Episodes
Link to blog post
This week’s Cyber Security Headlines – Week in Review is hosted by Rich Stroffolino with guest Christina Shannon, CIO, KIK Consumer Products
Thanks to our show sponsor, Veracode
Get ready to experience the future of application security at RSAC 2024 with Veracode. Join us as we unveil cutting-edge innovations and insights to tackle today’s most pressing security challenges. From live demos showcasing our newest products to engaging discussions with industry experts....
Published 04/26/24
Google postpones third-party cookie deprecation
Brocade SAN appliances and switches exposed to hacking
ICICI Bank exposes credit cards to wrong users
Thanks to this week's episode sponsor, Veracode
Don't miss out on this opportunity to elevate your cybersecurity strategy. Build and scale secure software from code to cloud with speed and trust. Visit our booth #2045 at RSAC 2024 to discover how Veracode is shaping the future of Application Security in the AI era.
For the stories...
Published 04/26/24
Chinese keyboard app flaws exposed
Threat actors plant fake assassination story
ByteDance on the clock to divest TikTok
Thanks to this week's episode sponsor, Veracode
Research reveals AI-generated code mirrors human-written code's security flaws. Even seasoned programmers struggle to spot errors, with incorrect AI-generated answers abound. Veracode knows the stakes. While AI accelerates coding, relying on hunches won't suffice. Trust multi-faceted, data-driven insights to mitigate...
Published 04/25/24
Iranian nationals charged with hacking U.S. companies and agencies
Siemens working to fix device affected by Palo Alto firewall bug
Russian hackers claim cyberattack on Indiana water plant
Thanks to this week's episode sponsor, Veracode
Are you truly listening to both your security and development teams? Make informed decisions with Veracode. Our developer-friendly security tools integrate with your existing tech stack to secure code from the start. Bridge the gap between...
Published 04/24/24
TikTok ban passes the US House
Sandworm targets critical Ukrainian orgs
North Koreans animating streaming shows
Thanks to this week's episode sponsor, Veracode
AI coding companions assist in generating high-quality code snippets, while Veracode swoops in to conduct thorough security assessments, identifying and fixing vulnerabilities quickly. With this dynamic duo, developers can innovate with confidence, knowing their code is both efficient and secure. Secure more code with Co-Pilot...
Published 04/23/24
RedLine stealer GitHub connection
MITRE’s breached was through Ivanti zero-day vulnerabilities
Researchers find dozens of fake E-ZPass toll websites following FBI warning
Thanks to this week's episode sponsor, Veracode
Imagine your intelligent coding companion, backed by the robust security expertise of Veracode. Together, we form the ultimate duo, empowering developers to write better code while ensuring it's secure from the get-go. Learn more at RSAC 2024 with Veracode.
For the...
Published 04/22/24
Link to blog post
This week’s Cyber Security Headlines – Week in Review is hosted by Rich Stroffolino with guest Dan Walsh, CISO, Paxos
Thanks to our show sponsor, Conveyor
Happy Friday! Are you tired of hearing about Conveyor’s AI security review automation software? We’ll stop talking about it if you book a call. Ready to give the market leading AI for security questionnaires a spin? Try a free proof of concept at www.conveyor.com.
Don’t forget to mention this podcast for 5 free...
Published 04/19/24
Police bust reveals sophisticated phishing-as-a-service platform
Overlooked Windows Fibers offer handy route for malicious payload deployment
Michigan healthcare organization suffers data breach
Thanks to today's episode sponsor, Conveyor
Happy Friday! Are you tired of hearing about Conveyor’s AI security review automation software?
We’ll stop talking about it if you book a call.
Ready to give the market leading AI for security questionnaires a spin? Try a free proof of concept at...
Published 04/19/24
Sandworm-linked group tied to attack on water utilities
GPT-4 reads security advisories
Cell carrier workers solicited for SIM swaps
Thanks to today's episode sponsor, Conveyor
Conveyor is the market leading AI-powered platform that automates the entire customer security review process — from sharing your security posture and SOC 2 in a single portal to using that same information to automate answering security questionnaires with 90% accuracy.
Use Conveyor to fly through any...
Published 04/18/24
Cisco announces breach of multifactor authentication message provider
Bad bots drive 10% annual surge in account takeover attacks
LockBit 3.0 variant generates custom, self-propagating malware
Thanks to today's episode sponsor, Conveyor
Conveyor is the AI security review automation platform helping infosec teams automate everything from securely sharing a SOC 2 to one-click autofilling security questionnaires with AI so you can spend almost zero time on the manual tasks that make you...
Published 04/17/24
Meta to close Threads in Turkey
Palo Alto fixes backdoor zero-day
Details on Microsoft’s security overhaul
Thanks to today's episode sponsor, Conveyor
What are infosec teams measuring these days? More often than not, their impact on sales.
As infosec teams become hands on in the sales cycle, proving your value becomes key.
A director of GRC said last week that the most direct value for their CEO was showing the efficiencies and the dollars that security has been able to bring...
Published 04/16/24
House passes reauthorization of U.S. surveillance program
Roku says 576,000 accounts compromised in latest security breach
Microsoft breach exposed federal agencies
Thanks to today's episode sponsor, Conveyor
It’s Conveyor again, the market-leading AI software for answering security questionnaires and securely sharing your security posture and documents.
Conveyor’s ‘State of the Security Review” report for 2024 was just released and it’s all about what the “new era” of infosec...
Published 04/15/24
Link to blog post
This week’s Cyber Security Headlines – Week in Review is hosted by Rich Stroffolino with guest Mike Levin, deputy CISO, 3M
Thanks to our show sponsor, Vanta
When it comes to ensuring your company has top-notch security practices, things can get complicated fast.
With Vanta, you can automate compliance for in-demand frameworks like SOC 2, ISO 27001, and HIPAA.
Even more, Vanta’s market-leading Trust Management Platform enables you to unify security program...
Published 04/12/24
Palo Alto Networks fixes several DoS vulnerabilities in PAN-OS operating system
Sisense breach exposes customers to potential supply chain attack
Threat actors gaming GitHub Search
Thanks to today's episode sponsor, Vanta
The average security pro spends nearly a full workday every week just on compliance.
With Vanta, you can automate compliance for in-demand frameworks like SOC 2, ISO 27001, and HIPAA.
Even more, Vanta’s market-leading Trust Management Platform enables you to...
Published 04/12/24
CISA expands automated malware analysis
US Cyber Command launched “hunt forward” missions
Spectre v2: Linux Boogaloo
CHECK OUT Capture the CISO season 2 here.
Thanks to today's episode sponsor, Vanta
The average security pro spends nearly a full workday every week just on compliance.
With Vanta, you can automate compliance for in-demand frameworks like SOC 2, ISO 27001, and HIPAA.
Even more, Vanta’s market-leading Trust Management Platform enables you to unify security program...
Published 04/11/24
Ukraine's head of cybersecurity suspended and assigned to combat zone
Over 90,000 LG Smart TVs exposed to remote attack
Microsoft exposed internal passwords in security lapse
Thanks to today's episode sponsor, Vanta
The average security pro spends nearly a full workday every week just on compliance.
With Vanta, you can automate compliance for in-demand frameworks like SOC 2, ISO 27001, and HIPAA.
Even more, Vanta’s market-leading Trust Management Platform enables you to unify...
Published 04/10/24
Cyberattack causes major disruptions for UK vet firm
Data privacy bill pushes forward with bipartisan support
Department of Justice hack exposes hundreds of thousands
Thanks to today's episode sponsor, Vanta
The average security pro spends nearly a full workday every week just on compliance.
With Vanta, you can automate compliance for in-demand frameworks like SOC 2, ISO 27001, and HIPAA.
Even more, Vanta’s market-leading Trust Management Platform enables you to unify security...
Published 04/09/24
Government warns hospitals of hackers targeting IT help desks
U.S. government contractor Acuity responds to alleged Five Eyes breach
New York City becomes latest in municipal government hack attempts
Thanks to today's episode sponsor, Vanta
The average security pro spends nearly a full workday every week just on compliance.
With Vanta, you can automate compliance for in-demand frameworks like SOC 2, ISO 27001, and HIPAA.
Even more, Vanta’s market-leading Trust Management Platform...
Published 04/08/24
Link to blog post
This week’s Cyber Security Headlines – Week in Review is hosted by David Spark with guest Steve Gentry, Advisor, Clari
Thanks to our show sponsor, Vanta
The average security pro spends nearly a full workday every week just on compliance.
With Vanta, you can automate compliance for in-demand frameworks like SOC 2, ISO 27001, and HIPAA.
Even more, Vanta’s market-leading Trust Management Platform enables you to unify security program management with a built-in risk...
Published 04/05/24
Classified Five Eyes data theft announced
Cancer center data breach affects 800,000
Android Pixel phone zero-day flaws being exploited by forensic companies
Thanks to today's episode sponsor, Vanta
The average security pro spends nearly a full workday every week just on compliance.
With Vanta, you can automate compliance for in-demand frameworks like SOC 2, ISO 27001, and HIPAA.
Even more, Vanta’s market-leading Trust Management Platform enables you to unify security program...
Published 04/05/24
Report criticizes Microsoft’s Chinese hack response
NIST needs help with vulnerability backlog
Chrome tests feature to prevent session hijacking
Thanks to today's episode sponsor, Vanta
The average security pro spends nearly a full workday every week just on compliance.
With Vanta, you can automate compliance for in-demand frameworks like SOC 2, ISO 27001, and HIPAA.
Even more, Vanta’s market-leading Trust Management Platform enables you to unify security program management with a...
Published 04/04/24
CISA releases draft rule for cyber incident reporting
Google now blocks spoofed emails for better phishing protection
Breach at online shopping platform PandaBuy affects 1.3 million customers
Thanks to today's episode sponsor, Vanta
The average security pro spends nearly a full workday every week just on compliance.
With Vanta, you can automate compliance for in-demand frameworks like SOC 2, ISO 27001, and HIPAA.
Even more, Vanta’s market-leading Trust Management Platform enables you...
Published 04/03/24
Google to delete Incognito tracking data
Hallucinated software packages as a security vulnerability
FCC investigating phone infrastructure security
Thanks to today's episode sponsor, Vanta
The average security pro spends nearly a full workday every week just on compliance.
With Vanta, you can automate compliance for in-demand frameworks like SOC 2, ISO 27001, and HIPAA.
Even more, Vanta’s market-leading Trust Management Platform enables you to unify security program management with a...
Published 04/02/24
Data of 73 million AT&T customers leaked on dark web
Accidental Linux backdoor discovery likely prevented thousands of infections
DHS expected to stop buying access to your phone info
Thanks to today's episode sponsor, Vanta
The average security pro spends nearly a full workday every week just on compliance.
With Vanta, you can automate compliance for in-demand frameworks like SOC 2, ISO 27001, and HIPAA.
Even more, Vanta’s market-leading Trust Management Platform enables you to...
Published 04/01/24
Link to blog post
This week’s Cyber Security Headlines – Week in Review is hosted by Rich Stroffolino with guest Yaron Levi, CISO, Dolby, and sageinsights.io
Thanks to our show sponsor, Varonis
Ready to reduce your risk without taking any? Try Varonis’ free data risk assessment. It takes minutes to set up and in 24 hours you’ll have a clear, risk-based view of the data that matters most and a clear path to automated remediation. Get started for free today at varonis.com/cisoseries.
...
Published 03/29/24