Treacherous Devs, Selling Text Messages, Spicy Takes, & Unicorns Galore – ESW #253
Full Audio
View Show IndexSegments
1. Digging Into XDR – Allie Mellen – ESW #253
XDR is the buzzword practitioners can't seem to escape. Or is it? Allie Mellen, Forrester Analyst, will cover her research on what XDR is and what it isn't to help practitioners understand what it really means for them.
Segment Resources:
https://www.forrester.com/blogs/announcing-the-first-and-only-evaluative-research-on-xdr-the-forrester-new-wave-extended-detection-and-response-providers-q4-2021/ https://www.forrester.com/blogs/xdr-faq-frequently-asked-questions-on-extended-detection-and-response/ https://www.forrester.com/blogs/what-security-market-definitions-tell-practitioners/
Announcements
We're always looking for great guests for all of the Security Weekly shows! Submit your suggestions by visiting https://securityweekly.com/guests and completing the form!
Guest
Allie Mellen is a Forrester analyst covering security operations, nation-state threats, and the use of automation, machine learning, and AI in security tools. She has been in the technology industry for over a decade in various engineering roles: doing research at MIT, running her own engineering consultancy, and being a hacker before finally becoming a security practitioner. She now advises Fortune 500 CISOs and security teams on their detection and response practice and frequently speaks at industry-leading events and with the press.
Hosts
2. Securing the Invisible: Holes in Your Visibility Fabric & Where Hackers Hide – Vincent Berk – ESW #253
Riverbed’s Network Security Solutions provide the full-fidelity network visibility organizations need to see everything. The rise of cloud and user mobility has increased the complexity and the reach of modern networks, expanding the risk perimeter for cyber-attacks. Riverbed enables organizations to address performance, visibility, and security holistically so they can overcome complexity and fully capitalize on their digital and cloud investments.
Segment Resources:
https://visibility.riverbed.com/ https://www.riverbed.com/solutions/security.html
https://www.riverbed.com/products/npm/netprofiler-advanced-security-module.html
This segment is sponsored by Riverbed Technology.
Visit https://securityweekly.com/riverbed to learn more about them!
Sponsored By
Announcements
Throughout 2022, CRA's Business Intelligence Unit will be releasing research reports on the top topics across the security industry. Our first report will be on Third-Party Risk and the Supply Chain. To participate in the survey, please visit https://securityweekly.com/thirdpartyrisk. The results will be shared at our Third-Party Risk eSummit in January.
Guest
Dr. Vincent Berk is responsible for charting the growth of the company and driving stronger alignment between all revenue-generating functions of the business. In his role, he acts as the primary company spokesperson and is a member of the Forbes Technology Council where he frequently shares his opinions and expertise.
Vince comes to Quantum Xchange from Riverbed Technologies, a large network performance company where he served as Chief Technology Officer and Chief Security Architect. Recognized as a highly technical cybersecurity executive and industry thought leader, Vince is also a successful entrepreneur and academic. He founded and led FlowTraq, an enterprise network security and analytics company from conception to acquisition and served as a computer science faculty member at the prestigious Dartmouth College.
Vince has a Ph.D. in machine learning and large-scale data analytics from Leiden University and holds several patents in the application of data analysis in cybersecurity and network performance.
Hosts
3. Unicorns Galore, Selling Text Messages, Spicy Takes, & Treacherous Devs – ESW #253
Finally, in the enterprise security news: At least a dozen cybersecurity companies announced raises totaling more than $900m - just in the past week!, Permira proposes to take Mimecast private for $5.8bn, The leader of a Swiss tech company is accused of selling access to text message data for surveillance, A former Ubiquiti developer was behind the big breach announced earlier this year - he unsuccessfully tried to extort his employer, SentinelOne tries to bring mobile security back?, Google and Trail of Bits team up to release a tool that scans for vulnerable Python packages, CISA has assembled a panel that will begin making cybersecurity recommendations, Make sure to stick around for, This week's spicy take - Cloudflare recommends ditching your firewall, and This week's squirrel story - a new streaming service from an unexpected source! All that and more, on this episode of Enterprise Security Weekly!
Announcements
Don't forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.
In an overabundance of caution, we have decided to flip this year’s SW Unlocked to a virtual format. The safety of our listeners and hosts is our number one priority. We will miss seeing you all in person, but we hope you can still join us at Security Weekly Unlocked Virtual! The event will now take place on Thursday, Dec 16 from 9am-6pm ET. You can still register for free at https://securityweekly.com/unlocked.
Hosts
- 1. FUNDING: Claroty Advances Mission to Secure All Cyber-Physical Systems with $400 Million Funding and Acquisition of Medigate
- 2. FUNDING: Cloud security firm Panther Labs raises fresh funds at $1.4 bln valuation
- 3. FUNDING: Blockchain Security Firm CertiK Raises $80M at Nearly $1B Valuation
- 4. FUNDING: IRONSCALES Raises $64 Million in Series C Funding Round Led by PSG
- 5. FUNDING: Blockchain Intelligence Company TRM Labs Announces $60 million Series B Led by Tiger Global
- 6. FUNDING: Torq Raises $50M in Series B to Reinvent Security Automation for Modern Digital Enterprises
- 7. FUNDING: GitGuardian raises $44M to offer ‘comprehensive’ code security
- 8. FUNDING: Adlumin Secures $25 Million in Series B Funding
- 9. FUNDING: Kasada Raises $23M in Series C Funding
- 10. FUNDING: Grip Security raises $19M Series A for its SaaS security platform – TechCrunch
- 11. FUNDING: Truffle Security raises $14 million Series A led by a16z — Truffle Security
- 12. FUNDING: Chainguard lands $5M to help companies secure their software supply chains – TechCrunch
- 13. FUNDING: New VC firm, Ballistic Ventures
- 14. TAKE PRIVATE: Permira To Take Mimecast Private Approximately $5.8 Bln All-cash Deal – Quick Facts
- 15. TRENDS: Swiss tech company boss accused of selling mobile network access for spyingIf you need yet another reason to justify moving away from SMS-based multi-factor authentication, this is just the latest situation where text messages have been compromised. This time, the compromise was allegedly intentional.
- 16. TRENDS: Former Ubiquiti dev charged for trying to extort his employerInsider threat meets supply chain threat. As customers, there's not much we can do to avoid this kind of situation.
- 17. NEW PRODUCT: Singularity Mobile
- 18. TOOLS: Pip-audit: Google-backed tool probes Python environments for vulnerable packages
- 19. REGULATION: CISA’s advisory panel is announced, set to make recommendations on major cyber topics – CyberScoop
- 20. SPICY: Cloudflare CEO: Ditch Palo Alto Networks, Win a Trip to Oahu
- 21. SQUIRREL: Salesforce+You've probably heard of Disney+. Maybe Discovery+? How about Paramount+? AMC+? Well, now there's Salesforce+, and it's exactly what it sounds like. A streaming service from Salesforce. Some of the content is original, some is licensed, and some is indistinguishable from what you might see on Discovery+. It's a bit surreal.
