ES Episode111

From Paul's Security Weekly
Jump to: navigation, search

Enterprise Security Weekly #111

Recorded October 17, 2018 at G-Unit Studios in Rhode Island!

Episode Audio

Hosts

  • Paul Asadoorian
    Embedded device security researcher, security podcaster, and CEO of Active Countermeasures .
  • John Strand
    Security analyst, Founder of Black Hills Information Security, and CTO of Offensive Countermeasures.
  • Annoucements:

    • Check out our On-Demand material! Some of our previously recorded webcasts are now available On-Demand at: securityweekly.com/ondemand.
    • Join us for our Webcast with DomainTools about How To Analyze And Investigate Malicious JavaScript Attacks @3-4pm EST. Go to securityweekly.com/domaintools to register now!

    Briefings Summary: Attivo, Cyxtera, Preveil, Semperis & Guardicore

    I got a chance to catch up with the following companies:

    1. Application Segmentation Explained | GuardiCore - Microsegmentation, bot on-premise and in the cloud. You can profile your network and applications, then build rules to segment between them.
    2. Network Security and Software Defined Perimeter | Cyxtera - Typically this will replace your VPN, but allows you to define rules on who can see applications and systems. Multiple gateways allow you to protect each application and distribute the load.
    3. Attivo gets unconventional about attack surfaces | Attivo - You can now deploy deception into Lamba and hosted container environments.
    4. Preveil Encrypted Email and File Sharing | Preveil - Allows you to easily enable users to send encrypted emails and share files that are encrypted, in addition to keeping admins out and re-issuing keys (but still having the ability to decrypt files encrypted with a different key)
    5. Active Directory Change Resiliency - Backup AD and restore it anywhere, go back post-breach and determine what an attacker did in AD and revert it easily.

    Enterprise News

    1. Open source security management firm WhiteSource raises $35 million
    2. Avast launches AI-based software for phishing attacks - Fintech Roundup
    3. Carbon Black and Secureworks to Expand Long-Time Partnership By Applying Red Cloak Analytics to Carbon Blacks Cb Predictive Security Cloud (PSC)
    4. ShieldX Integrates Intention Engine Into Elastic Security Platform
    5. Trend Micro Converges EDR, Endpoint Security Protection in Apex One
    6. BlackBerry and the Importance of Securing the IoT Future
    7. Syncsort to Address Data Migration for Blockchain Platforms
    8. Imperva to be acquired by Thoma Bravo for $2.1 billion
    9. CyberArk Brings Privileged Session Manager to the Cloud