553 episodes

Follow the Wh1t3 Rabbit
... attention technology and business leaders!

The "Down the Security Rabbithole" podcast is not your ordinary security podcast, primarily because we take a business perspective on the colorful and fast-paced world of information security. Bringing useful commentary on relevant events in the information security community, filtered through a no-nonsense business first approach, this is a podcast that helps you get the sane perspective on hacks, risks, threats and technology that you need to help make decisions in your daily life and in your organization.

Down the Security Rabbithole Podcast Rafal Los (Wh1t3Rabbit)

    • News
    • 4.4 • 14 Ratings

Follow the Wh1t3 Rabbit
... attention technology and business leaders!

The "Down the Security Rabbithole" podcast is not your ordinary security podcast, primarily because we take a business perspective on the colorful and fast-paced world of information security. Bringing useful commentary on relevant events in the information security community, filtered through a no-nonsense business first approach, this is a podcast that helps you get the sane perspective on hacks, risks, threats and technology that you need to help make decisions in your daily life and in your organization.

    DtSR Episode 518 - Go Big or Go Home

    DtSR Episode 518 - Go Big or Go Home

    Prologue
    Solving problems is a challenge not everyone is up for. The industry is littered with people and companies that bring small-time solutions to an industry begging and pleading for actual solutions. Jason Clark of Netskope, and long-time friend, joins James and Rafal to talk about the mindset and approach needed to solve BIG problems that change the game, change the landscape, and change our lives.
    Guest
    Jason Clark LinkedIn: https://www.linkedin.com/in/jasonclarkfl/   

    • 44 min
    DtSR Episode 517 - Two Truths and a Lie

    DtSR Episode 517 - Two Truths and a Lie

    For those of you paying attention - DtSR is officially 11 years old.
    This episode is the first episode of year (season) 12. WOW. Thank you for listening, sharing, commenting, and watching us live!
    Prologue
    We work in a weird industry where marketing has to make ever-more outrageous claims that product and service teams then have to attempt to live up to, but it's a way of life. Now, I'm not strictly speaking blaming product marketing people, but they do have some blame in this insane climate we find ourselves in. On this episode, two good friends - and professional snark'ists - join James and I to talk about where our industry has over-marketed, over-hyped, and simply failed to deliver ...and where it may actually be meeting expectations. It's a fun conversation, and I bet you won't see the ending coming.
    Guests
    Jeff Collins LinkedIn: https://www.linkedin.com/in/jmcollins/  Anton Chuvakin LinkedIn: https://www.linkedin.com/in/chuvakin/  Twitter: https://twitter.com/anton_chuvakin

    • 1 hr 2 min
    DtSR Episode 516 - Breaking Bad on EAS

    DtSR Episode 516 - Breaking Bad on EAS

    Prologue
    Fresh off his presentation at Defcon 2022, Ken Pyle joins Rafal to talk about the Emergency Alert System (EAS) he's been hacking since 2019 and discusses findings, challenges, and the work left to do.
    It's a fascinating conversation that will leave you wondering - how do we fix this clear and present problem, and more importantly...where else should we be looking?
    Guest
    Ken Pyle LinkedIn: https://www.linkedin.com/in/ken-pyle/ LinkedIn Stream (recorded): https://www.linkedin.com/video/event/urn:li:ugcPost:6971199601311694848/ 

    • 47 min
    DtSR Episode 515 - Gadi Evron Talks PostBreach and Disinformation

    DtSR Episode 515 - Gadi Evron Talks PostBreach and Disinformation

    Prologue
    This week's guest is always a great interview. Gadi Evron has been around the industry longer than it's been an officially named discipline. In this episode, he talks about post-breach standards and the apparent but not previously discussed need. He also breaks your brain with disinformation, which we only lightly touch on before realizing we need at least one more podcast to go deeper into the topic.
    Join us, and share this one, it's awesome.
     
    Guest
    Gadi Evron LinkedIn: https://www.linkedin.com/in/gadievron/ 

    • 45 min
    DtSR Episode 514 - Adam Explains Everything

    DtSR Episode 514 - Adam Explains Everything

    Prologue
    We've covered "threat intelligence" on the show a few times now, but the evolving nature of what threat data is, how it's useful, and how it enables defenders of a specific type identify malicious activity keep it interesting. This time around Adam Meyers of CrowdStrike joins Rafal to discuss threat intelligence, threat hunting, and clarifies some of the mis-conceptions and utilities around the topic. A good conversation for those defending their infrastructure and useful data points from someone who is a recognized expert. Adam joins us from his bunker, with all the elements you'd expect from Adam, so it's definitely worth your time to listen closely.
    Check out Fal.Con, where you can catch the cutting-edge on CrowdStrike kit, industry knowledge, and hear some great industry speakers. Rafal will be there speaking on the topic of operationalizing and making the SOC more effective and efficient at small scale, check it out (link below).
    Guest
    Adam Meyers LinkedIn: https://www.linkedin.com/in/adam-meyers-7a58481/  CrowdStrike: https://www.crowdstrike.com Fal.Con: https://www.crowdstrike.com/events/fal-con/ 

    • 41 min
    DtSR Episode 513 - CSO Perspective on Security Fundamentals

    DtSR Episode 513 - CSO Perspective on Security Fundamentals

    Prologue
    "Just do the basics!"
    "Remember the security fundamentals."
    ...sick of hearing those catch phrases without anything to actually get it DONE? Yeah, us too. This week we're joined by John Scimone of Dell Technologies to talk about his take on fundamentals both security and IT. His approach is not unique, per se, but it's one that works and it's repeatable. More importantly, he's willing to share his expertise and what he's done to be successful in raising the bar to his level of "good enough" -- so unless you've gotten where YOU want to be in those security fundamentals, it's time to listen to John's podcast and take notes. Take lots of notes.
    By the way, if you want the video on LinkedIn Live where you can post questions too, click here: https://www.linkedin.com/video/event/urn:li:ugcPost:6953043382164209664/
    Guest
    John Scimone - President, Chief Security Officer at Dell Technologies LinkedIn: https://www.linkedin.com/in/john-scimone-0b2041a1/

    • 47 min

Customer Reviews

4.4 out of 5
14 Ratings

14 Ratings

SteveHeap ,

DTSR - Don’t Listen to the Podcast!!

If you want to remain an ignoramus don’t listen to the podcast.

As a relative N00b to the world of applied information security I needed to get up to speed fast. I had started a Masters degree in InfoSec. But the topic, as I quickly discovered, is both far reaching and fast moving. Although I was reading papers and learning as much as I could I was missing the real world application.
The DTSR podcast gave me the insight into conversations above the level of my current role and rounds out my learning.I find the perspectives, content and ideas relevant and informative to my day to day work.
Well worth listening to. Thank you!

You Might Also Like

Johannes B. Ullrich
Graham Cluley & Carole Theriault
CyberWire, Inc.
Cybereason
CyberWire Inc.
Michael Bazzell