RSA Conference 2018 | Vince in the Bay

Malcolm Harkins is the Chief Security and Trust Officer at Cylance Inc. He oversees information technology, information risk and security, as well as security and privacy policy. Harkins is also responsible for peer out reach activities to drive improvement across the world in the understanding of cyber-risks as well as best practices to manage and mitigate those risks. Previously Harkins was Vice President and Chief Security and Privacy Officer (CSPO) at Intel Corporation.

DIRECT DOWNLOAD OF PODCAST MP3 FILE

Subscribe on iTunes, GooglePlay and Stitcher!

Check out Malcolm’s talks at RSAC

Malcolm on panel at RSAC 2018:

Tagged Cylance, Information Security, Internet, Malcolm Harkins, RSA Conference 2018, security, Security Research, technology

Jul 08 2018

Leave a comment

Cyber Security, GDPR, infosec, National Security, NSA, Privacy, RSA Conference, threat analysis

Podcast: Ben Johnson

Chicago-Ben-Johnson_400x400

Ben Johnson

Ben Johnson is founder and CTO of Obsidian Security and formerly of Carbon Black and the National Security Agency. We met in San Francisco while Ben was in town for RSA 2018. In the interview we discuss his work and how the movie Enemy of the State inspired him to join the NSA. We also discuss GDPR and other cybersecurity related stuff.

DIRECT DOWNLOAD OF PODCAST MP3 FILE

Subscribe on iTunes, GooglePlay and Stitcher!

Tagged Ben Johnson, Carbon Black, cybersecurity, Enemy of the State, GDPR, Gene Hackman, Information Security, National Security Agency, NSA, Obsidian Security, RSA Conference 2018, RSAC18, The Conversation

Jul 05 2018

Leave a comment

Cyber Security, DefCon, GDPR, Giovanni Vigna, hacking, infosec, RSA Conference, technology

PODCAST: Giovanni Vigna

giovanni_vigna_square

Giovanni Vigna

Giovanni is a co-founder and CTO of Lastline, Inc., a company which develops solutions to detect and mitigate advanced malware and targeted threats. He is a Professor in the Department of Computer Science at the University of California in Santa Barbara and director of the Center for CyberSecurity at UCSB. He is co-director of the Security Lab, which is part of the iSeclab group and founder of the Shellphish hacker group which has annually competed in the DEFCON CTF (won in 2005) and also The DARPA Cyber Grand Challenge (3rd place). He also organizes the International Capture The Flag (iCTF), one of the world’s largest attack-defense hacking competitions.

Giovanni’s research focuses on vulnerability analysis, web security, malware analysis, and mobile security. We met in San Francisco at RSAC 2018 this year where he presented two talks, one entitled How Automated Vulnerability Analysis Discovered Hundreds of Android 0-days and also The Good, the Bad and the Ugly of the Ultrasonic Communications Ecosystem.

This episode we discuss all these things plus GDPR, Santa Barbara hot springs and more!

DIRECT DOWNLOAD OF PODCAST MP3 FILE

Subscribe on iTunes, GooglePlay and Stitcher!

Check out Giovanni at RSAC 2018:

How Automated Vulnerability Analysis Discovered Hundreds of Android 0-days

The Good, the Bad and the Ugly of the Ultrasonic Communications Ecosystem

Tagged computers, Cyber Grand Challenge, Cyber Security, DARPA, DEF CON, DEFCON CTF, GDPR, Giovanni Vigna, hacking, iCTF, Information Security, infosec, Internet, Lastline, podcast, Privacy, RSA Conference 2018, RSAC18, security, Security Research, Shellphish, technology, UCSB

Jun 19 2018

Leave a comment

Cyber Security, infosec, Old Lady Gangs, Privacy, RSA Conference, Social Engineering

PODCAST: RSAC 2018 – Jessy Irwin

Guest Jessy Irwin

This episode’s guest is Jessy Irwin, Head of Security at Tendermint. We spoke at RSAC 2018 in San Francisco where she presented Cracking the Security Communications Code: Talk about Security without FUD. She also did a talk at OURSA entitled Defense in Depth: Building An Old Lady Gang. Check out Jessy’s website!

DIRECT DOWNLOAD OF PODCAST MP3 FILE

Subscribe on iTunes, GooglePlay and Stitcher!

Tagged Cyber Security, hacking, Information Security, Jessy Irwin, Old Lady Gangs, OURSA, podcast, RSA Conference 2018, RSAC18, security, Tendermint

May 10 2018

Leave a comment

Cyber Security, hacking, infosec, OSINT, pen-testing, RSA Conference, SECTF, Social Engineering, vishing

PODCAST: RSAC 2018 – Joe Gray

Guest Joe Gray

My guest this episode is social engineering guru Joe Gray. Joe is a Senior Security Architect at IBM and has his own blog and podcast called Advanced Persistent Security. Joe presented a talk at RSA this year with friend of the show Rachel Tobac on social engineering and OSINT which I posted the full audio of here. Joe spoke with me about Social Engineering, OSINT, vishing, SECTFs, password inspections and more!

DIRECT DOWNLOAD OF PODCAST MP3 FILE

Subscribe on iTunes, GooglePlay and Stitcher!!

Tagged ADVANCED PERSISTENT SECURITY, Cyber, Cyber Security, cybersecurity, hacking, Information Security, infosec, Internet, Joe Gray, OSINT, pen-testing, podcast, RSA Conference 2018, SECTF, security, Security Research, Social Engineering, tech, technology, vishing

Apr 22 2018

Leave a comment

bug bounties, Cyber Security, Disclosure, Hackers, hacking, infosec, pen-testing, RSA Conference

PODCAST: RSAC 2018 – Katie Moussouris

Katie-M-RSAC2018

Guest Katie Moussouris

Katie is the founder and CEO of Luta Security. She presented a talk on bug bounties, penetration testing and vulnerability disclosure entitled “Bug Bounty Buzzword Bingo—Deep Dive under a Jumped Shark” at the RSA Conference last week in San Francisco. Check out her slides here.

After her talk she spoke with me about the evolution of bug bounty programs, her work in developing ISO standards for vulnerability disclosure, her path to a career in information security and much more.

This episode is the 1st in a series dedicated to RSA Conference 2018. Stay tuned for more!

DIRECT DOWNLOAD OF PODCAST MP3 FILE

Subscribe on iTunes, GooglePlay and Stitcher!!

Tagged bug bounties, Cyber Security, hacking, Information Security, infosec, Internet, Katie Moussouris, Luta Security, podcast, RSA Conference 2018, security, tech, technology, vulnerability disclosure

Apr 20 2018

1 Comment

infosec, OSINT, pen-testing, RSA Conference, SECTF, Social Engineering, social media, vishing

RSAC 2018 – Rachel Tobac & Joe Gray

Compromising a Fortune 500 Business without Hacking a Thing!

Rachel Tobac and Joe Gray present at RSAC2018!!

A simulated compromise of a Fortune 500 company as part of a social engineering competition will lead to discussion about how data was collected using open source intelligence (OSINT) beyond that of social media and tools. It will identify places to find data, providing insight for more valuable data sources. This will include a demo of OSINT techniques, phishing and a pretexting discussion.

Learning Objectives:
1: Learn how to defend against social engineering.
2: Understand the relative ease in collecting open source intelligence (OSINT).
3: Learn more about the tools and techniques used in social engineering.

CLICK HERE FOR THE SLIDES FROM PRESENTATION

CLICK HERE TO DOWNLOAD MP3 FILE

Tagged hacking, Information Security, Internet, Joe Gray, OSINT, podcast, Rachel Tobac, RSA Conference 2018, security, Social Engineering, tech, technology

Vince in the Bay

VITB 4 LYFE

Tag Archives: RSA Conference 2018

Podcast: Malcolm Harkins

PODCAST: RSAC 2018 – Katie Moussouris

VITB 4 LYFE

Tag Archives: RSA Conference 2018

Share this:

Share this:

How Automated Vulnerability Analysis Discovered Hundreds of Android 0-days

The Good, the Bad and the Ugly of the Ultrasonic Communications Ecosystem

Share this:

Share this:

Share this:

Like this:

Share this:

Compromising a Fortune 500 Business without Hacking a Thing!

Share this: