Episodit

  • JB Benjamin, creator of Vox Messenger and Vox Crypto apps is interviewed by Alistair on this episode of The Technology Whisperers podcast, where we talk about privacy, AI, cryptography and equity in a world where quantum computing is now a reality.

  • This week we talk about the massive data breach over at MediSecure Australia, which after just a few weeks has left the once profitable company in administration. This begs the question - were they always thinking about the security basics? Alistair goes through what those basics are and what you can do to protect your organisation.

    Get Alistair on Linkedin: https://www.linkedin.com/in/alistairjross/

    Visit Revolution InfoSec at: https://revolutioninfosec.com

  • Puuttuva jakso?

    Paina tästä ja päivitä feedi.

  • The Technology Whisperers: Season 3, Episode 6 - "Embracing Open Source"

    Episode Summary:

    In this insightful episode, Alistair Ross and Sean Muller delve deep into the world of open source software. From its history and evolution to its impact on the tech industry and current challenges, this discussion covers a broad spectrum of topics related to open source technologies. Whether you're a developer, a tech enthusiast, or someone curious about how open source software powers much of the digital world, this episode is packed with valuable insights.

    Key Takeaways:

    History of Open Source: The origins and evolution of open source software, tracing back to its roots in the early days of computing with UNIX systems.Understanding Open Source Licensing: Clarification of common misconceptions about open source being synonymous with 'free' and an explanation of different types of open source licenses.Commercial Success and Challenges: How companies like Red Hat have successfully built businesses around open source and the challenges they face as the industry evolves.Security and Community: Discussion on the community-driven model of open source, which allows for rapid bug fixes and feature additions but also presents challenges like security and maintenance.The Future of Open Source: Considerations on the shifting landscape of open source as corporate acquisitions become more common, and what that means for the future of the technology.

    Episode Highlights:

    Anecdotes about key figures and pivotal moments in the history of open source.Insights into how businesses utilise open source for both cost savings and innovation.The role of community in developing and maintaining open source projects.Potential risks and benefits of using open source in enterprise environments.

    Listener Engagement: Listeners are encouraged to contribute to the discussion by sharing their own experiences with open source, asking questions, or suggesting future topics related to technology trends.

    Closing Thoughts: As open source continues to shape the technological world, understanding its dynamics is crucial for anyone involved in IT or software development. This episode not only sheds light on the critical aspects of open source but also invites the audience to appreciate the community-driven nature of this transformative movement.

    Contact Details

    Alistair Ross

    [email protected]

    Web: https://revolutioninfosec.com

    Linkedin: https://www.linkedin.com/in/alistairjross https://www.linkedin.com/company/revolutioninfosec

    Sean G Muller

    [email protected]

    Linkedin: https://www.linkedin.com/in/sgmuller/

    Subscribe and Review:

    Support the Technology Whisperers by subscribing to our podcast on your favorite podcast app and leaving a review. Share this episode with anyone interested in the intersection of technology and diversity.

    On Apple Podcast https://podcasts.apple.com/nz/podcast/the-technology-whisperers-a-technology/id1609516270Spotifyhttps://open.spotify.com/show/0Hk3B5ftWt8DQEKZpkTSwA?si=9983d5ad421d4509Google Playhttps://podcasts.google.com/feed/aHR0cHM6Ly9mZWVkLnBvZGJlYW4uY29tL3RoZXRlY2hub2xvZ3l3aGlzcGVyZXJzL2ZlZWQueG1sAnd remember to demystify the technology world with Sean and Alistair. Subscribe and listen to every episode.

  • The Technology Whisperers: Season 3, Episode 5 - "Current Events for April 2024"

    Episode Summary:

    Join Alistair Ross and Sean Muller in this informative episode as they delve into the latest happenings in the IT space, with a particular focus on cybersecurity and AI. The hosts provide expert insights into recent security breaches, developments in AI, and the implications of new technologies on business and security practices.

    Key Takeaways:

    Recent Security Breaches: An in-depth discussion on the significant security issues faced by Microsoft, including a major data breach by the hacking group Nobilium.AI Developments and Concerns: Examination of the AI hype cycle, comparisons to the dot-com bubble, and practical implications for businesses in leveraging AI technologies.Quantum Computing and Cryptography: Exploration of the advancements in quantum computing and the essential move towards post-quantum cryptography.Green Computing: The ongoing challenges and strategies related to reducing the carbon footprint in tech, especially concerning AI's power consumption.The Role of Open Source in Cybersecurity: A critical look at how open-source software underpins much of the internet and the risks associated with its widespread use.

    Episode Highlights:

    Analysis of AI's market impact, drawing parallels with historical tech booms and potential future trends.Discussion on the strategic national and corporate moves towards securing data against future quantum decryption capabilities.Insights into the potential environmental impact of expanding AI technologies and the necessary innovations to counteract these issues.A cautionary tale about the vulnerabilities inherent in the widespread use of open-source software and the potential global implications of security oversights.

    Listener Engagement: Listeners are encouraged to share their experiences and thoughts on how current IT developments affect their work or personal security practices. Questions for Sean or suggestions for future topics can be submitted via social media or the podcast's website.

    Closing Thoughts: As technology continues to evolve rapidly, staying informed about the latest developments and security practices is crucial for everyone, from IT professionals to casual users. Join us next time as we continue to explore the fascinating world of technology, providing clarity and insights into the complex digital landscape.

    Contact Details

    Alistair Ross

    [email protected]

    Web: https://revolutioninfosec.com

    Linkedin: https://www.linkedin.com/in/alistairjross https://www.linkedin.com/company/revolutioninfosec

    Sean G Muller

    [email protected]

    Linkedin: https://www.linkedin.com/in/sgmuller/

    Subscribe and Review:

    Support the Technology Whisperers by subscribing to our podcast on your favorite podcast app and leaving a review. Share this episode with anyone interested in the intersection of technology and diversity.

    On Apple Podcast https://podcasts.apple.com/nz/podcast/the-technology-whisperers-a-technology/id1609516270Spotifyhttps://open.spotify.com/show/0Hk3B5ftWt8DQEKZpkTSwA?si=9983d5ad421d4509Google Playhttps://podcasts.google.com/feed/aHR0cHM6Ly9mZWVkLnBvZGJlYW4uY29tL3RoZXRlY2hub2xvZ3l3aGlzcGVyZXJzL2ZlZWQueG1sAnd remember to demystify the technology world with Sean and Alistair. Subscribe and listen to every episode.

  • Women in CyberSecurity: The Spicy Brain Episode - Reloaded

    Hosts: Sean Muller and Alistair RossGuests: Hilary Walton, Kat Lennox Steele, Sasha MullinsRelease Date: Originally aired 12 Sept 2023

    Episode Summary

    In this Reload of our most downloaded episode ever of Technology Whisperers, hosts Sean and Alistair are joined by three remarkable guests: Hilary Walton, Kat Lennox Steele, and Sasha Mullins, for an in-depth discussion on women's unique pathways into the cybersecurity field. Dubbed "The Spicy Brain Episode," this conversation sheds light on the diverse backgrounds, challenges, and triumphs these women have experienced in the tech industry.

    Key Points Discussed:Introduction to Cybersecurity: Each guest shares their unique journey into the cybersecurity world, highlighting the diverse paths one can take to enter this dynamic field.Overcoming Barriers: The guests discuss the various challenges they faced, including imposter syndrome, gender biases, and finding their voice in a male-dominated industry.The Role of Mentorship: Insights into the importance of mentorship, advocacy, and building supportive networks in personal and professional growth within cybersecurity.Neurodiversity in Tech: A candid conversation about neurodiversity, including ADHD, and how it influences work styles, creativity, and problem-solving in cybersecurity.Empowerment and Inclusion: Strategies for fostering a more inclusive and supportive environment in tech for women and underrepresented groups.Memorable Quotes:"It's about leaning into the fact that you're different... cybersecurity allows you to work with your brain rather than against it." - Sasha Mullins"You need to put your own oxygen mask on first... I had to do those things so that when I got out the other side, I still had a career worth leaving my baby for." - Hilary Walton"Seeing somebody who has got a few similarities to yourself, like the fact that she's female and she's a mom, doing amazing work... that stuff's pretty inspiring." - Kat Lennox SteeleConnect with Our Guests:

    Hilary [email protected]://www.linkedin.com/in/hilswalton/

    Kat Lennox-Steele

    [email protected]

    https://www.linkedin.com/in/klennox-steele/

    Sasha Mullins

    [email protected]

    https://www.linkedin.com/in/sasha-mullins-335325a3/

    Contact Details

    Alistair Ross

    [email protected]

    Web: https://revolutioninfosec.com

    Linkedin: https://www.linkedin.com/in/alistairjross https://www.linkedin.com/company/revolutioninfosec

    Sean G Muller

    [email protected]

    Linkedin: https://www.linkedin.com/in/sgmuller/

    Subscribe and Review:

    Support the Technology Whisperers by subscribing to our podcast on your favorite podcast app and leaving a review. Share this episode with anyone interested in the intersection of technology and diversity.

    On Apple Podcast https://podcasts.apple.com/nz/podcast/the-technology-whisperers-a-technology/id1609516270Spotifyhttps://open.spotify.com/show/0Hk3B5ftWt8DQEKZpkTSwA?si=9983d5ad421d4509Google Playhttps://podcasts.google.com/feed/aHR0cHM6Ly9mZWVkLnBvZGJlYW4uY29tL3RoZXRlY2hub2xvZ3l3aGlzcGVyZXJzL2ZlZWQueG1sAnd remember to demystify the technology world with Sean and Alistair subscribe and listen to every episode

  • Episode Summary:

    In this riveting episode of The Technology Whisperers, hosts Alistair Ross and Sean Muller are joined by David McDonald, a serial entrepreneur, futurist, and expert in Artificial Intelligence. Together, they dive deep into the current state and future potential of AI technologies, debunking myths, exploring opportunities, and addressing some of the most pressing concerns surrounding AI's impact on society and business.

    Guest Bio: David McDonald: With decades of experience in the tech industry, David has been at the forefront of leading-edge technologies, especially in AI and blockchain. His career includes significant roles such as CEO of Centrality Japan and leading various ventures and startups to success. David is passionate about the transformative power of AI and its application across different sectors.

    Key Takeaways:

    The Role of a Futurist: David shares his insights into what it means to be a futurist in today's rapidly evolving technological landscape, emphasising the importance of anticipating technology trends and their practical applications.

    AI Transforming Businesses: Discussion on how AI is revolutionizing industries, with a focus on its application in enhancing efficiency, creating new opportunities, and the challenges of integrating AI into existing business models.

    Ethical and Security Concerns: The episode delves into the ethical considerations and security implications of AI, including data privacy, the potential for bias in AI models, and the importance of open-source models for transparency.

    Future of Work: David and the hosts explore the impact of AI on the job market, discussing the potential for AI to replace certain jobs while also creating new opportunities and industries that we can't yet imagine.

    The Next Big Thing in AI: Predictions for the near future of AI technology, including the rise of generative AI, code abstraction, and the potential for AI to develop applications on demand for personalized user needs.

    Episode Highlights:

    David's journey from a geospatial software engineer to an AI and blockchain innovator.The potential for AI to disrupt industries from within, challenging traditional business models.Discussion on the importance of ethical AI development and the role of regulation.Speculation on the arrival of AGI (Artificial General Intelligence) and its implications.Addressing public fears and misconceptions about AI through education and transparency.

    Listener Engagement: Listeners are encouraged to share their thoughts on AI's impact on society and their own industries. Questions for David or suggestions for future topics can be submitted via social media or the podcast's website.

    Connect with David McDonald:

    LinkedIn: https://www.linkedin.com/in/david-m-7526b712/

    Closing Thoughts: AI is not just shaping the future; it's actively transforming the present. As technology continues to evolve at an unprecedented pace, staying informed and open to change will be crucial for individuals and businesses alike. Join us next time as we continue to demystify the world of technology, one episode at a time.

    Contact Details for Alistair and Sean:

    Alistair Ross

    [email protected]

    Web:

    https://revolutioninfosec.com

    Linkedin:

    https://www.linkedin.com/in/alistairjross

    https://www.linkedin.com/company/revolutioninfosec

    Sean G Muller

    [email protected]

    Linkedin:

    https://www.linkedin.com/in/sgmuller/

    X 'Formerly Twitter': @seangmuller

  • The Technology Whisperers PodcastSeason 3, Episode 2: "SOC(s)/SIEM(s) Demystified"

    Hosts: Alistair Ross and Sean Muller

    Release Date: 11 March, 2024

    Duration: 58:02

    Episode Summary: "The Technology Whisperers," hosted by Sean Muller and Alistair Ross, delves into the intricacies of Security Operations Centers (SOCs) and Security Incident Event Management (SIEM). They begin by clarifying the acronyms SOC and SIEM, discussing their evolution from Network Operations Centers (NOCs) due to the increasing importance of security. They explore the roles and responsibilities within a SOC, emphasising the human element in monitoring, detecting, investigating, and responding to cyber threats. The discussion extends to various SOC models, including in-house, fully managed, and hybrid SOCs, and the challenges of managing a SOC, such as dealing with false positives and negatives, and the importance of well-defined processes. They highlight the significance of integration with business processes and threat intelligence, touching upon the use of SIEM software and the potential of SOAR (Security Orchestration, Automation, and Response) technologies. The conversation also covers vulnerability management, the value of consulting for SOC setup, and the importance of clear communication with the business to secure necessary resources and support.

    In This Episode:

    What is a SOC?What is a SIEM?How to choose a SOC or SIEM.Vulnerability management in SOC(s) and SIEM(s)

    Connect with Us:

    Follow us on your favourite podcast appVisit our website at https://thetechnologywhisperers.podbean.com/Email us your thoughts and questions at [email protected]

    Subscribe and Leave a Review: Your support means the world to us. If you enjoy diving deep into the world of technology with us, please subscribe, leave a review, and share our podcast with your friends and colleagues.

    Next Episode Preview: Don't miss our next episode where we'll explore technologies and how they can best help your business.

    Contact Details for Alistair and Sean:

    Alistair Ross

    [email protected]

    Web: https://revolutioninfosec.com

    Linkedin: https://www.linkedin.com/in/alistairjross https://www.linkedin.com/company/revolutioninfosec

    Sean G Muller

    [email protected]

    Linkedin: https://www.linkedin.com/in/sgmuller/

    X 'Formerly Twitter': @seangmuller

  • The Technology Whisperers PodcastSeason 3, Episode 1: "Welcome Back and Happy New Year!"

    Hosts: Alistair Ross and Sean Muller

    Release Date: 26 February, 2024

    Duration: 40:31

    Episode Summary: Join us as we kick off Season 3 of the Technology Whisperers! In this celebratory return, Alistair and Sean dive into what's in store for the podcast and share their personal anecdotes of diving headfirst into the busy new year. With new insights, exciting topics, and the same passion for demystifying technology, this season promises to be the best one yet.

    In This Episode:

    A warm welcome back to our listenersA sneak peek into Season 3's upcoming themes and guestsHow Alistair and Sean have been navigating the bustling start to their yearReflections on past seasons and aspirations for the future

    Connect with Us:

    Follow us on your favorite podcast appVisit our website at https://thetechnologywhisperers.podbean.com/Email us your thoughts and questions at [email protected]

    Subscribe and Leave a Review: Your support means the world to us. If you enjoy diving deep into the world of technology with us, please subscribe, leave a review, and share our podcast with your friends and colleagues.

    Next Episode Preview: Don't miss our next episode where we'll explore SOCs and SIEMs.

    Contact Details:

    Alistair Ross

    [email protected]

    Web: https://revolutioninfosec.com

    Linkedin: https://www.linkedin.com/in/alistairjross https://www.linkedin.com/company/revolutioninfosec

    Sean G Muller

    [email protected]

    Linkedin: https://www.linkedin.com/in/sgmuller/

    X 'Formerly Twitter': @seangmuller

  • This week we get to do a deep dive on one of Alistair's favorite topics with a truly great guest. Join us as we take a look at the challenges and opportunities in risk analysis and how to make sure your business is safe for the future.

    Agile

    https://www.agilealliance.org/wp-content/uploads/2016/01/Agile-Risk-Management-Agile-2012.pdf

    CSF

    https://www.nist.gov/cyberframework

    NIST

    https://csrc.nist.gov/pubs/sp/800/30/r1/finalhttps://csrc.nist.gov/pubs/sp/800/37/r2/finalhttps://csrc.nist.gov/pubs/sp/800/39/finalhttps://www.nist.gov/cyberframework

    https://nvlpubs.nist.gov/nistpubs/legacy/sp/nistspecialpublication800-39.pdf

    OWASP

    https://owasp.org/https://owasp.org/www-community/Threat_Modeling

    https://www.linkedin.com/in/john-dileo/https://www.holloway.com/g/security-for-everyone/preview Security Book written by Laura Bell & Erica Andersonhttps://www.linkedin.com/in/lauradbell/https://www.linkedin.com/in/erica-anderson-sputnik/ Anna Lezhikova LinkedIn: https://www.linkedin.com/in/annalezhikova/List of Anna's talks: https://www.linkedin.com/in/annalezhikova/details/publications/

    https://www.defend.co.nz/

    Contact Details

    Alistair Ross

    [email protected]

    Web: https://revolutioninfosec.com

    Linkedin: https://www.linkedin.com/in/alistairjross https://www.linkedin.com/company/revolutioninfosec

    Sean G Muller

    [email protected]

    Linkedin: https://www.linkedin.com/in/sgmuller/

    X 'Formerly Twitter': @seangmuller

  • Oh the Drama, Is this the next Netflix limited series?. In this special 'early release' episode Alistair and Sean take a look at the last 2 weeks and the significant corporate drama around what may arguably be the biggest tech company in the world right now, OpenAI, and their embattled CEO, Former CEO, again CEO Sam Altman.

    Hot off the presses a OpenAI press release, made after our recording

    https://openai.com/blog/sam-altman-returns-as-ceo-openai-has-a-new-initial-board

    For a breakdown of events witha. timeline and some of the personalities involved:

    https://www.abc.net.au/news/2023-11-26/openai-sam-altman-board-inside-the-chaotic-week/103149570

    A deeper dive into the makeup of OpenAI:https://newsletter.pragmaticengineer.com/p/what-is-openai OpenAI: https://openai.com/ChatGPT: https://openai.com/chatgptQ* (QStar): https://en.m.wikipedia.org/wiki/Q*NVIDIA: https://www.nvidia.comMicrosoft: https://microsoft.com/ai

    And for those interested a speculative deep dive into what Q* might actually be and why it really matters:

    https://www.interconnects.ai/p/q-star

    Contact Details

    Alistair Ross

    [email protected]

    Web: https://revolutioninfosec.com

    Linkedin: https://www.linkedin.com/in/alistairjross https://www.linkedin.com/company/revolutioninfosec

    Sean G Muller

    [email protected]

    Linkedin: https://www.linkedin.com/in/sgmuller/

  • This week Alistair and Sean start trying to demystify DevSecOps. They pull it apart from the business value perspective and discuss the why and what of it in a way that is easy to relate to. There will be a followup Part 2 where they dive deeper into the how of making DevSecOps work and moving left in the development pipeline.

    Contact Details

    Alistair Ross

    [email protected]

    Web: https://revolutioninfosec.com

    Linkedin: https://www.linkedin.com/in/alistairjross https://www.linkedin.com/company/revolutioninfosec

    Sean G Muller

    [email protected]

    Linkedin: https://www.linkedin.com/in/sgmuller/

  • This week Alistair and Sean tackle the big hairy technology Quantum Computing and start the process of demystifying what it is how it works and why we would should care.

    Links:

    https://newsroom.ibm.com/2022-11-09-IBM-Unveils-400-Qubit-Plus-Quantum-Processor-and-Next-Generation-IBM-Quantum-System-Two

    https://newsroom.ibm.com/IBM-research?item=32425

    https://www.linkedin.com/posts/tswarren_ais-social-responsibility-plot-twist-doing-activity-7124838672121704449-zuBZ?utm_source=share&utm_medium=member_desktop

    https://www.spinquanta.com/products - 2Qubit desktop computer

    Contact Details

    Alistair Ross

    [email protected]

    Web: https://revolutioninfosec.com

    Linkedin: https://www.linkedin.com/in/alistairjross https://www.linkedin.com/company/revolutioninfosec

    Sean G Muller

    [email protected]

    Linkedin: https://www.linkedin.com/in/sgmuller/

  • This episode Alistair and Sean do something a bit different. We bring Bernard Hickey in to talk about politics and economics and we try and demystify the why of technology under investments in New Zealand.

    Bernard is an independent speaker and writer about economics & politics. He produces email newsletter + podcast for subscribers via thekaka.substack.com & 5in5withANZ.substack.com and Podcasts weekly via The Spinoff's When the Facts Change.

    Bernard Hickey

    Linkedin: https://www.linkedin.com/in/bernard-hickey-44334a14/

    https://thekaka.substack.com/

    https://5in5withanz.substack.com/

    https://thespinoff.co.nz/podcasts/when-the-facts-change

    Contact Details for Alistair and Sean

    Alistair Ross

    [email protected]

    Web: https://revolutioninfosec.com

    Linkedin: https://www.linkedin.com/in/alistairjross https://www.linkedin.com/company/revolutioninfosec

    Sean G Muller

    [email protected]

    Linkedin: https://www.linkedin.com/in/sgmuller/

  • This episode we dive into the rise of AI, ChatGPT and some of the risks and benefits AI can provide along with the brilliant commentary of Tim Warren.

    Tim Warren is the CEO and Co-Founder of Ambit, a leading NZ AI software company specialising in GPT Conversational AI for customer service automation.

    He presents regularly on AI and leadership. With a background in Software and Finance, including roles at Goldman Sachs and JBWere, Tim is also an angel investor with 15+ investments. He's a drummer, music enthusiast, and a dad of twin boys.

    Ambit

    https://www.ambit.ai/

    ChatGPT

    https://chat.openai.com/auth/login

    Open AI

    https://openai.com/

    Contact Details

    Tim Warren

    Linkedin: https://www.linkedin.com/in/tswarren/

    Alistair Ross

    [email protected]

    Web: https://revolutioninfosec.com

    Linkedin: https://www.linkedin.com/in/alistairjross https://www.linkedin.com/company/revolutioninfosec

    Sean G Muller

    [email protected]

    Linkedin: https://www.linkedin.com/in/sgmuller/

  • This episode we demystify the Alistair's journey into the IT space and how he became a thought leader in security, risk and governance. It is a great story and worth a listen to.

    Bulletin board documentary

    https://youtu.be/n0OwGSX2IiQ?si=2moXKTFOHK-f1ubh

    Al's Geek Lab

    https://www.youtube.com/channel/UCpa_ZxyIl8u1TS3-rS1bTrg

    Contact Details

    Alistair Ross

    [email protected]

    Web: https://revolutioninfosec.com

    Linkedin: https://www.linkedin.com/in/alistairjross https://www.linkedin.com/company/revolutioninfosec

    Sean G Muller

    [email protected]

    Linkedin: https://www.linkedin.com/in/sgmuller/

  • The Spicy Brain Episode

    This episode we welcome 3 wonderful women leading in Cybersecurity and governance. We hear about their journey and what worked and what didn't. Along the way we get to talk about some great different perspectives and how a Spicy Brain can make the work better.

    If anything resonates with you don't hesitate to reach out to them.

    Women in CyberSecurity Panel

    Hilary [email protected]://www.linkedin.com/in/hilswalton/

    Kat Lennox-Steele

    [email protected]

    https://www.linkedin.com/in/klennox-steele/

    Sasha Mullins

    [email protected]

    https://www.linkedin.com/in/sasha-mullins-335325a3/

    Contact Details

    Alistair Ross

    [email protected]

    Web: https://revolutioninfosec.com

    Linkedin: https://www.linkedin.com/in/alistairjross https://www.linkedin.com/company/revolutioninfosec

    Sean G Muller

    [email protected]

    Linkedin: https://www.linkedin.com/in/sgmuller/

  • Contact Details

    Alistair Ross

    [email protected]

    Web: https://revolutioninfosec.com

    Linkedin: https://www.linkedin.com/in/alistairjross https://www.linkedin.com/company/revolutioninfosec

    Sean G Muller

    [email protected]

    Linkedin: https://www.linkedin.com/in/sgmuller/

    In This Episode we demystify:

    Security and the recent security events

    Risk and how risk is measured

    What exactly is a CISO and a vCISO

    Why Cloud Knowledge needs to be part of a Pen Testers skillset

    And our upcoming panel discussion with 3 great women in Security

    External Links:

    What is a CISO and what do they do:https://www.linkedin.com/posts/revolutioninfosec_ciso-vciso-activity-7090130958212878336-zqpG?utm_source=share&utm_medium=member_android Revolution InfoSec Website Link:revolutioninfosec.com

    The CISO that BORED the BOARD Room Video by Alistair:

    https://lnkd.in/g2AqtZyc

    Criminals go full Viking on CloudNordic, wipe all servers and customer data

    https://www.theregister.com/2023/08/23/ransomware_wipes_cloudnordic/

    CyCognito State of External Exposure Management Report

    https://www.cycognito.com/resources/analyst-report/cycognito-state-of-external-exposure-management-report

    Referring Episodes

    Zero Trust Networking

    https://www.podbean.com/ew/pb-wydew-124d0b4

    Women in Technology episode with Amanda Watsonhttps://www.podbean.com/ew/pb-tg9k5-11c1065

  • Contact Details

    Alistair Ross

    [email protected]

    Web: https://revolutioninfosec.com

    Linkedin: https://www.linkedin.com/in/alistairjross https://www.linkedin.com/company/revolutioninfosec

    Sean G Muller

    [email protected]

    Linkedin: https://www.linkedin.com/in/sgmuller/

    Show Notes:

    1) OpenAI are being sued.

    Since the inception of ChatGPT back in November 2021, controversy has never been far away, and smaller legal battles have always been looming, however, at the end of June, A firm in California filed a class-action lawsuit for "stealing" personal data in order to train ChatGPT.

    What is interesting about this case is that depending upon how well prepared the complainants are, OpenAI may be required to fess up to how they trained their model. The only public information about OpenAI's ChatGPT that we really know is that OpenAI scraped 300 billion words from the Internet. We don't know how they scraped them and where they scraped it from. The complainant states that OpenAI trained its model partially with personal information, some of it from social media accounts, including Twitter and Reddit. The complainant goes on to state that OpenAI did so in secret, without registering as a data broker as was required to do under applicable laws.

    The most interesting aspect for me is by how much OpenAI are profiting from these sources, or whether they in fact are profiting, OpenAI have oft stated that they do not (yet) turn a profit. Certainly, on paper, OpenAI are worth many billions in unrealised value, and recently Microsoft made a $10B USD stake in them, so that might have turned them into a profit making machine. The fifteen counts in the complaint include privacy violations, negligence in failing to protect personal information, as well as larceny by obtaining large amounts of personal data to train its models by illegal means. The lawsuit has stretched as far as to seek injunctive relief in the form of a temporary freeze on commercial use of OpenAI's products. If granted, this could have vast reaching effects on organisations that currently use OpenAI's model on their own applications or services.

    Where do you sit on this Sean? It could be argued that the information that is publicly accessible on the Internet is free for anyone to see, including OpenAI, regardless of whether that is ethically responsible, it certainly is 'freely available'. On the other hand, it could be argued that people have a right to be guardians of their own content. If it is to be used in a wholesale manner by another corporation (potentially for profit), then they must seek permission from the original content author. Doing otherwise could be seen as a violation of privacy.

    2) Elon Musk launches new AI company called xAI.

    A team around of 12 engineers. His mission he states to 'Understand the true nature of the Universe'. On the website, it states that more information is coming in the following weeks and months, so I won't expect to see anything like an OpenAI or Bard competitor for the foreseeable future. However, they certainly have the chops to do it, remembering that Musk was one of the original founders of OpenAI.

    What is interesting is that Musk was also one of the people who recently spoke out about AI as a whole, and took issue with the rapid pace of development (mainly pointed at OpenAI), stating that we should press the pause button on AI development. By launching this startup, it's clear that he's made a u-turn on that decision!

    The website states that it is a standalone company, unrelated from Tesla and other Musk companies including Twitter (now called X corp), however Musk states that he will work closely with them to make progress towards xAI's mission. From a privacy perspective, will this mean that it could use tweets (including DMs) as a training model for xAI? Obviously this is possibly where OpenAI are in hot water, as per my previous story, so it will be interesting to find out how transparent Musk will be about the training and development of xAI. However, Musk is well known to be critical about the less than transparent nature of OpenAI, he would likely have a lot of egg on face if he too, chose to be less than open about the training of his model.Obviously this is possibly where OpenAI are in hot water, as per my previous story, so it will be interesting to find out how transparent Musk will be about the training and development of xAI. However, Musk is well known to be critical about the less than transparent nature of OpenAI, he would likely have a lot of egg on face if he too, chose to be less than open about the training of his model.Obviously this is possibly where OpenAI are in hot water, as per my previous story, so it will be interesting to find out how transparent Musk will be about the training and development of xAI. However, Musk is well known to be critical about the less than transparent nature of OpenAI, he would likely have a lot of egg on face if he too, chose to be less than open about the training of his model.Obviously this is possibly where OpenAI are in hot water, as per my previous story, so it will be interesting to find out how transparent Musk will be about the training and development of xAI. However, Musk is well known to be critical about the less than transparent nature of OpenAI, he would likely have a lot of egg on face if he too, chose to be less than open about the training of his model.

    3) China has taken a major step in regulating generative AI like ChatGPT

    this happened a couple of weeks ago, making it one of the first countries in the world to do so. The first draft of the law was fairly substantial in its punitive measures, which would see companies and individuals breaking the law fined up to 100,000 yuan. The wording was relaxed to allow development of secure and trustworthy chips, software, tools and computing power, however the key provisions in the new law which is to go into law on the 15th of August will require AI service providers to conduct routine, thorough security reviews and all of their algorithms must be registered with the Beijing government. China wants to press ahead in the world of AI, but has lacked the freedom to do so from its government. Companies like Baidu and Alibaba have not released any mainstream AI products (probably for fear of reprisal from the government). It will be interesting to see if this stifles innovation or allows China to leapfrog the USA. Eyes will be on the China following 16th August to see what Alibaba, JD and Baidu have been developing in the background.

    4) Bard's quiet updates. On the 14th July, Google quietly released an update to Bard.

    The groundbreaking update to Bard is the ability for it to accept images in its prompts. You can take a photo of your fridge and ask Bard to give you some recipes to rustle up, for example.

    5) In other update news, ChatGPT got a new Beta feature that is called "Code Interpreter".

    With this, you can give ChatGPT a prompt and with the interpreter switched on, it will know how to write and execute python code. It can also accept with file uploads. This is extremely helpful for aspects of data analysis, image conversions, or editing a code file. OpenAI say that the data does not persist past a session and is deleted after the session is gone.

  • This fortnight we dive deep into demystifying the migration to cloud journey that many of you are going through. Apologies for missing the 1st of July episode and Alistair and Sean are working on the coming episodes so let us know if you have a suggestion or want to be a guest.

    Your hosts on this intrepid journey to demystify technology can be found across the internet:

    Alistair Ross

    LinkedIn: linkedin.com/in/alistairjross/

    Email: [email protected]

    YouTube: youtube.com/AlsGeekLab

    Sean Muller

    Instagram https://www.instagram.com/seangmuller/

    Twitter @seangmuller

    Facebook https://www.facebook.com/seangmuller

    LinkedIn https://www.linkedin.com/in/sgmuller/

    Email: [email protected]

    Discord: seangmuller#1887

    Clubhouse: @seangmuller

  • Zero Trust Security

    Traditionally, our networks have been castle and moat style. We trust everything in our castle, and everything after the moat (or in the moat to a lesser extent, ie the DMZ), is untrusted.This was a decent model when all of our infrastructure was based on our own physical networks, in our own server rooms, running our own software that we had the CDs for. But most of the time we are on the Internet. A lot of software runs in the cloud, either as a service, or connects to the Internet for a lot of its services.Today, we can’t trust the stuff on our network anywhere. Internally, externally, or on a DMZ. Thus a ‘perimiterless’ or zero-trust security model has started to become an often-talked about concept.

    In this episode Alistair and Sean demystify what "Zero Trust" is, why an executive at an organisation should care and what they should understand about it. In addition, they dive into a little of the technical 'how' to be successful implementing a "Zero Trust" security model.

    Reference link

    https://www.nccoe.nist.gov/projects/implementing-zero-trust-architecture

    Your hosts on this intrepid journey to demystify technology can be found across the internet:

    Alistair Ross

    LinkedIn: linkedin.com/in/alistairjross/

    Email: [email protected]

    YouTube: youtube.com/AlsGeekLab

    Sean Muller

    Instagram https://www.instagram.com/seangmuller/

    Twitter @seangmuller

    Facebook https://www.facebook.com/seangmuller

    LinkedIn https://www.linkedin.com/in/sgmuller/

    Email: [email protected]

    Discord: seangmuller#1887

    Clubhouse: @seangmuller