Active Directory, Cloud Security, Bug bounties, Configuration management

SWN #4

January 17, 2020

 

 

Highlights from the Security Weekly shows this week, including dealing with personalities and compliance, Windows 10 exploits, alert fatigue in your SoC, security for startups, Windows 10 exploits, Tik Tok backdoors, lottery hacke, 5G (in)security and more!

Visit https://www.securityweekly.com/swn for all the latest episodes!

Full Episode Show Notes

To learn more about our sponsors visit: The Security Weekly Sponsor’s Page

Win 10 exploit, Tik Tok, Lottery Hacker

Show Summaries from this week
  • On Security and Compliance Weekly, Matt, Scott Lyons, and Josh Marpet talked with Ben Rothke. Ben manages information security at Tapad. this show was focused on all the different personalities you run into when you are doing compliance and audit engagements. From my perspective those include angry people with guns and tasers but maybe it was just me.
  • On Enterprise Security Weekly, Paul, John Strang and Matt talked with Markk Orland of Bionic Cyber. The discussion focused on rethinking security operations in the enterprise. Specifically, defenders really struggle with bias, alert fatiugue, turnover, etc. which results in serious problems. Does good security really just mean creating a monitoring team and investing in products? We see this problem over and over so maybe it’s time to rethink some of these approaches.
  • Also on Enterprise Security Weekly, a second interview with Ward Cobleigh from VIAVI Solutions focused on VISA security alerts. They talked about the need for ongoing network monitoring and how to react quickly when there are indicators of compromise. I really like the idea that we should focus not just on the fact that an alert happened but how we can start to identify the scope of the breach.
  • On Business Security Weekly, Matt, Jason and Paul interviewed Al Ghous from Service Max. The conversation focused on the issues of startup security. Startups are often being run on a small budget with even more limitations on resources that can be dedicated to security hygiene. This creates an issue for the startup as Enterprises may not want to do business with non compliant small firms. Al talks about a framework to empower startups with reasonable security controls and how that can be implemented in the limited budget of startups. That site is security4startups.com.
  • On Security Weekly News, Jason’s expert commentary focused on 5G security and the issues surrounding a sort of “rolling” standard for all this since not everyone will be on board on day 1 with any new standard.
  • on Paul’s Security Weekly, Paul, Larry, Lee, Jeff, and Tyler had an tech segent with Ryan Speers and Jeff Spielberg from River Loop Security. This segment was about “shifting security left.” This is the data from 10 years finding that it is more expensive to respond to a single vulnerability disclosuer that it is to do an end to end embedded secure design process. Basically, they are looking at how you can start identifying security issues in the development chain (particularly in regards to IoT) since the patching time cycle is so long for firmware. They also began airing the hacker culture roundtable from the xmas show with all the hosts discussing this (and special guests). Definitely worth watching that pre recorded from the now legendary xmas show if you missed it live last year.
Security News Summary

Hosts

Doug White

Doug White – Professor

Guests

Announcements

  • Our next webcast is February 13th with Sri Sundaralingam, Vice President, Product and Solutions Marketing at ExtraHop where we will discuss Cloud Native Network Detection and Response! Register for our upcoming webcasts by visiting securityweekly.com, selecting the webcast drop down from the top menu bar and clicking registration.

Sponsored By

sponsor
Visit https://securityweekly.com/viavi for more information!

This week, Twitter cracks down on 5G, Tycoon Ransomware, Citizen App, CallStranger, and REvil! Matt Allen from VIAVI Solutions joins us for Expert Commentary to talk about Leveraging enriched flow insights to accelerate response and remediation!

To learn more about VIAVI Solution, visit: https://securityweekly.com/viaviVisit https://www.securityweekly.com/swn for all the latest episodes!
Full Episode Show Notes

Tycoon Ransomware, CallStranger, & Matt Allen

Hosts

Doug White

Doug White – Professor

Guests

Matt Allen

Matt Allen – Senior Solutions Engineer

Show news, Facebook and the FBI try to catch a child predator, REvil, State Sponsored hacking, Darpa bug bounties, and the F Word!Visit https://www.securityweekly.com/swn for all the latest episodes!
Full Episode Show Notes

Show News, Bug Bounties, & REvil – Wrap Up

Hosts

Doug White

Doug White – Professor

Sponsored By

sponsor
Visit https://securityweekly.com/coresecurity for more information!

This week, Cute robot dogs available for sale, Tmobile was down all day, lightbulbs can be bugged, DARPA bug bounties, Ebay is going to get ya, and Bob Erdman from Core Security talks about Ransomware!

To learn more about Core Security, visit: https://securityweekly.com/coresecurityVisit https://www.securityweekly.com/swn for all the latest episodes!
Full Episode Show Notes

T-Mobile Outage, DARPA Bug Bounties, & Bob Erdman

https://www.coresecurity.com/resources/videos/combating-ransomware-strategies-to-prevent-and-detect-attacks

https://www.coresecurity.com/blog/cryptoviral-extortion-enduring-problem-ransomware

https://www.coresecurity.com/blog/diversionary-tactics-use-ransomware-misdirection

Hosts

Doug White

Doug White – Professor

Guests

Bob Erdman

Bob Erdman – Sr. Manager, Product Management

Show News, Ebay thugs, Ripple 20, T-Mobile, Zoom, and the call may be coming from inside the house! All this and more on the Security Weekly News Wrap Up!Visit https://www.securityweekly.com/swn for all the latest episodes!
Full Episode Show Notes

Ripple 20, Akamai DDoS, & CallStranger – Wrap Up

Hosts

Doug White

Doug White – Professor

This week, TikTok bans, OZ increases Cyber budgets, The US Senate wants the justice department to read your mail, the Top Ten Bug Bounties, and BlueLeaks! Jason Wood returns for Expert Commentary on how the REvil Ransomware Gang Adds Auction Feature for Stolen Data!Visit https://www.securityweekly.com/swn for all the latest episodes!
Full Episode Show Notes

TikTok Bans, Top 10 Bug Bounties, & BlueLeaks

Hosts

Doug White

Doug White – Professor

Jason Wood

Jason Wood – Founder; Primary Consultant

This week, Dr. Doug wraps up the hot topics across all the shows for this week, talking about Bad laws, bad hackers, India bans 59 Chinese Apps including TikTok, Lucifer botnet threatens Windows Systems, Schuchman sentenced to 13 months for botnet development, and more!Visit https://www.securityweekly.com/swn for all the latest episodes!
Full Episode Show Notes

Lucifer Botnet, Netgear Soho Vulns, & Failed Facial Recognition – Wrap Up

Hosts

Doug White

Doug White – Professor

This week, TikTok bans part 2, Try2Cry, Lazarus rises from the dead, Chinese Data blocking, and the Bubonic Plague! Jason Wood returns for Expert Commentary on how a flashy Nigerian Instagram star was extradited to the U.S. to face BEC charges!Visit https://www.securityweekly.com/swn for all the latest episodes!
Full Episode Show Notes

Try2Cry, TikTok Bans Pt. 2, & Facebook Under Fire

Hosts

Doug White

Doug White – Professor

Jason Wood

Jason Wood – Founder; Primary Consultant

Look, this week, it’s all about the RCE. Seriously, there were so many RCE stories, wow. Oh and a creepy guy story. All this and more on the Security Weekly News Wrap Up!Visit https://www.securityweekly.com/swn for all the latest episodes!
Full Episode Show Notes

F5-BIGIP RCE, Zoom 0-Day, & Apache Guacamole RCE – Wrap Up

Hosts

Doug White

Doug White – Professor

This week, Even more TikTok wars, MGM Grand data for sale, Karens, SAP Vulnerability, Mirai Returns with 9 new exploits, and the Secret Service! Jason Wood joins us for Expert Commentary on how TrickBot Sample Accidentally Warns Victims They’re Infected!Visit https://www.securityweekly.com/swn for all the latest episodes!
Full Episode Show Notes

SAP NetWeaver Vuln, More TikTok Wars, & TrickBot

Hosts

Doug White

Doug White – Professor

Jason Wood

Jason Wood – Founder; Primary Consultant

prestitial ad