PSW #636 | SC Media
Forensics, Email security, Deception

PSW #636

January 24, 2020

In the Security News, Microsoft Security Shocker As 250 Million Customer Records Exposed Online, the NSA Offers Guidance on Mitigating Cloud Flaws, Multiple Vulnerabilities Found in AMD ATI Radeon Graphics Cards, Brazil prosecutes Glenn Greenwald in attack on press freedom, and Cybersecurity Lessons Learned from ‘The Rise of Skywalker’!

Visit https://www.securityweekly.com/psw for all the latest episodes!

Full Episode Show Notes

To learn more about our sponsors visit: The Security Weekly Sponsor’s Page

Tomatoes, Jeff Bezo, Vuln. In AMD ATI Radeon, ‘The Rise of Skywalker’

Paul’s Stories

  1. Cybersecurity Lessons Learned from ‘The Rise of Skywalker’
  2. Brazil prosecutes Glenn Greenwald in attack on press freedom
  3. How to prep for Windows 7, Server 2008 end of life
  4. Multiple Vulnerabilities Found in AMD ATI Radeon Graphics Cards | SecurityWeek.Com
  5. NSA Offers Guidance on Mitigating Cloud Flaws
  6. Report: Saudi Crown Prince Personally Sent Malware to Jeff Bezos, Possibly to Steal Those Dick Pics
  7. Here Is the Technical Report Suggesting Saudi Arabias Prince Hacked Jeff Bezos Phone
  8. Microsoft Security Shocker As 250 Million Customer Records Exposed Online
  9. Sonos Makes It Clear: You No Longer Own The Things You Buy
  10. UN experts: Israeli spyware likely used in alleged Saudi hack of Bezos phone
  11. Quay Container Registry Quay

Jeff’s Stories

  1. Amazon Engineer Leaked Private Encryption Keys. Outside Analysts Discovered Them in Minutes

Doug’s Stories

Hosts

Doug White

Doug White – Professor

Paul Asadoorian

Paul Asadoorian – Founder & CTO

Tyler Robinson

Tyler Robinson – Managing Director of Network Operations

Guests

Announcements

  • Our next webcast is February 13th with Sri Sundaralingam, Vice President, Product and Solutions Marketing at ExtraHop where we will discuss Cloud Native Network Detection and Response! Register for our upcoming webcasts by visiting securityweekly.com, selecting the webcast drop down from the top menu bar and clicking registration.
  • Join us at InfoSecWorld 2020 – March 30 – April 1, 2020 at the Disney Contemporary Resort! Security Weekly listeners save 15% off the InfoSec World Main Conference or World Pass! Visit securityweekly.com/ISW2020 and click the register button to register with our discount code!
  • Attend RSA Conference 2020, February 24-28 and join thousands of security professionals, forward-thinking innovators and solution providers for five days of actionable learning, inspiring conversation and breakthrough ideas. Register before January 24 and save $900 on a Full Conference Pass. Save an extra $150 by going to securityweekly.com/rsac2020 and using our code to register!

Paul, Doug and Tyler interview Mike Godwin about the creation of the EFF, why it was created and how he became involved, some of the first cases taken on by the EFF, Godwin’s Law, the right to repair, freedom of speech, and much more!

Visit https://www.securityweekly.com/psw for all the latest episodes!

Full Episode Show Notes

To learn more about our sponsors visit: The Security Weekly Sponsor’s Page

Electronic Frontier Foundation (EFF), Godwin’s Law, Freedom of Speech

Hosts

Doug White

Doug White – Professor

Paul Asadoorian

Paul Asadoorian – Founder & CTO

Tyler Robinson

Tyler Robinson – Managing Director of Network Operations

Guests

Mike Godwin

Mike Godwin – Distinguished Senior Fellow

Announcements

  • Our next webcast is February 13th with Sri Sundaralingam, Vice President, Product and Solutions Marketing at ExtraHop where we will discuss Cloud Native Network Detection and Response! Register for our upcoming webcasts by visiting securityweekly.com, selecting the webcast drop down from the top menu bar and clicking registration.
  • Join us at InfoSecWorld 2020 – March 30 – April 1, 2020 at the Disney Contemporary Resort! Security Weekly listeners save 15% off the InfoSec World Main Conference or World Pass! Visit securityweekly.com/ISW2020 and click the register button to register with our discount code!
  • Attend RSA Conference 2020, February 24-28 and join thousands of security professionals, forward-thinking innovators and solution providers for five days of actionable learning, inspiring conversation and breakthrough ideas. Register before January 24 and save $900 on a Full Conference Pass. Save an extra $150 by going to securityweekly.com/rsac2020 and using our code to register!

Paul, Doug and Tyler interview Dug Song about how he got his start in Information Security, what prompted him to begin work for dsniff, his transition from engineer to entrepreneur, what he learned from his experiences at Arbor Networks, why he decided to found a company in the authentication space, how to grow a company while maintaining your vision and culture, CISCO’s acquisition of DUO Security, what it’s like to be integrated into such a large company, what makes company’s great, advice for talented tech people who want to become entrepreneurs, Dug’s book recommendation for inspiring entrepreneurs, and much, much more!

Visit https://www.securityweekly.com/psw for all the latest episodes!

Full Episode Show Notes

To learn more about our sponsors visit: The Security Weekly Sponsor’s Page

Dug Song – Engineer to Entrepreneur

Segment Description:

  • Part 1 – Introduction and Background
  1. How did you get your start in information security?
  2. Tell us about some of the software you worked on while still in school at the University of Michigan.
  3. What prompted you to begin work on dsniff?
  • Part 2 – Founder
  1. In 2000 you founded Arbor Networks, was that the point when you began to transition from engineer to entrepreneur?
  2. In the early PC days, some say Apple’s success was driven by the fact that they recruited business leaders (Jobs was known for his ability to talk to people, design things and his vision, not his technical prowess). The competition was largely being driven by hackers and computer nerds. What changed that allows hackers and engineers to move on to create successful tech companies?
  3. What did you learn from the experiences at Arbor Networks? What prompted you to move on to a different company?
  4. Why did you decide to found a company in the authentication space?
  5. When I think of Duo, I think of a company that has an outstanding culture, how do you continue to grow and maintain your vision and culture?
  • Part 3 – The Journey
  1. Cisco’s acquisition of Duo is, in my opinion, one of the greatest acquisitions in security, how did it come about and what was it like to be integrated into such a large company?
  2. What makes companies great? Some say great sales and marketing, others say great tech, but clearly, if you get any of those things wrong you are likely doomed for failure?
  3. What advice do you have for talented tech people that want to become entrepreneurs?
  4. What is your recommendation for an inspiring book for entrepreneurs? (Note: We are HUGE Wu-Tang fans)

Segment Resources:

Hosts

Doug White

Doug White – Professor

Paul Asadoorian

Paul Asadoorian – Founder & CTO

Tyler Robinson

Tyler Robinson – Managing Director of Network Operations

Guests

Dug Song

Dug Song – Co-founder and General Manager, Duo Security at Cisco

Announcements

  • Our next webcast is February 13th with Sri Sundaralingam, Vice President, Product and Solutions Marketing at ExtraHop where we will discuss Cloud Native Network Detection and Response! Register for our upcoming webcasts by visiting securityweekly.com, selecting the webcast drop down from the top menu bar and clicking registration.
  • Join us at InfoSecWorld 2020 – March 30 – April 1, 2020 at the Disney Contemporary Resort! Security Weekly listeners save 15% off the InfoSec World Main Conference or World Pass! Visit securityweekly.com/ISW2020 and click the register button to register with our discount code!
  • Attend RSA Conference 2020, February 24-28 and join thousands of security professionals, forward-thinking innovators and solution providers for five days of actionable learning, inspiring conversation and breakthrough ideas. Register before January 24 and save $900 on a Full Conference Pass. Save an extra $150 by going to securityweekly.com/rsac2020 and using our code to register!
prestitial ad