Careers, Incident response, Security awareness, Vulnerability management, Insider threat, Social engineering

Treacherous Devs, Selling Text Messages, Spicy Takes, & Unicorns Galore – ESW #253

This week, we welcome Allie Mellen, Industry Analyst at Forrester Research to discuss Digging Into XDR! In the second segment, Vincent Berk, CTO and Chief Security Architect at Riverbed to talk about Securing the Invisible: Holes in Your Visibility Fabric & Where Hackers Hide! Finally, in the Enterprise Security News for this week: At least a dozen cybersecurity companies announced raises totaling more than $900m - just in the past week!, Permira proposes to take Mimecast private for $5.8bn, The leader of a Swiss tech company is accused of selling access to text message data for surveillance, A former Ubiquiti developer was behind the big breach announced earlier this year - he unsuccessfully tried to extort his employer, SentinelOne tries to bring mobile security back?, Google and Trail of Bits team up to release a tool that scans for vulnerable Python packages, CISA has assembled a panel that will begin making cybersecurity recommendations, Make sure to stick around for, This week's spicy take - Cloudflare recommends ditching your firewall, and This week's squirrel story - a new streaming service from an unexpected source! All that and more, on this episode of Enterprise Security Weekly!

Visit https://www.securityweekly.com/esw for all the latest episodes!

Segment Resources:

https://visibility.riverbed.com/ https://www.riverbed.com/solutions/security.html

https://www.riverbed.com/products/npm/netprofiler-advanced-security-module.html

Visit https://securityweekly.com/riverbed to learn more about them!

View Show Index

Full Audio

Segments

1. Digging Into XDR – Allie Mellen – ESW #253

XDR is the buzzword practitioners can't seem to escape. Or is it? Allie Mellen, Forrester Analyst, will cover her research on what XDR is and what it isn't to help practitioners understand what it really means for them.

Segment Resources:

https://www.forrester.com/blogs/announcing-the-first-and-only-evaluative-research-on-xdr-the-forrester-new-wave-extended-detection-and-response-providers-q4-2021/ https://www.forrester.com/blogs/xdr-faq-frequently-asked-questions-on-extended-detection-and-response/ https://www.forrester.com/blogs/what-security-market-definitions-tell-practitioners/

Announcements

  • Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!

Guest

Allie Mellen
Allie Mellen
Industry Analyst at Forrester Research

Allie supports security and risk professionals, covering security infrastructure and operations to assist clients in building and maturing their threat detection and response strategies. Her coverage includes the people, processes, and tools of the security operations center.

Hosts

Adrian Sanabria
Adrian Sanabria
Director of Product Management at Tenchi Security
Katie Teitler
Katie Teitler
Senior Security Strategist at Axonius
Tyler Shields
Tyler Shields
CMO at JupiterOne

2. Securing the Invisible: Holes in Your Visibility Fabric & Where Hackers Hide – Vincent Berk – ESW #253

Riverbed’s Network Security Solutions provide the full-fidelity network visibility organizations need to see everything.

The rise of cloud and user mobility has increased the complexity and the reach of modern networks, expanding the risk perimeter for cyber-attacks. Riverbed enables organizations to address performance, visibility, and security holistically so they can overcome complexity and fully capitalize on their digital and cloud investments.

Segment Resources:

https://visibility.riverbed.com/ https://www.riverbed.com/solutions/security.html

https://www.riverbed.com/products/npm/netprofiler-advanced-security-module.html

This segment is sponsored by Riverbed Technology.

Visit https://securityweekly.com/riverbed to learn more about them!

Sponsored By

Riverbed Technology

Announcements

  • Throughout 2022, CRA's Business Intelligence Unit will be releasing research reports on the top topics across the security industry. Our first report will be on Third-Party Risk and the Supply Chain. To participate in the survey, please visit https://securityweekly.com/thirdpartyrisk. The results will be shared at our Third-Party Risk eSummit in January.

Guest

Vincent Berk
Vincent Berk
CTO and Chief Security Architect at Riverbed

Vincent Berk is CTO and Chief Security Architect at Riverbed and is responsible for setting the vision and strategy for the network performance monitoring (NPM) business unit in the cyber security space. Berk joined Riverbed through the acquisition of FlowTraq, an enterprise security analytics company where he served as founder and CEO. Previously, Berk taught computer science at Dartmouth College. He has a Ph.D. in machine learning and large-scale data analytics from Leiden University and holds several patents in the application of large-scale data analytics in cyber security.

Hosts

Adrian Sanabria
Adrian Sanabria
Director of Product Management at Tenchi Security
Katie Teitler
Katie Teitler
Senior Security Strategist at Axonius
Tyler Shields
Tyler Shields
CMO at JupiterOne

3. Unicorns Galore, Selling Text Messages, Spicy Takes, & Treacherous Devs – ESW #253

Finally, in the enterprise security news: At least a dozen cybersecurity companies announced raises totaling more than $900m - just in the past week!, Permira proposes to take Mimecast private for $5.8bn, The leader of a Swiss tech company is accused of selling access to text message data for surveillance, A former Ubiquiti developer was behind the big breach announced earlier this year - he unsuccessfully tried to extort his employer, SentinelOne tries to bring mobile security back?, Google and Trail of Bits team up to release a tool that scans for vulnerable Python packages, CISA has assembled a panel that will begin making cybersecurity recommendations, Make sure to stick around for, This week's spicy take - Cloudflare recommends ditching your firewall, and This week's squirrel story - a new streaming service from an unexpected source! All that and more, on this episode of Enterprise Security Weekly!

Announcements

  • In an overabundance of caution, we have decided to flip this year’s SW Unlocked to a virtual format. The safety of our listeners and hosts is our number one priority. We will miss seeing you all in person, but we hope you can still join us at Security Weekly Unlocked Virtual! The event will now take place on Thursday, Dec 16 from 9am-6pm ET. You can still register for free at https://securityweekly.com/unlocked.

  • Join us June 29th for a webcast with Tyler Robinson and Beau Bullock to learn how to pivot into the world of Crypto security. Visit https://securityweekly.com/webcasts to register with only your name and email! Don't forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.

Hosts

Adrian Sanabria
Adrian Sanabria
Director of Product Management at Tenchi Security
  1. 1. FUNDING: Claroty Advances Mission to Secure All Cyber-Physical Systems with $400 Million Funding and Acquisition of Medigate
  2. 2. FUNDING: Cloud security firm Panther Labs raises fresh funds at $1.4 bln valuation
  3. 3. FUNDING: Blockchain Security Firm CertiK Raises $80M at Nearly $1B Valuation
  4. 4. FUNDING: IRONSCALES Raises $64 Million in Series C Funding Round Led by PSG
  5. 5. FUNDING: Blockchain Intelligence Company TRM Labs Announces $60 million Series B Led by Tiger Global
  6. 6. FUNDING: Torq Raises $50M in Series B to Reinvent Security Automation for Modern Digital Enterprises
  7. 7. FUNDING: GitGuardian raises $44M to offer ‘comprehensive’ code security
  8. 8. FUNDING: Adlumin Secures $25 Million in Series B Funding
  9. 9. FUNDING: Kasada Raises $23M in Series C Funding
  10. 10. FUNDING: Grip Security raises $19M Series A for its SaaS security platform – TechCrunch
  11. 11. FUNDING: Truffle Security raises $14 million Series A led by a16z — Truffle Security
  12. 12. FUNDING: Chainguard lands $5M to help companies secure their software supply chains – TechCrunch
  13. 13. FUNDING: New VC firm, Ballistic Ventures
  14. 14. TAKE PRIVATE: Permira To Take Mimecast Private Approximately $5.8 Bln All-cash Deal – Quick Facts
  15. 15. TRENDS: Swiss tech company boss accused of selling mobile network access for spying - If you need yet another reason to justify moving away from SMS-based multi-factor authentication, this is just the latest situation where text messages have been compromised. This time, the compromise was allegedly intentional.
  16. 16. TRENDS: Former Ubiquiti dev charged for trying to extort his employer - Insider threat meets supply chain threat. As customers, there's not much we can do to avoid this kind of situation.
  17. 17. NEW PRODUCT: Singularity Mobile
  18. 18. TOOLS: Pip-audit: Google-backed tool probes Python environments for vulnerable packages
  19. 19. REGULATION: CISA’s advisory panel is announced, set to make recommendations on major cyber topics – CyberScoop
  20. 20. SPICY: Cloudflare CEO: Ditch Palo Alto Networks, Win a Trip to Oahu
  21. 21. SQUIRREL: Salesforce+ - You've probably heard of Disney+. Maybe Discovery+? How about Paramount+? AMC+? Well, now there's Salesforce+, and it's exactly what it sounds like. A streaming service from Salesforce. Some of the content is original, some is licensed, and some is indistinguishable from what you might see on Discovery+. It's a bit surreal.
Katie Teitler
Katie Teitler
Senior Security Strategist at Axonius
Tyler Shields
Tyler Shields
CMO at JupiterOne
prestitial ad