Stopping 0day Exploits Doesn't Require AI or Superhuman Speed - Rob Allen - ESW #386

Update: 2024-12-06

Description

When focused on cybersecurity through a vulnerability management lens, it's tempting to see the problem as a race between exploit development and patching speed. This is a false narrative, however. While there are hundreds of thousands of vulnerabilities, each requiring unique exploits, the number of post-exploit actions is finite. Small, even.

Although Log4j was seemingly ubiquitous and easy to exploit, we discovered the Log4Shell attack wasn't particularly useful when organizations had strong outbound filters in place.

Today, we'll discuss an often overlooked advantage defenders have: mitigating controls like traffic filtering and application control that can prevent a wide range of attack techniques.

This segment is sponsored by ThreatLocker. Visit https://securityweekly.com/threatlocker to learn more about them!

Show Notes: https://securityweekly.com/esw-386

Comments

Top Podcasts

The Best New Comedy Podcast Right Now – June 2024 The Best News Podcast Right Now – June 2024 The Best New Business Podcast Right Now – June 2024 The Best New Sports Podcast Right Now – June 2024 The Best New True Crime Podcast Right Now – June 2024 The Best New Joe Rogan Experience Podcast Right Now – June 20 The Best New Dan Bongino Show Podcast Right Now – June 20 The Best New Mark Levin Podcast – June 2024

In Channel

AWS does IR, credit card canarytokens, shared responsibility, phishing tests do harm - ESW #387

2024-12-1436:07

Pondering Portable Passwordless Passkeys in 2025 - Rew Islam - ESW #387

2024-12-1335:04

The 2024 Cybersecurity Market Review - Mike Privette - ESW #387

2024-12-1336:20

Cybersecurity from Santa, office surveillance, Apple work/life balance issues, & more - ESW #386

2024-12-0749:35

Stopping 0day Exploits Doesn't Require AI or Superhuman Speed - Rob Allen - ESW #386

2024-12-0632:58

Tackling Barriers on the Road To Cyber Resilience - Theresa Lanowitz - ESW #386

2024-12-0637:13

2023 Funding and Acquisition Summary with Return on Security - Mike Privette - ESW Vault

2024-11-2843:56

AI messes with scammers, autonomous endpoint security, malware targets Excel - ESW #385

2024-11-2350:54

All the biggest cybersecurity news out of Microsoft Ignite 2024 - ESW #385

2024-11-2231:18

Fixing how cybersecurity products are bought and sold - Mariana Padilla - ESW #385

2024-11-2230:24

Funding, Trustwave/Cybereason, NVIDIA Morpheus AI SOC, and the job situation is bad - ESW #384

2024-11-1654:28

The Top-Down Approach in Cybersecurity and Compliance Isn't Working - What's Next? - Justin Beals - ESW #384

2024-11-1530:47

AI and the Autonomous SOC - Separating Hype from Reality - Itai Tevet - ESW #384

2024-11-1530:54

$200M for IoT security, 4 acquisitions, fake job openings, vapes are trash - ESW #383

2024-11-0954:50

The State of DSPM, One of the Hottest New Cybersecurity Markets in Years - Todd Thiemann - ESW #383

2024-11-0833:18

Cybersecurity Budgets: the Journey from Reactive to Proactive - Theresa Lanowitz - ESW #383

2024-11-0832:53

Today's Hybrid Work Era: Integrated Approach & Implementing Identity - ESW #382

2024-11-0530:38

Funding, AI controls your PC, Cyberstarts stops Sunrise, public cyber goes private - ESW #382

2024-11-0401:04:31

What if securing buildings was as easy as your smartphone? - Blaine Frederick - ESW #382

2024-11-0431:27

Era of Bot Battlers & Security Focused Company Culture - ESW #381

2024-10-2632:13

00:00

Stopping 0day Exploits Doesn't Require AI or Superhuman Speed - Rob Allen - ESW #386

#box-pro-ellipsis-173457817857962{-webkit-line-clamp:2;}Stopping 0day Exploits Doesn't Require AI or Superhuman Speed - Rob Allen - ESW #386

Stopping 0day Exploits Doesn't Require AI or Superhuman Speed - Rob Allen - ESW #386

Stopping 0day Exploits Doesn't Require AI or Superhuman Speed - Rob Allen - ESW #386