Podcasts about Progress Software

  • 66PODCASTS
  • 122EPISODES
  • 42mAVG DURATION
  • 1MONTHLY NEW EPISODE
  • Jan 24, 2025LATEST

POPULARITY

20172018201920202021202220232024


Best podcasts about Progress Software

Latest podcast episodes about Progress Software

TD Ameritrade Network
Progress Software (PRGS) CEO on ShareFile Acquisition, Earnings Beat

TD Ameritrade Network

Play Episode Listen Later Jan 24, 2025 7:29


Yogesh Gupta, CEO of Progress Software (PRGS), tells the enterprise software company's story. He says Progress has almost 200K customers and talks about their recent quarterly earnings beat. He also shares details about the “mission critical” services Progress provides to its customers and their recent acquisition of ShareFile for $875 million. ======== Schwab Network ======== Empowering every investor and trader, every market day. Subscribe to the Market Minute newsletter - https://schwabnetwork.com/subscribe Download the iOS app - https://apps.apple.com/us/app/schwab-network/id1460719185 Download the Amazon Fire Tv App - https://www.amazon.com/TD-Ameritrade-Network/dp/B07KRD76C7 Watch on Sling - https://watch.sling.com/1/asset/191928615bd8d47686f94682aefaa007/watch Watch on Vizio - https://www.vizio.com/en/watchfreeplus-explore Watch on DistroTV - https://www.distro.tv/live/schwab-network/ Follow us on X – https://twitter.com/schwabnetwork Follow us on Facebook – https://www.facebook.com/schwabnetwork Follow us on LinkedIn - https://www.linkedin.com/company/schwab-network/ About Schwab Network - https://schwabnetwork.com/about

RIMScast
Cyberrisk Trends in 2025 with Tod Eberle of Shadowserver

RIMScast

Play Episode Listen Later Jan 21, 2025 35:23


Welcome to RIMScast. Your host is Justin Smulison, Business Content Manager at RIMS, the Risk and Insurance Management Society.   In this episode, Justin interviews Shadowserver Foundation Alliance Director Tod Eberle about cybersecurity. Tod tells how his background as a prosecutor led to his interest in cybersecurity, how he encountered the non-profit Shadowserver Foundation, and how he left the public sector to work with them. He explains how Shadowserver provides actionable data to alert network owners and law enforcement of network vulnerabilities that need to be mitigated. He discusses trends in malware attacks, especially in ransomware. He shares his thoughts on ransomware threats of 2025 and the years to come. He provides tips on preparing your network against ransomware.   Listen to how you can harden your organization's network against malware attacks. Key Takeaways: [:01] About RIMS and RIMScast. [:14] Public registration is open for RISKWORLD 2025! RIMS wants you to Engage Today and Embrace Tomorrow in Chicago from May 4th through May 7th. Register at RIMS.org/RISKWORLD and the link in this episode's show notes. [:33] About this episode. We will discuss cybersecurity with Tod Eberle, the Alliance Director of the Shadowserver Foundation. [:55] RIMS-CRMP Workshops! On February 19th and 20th, there will be a two-day virtual workshop for the RIMS-CRMP led by former RIMS President Chris Mandel and presented by the RIMS Greater Bluegrass Chapter, the 2024 RIMS Chapter of the Year. [1:18] The next RIMS-CRMP-FED exam course will be held from February 4th through the 6th, 2025. Links to these courses can be found through the Certification page of RIMS.org and this episode's show notes. [1:34] Virtual Workshops! Chris Hansen will return on February 11th and 12th to lead the two-day course “Claims Management”. Gail Kiyomura of The Art of Risk Consulting will host the “Fundamentals of Insurance” virtual workshop on February 19th and 20th, 2025. [1:58] On February 26th and 27th, Elise Farnham of Illumine Consulting will lead “Applying and Integrating ERM”. “Managing Data for ERM” will be hosted by Pat Saporito. That course starts on March 12th, 2025. [2:20] A link to the full schedule of virtual workshops can be found on the RIMS.org/education and RIMS.org/education/online-learning pages. A link is also in this episode's show notes. [2:31] The RIMS Legislative Summit 2025 is back! It will be held on March 19th and 20th in Washington, D.C. Join RIMS for two days of Congressional meetings, networking, and advocating on behalf of the risk management community. [2:49] This event is open for RIMS members only so if you're not a member, join now! Visit RIMS.org/advocacy for registration details. [3:02] Interview! Our guest Tod Eberle is the Alliance Director of the Shadowserver Foundation, a non-profit security organization working altruistically behind the scenes to make the internet more secure for everyone. [3:15] Tod Eberle is with us to discuss the cybersecurity trends on his risk radar and the threats he wants risk professionals to be aware of as 2025 kicks into high gear. Shadowserver Alliance Director, Tod Eberle, welcome to RIMScast! [3:41] Justin saw that Shadowserver Foundation was promoted by the National Cybersecurity Alliance and he thought it would be great to have a follow-up on his appearance there. [3:54] Tod says the National Cybersecurity Alliance is a great organization. After working together with them for a year, they invited Tod to do a webinar. It was a great experience. [4:28] Tod's background is as a career prosecutor, starting as a county prosecutor in Western Pennsylvania in 1997. In 2004, Tod became a Federal Prosecutor in Pittsburgh for the U.S. Department of Justice. [5:00] In 2014, He transitioned over to the National Security and Cybercrime section in Pittsburgh. Pittsburgh was at the forefront of cyber investigations by both the U.S. Attorney's Office and the FBI. Tod wanted to be a part of that. [5:34] The Pittsburgh office has run investigations and issued indictments against Chinese Military Intelligence officers and Russian GRU officers for hacking. In 2014, Pittsburgh had the first criminal indictment of nation-state threat actors. [6:00] In that case, Chinese Military Intelligence PLA officers hacked into Pittsburgh companies Westinghouse, ALCOA, U.S. Steel, and United Steel Workers. Some forward-thinking folks at the FBI and the U.S. Attorney's Office, particularly U.S. Attorney David Hickton, focused on cyber. [6:29] That continued over the years until the present. [6:46] To begin an investigation, the FBI and U.S. Attorney's Office in Pittsburgh, need to have some aspect of an organization's criminal activity touch that district, the Western District of Pennsylvania. A national ransomware case with one victim in Pittsburgh can be investigated. [7:16] In the investigation of Russian GRU actors responsible for the destructive NotPetya malware attack, a district hospital's network was attacked and destroyed. They expanded the investigation and charging documents to include other attacks around the country. [7:58] In 2015 Tod was a prosecutor working with the FBI on an investigation. He was at Europol at the Hague in the Netherlands, a center that brings together investigators and prosecutors from different countries who investigate the same threat group through Europol and Eurojust. [8:33] Tod met the Shadowserver Foundation non-profit group at the Hague in 2015. They were helping, through free technical support to the takedown operation, to dismantle the infrastructure of a crime group, using sinkholing and other security measures. [9:08] Tod Joined the Shadowserver Foundation in January of 2023. He is the Shadowserver Alliance Director. As a small non-profit, everyone wears many hats. The Shadowserver Foundation is a 501(c)(3) in the U.S. and a separate non-profit legal entity in the Netherlands. [9:47] The Shadowserver Foundation started about 2004. It celebrated its 20th anniversary in 2024. It began as a loose group of volunteers made up of cybersecurity researchers and technical experts who came together to help network owners and law enforcement. [10:15] Over the years they became more structured and became a non-profit organization. It's an unusual non-profit organization working 100% in operations. It works in three core areas. First, it's the world's largest provider of free, actionable cyber threat intelligence. [10:45] Second, the Shadowserver Foundation does cybersecurity capacity-building around the world. Third, it also provides free support to law enforcement investigations and disruption operations with technical support and expertise. Those three things are its core mission. [11:07] Justin notes commonalities between RIMS cyber risk reporting and the Shadowserver Foundation's work. Shadowserver collects a vast amount of threat data daily. What are the patterns it sees for 2025? [11:29] Shadowserver Foundation can help organizations mitigate risks. It collects cyber threat data at its data center in California through internet-wide scanning, honeypot sensors, sinkholing operations, and collecting and analyzing malware samples. [11:57] Every day for free the Shadowserver Foundation takes that data and provides it to over 9,000 organizations around the world and to 201 National C-CERTs that cover about 176 countries. [12:13] These reports identify exposed, misconfigured, vulnerable, compromised instances or devices on networks that need patching. [12:25] The organizations that get Shadowserver's data can be anything from banks to hospitals, universities, K-12 school districts, ISPs, local, state, and federal governments, small, medium, and large businesses, Fortune 500s, and NGOs; just about anyone can sign up. [12:46] The idea behind this is that cyber security should be available to everyone, regardless of the ability to pay. Organizations can sign up at the Shadowserver Foundation website, and provide their contact information and network information with IP ranges and ASNs. [13:12] The Shadowserver Foundation does its due diligence and if everything checks out, it automates those reports to go out to the organization daily. About 9,000 organizations sign up directly to receive daily reports. [13:22] The Shadowserver Foundation also sends out data for entire countries to the national C-CERT designated to handle that in those countries. In the U.S., CISA gets hundreds of millions of events from them every day for all the U.S. It is the same around the world. [13:52] Tod says that some things never change. Networks are breached primarily through phishing attacks, malicious links or attachments, and social engineering. [14:09] One trend is a focus on vulnerabilities. Criminals exploit vulnerabilities in the network that aren't timely patched and before they are patched. Shadowserver gives organizations an external snapshot view of their networks just as criminals are scanning for themselves. [14:52] Cybercriminal groups increasingly leverage zero-day vulnerabilities to breach a network. A zero-day vulnerability is a flaw in software or hardware that's unknown to the vendor and has no patch. The vendor has had zero days to fix the vulnerability after it has been discovered. [15:16] That was the case with the Clop ransomware gang. In 2024, they started exploiting zero-day vulnerabilities in Fortra's GoAnywhere software. That continued in May, with them exploiting Progress Software's MOVEit file transfer application. [15:38] Very recently, in December, the Clop Ransomware group claimed responsibility for using a zero-day vulnerability in Clio's file transfer platform that breached victims' networks. [15:49] Cyber criminals extort victims and steal data with ransomware attacks. Risk managers in cybersecurity need to stay on top of critical vulnerabilities that often go unpatched. Those are often the easiest gateway into a network. [16:26] Plug Time! RIMS Webinars! Resolver will be joining us on February 6th to discuss “4 Themes Shaping the Future of GRC in 2025”. [16:38] HUB International continues its Ready for Tomorrow Series with RIMS. On February 20th, they will host “Ready for the Unexpected? Strategies for Property Valuation, Disaster Recovery and Business Continuity in 2025”. [16:54] More webinars will be announced soon and added to the RIMS.org/webinars page. Go there to register. Registration is complimentary for RIMS members. [17:06] Nominations are also open for the Donald M. Stuart Award which recognizes excellence in risk management in Canada. Links are in this episode's show notes. [17:17] The Spencer Educational Foundation's goal to help build a talent pipeline of risk management and insurance professionals is achieved in part by its collaboration with risk management and insurance educators across the U.S. and Canada. [17:35] Since 2010, Spencer has awarded over $3.3 million in general grants to support over 130 student-centered experiential learning initiatives at universities and RMI non-profits. Spencer's 2026 application process will open on May 1st, 2025, and close on July 30th, 2025. [17:58] General grant awardees are typically notified at the end of October. Learn more about Spencer's general grants through the Programs tab at SpencerEd.org. [18:08] Let's Return to the Conclusion of My Interview with Tod Eberle of Shadowserver! [18:49] Justin notes that In December of 2024, China attackers breached the Committee on Foreign Investment in the U.S. That is the government office that assesses foreign investments for national security risks. [18:58] China also targeted the Treasury's Sanctions Office after it sanctioned a Chinese company for its alleged role in cyberattacks. [19:14] Tod thinks we should acknowledge that this is nothing new and nothing we should be surprised about. It's been going on for many years and it's going to continue. Justin was in the Federal government in 2013 and 2014. [19:32] In 2015, it was announced that the U.S. Office of Personnel Management had been breached. Personal sensitive data for 42 million people were stolen. [19:44] In May 2014, five Chinese military officers were indicted for computer hacking and economic espionage against companies based in Pittsburgh. This is nothing out of the ordinary. Unfortunately, indictments don't seem to have a deterrent effect. [20:21] Countries can deny the charges of hacking even with strong evidence of their involvement. [20:37] There are different types of hacking, with different types of motivation. There is traditional espionage against U.S. government agencies. There is theft of intellectual property with nation-states trying to gain a commercial advantage in business. [21:23] There are destructive hacks by nation-state actors, like the NotPetya attack, or attacks on the Ukrainian power grid and banking systems in 2015 and 2016. [21:36] The Volt Typhoon threat actor group and its access to the U.S. critical infrastructure is one of the greatest national security concerns because of its potential to disrupt everything from water to power, to food, to transportation. [22:10] The ripple effect that can come from those disruptions would be enormous. The Colonial Pipeline ransomware attack of a few years ago affected fuel supplies, commerce, and the prices of goods. [22:31] Nation-state hacking is no longer just a concern for government agencies and companies that do business internationally, but it's now a concern for all of society. There's the potential to affect the daily lives of innocent civilians through attacks on critical infrastructure. [23:16] Tod mentions another 2014 indictment out of Pittsburgh, on the GameOver Zeus Botnet takedown. Part of that was a crypto locker ransomware disruption. This was in the infancy of ransomware, for $300 ransoms. Now ransom demands are in the tens of millions of dollars. [23:53] We have seen a huge evolution in ransomware. It's not going away. One thing we're seeing is bypassing data encryption and focusing on data theft. It's easier and less time-consuming for the threat actors because they don't have to map out the network. [24:41] If a victim company had good backups and easy restoration, that was an issue ransomware actors had to deal with, so why would the threat actors bother with that? They just focus on easy data theft and extortion of ransom for the data. [25:04] Tod thinks we will continue to see extortion. Ransomware continues to be the greatest concern for companies. The use of AI has been increasing both for defenders and attackers.  [25:14] A new ransomware group, FunkSec, is claiming large numbers of victims of extortion, encryption, and data theft. They seem to have ransom demands of less than $10,000. They have sold stolen data. Researchers think this is a less experienced group using AI to write code. [27:22] Shadowserver's very talented team collects the data. It's free. They want to get it into the hands of those who can use it. The reports identify things that are seen to be misconfigured or unnecessarily exposed to the internet. Sometimes they can show if something is compromised. [28:12] Shadowserver designates the events by severity level so the end user can prioritize their patching and address first the ones that are most critical and severe. The reports act both as an early warning system and a victim notification system if a device is seen to be compromised. [28:59] The network owner needs to remediate that and patch it before further exploitation like a ransomware attack can occur. [29:07] Shadowserver has two ways to detect that a device is compromised. The first is if they have indicators that tell them a device on the network is compromised. The second is with their support for law enforcement, law enforcement may share sensitive data with Shadowserve. [29:32] When law enforcement does a takedown and they get victim identification data like IP addresses, they must do victim notification. Law enforcement isn't scaled to do victim notification for hundreds of thousands of users. Shadowserver helps them with notifications. [30:48] Shadowserver is very careful to share data responsibly. Company A will get the data they have for Company A and it won't be shared with Company B and vice versa. Shadowserver views the data as belonging to that network owner. [31:08] If a company authorizes Shadowserver and wants them to share their data with a third party, Shadowserver will happily do it. There are several companies with MSSPs to manage their security. If the company asks, Shadowserver will send the data to their MSSP. [31:43] As a small, non-profit organization, not everyone has heard of the Shadowserver Foundation. They want people to know they have this data and they want to share it. It could be relevant for cyber insurance companies' due diligence, with the insurance applicant's consent. [32:20] It's important because those reports can show whether a network has remained healthy and secure over time. Tod would love to see Shadowserver be able to help more in the risk mitigation areas. [32:56] Special thanks again to Shadowserver Foundation's Tod Eberle for joining us here on RIMScast! Check out this episode's show notes for links to the Shadowserver reports we mentioned. [33:07] Be sure to tune in next week for Data Privacy Day! We've got a special episode with James Burd, Chief Privacy Officer of the Cybersecurity and Infrastructure Security Agency (CISA). That's going to be a good one! [33:22] More RIMS Plugs! You can sponsor a RIMScast episode for this, our weekly show, or a dedicated episode. Links to sponsored episodes are in our show notes. [33:50] RIMScast has a global audience of risk and insurance professionals, legal professionals, students, business leaders, C-Suite executives, and more. Let's collaborate and help you reach them! Contact pd@rims.org for more information. [34:07] Become a RIMS member and get access to the tools, thought leadership, and network you need to succeed. Visit RIMS.org/membership or email membershipdept@RIMS.org for more information. [34:25] Risk Knowledge is the RIMS searchable content library that provides relevant information for today's risk professionals. Materials include RIMS executive reports, survey findings, contributed articles, industry research, benchmarking data, and more.  [34:41] For the best reporting on the profession of risk management, read Risk Management Magazine at RMMagazine.com. It is written and published by the best minds in risk management. [34:55] Justin Smulison is the Business Content Manager at RIMS. You can email Justin at Content@RIMS.org. [35:03] Thank you all for your continued support and engagement on social media channels! We appreciate all your kind words. Listen every week! Stay safe!   Mentioned in this Episode: RIMS Risk Management magazine RISKWORLD 2025 — May 4‒7 | Register today! RIMS Legislative Summit — March 19‒20, 2025 Nominations for the Donald M. Stuart Award Spencer Educational Foundation — General Grants 2026 — Application Dates RIMS-Certified Risk Management Professional (RIMS-CRMP) RISK PAC | RIMS Advocacy Shadowserver Foundation National Cybersecurity Alliance RIMS Webinars: RIMS.org/Webinars “4 Themes Shaping the Future of GRC in 2025” | Sponsored by Resolver | Feb. 6, 2025 “Ready for the Unexpected? Strategies for Property Valuation, Disaster Recovery and Business Continuity in 2025” | Sponsored by Hub International | Feb. 20, 2025 Upcoming Virtual Workshops: “Claims Management” | February 11‒12, 2025 | Instructor: Chris Hansen “Fundamentals of Insurance” | Feb. 19‒20, 2025 “Applying and Integrating ERM” | Feb. 26‒27 “Managing Data for ERM” | March 12, 2025 See the full calendar of RIMS Virtual Workshops RIMS-CRMP Prep Workshops   Upcoming RIMS-CRMP Prep Virtual Workshops: “Stay Competitive with the RIMS-CRMP | Presented by the RIMS Greater Bluegrass Chapter” February 19‒20, 2025 | Instructor: Chris Mandel Full RIMS-CRMP Prep Course Schedule Full RIMS-CRMP Prep Course Schedule   Related RIMScast Episodes: “Kicking off 2025 with RIMS CEO Gary LaBranche” “Year In Risk 2024 with Morgan O'Rourke and Hilary Tuttle” “AI and Regulatory Risk Trends with Caroline Shleifer” “Cybersecurity Awareness and Risk Frameworks with Daniel Eliot of NIST” (2024)   Sponsored RIMScast Episodes: “Simplifying the Challenges of OSHA Recordkeeping” | Sponsored by Medcor “Risk Management in a Changing World: A Deep Dive into AXA's 2024 Future Risks Report” | Sponsored by AXA XL “How Insurance Builds Resilience Against An Active Assailant Attack” | Sponsored by Merrill Herzog “Third-Party and Cyber Risk Management Tips” | Sponsored by Alliant “RMIS Innovation with Archer” | Sponsored by Archer “Navigating Commercial Property Risks with Captives” | Sponsored by Zurich “Breaking Down Silos: AXA XL's New Approach to Casualty Insurance” | Sponsored by AXA XL “Weathering Today's Property Claims Management Challenges” | Sponsored by AXA XL “Storm Prep 2024: The Growing Impact of Convective Storms and Hail' | Sponsored by Global Risk Consultants, a TÜV SÜD Company “Partnering Against Cyberrisk” | Sponsored by AXA XL “Harnessing the Power of Data and Analytics for Effective Risk Management” | Sponsored by Marsh “Accident Prevention — The Winning Formula For Construction and Insurance” | Sponsored by Otoos “Platinum Protection: Underwriting and Risk Engineering's Role in Protecting Commercial Properties” | Sponsored by AXA XL “Elevating RMIS — The Archer Way” | Sponsored by Archer “Alliant's P&C Outlook For 2024” | Sponsored by Alliant “Why Subrogation is the New Arbitration” | Sponsored by Fleet Response “Cyclone Season: Proactive Preparation for Loss Minimization” | Sponsored by Prudent Insurance Brokers Ltd. “Subrogation and the Competitive Advantage” | Sponsored by Fleet Response   RIMS Publications, Content, and Links: RIMS Membership — Whether you are a new member or need to transition, be a part of the global risk management community! RIMS Virtual Workshops On-Demand Webinars RIMS-Certified Risk Management Professional (RIMS-CRMP) RISK PAC | RIMS Advocacy RIMS Strategic & Enterprise Risk Center RIMS-CRMP Stories — Featuring RIMS Vice President Manny Padilla!   RIMS Events, Education, and Services: RIMS Risk Maturity Model®   Sponsor RIMScast: Contact sales@rims.org or pd@rims.org for more information.   Want to Learn More? Keep up with the podcast on RIMS.org, and listen on Spotify and Apple Podcasts.   Have a question or suggestion? Email: Content@rims.org.   Join the Conversation! Follow @RIMSorg on Facebook, Twitter, and LinkedIn.   About our guest: Tod Eberle, Shadowserver Foundation   Production and engineering provided by Podfly.  

Azure DevOps Podcast
Sam Basu: Using AI for the User Interface - Episode 329

Azure DevOps Podcast

Play Episode Listen Later Dec 23, 2024 37:24


Sam Basu is a technologist, author, speaker, Microsoft MVP, and gadget-lover and is the Developer Advocacy Manager for Progress Software. With a long developer background, he now spends much of his time advocating modern development platforms & tools on Microsoft/Telerik technology stacks. His spare time calls for travel, fast cars, cricket, and culinary adventures. You can find him as @samidip on the internet.   Topics of Discussion: [3:09] Sam shares his career journey and more about his background as a developer. [5:18] Meeting the users where they are and the importance of adaptability. [8:07] What kinds of use cases are available today for developers to use AI when it comes to UI? [9:15] The two-pronged approach to UI and UX. [13:33] Challenges and opportunities in AI integration. [16:21] Future of the user interface. [21:43] The AI models are exceptionally smart in understanding natural language. [25:41] How GitHub Copilot can help developers. [26:48] The limitations of GitHub Copilot. [30:46] The gap in training for developers for Copilot. [33:06] Use cases on Smart AI. [36:14] The importance of responsible AI development.   Mentioned in this Episode: Clear Measure Way Architect Forum Software Engineer Forum Programming with Palermo — New Video Podcast! Email us at programming@palermo.net. Clear Measure, Inc. (Sponsor) .NET DevOps for Azure: A Developer's Guide to DevOps Architecture the Right Way, by Jeffrey Palermo — Available on Amazon! Jeffrey Palermo's Twitter — Follow to stay informed about future events! Sam on X Sam Basu Sam Basu Microsoft Smart UI Powered by AI ASP.NET Core Smart AI Components Sakura AI Want to Learn More? Visit AzureDevOps.Show for show notes and additional episodes.

M&A Science
Mastering M&A Success with Transparent Leadership and Strategic Agility

M&A Science

Play Episode Listen Later Nov 18, 2024 65:12


Yogesh Gupta, President and CEO at Progress Software   In M&A, closing the deal is just the beginning. The true measure of success comes from effective execution post-close. Mastering this phase demands transparent leadership and strategic agility—qualities that can significantly influence whether an acquisition thrives or flounders.   In this episode of the M&A Science Podcast, Yogesh Gupta, President and CEO of Progress Software, explores how clear leadership and adaptable strategies are pivotal for M&A success. He shares insights into building a strong foundation and ensuring seamless integration, even before the deal is inked.    Things you will learn:   • Crafting a clear and actionable M&A strategy • Establishing leadership and building a foundation before pursuing M&A • Strategic AI integration • Ensuring fit and managing integration risk at the LOI stage • Balancing objectivity and cultural fit in M&A decision-making   *Bonus Mini Interview: The Evolving Landscape of M&A Data with Jack Glazebrook Jack Glazebrook, VP and Head of North America Sales and Account Management for Corporates at S&P Global Market Intelligence.   Today, data is everything, and the M&A industry is no different. Professionals must learn to harness and utilize the power of technology and data to increase efficiency.   In this mini interview, Jack Glazebrook, VP and Head of North America Sales and Account Management for Corporates at S&P Global Market Intelligence, discusses the evolving landscape of M&A data and how it impacts M&A professionals.   Things you will learn:   • Embracing AI for Enhanced Efficiency • Leveraging Alternative Data Sources • Utilizing Capital IQ Pro • Accessing Private Company Data • Workflow Efficiency through Technology   ******************* This episode is sponsored by S&P Global Market Intelligence. Find insight at every data point with the enhanced S&P Capital IQ Pro platform. It's the leading data solution for strategics and investors alike. Visit spglobal.com/proinsights.   This episode is also sponsored by DealRoom AI, the latest innovation from DealRoom designed specifically for M&A professionals. DealRoom AI automates the analysis and extraction of key information from due diligence documents, empowering teams to save up to 80% of their time on document analysis and focus on what really matters—closing the deal.  Ready to streamline your M&A process? Visit dealroom.net today.   ******************* Episode Bookmarks 00:00 Intro 07:52 The reality of being a CEO in a publicly-traded company 12:29 Crafting a clear and actionable M&A strategy 15:21 Conducting diligence and understanding the business in the first 90 days 18:22 Establishing leadership and building a foundation before pursuing M&A 24:05 How the strategy evolved 25:05 Strategic AI integration 28:27 Executing successful M&A deals 30:51 Ensuring fit and managing integration risk at the LOI stage 34:26 Balancing objectivity and cultural fit in M&A decision-making 38:42 Building trust through transparency in M&A relationships 40:25 Influencing a sale by building long-term relationships 43:10 Maintaining valuation discipline in acquisition negotiations 45:31 Managing transparent employee communication 51:12 Staying agile to overcome integration challenges in M&A 54:33 Craziest thing in M&A 55:58  Bonus Interview with Jack Blazebrook: The Evolving Landscape of M&A Data W/ Jack Glazebrook  

Entangled Things
Episode 100: Quantum Milestones – Majorana Fermions, Cold Fusion, and Industry Game-Changers

Entangled Things

Play Episode Listen Later Nov 12, 2024 45:07


EPISODE 100! In this milestone episode, Patrick and Ciprian are thrilled to welcome back Richard Campbell for a fascinating discussion that dives deep into the world of quantum advancements and scientific exploration. Together, they explore the mysterious Majorana Fermion, the allure of Cold Fusion, the lessons from refuted papers, and the solutions and innovations that have reshaped the industry. Join us as we celebrate 100 episodes of thought-provoking insights and look ahead to the future of quantum technology! Richard Campbell wrote his first line of code in 1977. His career has spanned the computing industry both on the hardware and software sides, development and operations. He was a co-founder of Strangeloop Networks, acquired by Radware in 2013, and was on the board of directors of Telerik that was acquired by Progress Software in 2014. Today he is a consultant and advisor to several successful technology firms and is the founder and chairman of Humanitarian Toolbox (www.htbox.org), a public charity that builds open-source software for disaster relief. Richard is the host of two podcasts: .NET Rocks! (www.dotnetrocks.com) the Internet Audio Talkshow for .NET developers and RunAs Radio (www.runasradio.com), a weekly show for IT Professionals. He also produces the DevIntersection (www.devintersection.com) series of conferences.

The Agile World with Greg Kihlstrom
#591: Building an accessible digital experience with Jennifer Griffin Smith, Acquia

The Agile World with Greg Kihlstrom

Play Episode Listen Later Oct 21, 2024 28:24


This past May, Acquia released its 2024 Survey Report: Consumer Perspectives on Digital Accessibility, which found several common accessibility challenges with digital platforms, including an inaccessible web layout, video or audio content without transcriptions and more. Today we're going to talk about what it means to provide a truly accessible digital experience and the impact it can have on your customers and your brand. To help me discuss this topic, I'd like to welcome Jennifer Griffin Smith, Chief Market Officer at Acquia. A well-respected international marketing executive, Jennifer Griffin Smith has more than 20 years of experience managing go-to-market strategies and corporate communications for public and private technology companies. She focuses on the needs of customers and partners in the ever-changing digital world, ensuring that Acquia solutions deliver exceptional value today and in the future, and that all programs and communications are addressing the unique needs of customers. Jennifer leads the global marketing organization, including product marketing, GTM programs for customers and new business, brand, and marketing communications. With her extensive experience as a B2B marketing practitioner, Jennifer is passionate about new ways to grow awareness, improve marketing ROI, and create high-performing, award-winning teams. Before joining Acquia, Jennifer held CMO positions at Brightcove, Alfresco Software (acquired by Hyland), Software AG, Workhuman (formerly Globoforce), Avid Technology, and Progress Software. She has also held senior European marketing roles at Microsoft, PeopleSoft, and Information Builders. RESOURCES Acquia website: https://www.acquia.com Acquia Consumer Perspectives on Digital Accessibility and Why Your Organization Needs a Digital Accessibility Strategy report: https://streaklinks.com/CDXW05pOzrefv_EmGguRQ6AT/https%3A%2F%2Fwww.acquia.com%2Faccessibility-report-2024 Acquia Why Your Organization Needs a Digital Accessibility Strategy report: https://0a818d23.streaklinks.com/CJVgsJ1lZcdvFJePqQwSI-T-/https%3A%2F%2Fwww.acquia.com%2Fresources%2Freport%2Fwhy-your-organization-needs-digital-accessibility-strategy Wix Studio is the ultimate web platform for creative, fast-paced teams at agencies and enterprises—with smart design tools, flexible dev capabilities, full-stack business solutions, multi-site management, advanced AI and fully managed infrastructure. https://www.wix.com/studio Connect with Greg on LinkedIn: https://www.linkedin.com/in/gregkihlstrom Don't miss a thing: get the latest episodes, sign up for our newsletter and more: https://www.theagilebrand.show Check out The Agile Brand Guide website with articles, insights, and Martechipedia, the wiki for marketing technology: https://www.agilebrandguide.com The Agile Brand podcast is brought to you by TEKsystems. Learn more here: https://www.teksystems.com/versionnextnow The Agile Brand is produced by Missing Link—a Latina-owned strategy-driven, creatively fueled production co-op. From ideation to creation, they craft human connections through intelligent, engaging and informative content. https://www.missinglink.company

The Agile Brand with Greg Kihlstrom
#591: Building an accessible digital experience with Jennifer Griffin Smith, Acquia

The Agile Brand with Greg Kihlstrom

Play Episode Listen Later Oct 21, 2024 28:24


This past May, Acquia released its 2024 Survey Report: Consumer Perspectives on Digital Accessibility, which found several common accessibility challenges with digital platforms, including an inaccessible web layout, video or audio content without transcriptions and more. Today we're going to talk about what it means to provide a truly accessible digital experience and the impact it can have on your customers and your brand. To help me discuss this topic, I'd like to welcome Jennifer Griffin Smith, Chief Market Officer at Acquia. A well-respected international marketing executive, Jennifer Griffin Smith has more than 20 years of experience managing go-to-market strategies and corporate communications for public and private technology companies. She focuses on the needs of customers and partners in the ever-changing digital world, ensuring that Acquia solutions deliver exceptional value today and in the future, and that all programs and communications are addressing the unique needs of customers. Jennifer leads the global marketing organization, including product marketing, GTM programs for customers and new business, brand, and marketing communications. With her extensive experience as a B2B marketing practitioner, Jennifer is passionate about new ways to grow awareness, improve marketing ROI, and create high-performing, award-winning teams. Before joining Acquia, Jennifer held CMO positions at Brightcove, Alfresco Software (acquired by Hyland), Software AG, Workhuman (formerly Globoforce), Avid Technology, and Progress Software. She has also held senior European marketing roles at Microsoft, PeopleSoft, and Information Builders. RESOURCES Acquia website: https://www.acquia.com Acquia Consumer Perspectives on Digital Accessibility and Why Your Organization Needs a Digital Accessibility Strategy report: https://streaklinks.com/CDXW05pOzrefv_EmGguRQ6AT/https%3A%2F%2Fwww.acquia.com%2Faccessibility-report-2024 Acquia Why Your Organization Needs a Digital Accessibility Strategy report: https://0a818d23.streaklinks.com/CJVgsJ1lZcdvFJePqQwSI-T-/https%3A%2F%2Fwww.acquia.com%2Fresources%2Freport%2Fwhy-your-organization-needs-digital-accessibility-strategy Wix Studio is the ultimate web platform for creative, fast-paced teams at agencies and enterprises—with smart design tools, flexible dev capabilities, full-stack business solutions, multi-site management, advanced AI and fully managed infrastructure. https://www.wix.com/studio Connect with Greg on LinkedIn: https://www.linkedin.com/in/gregkihlstrom Don't miss a thing: get the latest episodes, sign up for our newsletter and more: https://www.theagilebrand.show Check out The Agile Brand Guide website with articles, insights, and Martechipedia, the wiki for marketing technology: https://www.agilebrandguide.com The Agile Brand podcast is brought to you by TEKsystems. Learn more here: https://www.teksystems.com/versionnextnow The Agile Brand is produced by Missing Link—a Latina-owned strategy-driven, creatively fueled production co-op. From ideation to creation, they craft human connections through intelligent, engaging and informative content. https://www.missinglink.company

The Daily Decrypt - Cyber News and Discussions
Windows Recall Revised, CUPS and WhatsUp Gold Vulnerabilities – Cybersecurity News

The Daily Decrypt - Cyber News and Discussions

Play Episode Listen Later Oct 1, 2024


Video Episode: https://youtu.be/Lw7MiiRsuk0In today's episode, we discuss critical vulnerabilities in Progress Software's WhatsUp Gold requiring urgent patches, alongside freshly reported exploits in Linux's Common Unix Printing System. We also explore Meta's hefty €91 million fine for improperly storing plaintext passwords, and Microsoft's revisions to the Copilot+ Recall feature after security concerns. Stay informed on these significant developments in software security and data privacy! Links to articles discussed:1. https://thehackernews.com/2024/09/progress-software-releases-patches-for.html2. https://www.cybersecuritydive.com/news/linux-cves-open-source/728310/3. https://thehackernews.com/2024/09/meta-fined-91-million-for-storing.html4. https://www.helpnetsecurity.com/2024/09/30/copilot-recall-security/Timestamps00:00 - Introduction00:55 - CUPS and WhatsUp updates03:38 - Windows Recall 1. What are today's top cybersecurity news stories?2. What vulnerabilities were patched in WhatsUp Gold?3. How serious are the Linux CVEs discovered recently?4. What penalties did Meta face for storing passwords in plaintext?5. What changes has Microsoft made to the Copilot+ Recall feature?6. Which critical CVEs affect print jobs on Linux systems?7. How can WhatsUp Gold customers mitigate security threats?8. What are the implications of Meta's latest GDPR fine?9. What security measures did Microsoft implement in Copilot+ Recall?10. How have researchers responded to Linux security vulnerabilities? Progress Software, WhatsUp Gold, vulnerabilities, patches, Linux, vulnerabilities, Red Hat, Canonical, Meta, €91 million, plaintext, security lapse, Copilot+ Recall, encryption, Trusted Platform Module, privacy,  

The CyberWire
Darknet dollars exposed.

The CyberWire

Play Episode Listen Later Sep 27, 2024 34:50


International Law Enforcement Seizes Domains of Russian Crypto Laundering Networks. The real-world risk of a recently revealed Linux vulnerability appears low. Criminal Charges Loom in the Iranian Hack of the Trump Campaign. Meta is fined over a hundred million dollars for storing users' passwords in plaintext. Delaware's public libraries grapple with the aftermath of a ransomware attack. Tor merges with Tails. Progress Software urges customers to patch multiple vulnerabilities. A critical vulnerability in VLC media player has been discovered. Our guests are Mark Lance, Vice President of DFIR and Threat Intelligence at GuidePoint Security, and Andrew Nelson, Principal Security Consultant at GuidePoint Security discussing their work on "Hazard Ransomware – A Successful Broken Encryptor Story." Having the wisdom to admit you just don't know.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Our guest is Mark Lance, Vice President DFIR and Threat Intelligence at GuidePoint Security, discussing their work on "Hazard Ransomware – A Successful Broken Encryptor Story."  Selected Reading US-led operation disrupts crypto exchanges linked to Russian cybercrime (The Record) Highly Anticipated Linux Flaw Allows Remote Code Execution, but Less Serious Than Expected (SecurityWeek) Criminal charges coming in alleged Iranian hack of Trump campaign emails: Sources (ABC News) Meta fined $101 million for storing hundreds of millions of passwords in plaintext (The Record) Hackers attack Delaware libraries, seek ransom. Here's what we know (Delaware Online) Tor Merges With Security-Focused OS Tails (SecurityWeek) Progress urges admins to patch critical WhatsUp Gold bugs ASAP (Bleeping Computer) VLC Player Vulnerability Let Attackers Execute Malicious Code, Update Now (Cyber Security News) Bigger AI chatbots more inclined to spew nonsense — and people don't always realize (Nature) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

The CyberWire
A ticking clock to exploitation.

The CyberWire

Play Episode Listen Later Sep 9, 2024 32:55


Patch Now alerts come from Progress Software and Veeam Backup & Restoration. Car rental giant Avis notifies nearly 300,000 customers of a data breach. The UK's National Crime Agency struggles to retain top cyber talent. Two Nigerian brothers get prison time for their roles in a deadly sextortion scheme. SpyAgent malware uses OCR to steal cryptocurrency. A Seattle area school district suffers a cybercrime snow day. Our guest is Amer Deeba, CEO of Normalyze, discussing data's version of hide and go seek -  the emergence of shadow data. A crypto leader resigns after being held at gunpoint.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Our guest is Amer Deeba, CEO of Normalyze, discussing data's version of hide and go seek, or the emergence of shadow data. Selected Reading Progress LoadMaster vulnerable to 10/10 severity RCE flaw (Bleeping Computer) New Veeam Vulnerability Puts Thousands of Backup Servers at Risk – PATCH NOW! (HACKREAD) Thousands of Avis car rental customers had personal data stolen in cyberattack (TechCrunch) UK National Crime Agency, responsible for fighting cybercrime, ‘on its knees,' warns report (The Record) 2 Brothers Sentenced to More Than 17 Years in Prison in Sextortion Scheme (The New York Times) SpyAgent Android malware steals your crypto recovery phrases from images (Bleeping Computer) Highline schools closing Monday because of cyberattack (Seattle Times) Crypto Firm CEO Resigns Following Armed Robbery of Company Funds (Blockonomi) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Cyber Matters
Snowflakes Fall On AT&T

Cyber Matters

Play Episode Listen Later Jul 15, 2024 57:06


This week on Cyber Matters, host Tanner Wilburn and guests Katherine Kennelly and Zach Smith cover a wide range of cybersecurity, privacy, and technology law topics. They begin with a discussion of AT&T's massive data breach disclosure, highlighting the company's use of SEC guidance on cybersecurity incident reporting and the involvement of the Department of Justice in delaying public disclosure. The hosts then explore the ongoing fallout from the MOVEit breach one year later, using it as a case study to anticipate potential consequences for Snowflake's recent data breach. They discuss the legal and financial implications for Progress Software, the company behind MOVEit. CISA Director Jen Easterly's recent comments on ransomware payments are examined, along with the broader debate on whether to ban such payments. The hosts also delve into CISA's proposed Cyber Incident Reporting for Critical Infrastructure Act regulations and industry reactions. In regulatory news, they cover the 6th Circuit's stay on the FCC's net neutrality rules and provide historical context for the ongoing debate over internet regulation. The podcast touches on several Big Tech stories, including OpenAI's "Strawberry" project, Microsoft's board seat changes at OpenAI, and Apple's antitrust maneuvers in the EU. The hosts discuss Meta's relaxation of restrictions on former President Trump's social media accounts and the potential implications of the Supreme Court's SEC v. Jarkesy decision on Meta's dispute with the FTC. They also cover the official publication of the EU AI Act and its significance for businesses operating in Europe. National security topics include expanded U.S. Treasury reviews of foreign real estate purchases near military bases, Microsoft's potential investment in UAE's G42 AI firm, and updates on TikTok-related legislation. The hosts also discuss a new software supply chain security bill and Germany's decision to phase out Huawei and ZTE components in 5G infrastructure. The episode concludes with updates on Pennsylvania's amended data breach notification law and a local ransomware attack affecting Monroe County, Indiana.  LinkedIn Page:  https://www.linkedin.com/company/cyber-matters-podcast Ransomware Resources:  https://www.lawfaremedia.org/article/ofac-the-ransomware-gangs#:~:text=In%20a%20nutshell%2C%20OFAC%20can,in%20other%20words%2C%20ransomware%20gangs. https://securityandtechnology.org/virtual-library/memo/roadmap-to-potential-prohibition-of-ransomware-payments/  

The Cybersecurity Defenders Podcast
# 139 - Intel Chat: MOVEit, P2PInfect, polyfill.io & TeamViewer

The Cybersecurity Defenders Podcast

Play Episode Listen Later Jul 4, 2024 25:40


In this episode of The Cybersecurity Defenders Podcast, we discuss some cutting-edge intel coming out of LimaCharlie's community Slack channel.A high-severity security vulnerability in Progress Software's MOVEit Transfer software could allow cyberattackers to get around the platform's authentication mechanisms — and it's been spotted being actively exploited in the wild just hours after it was made public.A new version of the P2P worm, P2PInfect, that targets Redis servers running on both Linux and Windows systems, which is aimed at deploying both ransomware and cryptocurrency mining payloads, is out in the wild.The polyfill.io domain, used for providing backward compatibility for older browsers, has been shut down amid accusations of malicious activity after recently being acquired by Chinese firm Funnull, and was allegedly redirecting users to malicious sites and employing evasion techniques. The Germany-based company behind the world-famous remote desktop software TeamViewer has confirmed that in 2016 TeamViewer software was compromised.

Value Inspiration Podcast
#320 - Ruban Phukan, CEO Goodgist - on creating business resilience

Value Inspiration Podcast

Play Episode Listen Later Jul 3, 2024 43:26


This podcast interview focuses on the entrepreneurial journey to redefine the way we learn and solve the growing skills gap. My guest is Ruban Phukan, CEO of Goodgist. Ruban is a serial entrepreneur with more than two decades of experience building technology products that solve real-world problems. He's written books about AI and holds several patents in this field.  He was part of Yahoo's first data scientist team, collaborating closely with co-founder David Filo to use data to address complex business problems.  In 2005, he co-founded Bixee.com, India's first vertical search engine employing patented technology. This company then merged with market leader MakeMyTrip and DataRPM, a pioneering Enterprise AI platform for industrial IoT, which was then acquired by Progress Software in 2017. He 2019 he co-founded GoodTrade.AI, an asset management and investment analysis platform centred around Generative AI. Most recently he co-founded GoodGist, an AI startup for upskilling and research that tackles the challenges of scaling corporate skill development.  Their mission: To organize the world's knowledge and make it universally accessible, conversational, and digestible in bite-sized chunks on demand. Their belief is that this creates a significant moat for their clients against competitors in today's fast-paced landscape, And this inspired me, and hence I invited Ruban to my podcast. We explore the challenges of continuous learning in today's fast-paced technological environment.  He explains his first principles for making his strategic bets and why he opts to take a platform approach rather than a point solution approach. Last but not least, he explains his lessons from niching down and verticalizing his GTM approach around the platform.  Here's one of his quotes We don't try to build a custom solution for a custom problem. We try to look at the problem and say, 'Okay, so we are not trying to only solve for a gas turbine failure, how do we build that technology, so that now instead of just only solving for data coming out of gas turbines, it can also look at data coming out of smart cars? How can it also handle data coming out of smart televisions? So, the focus has always been in trying to understand the problem and try to generalize, so that it can solve more business use cases, without having to recreate something new every single time. During this interview, you will learn four things: How he's accelerating traction by packaging his horizontal platform around highly valuable & business-critical problems. How he goes about successfully serving the mid-market and large enterprise companies in their own unique ways. His approach to identifying new value possibilities in the market that are worth building solutions for. How he makes decisions on what to invest in, and what not.  For more information about the guest from this week: Ruban Phukan Website: Goodgist Subscribe to the Daily SaaS Reflection Get my free, 1 min daily reflection on shaping a B2B SaaS business no one can ignore. Subscribe here Yes, it's actually daily. And yes, people actually stay subscribed (Just see what peer B2B SaaS CEOs say) My promise: It's short. To the point. Inspiring. And valuable. Learn more about your ad choices. Visit megaphone.fm/adchoices

The Daily Decrypt - Cyber News and Discussions
I like to MOVEit MOVEit, Apple AirPods Eavesdropping, GitHub Credentials EXPOSED

The Daily Decrypt - Cyber News and Discussions

Play Episode Listen Later Jun 27, 2024


In today's episode, we delve into the recent vulnerabilities disclosed by Progress Software affecting MOVEit file-transfer service, explore how Apple patched a Bluetooth vulnerability in AirPods that could allow eavesdropping, and discuss Aqua Security's findings on the long-term exposure of sensitive data in Git repositories. For detailed information, visit the articles at https://www.cybersecuritydive.com/news/moveit-file-transfer-cves/719933/, https://thehackernews.com/2024/06/apple-patches-airpods-bluetooth.html, and https://www.helpnetsecurity.com/2024/06/26/git-exposed-secrets/. Join us to understand the implications and recommended actions to protect your data. Sign up for digestible cyber news delivered to your inbox: news.thedailydecrypt.com Video Episode: https://youtu.be/CEvyUdyil_A Thanks to Jered Jones for providing the music for this episode. https://www.jeredjones.com/ Logo Design by https://www.zackgraber.com/ Cyberattacks, vulnerabilities, MOVEit, Progress Software, Apple, Bluetooth, AirPods, eavesdropping, Aqua Security, GitHub repositories, sensitive data, credentials, API tokens, cybersecurity, digital threats How to protect against MOVEit vulnerabilities, Apple fixes Bluetooth vulnerability in AirPods, preventing eavesdropping in AirPods, cybersecurity tips for MOVEit, Progress Software vulnerabilities update, Aqua Security reveals GitHub repository risks, securing sensitive data on GitHub, credentials exposed on GitHub, safeguarding against digital eavesdroppers, protecting sensitive data in software development

The CyberWire
LockBit picks a brawl with banks.

The CyberWire

Play Episode Listen Later Jun 26, 2024 33:54


LockBit drops files that may or may not be from the Federal Reserve. Progress Software patches additional flaws in MOVEit file transfer software. A popular polyfil open source library has been compromised. DHS starts staffing up its AI Corps. Legislation has been introduced to evaluate the manual operations of critical infrastructure during cyber attacks. Researchers discover a new e-skimmer targeting CMS platforms. A breach at Neiman Marchus affects nearly 65,000 people. South African health services grapple with ransomware amidst a monkeypox outbreak.  Medusa is back. On the Learning Layer, Sam and Joe discuss the CISSP's CAT format and how to walk into test day with confidence. The VA works to clear the backlog caused by the ransomware attack onChange Healthcare. Our 2024 N2K CyberWire Audience Survey is underway, make your voice heard and get in the running for a $100 Amazon gift card. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest On our Learning Layer segment, host Sam Meisenberg and Joe Carrigan continue their discussion of Joe's ISC2 CISSP certification journey using N2K's comprehensive CISSP training course, which includes a simulated Computer Adaptive Test (CAT) final exam. Sam and Joe discuss the CISSP's CAT format and how to walk into test day with confidence. Good luck Joe! Selected Reading Lockbit Leaks Files for Evolve Bank & Trust in Its Alleged ‘Federal Reserve' Data Dump (Metacurity) Progress Software warns of new vulnerabilities in MOVEit Transfer and MOVEit Gateway (Cyber Daily) Polyfill supply chain attack hits 100K+ sites (Sansec) Exclusive: DHS hires first 10 AI Corps members (Axios) US House bill seeks to assess manual operations of critical infrastructure during cyber attacks (Industrial Cyber) Caesar Cipher Skimmer targets popular CMS used by e-stores (Security Affairs) Neiman Marcus confirms breach. Is the customer data already for sale? (Malwarebytes) South Africa's national health lab hit with ransomware attack amid mpox outbreak (The Record) New Medusa malware variants target Android users in seven countries (Bleeping Computer) After Crippling Ransomware Attack, VA Is Still Dealing with Fallout, Trying to Pay Providers (Military.com) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Cyber Security Today
Cyber Security Today, June 5, 2024 - New threat actor going after American IT firms, Canada's Auditor General slams federal cybercrime-fighting agencies

Cyber Security Today

Play Episode Listen Later Jun 5, 2024 7:33


This episode reports on vulnerabilities in unpatched versions of Progress Software's Telerik Report Server, the spread of the Remcos remote access trojan, and more

Azure DevOps Podcast
Richard Campbell: The Future of Software - Episode 297

Azure DevOps Podcast

Play Episode Listen Later May 13, 2024 44:50


Richard Campbell wrote his first line of code in 1977. His career has spanned the computing industry on both the hardware and software sides, development, and operations. He was a co-founder of Strangeloop Networks, acquired by Radware in 2013, and was on the board of directors of Telerik, which was acquired by Progress Software in 2014. Today, he is a consultant and advisor to a number of successful technology firms and is the founder and chairman of Humanitarian Toolbox (www.htbox.org), a public charity that builds open-source software for disaster relief. Richard also hosts three podcasts: .NET Rocks! (www.dotnetrocks.com) for .NET developers, RunAs Radio (www.runasradio.com) for IT Professionals, and Windows Weekly (https://twit.tv/shows/windows-weekly).   Topics of Discussion: [2:24] Richard's podcasting career over 20 years and his advice for new podcasters. [6:30] The common topics that Richard talks about. [11:32] Adaptive cruise control and limitations of current AI. [13:34] Potential for autonomous trucks and freight trains. [16:12] Improving software user experience with machine learning. [17:32] How AI may change (and not change) 10 years from now. [19:32] How the voice interface has gotten better. [22:21] The impact of automation on software development jobs. [28:19] The appropriate uses of low-code platforms. [33:29] Habits vs. wisdom. [37:25] The future of augmented reality. [39:15] Importance of experimenting with different tools. [42:43] How augmented reality may disrupt smartphones. [43:49] Jamming out on your tools, much like a musician experimenting. Mentioned in this Episode: Clear Measure Way Architect Forum Software Engineer Forum Programming with Palermo — New Video Podcast! Email us at programming@palermo.net. Clear Measure, Inc. (Sponsor) .NET DevOps for Azure: A Developer's Guide to DevOps Architecture the Right Way, by Jeffrey Palermo — Available on Amazon! Jeffrey Palermo's Twitter — Follow to stay informed about future events! “Richard Campbell on the History of .NET - Episode 133”   Want to Learn More? Visit AzureDevOps.Show for show notes and additional episodes.

Software Defined Talk
Episode 461: Not illegal, works as designed

Software Defined Talk

Play Episode Listen Later Apr 5, 2024 60:11


This week, we discuss Redis Relicensing, Progress acquiring MariaDB and Microsoft unbundling Teams. Plus, Coté shares his Top 10 Tech and Productivity Wish List for regulators. Watch the YouTube Live Recording of Episode (https://www.youtube.com/watch?v=CvLlXxJWlOE) 461 (https://www.youtube.com/watch?v=CvLlXxJWlOE) Runner-up Titles The Fork is a feature not a bug Relicensing: The path to Private Equity Is this Progress? Hot Antitrust Action Give it to Switzerland, they can hold our calendars Won't someone think of the children? Cote's airing of (Apple) grievances The deepest of pockets Fine-adjacent. Not complicated enough What's it called when they plateau going down? Frankenstein Grand Theory of Open Source Business Models a large, wide portfolio of things that you're vaguely aware of Mostly contrast Rundown Zuck Just Entered the Fediverse: Here's What That Means (https://gizmodo.com/zuck-entered-fediverse-threads-heres-what-that-means-1851356849) Redis RIP Redis: How Garantia Data pulled off the biggest heist in open source history (https://www.gomomento.com/blog/rip-redis-how-garantia-data-pulled-off-the-biggest-heist-in-open-source-history) Redis tightens its license terms, pleasing no one (https://www.theregister.com/2024/03/22/redis_changes_license/) Battle of the Redis forks? (https://www.thestack.technology/battle-of-the-redis-forks-begins/) Redis vs. the trillion-dollar cabals (https://www.infoworld.com/article/3714688/the-bizarre-defense-of-trillion-dollar-cabals.html) Why AWS, Google and Oracle are backing the Valkey Redis fork (https://techcrunch.com/2024/03/31/why-aws-google-and-oracle-are-backing-the-valkey-redis-fork/) Open Source Software: The $9 Trillion Resource Companies Take for Granted (https://hbswk.hbs.edu/item/open-source-software-the-nine-trillion-resource-companies-take-for-granted) Linux Foundation Launches Open Source Valkey Community (https://www.linuxfoundation.org/press/linux-foundation-launches-open-source-valkey-community) Is this Progress? Progress Software considering an offer for MariaDB plc (NASDAQ:PRGS) (https://seekingalpha.com/news/4083996-progress-software-considering-offer-for-mariadb-plc). Progress Software Confirms Bid to Acquire MariaDB (https://www.wsj.com/business/earnings/progress-software-revenue-beats-estimates-outlook-short-of-forecasts-769e9c7e). Database popularity index (https://db-engines.com/en/ranking) Exclusive: Microsoft to separate Teams and Office globally amid antitrust scrutiny (https://www.reuters.com/technology/microsoft-separate-teams-office-globally-amid-antitrust-scrutiny-2024-04-01/) Google defends auto-deletion of chats after US alleged it destroyed evidence (https://arstechnica.com/tech-policy/2023/03/google-defends-auto-deletion-of-chats-after-us-alleged-it-destroyed-evidence/) 20 years of Gmail (https://www.theverge.com/24113616/gmail-email-20-years-old-internet) Cote's Top 10 Tech & Productivity Wishlist for Regulators Clickable Links in Instagram Captions: Make it easier to direct followers to relevant content. Unified Social Media: Allow seamless posting across platforms, ideally leveraging Twitter's existing reach. Native ChatGPT Downloads: Eliminate the need for external plugins to download chat sessions. Universal Link Insertion Shortcut: Standardize link insertion across apps (Cmd-K for everyone!). Apple Notes Customization & Integration: Enable background customization and merge with Freeform to challenge GoodNotes' dominance. Universal Free/Busy Calendar: Facilitate effortless scheduling across platforms. Standardized Markdown Export: Ensure all major word processors export in a common markdown format (Gruber or Common Markdown). Granular Screen Time Controls: Empower users with detailed control over device usage. Regulate Car Rental Insurance Fees: Put a stop to excessive and unfair insurance charges by rental companies. Bring Back Google Reader! (Okay, this one's a personal plea, but wouldn't it be great?) Relevant to your Interests Unpatchable vulnerability in Apple chip leaks secret encryption keys (https://arstechnica.com/security/2024/03/hackers-can-extract-secret-encryption-keys-from-apples-mac-chips/) Reddit's Sale of User Data for AI Training Draws FTC Inquiry (https://www.wired.com/story/reddits-sale-user-data-ai-training-draws-ftc-investigation/) Apache Kvrocks (https://kvrocks.apache.org/) Ex-technology companies (https://lethain.com/ex-technology-companies/) FTX to Sell Two-Thirds of Anthropic Stake for $884 Million (https://www.wsj.com/articles/ftx-to-sell-two-thirds-of-anthropic-stake-for-884-million-2cb3ccd2) “Temporary” disk formatting UI from 1994 still lives on in Windows 11 (https://arstechnica.com/gadgets/2024/03/windows-current-disk-formatting-ui-is-a-30-year-old-placeholder-from-windows-nt/) Adam Neumann bids over $500 million to buy back WeWork, source says (https://finance.yahoo.com/news/1-adam-neumann-submits-over-221446962.html) Introducing DBRX: A New State-of-the-Art Open LLM (https://www.databricks.com/blog/introducing-dbrx-new-state-art-open-llm) Marissa Mayer's startup just rolled out photo sharing and event planning apps, and the internet isn't sure what to think | TechCrunch (https://techcrunch.com/2024/03/27/marissa-mayers-startup-just-rolled-out-apps-for-group-photo-sharing-and-event-planning-and-the-internet-isnt-sure-what-to-think/) Key takeaways from the Entrust incident (https://www.digicert.com/blog/key-takeaways-from-the-entrust-incident) Amazon spends $2.75 billion on AI startup Anthropic in its largest venture investment yet (https://www.cnbc.com/2024/03/27/amazon-spends-2point7b-on-startup-anthropic-in-largest-venture-investment.html) Stepping on the Gas - Observe, Inc. (https://www.observeinc.com/blog/stepping-on-the-gas/) Bankman-Fried Is Sentenced to 25 Years in Prison Over FTX Collapse (https://www.bloomberg.com/news/articles/2024-03-28/bankman-fried-is-sentenced-to-25-years-in-prison?srnd=homepage-americas) Databricks CEO Says Competition Spurred High-Profile Exit at Snowflake (https://finance.yahoo.com/news/databricks-ceo-says-competition-spurred-165030607.html) Snowflake's Meltdown Is Not Drastic Enough - Still Expensive Here (https://seekingalpha.com/article/4680854-snowflake-meltdown-not-drastic-enough-still-expensive-here) Flox 1.0: Containerless development environments using Nix (https://www.theregister.com/2024/03/23/flox_1_nix/) Apple to Launch New iPad Pro and iPad Air Models in May (https://www.macrumors.com/2024/03/28/new-ipad-models-may-launch/) A US Business Tax Law Change That Partially Caused Layoffs (Section 174) (https://www.linkedin.com/pulse/us-business-tax-law-change-partially-caused-layoffs-174-levitt-mba-mrbbf/?trackingId=BLvRFIlxS%2F66kmfrkzeptQ%3D%3D) Results of 2024 elections of OSI board of directors (https://opensource.org/blog/results-of-2024-elections-of-osi-board-of-directors) To the pharmacy and beyond: Drug development goes to space (https://thehustle.co/news/to-the-pharmacy-and-beyond-drug-development-goes-to-space) AT&T says personal data from 73 million current and former account holders leaked onto dark web (https://www.cnn.com/2024/03/30/tech/att-data-leak/index.html) Google agrees to destroy browsing data collected in Incognito mode (https://www.theverge.com/2024/4/1/24117929/google-incognito-browsing-data-delete-class-action-settlement) KubeCon EU 2024 Paris: Key Takeaways (https://danielbryantuk.medium.com/kubecon-eu-2024-paris-key-takeaways-ad4c1bb7fbfe) Amazon cuts hundreds of jobs in cloud computing unit (https://www.cnbc.com/2024/04/03/amazon-layoffs-hundreds-of-jobs-cut-in-cloud-computing-unit.html) Intel slides as foundry business loss spotlights wide gap with rival TSMC (https://finance.yahoo.com/news/intel-slides-foundry-business-loss-120623062.html) Scathing federal report rips Microsoft for shoddy security, insincerity in response to Chinese hack (https://apnews.com/article/microsoft-cybersecurity-hack-raimondo-breach-b0901a93cca2ffaf05edacbfb9ecf3da) California Law Would Give Workers ‘Right to Disconnect' From Employer's Messages Outside Work Hours (https://gizmodo.com/california-right-to-disconnect-stop-employer-messages-1851380159) Yahoo is buying Artifact, the AI news app from the Instagram co-founders (https://www.theverge.com/2024/4/2/24118436/yahoo-news-artifact-acquisition) The Rise and Fall of 3M's Floppy Disk (https://spectrum.ieee.org/3m-floppy) why I stopped building Placemark as a SaaS and made it an open source project (https://macwright.com/2024/03/25/about-placemark-io) Ensuring a Project's Long-Term Survival with William Morgan (https://www.emilyomier.com/podcast/ensuring-a-projects-long-term-survival-with-william-morgan) Tennr puts fax machines back in vogue for healthcare organizations using AI, as it secures $18m from a16z (https://finance.yahoo.com/news/tennr-puts-fax-machines-back-130000653.html) Amazon Ditches 'Just Walk Out' Checkouts at Its Grocery Stores (https://gizmodo.com/amazon-reportedly-ditches-just-walk-out-grocery-stores-1851381116) A few thoughts on the Apple DOJ antitrust case, from someone who isn't riding his first rodeo (https://ianbetteridge.com/2024/03/22/a-few-thoughts-on-the-apple-doj-antitrust-case-from-someone-who-isnt-riding-his-first-rodeo/) Nonsense Some New England universities and colleges break $90,000 barrier for total cost in upcoming school year (https://www.cnn.com/2024/03/27/business/college-tuition-new-england-ninety-thousand/index.html) As markets soar, should investors look beyond America? (https://www.economist.com/finance-and-economics/2024/03/24/as-markets-soar-should-investors-look-beyond-america) Conferences Tanzu Defined, online, April 3rd, 2024 (https://www.linkedin.com/events/7175971321300865024/about/) - but check the replay in LinkedIn (https://www.linkedin.com/events/7175971321300865024/about/) or YouTube (https://www.youtube.com/watch?v=vDvWDyd98hA). Open Source Summit North America (https://events.linuxfoundation.org/open-source-summit-north-america/), Seattle April 16-18. Matt's speaking. NDC Oslo (https://substack.com/redirect/8de3819c-db2b-47c8-bd7a-f0a40103de9e?j=eyJ1IjoiMmQ0byJ9.QKaKsDzwnXK5ipYhX0mLOvRP3vpk_3o2b5dd3FXmAkw), Coté speaking (https://substack.com/redirect/41e821af-36ba-4dbb-993c-20755d5f040a?j=eyJ1IjoiMmQ0byJ9.QKaKsDzwnXK5ipYhX0mLOvRP3vpk_3o2b5dd3FXmAkw), June 12th. DevOpsDays Amsterdam (https://devopsdays.org/events/2024-amsterdam/welcome/), June 19 -to21, 2024, Coté speaking. DevOpsDays Birmingham, August 19–21, 2024 (https://devopsdays.org/events/2024-birmingham-al/welcome/). SDT news & hype Join us in Slack (http://www.softwaredefinedtalk.com/slack). Get a SDT Sticker! Send your postal address to stickers@softwaredefinedtalk.com (mailto:stickers@softwaredefinedtalk.com) and we will send you free laptop stickers! Follow us: Twitch (https://www.twitch.tv/sdtpodcast), Twitter (https://twitter.com/softwaredeftalk), Instagram (https://www.instagram.com/softwaredefinedtalk/), Mastodon (https://hachyderm.io/@softwaredefinedtalk), BlueSky (https://bsky.app/profile/softwaredefinedtalk.com), LinkedIn (https://www.linkedin.com/company/software-defined-talk/), TikTok (https://www.tiktok.com/@softwaredefinedtalk), Threads (https://www.threads.net/@softwaredefinedtalk) and YouTube (https://www.youtube.com/channel/UCi3OJPV6h9tp-hbsGBLGsDQ/featured). Use the code SDT to get $20 off Coté's book, Digital WTF (https://leanpub.com/digitalwtf/c/sdt), so $5 total. Become a sponsor of Software Defined Talk (https://www.softwaredefinedtalk.com/ads)! Recommendations Brandon: 3 Body Problem (https://www.google.com/url?sa=t&source=web&rct=j&opi=89978449&url=https://www.netflix.com/title/81024821&ved=2ahUKEwj7y8yl0Y-FAxUkkO4BHSPsAokQFnoECDwQAQ&usg=AOvVaw34C7IJEMHi6y9j30HRthhu) Matt: Uni Jetstream Pen, 0.5 mm (https://amzn.to/4apzuYT) Coté: First chapter of Icewind Dale: Rime of the Frostmaiden (https://en.wikipedia.org/wiki/Icewind_Dale:_Rime_of_the_Frostmaiden) - so this is what a “sandbox” adventure is. Related, my overview of making huge D&D maps with Midjourney (https://cote.io/2024/04/03/creating-huge-dd.html). Also, though I might have recommended it before, this is both good in its own and fascinating from an Internet-artist perspective. And I don't even like house (can't they take that damn beat out so we can hear the actual mish-mash of music without that metal scrapping on Brillo pads all the time?) https://youtu.be/EgepxKANDGc?si=hO6_092WONyp-QUI Photo Credits Header (https://unsplash.com/photos/a-wooden-fence-with-a-painted-sign-on-it-4XbEgggW93o) Artwork (https://unsplash.com/photos/woman-in-gold-dress-holding-sword-figurine-L4YGuSg0fxs)

Earnings Calls: Rawdog edition
Progress Software 2023/Q4 Earnings Call [$PRGS]

Earnings Calls: Rawdog edition

Play Episode Listen Later Jan 17, 2024 47:49


Progress Software's Q4 2023 earnings call, unedited

InfoSec Weekly Podcast
IT Governance Podcast 20.10.23: Casio, Cisco, MOVEit (again) and the ICC

InfoSec Weekly Podcast

Play Episode Listen Later Oct 23, 2023 7:01


This week, we discuss a data breach affecting Casio users in 149 countries, two zero-day vulnerabilities in Cisco's IOS XE web user interface, a slew of legal action against Progress Software following the MOVEit Transfer breach, and an update on last month's cyber attack on the International Criminal Court.

It's 5:05! Daily cybersecurity and open source briefing
Episode #244: Exploitation of WS_FTP Vulnerability; Cybersecurity Fight Against Human Trafficking; Permission Slip: Manage Your Digital Data

It's 5:05! Daily cybersecurity and open source briefing

Play Episode Listen Later Oct 5, 2023 8:49


Risky Business
Risky Business #724 -- Exploitation moves away from Microsoft, Google and Apple products

Risky Business

Play Episode Listen Later Oct 4, 2023 54:37


On this week's show Patrick Gray and Adam Boileau discuss the week's security news. They cover: Ransomware crews target WS_FTP and Jetbrains servers Global energy supply shapes up as big target The Dossier Center drops another banger Indian nationalists DDoS Canadian targets A look at the Exim drama Much, much more This week's show is brought to you by Kroll Cyber. George Glass is this week's sponsor guest. Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that's your thing. Show notes Multiple exploits hit Progress Software's WS_FTP Server | Cybersecurity Dive Progress Software discloses 8 vulnerabilities in one of its other file-transfer services | Cybersecurity Dive Progress Software says business impact ‘minimal' from MOVEit attack spree | Cybersecurity Dive NEXTA on X: Гостайна по электричеству - Досье Russian flight booking system suffers ‘massive' cyberattack Cyberattacks hit military, Parliament websites as India-based group targets Canada | CBC News NATO investigating breach, leak of internal documents | CyberScoop Chinese hackers stole emails from US State Dept in Microsoft breach, Senate staffer says | Reuters FBI warns energy sector of likely increase in targeting by Chinese, Russian hackers Cisco routers abused by China-linked hackers against US, Japan companies | Cybersecurity Dive Suspected China-based hackers target Middle Eastern telecom, Asian government North Korean hackers posed as Meta recruiter on LinkedIn | CyberScoop Lazarus luring employees with trojanized coding challenges: The case of a Spanish aerospace company Ransomware gangs destroying data, using multiple strains during attacks: FBI Critical vulnerabilities in Exim threaten over 250k email servers worldwide | Ars Technica NSA is creating a hub for AI security, Nakasone says Privacy watchdog recommends court approval for FBI searches of spy data | CyberScoop Vulnerable Arm GPU drivers under active exploitation. Patches may not be available | Ars Technica ‘Snatch' Ransom Group Exposes Visitor IP Addresses – Krebs on Security IronNet, founded by former NSA director, shuts down and lays off staff | TechCrunch

Risky Business
Risky Business #724 -- Exploitation moves away from Microsoft, Google and Apple products

Risky Business

Play Episode Listen Later Oct 4, 2023


On this week's show Patrick Gray and Adam Boileau discuss the week's security news. They cover: Ransomware crews target WS_FTP and Jetbrains servers Global energy supply shapes up as big target The Dossier Center drops another banger Indian nationalists DDoS Canadian targets A look at the Exim drama Much, much more This week's show is brought to you by Kroll Cyber. George Glass is this week's sponsor guest. Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that's your thing. Show notes Multiple exploits hit Progress Software's WS_FTP Server | Cybersecurity Dive Progress Software discloses 8 vulnerabilities in one of its other file-transfer services | Cybersecurity Dive Progress Software says business impact ‘minimal' from MOVEit attack spree | Cybersecurity Dive NEXTA on X: Гостайна по электричеству - Досье Russian flight booking system suffers ‘massive' cyberattack Cyberattacks hit military, Parliament websites as India-based group targets Canada | CBC News NATO investigating breach, leak of internal documents | CyberScoop Chinese hackers stole emails from US State Dept in Microsoft breach, Senate staffer says | Reuters FBI warns energy sector of likely increase in targeting by Chinese, Russian hackers Cisco routers abused by China-linked hackers against US, Japan companies | Cybersecurity Dive Suspected China-based hackers target Middle Eastern telecom, Asian government North Korean hackers posed as Meta recruiter on LinkedIn | CyberScoop Lazarus luring employees with trojanized coding challenges: The case of a Spanish aerospace company Ransomware gangs destroying data, using multiple strains during attacks: FBI Critical vulnerabilities in Exim threaten over 250k email servers worldwide | Ars Technica NSA is creating a hub for AI security, Nakasone says Privacy watchdog recommends court approval for FBI searches of spy data | CyberScoop Vulnerable Arm GPU drivers under active exploitation. Patches may not be available | Ars Technica ‘Snatch' Ransom Group Exposes Visitor IP Addresses – Krebs on Security IronNet, founded by former NSA director, shuts down and lays off staff | TechCrunch

Cyber Briefing
September 29, 2023 - Cyber Briefing

Cyber Briefing

Play Episode Listen Later Sep 29, 2023 6:57


Decipher Security Podcast
Source Code 9/29

Decipher Security Podcast

Play Episode Listen Later Sep 29, 2023 5:34


In this week's Source Code podcast, we hear from Caitlin Condon with Rapid7 about a critical flaw in TeamCity, a continuous integration and continuous deployment tool. Also this week we discuss a recent FBI private industry notification about changing ransomware tactics, and flaws in the WS_FTP file transfer software from Progress Software. 

InfoSec Weekly Podcast
IT Governance Podcast 14.7.23: EU-US DPF, UK-US data bridge, MOVEit patches and other security fixes

InfoSec Weekly Podcast

Play Episode Listen Later Jul 13, 2023 7:40


This week, we discuss the new EU adequacy decision for the US, based on the Data Privacy Framework (plus Max Schrems's inevitable reaction), and a proposed UK-US ‘data bridge'; fixes for three more vulnerabilities in Progress Software's MOVEit Transfer app; plus this month's Patch Tuesday and other security updates.

The CyberWire
New phishing campaigns hit Microsoft 365 and Adobe users. Big Head ransomware. Multichain bridge compromised. CISA adds a KEV. Progress patches MOVEit. Telegram's role in Russia's war.

The CyberWire

Play Episode Listen Later Jul 10, 2023 31:15


New phishing campaigns afflict users of Microsoft 365 and Adobe. An analysis of Big Head ransomware. Multichain reports a crypto heist with over $100 million stolen. CISA makes an addition to the Known Exploited Vulnerability Catalog. Progress Software issues additional MOVEit patches. The FBI's Deputy Assistant Director for Cyber Cynthia Kaiser joins us with examples of the agency's technical disruption operations. Our guest is Scott Piper Principal Cloud Security Researcher at Wiz sharing findings of their State of the Cloud 2023 report. And Telegram's role in news about Russia's war. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/129 Selected reading. M365 Phishing Email Analysis – eevilcorp (Vade Secure) New Phishing Attack Spoofs Microsoft 365 Authentication System (HackRead) Tailing Big Head Ransomware's Variants, Tactics, and Impact (Trend Micro) New ‘Big Head' ransomware displays fake Windows update alert (BleepingComputer) Unfolding Cybersecurity Crisis: Aptos Network and Multichain Face Cyber-Attacks (CryptoMode) More than $125 million taken from crypto platform Multichain (Record) Exploit of Fantom, Moonriver and Dogechain Crypto Bridges Confirmed by Multichain Team (CoinDesk) CISA Adds One Known Vulnerability to Catalog (CISA) Google patches 43 Android Vulnerabilities Including 3 actively exploited zero-days (Cyber Security News)  Progress Software Releases Service Pack for MOVEit Transfer Vulnerabilities (CISA) After Zero-Day Attacks, MOVEit Turns to Security Service Packs (SecurityWeek) Killnet as a private military hacking company? For now, it's probably just a dream (Record) Telegram has become a window into war (The Verge)

InfoSec Weekly Podcast
IT Governance Podcast 16.6.23: MOVEit, LinkedIn, Spotify and Google Bard

InfoSec Weekly Podcast

Play Episode Listen Later Jun 15, 2023 7:14


This week, we discuss a data breach affecting users of Progress Software's MOVEit file transfer app, GDPR fines for LinkedIn and Spotify, and the delay of Google Bard's EU launch because of privacy concerns.

The CyberWire
Unpatched instances and vulnerabilities rear their ugly heads. Russian telecom provider targeted in an act of “cyber anarchy.” Alleged crypto heist conspirators face charges.

The CyberWire

Play Episode Listen Later Jun 12, 2023 28:07


Attacks against unpatched versions of Visual Studio and win32k continue. Progress Software patches two MOVEit vulnerabilities. The Cyber Anarchy Squad claims to have taken down a Russian telecommunications provider's infrastructure. RomCom resumes its activity in the Russian interest. Deepen Desai of Zscaler describes Nevada ransomware. Our guest is Clarke Rodgers from Amazon Web services with insights on what CISOs say to each other when no one else is listening?. And the Mt. Gox hacking indictment has been unsealed. For links to all of today's stories check out our CyberWire daily news briefing: https://thecyberwire.com/newsletters/daily-briefing/12/112 Selected reading. Online muggers make serious moves on unpatched Microsoft bugs (The Register) Analysis of CVE-2023-29336 Win32k Privilege Escalation Vulnerability (with POC) (Numen) MOVEit Transfer and MOVEit Cloud Vulnerability (Progress Software) MDE Affected by Global Data Breach (Minnesota Department of Education) Hackers Use Stolen Student Data Against Minneapolis Schools in Brazen New Threat (The 74) Ofcom statement on MOVEit cyber attack (Ofcom) Ukrainian hackers take down service provider for Russian banks (BleepingComputer) Pro-Ukraine hackers claim to take down Russian internet provider (The Record) Pro-Ukraine Cyber Anarchy Squad claims the hack of the Russian telecom provider Infotel JSC (Security Affairs) RomCom Resurfaces: Targeting Politicians in Ukraine and U.S.-Based Healthcare Providing Aid to Refugees from Ukraine (BlackBerry) Mt. Gox's Hackers Are 2 Russian Nationals, U.S. DOJ Alleges in Indictment (CoinDesk) Russian nationals accused of Mt. Gox bitcoin heist, shifting stolen funds to BTC-e (The Record) Russian Nationals Charged With Hacking One Cryptocurrency Exchange and Illicitly Operating Another (US Department of Justice)

The Fintech Blueprint
Modern spend management systems for CFOs and employees, with Payhawk CEO Hristo Borisov

The Fintech Blueprint

Play Episode Listen Later Mar 3, 2023 39:52


Lex interviews Hristo Borisov, CEO and co-founder of Payhawk, a leader in B2B payments and expense management. Together, they discuss the evolution of product development, from mobile apps to platforms that solve customer problems. Touching on the 2017 trend of chatbots and the practical uses of this technology today via ChatGPT. Additionally, Hristo expands on the company he founded in 2018 - Payhawk, a Fintech company that automates financial functions for businesses, highlighting the importance of understanding customer problems and iterating solutions to validate and prototype them. MENTIONED IN THE CONVERSATION Payhawk's website: https://bit.ly/3ZjfCRMHristo's Linkedin profile: https://bit.ly/3ETjWiv Topics: fintech, payments, credit, ERP, SaaS, cloud, AI, platform, API, financial ecosystem, chatbots Companies: Payhawk, Telerik, Progress Software, DarwinAI, Progress NativeChat, Brex, Ramp, ChatGPT ABOUT THE FINTECH BLUEPRINT 

The Tech M&A Podcast
Tech M&A Monthly Podcast: 2023 Global Tech M&A Report

The Tech M&A Podcast

Play Episode Listen Later Feb 21, 2023 52:21


Corum Group and leading industry advisors look back at 2022 and ahead to the coming year, providing critical insight and predictions. Agenda: Insight from our luminary panel: Salesforce, Progress Software and SAP What will the buyers want in 2023? M&A market predictions for 2023 2022 M&A scorecard The unveiling of Corum's 2023 Top 10 Disruptive Technology Trends  Valuations for all six technology sectors and 29 subsectors

SINC: The Conversation
S2 Ep6 - Evolution & Progress of Security - The Conversation with Richard Barretto

SINC: The Conversation

Play Episode Play 29 sec Highlight Listen Later Dec 1, 2022 28:19


In this episode, we sat down with Richard Barretto, Chief Information Security Officer at Progress Software, and talked about building trust within your team while also facing the challenge of dealing with the wave of less throughout the industry.We also discuss the risk factors that come with the new work-from-home dynamic and why trust is the most important factor in creating a proper dynamic among colleagues.

React Round Up
How to Organize Your React App ft. Tania Rascia - RRU 162

React Round Up

Play Episode Listen Later Nov 10, 2021 48:06


Tania Rascia joins the round up to discuss how to organize your code across files, directories, components, and repos within your React app. The panel chimes in with what they've seen and clarify how these approaches effect the overall application functionality of your app. Panel Jack HerringtonPaige NiedringhausTJ Vantoll Guest Tania Rascia Sponsors Dev Influencers AcceleratorLevel Up | Devchat.tv Links React Architecture: How to Structure and Organize a React Application | Tania RasciaBackends for Frontends pattern - Cloud Design Patterns | Microsoft DocsChakra UIFront End Tables: Sorting, Filtering, and Pagination | Tania RasciaTania RasciaTwitter: Tania Rascia ( @taniarascia ) Picks Jack- react-location - npmPaige - Newline.coPaige- Fullstack React with Typescript courseTania - NetlifyTJ - Edge Impulse Contact Jack: Jack Herrington – YouTubeBlue Collar CoderTwitter: Jack Herrington ( @jherr ) Contact Paige: Paige NiedringhausPaige Niedringhaus – MediumTwitter: Paige Niedringhaus ( @pniedri )GitHub: Paige Niedringhaus ( paigen11 ) Contact TJ: TJ VanToll's BlogProgress SoftwareKendoReactTwitter: TJ VanToll ( @tjvantoll ) Special Guest: Tania Rascia.

React Round Up
What Skills Should We Learn Over the Holidays? - RRU 161

React Round Up

Play Episode Listen Later Nov 3, 2021 59:01


The panel puts their heads together to discuss the different skills and areas of interest they would like to spend time learning or would recommend that you spend time on this year as the holidays approach. Panel Jack HerringtonPaige NiedringhausTJ Vantoll Sponsors Dev Influencers AcceleratorRaygun | Click here to get started on your free 14-day trialLevel Up | Devchat.tv Links draw.ioGreenSock animationsTailwind CSS IntelliSense - Visual Studio MarketplaceRemote - SSH - Visual Studio MarketplaceWhat's Destroying My Yard? Pest Detection With Raspberry Pi - Hackster.io Picks Jack- Ponicode - Visual Studio MarketplacePaige- Bottomless - The First Smart Coffee SubscriptionTJ- Boiron Arnicare Gel Contact Jack: Jack Herrington – YouTubeBlue Collar CoderTwitter: Jack Herrington ( @jherr ) Contact Paige: Paige NiedringhausPaige Niedringhaus – MediumTwitter: Paige Niedringhaus ( @pniedri )GitHub: Paige Niedringhaus ( paigen11 ) Contact TJ: TJ VanToll's BlogProgress SoftwareKendoReactTwitter: TJ VanToll ( @tjvantoll )

holidays blog skills panel progress software itemname tj vantoll greensock dev influencers accelerator level up devchat raygun click
React Round Up
Modernizing Enterprise React Apps with Paige Niedringhaus - RRU 160

React Round Up

Play Episode Listen Later Oct 20, 2021 58:42


This week, our very own host Paige Niedringhaus leads the discussion about modernizing enterprise React applications - inspired by a course she's just released on that very subject. Over the course of the episode everyone shares tips, tricks, strategies and war stories when it comes to the struggle most developers will face at some point in their careers of keeping large React applications up to date. There's a lot more to keep in mind than just upgrading the code too: tooling setups, code linting, component refactoring, testing - the list goes on! But with some advice (and the help of courses like Paige's), it's not an impossible task. Panel Jack HerringtonPaige NiedringhausTJ Vantoll Sponsors Dev Influencers AcceleratorRaygun | Click here to get started on your free 14-day trialLevel Up | Devchat.tv Links Newline.coThe newline Guide to Modernizing an Enterprise React App Picks Jack- Raya and the Last Dragon | Disney MoviesPaige- Nailed It! - WikipediaTJ-  Airnote – Blues WirelessTJ- PurpleAir Contact Jack: Jack Herrington – YouTubeBlue Collar CoderTwitter: Jack Herrington ( @jherr ) Contact Paige: Paige NiedringhausPaige Niedringhaus – MediumTwitter: Paige Niedringhaus ( @pniedri )GitHub: Paige Niedringhaus ( paigen11 ) Contact TJ: TJ VanToll's BlogProgress SoftwareKendoReactTwitter: TJ VanToll ( @tjvantoll )

The Drill Down
Ep. 120: Progress Software CEO Yogesh Gupta, Johnson & Johnson, EverQuote, Canadian National Railway, Coinbase

The Drill Down

Play Episode Listen Later Oct 19, 2021 36:08


What a tech company looks like when acquisitions are central to its business model. Progress Software CEO Yogesh Gupta (PRGS) explains his M&A mindset. Johnson & Johnson (JNJ) reports relatively COVID sales -- we'll tell you why that doesn't matter. Online insurance marketplace EverQuote (EVER) struggles with challenges in the auto insurance market. Canadian National Railway (CNI) responds to activist investors. The Drill Down with Cory Johnson offers a daily look at the business stories behind stocks on the move. Learn more about your ad choices. Visit megaphone.fm/adchoices

React Round Up
Maintaining Storybook ft. Yann Braga - RRU 159

React Round Up

Play Episode Listen Later Oct 13, 2021 50:26


Yann Braga is the maintainer of Storybook. He talks about Storybook, how it's used, new features the team is working on, and what it's like to be part of the core team actively maintaining an open source system like Storybook that is widely used to build UI systems in isolation and allow teams to see how components are used. Panel Carl MungaziPaige NiedringhausTJ Vantoll Guest Yann Braga Sponsors React Error and Performance Monitoring | SentryPodcastBootcamp.ioLevel Up | Devchat.tv Links GitHub | storybookjs/testing-reactGitHub | storybookjs/testing-vueGitHub | storybookjs/testing-vue3ChromaticStorybookHow to use Testing Library to test StorybookInteraction Testing sneak peeknewlineMealdropWelcome to Mealdrop's Storybook!Smooth design handoff with StorybookEssential addonsStorybook TutorialsStorybook for React Appsnewline - DiscordStorybook - DiscordGitHub: Yann Braga ( yannbf )Twitter: Yann Braga ( @yannbf ) Picks Carl- Design Systems with React & StorybookCarl- Shoe DogPaige- Money Heist | Netflix Official SiteTJ- Squid Game | Netflix Official SiteYann- Kena: Bridge of Spirits Contact Carl: GitHub: Carl Mungazi ( CarlMungazi )Twitter: Carl Mungazi ( @CarlMungazi ) Contact Paige: Paige NiedringhausPaige Niedringhaus – MediumTwitter: Paige Niedringhaus ( @pniedri )GitHub: Paige Niedringhaus ( paigen11 ) Contact TJ: TJ VanToll's BlogProgress SoftwareKendoReactTwitter: TJ VanToll ( @tjvantoll ) Special Guest: Yann Braga.

React Round Up
React Do's and Don't's - RRU 158

React Round Up

Play Episode Listen Later Oct 6, 2021 49:50


This week the panel discusses several Do's and Don't's for your React Apps that are lessons they've learned building React applications over the years. Panel Jack HerringtonPaige NiedringhausTJ Vantoll Sponsors Dev Influencers AcceleratorRaygun | Click here to get started on your free 14-day trialPodcastBootcamp.io Links GitHub | welldone-software/why-did-you-render Picks Jack- HadesPaige- Versailles (TV series)TJ- Land of the Giants Contact Jack: Jack Herrington – YouTubeBlue Collar CoderTwitter: Jack Herrington ( @jherr ) Contact Paige: Paige NiedringhausPaige Niedringhaus – MediumTwitter: Paige Niedringhaus ( @pniedri )GitHub: Paige Niedringhaus ( paigen11 ) Contact TJ: TJ VanToll's BlogProgress SoftwareKendoReactTwitter: TJ VanToll ( @tjvantoll )

tv land blog giants panel react hades github versailles progress software tj vantoll dev influencers accelerator podcastbootcamp raygun click
Devchat.tv Master Feed
React Do's and Don't's - RRU 158

Devchat.tv Master Feed

Play Episode Listen Later Oct 6, 2021 49:50


This week the panel discusses several Do's and Don't's for your React Apps that are lessons they've learned building React applications over the years. Panel Jack Herrington Paige Niedringhaus TJ Vantoll Sponsors Dev Influencers Accelerator Raygun | Click here to get started on your free 14-day trial PodcastBootcamp.io Links GitHub | welldone-software/why-did-you-render Picks Jack- Hades Paige- Versailles (TV series) TJ- Land of the Giants Contact Jack: Jack Herrington – YouTube Blue Collar Coder Twitter: Jack Herrington ( @jherr ) Contact Paige: Paige Niedringhaus Paige Niedringhaus – Medium Twitter: Paige Niedringhaus ( @pniedri ) GitHub: Paige Niedringhaus ( paigen11 ) Contact TJ: TJ VanToll's Blog Progress Software KendoReact Twitter: TJ VanToll ( @tjvantoll )

tv land blog giants medium panel react hades github versailles progress software tj vantoll dev influencers accelerator podcastbootcamp raygun click
Forbes India - The Startup Fridays Podcast
Startup Fridays Ep 24: Aspiring VCs must be coach, captain, and player - Amit Anand, Jungle Ventures

Forbes India - The Startup Fridays Podcast

Play Episode Listen Later Oct 1, 2021 41:55


Our guest today is Amit Anand, founding partner at Jungle Ventures in Singapore. In previous stints, Amit has held executive positions in sales and business development roles at Progress Software, STT Communications-backed and Singapore-based Elipva, and at Tata Infotech Ltd, in India. In 2006, Anand turned entrepreneur when he founded Ettamina Studios, a Singapore-India based animation studio. He founded Jungle Ventures with Anurag Srivastava in 2012. Anand is a Kauffman Fellow, one of the earliest from South East Asia, and currently also a member of the Singapore government's advisory council on the ethical use of artificial intelligence and data. He holds a Bachelor's degree with a major in computer science

React Round Up
How to Stay Current and Learn New Things ft. Charles Max Wood - RRU 157

React Round Up

Play Episode Listen Later Sep 29, 2021 54:36


Charles Max Wood from Top End Devs joins the round up to discuss his strategies and tactics to get the career you want by keeping current on technologies and learning new things. He explains how to determine what you want in your career. Going and building things, and continuing your learning journey. Panel Jack Herrington Paige Niedringhaus TJ VanToll Guest Charles Max Wood Sponsors React Error and Performance Monitoring | Sentry Dev Influencers Accelerator PodcastBootcamp.io Links The 360 Degree Leader Masters of Doom Top End Devs Twitter: DevChat.tv ( @devchattv ) Picks Charles- The Road Back to You Jack- Introduction to Public Speaking Paige- The Yeti Mug TJ- An Ember in the Ashes  Contact Jack: Jack Herrington – YouTube Blue Collar Coder Twitter: Jack Herrington ( @jherr ) Contact Paige: Paige Niedringhaus Paige Niedringhaus – Medium Twitter: Paige Niedringhaus ( @pniedri ) GitHub: Paige Niedringhaus ( paigen11 ) Contact TJ: TJ VanToll's Blog Progress Software KendoReact Twitter: TJ VanToll ( @tjvantoll )

masters blog medium doom panel ashes error react public speaking new things road back stay current progress software charles max wood tj vantoll dev influencers accelerator top end devs podcastbootcamp performance monitoring sentry
React Round Up
How to Stay Current and Learn New Things ft. Charles Max Wood - RRU 157

React Round Up

Play Episode Listen Later Sep 29, 2021 54:36


Charles Max Wood from Top End Devs joins the round up to discuss his strategies and tactics to get the career you want by keeping current on technologies and learning new things. He explains how to determine what you want in your career. Going and building things, and continuing your learning journey. Panel Jack HerringtonPaige NiedringhausTJ VanToll Guest Charles Max Wood Sponsors React Error and Performance Monitoring | SentryDev Influencers AcceleratorPodcastBootcamp.io Links The 360 Degree LeaderMasters of DoomTop End DevsTwitter: DevChat.tv ( @devchattv ) Picks Charles- The Road Back to YouJack- Introduction to Public SpeakingPaige- The Yeti MugTJ- An Ember in the Ashes  Contact Jack: Jack Herrington – YouTubeBlue Collar CoderTwitter: Jack Herrington ( @jherr ) Contact Paige: Paige NiedringhausPaige Niedringhaus – MediumTwitter: Paige Niedringhaus ( @pniedri )GitHub: Paige Niedringhaus ( paigen11 ) Contact TJ: TJ VanToll's BlogProgress SoftwareKendoReactTwitter: TJ VanToll ( @tjvantoll ) Special Guest: Charles Max Wood.

masters blog doom panel ashes error react public speaking new things road back stay current progress software charles max wood tj vantoll dev influencers accelerator top end devs podcastbootcamp performance monitoring sentry
Devchat.tv Master Feed
How to Stay Current and Learn New Things ft. Charles Max Wood - RRU 157

Devchat.tv Master Feed

Play Episode Listen Later Sep 29, 2021 54:36


Charles Max Wood from Top End Devs joins the round up to discuss his strategies and tactics to get the career you want by keeping current on technologies and learning new things. He explains how to determine what you want in your career. Going and building things, and continuing your learning journey. Panel Jack Herrington Paige Niedringhaus TJ VanToll Guest Charles Max Wood Sponsors React Error and Performance Monitoring | Sentry Dev Influencers Accelerator PodcastBootcamp.io Links The 360 Degree Leader Masters of Doom Top End Devs Twitter: DevChat.tv ( @devchattv ) Picks Charles- The Road Back to You Jack- Introduction to Public Speaking Paige- The Yeti Mug TJ- An Ember in the Ashes  Contact Jack: Jack Herrington – YouTube Blue Collar Coder Twitter: Jack Herrington ( @jherr ) Contact Paige: Paige Niedringhaus Paige Niedringhaus – Medium Twitter: Paige Niedringhaus ( @pniedri ) GitHub: Paige Niedringhaus ( paigen11 ) Contact TJ: TJ VanToll's Blog Progress Software KendoReact Twitter: TJ VanToll ( @tjvantoll )

masters blog medium doom panel ashes error react public speaking new things road back stay current progress software charles max wood tj vantoll dev influencers accelerator top end devs podcastbootcamp performance monitoring sentry
Earnings Season
Progress Software Corporation, Q3 2021 Earnings Call, Sep 23, 2021

Earnings Season

Play Episode Listen Later Sep 24, 2021 41:47


Progress Software Corporation, Q3 2021 Earnings Call, Sep 23, 2021

React Round Up
Composing Layouts for React ft. Travis Waith-Mair - RRU 156

React Round Up

Play Episode Listen Later Sep 22, 2021 47:01


Travis Waith-Mair joins the round up to discuss how to compose layouts in React and the bedrock tools and principles that build up good layouts in React. Panel Jack Herrington Paige Niedringhaus TJ Vantoll Guest Travis Waith-Mair Sponsors Dev Influencers Accelerator Raygun | Click here to get started on your free 14-day trial PodcastBootcamp.io Links Composing Layouts in React Bedrock Layout Primitives Chromatic The Non-Traditional Developer Twitter: Travis Waith-Mair ( @travisWaithMair ) Picks Jack- Shang-Chi and the Legend of the Ten Rings Paige- Davinci Resolve 17 TJ- Svelte Travis- React Podcast Contact Jack: Jack Herrington – YouTube Blue Collar Coder Twitter: Jack Herrington ( @jherr ) Contact Paige: Paige Niedringhaus Paige Niedringhaus – Medium Twitter: Paige Niedringhaus ( @pniedri ) GitHub: Paige Niedringhaus ( paigen11 ) Contact TJ: TJ VanToll's Blog Progress Software KendoReact Twitter: TJ VanToll ( @tjvantoll )

React Round Up
Composing Layouts for React ft. Travis Waith-Mair - RRU 156

React Round Up

Play Episode Listen Later Sep 22, 2021 47:01


Travis Waith-Mair joins the round up to discuss how to compose layouts in React and the bedrock tools and principles that build up good layouts in React. Panel Jack HerringtonPaige NiedringhausTJ Vantoll Guest Travis Waith-Mair Sponsors Dev Influencers AcceleratorRaygun | Click here to get started on your free 14-day trialPodcastBootcamp.io Links Composing Layouts in ReactBedrock Layout PrimitivesChromaticThe Non-Traditional DeveloperTwitter: Travis Waith-Mair ( @travisWaithMair ) Picks Jack- Shang-Chi and the Legend of the Ten RingsPaige- Davinci Resolve 17TJ- SvelteTravis- React Podcast Contact Jack: Jack Herrington – YouTubeBlue Collar CoderTwitter: Jack Herrington ( @jherr ) Contact Paige: Paige NiedringhausPaige Niedringhaus – MediumTwitter: Paige Niedringhaus ( @pniedri )GitHub: Paige Niedringhaus ( paigen11 ) Contact TJ: TJ VanToll's BlogProgress SoftwareKendoReactTwitter: TJ VanToll ( @tjvantoll ) Special Guest: Travis Waith-Mair.

Devchat.tv Master Feed
Composing Layouts for React ft. Travis Waith-Mair - RRU 156

Devchat.tv Master Feed

Play Episode Listen Later Sep 22, 2021 47:01


Travis Waith-Mair joins the round up to discuss how to compose layouts in React and the bedrock tools and principles that build up good layouts in React. Panel Jack Herrington Paige Niedringhaus TJ Vantoll Guest Travis Waith-Mair Sponsors Dev Influencers Accelerator Raygun | Click here to get started on your free 14-day trial PodcastBootcamp.io Links Composing Layouts in React Bedrock Layout Primitives Chromatic The Non-Traditional Developer Twitter: Travis Waith-Mair ( @travisWaithMair ) Picks Jack- Shang-Chi and the Legend of the Ten Rings Paige- Davinci Resolve 17 TJ- Svelte Travis- React Podcast Contact Jack: Jack Herrington – YouTube Blue Collar Coder Twitter: Jack Herrington ( @jherr ) Contact Paige: Paige Niedringhaus Paige Niedringhaus – Medium Twitter: Paige Niedringhaus ( @pniedri ) GitHub: Paige Niedringhaus ( paigen11 ) Contact TJ: TJ VanToll's Blog Progress Software KendoReact Twitter: TJ VanToll ( @tjvantoll )

React Round Up
Run NextJS and Node in the Browser ft. Eric Simons - RRU 155

React Round Up

Play Episode Listen Later Sep 15, 2021 50:48


Eric Simons joins the round up to discuss the latest advancements made by StackBlitz that enables you to run NodeJS in the browser. Eric expands that to the work they've done with the NextJS team to run NextJS in the browser without the need to have a server in the background. Panel Jack HerringtonPaige NiedringhausTJ VanToll Guest Eric Simons  Sponsors React Error and Performance Monitoring | SentryLevel Up | Devchat.tvPodcastBootcamp.io Links Introducing WebContainers: Run Node.js natively in your browserStackBlitzStackBlitzEricSimons – StackBlitzTwitter: Eric Simons ( @ericsimons40 ) Picks Eric- ViteJack- WestworldPaige- Elgato Wave:3TJ- Podcast from The Verge Contact Jack: Jack Herrington – YouTubeBlue Collar CoderTwitter: Jack Herrington ( @jherr ) Contact Paige: Paige NiedringhausPaige Niedringhaus – MediumTwitter: Paige Niedringhaus ( @pniedri )GitHub: Paige Niedringhaus ( paigen11 ) Contact TJ: TJ VanToll's BlogProgress SoftwareKendoReactTwitter: TJ VanToll ( @tjvantoll ) Special Guest: Eric Simons .

Cyber Work
Building a billion-dollar cybersecurity company | Cyber Work Podcast

Cyber Work

Play Episode Listen Later Jun 28, 2021 57:38


Veracode CEO Sam King is an icon in the realms of secure coding and application security, and she joins the podcast, along with Infosec CEO Jack Koziol, to discuss her cybersecurity journey, the President's directive on software security and so, so many more topics. You really don't want to miss this one, folks. – Download our FREE ebook, Developing cybersecurity talent and teams: https://www.infosecinstitute.com/ebook – Learn cybersecurity with our FREE Cyber Work Applied training series: https://www.infosecinstitute.com/learn/ – View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast0:00 - Intro 3:10 - Origin story5:05 - Ground floor of cybersecurity 7:54 - The “aha!” moments 12:30 - Point were you thought industry would grow14:28 - Changes implemented at Veracode19:52 - Nation's approach to cybersecurity24:10 - Federal government security 26:25 - Government oversight 28:14 - Secure coding practices 31:52 - Veracode's app security report40:04 - How to learn web application security 43:46 - Mistakes to avoid when applying  47:13 - Bringing in more diverse candidates  51:36 - Maintaining Veracode's edge54:25 - Advice to move into a new cybersecurity role56:24 - Outro Sam King is the chief executive officer of Veracode and a recognized expert in cybersecurity, DevSecOps and business management. A founding member of Veracode, Sam has played a significant role in the company's growth trajectory over the past 15 years, helping to mature it from a small startup to a company with a billion dollar plus valuation. Under her leadership, Veracode has been recognized with several industry distinctions including a seven-time consecutive leader in the Gartner Magic Quadrant, leader in the Forrester SAST Wave and a Gartner Peer Insights Customer Choice for Application Security. Sam has been a keynote speaker at events such as Gartner Security Summit, RSA and the Executive Women's Forum, on topics ranging from cybersecurity to empowering women and creating diverse and resilient corporate cultures. She has been profiled in business publications such as the Huffington Post, CNNMoney, Financial Times, InfoSecurity Magazine and The Boston Globe.Sam received her masters of science and engineering in computer and information science from University of Pennsylvania. She earned her BS in computer science from University of Strathclyde in Glasgow, Scotland, where she earned the prestigious Charles Babbage Award, awarded to the student with the highest academic achievement in the graduating class. She currently sits on the board of Progress Software. Sam is also a member of the board of trustees for the Massachusetts Technology Leadership Council, where she was a charter member of the 2030 Challenge: a Tech Compact for Social Justice in efforts to bring more diversity to the local workforce.About InfosecInfosec believes knowledge is power when fighting cybercrime. We help IT and security professionals advance their careers with  skills development and certifications while empowering all employees with security awareness and privacy training to stay cyber-safe at work and home. It's our mission to equip all organizations and individuals with the know-how and confidence to outsmart cybercrime. Learn more at infosecinstitute.com.

The Polyglot Developer Podcast
TPDP018: Progressive Web Application Development

The Polyglot Developer Podcast

Play Episode Listen Later May 15, 2018 42:06


In this episode I'm joined by Tara Manicsic who works as a Developer Advocate team at Progress Software. Tara and I spend time discussing Progressive Web Applications (PWA) and how you can be effective building them with service workers, among other things, for mobile devices as well as standard desktop-based web browsers. If you're into developing modern web and mobile applications, getting informed on Progressive Web Application (PWA) development is something you should consider. A writeup to this episode can be found via https://www.thepolyglotdeveloper.com/2018/05/tpdp-episode-18-progressive-web-application-development/