Podcasts about cyberbit

The LockBit ransomware gang has been hacked. Google researchers identify a new infostealer called Lostkeys. SonicWall is urging customers to patch three critical device vulnerabilities. Apple patches a critical remote code execution flaw. Cisco patches 35 vulnerabilities across multiple products. Iranian hackers cloned a German modeling agency's website to spy on Iranian dissidents. Researchers bypass SentinelOne's EDR protection. Education tech firm PowerSchool faces renewed extortion. CrowdStrike leans into AI amidst layoffs. Our guest is Caleb Barlow, CEO of Cyberbit, discussing the mixed messages of the cyber skills gaps. Honoring the legacy of Joseph Nye. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Today we are joined by Caleb Barlow, CEO of Cyberbit, who is discussing the mixed messages of the cyber skills gaps. Selected Reading LockBit ransomware gang hacked, victim negotiations exposed (Bleeping Computer) Russian state-linked Coldriver spies add new malware to operation (The Record) Fake AI Tools Push New Noodlophile Stealer Through Facebook Ads (Hackread) SonicWall urges admins to patch VPN flaw exploited in attacks (Bleeping Computer) Researchers Details macOS Remote Code Execution Vulnerability - CVE-2024-44236 (Cyber Security News) Cisco IOS XE Wireless Controllers Vulnerability Enables Full Device Control for Attackers (Cyber Security News) Cisco Patches 35 Vulnerabilities Across Several Products (SecurityWeek) Iranian Hackers Impersonate as Model Agency to Attack Victims (Cyber Security News) Hacker Finds New Technique to Bypass SentinelOne EDR Solution (Infosecurity Magazine) CrowdStrike trims workforce by 5 percent, aims to rely on AI (The Register) Despite ransom payment, PowerSchool hacker now extorting individual school districts (The Record)  Joseph Nye, Harvard professor, developer of “soft power” theory, and an architect of modern international relations, dies at 88 (Harvard University)  Nye Lauded for Cybersecurity Leadership (The Belfer Center for Science and International Affairs at Harvard University) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Ascension healthcare shuts down systems following a cybersecurity event. Updates from RSA Conference. The FDA recalls an insulin pump app. Polish officials blame Russia for recent cyber attacks. IntelBroker claims to have compromised a pair of UK banks. New Mexico's top cop accuses Meta of failing to protect kids. British Columbia reports "sophisticated cybersecurity incidents" on government networks. Researchers uncover a vulnerability in UPS software affecting critical infrastructure. Zscaler investigates a claimed data breach. On the Learning Layer, host Sam Meisenberg and N2K's Urban Alliance Intern, David Nguyen, discuss David's AZ-900 exam experience. The Library of Congress stands strong. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Caleb Barlow, CEO at Cyberbit, is our Man on the Street today. N2K's Brandon Karpf caught up with Caleb to talk about the 2024 RSA Conference.  Learning Layer On our bonus Learning Layer segment, host Sam Meisenberg and N2K's Urban Alliance Intern, David Nguyen, discuss David's AZ-900 exam experience, including some remote proctoring issues. David gives tips and strategies for those gearing up for their own exam.  Selected Reading Ascension healthcare takes systems offline after cyberattack (Bleeping Computer) With nation-state threats in mind, nearly 70 software firms agree to Secure by Design pledge (The Record) CISA starts CVE "vulnrichment" program (Help Net Security) Cyber director sees potential for a new era in White House office (The Record) FDA recalls defective iOS app that injured over 200 insulin pump users (The Verge) Poland says it was targeted by Russian military intelligence hackers (The Record) IntelBroker Hacker Leaks Alleged HSBC & Barclays Bank Data (Hack Read) Undercover operation nets arrests as New Mexico's top prosecutor blames Meta for online predators (AP News) B.C. government hit by 'sophisticated cybersecurity incidents' (Vancouver Sun) Cyble detects critical vulnerabilities in CyberPower PowerPanel Business Software used in critical infrastructure (Industrial Cyber) Zscaler is investigating data breach claims (Industrial Cyber) Thwarted cyberattack targeted Library of Congress in tandem with October British Library breach (Nextgov/FCW)  Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc.

A Texas operator of rehab facilities faces multiple lawsuits after a ransomware attack. Microsoft warns Android developers to steer clear of the Dirty Stream. The Feds warn of North Korean social engineering. A flaw in the R programming language has been patched. Zloader borrows stealthiness from ZeuS. The GAO highlights gaps in NASA's cybersecurity measures. Indonesia is a spyware hot-spot. Germany summons a top Russian envoy to address cyber-attacks linked to Russian military intelligence. An Israeli PI is arrested in London following allegations of a cyberespionage campaign. In our Industry Voices segment, Allison Ritter, Senior Product Manager from Cyberbit shares her career journey, off the bench and onto the court. A cybersecurity consultant allegedly attempts to extort a one-point-five million dollar exit package.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest On our Industry Voices segment, Allison Ritter, Senior Product Manager from Cyberbit, shares her cybersecurity journey: “Off the bench and onto the court.” Selected Reading Rehab Hospital Chain Hack Affects 101,000; Facing 6 Lawsuits (GovInfo Security) Microsoft Warns of 'Dirty Stream' Vulnerability in Popular Android Apps (SecurityWeek) U.S. Govt Warns of Massive Social Engineering Attack from North Korean Hackers (GB Hackers) R-bitrary Code Execution: Vulnerability in R's Deserialization (HiddenLayer) ZLoader Malware adds Zeus's anti-analysis feature (Security Affairs) GAO report indicates that NASA should update spacecraft acquisition policies and standards for cybersecurity (Industrial Cyber)  Indonesia is a Spyware Haven, Amnesty International Finds (InfoSecurity Magazine) Germany summons Russian envoy over 2023 cyber-attacks (The Guardian) Israeli private eye arrested in London over alleged hacking for US firm (Reuters) Cybersecurity consultant arrested after allegedly extorting IT firm (Bleeping Computer)  Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc.

A major Phishing-as-a-service operation gets taken down by international law enforcement. US election officials are warned of nation-state influence operations. The house votes to limit the feds' purchase of citizens personal data. A Michigan healthcare provider suffered a ransomware attack. Critical infrastructure providers struggle to trust cybersecurity tools. Cloudflare reports on DDoS. Kaspersky uncovers new Android banking malware. Kubernetes cryptominers leverage previously patched flaws. The Massachusetts Attorney General emphasizes the responsible use of AI. Our guest Caleb Barlow, CEO of Cyberbit, joins us to talk about badge swipe fraud as more are returning to the office. Colorado passes a law to keep big tech out of our heads.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Guest and podcast partner Caleb Barlow, CEO of Cyberbit, joins us to talk about badge swipe fraud as more are returning to the office. Are your employees faking their badge swipes? Selected Reading LabHost phishing service with 40,000 domains disrupted, 37 arrested (Bleeping Computer) US Election Officials Told to Prepare for Nation-State Influence Campa (Infosecurity Magazine) House votes in favor of curtailing government transactions with data brokers (The Record) 180k Impacted by Data Breach at Michigan Healthcare Organization (SecurityWeek) Trust in Cyber Takes a Knock as CNI Budgets Flatline (Infosecurity Magazine) DDoS threat report for 2024 Q1 (Cloudflare)  SoumniBot malware exploits Android bugs to evade detection (Bleeping Computer) Hackers hijack OpenMetadata apps in Kubernetes cryptomining attacks (Bleeping Computer) Massachusetts official warns AI systems subject to consumer protection, anti-bias laws (AP News) Your Brain Waves Are Up for Sale. A New Law Wants to Change That (NY Times) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © 2023 N2K Networks, Inc.

Might there be motion from Congress on data privacy legislation? Maryland passes a pair of privacy bills. A database allegedly from the EPA shows up on Russian cybercrime forums. HHS issues an alert for the Healthcare and Public Health sectors. CISA gears up for their Cyber Storm. A leading UK veterinary service provider suffers a cyber incident. A hardcoded backdoor is discovered in deprecated Network Attached Storage devices. NSA's new cybersecurity director takes the reins. Guest Caleb Barlow, CEO of Cyberbit, shares his insights on the evolving role of the CISO. The bull market for Zero-days. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Guest Caleb Barlow, CEO of Cyberbit, discussing how we need to think about the role and position of the CISO. Selected Reading A Breakthrough Online Privacy Proposal Hits Congress (WIRED) Maryland Passes 2 Major Privacy Bills, Despite Tech Industry Pushback (The New York Times) US Environmental Protection Agency Allegedly Hacked, 8.5M User Data Leaked (HACKREAD) U.S. Department of Health warns of attacks against IT help desks (Security Affairs) CISA's ‘Cyber Storm' will help it update National Cyber Incident Response Plan (Federal News Network) Veterinary Giant CVS Reveals Major Cyber-Attack (Infosecurity Magazine) Over 92,000 exposed D-Link NAS devices have a backdoor account (Bleeping Computer) NSA Appoints Dave Luber as Cybersecurity Director (SecurityWeek) Price of zero-day exploits rises as companies harden products against hackers (TechCrunch)  Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © 2023 N2K Networks, Inc.

Francesco Mancini, Country Manager di CyberBit, è il Protagonista dell'IT che dialoga con Primo Bonacina.Nato in Puglia, ma emigrato al nord Italia, Francesco è un amante dei viaggi in solitaria, nella natura... Da pochi mesi è Country Manager di CyberBit, un'azienda iseaeliana nata nel 2000 che si occupa di sicurezza informatica. Con Primo parla dell'importanza di questo tema ma anche di quanto sia fondamentale la formazione. Buon ascolto!

Karl interviewed Stephen Thomas from Asigra. Thomas oversees global revenue and shapes the sales and customer success strategy. He is an accomplished executive With over 25 years of experience in building and guiding sales and customer success teams within the rapidly expanding sectors of Enterprise SaaS. With over 25 years of experience in building and guiding sales and customer success teams within the rapidly expanding sectors of Enterprise SaaS (Cybersecurity and Data Protection), Stephen Thomas is an accomplished executive. Prior to taking on his current role at Asigra, where he oversees global revenue and shapes the sales and customer success strategy, he was the Chief Revenue Officer at RiskOptics (formerly Reciprocity). Stephen's leadership experience extends to companies like Arcserve, Armor, Cyberbit, and Symantec.  A graduate of the University of Texas at Austin, he has further honed his skills as a Certified LEANSTACK Coach, CIPP, and CISSP. Asigra is launching a new SaaS management tool in April, but partners can join their beta program now and receive a $2,500 service credit to work with. The product site is https://saasassured.com. Look for the Insider Circle link to join their Beta program. You can join now, so you'll be set for the April 1st launch. Many partners are missing out on revenue by not offering their clients the ability to back up all their SAAS applications (Hubspot, QuickBooks, etc.). Clients know they need to do this. they might even assume you're doing it. And if you're not, someone else might be. That means another vendor is already approved to be paid by them for IT services. That mean's there's another IT consultant in your client's office! Transparency note: Asigra was a sponsor for the 2023 SMB Online Conference. — Our upcoming events: AUSTIN TX – MASTERMIND LIVE (March 28-29th) http://bit.ly/kernanmastermind https://kernanconsulting-mastermind.mykajabi.com/mastermind-event Our Social Links: https://www.linkedin.com/in/james-kernan-varcoach/ https://www.facebook.com/james.kernan https://www.facebook.com/karlpalachuk/ https://www.linkedin.com/in/karlpalachuk/ https://www.linkedin.com/in/amybabinchak/ https://www.facebook.com/amy.babinchak/

Solarwinds seeks dismissal of SEC allegations. Urgent calls to implement fixes for Jenkins open-source software automation tools. A New Jersey township closes schools and offices after a cyberattack. The Centre for Cybersecurity Belgium warns of a critical vulnerability in GitLab. The FBI arrests a notorious swatter. HHS releases cybersecurity performance goals. The feds remind organizations to preserve online messaging. Mercedes-Benz exposes data after an authentication token was left unsecured. A dark web drug dealer pleads guilty. Our guest is Caleb Barlow from Cyberbit, discussing hacker celebrities and why yours truly did not make the list. And threats of airport terrorism on public WiFi is no joking matter. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Podcast partner Caleb Barlow, CEO of Cyberbit, discusses hacker celebrities and why our own Dave Bittner did not make the list. Selected Reading SolarWinds Seeks Dismissal of ‘Unfounded' SEC Cybersecurity Suit  (Bloomberg Law) Fix Available for Critical Jenkins Flaw That Leads to RCE Attacks (Security Boulevard) Freehold Township district: All schools and offices closed Monday due to cybersecurity incident (News12 New Jersey) WARNING: CRITICAL ARBITRARY FILE WRITE VULNERABILITY IN GITLAB CE/EE, PATCH IMMEDIATELY! (Centre for Cybersecurity Belgium) Police Arrest Teen Said to Be Linked to Hundreds of Swatting Attacks (WIRED) HHS debuts voluntary cybersecurity performance goals to enhance healthcare sector resilience (Industrial Cyber) Don't Delete Slack or Signal Chats, US Agencies Warn Companies (Bloomberg Law) How a mistakenly published password exposed Mercedes-Benz source code (TechCrunch) Dark Web Drugs Vendor Forfeits $150m After Guilty Plea (Infosecurity Magazine) ‘On My Way to Blow Up the Plane': Teen Faces Huge Fine After Joke Leads to Fighter Jets Scrambling (Gizmodo) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © 2023 N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Caleb Barlow from Cyberbit is talking with Dave Bittner and Ben Yelin about a swatting incident that got out of control after a Danvers police officer accidentally shot a gun on the floor of a private school. While this show covers legal topics, and Ben is a lawyer, the views expressed do not constitute legal advice. For official legal advice on any of the topics we cover, please contact your attorney.  Links to stories: Video shows Danvers police officer accidentally firing gun in St. John's Prep shooting scare Police shot gun during hoax school shooting at St. John's: Here's what happened Students, staff evacuate St. John's Prep after 'swatting' incident St. John's Prep says police, counselors and comfort dogs will be on campus when classes resume on Wednesday Caveat Briefing A companion weekly newsletter is available CyberWire Pro members on the CyberWire's website. If you are a member, make sure you subscribe to receive our weekly wrap-up of privacy, policy, and research news, focused on incidents, techniques, tips, compliance, rights, trends, threats, policy, and influence ops delivered to you inbox each Thursday. Got a question you'd like us to answer on our show? You can send your audio file to caveat@thecyberwire.com. Hope to hear from you. Learn more about your ad choices. Visit megaphone.fm/adchoices

A zero-click exploit affects iPhones belonging to Kaspersky employees. A GRU cyber campaign incorporates novel malware. The Indian government targets Apple over hacking attempts. Microsoft disables App Installer. Australian courts' AV is compromised. A BlackBasta decryptor is released. Cyber Toufan claims attacks against Israeli targets. Patients in Oklahoma face online extortion. LoanCare customers' data is at risk. Google settles a private browsing lawsuit. Barracuda patches a zero-day. That Chinese spy balloon was making a local call. And then Caleb Barlow, a friend of our show, shares password security tips you should know.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Caleb Barlow, CEO of Cyberbit, joins us today to share helpful tips to remember those passwords.  Selected Reading 4-year campaign backdoored iPhones using possibly the most advanced exploit ever (Ars Technica)  New malware found in analysis of Russian hacks on Ukraine, Poland (The Record) Russian Military Intelligence Blamed for Blitzkrieg Hacks (GovInfo Security) India targets Apple over its phone hacking notifications (Washington Post) Microsoft disables App Installer after observing financially motivated threat actor activity (Cybernews)  Microsoft disables App Installer after observing financially motivated threat actor activity (Cybernews)  Cyber attack on Victoria's court system may have exposed recordings of sensitive cases (ABC News)  New Black Basta decryptor exploits ransomware flaw to recover files (Bleeping Computer) Pro-Palestinian operation claims dozens of data breaches against Israeli firms (The Record) Integris Health patients get extortion emails after cyberattack (Bleeping Computer)  AG: Corewell Health reports another data breach; affects 1 million patients (The Oakland Press) LoanCare Notifying 1.3 Million of Data Breach Following Cyberattack on Parent Company (Security Week) Google settles $5 billion consumer privacy lawsuit (Reuters) Barracuda fixed a new ESG zero-day exploited by Chinese group UNC4841 (Security Affairs) U.S. intelligence officials determined the Chinese spy balloon used a U.S. internet provider to communicate (NBC News) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © 2023 N2K Networks, Inc.

What cybersecurity is and how the competition worked; what they enjoyed about it, and where they might go from here. For more information, read the article at https://www.lccc.wy.edu/news/2023-5-19_cybersecurity_tournament.aspx.

In this week's episode we welcome Yochai Corem, CEO of hyperscaling cybersecurity intelligence vendor Cyberint who shares his story, his strategy for leadership, company growth and the role of a CEO in a rapidly scaling company. KEY TAKEAWAYS FROM THIS EPISODE: How to manage without authority The importance of trusting your team Managing people whose job you've never done How to step in without undermining your team This Week's Guest - Yochai Corem Yochai Corem is the CEO of cybersecurity vendor Cyberint. Formerly the VP EMEA of Cyberbit, he has spent his career growing and scaling innovative technology companies in areas such as web intelligence, cellular localization, cyber range technology and even founded the biggest Israeli tourism site Tiuli, which he took to a successful exit. He is a BSc. graduate of Tel Aviv University and gained his MBA at Reichman University. LinkedIn: https://www.linkedin.com/in/yochaicorem/ Website: https://cyberint.com/ YOUR HOST Simon Lader is the host of The Conference Room, Co-Founder of global executive search firm Salisi Human Capital, and podcast growth consultancy Viva Podcasts. Since 1997, Simon has helped cybersecurity vendors to build highly effective teams, and since 2022 he has helped people make money from podcasting. Get to know more about Simon at: Website: https://simonlader.com/ Make Money from Podcasting: https://www.vivapodcasts.com/podcastpowerups Twitter: https://twitter.com/simonlader LinkedIn: https://www.linkedin.com/in/headhuntersimonlader The Conference Room is available on Spotify: https://open.spotify.com/show/3dd0obQSM8cYRV0HCxiuF0 Apple Podcasts: https://podcasts.apple.com/us/podcast/the-conference-room-with-simon-lader/id1517671682 Amazon Music: https://www.amazon.com/Conference-Room-Simon-Lader/dp/B0BM351RT7/ref=sr_1_1?crid=3KV0SJVZWFNNX&keywords=the+conference+room+with+simon+lader+podcast&qid=1683558717&sprefix=%2Caps%2C133&sr=8-1 iHeartRadio https://www.iheart.com/podcast/269-the-conference-room-with-s-102401058/ And everywhere else you listen to podcasts!

US Cyber Command and CISA plan to publish an analysis of the malware Holiday Bear used against SolarWinds. The DPRK is again phishing for security researchers. Exchange Server exploitation continues. Stone Panda goes after industrial data in Japan. Human error remains the principal source of cyber risk. A US Executive Order on cyber hygiene and breach disclosure nears the President’s desk. David Dufour from Webroot on the 3 types of hackers and where you’ve seen them recently. Rick Howard checks in with our guest Sharon Rosenman from Cyberbit on SOC Evolution. And gamers? Don’t cheat. For links to all of today's stories check out our CyberWire daily news brief: https://www.thecyberwire.com/newsletters/daily-briefing/10/62

This week on Technado, Adi Dar from Cyberbit came on to talk about the importance of real-world cybersecurity training and shared how his company’s cyber ranges can help. He also led a discussion about the effect Covid-19 has had on the cybersecurity workforce. Then, in the news, the team looked at an overhauled interface and CarPlay integration for Microsoft Teams, AWS targeting Microsoft’s SQL, the Salesforce acquisition of Slack, security issues facing devs in Docker, and a breathtaking zero-click exploit for iPhones.

This week on Technado, Adi Dar from Cyberbit came on to talk about the importance of real-world cybersecurity training and shared how his company’s cyber ranges can help. He also led a discussion about the effect Covid-19 has had on the cybersecurity workforce. Then, in the news, the team looked at an overhauled interface and CarPlay integration for Microsoft Teams, AWS targeting Microsoft’s SQL, the Salesforce acquisition of Slack, security issues facing devs in Docker, and a breathtaking zero-click exploit for iPhones.

This week on Technado, Adi Dar from Cyberbit came on to talk about the importance of real-world cybersecurity training and shared how his company’s cyber ranges can help. He also led a discussion about the effect Covid-19 has had on the cybersecurity workforce. Then, in the news, the team looked at an overhauled interface and CarPlay integration for Microsoft Teams, AWS targeting Microsoft’s SQL, the Salesforce acquisition of Slack, security issues facing devs in Docker, and a breathtaking zero-click exploit for iPhones.

This week on Technado, Adi Dar from Cyberbit came on to talk about the importance of real-world cybersecurity training and shared how his company’s cyber ranges can help. He also led a discussion about the effect Covid-19 has had on the cybersecurity workforce. Then, in the news, the team looked at an overhauled interface and CarPlay integration for Microsoft Teams, AWS targeting Microsoft’s SQL, the Salesforce acquisition of Slack, security issues facing devs in Docker, and a breathtaking zero-click exploit for iPhones.

This week on Technado, Adi Dar from Cyberbit came on to talk about the importance of real-world cybersecurity training and shared how his company’s cyber ranges can help. He also led a discussion about the effect Covid-19 has had on the cybersecurity workforce. Then, in the news, the team looked at an overhauled interface and CarPlay integration for Microsoft Teams, AWS targeting Microsoft’s SQL, the Salesforce acquisition of Slack, security issues facing devs in Docker, and a breathtaking zero-click exploit for iPhones.

This week on Technado, Adi Dar from Cyberbit came on to talk about the importance of real-world cybersecurity training and shared how his company’s cyber ranges can help. He also led a discussion about the effect Covid-19 has had on the cybersecurity workforce. Then, in the news, the team looked at an overhauled interface and CarPlay integration for Microsoft Teams, AWS targeting Microsoft’s SQL, the Salesforce acquisition of Slack, security issues facing devs in Docker, and a breathtaking zero-click exploit for iPhones.

Susan Green, Regional Director and Higher Education Specialist, Cyberbit and Frank Martinez, Security Analyst & Cyber Range Trainer, Miami Dade College, joined Sharon Rosenman, VP Marketing, Cyberbit, to discuss the evolving needs of cybersecurity, the deficit of qualified professionals in this particular job market, and building the academic cyber degree of the future. According to Cybersecurity Ventures, Cybersecurity is a growing job field with an estimated 3.5 million global unfilled security jobs by 2021. Martinez mentioned there were presently 13,000 open cybersecurity positions in Florida. The issue at hand: Current Cybersecurity Education and Training is not addressing the demands of real-world cybersecurity needs. Green began her presentation by introducing the building blocks of an effective cybersecurity education program. She provided an example of what a Cybersecurity Master's Program encompassed. After Green's presentation, Martinez provided an overview of the evolution of Miami Dade College, and why they opened the most advanced Cybersecurity Range in Florida: The Cybersecurity Center of the Americas. The program's goals are to produce graduates with the skillset to perform more effectively and become cybersecurity leaders and produce graduates with immediate value to employers. Martinez broke down the 4-year degree program curriculum with Cyber Range as the centerpiece. The webinar concluded with a brief Q&A session with questions directed at Martinez. Thank you for checking out this Parabellum, Cyberbit webinar podcast. For more podcasts like this one, go to https://www.cyberbit.com/resources/.

Samir Karnik, Regional Director for India West, Cyberbit, conducted a webinar on the Next-Gen SOC, led by co-presenter's Shiv Kumar Pandey, CISO, Bombay Stock Exchange (BSE), and Oren Aspir, CTO, Cyberbit. Pandey began his presentation with an overview of the BSE, its key SOC challenges, and its SOC technology landscape. Pandey then reviewed the key elements containing in the Next-Gen SOC. Aspir covered common SOC challenges in financial institutions. Most security experts have no real on-the-job experience with cyberattacks, less than 30% of organizations perform IR exercises as a routine, and less than 30% of analysts believe that they can fully utilize their security technologies. A lack of orchestration and automation is another challenge Aspir identified. Can too many tools be a problem? Aspir mentioned that many cyber analysts are experiencing vendor fatigue with too many cybersecurity tools at their disposal, but with a large percentage of these tools going unused. Another issue: financial security managers are sifting through thousands of security alerts daily. Aspir next walked through solutions to these problems, from how to approach training for SOC teams, to employing the Cyberbit Range Platform. Aspir then discussed why SOAR is becoming a key priority for the next-gen SOC. Aspir capped his portion of the webinar with how next-gen SOCs should approach endpoint detection and reviewing the benefits of Cyberbit EDR for financial institutions.

Edy Almer, VP of Products, Cyberbit, and Yoav Sagi, Infrastructure Manager and CISO, OPC Energy conducted a CISO case study webinar on cybersecurity for power plants. Sagi conducted a major portion of the webinar presentation. He outlined the main concern for power plants, which is the ability to maintain continual electricity production. Sagi also described the attack technologies, and campaign types cyber attackers deploy against power plants. The approach to OT security is threat modeling and visibility. The webinar covered the stages and elements of the cyber kill chain and how people, process and technology work within those stages. Sagi discussed how the OPC IC Security Infrastructure is integrated with Cyberbit for power plant cybersecurity. Almer detailed SCADAshield, and how it allows power plants to detect and respond to malicious attacks in their network. He also discussed SCADAshield mobile for portable ICS monitoring, and the difference between the two solutions. The webinar concluded with a Q&A session.

Tony Rowan, Cyberbit Cybersecurity Architect, provided a deep-dive into the Grizzly Steppe campaign which targeted critical infrastructure networks in North America. Rowan introduced the discussion with an overview of Cyberbit, before he launched into some examples of several attacks on OT (Operational Technology) networks over the last few years. Rowan provided a kill chain analysis of the attack, saying: "It is pretty much to be expected now to be an arm of any future warfare to include attacks on infrastructure through cyber techniques." Why are OT networks at risk? Rowan walked through several potential reasons. One of the main ones being the convergence of IT and OT networks which increases connectivity to the outside world. Other factors increasing OT risk are lack of OT monitoring and inherent design flaws. Rowan offered steps to prevent similar attacks, focusing on a segmented network architecture, obtaining more visibility into assets and network communications, creating a robust OT security policy, and establishing a means to detect both known and unknown threats.

Shree Parthasarathy, CIO & National Leader of Cyber Risk Services for Deloitte India, and Sharon Rosenman, VP Marketing for Cyberbit presented a webinar on the future of Cybersecurity training on March 11, 2019. Parthasarathy set the tone for the webinar with the statistic: there will be 3.5 million global unfulfilled cybersecurity jobs by 2021. In India, the demand for cybersecurity professionals tripled in the past 12 months, with 15,000-30,000 open cybersecurity jobs. One of the key issues in hiring is applicants lack hands on experience. Parthasarathy then discussed the current context of cyber training & awareness in Enterprises. Parthasarathy said, “Skilling, not trainings, is essential to overcome the skills gap.” Parthasarathy detailed the Deloitte Cyber Academy's simulation-based skilling approach, and Rosenman discussed the Cyber Range Platform. These discussions included cyber range examples. “And what we believe is important,” said Parthasarathy, “whether we operate in government, military, academia, industry, is to really focus on the skilling. It's going to be extremely important for all of these particular stakeholders to continue to basically move up in their skilling maturity as we take this forward.” Also covered in the webinar was the benefits of Cyber Range Training & Education. Before Parthasarathy and Rosenman opened the discussion up for a Q&A session to end the webinar.

The 2018 SAN SOC Survey recap webinar, conducted in October of 2018, was hosted by Edy Almer, VP Product at Cyberbit. The webinar covered the key survey findings and certain challenges that could be overcome through the use of an automated SOC. Almer first walked through the key survey findings. The lack of skilled staff was identified as the number one shortcoming. “Over 60% of people surveyed think that less than half of the applicants are qualified for the position for which they are applying," Almer said. Almer reviewed the top metrics tracked by SOCs and discussed ways to train cybersecurity experts. One of the challenges is most cybersecurity experts have never experienced a real attack. “Having an effective simulation of a cyberattack,” Almer said, “is something that would allow those cyber security experts to train the same way fighter pilots train.” After a review of on the possibilities of automating incident response IR, Almer discussed the third takeaway from the survey—Fusing IT and OT in the SOC. Almer wrapped up the webinar with a Q&A session.

In April of 2019, Edy Almer, VP Product at Cyberbit, conducted a webinar for aligning cybersecurity training and education with the NICE framework. Susan Green, Regional Director and Higher Education Specialist for Cyberbit, joined the webinar to discuss the objectives of the NICE framework, and the key NICE framework concepts. Green provided an overview of the NICE (National Initiative for Cybersecurity Education) framework and discussed how to leverage the NICE framework in a training program, then moved into bridging practical skills gaps by offering hands-on training using a cyber range. "This is a highly immersive, real world, scalable platform that's unlike anything else that's out there,” said Green. Almer discussed the 4 building blocks of hyper-realistic simulation for training. Almer presented the Cyberbit Range Platform and laid out examples of the type of threats a skilled cyber analyst needs to prepare for. The webinar concluded with Almer and Green taking questions from the webinar participants.

In this webinar from February 2019, Sharon Rosenman, Cyberbit's VP of Marketing was joined by Alon Nachmany, Cyberbit ICS Security Expert, and Cecil Pineda, former CISO of DFW Airport and CISO/Managing Director of Cyber Watch Systems. This webinar took participants through an overview of OT visibility and challenges, presented a CISO Case Study on managing a converged IT/OT network, provided approaches to securing IT/OT environments, presented a case study on smart building security project, and wrapped up with a Q&A session. Nachmany discussed visibility and the OT security challenge. He mentioned several examples of major attacks on ICS / OT systems from 2013-2018. Pineda discussed his prior experience working in cyber security at DFW airport and laid out the numerous systems at risk. “Think of the airport cyber security, not just the cybersecurity side, the IT and the OT side; it's almost like an orchestra, everything has to be in synch with each other," Pineda said. Pineda continued his presentation by presenting the technical challenges of multiple IT, OT and IoT Systems in a typical airport, and how he and his team addressed those challenges. Next, Rosenman and Nachmany covered Securing the Converged IT/OT Environment. Nachmany walked through several key steps, which included: Enhancing IT Security, revisiting network architecture, obtaining full OT visibility, creating a baseline for OT anomaly, and consolidating OT and IT incident management with SOA. The webinar concluded with a Q&A session with all three speakers.

The 2019 SAN SOC Survey recap webinar, conducted in July of 2019, was hosted by Oren Aspir, CTO of Cyberbit, and Yarden Altman, Cyberbit incident response expert and former SOC manager. The Webinar covered the key survey findings, changes from 2018 to 2019, how to overcome the skill shortage, and the role of SOAR in SOC optimization.The objective of the SANS SOC Survey was to provide an overview from over 350 SOC leaders on the role, performance, technologies and processes applied in SOCs, and to offer guidance to build, maintain, and mature effective SOCs.Key SOC Statistics included: 50% of SOCs have 2 – 10 FTEs, 10% say they have all their smart systems covered by the SOC, 11% of SOCs automate their performance metrics, and 94% of organizations keep IR as an internal function, in most of them (77%) IR is part of the SOC.“The main two barriers we had last year are the same…Lack of skilled staff and lack of automation and orchestration," Aspir said.Aspir discussed the issues surrounding effective training of staff, and Altman explained the 6 key elements for a successful SOAR implementation. Altman then introduced SOC 3D and shared some KPI lifts from customers who implemented SOC 3D.“We have seen a 90% reduction in response time to incidents, which translates to more incidents per shift, or less people per shift," Altman said.

Cecil Pineda, CISO & Managing Director at Cyber Watch Systems [embed: https://cyberwatchsystems.com/], joined host Jason Claybrook, head of Marketing North America, Cyberbit [embed: https://www.cyberbit.com/], and Clayton Coleman, part of Cyberbit's OT cybersecurity team, for a discussion on the role of CISO's in organizations, and the challenges of running OT systems in complex environments.Pineda began the conversation by telling Claybrook and Coleman of his time as a CISO for the DWF airport. Pineda discussed, at length, the challenges of testing cybersecurity protocols, scenarios, and patches in an environment where shutting down systems for any length of time is not an option.Another challenge Pineda pointed to in maintaining healthy OT security is many devices these systems use were not originally designed with security measure in place and are still using weak passwords and default accounts. Coleman added that manufacturers are beginning to realize these systems need to have software security built in and are starting to do include security as part of their basic architecture.Pineda next walked through several of the critical lessons he learned about managing IT and OT in a critical environmental such as the DFW airport. Educating people and generating awareness in why certain security testing needs to take place, which might impact someone else's daily routine was a key takeaway for Pineda.The discussion concluded with Pineda talking about his current role as a consultant, working with CISO's on techniques to strengthen their OT roles in complex environments. Pineda's background with the DFW Airport makes him a valued resource for other Airports, and he's consulted with several. For more podcasts like this one, go to https://www.cyberbit.com/blog/.

Podcast: The Threatpost PodcastEpisode: The Threatpost Podcast: Bitcoin Mining on OT NetworksPub date: 2018-07-31On this week's Threatpost Podcast show, we sit down with Ronen Rabinovich from Cyberbit to discuss bitcoin mining on operational technology and critical infrastructure networks.  The podcast and artwork embedded on this page are from Mike Mimoso, Chris Brook, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

This week, we welcome Ben Carr, Chief Information Security Officer at Aristocrat! Prior to Aristocrat, we was VP of Strategy for Cyberbit and North America's Technical Director for Tenable! In the Leadership and Communications segment, how to make sure your board sets a good example for your company, cybersecurity is putting customer trust at the center of competition, 6 reasons your home office is better than your company office, and more!   Full Show Notes: https://wiki.securityweekly.com/BSWEpisode120 Visit https://www.securityweekly.com/bsw for all the latest episodes!   Visit our website: https://www.securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly

This week, we welcome Ben Carr, Chief Information Security Officer at Aristocrat! Prior to Aristocrat, we was VP of Strategy for Cyberbit and North America's Technical Director for Tenable! In the Leadership and Communications segment, how to make sure your board sets a good example for your company, cybersecurity is putting customer trust at the center of competition, 6 reasons your home office is better than your company office, and more!   Full Show Notes: https://wiki.securityweekly.com/BSWEpisode120 Visit https://www.securityweekly.com/bsw for all the latest episodes!   Visit our website: https://www.securityweekly.com Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly

Ben Carr is the Chief Information Security Officer at Aristocrat. Prior to Aristocrat, we was VP of Strategy for Cyberbit and North America's Technical Director for Tenable. Prior to Tenable, he was Senior Director, Global Information Security at Visa and Head of Global Corporate IT Security at Nokia. Full Show Notes: https://wiki.securityweekly.com/BSWEpisode120

Ben Carr is the Chief Information Security Officer at Aristocrat. Prior to Aristocrat, we was VP of Strategy for Cyberbit and North America's Technical Director for Tenable. Prior to Tenable, he was Senior Director, Global Information Security at Visa and Head of Global Corporate IT Security at Nokia. Full Show Notes: https://wiki.securityweekly.com/BSWEpisode120

In Tracking Security Innovation, Microsoft to acquire GitHub for $7.5B, Thoma Bravo acquired LogRhythm for undisclosed, KnowBe4 acquired exploqii for undisclosed, Signifyd raised $100M Series D, Cyberbit raised $30M in an equity round, and more! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode87 Visit http://securityweekly.com/category/ssw for all the latest episodes!

In Tracking Security Innovation, Microsoft to acquire GitHub for $7.5B, Thoma Bravo acquired LogRhythm for undisclosed, KnowBe4 acquired exploqii for undisclosed, Signifyd raised $100M Series D, Cyberbit raised $30M in an equity round, and more! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode87 Visit http://securityweekly.com/category/ssw for all the latest episodes!

This week, Michael and Paul interview CISO of Harvard University, Christian Hamer! In our second feature interview, Michael and Paul talk with Jonathan Pritchard, Founder of Like A Mind Reader Training! In Tracking Security Innovation, Microsoft to acquire GitHub for $7.5B, Signifyd raised $100M Series D, Cyberbit raised $30M in an equity round, and more on this episode of Business Security Weekly! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode87 Visit https://www.securityweekly.com/bsw for all the latest episodes!   →Visit our website: https://www.securityweekly.com →Follow us on Twitter: https://www.twitter.com/securityweekly →Like us on Facebook: https://www.facebook.com/secweekly

This week, Michael and Paul interview CISO of Harvard University, Christian Hamer! In our second feature interview, Michael and Paul talk with Jonathan Pritchard, Founder of Like A Mind Reader Training! In Tracking Security Innovation, Microsoft to acquire GitHub for $7.5B, Signifyd raised $100M Series D, Cyberbit raised $30M in an equity round, and more on this episode of Business Security Weekly! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode87   Visit https://www.securityweekly.com/bsw for all the latest episodes!   →Visit our website: https://www.securityweekly.com →Follow us on Twitter: https://www.twitter.com/securityweekly →Like us on Facebook: https://www.facebook.com/secweekly

Ofir Barzilay works for Cyberbit, a company that manages IOT for big buildings. In this episode we talked about how to protect buildings in the future.

Ofir Barzilay works for Cyberbit, a company that manages IOT for big buildings. In this episode we talked about how to protect buildings in the future.