The Security Ledger Podcasts
About
Available on
Community
73 episodes
In this episode of The Security Ledger Podcast (#257) Paul speaks with Dennis Kengo Oka, a senior principal automotive security strategist at the firm Synopsys about the growing cyber risks to automobiles as connected vehicle features proliferate in the absence of strong cybersecurity protections. The post Episode 257: Securing Software on Wheels with https://feeds.feedblitz.com/~/874573217/0/securityledgerpodcasts~Episode-Securing-Software-on-Wheels-with/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/874573214/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
Paul speaks with Gary McGraw of the Berryville Institute of Machine Learning (BIML), about the risks facing large language model machine learning and artificial intelligence, and how organizations looking to leverage artificial intelligence and LLMs can insulate themselves from those risks. The post Episode 256: Recursive Pollution? Data Feudalism? Gary McGraw On LLM Insecurity https://feeds.feedblitz.com/~/871868807/0/securityledgerpodcasts~Episode-Recursive-Pollution-Data-Feudalism-Gary-McGraw-On-LLM-Insecurity/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/871868804/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
In this episode of The Security Ledger Podcast (#255) host Paul Roberts interviews Niels Provos of Lacework about his mission to use EDM to teach people about cybersecurity. The post Episode 255: EDM, Meet CDM – Cyber Dance Music with Niels Provos https://feeds.feedblitz.com/~/864723575/0/securityledgerpodcasts~Episode-EDM-Meet-CDM-Cyber-Dance-Music-with-Niels-Provos/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/864723572/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
Security researcher and IoT hacker Dennis Giese talks about his mission to liberate robot vacuums from the control of their manufacturers, letting owners tinker with their own devices and - importantly - control the data they collect about our most intimate surroundings. The post Episode 254: Dennis Giese’s Revolutionary Robot Vacuum Liberation Movement https://feeds.feedblitz.com/~/852219122/0/securityledgerpodcasts~Episode-Dennis-Gieses-Revolutionary-Robot-Vacuum-Liberation-Movement/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/852219119/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
In this Spotlight Security Ledger podcast, Chris Petersen, the CEO and founder of RADICL, talks about his company's mission to protect small and midsized businesses serving the defense industrial base, which are increasingly in the cross-hairs of sophisticated, nation-state actors. The post Spotlight Podcast: RADICL Is Coming To The Rescue Of Defense SMBs https://feeds.feedblitz.com/~/836950199/0/securityledgerpodcasts~Spotlight-Podcast-Chris-Petersen-CEO-Of-RADICL-On-Protecting-Defense-Industry-SMBs-Spotlight-Podcast-RADICL-Is-Coming-To-The-Rescue-Of-Defense-SMBs/ first appeared on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/836950196/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
Tanya Janca of the group We Hack Purple, talks with Security Ledger host Paul Roberts about the biggest security mistakes that DevSecOps teams make, and application development’s “tragedy of the commons,” as more and more development teams lean on open source code. The post Episode 253: DevSecOps Worst Practices With Tanya Janca of We Hack Purple https://feeds.feedblitz.com/~/797526818/0/securityledgerpodcasts~Episode-DevSecOps-Worst-Practices-With-Tanya-Janca-of-We-Hack-Purple/ first appeared on The Security Ledger with Paul F. Roberts https://securityledger.com. The post Episode 253: DevSecOps Worst Practices With Tanya Janca of We Hack Purple https://feeds.feedblitz.com/~/797526818/0/securityledgerpodcasts~Episode-DevSecOps-Worst-Practices-With-Tanya-Janca-of-We-Hack-Purple/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/797526815/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
In this episode of the podcast, host Paul Roberts speaks with Colin O'Flynn, CTO and founder of the firm NewAE about his work to patch shoddy software on his home's electric oven - and the bigger questions about owners rights to fix, tinker with or replace the software that powers their connected stuff. The post Black Hat: Colin O’Flynn On Hacking An Oven To Make It Stop Lying https://feeds.feedblitz.com/~/770841530/0/securityledgerpodcasts~Black-Hat-Colin-OFlynn-On-Hacking-An-Oven-To-Make-It-Stop-Lying/ first appeared on The Security Ledger with Paul F. Roberts https://securityledger.com. The post Black Hat: Colin O’Flynn On Hacking An Oven To Make It Stop Lying https://feeds.feedblitz.com/~/770841530/0/securityledgerpodcasts~Black-Hat-Colin-OFlynn-On-Hacking-An-Oven-To-Make-It-Stop-Lying/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/770841527/0/securityledgerpodcasts.wav RELATED STORIES __ __
In this Spotlight podcast interview, David Monnier of Team Cymru talks about the evolution of the threat intelligence into actionable and target specific “threat reconnaissance.” The post Spotlight Podcast: Are you ready for Threat Reconnaissance? https://feeds.feedblitz.com/~/763146149/0/securityledgerpodcasts~Spotlight-Podcast-Are-you-ready-for-Threat-Reconnaissance/ first appeared on The Security Ledger with Paul F. Roberts https://securityledger.com. The post Spotlight Podcast: Are you ready for Threat Reconnaissance? https://feeds.feedblitz.com/~/763146149/0/securityledgerpodcasts~Spotlight-Podcast-Are-you-ready-for-Threat-Reconnaissance/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/763146146/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
Host Paul Roberts speaks with Boyd Multerer, the CEO and founder of Kry10, which has made a secure OS for the Internet of Things. The post Episode 251: Kry10 CEO Boyd Multerer on building a secure OS for the IoT https://feeds.feedblitz.com/~/749569451/0/securityledgerpodcasts~Episode-Kry-CEO-Boyd-Multerer-on-building-a-secure-OS-for-the-IoT/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/749569448/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
In this episode of the podcast, I speak with Window Snyder, the founder and CEO of Thistle Technologies about the (many) security challenges facing Internet of Things (IoT) devices and her idea for making things better: Thistle’s platform for secure development and deployment of IoT devices. The post Episode 250: Window Snyder of Thistle on Making IoT Security Easy https://feeds.feedblitz.com/~/740466917/0/securityledgerpodcasts~Episode-Window-Snyder-of-Thistle-on-Making-IoT-Security-Easy/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/740466914/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
In this Spotlight episode of the Security Ledger podcast, I interview Richard Bird, the CSO of the firm Traceable AI about the challenge of securing application programming interfaces (APIs), which are increasingly being abused to steal sensitive data. The post Spotlight: Traceable CSO Richard Bird on Securing the API Economy https://feeds.feedblitz.com/~/733829018/0/securityledgerpodcasts~Spotlight-Traceable-CSO-Richard-Bird-on-Securing-the-API-Economy/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/733829015/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
Paul speaks with Steve Orrin, the Federal CTO at Intel Corp about representing Intel and its technologies to Uncle Sam and the impact of the CHIPS Act a massive new federal investment in semiconductors. The post Episode 249: Intel Federal CTO Steve Orrin on the CHIPS Act and Supply Chain Security https://feeds.feedblitz.com/~/732475739/0/securityledgerpodcasts~Episode-Intel-Federal-CTO-Steve-Orrin-on-the-CHIPS-Act-and-Supply-Chain-Security/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/732475736/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
In this Spotlight episode of the Security Ledger podcast, I interview Itsik Kesler, the CTO of the threat intelligence firm Kela about the evolution of threat intelligence and findings from the company’s latest State of Cybercrime Threat Intelligence report. The post Spotlight: Making the Most of Cyber Threat Intelligence with Itsik Kesler of KELA https://feeds.feedblitz.com/~/727483178/0/securityledgerpodcasts~Spotlight-Making-the-Most-of-Cyber-Threat-Intelligence-with-Itsik-Kesler-of-KELA/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/727483175/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
In this episode of the Security Ledger Podcast, Paul speaks with Jill Moné-Corallo, the Director of Product Security Engineering Response at GitHub. Jill talks about her journey from a college stint working at Apple’s Genius bar, to the information security space - first at product security at Apple and now at GitHub, a massive development platform that is increasingly in the crosshairs of sophisticated cyber criminals and nation-state actors. The post Episode 248: GitHub’s Jill Moné-Corallo on Product Security And Supply Chain Threats https://feeds.feedblitz.com/~/723575006/0/securityledgerpodcasts~Episode-GitHub%e2%80%99s-Jill-Mon%c3%a9Corallo-on-Product-Security-And-Supply-Chain-Threats/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/723575004/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
Paul speaks with Caleb Sima, the CSO of the online trading platform Robinhood, about his journey from teenage cybersecurity phenom and web security pioneer, to successful entrepreneur to an executive in the trenches of protecting high value financial services firms from cyberattacks. The post Episode 247: Into the AppSec Trenches with Robinhood CSO Caleb Sima https://feeds.feedblitz.com/~/722682072/0/securityledgerpodcasts~Episode-Into-the-AppSec-Trenches-with-Robinhood-CSO-Caleb-Sima/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/722682068/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
In this Expert Insight, Jeffrey Wheatman, the Cyber Risk Evangelist at Black Kite, says that CISOs need to shift their approach: becoming more proactive in working to preventing ransomware attacks. And he provides some steps CISOs can take to ensure their companies stay safe. The post What CISOs Can Do to Win the Ransomware Game https://feeds.feedblitz.com/~/721847150/0/securityledgerpodcasts~What-CISOs-Can-Do-to-Win-the-Ransomware-Game/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. RELATED STORIES __ __
I interview Jack Naglieri, CEO of Panther about the failures of the current SIEM technology and the need for what Naglieri terms “detection engineers." The post Spotlight: SIEMs suck. Panther is out to change that. https://feeds.feedblitz.com/~/720756810/0/securityledgerpodcasts~Spotlight-SIEMs-suck-Panther-is-out-to-change-that/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/720756808/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
Getting a start-up off the ground isn’t easy in the best of times. Now imagine doing it just as a global pandemic is shutting down society...and the economy. Our guest this week, Josh McCarthy of Revelstoke Security, did it and lived to tell the tale. The post Episode 246: SOARing out of Lockdown with Revelstoke Security https://feeds.feedblitz.com/~/719975402/0/securityledgerpodcasts~Episode-SOARing-out-of-Lockdown-with-Revelstoke-Security/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/719975400/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
Six decades in, password use has tipped into the absurd, while two-factor authentication is showing its limits. We talk with Matt Salisbury of Honeybadger HQ, which is using AI and machine learning to re-imagine knowledge-based authentication. The post Episode 245: How AI is remaking knowledge-based authentication https://feeds.feedblitz.com/~/718086442/0/securityledgerpodcasts~Episode-How-AI-is-remaking-knowledgebased-authentication/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/718086440/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
In this episode of the Security Ledger podcast, brought to you by ReversingLabs, we interview Danny Adamitis (@dadamitis) of Black Lotus Labs about the discovery of ZuoRAT, malware that targets SOHO routers – and is outfitted with APT-style tools for attacking the devices connected to home networks. As always, you can check our full conversation in our latest Security Ledger podcast at Blubrry. You can also listen to it on iTunes and Spotify. Or, check us out on Google Podcasts, Stitcher, Radio Public and more. Also: if you enjoy this podcast, consider signing up to receive it in your email. Just point your web browser to securityledger.com/subscribe to get notified whenever a new podcast is posted. [MP3] Cyber attacks on small office and home office (or SOHO) routers aren’t new. Back in 2016, the malware known as Mirai made headlines across the world by infecting hundreds of thousands of weekly protected SOHO routers and DVR devices and stringing them into […] The post Episode 244: ZuoRAT brings APT Tactics to Home Networks https://feeds.feedblitz.com/~/715650802/0/securityledgerpodcasts~Episode-ZuoRAT-brings-APT-Tactics-to-Home-Networks/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/715650800/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
Paul talks with Chris Hoff the Chief Secure Technology Officer at LastPass about the CSTO role and the security implications of “software eating the world.” The post Episode 243: The CSTO is a thing- a conversation with Chris Hoff of LastPass https://feeds.feedblitz.com/~/711605425/0/securityledgerpodcasts~Episode-An-Interview-with-Chris-Hoff-Chief-Secure-Technology-Officer-at-LastPass-Episode-The-CSTO-is-a-thing-a-conversation-with-Chris-Hoff-of-LastPass/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/711605421/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
In our latest podcast, Paul caught up with Sick Codes (@sickcodes) to talk about his now-legendary presentation at the DEF CON Conference in Las Vegas, in which he demonstrated a hack that ran the Doom first person shooter on a John Deere 4240 touch-screen monitor. The post Episode 242: Hacking the Farm (and John Deere) with Sick Codes https://feeds.feedblitz.com/~/709716304/0/securityledgerpodcasts~Episode-Hacking-the-Farm-and-John-Deere-with-Sick-Codes/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/709716302/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
We speak with Mikko Hyppönen on the sidelines of the DEF CON Conference in Las Vegas to talk about his new book, “If its Smart it Vulnerable." The post Episode 241: If Its Smart, Its Vulnerable a Conversation with Mikko Hyppönen https://feeds.feedblitz.com/~/706852786/0/securityledgerpodcasts~Episode-If-Its-Smart-Its-Vulnerable-a-Conversation-with-Mikko-Hypp%c3%b6nen/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/706851810/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
In this episode of the podcast (#240) Lauren Zabierek, the Executive Director for the Cyber Project at the Belfer Center at Harvard’s Kennedy School joins us to talk about the need for a re-think of national cybersecurity preparedness, as major hacks like the attack on Colonial Pipeline put the focus on resilience and public safety. The post Episode 240: As Stakes Of Attacks Grow, Can Cyber Policy “Shift Right”? https://feeds.feedblitz.com/~/703722932/0/securityledgerpodcasts~Episode-As-Stakes-Of-Attacks-Grow-Can-Cyber-Policy-%e2%80%9cShift-Right%e2%80%9d/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/703722930/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
An “everywhere,” hybrid workforce is no longer concept, but reality. But securing hybrid workplaces requires big changes to how IT security gets done, argues Jason Lee, the CISO of Zoom in this Expert Insight. The post Hybrid Work Is Here: Is Your Security Strategy Ready for It? https://feeds.feedblitz.com/~/703230582/0/securityledgerpodcasts~Hybrid-Work-Is-Here-Is-Your-Security-Strategy-Ready-for-It/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. RELATED STORIES __ __
Naomi Yusupov, a Chinese Intelligence Analyst at the threat intelligence firm CyberSixGill talks to host Paul Roberts about that company’s new report: The Bear and the Dragon: Analyzing the Russian and Chinese Cybercriminal Communities. The post Episode 239: Power shifts from Russia to China in the Cyber Underground https://feeds.feedblitz.com/~/699846072/0/securityledgerpodcasts~Episode-Power-shifts-from-Russia-to-China-in-the-Cyber-Underground/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/699846070/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
In this episode of the podcast (#238) we speak with Daniel Brodie, the CTO at the firm Cynerio. about his firm’s discovery of a string of critical security flaws in an autonomous medical robot, TUG, that is already deployed in hundreds of clinical settings and the growing issue of medical device insecurity and cyber risks to healthcare providers. The post Episode 238: Robots Are The Next Frontier In Healthcare Cyber Risk https://feeds.feedblitz.com/~/697607242/0/securityledgerpodcasts~Episode-Robots-Are-The-Next-Frontier-In-Healthcare-Cyber-Risk/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/697607240/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
The hack of Beanstalk is just the latest major compromise of a decentralized finance (DeFi) platform. In this podcast, Jennifer Fernick of NCC Group joins me to talk about why DeFi’s security woes are much bigger than Beanstalk. The post Episode 237: Jacked on the Beanstalk – DeFi’s Security Debt Runs Wide, Deep https://feeds.feedblitz.com/~/691937244/0/securityledgerpodcasts~Episode-Jacked-on-the-Beanstalk-DeFi%e2%80%99s-Security-Debt-Runs-Wide-Deep/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/691937242/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
we sit down with Christian Sorenson, the former lead of the international cyber warfare team at US Cyber Command and CEO of cybersecurity firm, SightGain, to talk about what we’ve learned so far from Russia’s war in Ukraine, and what may be coming next. The post Episode 236: Cyberwar Takes A Back Seat In Ukraine (For Now) https://feeds.feedblitz.com/~/684880018/0/securityledgerpodcasts~Episode-Cyberwar-Takes-A-Back-Seat-In-Ukraine-For-Now/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. * Click the icon below to listen. https://feeds.feedblitz.com/-/684880016/0/securityledgerpodcasts.mp3 RELATED STORIES __ __
Seven in 10 SOC analysts say they are “burned out.” Six in 10 plan to leave their job “in the next year.” Tines CEO Eoin Hinchy says https://feeds.feedblitz.com/-/41936664/0/securityledgerpodcasts-code automation may be a way to reduce the burhttps://feeds.feedblitz.com/-/41936664/0/securityledgerpodcastsut and retain top talent. The post How to Bring the Power of No-Code Security Automation to Your Team in 2022 https://securityledger.com/2022/03/how-to-bring-the-power-of-https://feeds.feedblitz.com/-/41936664/0/securityledgerpodcasts-code-security-automation-to-your-team-in-2022/ appeared first on The Security Ledger with Paul F. Roberts https://securityledger.com. RELATED STORIES __ __
