ESW #265 – Johanna Ydergard & Pablo Zurro
Full Audio
View Show IndexSegments
1. How Leveraging Crowdsource Is the Best Way to Bolster Your Security – Johanna Ydergard – ESW #265
The segment will cover a brief overview of the attack surface market - what it is, why it’s necessary to have an additional tool along with DAST, SAST. It will also cover how Detectify’s unique advantage of crowdsourcing is a true differentiator in the EASM market and how the model differs from the big Bug Bounty Platforms. It will detail on how Detectify collaborates with ethical hackers to crowdsource security research from the forefront of the industry, so you can check for 2000+ common vulnerabilities.
Segment Resources:
https://detectify.com/external-attack-surface-management
https://detectify.com/crowdsource/what-is-crowdsource
This segment is sponsored by Detectify.
Visit https://securityweekly.com/detectify to learn more about them!
Announcements
Celebrate St. Patrick’s Day with $200 off early bird pricing on all new registrations for InfoSecWorld 2022! Book now to meet and network with industry peers as you take part in this world-class conference led by the industry’s leading experts, thought leaders, and innovators. Don’t miss out on the best rates of the year! Visit https://securityweekly.com/isw2022 to register now!
Guest
Johanna Ydergård helms product strategy & management, design and community growth at Detectify and is a part of the executive management team.
Hosts
2. Building a Proactive Security Strategy – Pablo Zurro – ESW #265
Learn how a proactive cybersecurity program can be a game changer for an organization's success through continuously assessing risk and evolving to stay ahead of threats. Join us as we discuss impactful ways to stay one step ahead with Pablo Zurro, Product Manager at Core Security, by HelpSystems.
Segment Resources: [Guide] Taking Back Control: A Proactive Approach to Advance Your Security Maturity - https://static.helpsystems.com/core-security/pdfs/guides/cs-advancing-your-security-maturity-gd.pdf
[Video] Core Impact Pen Testing Software Overview - https://www.coresecurity.com/resources/videos/core-impact-overview
https://static.helpsystems.com/hs/pdfs/2022/datasheet/hs-security-maturity-matrix-ds.pdf
This segment is sponsored by Core Security, A Help Systems Company.
Visit https://securityweekly.com/coresecurity to learn more about them!
Announcements
Don't miss any of your favorite Security Weekly content! Visit https://securityweekly.com/subscribe to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!
Guest
Pablo Zurro leads product management for Core Security’s cyber threat prevention solutions. He has a passion for creating great products, translating customer needs, and turning them into new features. With more than 10 years of experience in the software industry Pablo aims to help Build a Better IT by making our products the best fit for user’s needs.
Hosts
3. PeaceNoToWar, NortonLifeLock Pending UK Inquiry, RSA Con, & Space Force Insignia – ESW #265
This week in the Enterprise News: Quincy man rescues coworker from Ukraine, Cloudflare Email Security Tools, New CISA Vulns, RSA Conference Acquired, Massive Rounds, & Incident Reporting Signed into Law, & more!
Announcements
Don't forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.
Hosts
- 1. FUNDING: Cowbell raises $100M to offer organizations continuous cyber insurance
- 2. FUNDING: SG tech startup Silent Eight raises $40m in Series B funding
- 3. FUNDING: SafeBase bags $18M Series A to speed up vendor security auditing process – TechCrunch
- 4. FUNDING: Network discovery and asset inventory leader Rumble announces $15M Series A led by Decibel Partners
- 5. FUNDING: Hackuity Emerges From Stealth With $13 Million in Funding
- 6. FUNDING: OneLayer Emerges From Stealth With $8.2M to Build Security for Private 5G Networks
- 7. ACQUISITION: Veracode Announces Significant Growth Investment from TA AssociatesIn 2017, CA Technologies acquired Veracode for $614M in cash. About a year and a half later, when CA was acquired by Broadcom, Veracode was spun out to Thoma Bravo for $950M in cash. This week, TA Associates announced a deal to become majority owner (with Thoma retaining a minority stake). The deal values Veracode at $2.5B, suggesting a continued, healthy growth in value for the AppSec vendor.
- 8. ACQUISITION: Crosspoint Capital Partners Leads Acquisition of RSA ConferencePE firm Crosspoint Capital along with STG (who acquired RSA along with McAfee, FireEye and other legacy industry behemoths) will break out the RSA Conference as an independent event company. There aren't a lot of large, independent cyber security event companies out there, so it will be interesting to see how long RSAC remains independent, or whether it considers expanding or making acquisitions of its own.
- 9. ACQUISITION: SentinelOne to Acquire Attivo Networks for $616MThis is a Big Deal (puns always intended). Attivo Networks is best known as a deception vendor, which will always hold a special place in my heart for using "Decepticons" within their product naming scheme. Though it looks like the company's AD products were a pivot, the company is still heavily focused on detecting attackers after they get in (lateral movement, in other words). As EDR vendors like SentinelOne evolve into XDR vendors, the focus moves from being a point product to a more holistic platform to "detect bad things" happening internally. As part of that larger platform, this deal makes a lot of sense. Attivo lists 7 products now, so SentinelOne gets a lot for their money here. Money raised was $60M - returning 10x to investors isn't too shabby, especially as the number of vendors looking for large exits increases.
- 10. ACQUISITION: Calian Completes Acquisition of US Managed Service Provider Computex
- 11. ACQUISITION: CyberRes Completes Acquisition of Debricked to Further Expand Software Supply Chain Security
- 12. ACQUISITION: Booz Allen Acquires Government Security Consultancy EverWatch – ChannelE2E
- 13. ACQUISITION: CTSI Announces Acquisition of Enterprise Security Solutions
- 14. ACQUISI-OOPS: NortonLifeLock’s acquisition of Avast on hold pending UK inquiry – SiliconANGLEThe UK has been increasingly flexing its anti-competitive muscles when it comes to big tech, notably giving FAANG companies like Facebook a hard time when it comes to acquisitions. NortonLifeLock, has already been broken into a fraction of the company it once was, so the irony of anti-trust concerns isn't lost on us.
- 15. SUPPLY CHAIN: Alert: peacenotwar module sabotages npm developers in the node-ipc package to protest the invasion of UkraineThis is a wild ride and well worth reading the full article. The node-ipc maintainer decided to use their position to push protest messaging and then took the step of doing actual damage to systems geo-located as Russia or Belarus. Malicious versions of node-ipc have been deprecated and mostly handled. The larger issue is one of trust between package maintainers and the software dependent on these packages. RIAEvangelist, the node-ipc maintainer, is still the active maintainer of 40 other npm packages. Should we continue to use and trust any other packages RIAEvangelist has access to? What happens when they decide to protest the US? What about any other individual maintainer that could do something like this at any time? At a minimum, organizations need two things: the ability to detect when something goes awry with a project and a plan of action when it does. For example, the addition of a module called "peacenotwar", use of base64 encoding, and other shenanigans gave multiple opportunities to spot this particular incident as it unfolded. As for immediate action, I suspect most folks locked on a known good version of node-ipc as they monitored the situation. Long term decisions are tougher: do you migrate off vue.js? What are the chances the replacement you choose won't run into the same issue?
- 16. INTEL: CISA adds 15 vulnerabilities to list of flaws exploited in attacks
- 17. Cloudflare unveils email security tools following acquisition
- 18. Here There Are Monsters
- 19. NEW COMPANY: Command Zero, led by Dov YoranHeaded by Dov Yoran (brother of Amit Yoran, CEO of Tenable), Command Zero is still in stealth, but looks to be assembling most of the crew manning the ThreatGRID ship that was sold to Cisco back in 2014. Aside from Yoran (CEO), this crew so far includes Dean De Beer (CTO), Eric Hulse (Director of Research) and Scott Dunlop (Architect). Other significant hires include Christopher Scott (Senior Director, Technical PM) and Alfred Huger (Co-Founder). Looks like most folks are joining directly from Cisco, so I've got to wonder if Cisco Ventures might be bankrolling the seed round here, or if this is totally removed from ThreatGRID's acquirer.
- 20. LEGISLATION: Biden signs cyber incident reporting bill into law
- 21. SQUIRREL: Quincy man travels into Ukraine to rescue co-worker and family"he eventually traded his wristwatch for a 15-year-old Toyota that was low on oil and needed duct tape to keep the hood in place"
- 22. SQUIRREL: i have discovered the emblems of the various units of the US Space Force (Ben on Twitter)