The CyberHub Podcast
Practitioner Brief 01-18-21

Practitioner Brief 01-18-21

January 18, 2021

Today's Headlines:

MLK Day

Rob Joyce Appointed Director of Cybersecurity at NSA

NSA Publishes Guidance for Enterprises on Adoption of Encrypted DNS

Microsoft Implements Windows Zerologon Flaw ‘Enforcement Mode’

 

https://www.whistic.com/solarwinds

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub 

Whistic: www.whistic.com/cyberhub

 

****

James Azar Host of CyberHub Podcast

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast

 

The Hub of the Infosec Community. Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

Tech Corner with Juan Rodriguez Founder & CTO at Whistic

Tech Corner with Juan Rodriguez Founder & CTO at Whistic

January 15, 2021

Juan Rodriguez – Founder & CTO at Whistic

Topic: Software Supply Chain    

In the aftermath of the SolarWinds breach, the software supply chain is very important and requires a new approach, Founder & CTO Juan Rodriguez of Whistic joined me on the show to discuss his background from engineer to architect to entrepreneur.

 

Juan shares many valuable nuggets to help security practitioners in their daily jobs and how to really evaluate the SolarWinds incident to enhance your supply chain.   

 

Guest Bio:

Juan joined numerous startups in the Los Angeles area, specifically focusing on the early stages of what we now know as SEO. During that time, Juan established himself as a seasoned engineer and learned the ins-and-outs of running a company.

Juan went on to co-found a peer-to-peer recreational vehicles rental platform. The venture proved to be exactly what Juan had been looking for; an opportunity to grow a business from the ground up. The experience permitted him to personally dive into sales, marketing, customer service and most importantly analyzing the technology he had developed. After having dedicated a year to this work, he felt that the enterprise space was a better fit for his talents, so he moved on to start Whistic.

 

Tech Corner is supported by these great partners please make sure to check them out:

Whistic: www.whistic.com/solarwinds

 

James Azar Host of CyberHub Podcast

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast

CISO Talk Podcast: https://linktr.ee/CISOtalk

Practitioner Brief 01-14-21

Practitioner Brief 01-14-21

January 14, 2021

Today's Headlines:

CISA: Hackers bypassed MFA to access cloud service accounts

High-Severity Cisco Flaw Found in CMX Software For Retailers

Iranian cyberspies behind major Christmas SMS spear-phishing campaign

Sophisticated Hacks Against Android, Windows Reveal Zero-Day Trove

https://www.whistic.com/solarwinds

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub 

Whistic: www.whistic.com/cyberhub

 

****

James Azar Host of CyberHub Podcast

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast

 

The Hub of the Infosec Community. Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

Practitioner Brief 01-13-2021

Practitioner Brief 01-13-2021

January 13, 2021

Today's Headlines:

BREAKING: SolarWinds data is on sale!  

Patch Tuesday Recap from Microsoft and Adobe

Mimecast discloses certificate incident possibility tied to SolarWinds

https://www.whistic.com/solarwinds

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub 

Whistic: www.whistic.com/cyberhub

****

James Azar Host of CyberHub Podcast

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

Practitioner Brief 01-12-2021

Practitioner Brief 01-12-2021

January 12, 2021

Today's Headlines:

'Sunspot' Malware Used to Insert Backdoor into SolarWinds Product in Supply Chain Attack

Ubiquiti tells customers to change passwords after security breach

NSA Publishes Cybersecurity Year in Review Report

Millions of Social Profiles Leaked by Chinese Data-Scrapers

 

https://www.whistic.com/solarwinds

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub 

Whistic: www.whistic.com/cyberhub

 

****

James Azar Host of CyberHub Podcast

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

Practitioner Brief 1-11-21

Practitioner Brief 1-11-21

January 11, 2021

Today's Headlines:

CISA update on SolarWinds

US Dept of State approves New Cyberspace Security Bureau

Ransomware gangs target top execs in effort to get paid

Free Speech piece

https://www.whistic.com/solarwinds

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub 

Whistic: www.whistic.com/cyberhub

 

****

James Azar Host of CyberHub Podcast

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast

 

The Hub of the Infosec Community. Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

Tech Corner with Roger Grimes Data Driven Defense Evangelist at KnowBe4 - Hacking MFA

Tech Corner with Roger Grimes Data Driven Defense Evangelist at KnowBe4 - Hacking MFA

January 8, 2021

Topic: Hacking MFA   

In the first episode of Tech Corner for 2021 The legendary Roger Grimes joins host James Azar to discuss the truth behind MFA and how secure it really is. Roger shares best use cases, types of MFA to avoid, Fido2 and much more…

Guest Bio:

Roger A. Grimes, Data-Driven Defense Evangelist for KnowBe4, Inc., is a 33-year computer security consultant, instructor, holder of dozens of computer certifications, and author of 12 books and over 1,000 magazine articles on computer security. He has spoken at many of the world’s biggest computer security conferences, been in Newsweek™ magazine, appeared on television, been interviewed for NPR’s All Things Considered™, the Wall Street Journal, and been a guest on dozens of radio shows and podcasts. He has worked at some of the world’s largest computer security companies, including Foundstone, McAfee, and Microsoft. He has consulted for hundreds of companies, from the largest to the smallest, around the world. He specializes in host and network security, quantum security, identity management, anti-malware, hackers, honeypots, Public Key Infrastructure, cloud security, cryptography, policy, and technical writing. His certifications have included CPA, CISSP, CISA, CISM, CEH, MSCE: Security, Security+, and yada-yada others, and he has been an instructor for many of them. His writings and presentations are often known for their real-world, contrarian views. He was the weekly security columnist for InfoWorld and CSO magazines between 2005 - 2019.

 

Roger A. Grimes, CPA, CISSP, CEH, MCSE, CISA, CISM, CNE, yada, yada, is the author of 12 books and over 1000 national magazine articles on computer security, specializing in host security and preventing hacker and malware attacks. Roger is a frequent speaker at national computer security conferences, and was the weekly security columnist at InfoWorld and CSO magazines between 2005 - 2019. He has worked at some of the world’s largest computer security companies, including, Foundstone, McAfee, and Microsoft. Roger is frequently interviewed and quoted in the media including Newsweek, CNN, NPR, and WSJ. His presentations are fast-paced and filled with useful facts and recommendations.

 

Tech Corner is supported by these great partners please make sure to check them out:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub 

 

James Azar Host of CyberHub Podcast

James on Twitter: https://twitter.com/james_azar1

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast

CISO Talk Podcast: https://linktr.ee/CISOtalk

Practitioner Brief 01-07-21

Practitioner Brief 01-07-21

January 7, 2021

Today's Headlines:

Vulnerabilities in Fortinet WAF Can Expose Corporate Networks to Attacks

DOJ says hackers accessed its Microsoft O365 email server

JetBrains denies being involved in SolarWinds hack

https://www.whistic.com/solarwinds

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub 

Whistic: www.whistic.com/cyberhub

 

****

James Azar Host of CyberHub Podcast

James on Twitter: https://twitter.com/james_azar1

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast

Practitioner Brief 01-06-21

Practitioner Brief 01-06-21

January 6, 2021

Today's Headlines:

NSA shares guidance, tools to mitigate weak encryption protocols

Hackers start exploiting the new backdoor in Zyxel devices G

oogle Warns of Critical Android Remote Code Execution Bug

US govt says Russian state hackers likely behind SolarWinds hack

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub 

Whistic: www.whistic.com/cyberhub

 

****

James Azar Host of CyberHub Podcast

James on Twitter: https://twitter.com/james_azar1

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter

******

Website: https://www.cyberhubpodcast.com

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw

Facebook: https://www.facebook.com/CyberHubpodcast/

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast

 

Practitioner Brief 01-05-21

Practitioner Brief 01-05-21

January 5, 2021

Today's Headlines:

SolarWinds hack poses risk to cloud services’ API keys and IAM identities

Citrix adds NetScaler ADC setting to block recent DDoS attacks

Ransomware Attacks Linked to Chinese Cyber spies

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub

Whistic: www.whistic.com/cyberhub

****

James Azar Host of CyberHub Podcast

James on Twitter: https://twitter.com/james_azar1

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter

******

Website: https://www.cyberhubpodcast.com

 

 

 

 

 

Listen here: https://linktr.ee/cyberhubpodcast

Play this podcast on Podbean App