally, directs research in privacy-preserving information technologies. Profile:  David Archer is all...