InfoSec ICU artwork

Insider Threat Risk Mitigation, Cyber Insurance-backed Certification, Fisticuffs Vulnerability Disclosure

InfoSec ICU

English - April 03, 2019 10:00 - 45 minutes - 30.9 MB - ★★★★★ - 36 ratings
Technology Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
Previous Episode: Old Software Needs Security Love Too, Windows 7 Going the Way of the Dodo, and Pwn2Own
Next Episode: Amazon Echo in Healthcare, College Admissions Hacked, and Healthcare Integrity and Availability Security Needs

Steve and Gerry discuss an insider threat issue that resulted in $700K worth of damage to a company in retaliation for termination. The obvious involuntary terminations activities were performed, but what issues led to a compromise? They spend time covering the advancement on cyber insurance driving security technology adoption. The finish the topics with a […]


The post Insider Threat Risk Mitigation, Cyber Insurance-backed Certification, Fisticuffs Vulnerability Disclosure appeared first on MUSC Podcasts.

Steve and Gerry discuss an insider threat issue that resulted in $700K worth of damage to a company in retaliation for termination. The obvious involuntary terminations activities were performed, but what issues led to a compromise? They spend time covering the advancement on cyber insurance driving security technology adoption. The finish the topics with a case study in vulnerability disclosure being done wrong.


As always they end with One Cool Thing.


Show Notes



Resources:




Insider threats and departing employees.

https://nakedsecurity.sophos.com/2019/03/22/sacked-it-guy-annihilates-23-of-his-ex-employers-aws-servers/


Cyber risk ratings from insurance companies. Do we need yet another measure?

https://www.scmagazine.com/home/security-news/cybercrime/a-collaborative-effort-by-some-of-the-worlds-largest-insurers-has-set-out-to-create-a-consumer-ratings-service-for-the-cybersecurity-industry


Bug reporting gets nasty

https://arstechnica.com/information-technology/2019/03/50-shades-of-greyhat-a-study-in-how-not-to-handle-security-disclosures/


 


One Cool Thing

Is there a doctor in the house?


Auto-pilot tricks to kill your friends.

https://arstechnica.com/information-technology/2019/04/researchers-trick-tesla-autopilot-into-steering-into-oncoming-traffic/




Contact

Email [email protected]


Twitter:

Gerry Auger (@Gerald_Auger)
Steven Cardinal (@sgcardinal)

The post Insider Threat Risk Mitigation, Cyber Insurance-backed Certification, Fisticuffs Vulnerability Disclosure appeared first on MUSC Podcasts.

Twitter Mentions