Securing the Workspace Attackers Already Live In with Rajan Kapoor
Hacker Valley Studio19 Helmi

Securing the Workspace Attackers Already Live In with Rajan Kapoor

Your email gateway isn't enough anymore, attackers are already inside the workspace through OAuth apps, browser extensions, and account takeover.

In this episode, Ron sits down with Rajan Kapoor, VP of Security at Material Security, to break down the real risks hiding inside Google Workspace and Microsoft 365. They cover how phishing has evolved into full-blown business email compromise, why malicious OAuth apps are the new favorite attack vector, and what security teams, especially lean ones, can do right now to lock down their cloud workspace. Rajan also drops practical advice on passkeys, document sharing hygiene, and why data lifecycle management is a problem no one is solving well enough.

Impactful Moments 00:00 – Introduction 03:30 – The current state of phishing 05:30 – Outbound email compromise risk 09:30 – OAuth apps as attack vectors 15:00 – AI agents accessing your workspace 16:00 – Prompt injection is the new SQL injection 18:00 – Allow listing apps immediately 24:30 – Google Workspace vs Microsoft 365 security 27:30 – Custom detections require API expertise 28:00 – Why passkeys matter right now 32:00 – Data lifecycle management for shared docs

Links Connect with our guest, Rajan Kapoor, on LinkedIn: https://www.linkedin.com/in/rajankkapoor/

Learn more about Material Security: https://material.security

___ Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/

Check out our upcoming events: https://www.hackervalley.com/livestreams

Love Hacker Valley Studio? Pick up some swag: https://store.hackervalley.com

Jaksot(422)

The Rise of the Autonomous Blue Team with Vineet Edupuganti

The Rise of the Autonomous Blue Team with Vineet Edupuganti

What if defenders had their own AI-powered task force, always on, always adapting, and finally one step ahead of attackers? In this episode, Ron welcomes Vineet Edupuganti, Founder and CEO of Cogent ...

4 Syys 202537min

Turning AI Into Your Super Tool with Ron Eddings

Turning AI Into Your Super Tool with Ron Eddings

AI is neither friend nor foe, it’s both. The way we choose to use it determines whether it helps or harms. In this solo episode, Ron Eddings shares lessons from his first job at a grocery store, his ...

28 Elo 202522min

Mentorship to Mastery: AI and Community Lessons with Ron Eddings

Mentorship to Mastery: AI and Community Lessons with Ron Eddings

AI might analyze your logs in seconds, but only the community can put you in the room that changes your career. In this solo episode, Ron Eddings discusses the powerful balance between human connectio...

21 Elo 202532min

From MCP Risks to AI Jailbreaks with Marco Figueroa

From MCP Risks to AI Jailbreaks with Marco Figueroa

When AI agents move faster than security teams, the game changes, and the risks multiply. Ron welcomes back Marco “Mystic Marc” Figueroa, Program Manager at Mozilla’s 0DIN Program, to continue the con...

14 Elo 202541min

Debt vs. Risk: What the SharePoint Breach Taught Us with Ron Eddings

Debt vs. Risk: What the SharePoint Breach Taught Us with Ron Eddings

The riskiest move in cybersecurity? Playing it too safe. In this solo episode, Ron Eddings redefines the way we think about technical debt, risk, and missed opportunities, in security and in life. Ro...

7 Elo 202516min

The Future of Cyber Talent Is African with Confidence Staveley

The Future of Cyber Talent Is African with Confidence Staveley

The world’s youngest continent is also its most untapped resource. Confidence Staveley, Founder of CyberSafe, makes a powerful case for why Africa’s youth are the answer to global cybersecurity and AI...

31 Heinä 202523min

Compliance Isn’t the Enemy with Jeff Man

Compliance Isn’t the Enemy with Jeff Man

Is compliance just a checkbox, or the backbone of real security? Returning to the show with decades of hard-earned insight, Jeff Man makes the case that compliance, especially PCI-DSS, isn't just a fo...

24 Heinä 202524min

What Makes a Great CISO? A Playbook from Gary Hayslip

What Makes a Great CISO? A Playbook from Gary Hayslip

What separates a great CISO from a great one? In this powerhouse conversation, Ron invites friend and cybersecurity leader Gary Hayslip, CISO at SoftBank Investment Advisers, back on the mic to discus...

17 Heinä 202537min

Suosittua kategoriassa Koulutus

rss-murhan-anatomia
psykopodiaa-podcast
voi-hyvin-meditaatiot-2
adhd-podi
psykologia
rss-valo-minussa-2
rss-tietoinen-yhteys-podcast-2
rss-rahamania
rss-niinku-asia-on
kesken
rss-arkea-ja-aurinkoa-podcast-espanjasta
rahapuhetta
rss-liian-kuuma-peruna
rss-narsisti
dear-ladies
rss-eron-alkemiaa
rss-vapaudu-voimaasi
leikitaanko-laakaria
aamukahvilla
rss-uskonto-on-tylsaa