Encryption, Container security, Cloud Security, Email security

PSW #634

January 10, 2020

 

 

Purple teaming reduces the lifespan of vulnerabilities found from pentests by facilitating knowledge transfer between red and blue teams in the remediation phase. PlexTrac provides a single interface through which red teams may report vulnerabilities and blue teams may remediate them. Visit https://www.securityweekly.com/plextrac to claim your free month of PlexTrac. Also, be sure to stop by their booth in the Early Stage Exhibit at RSA next month.

Visit https://www.securityweekly.com/psw for all the latest episodes!

Full Episode Show Notes

To learn more about our sponsors visit: The Security Weekly Sponsor’s Page

Improve Pen Testing Outcomes With Purple Teaming

Additional Notes:

  • Purple Team – We don’t have a full-blown internal pen test team, but hire externally. We run purple teaming exercises and track issues and remediation with PlexTrac.
  • The living report – Pen testers must continuously work with the client to collaborate on the findings and remediation.
  • Pull in vulnerability data from multiple sources – How should you prioritize? How does PlexTrac help?
  • Purple Team Cheat Sheet, Demo videos of new features

Hosts

Jeff Man

Jeff Man – Sr. InfoSec Consultant

Larry Pesce

Larry Pesce – Senior Managing Consultant and Director of Research

Lee Neely

Lee Neely – Senior Cyber Analyst

Paul Asadoorian

Paul Asadoorian – Founder & CTO

Guests

Daniel DeCloss

Daniel DeCloss – President / CEO

Announcements

  • Our next webcast is January 15th with Cecilia Marinier, RSAC Program Director, Innovation & Scholars where we will discuss RSAC Sandbox, RSAC Innovation Sandbox, RSAC Launch Pad, RSAC Security Scholar and their “How to” Seminar for Innovators and Entrepreneurs! Register for our upcoming webcasts by visiting securityweekly.com, selecting the webcast drop down from the top menu bar and clicking registration.
  • Join us at InfoSecWorld 2020 – March 30 – April 1, 2020 at the Disney Contemporary Resort! Security Weekly listeners save 15% off the InfoSec World Main Conference or World Pass! Visit securityweekly.com/ISW2020 and click the register button to register with our discount code!
  • Attend RSA Conference 2020, February 24-28 and join thousands of security professionals, forward-thinking innovators and solution providers for five days of actionable learning, inspiring conversation and breakthrough ideas. Register before January 24 and save $900 on a Full Conference Pass. Save an extra $150 by going to securityweekly.com/rsac2020 and using our code to register!

 

 

In the security news, Car hacking hits the streets, 4 Ring employees fired for spying on customers, MITRE presents ATT&CK for ICS, and Las Vegas suffers cyberattack on the first day of CES!

Visit https://www.securityweekly.com/psw for all the latest episodes!

Full Episode Show Notes

To learn more about our sponsors visit: The Security Weekly Sponsor’s Page

Security News: January 9, 2020

Paul’s Stories

  1. Backdoored Phishing Kits are still popular
  2. Left of boom: Do we actually do this?
  3. InfoSec Handlers Diary Blog
  4. Mailbox Master Keys – Schneier on Security
  5. Microsoft report: around 0.08% of RDP brute-force attacks are successful
  6. Car Hacking Hits the Streets – Dark Reading
  7. Google Security Update Fixes Critical RCE Flaw
  8. That Pulse Secure VPN you’re using to protect your data? Better get it patched or it’s going to be ransomware time
  9. Open Source FirmwareWhy Should We Support It?
  10. What if everyone just said ‘Nah’ to tracking?
  11. The Art of Cloud War for Business-Critical Data
  12. MITRE presents ATT&CK for ICS, a knowledge base for ICS
  13. Getting Serious About Open Source Security
  14. Las Vegas Suffers Cyberattack on First Day of CES
  15. California’s IoT cybersecurity bill: What it gets right and wrong – Help Net Security
  16. Browser zero day: Update your Firefox right now!
  17. North Korean Hackers Continue to Target Cryptocurrency Exchanges | SecurityWeek.Com
  18. 4 Ring Employees Fired For Spying on Customers
  19. Experts warn of ongoing scans for Citrix servers affected by CVE-2019-19781
  20. Tapplock introduces new enterprise fingerprint scanning padlock accessories – Help Net Security
  21. Security Ladders

Larry’s Stories

  1. MITRE Attack framework for ICS. How timely, given the political state of affairs…
  2. Jamming Chamberlain MyQ garage doors

Jeff’s Stories

  1. Travelex crippling hack hints at new combined ransomware/data breach attacks
  2. Credit card breach affects 60 national restaurant chains – here’s what you need to know
  3. Search engine for Japanese sex hotels announces security breach
  4. Would You Hire Someone to Hack Into Your Company? These CEOs Did–and They Think You Should, Too
  5. https://www.texastribune.org/2020/01/07/greg-abbott-warns-texas-seeing-thousands-cyber-attacks-iran/ so the question is, is network recon a cyber attack or not?

Lee’s Stories

  1. CISA Bulletin AA20-006A: Potential for Iranian Cyber Response to U.S. Military Strike in Baghdad Guidance on preventative actions and Iranian threat profile/cyber activity.
  2. You Should Never Print your boarding pass, here’s why Boarding passes contain extra informtion which should be protected.
  3. Half the global 815 Million Smart Speakers put user’s privacy at risk
  4. Shitcoin Wallet Chrome Extension Steals Crypto-Wallet Private Keys and Passwords The extension has been pulled from Chrome store. Remove from browsers where installed. Crypto wallet security only as good as weakest link.
  5. Facebook moves to detect and remove deep-fake videos Intent to find artificially created AV content, questions of false positives remain.
  6. PGP keys, software security, and more threatened by new SHA1 Exploit New “collision” attack reinforcing SHA1 is dead. SHA1 still default in many places, such as GNUPG and GitHub for generating signatures.
  7. Las Vegas hacked: Sin City Hit Attack, suspected ransomware, hits city of Las Vegas. Normally survives about 300,000 attempts/month. Question: how are your recovery/rebuild capabilities and have you tested them (IRL, not tabletop?)

Hosts

Jeff Man

Jeff Man – Sr. InfoSec Consultant

Larry Pesce

Larry Pesce – Senior Managing Consultant and Director of Research

Lee Neely

Lee Neely – Senior Cyber Analyst

Paul Asadoorian

Paul Asadoorian – Founder & CTO

Guests

Announcements

  • Our next webcast is January 15th with Cecilia Marinier, RSAC Program Director, Innovation & Scholars where we will discuss RSAC Sandbox, RSAC Innovation Sandbox, RSAC Launch Pad, RSAC Security Scholar and their “How to” Seminar for Innovators and Entrepreneurs! Register for our upcoming webcasts by visiting securityweekly.com, selecting the webcast drop down from the top menu bar and clicking registration.
  • Join us at InfoSecWorld 2020 – March 30 – April 1, 2020 at the Disney Contemporary Resort! Security Weekly listeners save 15% off the InfoSec World Main Conference or World Pass! Visit securityweekly.com/ISW2020 and click the register button to register with our discount code!
  • Attend RSA Conference 2020, February 24-28 and join thousands of security professionals, forward-thinking innovators and solution providers for five days of actionable learning, inspiring conversation and breakthrough ideas. Register before January 24 and save $900 on a Full Conference Pass. Save an extra $150 by going to securityweekly.com/rsac2020 and using our code to register!

According to Gartner, 70% of businesses are adopting a hybrid cloud and multi-cloud strategy to augment their internal data centers. The challenges of protecting data and using encryption for multiple hybrid, public cloud, and on-premises environments increases complexity, cost, and security risk. As workloads and sensitive data move to the cloud, keeping cryptographic keys, shared secrets and tokens secure is critical to secure public cloud deployments and successful digital transformation.

Visit https://www.securityweekly.com/psw for all the latest episodes!

Full Episode Show Notes

To learn more about our sponsors visit: The Security Weekly Sponsor’s Page

The Keys to Your Kingdom: Protecting Data in Hybrid and Multiple Public Clouds

Segment Resources:

  1. Cloud Encryption Solutions Brief – https://resources.fortanix.com/simplified-hybrid-and-multi-cloud-encryption-solution-brief
  2. PayPal Demonstration Video https://resources.fortanix.com/paypal-google-cloud-external-key-manager
  3. Blog Part 1 – Keeping the Keys to Your Kingdom: Google and Fortanix Collaborate to Deliver “BYOKMS” https://www.fortanix.com/blog/2019/11/keeping-the-keys-to-your-kingdom-google-and-fortanix-partner-to-deliver-byokms/
  4. Blog Part 2 – Keeping the Keys to Your Kingdom: Google and Fortanix Collaborate to Deliver “BYOKMS” https://www.fortanix.com/blog/2019/11/keeping-the-keys-to-your-kingdom-google-and-fortanix-partner-to-deliver-byokms-2/

Hosts

Jeff Man

Jeff Man – Sr. InfoSec Consultant

Larry Pesce

Larry Pesce – Senior Managing Consultant and Director of Research

Lee Neely

Lee Neely – Senior Cyber Analyst

Paul Asadoorian

Paul Asadoorian – Founder & CTO

Guests

Ambuj Kumar

Ambuj Kumar – CEO and co-founder

Announcements

  • Our next webcast is January 15th with Cecilia Marinier, RSAC Program Director, Innovation & Scholars where we will discuss RSAC Sandbox, RSAC Innovation Sandbox, RSAC Launch Pad, RSAC Security Scholar and their “How to” Seminar for Innovators and Entrepreneurs! Register for our upcoming webcasts by visiting securityweekly.com, selecting the webcast drop down from the top menu bar and clicking registration.
  • Join us at InfoSecWorld 2020 – March 30 – April 1, 2020 at the Disney Contemporary Resort! Security Weekly listeners save 15% off the InfoSec World Main Conference or World Pass! Visit securityweekly.com/ISW2020 and click the register button to register with our discount code!
  • Attend RSA Conference 2020, February 24-28 and join thousands of security professionals, forward-thinking innovators and solution providers for five days of actionable learning, inspiring conversation and breakthrough ideas. Register before January 24 and save $900 on a Full Conference Pass. Save an extra $150 by going to securityweekly.com/rsac2020 and using our code to register!
prestitial ad