esw224

Enterprise Security Weekly Episode #224 – April 21, 2021

Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe

1. How Cloud Defenders Thwart Attacks Against Resilient Services – 01:00 PM-01:30 PM

Sponsored By

sponsor
Visit https://securityweekly.com/extrahop for more information!

Announcements

  • Do you want to stay in the loop on all things Security Weekly? Visit https://securityweekly.com/subscribe to subscribe on your favorite podcast catcher or our Youtube channel, sign up for our mailing list, join our Discord Server, and follow us on our newest live-streaming platform, Twitch!

Description

In cybersecurity attackers have a structural advantage over defenders: they can succeed with a staggeringly high failure-rate (not caring that most attacks get blocked at the perimeter). Meanwhile, defenders lose when that single successful attack goes unnoticed regardless of how many attacks were successfully stopped. Disproportionate consequences similarly advantage attackers: typical times to detect and contain that one successful attack are still measured in weeks and months. Yet high-availability and resiliency characteristics built-in to “Well-Architected” microservices offer defenders an opportunity to turn the tables and rob attackers of their asymmetric advantages. The key missing ingredient is a sufficient early-warning system that can detect and respond to advanced threats.

In this presentation, Jeff Deininger, a Principal Cloud Security Engineer, will use a simulated attack to demonstrate how advanced threat detection works with commonplace architectural elements to deny attackers the crucial traction needed to establish a foothold at the beginning of a campaign, leaving attackers feeling like they are inescapably ‘walking on ice’.

This segment is sponsored by ExtraHop Networks.

Visit https://securityweekly.com/extrahop to learn more about them!

Guest(s)

Jeff Deininger

Jeff Deininger – Principal Cloud Security Engineer at ExtraHop

@ExtraHop

Deininger has over 15 years of experience in security and IT operations
with a focus on data center technologies, service delivery and DevOps.
As an AWS Security Specialist, he is interested in the observability
conditions that create effective early warning systems for detecting and
containing cybersecurity events.

Hosts

AdrianSanabria

Adrian Sanabria

@sawaba

Senior Research Engineer at CyberRisk Alliance

MattAlderman

Matt Alderman

@maldermania

Executive Director at CyberRisk Alliance

TylerShields

Tyler Shields

@txs

CMO at JupiterOne

2. Stopping Phishing Breaches at the Point of Click – 01:30 PM-02:00 PM

Sponsored By

sponsor
Visit https://securityweekly.com/pixm for more information!

Announcements

  • Our next live webcast will be on April 29th at 11am ET where you will learn how to prepare for & prevent modern ransomware attacks! Our next technical training will be on May 6th at 11am ET. This technical training webcast will explore common misconfigurations of NGINX, the damage they could do, and how to avoid them. Also join us May 13th at 11am ET for a technical training with Thycotic to see how attackers gain access to endpoints and learn defensive strategies to protect against those attacks. Visit https://securityweekly.com/webcasts to register now! If you missed any of our previously recorded webcasts or technical trainings, they are available for your viewing pleasure at https://securityweekly.com/ondemand

Description

Phishing links are getting past existing protections and clicked. How do you prevent these attacks? In this segment, Chris Cleveland, CEO at Pixm, will demonstrate how computer vision protection in the browser stops these attacks in real time and how you can know your own gaps.

Segment Resources:
Threat Report: https://pixm.net/wp-content/uploads/2021/03/Pixm-Q4-2020-Threat-Report.pdf

This segment is sponsored by Pixm.

Visit https://securityweekly.com/pixm to learn more about them!

Guest(s)

Chris Cleveland

Chris Cleveland – CEO at Pixm

Chris is the Founder and CEO of Pixm, a company that makes AI software to stop phishing breaches and make the web more trustworthy. He started Pixm while a graduate student at Columbia studying machine learning, after he won a pitch contest and a ticket to Blackhat. He started his career getting his thesis published and working in Princeton’s physics department, where he earned his bachelors. He likes travel, audiobooks, and movie soundtracks.

Hosts

AdrianSanabria

Adrian Sanabria

@sawaba

Senior Research Engineer at CyberRisk Alliance

MattAlderman

Matt Alderman

@maldermania

Executive Director at CyberRisk Alliance

TylerShields

Tyler Shields

@txs

CMO at JupiterOne

3. Darktrace & Knowbe4 IPOs, Dell Spins Off VMWare, & Zscaler Keeps Growing – 02:00 PM-02:30 PM

Announcements

  • Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!

Description

In the Enterprise News for this week, Darktrace targets listing for early May, KKR-backed cybersecurity firm KnowBe4 aims for $3 Billion valuation in U.S. IPO, Dell spins off VMware to fuel post-pandemic PC growth opportunities, lots of funding announcements, and more!

Hosts

AdrianSanabria

Adrian Sanabria

@sawaba

Senior Research Engineer at CyberRisk Alliance

  1. FUNDING – Backup firm Druva protects data in the cloud with $147M in new funding – This is a Series H! Nearly half a billion raised with a ~$2bn valuation…
  2. FUNDING – Grip Security raises $6M to improve SaaS security – TechCrunch – Looking like a very late-stage CASB, but they’re YL Ventures-founded, so they’ve got to have something interesting up their sleeve with smart backing and the benefits of hindsight. I’m keen to find out more. Also – $6m is what a Series A looked like less than 10 years ago!
  3. FUNDING – HYPR Raises $35M Series C Led by Advent International
  4. FUNDING – Enterprise security platform Intrigue expands attack surface management with $2M round
  5. FUNDING – Cado Security Closes $10M in Funding to Accelerate Adoption of First and Only Cloud-Native Digital Forensics Platform
  6. FUNDING – PlexTrac Closes $10 Million Round to Fuel Growth of Cybersecurity Workflow Platform – PlexTrac
  7. FUNDING – Talon Cyber Security Raises $26 Million to Develop Next-Generation Cyber Security for a Distributed Workforce
  8. FUNDING – Wire closes $21m Series B funding led by UVC Partners · Wire
  9. FUNDING – Open Source Security Management Firm WhiteSource Raises $75 Million
  10. PUBLIC OFFERING – Cybersecurity Firm Darktrace Targets $4 Billion London IPO
  11. PUBLIC OFFERING – Cellebrite to go public via $2.4 billion SPAC deal
  12. MARKET REPORT – Crunchbase: Cybersecurity Research Report 2021 – * Despite the global pandemic, 2020 was a record year for cybersecurity investments with over $7.8 billion invested in the industry globally. * Investment in cybersecurity companies has increased more than ninefold since 2011. * The U.S. recorded 76% of all global cybersecurity funding in 2020, at $5.9 billion. * Israel is the second leading country in the industry – over 20% of the country’s venture funding went to cybersecurity companies in 2020. * 2020 recorded six new cybersecurity unicorns, a record for a single year at the time. Just a few months into 2021, nine new cybersecurity unicorns have already emerged, well surpassing the 2020 record. * In 2021, over $3.7 billion in cybersecurity investments have been recorded globally so far. This is on pace to smash the 2020 record.
  13. NEW RELEASE – Introducing OpenSearch – A new FOSS fork of Elasticsearch and Kibana from AWS
  14. NEW RELEASE – Checkov 2.0: Deeper, broader, and faster IaC scanning – BridgeCrew is already launching 2.0. The acquisition apparently isn’t slowing them down much.
  15. NEW RELEASE – Rumble 2.1: Notification Templates, AWS EC2 Enrichment, and Cisco SNTC Exports – No flies on HDM
  16. TRENDS – Digital artists meet scam artists, as criminals pounce on NFT craze
  17. ACQUISITION – The Next Phase of Velociraptor – Popular open source DFIR tool acquired by Rapid7. Metasploit still seems to be going strong after Rapid7 acquired it nearly 12 years ago, so this seems like a positive move.
MattAlderman

Matt Alderman

@maldermania

Executive Director at CyberRisk Alliance

  1. Darktrace targets listing for early May
  2. KKR-backed cybersecurity firm KnowBe4 aims for $3 bln valuation in U.S. IPO
  3. HawkEye 360 Secures $55 Million Series C Funding Round
  4. Talon Cyber Security Raises $26M in Seed Funding
  5. ThreatQuotient Looks to Solve The Cyber Problem, Raises $22.5M
  6. CodeLogic Raises $16 Million in Series A Funding
  7. Hack The Box cybersecurity training community Raises $10.6m
  8. Cybersecurity Funding: PlexTrac Raises $10 Million in Series A Financing – MSSP Alert
  9. Cado Security raises $10M for cloud cybersecurity forensics
  10. Cylera Raises $10M for its Cybersecurity Platform for Healthcare IoT – AlleyWatch
  11. Dell spins off VMware to fuel post-pandemic PC growth opportunities
  12. Zscaler Buys Startup Trustdome To Control Cloud Permissions
  13. Israeli Cybersecurity Startup Cyberfish Acquired By Cofense
  14. Zscaler Advances Its Zero Trust Exchange Framework
  15. RiskIQ announced the launch of its RiskIQ Illuminate Internet Intelligence Platform
  16. Okta Stock Rises As Cybersecurity Firm Squares Off Versus CyberArk, SailPoint
  17. Thycotic & Centrify Merge to Form Cloud Identity Security Firm
TylerShields

Tyler Shields

@txs

CMO at JupiterOne