Wednesday, December 8, 2021
Security Weekly

IoT Standards, NginRAT, AT&T Botnet, & Bad Wifi Routers – Wrap Up – SWN #172

This week in the Security Weekly News Wrap Up Dr. Doug talks: Ben Dorsey, NginRat, AT&T, Decryption, IoT, and Bad WIFI Routers! All this and Dr. Doug's favorite threat of the week, & the show wrap ups for this...
Security Weekly

The Human Element – ESW #252

In this interview, we discuss defenders sharing information, how Edna deals with Azure's supply chain challenges, ransomware trends, and some future predictions. Edna has been in security as long as most other folks we interview, but was a lawyer...
Security Weekly

Bud's Budtender – PSW #720

This week, we kick off the show with an interview featuring Shailesh Athalye, Senior Vice President of Product Management at Qualys joins to discuss why Cybersecurity is an Unfair Game! Then, we jump straight into the Security News for...
Security Weekly

Too Authentic – SCW #97

There’s something happening here – and what it is ain’t exactly clear to O.G hackers like John Threat or our own Mr. Jeff Man. We’re going to devote an episode talking about how things used to be back in...
Security Weekly

Completely Off the Rails – BSW #242

We cover a lot of articles about CISO leadership, communications, skills, and yes, transition. This week we discuss the CISO transition from a CISO's perspective. I will interview my co-hosts on why they made moves in 2021, what criteria...
Security Weekly

Reaper Chinotto, Tardigrade, Cannazon DDoS, IKEA, Webcam Hijinks, & Seoul's Metaverse – SWN #171

This week in the Security Weekly News: Tardigrade, Reaper, HP, Cannazon, Ikea, Cameras, The Virtual DMV Verse, and the Expert Commentary Jason Wood on this edition of the Security Weekly News!   Show Notes: https://securityweekly.com/swn171 Visit https://www.securityweekly.com/swn for all...
Security Weekly

Cyber Monday – ASW #176

In today’s session Chris Wysopal will address a number of topics with Mike, including systemic risk in software development and how developers and security teams can work together to meet common goals and solve the speed vs. security dilemma....
Security Weekly

A Good Mission – SCW #96

In the early days of PCI there was an online column called StorefrontBacktalk which focused on retail and technology issues. The column provided valuable insights from various specialists on the interpretation and application of many of the more challenging...
Security Weekly

SquirrelWaffel, Scams, Exchange Flaws, Honeypots, & Hoodies – Wrap Up – SWN #170

This week in the Security Weekly News Wrap Up: Dr. Doug rants in preparation for the Holidays, Scams, Exchange Flaws, SquirrelWaffel, honeypots, hoodies, & more!   Show Notes: https://securityweekly.com/swn170 Visit https://www.securityweekly.com/swn for all the latest episodes!   Follow us...
Security Weekly

Invest Properly – BSW #241

As a CISO tasked to present to the Board or other executives, communicating cybersecurity in business context is critical to success. Hear from Kevin Powers, who has taught hundreds of CISOs in his executive education courses how to level-up...
Security Weekly

GoDaddy Breached, Imunify360, Holiday Scams, Bug Bounties Surge, & Bryon Hundley – SWN #169

This week in the Security Weekly News, Dr. Doug talks: Grandma's recipe, Imunify360, GoDaddy, Nigeria, holiday scams, bug bounties, & Bryon Hundley from ISAC joins for Special Guest Commentary! Bryon will discuss the sector-wide exercise that was conducted over...
Security Weekly

Max Headroom – ASW #175

This week, we welcome Liam Randall, CEO at Cosmonic, to talk about wasmCloud - Distributed Computing With WebAssembly! CNCF wasmCloud helps developers to build distributed microservices in WebAssembly that they can run across clouds, browsers, and everywhere securely! In...
Security Weekly

Kinky VR, FatPipe, Win11, Glitch, Perswaysion, & Satoshi Nakamoto – Wrap Up – SWN #168

This Week Dr. Doug talks: Satoshi Nakamoto, Weird Sex Objects, teaching hackers, Fatpipe, Banks, Win 11, Glitch, and Perswaysion , and Show Wrap-Ups, on the Security Weekly News! Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly Visit...
Security Weekly

Crystal Ball Gazing – ESW #251

ExtraHop VP, GM of International and Global Security Programs Mike Campfield joins Security Weekly for a retrospective on ransomware in 2021, shares his predictions on how it will evolve in 2022 and beyond, and what controls enterprises can put...
Security Weekly

Hackers Be Hackin' – PSW #719

This week, we kick off the show with a technical segment where we walk through creating vulnerable Docker Containers – On Purpose! Then, Derek Rook from Senior Director Purple Team atTeradata, & SANS Certified Instructor joins to discuss technologies...
Security Weekly

Massive Damage – SCW #95

CISA recently published guidance for how managed service providers (MSPs) should approach security for their operations based on the premise that cyber threat actors are known to target MSPs to reach their customers. MSPs provide remote management of customer...
Security Weekly

Cyber Money Ball – BSW #240

This week, we welcome Tony Cole, CTO at Attivo Networks, to discuss Protecting Identity Services! Identity Services such as Active Directory is an area that is almost always utilized by the attacker after the initial endpoint is compromised. This...
Security Weekly

FBI, Eyeball Lies, Intel, Microsoft, & Smishing – SWN #167

This week on the Security Weekly News, Dr. Doug talks: The Eyes don't lie, the FBI, Intel, Microsoft, pompompurin, smishing, and ransom consulting! All this and Aaran Leyland's Expert Commentary on the Security Weekly News!   Show Notes: https://securityweekly.com/swn167...
Security Weekly

Eyes Open – ASW #174

This week, we welcome Ryan Lloyd, Chief Product Officer at Guardsquare, to discuss Mobile Application Security! Mobile applications have a unique attack surface. The tools and techniques being used to compromise these environments are constantly evolving. We'll talk about...
Security Weekly

Attack & Defense – ESW #250

This week, we welcome Angela Marafino, PM at Microsoft, to talk about MegatronAL on Kicking in the Door to Cybersecurity! In the second segment, we welcome Nick Leghorn, Director of Application Security at The New York Times, to discuss...

Emotet’s Behavior & Spread Are Omens of Ransomware Attacks

The botnet, which resurfaced last month on the back of TrickBot, can now directly install Cobalt Strike on infected devices, giving threat actors direct access to targets.

Google disrupts major malware distribution network Glupteba

Working with several internet infrastructure and hosting providers, including Cloudflare, Google disrupted the operation of an aggressive Windows botnet known as Glupteba that was being distributed through fake ads. It also served itself as a distribution network for additional...
SecurityWeek

Private Equity Firm Permira to Acquire Mimecast in $5.8 Billion Deal

Mimecast on Tuesday announced that private equity firm Permira wants to acquire it in an all-cash transaction that values the email security company at roughly $5.8 billion. Permira, which plans on taking Mimecast private, has entered into a definitive agreement...
SecurityWeek

What a Departure Email Can Teach Us About Security

When someone leaves their job to pursue other opportunities, we often receive an email about their departure. Many times, the departure email praises the person who has given notice. This would seem to be a courteous tradition when someone...
IBM Security

What to Do When a Ransomware Group Disappears

It’s your company’s worst nightmare: attackers managed to sneak ransomware onto your servers. Now, you’re locked out of every file unless you agree to pay whatever price they’re asking. As if the situation couldn’t get any worse, the attackers...