Careers, Leadership, Malware, Social engineering, Third-party risk

ESW #277 – Chris Cleveland, Matt Mosely, Gianna Whitver, and Joe Payne

This week, in the Enterprise News:

Vanta raises a $110M Series B to automate SOC 2, ISO, PCI and other compliance efforts

Immuta raises a $100M Series E for secure data access (an everything-old-is-new-again market that’s exploding)

Perimeter 81 raises $100M Series C and becomes a unicorn - You get a VPN! I get a VPN! Everyone gets a VPN!

Over a dozen other vendors raise funding!

IBM acquires EASM vendor, Randori

Another Azure vulnerability allowing tenancy escapes

Microsoft’s Purview goes beyond DLP and gets into the pre-crime business

Half a dozen cybersecurity vendor layoff announcements!

We discuss the controversy around Rob Lee’s involvement with developing federal standards for critical infrastructure protection

and we say farewell (and good riddance) to Internet Explorer… but not really

Then, after the news, we’re going to air some segments recorded at the RSA conference last week.

We will cover high level winning strategies in cybersecurity marketing. The do's and don'ts for our specific industry and key factors of success in a go to market strategy.

Segment Resources:

https://cybersecuritymarketingsociety.com/podcast/

https://insight.cybersecuritymarketingsociety.com/survey2021?_gl=1*1wcqhp6*_ga*MTg4ODExOTY2Ny4xNjU0MTc1NDM3*_ga_GS9X0J5FZC*MTY1NDE3NTQzNi4xLjEuMTY1NDE3NTU3MC4w&_ga=2.81844830.933834121.1654175437-1888119667.1654175437

Two important shifts over the last two years transformed what we once knew as an on-premise ecosystem into a global system accessible from anywhere. One is remote work, which began as a temporary measure to get us through the early days of the pandemic and has since become the norm. The other is cloud adoption, which was mainstream even before the pandemic, but has seen another bump in the last two years. As a result, the internet has become the new corporate network. Where do we go from here? This segment is sponsored by Perimeter 81. Visit https://securityweekly.com/perimeter81 to learn more about them!

P

View Show Index

Full Audio

Segments

1. Azure Vulns, Vendor Layoff’s, Rob Lee, & Bye Bye Internet Explorer – ESW #277

This week, in the Enterprise News:

Vanta raises a $110M Series B to automate SOC 2, ISO, PCI and other compliance efforts

Immuta raises a $100M Series E for secure data access (an everything-old-is-new-again market that’s exploding)

Perimeter 81 raises $100M Series C and becomes a unicorn - You get a VPN! I get a VPN! Everyone gets a VPN!

Over a dozen other vendors raise funding!

IBM acquires EASM vendor, Randori

Another Azure vulnerability allowing tenancy escapes

Microsoft’s Purview goes beyond DLP and gets into the pre-crime business

Half a dozen cybersecurity vendor layoff announcements!

We discuss the controversy around Rob Lee’s involvement with developing federal standards for critical infrastructure protection

and we say farewell (and good riddance) to Internet Explorer… but not really

Then, after the news, we’re going to air some segments recorded at the RSA conference last week.

Announcements

  • Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!

  • Don't forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.

Hosts

Adrian Sanabria
Adrian Sanabria
Director of Product Management at Tenchi Security
  1. 1. FUNDING: Announcing Vanta’s $110 Million Series B - Vanta raises a $110M Series B to automate SOC 2, ISO, PCI and other compliance efforts
  2. 2. FUNDING: Immuta’s $100M Series E Funding and Why We’re the Leader in Secure Data Access - Immuta raises a $100M Series E for secure data access (an everything-old-is-new-again market that’s exploding)
  3. 3. FUNDING: Perimeter 81 Secures $100 Million Series C Funding Led By B Capital, Leading to $1 Billion Valuation - Everyone's reaction, basically: "$100M for a VPN?". I'm sure this is somewhat unfair, but $100M and $1B+ funding definitely seems like a stretch in the seller-saturated and unproven market fit that is the SASE/ZTNA space.
  4. 4. FUNDING: AppOmni raises $70M to find and secure vulnerabilities in SaaS app stacks – TechCrunch - AppOmni is part of what I've been calling the CASBv2 market - focused on discovering and managing security concerns around corporate and shadow SaaS use.
  5. 5. FUNDING: Good Day Sunshine – HYCU Raises $53M Series B
  6. 6. FUNDING: Vendor Security Leader Whistic Announces $35 Million Series B Funding Round Led by JMI Equity
  7. 7. FUNDING: CybSafe Raises $28M Series B Funding Round as It Eyes Up Global Leadership
  8. 8. FUNDING: Keeping data safe in cloud lands $22.5 million debt funding for Keepit
  9. 9. FUNDING: GreyNoise to expand its threat intel collection after securing $15M in funding – TechCrunch
  10. 10. FUNDING: Flare Raises CAD$9.5M in Series A Funding
  11. 11. FUNDING: 443ID Emerges from Stealth, Announces $8 Million in Seed Funding to Bring Open Source Intelligence to Identity Management
  12. 12. FUNDING: HackNotice Closes $7 million Series A Funding Round Led by Strategic Cyber Ventures.
  13. 13. FUNDING: Cybersecurity startup SubCom raises $1 million in funding led by YourNest
  14. 14. FUNDING: ORNA Inc. Raises Over $1 Million In Seed Funding To Revolutionize Cyber Incident Response
  15. 15. ACQUISITIONS: Forescout Announces Intent to Acquire Cysiv to Deliver Data-Powered Threat Detection and Response
  16. 16. ACQUISITIONS: IBM Tackles Growing Attack Surface Risks with Plans to Acquire Randori
  17. 17. VULNERABILITIES: SynLapse – Technical Details for Critical Azure Synapse Vulnerability - YAAE (Yet Another Azure Escape)
  18. 18. NEW FEATURES: Microsoft Purview’s new classifiers detect sexual harassment and more in Teams and emails - Microsoft Purview appears to be a collection of DLP and NLP functionality that aims to detect compliance or policy issues in data. The existing list of Purview classifications is what you'd expect to find in any DLP product: a pile of regex for detecting PII or financial data for nearly every country on earth: https://docs.microsoft.com/en-us/azure/purview/supported-classifications The NLP bit, which is on Microsoft's roadmap (which doesn't necessarily mean it will ever hit production) is a bit more troubling though. Classifiers include: - Leavers: people planning to leave the organization - Sexual harassment - Corporate sabotage: intentional destruction of corporate assets - Gifts and entertainment: accepting bribes - Money laundering - Stock manipulation - Unauthorized disclosure - Workplace collusion: price fixing, sharing of trade secrets, etc We know DLP is traditionally insanely false-positive prone. If these NLP classifiers are anywhere near that same level of false positives, these classifiers could easily be abused, misunderstood, and misused. False positives are a bit more dangerous when they're inaccurately pointing a finger at an employee.
  19. 19. LAYOFFS: OneTrust Organizational Update - OneTrust laying off 25% of its workforce, around 950 employees. The largest cybersecurity layoff we've seen this year, but unlikely to be the last...
  20. 20. LAYOFFS: $1.47 billion identity startup ID.me, which closed deals with unemployment agencies and the IRS, lays off staff after growth spurt - ID.me lays off 130 employees
  21. 21. LAYOFFS: Cybereason laying off 100 employees in Israel, U.S. and Europe - https://www.calcalistech.com/ctechnews/article/s1zg60v005
  22. 22. LAYOFFS: Automox announces a second round of layoffs - 2 months after Automox's first round of layoffs (11% of its workforce) comes its second round (rumored to be an additional 75-100 employees).
  23. 23. LAYOFFS: Exclusive: Cybersecurity Company Deep Instinct Cuts Staff As Tech Layoffs Continue - Around 37 employees laid off by Deep Instinct
  24. 24. LAYOFFS: Tripwire’s new owner lays off dozens, three months after buying the Portland tech company
  25. 25. LAYOFFS: Job cuts hit cybersecurity industry despite surging growth from ransomware attacks - The title's suggestion that somehow, cybersecurity markets should be connected to trends in cybercrime and not actual business market forces is totally wrong, but that's just the age we live in these days. Clickbait. Before we even get to the article proper, the key points admit that these layoffs are due to market forces that have nothing to do with cybercrime trends or ransomware trends. Is there irony in the fact that the cybersecurity market has enjoyed a meteoric rise in value that matches the rise in cybercrime profits? Probably. We might want to look into that.
  26. 26. CONTROVERSY: Cyber CEO’s US Advisory Work Echoed Sales Pitch His Firm Uses - Competitors complain that Dragos's founder manipulated government efforts to organize and standardize efforts to shore up the defenses of critical infrastructure providers. It is a contentious topic. To those of us used to "vendors vendoring", we're not terribly surprised. Vendors have been trying to insert sales pitches for their products into standards and legislation since cybersecurity standards and legislation have existed. I wouldn't be surprised if some vendors have employees dedicated for this specific purpose - getting on standards review panels, donating their 'expertise', and participating in rounds of comments on standards before they're finalized. Perhaps what makes this situation different is that cybersecurity vendors focused on critical infrastructure are still relatively new, and the folks on the federal side dealing with vendors aren't experienced in spotting and filtering out vendors' attempts to slide in subtle sales pitches. It's an area that deserves more scrutiny and transparency, as self-serving language in standards are more likely to hamper security efforts more than help them, in a holistic sense.
  27. 27. SQUIRREL: The Floppotron 3.0 » Silent’s Homepage
  28. 28. SQUIRREL: Google engineer put on leave claims AI bot LaMDA became ‘sentient’ - https://nypost.com/2022/06/12/google-engineer-blake-lemoine-claims-ai-bot-became-sentient/
  29. 29. SQUIRREL: RIP Internet Explorer – j/k, Welcome to Zombie IE - We all know a loss of support doesn't mean much - many enterprises will still have niche needs for Internet Explorer far beyond today's end of support date. They're either unable (e.g. due to third party requirements) or unwilling to pay down the tech debt that puts them in this position, but the chance that continued IE use will bite them will continue to increase with time. For now, we'll celebrate IE's 27 year run with some of the most entertaining Twitter tributes to one of the original browsers that allowed us to navigate the Internet.
Joe South
Joe South
Sr Content Creator at CyberRisk Alliance
Katie Teitler
Katie Teitler
Senior Security Strategist at Axonius

2. Transforming Cybersecurity Marketing & How the Internet Became Corporate Network – Amit Bareket, Gianna Whitver – ESW #277

We will cover high level winning strategies in cybersecurity marketing. The do's and don'ts for our specific industry and key factors of success in a go to market strategy.

Segment Resources:

https://cybersecuritymarketingsociety.com/podcast/

https://insight.cybersecuritymarketingsociety.com/survey2021?_gl=1*1wcqhp6*_ga*MTg4ODExOTY2Ny4xNjU0MTc1NDM3*_ga_GS9X0J5FZC*MTY1NDE3NTQzNi4xLjEuMTY1NDE3NTU3MC4w&_ga=2.81844830.933834121.1654175437-1888119667.1654175437

This segment is sponsored by Perimeter 81. Visit https://securityweekly.com/perimeter81 to learn more about them!

Two important shifts over the last two years transformed what we once knew as an on-premise ecosystem into a global system accessible from anywhere. One is remote work, which began as a temporary measure to get us through the early days of the pandemic and has since become the norm. The other is cloud adoption, which was mainstream even before the pandemic, but has seen another bump in the last two years. As a result, the internet has become the new corporate network. Where do we go from here? This segment is sponsored by Perimeter 81. Visit https://securityweekly.com/perimeter81 to learn more about them!

Guests

Amit Bareket
Amit Bareket
Co-Founder and CEO at Perimeter 81

Amit Bareket is a cybersecurity expert with extensive experience in system architecture and software development. He holds eight patents for storage, mobile applications, and UI. After working as a software engineer for IBM XIV Storage and BigBand Networks, Amit decided to start SaferVPN, a consumer VPN service, with Co-founder Sagi Gidali. Following the sale of the business to J2 Global, they established Perimeter 81, where Amit leads all the tech, infrastructure, and business relationships. He served in the IDF’s Unit 81 elite cyber intelligence group and graduated Cum Laude with a B.Sc. in Computer Science and Economics from Tel Aviv University.

Gianna Whitver
Gianna Whitver
Co-founder & CEO at Cybersecurity Marketing Society

Gianna is the Co-Founder and CEO of the Cybersecurity Marketing Society and a co-host of the Breaking Through in Cybersecurity Marketing Podcast.

Gianna Whitver is also the VP of Marketing at Votiro, where she leads marketing strategy and growth. Votiro’s content disarm and reconstruction solution enables organizations to eliminate known and unknown threats hidden in incoming content and data without needing detection, impacting business productivity, or degrading file fidelity.

Hosts

Adrian Sanabria
Adrian Sanabria
Director of Product Management at Tenchi Security
Matt Alderman
Matt Alderman
VP, Product at Living Security

3. The Evolving Phishing Threat & Protect Valuable Data as Workforce Volatility Rages – ESW #277

Phishing attacks are increasingly focused on new vectors such as social media, business collaboration apps, and text messages. These vectors generally lack any protection for the end user. How can we protect against these attacks that are increasingly leading to costly breaches?

This segment is sponsored by Pixm. Visit https://securityweekly.com/pixm to learn more about them!

Employee turnover is the biggest threat to any organization's IP. Nearly 60% of employees move to a new company within similar fields (think: competitors) and are using collaboration technology to take sensitive data at an alarming rate. Code42's Joe Payne will discuss how Insider Risk Management addresses data loss in a volatile job market while still enabling collaboration.

This segment is sponsored by Code42. Visit https://securityweekly.com/code42 to learn more about them!

Guests

Joe Payne
Joe Payne
President and CEO at Code42

Joe Payne is the president and CEO of Code42 Software, the leader in Insider Risk Management, which focuses on reducing the risk of data leakage from insiders while enabling the collaboration culture. Joe is a seasoned executive with more than 20 years of leadership experience and a proven track record leading high growth security and technology companies. With a passion for identifying and solving emerging market needs, Joe engages personally in product strategy and direction, while growing and providing vision and guidance to a world-class team of security executives. Previously, Joe served as CEO of eSecurity, the first SIEM software company. He also served as the president of iDefense prior to its acquisition by VeriSign. At iDefense, Joe led some of the best white-hat security researchers in the world and worked with the top financial institutions and government agencies in the United States to improve their risk profile.

Joe also has held additional executive positions at eGrail, MicroStrategy, InteliData and Eloqua. As CEO of Eloqua, Joe led the team to $125 million in revenue, a successful IPO and a subsequent acquisition by Oracle.

Joe is a co-author of Inside Jobs: Why Insider Risk Is the Biggest Cyber Threat You Can’t Ignore, a book which shines a light on Insider Risk and details what business and security leaders can do to keep their workforces productive and data protected.

Matt Mosely
Matt Mosely
Chief Product Officer & CISO at Pixm, Inc.

Matt Mosley joins Pixm from Cyren (CYRN), where he reported to the CEO as VP of Product Management. In this role, he built and led the company’s global Product Management team responsible for the world’s largest security cloud. Mr. Mosley brings more than 30 years of experience in senior management roles at public and private companies, from his early background as an engineer and security practitioner growing into a CISO and Product Management executive. He is a recognized speaker and writer on information security topics and holds multiple designations including CISSP, CISM, and CISA. Matt has attended more than 20 RSA conferences and looks forward to returning to engage with his many friends and colleagues this year.

Hosts

Adrian Sanabria
Adrian Sanabria
Director of Product Management at Tenchi Security
Bill Brenner
Bill Brenner
VP, Content Strategy at CyberRisk Alliance
Matt Alderman
Matt Alderman
VP, Product at Living Security
prestitial ad