102 episodes

Daily stories from the world of information security. To delve into any daily story, head to CISOseries.com.

Cyber Security Headlines CISO Series

    • News

Daily stories from the world of information security. To delve into any daily story, head to CISOseries.com.

    September 16, 2021

    September 16, 2021

    Travis CI security vulnerability is bad news for open source
    Ransomware accounts for a quarter of cyber insurance claims
    Microsoft goes passwordless
    Thanks to our episode sponsor, Sonrai

    Sonrai is changing Public Cloud Security by focusing on protecting data from over-privileged human and non-human identities. Sonrai provides a single pane of glass built on an analytic platform that protects organizations by leveraging CSPM, CIEM, and cloud DLP at the confidence level required by your environment. Learn more about Sonrai Cloud Security at www.sonrai.com

    • 6 min
    September 15, 2021

    September 15, 2021

    Apple issues urgent updates to fix new zero-day linked to Pegasus spyware
    Update Google Chrome to patch 2 new zero-day flaws under attack
    New Zloader attacks disable Windows Defender to evade detection
    Thanks to our episode sponsor, Sonrai

    Sonrai is gaelic for data - and that’s what Sonrai Security is all about. Finding, classifying, and locking down sensitive data in AWS, Azure, or Google Cloud. Sonrai can see every identity’s path to every piece of data - continuously. Learn more at sonraisecurity.com.
    For the stories behind the headlines, head to CISOseries.com.
     

    • 7 min
    September 14, 2021

    September 14, 2021

    SSID Stripping is a new take on spoofing
    Industrial control systems hammered by cyber attacks
    Olympus has fallen...to ransomware
    Thanks to our episode sponsor, Sonrai

    Are you a security expert who’s afraid to admit you don’t know what the heck is going on in your cloud? Relax. Public cloud security is overwhelming. Figuring out where to start, and what to do to track and improve your security posture, is the first step. Sonrai tracks everything in your cloud - sensitive data, identities, and platform configuration - and tells you what issues are most important, plus it measures improvement over time. Talk to Sonrai Security to learn more.

    • 6 min
    September 13, 2021

    September 13, 2021

    Windows MSHTML zero-day exploits shared on hacking forums
    REvil ransomware operators targeting new victims
    Yandex pummeled by Meris DDoS botnet
    Thanks to our episode sponsor, Sonrai

    Are you a security expert who’s afraid to admit you don’t know what the heck is going on in your cloud? Relax. Public cloud security is overwhelming. Figuring out where to start, and what to do to track and improve your security posture, is the first step. Sonrai tracks everything in your cloud - sensitive data, identities, and platform configuration - and tells you what issues are most important, plus it measures improvement over time. Talk to Sonrai Security to learn more.
    For the stories behind the headlines, head to CISOseries.com.

    • 8 min
    Week in Review - Sep 6-10, 2021

    Week in Review - Sep 6-10, 2021

    Link to Blog Post
    This week’s Cyber Security Headlines – Week in Review, Sep 6-10, 2021, is hosted by Rich Stroffolino with our guest, Matt Crouse, CISO, Taco Bell
    Thanks to our episode sponsor, Semperis

    One thing we’ve learned from attacks like SolarWinds: Cybercriminals can lurk in your Active Directory environment for weeks or months before dropping malware. How do you root them out? First, you need to uncover security gaps in Active Directory that can lead to a breach. Download Purple Knight, a free security assessment tool from Semperis that scans your environment for pre-attack and post-attack indicators of exposure and compromise. Check it out at Purple-Knight.com.
    All links and the video of this episode can be found on CISO Series.com
     
     

    • 25 min
    September 10, 2021

    September 10, 2021

    US considers limiting CISA director’s term
    ‘Azurescape’ Kubernetes attack allows cross-container cloud compromise
    Hackers leak VPN account passwords from 87,000 FortiGate devices
    Thanks to our episode sponsor, Semperis

    One thing we’ve learned from attacks like SolarWinds: Cybercriminals can lurk in your Active Directory environment for weeks or months before dropping malware. How do you root them out? First, you need to uncover security gaps in Active Directory that can lead to a breach. Download Purple Knight, a free security assessment tool from Semperis that scans your environment for pre-attack and post-attack indicators of exposure and compromise. Check it out at Purple-Knight.com.
    For the stories behind the headlines, head to CISOseries.com

    • 8 min

Top Podcasts In News

Listeners Also Subscribed To