infosecurity-magazine.com/rss/podcasts

Operation Cronos took the cybersecurity world by storm as law enforcement disrupted one of the most prolific ransomware gangs in the world. Now the dust has settled it’s time for a first assessment of the takedown’s impact on the LockBit ransomware group. In this episode, the Infosecurity Magazine team goes behind the scenes of the law enforcement operation with Prodaft, a threat intelligence company that collaborated with the FBI, the NCA, and Europol to take down the group’s infrastructure. We also dissected the operation’s impact on LockBit’s activity and explored what the future holds for this notorious cybercriminal organization, with great insights from RedSense, another threat intelligence firm that spent three years investigating the group. You will hear from: -Koryak Uzan, co-founder of Prodaft (6.52) -Marley Smith, principal threat researcher at RedSense and Yelisey Bohuslavskyi, RedSense co-founder (31.36)

Big corporations are tightening their cyber defenses, making small and medium businesses (SMEs) a tempting target for cybercriminals. This episode of Infosecurity Magazine’s podcast dives into the growing threat landscape for SMEs and explores the potential consequences of an attack. Guests include: • Simon Whittaker, CEO of Vertical Structure (07.35) • Gill Thomas, Director of Engagement, Capacity and Resilience Program at the Global Cyber Alliance (33.15)

This year’s Data Privacy Week campaign carries the theme ‘take control of your data,’ underlying the scale of personal information being collected and used online by businesses. In this episode, we analyze growing consumer awareness and concern about the use of their personal data online, and practical steps businesses can take to improve trust and transparency in this area. This includes creating ‘value exchange’ with customers around using their personal data. We also delve into the impact of AI on data privacy – good and bad, and how to manage customer relationships during a data breach. Tune into this episode to learn practical ways organizations can update their data privacy practices for the modern consumer. Guests include: Joe Jones, Director of Research and Insights for the International Association of Privacy Professionals (IAPP) – 07.21 Sarah Pearce, Partner, Hunton Andrews Kurth – 20.32

In this episode of the Infosecurity Magazine podcast, we take a look back at 2023 and explore some of the most significant cybersecurity trends and topics that have shaped the industry this year. We discuss the growing cyber skills gap, the increasing use of AI in both offensive and defensive cybersecurity operations, and the emerging threats posed by AI-powered tools like ChatGPT. We also feature an interview with Brad LePorte of LionFish Tech Advisors, who shares his insights on the future of cybersecurity in 2024. Listen to hear more about: The widening cyber skills gap and its impact on organizational security The growing use of AI in both offensive and defensive cybersecurity operations Insights from Brad LePorte of LionFish on cybersecurity trends for 2024

In November the UK hosted its first ever AI Safety Summit, less than one year after OpenAI released ChatGPT, its revolutionary generative AI-powered chatbot. In this episode, we delve into the rapidly evolving world of artificial intelligence, exploring the implications of recent developments and announcements from governments, tech companies, and industry bodies around the globe. Join us as we dissect the key takeaways from the AI Safety Summit and examine how these advancements impact the cybersecurity landscape. Whether you're a cybersecurity professional or simply curious about the future of AI, this episode provides valuable insights into the intersection of AI and cybersecurity. You’ll hear from: - Matt Roach, Head of i-4 Cyber Security Leaders Community, KPMG UK (11.45) - Rob van der Veer, Senior Director, Software Improvement Group (SIG) & Founder, OWASP AI Exchange (30.01)

Phishing has been a prominent topic in cyber for many years, but attackers have become more sophisticated in their approaches, assisted by generative AI and deepfake technologies. During this episode to mark the 20th anniversary of Cybersecurity Awareness Month, the Infosecurity Magazine team discuss new trends relating to this vector, and how awareness training and guidance needs to be reviewed and updated in response. Two experts from the field of academia share their thoughts and new research in this constantly evolving area of cybersecurity. Guests include: • Constantinaos Patsakis, Associate Professor at the Department of Informatics, University of Piraeus (04.28) • Jason Nurse, Director of Science & Research at CybSafe and Reader, University of Kent (28.27)

This episode of the Infosecurity Magazine podcast focuses on the cybersecurity skills gap and how to bridge the divide. We discuss the challenges of recruiting and retaining cybersecurity talent, as well as the innovative solutions that are being developed to address the problem. We also speak to MK Palmore, Vice President of Cyversity, about his work to increase diversity in the cybersecurity workforce and why diversity of thought is vital to the cybersecurity landscape.

Despite a general slowdown of ransomware attacks in in 2022 we are now experiencing a resurgence of ransomware activities. In this episode, the Infosecurity Magazine team discuss some of the research recently published by threat analysts in the ransomware space and what it is demonstrating about how threat actors are evolving their approaches in 2023. This includes interviews with two cybersecurity experts who have uncovered critical new insights into the evolution of ransomware. Guests include: Jacqueline Burns Koven, Head of Cyber Threat Intelligence at Chainalysis, explains why ransomware is on course for one of its biggest years to date (07.15) Dr Karen Nershi, Postdoctoral Fellow, Stanford Internet Observatory, discusses increasing political motivations for this threat vector (22.45) Tune in now to understand the latest ransomware trends and tactics.

Join the Infosecurity Magazine team and guests as they plunge into the heart of a devastating cyber-attack that has impacted the likes of BBC, PwC, and Schneider Electric. In this episode, we delve deep into the world of supply chain attacks, and where the notorious Clop ransomware group capitalizes on a hidden weakness in MOVEit Transfer—a trusted file transfer solution used by thousands of companies. In an interview with Secureworks, one of the first cybersecurity firms to sound the alarm, we examine the cloak-and-dagger tactics, techniques, and procedures (TTPs) employed by the audacious Clop. Our expert guests unravel the secrets behind the far-reaching impact of this hack, while offering invaluable insights into the crucial steps cybersecurity practitioners must take in the face of such a high-stakes incident. Tune in now to stay one step ahead in the battle against the relentless forces of cybercrime. Guests include: • Rafe Pilling, Director of Threat Research at Secureworks Counter Threat Unit • William Thomas, CTI Researcher at Equinix Threat Analysis Center (ETAC) & co-founder of Curated Intelligence • Paul Watts, Distinguished Analyst at the Information Security Forum This Podcast is sponsored by Mandiant’s mWISE Conference, click here to register.

Infosecurity Europe is Europe's leading cybersecurity event, and this year's show is no exception. In this podcast episode hear about some of the key conference sessions, activities and must-see attractions at the 2023 event. The Infosecurity Magazine editorial team also highlight some of the biggest cybersecurity themes at discussion topics that will be important for information security professionals to educate themselves on and will hear about at Infosecurity Europe. Finally, Brian Honan, CEO of BH Consulting and former Infosecurity Europe Hall of Fame winner, gives his advice on how to get the most out the event and some of the sessions he’s most looking forward to attending.

Since the launch of ChatGPT in November 2022 the cybersecurity world has been abuzz with talk of AI and its usefulness as well as the threat it poses. In this episode of the podcast the team discuss how cybersecurity vendors are leveraging AI, what threats AI has brought to the technology landscape and what to be cautious of when using large language models. Beth Maundrill also sits down with Sergey Shykevich, Threat Intelligence Group Manager at Check Point Research, to dispel some of the myths around threat actors' use of AI and what Check Point has observed over the past six months. Shykevich also provides his thoughts on the future of AI in cybersecurity.

The RSA conference in San Francisco is back this month and the editorial team will be crossing the pond to join the cybersecurity community at the largest North America cyber event. During this episode of the podcast, Beth Maundrill and James Coker discuss what they think will be the biggest talking points at RSA 2023 and some of the sessions that have caught their eye. Expect to hear a lot about government initiatives including President Biden’s National Cybersecurity Strategy and how Federal agencies are working with international partners to bolster cyber defenses. AI will of course be a huge topic at all events this year following the emergence of ChatGPT. The team also speaks to Pam Nigro, chair, board of directors at ISACA and VP of security at Medecision, about what she thinks about some of the emerging conference themes as well as tips on how to make the most out of the event in-person.

February 24, 2023 will mark 12 months since the Russian invasion of Ukraine began but the cyber war began months, if not years, before the kinetic attack began. In this episode of the podcast the team discuss how the war has had an impact on the cyber threat landscape, how Russian-affiliated actors have behaved over the last 12 months and the tactics that have appeared. Kevin Poireault will discuss the findings from a recent report from Google’s Threat Analysis Group which found that Russian cyber aggression dates all the way back to 2019. Kevin will also dive into research he’s been doing surrounding the explosion in wiper malware attacks in 2022. Finally, Beth Maundrill speaks to Recorded Future’s Alex Leslie about a recent report that examines the relationship between cybercriminals and the Russian state.

January marks Data Privacy Week, a global campaign to spread awareness about online privacy, and the team dives into current state of data privacy and related regulation, including, of course, GDPR. In addition, Valerie Lyons, COO at BH Consulting shares her expertise on data privacy and speaks to James Coker the real-world impact of data privacy legislation, how she expects the development of AI, including ChatGPT, to affect our online privacy over the coming years and why organizations need to move privacy from risk into corporate-social responsibility. You can listen and subscribe to the Infosecurity Magazine’s Podcast on Spotify and Apply Music.

Jen Ellis is a well-known member of the cybersecurity community both in the US and the UK. She spent over a decade employed at the cybersecurity company Rapid7 and is now an independent cybersecurity advocate who is working to improve public safety in cyber by collaborating and advising policymakers and government bodies. During this discussion Beth and Jen speak about how the cybersecurity community can have an impact on cybersecurity related regulation and legislation, both in the UK and abroad. As well as how cybersecurity professionals can make sense of all the data that it published relating to the cybersecurity threat landscape and how they can practically analyze the information. You’ll hear about Jen’s “West Wing” experience as she started her journey in towards influencing cybersecurity policy on both sides of the pond and much more. You can listen and subscribe to Infosecurity Magazine’s Podcast on Spotify and Apple Music.

In this month's episode of the IntoSecurity podcast the team review the year that was 2022 and highlight some of the top trends in cybersecurity and how to prepare for the next 12 months. Hear from Aaron Webb Senior Product Marketing Manager, Security at Jamf, who gives his views on the threat landscape and what businesses can do to prepare for 2023. Later James Coker speaks to Larry Whiteside Jr, a CISO and co-founder of Cyversity, about the most interesting developments he’s observed in cybersecurity this year and what elements of the cybersecurity skills gap have evolved over the past 12 months. You can listen and subscribe to the IntoSecurity Podcast on Spotify and Apply Music. Should you listen to our podcast your information will be shared with the sponsor indicated above. See our privacy policy for more information.

As we approach a crucial season for the retail industry, with the holiday season upon us and the famous (or infamous) Black Friday and Cyber Monday shopping days around the corner, consumers are littered with deals and offers. Sadly, as previous years have shown, this provides huge opportunities for cyber-criminals and fraudsters to strike, such as posing as well-known brands with fake offers. During this podcast we’ll hear from CISA’s Deputy Mission Coordinator for Threat Hunting, Jillian Rucker, and Neira Jones, an Independent Advisor & International Speaker, with huge expertise in payment and financial services security. The team also analyze recent news and figures relating to scams and cybercrime relating to shopping.

In this episode, Beth Maundrill is joined by Dr. Jason Nurse, Associate Professor in Cyber Security at the University of Kent, and a Visiting Academic at the University of Oxford. Join the conversation as they discuss routes into cybersecurity academia, practical advice on corporate communications following a cyber-incident and Jason’s research with RUSI on the state of cyber insurance market today. Resources discussed: A framework for effective corporate communication after cyber security incidents Cyber insurance and the cyber security challenge

Into Security Podcast Episode 40, Brought to You by Tufin by Infosecurity Magazine Podcast

Teacher, entrepreneur and woman in tech, Jan Carrol talks to us about her journey into cybersecurity, her view of the cyber-security skills gap and how she took the leap of faith to set up her own company, the Fortify Institute. Jan’s work includes rolling out initiatives to up-skill jobseekers, delivering diplomas in cybersecurity and is passionate about getting more women back into the workplace after they have taken a break. As someone who is not able to say no, Jan is involved in a number of community groups including Cyber Women Ireland which aims to increase the participation of women in cyber and focus on how to maintain retention. She is also involved in the National Cyber Taskforce in Ireland that is working on creating resources for frontline workers to help in cases of technology-facilitated domestic abuse (also known as stalker-ware).