Take 1 Security Podcast: Episode 9
Unsupervised Learning9 Maalis 2015

Take 1 Security Podcast: Episode 9



START CONTENT


* Sorry about the audio last week; wireless headsets don’t compare to the Yeti
* The CIA is focusing on cyberespionage in its new management
* Anthem is refusing an audit by the OIG office–an org that audits health care groups that provide services to federal employees


* Nothing says I’m guilty like refusing an audit
* Reminds me of the Russians refusing the crash investigation in Game of Cards

* There’s been a possible credit card breach at the Mandarin Oriental hotel chain


* The incident was reported by Brian Krebs

* Three people were indicted in the Epsilon hack


* Resulted in around 1 billion email addresses being stolen

* Dave Aitel thinks junk hacking is a waste


* Basically hacking your blender or whatever
* In my opinion he’s missing the point that most conferences are like this
* I think there’s a hierarchy of talks


* Create new defense tool based on new defense idea
* Create new defense idea
* Create new attack tool based on new attack idea
* Create new attack idea
* Create new tool for existing attack or defense idea
* Describe existing attack or defense idea


* Microsoft has reported it’s vulnerable to FREAK as well, making it even more serious


* FREAK has proved to be less alarming than previous SSL vulns simply because of the difficulty of attack



END CONTENT

Play Podcast

Notes


* I think I’m going to standardize the intro and outro so that I only end up recording the actual story content each week.
* Any recommendations on what else you’d like to see would be appreciated.

Become a Member: https://danielmiessler.com/upgrade

See omnystudio.com/listener for privacy information.

Tämä jakso on lisätty Podme-palveluun avoimen RSS-syötteen kautta eikä se ole Podmen omaa tuotantoa. Siksi jakso saattaa sisältää mainontaa.

Jaksot(541)

The 4 AAAAs of the AI ECOSYSTEM: Assistants, APIs, Agents, and Augmented Reality

The 4 AAAAs of the AI ECOSYSTEM: Assistants, APIs, Agents, and Augmented Reality

In this episode, I break down what I believe is the emerging structure of the AI-powered world we're all building—consciously or not. I call it the “Four A’s”: Assistants, APIs, Agents, and Augmented ...

22 Huhti 202527min

Using the Smartest AI to Rate Other AI

Using the Smartest AI to Rate Other AI

In this episode, I walk through a Fabric Pattern that assesses how well a given model does on a task relative to humans. This system uses your smartest AI model to evaluate the performance of other AI...

19 Huhti 20259min

A Conversation with Patrick Duffy from Material Security

A Conversation with Patrick Duffy from Material Security

➡ Secure what your business is made of with Martial Security: https://material.security/ In this episode, I speak with Patrick Duffy from Material Security about modern approaches to email and cloud w...

15 Huhti 202526min

AICAD: Artificial Intelligence Capabilities For Attack & Defense

AICAD: Artificial Intelligence Capabilities For Attack & Defense

AI is changing cybersecurity at a fundamental level—but how do we decide what to build, and when? In this episode, I outline a structured way to think about AI for security: from foundational ideas to...

12 Huhti 202542min

A Possible Path to ASI

A Possible Path to ASI

The conversation around AGI and ASI is louder than ever—but the definitions are often abstract, technical, and disconnected from what actually matters. In this episode, I break down a human-centered w...

8 Huhti 202510min

A Conversation With Matt Muller From Tines

A Conversation With Matt Muller From Tines

➡ Build, run, and monitor workflows with Tines at: tines.com In this episode, I speak with Matt Muller, Field CSCO at Tines, about how automation and AI are transforming security operations at scale. ...

1 Huhti 202539min

UL NO. 474 | Signal OPSEC, White-box Red-teaming LLMs, Unified Company Context (UCC), New Book Recommendations, Single Apple Note Technique, and much more...

UL NO. 474 | Signal OPSEC, White-box Red-teaming LLMs, Unified Company Context (UCC), New Book Recommendations, Single Apple Note Technique, and much more...

STANDARD EDITION: Signal OPSEC, White-box Red-teaming LLMs, Unified Company Context (UCC), New Book Recommendations, Single Apple Note Technique, and much more... You are currently listening to the St...

31 Maalis 202518min

A Conversation With Slava Konstantinov From ThreatLocker

A Conversation With Slava Konstantinov From ThreatLocker

➡ Allow what you need, block everything else with ThreatLocker: threatlocker.com In this episode, I speak with Slava Konstantinov, ThreatLocker's MacOS Lead Architect, about their zero-trust approach ...

18 Maalis 202533min