Cloud Security, Attack surface mgmt, Blue Team

BSW #184

August 17, 2020

Sponsored By

sponsor
Visit https://securityweekly.com/ for more information!

Jeff Costlow, Deputy CISO at ExtraHop, will discuss the challenges of detecting and patching Ripple20. Ripple 20 is a series of zero-day vulnerabilities in a widely used low-level TCP/IP software library developed by Treck, Inc. There are two primary attack vectors: Internet Protocol and Domain Name Services. Jeff will discuss ExtraHop’s approach to detecting these devices and provide a quick demo of the solution.

This segment is sponsored by ExtraHop Networks.

Visit https://securityweekly.com/ to learn more about them! Visit https://www.securityweekly.com/bsw for all the latest episodes!

Full Episode Show Notes

Ripple20: Finding Vulnerable Devices & Detecting Attacks

https://www.extrahop.com/company/blog/2020/ripple20-vulnerable-devices-and-attacks/

Hosts

Jason Albuquerque

Jason Albuquerque – CIO & CSO

Matt Alderman

Matt Alderman – CEO

Paul Asadoorian

Paul Asadoorian – Founder & CTO

Guests

Jeff Costlow

Jeff Costlow – Deputy CISO

Announcements

  • Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!

In the Leadership and Communications section, CISOs say new problem solving strategies required, How Remote Work is Reshuffling Your Security Priorities and Investments, Security Jobs With a Future — And Ones on the Way Out and more! Visit https://www.securityweekly.com/bsw for all the latest episodes!

Full Episode Show Notes

New Problem Solving Strategies, New Priorities, & Jobs With a Future

None

Hosts

Jason Albuquerque

Jason Albuquerque – CIO & CSO

Matt Alderman

Matt Alderman – CEO

Paul Asadoorian

Paul Asadoorian – Founder & CTO

Announcements

  • Join the Security Weekly Mailing List for webcast/virtual training announcements and to receive your personal invite to our Discord server by visiting https://securityweekly.com/subscribe and clicking the button to join the list!

  • Security Weekly is ramping up our webcast/technical training schedule for the rest of 2020! In September you can Find out Why Traditional Data Security Can’t Be Zero Trust, and Learn how to reduce the blast radius of your cloud infrastructure. Visit https://securityweekly.com/webcasts to see what we have coming up! Or visit securityweekly.com/ondemand to view our previously recorded webcasts!

prestitial ad