Episoder
-
In this FIRST Impressions podcast episode, we dive into the fascinating world of mobile network security with Umair Bukhari, Director and Head of Ericsson P-Cert. Umair shares insights on the evolution of telecom threat environments, from the early days of 1G to the cutting-edge advancements in 5G and beyond. In the interview, he highlights how these changes impact both users and network security, emphasizing the importance of secure, cloud-native technologies and zero-trust architecture. This episode is a must-listen for anyone interested in the future of telecom security and the ongoing battle between attackers and defenders in this critical field! Tune in to learn more.
-
Join us on the First Impressions podcast for an exclusive interview with Todd Beardsley from CISA, recorded live at the 36th annual FIRST Conference in Fukuoka, Japan. Todd delves into the Known Exploited Vulnerability (KEV) list, explaining its critical role in cybersecurity and how even years-old vulnerabilities continue to be exploited. Learn about the detective work involved in validating exploitations and the importance of public-private partnerships. Don't miss this insightful episodeâtune in now to stay ahead of cyber threats!
-
Manglende episoder?
-
In this special episode of the First Impressions podcast, recorded at the 36th annual FIRST Conference in Fukuoka, Japan, hosts interview Carson Zimmerman, a seasoned SOC expert. Zimmerman discusses his presentation, "14 Questions Are All You Need," which helps SOCs evaluate performance and address areas for improvement, emphasizing the importance of deep, insightful questions and the human element in security operations. He also highlights the challenges of aligning SOCs with compliance regimes and addresses the issue of burnout in the industry. Tune in to learn tips and tricks to SOC success!
-
In this episode of the First Impressions podcast, hosts Chris John Riley and Martin McKay interview Nitesh Surana and Jaromir Horejsi of Trend Micro to discuss their upcoming talk at the FIRST conference. Their session will explain how they discovered threat actors abusing GitHub's cloud-based development environment, Codespaces, to build and test infostealers. While Codespaces itself is secure, its features can be abused. In this episode, they recommend developers that use such services be aware of potential abuse tactics and share the goal of their FIRSTCON talk is to raise awareness and provide clarity on how cloud providers can improve incident response and quickly shut down reported abuse.
-
In this episode of the First Impressions podcast, hosts Chris John Riley and Martin McKay interview Satoshi Okada and Takuho Mitsunaga , researchers from Toyo University who will be speaking at FIRSTCON24. In the episode, they discuss artificial intelligence, specifically large language models (LLMs) like ChatGPT, and the importance of multi-stakeholder governance for safer AI development. Okada and Mitsunaga explain the pros and cons of LLMs and emphasize the need for governance. Tune in to learn more and be sure to attend their talk this June in Fukuoka!
-
Join the First Impressions Podcast hosts for a chat with FIRSTCON24 Diamond Sponsor representatives, Ko and Rick from LACERT! Explore LACERT's pioneering role in Japan's cybersecurity since 1995, including innovative tools like Falcon Nest, and their overall contributions to global cybersecurity standards. Don't miss the insights of this episode and learn more about the importance of international collaboration in incident response!
-
Join hosts Martin McKeay and Chris John Riley for the newest FIRST Impressions Podcast episode featuring FIRSTCON24 speakers, James Potter and Raja Jasper from Huntington National Bank. The pair discuss their upcoming conference talk and explore the challenges of remote work in cybersecurity. Tune in for expert insights on digital communication etiquette, global team collaboration, and the evolving landscape of cybersecurity in the age of remote work.
-
This First Impressions podcast features representatives from CyCraft, one of FIRSTCON24âs Diamond sponsors. Based in Taiwan, CyCraft utilizes cutting-edge AI and machine learning to tackle a myriad of security challenges, from threat hunting to identity analysis. Tune in to discover why CyCraft is passionate about community engagement and learn about the practical applications of machine learning in cybersecurity, including event triage and attack pattern recognition.
-
Join hosts Martin McKeay and Chris John Riley in this episode of the First Impressions podcast as they chat with Georgy Kucherin from Kaspersky's Global Research and Analysis team. Together they discuss combating sophisticated spyware targeting mobile devices like Pegasus and Operation Triangulation, highlighting the challenges in protecting our digital lives. Kucherin shares strategies for analyzing mobile threats and adapting to evolving tactics, preparing listeners for his talk at the upcoming FIRST Conference in Fukuoka, Japan. Tune in for insights into the frontline of cybersecurity!
-
Tune in to the latest episode of the First Impressions podcast, where hosts Martin McKeay and Chris John Riley sit down with Megan Sanford, VP Chief Product Security Officer at Schneider Electric Energy Management Division. As a keynote speaker at the 36th annual FIRST Conference in Fukuoka, Japan, Sanford shares insights into the world of product security. Discover why a secure development lifecycle and integrating security features into products are crucial for resilience. Sanford introduces ICS for ICS, a concept bridging emergency management with cyber incident response, urging listeners to adopt this framework for enhanced efficiency in handling cyber threats. Don't miss out on this insightful discussion that could shape the future of incident response.
-
In this episode, the FIRST Podcasters interview FIRSTCON24 Program chair, Taki Uchiyama about the upcoming 36th Annual FIRST Conference to be held in Fukuoka, Japan, June 9-14, 2024. Under the theme of âBridging Security Response Gapsâ, Taki shares the importance of communication and collaboration within the security community and his hopes for the 2024 conference. This episode shares an inside look at the challenges of scheduling keynote speakers and the anticipation of a rich selection of presentations. Taki also shares tidbits about the rich cultural and historical attractions of Fukuoka city.
-
In this short episode, the FIRST Podcasters interview FIRSTCON24 Program chair, Taki Uchiyama. The 36th Annual FIRST Conference will be held in Fukuoka, Japan, June 9-14, 2024, under the theme: âBridging Security Response Gapsâ. Taki shares some of the topics he hopes to highlight next year including improving industry diversity and showcasing emerging security teams. Tune in for details on how to get involved in FIRSTCON24!
-
In this episode, the FIRST Podcasters interview FIRSTCON23 Keynote speaker, Lesley Carhart and discuss her session: âHow Did We Get Here? The History and Future of Cyberattacks against Industrial Control Networksâ. Lesley explains and explores the complicated history of Industrial incident response and just how cybersecurity affects physical systems.
-
In this episode, the FIRST Podcasters interview FIRSTCON23 speaker, Umair Bukhari and discuss his conference session: âExtra-Ordinary Vulnerability Coordination â A Method to the Madnessâ. Umair highlights Ericssonâs newly established PSIRT framework for Extra-Ordinary Vulnerability Coordination (EVC) and the necessary actions, work streams, and communication that must be put in place to efficiently handle such events. Umair shares thoughtful steps for others to adopt the model.
-
In this episode, the FIRST Podcasters interview FIRSTCON23 speaker, Dr. Eugene Spafford and his partner, Dr. Pattie Spafford. Together they discuss their recently published book, âCybersecurity Myths and Misconceptionsâ co-authored by Leigh Metcalf, and Josiah Dykstra. They touch on the importance of communication and clear terminology that surpasses cultural barriers. Cybersecurity is people-centric and yet so much has been done by tech specialists without the end user in mind, the book proposes steps to clear language with metaphoric illustrations by Pattie.
-
In this episode, the FIRST Podcasters interview FIRSTCON23 Diamond Sponsor Rep, Vinay Bansal, the CTO of Ciscoâs CSIRT. Vinay discusses Ciscoâs long history with FIRST and its Special Interest Groups (SIGs) and shares details on Ciscoâs new initiative for Attack Surface Management. This episode highlights the importance of information sharing and mentoring and how FIRST conferences have been a platform to create invaluable global relationships.
-
In this episode, the FIRST Podcasters interview FIRSTCON23 speakers, Kevin Hagopian and Emer OâNeill, and discuss their conference session: âSmall But Mighty - The Crucial Role a PSIRT Plays in Customer Trust, Adoption and Renewalâ. Kevin and Emer highlight the evolution of a PSIRT within a software company, and how to best adapt processes and policies to protect a companyâs brand.
-
In this episode, the FIRST Podcasters interview FIRSTCON23 speaker, Jaromir Horejsi, and preview his upcoming conference session: âAbusing Electron-Based Applications in Targeted Attacksâ. Jaromir provides an overview on Electron frameworks and how they are targeted and attacked by infection vectors.
-
In this episode, the FIRST Podcasters interview FIRSTCON23 speaker, Koen van Hove, and preview his upcoming conference session: âSPooFd: How to Spoof Mails, Even with Full SPF and DMARC Protectionâ. Providing a brief history of the internet and email, Koen explains how email spoofing started and transformed. Koen spotlights big vendors and how they approach email security. In his talk, Koen will demonstrate how SPF and DMARC protections are bypassed and outline a path to better security.
-
In this episode, the FIRST Podcasters interview Jay Jacobs, who is a co-chair of the Exploit Prediction Scoring System Special Interest Group (EPSS SIG) and one of the founders of the Cyentia Institute. Evolving over the last year and a half, EPSS works to gather as much data as possible on vulnerabilities and look for indicators that something will be exploited in the future. Scores are updated daily with new evidences gained on potential exploitations. It is nearly impossible for companies to keep up with all their vulnerabilities, so prioritization is a must. Exploitation activity helps narrow down whatâs important. The EPSS SIG is constantly updating and improving models to close gaps.
- Vis mere