Encryption, Container security, Cloud Security, Firewall

ESW #207

November 18, 2020

In the Enterprise News, the all new AWS Network Firewall, Zero Trust for kubernetes, interactive coding simulations, DNS monitoring, and Twitter appoints a new head of security! The latest acquisitions from Cisco, Acronis, Palo Alto Networks, and Flashpoint, and recent funding announcements from Unbound, Havoc Shield, Menlo Security and Cato networks! Visit https://www.securityweekly.com/esw for all the latest episodes!

Full Episode Show Notes

AlgoSec CloudFlow, AWS Network Firewall, & Sysdig Zero Trust

None

Hosts

Adrian Sanabria

Adrian Sanabria – Senior Research Engineer

Matt Alderman

Matt Alderman – CEO

Paul Asadoorian

Paul Asadoorian – Founder & CTO

Announcements

  • Would you like to have all of your favorite Security Weekly content at your fingertips? Do you want to hear from Sam & Andrea when we have upcoming webcasts & technical trainings? Have a question for one of our illustrious hosts, someone from the Security Weekly team, or wish you could “hang” out with the Security Weekly crew & community? Subscribe on your favorite podcast catcher, sign up for our mailing list, and join our Discord Server to stay in the loop on all things Security Weekly! Visit: https://securityweekly.com/subscribe

  • In our upcoming webcasts & technical trainings, you will learn how to thwart attackers using deception & how to build a risk-based vulnerability management program! Visit https://securityweekly.com/webcasts to see what we have coming up, or visit securityweekly.com/ondemand to view our previously recorded webcasts!

Sponsored By

sponsor
Visit https://securityweekly.com/gigamon for more information!

The recent surge of ransomware attacks has highlighted a shift in tactics employed by threat actors looking to extort organizations. Their methodology has changed from a quick, opportunistic attack to a prolonged, targeted approach. This shift in methodology presents threat groups with the opportunity to encrypt more critical data, but also presents security teams with the opportunity to detect activity before data is encrypted. In this talk we’ll explore how this allows security analysts to use network detection and response capabilities to discover malicious activity between initial compromise and encryption.

This segment is sponsored by Gigamon.

Visit https://securityweekly.com/gigamon to learn more about them! Visit https://www.securityweekly.com/esw for all the latest episodes!

Full Episode Show Notes

How Network Detection Helps Fill The Gaps

https://atr-blog.gigamon.com/2020/03/18/quality-control-keeping-detections-fresh/

https://www.youtube.com/watch?v=LDpQ0Hy54P4&list=PLMnYhIkmPmIdD1ZCAwLn9AP8wYyG24nEk&index=4

https://blog.gigamon.com/2018/09/27/how-threat-hunting-can-evolve-your-detection-capabilities/

Hosts

Adrian Sanabria

Adrian Sanabria – Senior Research Engineer

Matt Alderman

Matt Alderman – CEO

Paul Asadoorian

Paul Asadoorian – Founder & CTO

Guests

Steve Porcello

Steve Porcello – Senior Security Engineer

Announcements

  • Join Amit Bareket, Co-founder & CEO of Perimeter 81 & Paul Asadoorian for a technical deep-dive into the problems inherent in legacy VPN technology. Together they will explore solutions for the modern workforce & how momentum toward perimeter-less architecture is helping redefine the future of cybersecurity. Register Now by visiting https://securityweekly.com/perimeter81

Sponsored By

sponsor
Visit https://securityweekly.com/uptycs for more information!

Osquery has grown in popularity because of its broad applicability in enterprise environments. In this tech segment, Ganesh Pai and Julian Wayte from Uptycs will talk about how organizations are using osquery to solve thorny problems such as fleet visibility, compliance and audit, and threat detection and investigation (including MITRE ATT&CK coverage).

This segment is sponsored by Uptycs.

Visit https://securityweekly.com/uptycs to learn more about them! Visit https://www.securityweekly.com/esw for all the latest episodes!

Full Episode Show Notes

The Future of Osquery

Context-rich detections from Uptycs will keep security analysts sane: https://www.uptycs.com/blog/fast-consolidated-and-context-rich-detections-from-uptycs-will-keep-security-analysts-sane

Website for the osquery project: https://www.osquery.io

MITRE ATT&CK Enterprise framework: https://attack.mitre.org/matrices/enterprise/

Solution page for Uptycs for EDR: https://www.uptycs.com/solutions/endpoint-detection-and-response

Hosts

Adrian Sanabria

Adrian Sanabria – Senior Research Engineer

Matt Alderman

Matt Alderman – CEO

Paul Asadoorian

Paul Asadoorian – Founder & CTO

Guests

Ganesh Pai

Ganesh Pai – Founder and CEO

Julian Wayte

Julian Wayte – Security Solutions Engineer

Announcements

  • Security Weekly, in partnership with CyberRisk Alliance, is excited to present Security Weekly Unlocked on December 10, 2020. This 1 day virtual event wraps up with the 15th anniversary edition of Paul’s Security Weekly live on Youtube! Visit https://securityweekly.com/unlocked to view the agenda and register for free!

prestitial ad