Cybersecurity: Amplified And Intensified

Gareth is the founder and CEO/CTO of a decentralized and encrypted email service called Telios. He's previously been a software engineer for over 13 years working in the automotive and banking industry, but in the last few years has shifted his focus towards building on the decentralized internet.

Today we're discussing where our data lives, how can we find most of it and who controls your data.

This episode is available on YouTube: https://www.youtube.com/watch?v=IkPftZRMgcA

Brian J. Weiss is the CEO of ITECH Solutions that provides IT Services across the United States.

Or at least that's my analysis of CISA Alert AA22-137A

It doesn't matter what fancy tools you have if you're using and configuring them incorrectly. 

Max Shuftan is the Director, Mission Programs & Partnerships at the SANS Institute.

Max leads a business unit at SANS Institute focused on (1) growing the global cybersecurity talent pipeline and increasing Diversity, Equity, and Inclusion (DEI) in the cyber workforce, and (2) fostering a stronger cybersecurity workforce through technical skills training and certification plus security awareness training of the State, Local, and Education (SLED) community.

These will be quick. I dive into questions submitted from listeners and discuss articles and/or evolving incidents.

Burnout and alert fatigue are likely at an all time high with the current state of events combined with the last two plus years. OOn this episode we explore the Deliberate Discomfort Challenge as a way to help take care of our most valuable assets, our people to get back in tune with themselves and life.

Jason and his team are running a Buy One Get One opportunity for the Deliberate Discomfort Challenge. Grab a body, sign up and we (Cybersecurity: Amplified and Intensified) will pay for the first ten (10) of our listeners/viewers that sign up.

On todays episode I'm joined by Greg Linares and John Wetzel to discuss insider threats, what you should look for and how to help mitigate them. 

We also discuss some of the tactics, techniques and procedures (TTPs) employed by the Lapsus$ Group over the last few months to help you build your insider threat hunting program. 

The general consensus seems to be no data loss prevention (DLP) system gets you where you need to be in securing your data.

Greg Linares' professional career in cybersecurity began in 2006, when he joined eEye Digital Security as a Security Researcher. During his tenure, he was accredited with the discovery of several vulnerabilities in major vendors such as Microsoft, CA, Yahoo, Bitdefender and AFLAC, as well as doing development on the Retina Network Security Scanner. Over the next several years he performed many lead roles in reverse engineering, penetration testing, malware analysis, threat intelligence, and security software development. Currently he is a heading up a security team at a Venture Capital firm in CA and has a passion for helping and supporting others at all stages in their cybersecurity career. 

John Wetzel is currently the Director of Intelligence Solutions at Recorded Future. John is an experienced security intelligence leader building strategic, global teams. Hands-on technical leader passionately merging technical, business, product knowledge to achieve strategic business outcomes. Strong communicator for boards of directors and C-suite to practitioners. Previously DOD counterintelligence and compliance officer (NISPOM, ITAR, EAR) with strong relationships to federal law enforcement. Writer and speaker on cyber threat intelligence applications, insider threat programs at SANS CTI Summit, Kaspersky SAS 2019, Predict host and trainer 2016-2020. Co-author, The Security Intelligence Handbook (available on Amazon).

On this episode Shiva Maharaj sits down with Jeremy Kirk of The Ransomware Files for expert analysis of cybersecurity, ransomware, intelligence collection, threat intelligence, cyber attacks ,cyber crime, privacy, lapsus$ group, rEvil and Kaseya and more.

Jeremy Kirk is an executive editor with Information Security Media Group, a publishing company focused on computer security. He’s the creator of The Ransomware Files podcast, which tells the harrowing stories of IT pros who have fought back against ransomware, the greatest crime wave the Internet has ever seen.  

On this episode we discuss encrypted DNS, DNS over https, Russia Cyber Warfare, Lapsus$ Group and more.

Peter Lowe is the Principal Security Researcher at DNSFilter. 

Peter has worked in primarily Internet focused roles throughout his career, in positions that include technical support, system administration, web development, and as Technical Director of a small company. Security has always been a passion. 

Daniel Stenberg is the founder and lead developer of cURL and libcurl. An internet protocol geek, an open source person and a developer. Daniel has been programming for fun and profit since 1985. You'll find lots of info about my various projects on these web pages and on his GitHub profile.  

Daniel participates within the IETF, primarily in the HTTPbis and QUIC working groups, speaks in public every now and then.  

Daniel currently works for wolfSSL doing commercial curl support. If you need help to fix curl problems, fix your app's use of libcurl, add features to curl, fix curl bugs, optimize your curl use or libcurl education for your developers... Then Daniel is your man. Contact him!  

Greg Linares' professional career in cybersecurity began in 2006, when he joined eEye Digital Security as a Security Researcher. During his tenure, he was accredited with the discovery of several vulnerabilities in major vendors such as Microsoft, CA, Yahoo, Bitdefender and AFLAC, as well as doing development on the Retina Network Security Scanner. Over the next several years he performed many lead roles in reverse engineering, penetration testing, malware analysis, threat intelligence, and security software development. Currently he is a heading up a security team at a Venture Capital firm in CA and has a passion for helping and supporting others at all stages in their cybersecurity career. 

In light of ongoing events in the Ukraine and inspired by Recorded Future and Grey Noise, we have teamed up with Dark Cubed to offer security services to company's in need to bolster security quickly and effectively.

On this episode we're joined by Vince Crisler of Dark Cubed, Matt Lee of PAX8, Allan Liska of Recorded Future and Xavier Salinas of Blackpoint Cyber to discuss ongoing events and incidents as they relate to cybersecurity. January 2022

On today's episode we discuss the potential fallout as it relates to cybersecurity and the current Ukraine situation.

On today's episode we discuss Vendor Selection and why it's more important than you think.  

Asset management is mostly overlooked and garners little respect. Done right, it can save you more times than you can count. Join us as we sit down with Brian Weiss of I Tech Solutions to discuss the unsexy nature of IT hygiene.

On this episode we're joined by Vince Crisler of Dark Cubed, Matt Lee of PAX8, Allan Liska of Recorded Future, Jon Murchison of Blackpoint Cyber and John Wetzel of Recorded Future to discuss ongoing events and incidents as they relate to cybersecurity. January 2022

On today's episode we're discussing the current issues and the best way forward to create actionable and accountable vulnerability disclosure.

Jonathan Murchison, the founder and CEO of Blackpoint, started his career in Network Engineering and IT operations, but quickly made the switch to the quiet world of the intelligence community. He has since spent over twelve years planning, conducting, and executing high-priority national security missions. As a former NSA computer operations expert and IT professional, he is bringing a unique perspective to the mission of developing cyber defense software effective at detecting and detaining purposeful cyber intrusions and insider threats. Murchison holds multiple patents in methods of network analysis, defense, pattern analytics, and mobile platforms.

Matt Lee has dedicated the last 10 years to raising the security tide in the SMB market. His efforts have served in every capacity in a growing MSP that grew to support 20,000 endpoints. His leadership around technology direction and security/compliance protected and elevated over 17,000 people in Small to midsize businesses in five states. He has since taken on a new role as a force multiplier under Brad Fugitt as the Senior director of Security and Compliance at Pax8. He is driving the external thought leadership to empower MSPs to continue to grow in their security knowledge and operability. He lives to ensure his children maintain the same quality of life we do around technology, which is imperiled daily by threat actors.

Joining us today are Matt Lee and Gerald Auger to discuss the recent actions against REvil and Ukraine under threat.  

Dr. Auger is a 15+ year cybersecurity professional, academic, and author. He has been the cybersecurity architect at MUSC, a multi-billion dollar academic medical center. He is currently a partner in a cybersecurity consulting firm, adjunct faculty at The Citadel Military College, and chief content creator of the successful YouTube channel SimplyCyber where he aims to bring Cybersecurity Education At Scale. Dr. Auger holds a PhD in cyber operations and two Masters in Computer Science and Information Assurance.

The FIN7 ransomware group has been sending malware laden BadUSB devices to targets in the United States.

On this episode Eric shows us how to bypass Microsoft Windows Defender with DumpStack log and Mimikatz.  

This episode is meant to spark ideas, stimulate thoughts and hopefully leave you with more questions than answers As you prepare your company for an incident or ransomware event. 

We've all been there, vendors overpromising, underdelivering and tucking tail to run when confronted. This episode is meant to peel back how we deal with all vendors, and hopefully you can pick up a thing or three.

On today's episode Allan Liska of Recorded Future digs into the Khonsari Ransomware sample Eric submitted to Hybrid Analysis.

Matt Lee has dedicated the last 10 years to raising the security tide in the SMB market. His efforts have served in every capacity in a growing MSP that grew to support 20,000 endpoints. His leadership around technology direction and security/compliance protected and elevated over 17,000 people in Small to midsize businesses in five states. He has since taken on a new role as a force multiplier under Brad Fugitt as the Senior director of Security and Compliance at Pax8. He is driving the external thought leadership to empower MSPs to continue to grow in their security knowledge and operability. He lives to ensure his children maintain the same quality of life we do around technology, which is imperiled daily by threat actors.  

On today's episode we are joined by Jonathan Scott, James Donaldson of CopperheadOS and Haseeb Awan of EFANI to discuss mobile security.

As part of the Canadian Intelligence apparatus, Maxime worked in positions ranging from development of cyber defense technologies through Counter Computer Network Exploitation and Counter Intelligence. Maxime led the creation of an advanced cyber security program for the Canadian government and received several Director’s awards for his service.

After leaving the government, Maxime provided direct help to private and public organizations in matters of cyber defense and worked for CrowdStrike, Google and Google X. Maxime left Google X - where he was a founding member of Chronicle Security - in 2018 to found LimaCharlie.

This video episode is available on Spotify and YouTube.

On today's episode;

These will be quick. We dive into questions and articles submitted from listeners and/or evolving incidents.

These will be quick. We dive into questions and articles submitted from listeners and/or evolving incidents.

After a one week hiatus Eric and Shiva are back discussing what needs to be done to bring meaningful and lasting change to our security posture. 

Articles referenced are listed below.

Vince Crisler has more than 20 years of IT and cyber security leadership within the Department of Defense, federal civilian government, and private sector. He is the CEO and Founder of Dark Cubed, a cyber security product company focused on innovative solutions for small and midsize companies. He is on the IT Security Executive Council for CompTIA, the Executive Committee for the CompTIA ISAO, and a member of Embry-Riddle Aeronautical University's Worldwide Industry Advisory Board.

Prior to founding Dark Cubed, Co-Founded Fortalice Solutions, an innovative cyber security consulting company that supported Fortune 500 and Government Agencies.  Crisler previously supported the Department of Homeland Security (DHS) and Sandia National Laboratories in the development of cyber security protection programs to defend the networks of Federal Departments and Agencies, as well as those belonging to critical infrastructure and key resources (CI/KR) owners and operators. Crisler was the primary author for the five-year technical vision for the National Cybersecurity Protection System, a $3B cyber security program within DHS.  He was also a co-author of the DHS Enhanced Cyber Services (ECS) Program, establishing a critical cyber security information-sharing program, which was formally announced in Executive Order (EO) 13636, Improving Critical Infrastructure Cybersecurity.  

Crisler also served as the CISO for the White House's Executive Office of the President and was responsible for the creation of the first ever cyber security operations center to protect White House networks.  

Prior to the White House, Crisler served in the United States Air Force in organizations to include the White House Communications Agency, the National Military Command Center in the Pentagon, and Ramstein Air Base in Germany.  Crisler earned a Bachelor of Science in Computer and Information Science from the Ohio State University and a Master of Science in Management from Embry Riddle Aeronautical University.  He currently lives in the Washington D.C. area.

It would appear Allstate has decided to block RMM platforms from Datto, Ninja and Kaseya effective September 27th without any clear indication as to why.

These will be quick. We dive into questions and articles submitted from listeners and/or evolving incidents.

These will be quick. We dive into questions and articles submitted from listeners and/or evolving incidents.

Joseph Brunsman joined the cyber and professionally liability realm in 2015 after serving as a Lieutenant in the United States Navy, working as an Anti-Terrorism / Force Protection Officer responsible for a billion dollars of equipment and 280+ military personnel. Prior to that he served tours as a Combat Information Center Officer and an Electronic Warfare Officer. During his enlisted time he was an Information Systems Technician dealing with Unix database management and network security.

Joseph is a 2003 graduate of New Mexico Military Institute and a 2010 graduate of the U.S. Naval Academy in Annapolis, MD where he obtained a degree in Systems Engineering with a focus on robotics system interoperability. He is the resident expert in cyber law, insurance and compliance—writing 2 consecutive books on the subject.  He enjoys Jiu-Jitsu, powerlifting, business theory, and biohacking.

On todays episode we're joined by John Wetzel the Director of Intelligence Solutions at Recorded Future and we discuss:

These will be quick. We dive into questions and articles submitted from listeners and/or evolving incidents.

These will be quick. We dive into questions and articles submitted from listeners and/or evolving incidents.

These will be quick. We dive into questions and articles submitted from listeners and/or evolving incidents.

These will be quick. We dive into questions submitted from listeners and/or evolving incidents. 

If you are interested in CrowdStrike and/or Dark Cubed or just want to have a conversation, please feel free to get in touch with us.

Todd Kane has spent over a decade creating a management framework that has resulted in massive value for the companies he has worked with. Millions in higher margin projects/operations, millions in saved cash reducing employee turnover, and massive increases in team morale.

Todd has led groups for several of largest and high growth companies in western Canada. Experience with major businesses like EnCana, Canadian Natural Resources Ltd, WestJet, Bell Canada, Long View Systems, and Fully Managed.

His work has been recognized with numerous awards, both technical and business.

Jonathan Murchison, the founder and CEO of Blackpoint, started his career in Network Engineering and IT operations, but quickly made the switch to the quiet world of the intelligence community. He has since spent over twelve years planning, conducting, and executing high-priority national security missions.

Vince Crisler has more than 20 years of IT and cyber security leadership within the Department of Defense, federal civilian government, and private sector. He is the CEO and Founder of Dark Cubed, a cyber security product company focused on innovative solutions for small and midsize companies. He is on the IT Security Executive Council for CompTIA, the Executive Committee for the CompTIA ISAO, and a member of Embry-Riddle Aeronautical University's Worldwide Industry Advisory Board.

Prior to founding Dark Cubed, Co-Founded Fortalice Solutions, an innovative cyber security consulting company that supported Fortune 500 and Government Agencies.  Crisler previously supported the Department of Homeland Security (DHS) and Sandia National Laboratories in the development of cyber security protection programs to defend the networks of Federal Departments and Agencies, as well as those belonging to critical infrastructure and key resources (CI/KR) owners and operators. Crisler was the primary author for the five-year technical vision for the National Cybersecurity Protection System, a $3B cyber security program within DHS.  He was also a co-author of the DHS Enhanced Cyber Services (ECS) Program, establishing a critical cyber security information-sharing program, which was formally announced in Executive Order (EO) 13636, Improving Critical Infrastructure Cybersecurity.  

Crisler also served as the CISO for the White House's Executive Office of the President and was responsible for the creation of the first ever cyber security operations center to protect White House networks.  

Prior to the White House, Crisler served in the United States Air Force in organizations to include the White House Communications Agency, the National Military Command Center in the Pentagon, and Ramstein Air Base in Germany.  Crisler earned a Bachelor of Science in Computer and Information Science from the Ohio State University and a Master of Science in Management from Embry Riddle Aeronautical University.  He currently lives in the Washington D.C. area.

Executive Order, Darkside ransomware group, the Colonial pipeline debacle and CMMC.

There is no such thing as a minimum security standard. While this is not meant to be an exhaustive list of what you have to do to attain a comprehensive cybersecurity posture. It is meant to be more of a guide of what you should be doing and if you're not maybe it's time you did.

Join us as we discuss ongoing cybersecurity incidents, trends and best practices to secure everyday life.