Security Weekly
BH2021Subscribe

Supply Chain Perils, Death by Security Alerts, SolarWinds & BlackHat 2021 – BH21 #2

Derek Johnson will be covering Matt Tait's keynote and another session on major supply chain attacks over the past year and how they're changing best practices in DFIR. Supply chain attacks and software interdependence are creating an existential crisis for the cybersecurity industry

XDR, automation and the growing need to solve the problem of Death by Security Alerts that make things like XDR and SIEM impractical for all but a handful of companies right now.

He will also talk about the SolarWinds lawsuit, because this week they just submitted their formal response in court, and it gets at an issue that I think is becoming more and more important: what if any legal standards or liability threshold should there be when companies with bad security practices get breached?

Finally, we will check in with Derek about what his thoughts are of his first experience at BlackHat!

Full episode and show notes

Guest

Derek Johnson
Senior Reporter at SC Media

Derek covers the federal government and its intersection with critical infrastructure and the private sector for SC Media. Prior to that he spent three years covering the intersection of cybersecurity policy and government for FCW.

Host

Professor at Roger Williams University

Related

Hacker Heroes – Winn Schwartau – PSW #825

Pioneering the Cyber Battlefield: A Deep Dive with Winn Schwartau, Cybersecurity Luminary Get ready for an extraordinary episode as we sit down with Winn Schwartau, a true pioneer and luminary in the world of cybersecurity. Winn's impact on the field is nothing short of legendary, and in this podcast interview, we uncover the profound insights an...
PCI 4.0 – PSW #825

Version 4.0 of the Payment Card Industry Data Security Standard (PCI DSS) puts greater emphasis on application security than did previous versions of the standard. It also adds a new “customized approach” option that allows merchants and other entities to come up with their own ways to comply with requirements, and which also has implications for a...