Join Ryan Kovar and special guest Kirsty Paine, Field CTO and Strategic Advisor at Splunk, for a conversation about her career in cybersecurity, including with her work on technical standards and emerging technologies, including artificial intelligence, IoT, and quantum computing. Links: - Cryptographically Relevant Quantum Computers (CRQCs) & The Quantum Threat - Quantum-Safe Cryptography & Standards: QSC, PQC, QKD & More! - The Quantum Threat: Options for Migrating to Quantum Safe Cryptography - Kirsty’s Blog Posts - Cyber Security for Consumer Internet of Things (ETSI EN 303 645) - Indicators of Compromise (IoCs) and Their Role in Attack Defence (RFC 9424)
Grab a cup of coffee and join Mick Baccio, Katie Brown and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: - Ukraine’s top mobile internet company is down, blames Russian cyberattack - IRGC-Affiliated Cyber Actors Exploit PLCs in Multiple Sectors, Including U.S. Water and Wastewater Systems Facilities - North Korean hackers using Log4J vulnerability in global campaign Audra and Katie also competed in a charity challenge to share what they consider to be the largest cyber incident of 2023.
Join Audra Streetman and special guest Eric McGinnis, Senior Threat Researcher at Splunk, for a conversation about Detection as Code and how it helps to streamline the threat detection process, especially at scale. Links: https://github.com/splunk/attack_range https://atomicredteam.io/ https://github.com/splunk/attack_data https://github.com/splunk/security_content https://github.com/splunk/contentctl
Grab a cup of coffee and join Ryan Kovar, Kirsty Paine, and Floris Ladan for a special EMEA edition of Coffee Talk with SURGe. The team from Splunk will compare highlights and similarities across recent cyber threat reports, including: - UK NCSC Annual Review 2023 - ENISA Threat Landscape 2023 - Cyber security assessment of the Netherlands 2023 Ryan and Floris also competed in a 60 second charity challenge to explain the importance of red teaming.
Join David Bianco and special guest Cat Self, Principal Adversary Emulation Engineer at MITRE and macOS/Linux Lead for ATT&CK, for a conversation about Cat’s career journey from military intelligence to cybersecurity along with her current work at MITRE. Links: - Mitre Engenuity CTID Project - Blog: "A Deep Dive into the OceanLotus Adversary Emulation for macOS & Linux" - Defensive guidance in an enterprise environment: OBTS v6 presentation, “Dropping Lotus Bombs: ATT&CK in macOS Purple Team Operations” by Cat Self & Megan Carney - CTID Adversary Emulation Library
Grab a cup of coffee and join Mick Baccio, Ryan Kovar, and Audra Streetman for another edition of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: - LockBit says ICBC paid ransom over hack that disrupted US Treasury market https://www.reuters.com/technology/cybersecurity/icbc-paid-ransom-after-hack-that-disrupted-markets-cybercriminals-say-2023-11-13/ - Sandworm Disrupts Power in Ukraine Using a Novel Attack Against Operational Technology https://www.mandiant.com/resources/blog/sandworm-disrupts-power-ukraine-operational-technology - The NSA Seems Pretty Stressed About the Threat of Chinese Hackers in US Critical Infrastructure https://www.wired.com/story/nsa-china-hacking-criticial-us-infrastructure/ Mick and Ryan will also compete in a charity challenge to explain what constitutes an influence operation, and why network defenders should care.
Join Mick Baccio and special guest John Hultquist, Chief Analyst at Mandiant Intelligence, for a conversation about John’s career in cybersecurity, his advice for aspiring CTI analysts, and what to expect at CYBERWARCON 2023 on Nov. 9. The link to register is: https://lnkd.in/gsDkmy2u.
Grab a cup of coffee and join Mick Baccio, Ryan Kovar, and Audra Streetman for a spooky Halloween edition of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: - SEC Charges SolarWinds and Chief Information Security Officer with Fraud, Internal Control Failures - President Biden Issues Executive Order on Safe, Secure, and Trustworthy Artificial Intelligence Mick and Ryan also competed in a charity challenge benefitting World Central Kitchen to share the lessons learned from Cybersecurity Awareness Month.
Join Mick Baccio and special guest Michael Rodriguez, Principal Strategic Consultant for Google Public Sector, for a conversation about Michael’s career path into cybersecurity, the origin of his nickname “Duckie,” and his work as a cybersecurity subject matter expert for Google Space.
Grab a cup of coffee and join Mick Baccio, Ryan Kovar, and Katie Brown for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: - Cisco Discloses ‘Critical’ Zero-Day Vulnerability In IOS XE - Signal Pours Cold Water on Zero-Day Exploit Rumors - European Commission demands X account for disinformation in wake of Hamas attacks
Join Shannon Davis and special guest Patrick Gray, host of the Risky Biz podcast, for a discussion about Patrick's cybersecurity reporting career and the work behind the scenes to produce each episode. You can listen to Risky Biz at risky.biz or wherever you get your podcasts.
Grab a cup of coffee and join Mick Baccio, Ryan Kovar and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: - RCE in Progress WS_FTP Ad Hoc via IIS HTTP Modules (CVE-2023-40044) - Exim patches three of six zero-day bugs disclosed last week - Exploit released for Microsoft SharePoint Server auth bypass flaw - Developments in ChatGPT capabilities - Tom Hanks warns fans about ‘AI version of me’ promoting dental plan Mick and Ryan competed in a 60 second charity challenge to share the pros and cons of Cybersecurity Awareness Month.
Join Ryan Kovar and special guest Sherrod DeGrippo, Director of Threat Intelligence Strategy at Microsoft, for a discussion about crimeware, threat actor naming conventions, and Sherrod's essay in a new book by SURGe titled, "Bluenomicon: The Network Defender's Compendium."
Grab a cup of coffee and join Audra Streetman and special guests Haylee Mills, Katie Brown and Drew Church for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: Microsoft's Xbox plans revealed in emails tied to FTC case 38TB of data accidentally exposed by Microsoft AI researchers Hackers who breached casino giants MGM, Caesars also hit 3 other firms, Okta says All thanks to ‘Big Yellow Taxi’: How State discovered Chinese hackers reading its emails
Join Ryan Kovar and special guest Derrick Lawson, Staff Sales Engineer at Splunk, for a discussion about M-21-31, a US memorandum establishing an event logging maturity model for federal government agencies. They’ll discuss strategies and tools that can help agencies with compliance.
Join Ryan Kovar and special guest Jamie Williams, MITRE ATT&CK for Enterprise Lead and Principal Adversary Emulation Engineer, for a discussion about MITRE ATT&CK use cases and Jamie's essay in a new book by SURGe titled, "Bluenomicon: The Network Defender's Compendium." Download Bluenomicon
Grab a cup of coffee and join Mick Baccio, Ryan Kovar and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: - Famed hacker and Twitter whistleblower Peiter 'Mudge' Zatko is joining the Biden administration https://www.washingtonpost.com/politics/2023/09/05/cisa-makes-big-name-hire-its-crusade-against-insecure-products/ - FBI, Partners Dismantle Qakbot Infrastructure in Multinational Cyber Takedown https://www.fbi.gov/news/stories/fbi-partners-dismantle-qakbot-infrastructure-in-multinational-cyber-takedown - Infamous Chisel Malware Analysis Report https://www.cisa.gov/news-events/analysis-reports/ar23-243a Mick and Ryan competed in a 60 second charity challenge to share their favorite hack of all time before a deep dive on extortionware vs. ransomware.
Join Ryan Kovar and special guest Rick Holland, VP and CISO at ReliaQuest, for an interview about Rick’s career journey, his advice for cybersecurity leaders, and his contribution to the SURGe team’s new book titled, “Bluenomicon: The Network Defender’s Compendium.” Follow Rick on Twitter Download the Bluenomicon PDF
Grab a cup of coffee and join Mick Baccio, Ryan Kovar and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: - Ivanti: Customers ‘impacted’ by new zero-day vulnerability - Nearly 2,000 Citrix NetScaler Instances Hacked via Critical Vulnerability - Joint Advisory on Safeguarding the US Space Industry - Tesla says data breach impacting 75,000 employees was an insider job - CISA Factsheet on Quantum Readiness - Kirsty's Blog: Cryptographically Relevant Quantum Computers (CRQCs) & The Quantum Threat in 2023
Join Audra Streetman and special guest Jake Williams (@MalwareJake) for a discussion about hiring in cybersecurity, interview advice, the challenges associated with vulnerability prioritization, Microsoft's Storm-0558 report, and Jake's take on the future of AI and LLMs in cybersecurity.