Are supply chain attacks and software interdependence creating an existential crisis for the cybersecurity industry? Does the growing issue of "death by security alerts" make technologies like XDR and SIEM impractical for all but a handful of companies?

Derek Johnson joined Security Weekly from Black Hat in Vegas to talk through those market challenges, and a question that emerged with the latest in the SolarWinds lawsuit: what legal standards or liability threshold should there be when companies with bad security practices get breached?