Shadow AI is already happening -- now what?

This week, Adam and Andy go over CISA's (Cybersecurity & Infrastructure Security Agency) Risk and Vulnerability Assessments finding for 2020. In CISA's report, there were data driven values for different vectors of attack mapped to the MITRE ATT&CK framework. CISA had many recommendations for mitigation that Adam and Andy talk through. ---------------------------------------------- Youtube Video Link: https://youtu.be/V6LAgb4KvFI ---------------------------------------------- Documentation: CISA RVA Documents: https://www.cisa.gov/publication/rva ---------------------------------------------- Contact Us: Website: http://bluesecuritypod.com Twitter: https://twitter.com/bluesecuritypod Instagram: https://www.instagram.com/bluesecuritypodcast/ Facebook: https://www.facebook.com/bluesecpod ---------------------------------------------- Andy Jaw Twitter: https://twitter.com/ajawzero LinkedIn: https://www.linkedin.com/in/andyjaw/ Email: andy@bluesecuritypod.com ---------------------------------------------- Adam Brewer Twitter: https://twitter.com/ajbrewer LinkedIn: https://www.linkedin.com/in/adamjbrewer/ Email: adam@bluesecuritypod.com

19 Heinä 202150min

This week, Andy and Adam take a break from cybersecurity and have a little fun talking about the tech they use. They chat about their phones, computers, headphones, mics, and more! Below are links to the products they talk about. Note: This show is not sponsored. All items are purchased through personal means. ---------------------------------------------- Youtube Video Link: https://youtu.be/6Jq8v3aTM-A ---------------------------------------------- Documentation: Unifi: https://ui.com/consoles/ Asus ZenWifi AX review: https://www.cnet.com/reviews/asus-zenwifi-ax-review/ TP-Link Archer AX90: https://www.nytimes.com/wirecutter/reviews/best-wi-fi-router/ Unraid: https://www.unraid.net/ Synology: https://www.synology.com/en-us Marco's Podcasting Mics: https://marco.org/podcasting-microphones Rodecaster: https://rode.com/interfaces-mixers/rodecaster-pro Podmic: https://rode.com/microphones/podmic Meze 99 Noir Headphones: https://drop.com/buy/massdrop-x-meze-99-noir-closed-back-headphones Marco's Headphones: https://marco.org/headphones-closed-portable Nuraloop: https://www.nuraphone.com/products/nuraloop Herman Miller Aeron: https://www.hermanmiller.com/products/seating/office-chairs/aeron-chairs/ AK Racing Chair: https://drop.com/buy/akracing-premium-gaming-chair Arozzi Arena Desk: https://arozzi.com/product/arena/ USB Hub Switch: https://www.amazon.com/Rosewill-Peripheral-Computers-Controller-Included/dp/B07FQT43DM ---------------------------------------------- Contact Us: Website: http://bluesecuritypod.com Twitter: https://twitter.com/bluesecuritypod Instagram: https://www.instagram.com/bluesecuritypodcast/ Facebook: https://www.facebook.com/bluesecpod ---------------------------------------------- Andy Jaw Twitter: https://twitter.com/ajawzero LinkedIn: https://www.linkedin.com/in/andyjaw/ Email: andy@bluesecuritypod.com ---------------------------------------------- Adam Brewer Twitter: https://twitter.com/ajbrewer LinkedIn: https://www.linkedin.com/in/adamjbrewer/ Email: adam@bluesecuritypod.com

12 Heinä 202142min

This week, Rachel O'Shea, a Senior Technical Specialist in Compliance at Microsoft, join Adam and Andy to talk about information protection and governance. Rachel has a wealth of experience in compliance and she talks about some of the tools within Microsoft's suite to help protect information as well as tips to get started and continuous re-evaluation of your compliance program. ---------------------------------------------- Youtube Video Link: https://youtu.be/vet3BKiKEQQ ---------------------------------------------- Documentation: Rachel O'Shea: https://www.linkedin.com/in/racheloshea/ Microsoft Compliance Center: https://docs.microsoft.com/en-us/microsoft-365/compliance/microsoft-365-compliance-center?view=o365-worldwide Microsoft Information Protection: https://docs.microsoft.com/en-us/microsoft-365/compliance/information-protection?view=o365-worldwide ---------------------------------------------- Contact Us: Website: http://bluesecuritypod.com Twitter: https://twitter.com/bluesecuritypod Instagram: https://www.instagram.com/bluesecuritypodcast/ Facebook: https://www.facebook.com/bluesecpod ---------------------------------------------- Andy Jaw Twitter: https://twitter.com/ajawzero LinkedIn: https://www.linkedin.com/in/andyjaw/ Email: andy@bluesecuritypod.com ---------------------------------------------- Adam Brewer Twitter: https://twitter.com/ajbrewer LinkedIn: https://www.linkedin.com/in/adamjbrewer/ Email: adam@bluesecuritypod.com

5 Heinä 202144min

This week, Adam and Andy talk about what infosec professionals should consider when being asked to block or allow an application. ---------------------------------------------- Youtube Video Link: https://youtu.be/Y8W5LSVpa4M ---------------------------------------------- Documentation: https://www.wired.co.uk/article/blackberry-india ---------------------------------------------- Contact Us: Website: http://bluesecuritypod.com Twitter: https://twitter.com/bluesecuritypod Instagram: https://www.instagram.com/bluesecuritypodcast/ Facebook: https://www.facebook.com/bluesecpod ---------------------------------------------- Andy Jaw Twitter: https://twitter.com/ajawzero LinkedIn: https://www.linkedin.com/in/andyjaw/ Email: andy@bluesecuritypod.com ---------------------------------------------- Adam Brewer Twitter: https://twitter.com/ajbrewer LinkedIn: https://www.linkedin.com/in/adamjbrewer/ Email: adam@bluesecuritypod.com

28 Kesä 202134min

Adam and Andy have some news to share!

21 Kesä 20215min

This week, Adam and Andy do a deep technical dive on Windows Defender Credential Guard. This security feature is part of Windows 10 Enterprise and not as broadly deployed as it should be. Learn what it is, how it works, and why you should have this on your roadmap to enable. ---------------------------------------------- Youtube Video Link: https://youtu.be/AQsxdW_iYlU ---------------------------------------------- Documentation: https://docs.microsoft.com/en-us/windows/security/identity-protection/credential-guard/credential-guard-manage https://docs.microsoft.com/en-us/windows/security/identity-protection/credential-guard/credential-guard-known-issues ---------------------------------------------- Contact Us: Website: http://bluesecuritypod.com Twitter: https://twitter.com/bluesecuritypod Instagram: https://www.instagram.com/bluesecuritypodcast/ Facebook: https://www.facebook.com/bluesecpod ---------------------------------------------- Andy Jaw Twitter: https://twitter.com/ajawzero LinkedIn: https://www.linkedin.com/in/andyjaw/ Email: andy@bluesecuritypod.com ---------------------------------------------- Adam Brewer Twitter: https://twitter.com/ajbrewer LinkedIn: https://www.linkedin.com/in/adamjbrewer/ Email: adam@bluesecuritypod.com

21 Kesä 202127min

This week, Adam and Andy talk about how cyberattacks and ransomware incidents are increasing in frequency and how the financial impact is getting greater both for payments and for recovery. They go over the sometimes hidden costs of a ransomware attack that security practitioners should be aware of to plan and budget for. ---------------------------------------------- Youtube Video Link: https://youtu.be/RB-ujlVfjfU ---------------------------------------------- Documentation: https://blog.checkpoint.com/2021/05/12/the-new-ransomware-threat-triple-extortion/ https://unit42.paloaltonetworks.com/ransomware-threat-report-highlights/ https://www.fitchratings.com/research/insurance/sharply-rising-cyber-insurance-claims-signal-further-risk-challenges-15-04-2021 ---------------------------------------------- Contact Us: Website: http://bluesecuritypod.com Twitter: https://twitter.com/bluesecuritypod Instagram: https://www.instagram.com/bluesecuritypodcast/ Facebook: https://www.facebook.com/bluesecpod ---------------------------------------------- Andy Jaw Twitter: https://twitter.com/ajawzero LinkedIn: https://www.linkedin.com/in/andyjaw/ Email: andy@bluesecuritypod.com ---------------------------------------------- Adam Brewer Twitter: https://twitter.com/ajbrewer LinkedIn: https://www.linkedin.com/in/adamjbrewer/ Email: adam@bluesecuritypod.com

14 Kesä 202134min

This week, Adam and Andy talk about their digital "Every Day Carry" (EDC). These are tools they use personally on an every day basis to keep themselves and their data safe. They go through each tool and why they use it from phones, to browsers, to what social media accounts they keep. If you have other tools that are interesting that you use, be sure to contact the show and let us know! ---------------------------------------------- Youtube Video Link: https://youtu.be/df2Jd1gCupg ---------------------------------------------- Documentation: Secure Messaging: https://anchor.fm/blue-security-podcast/episodes/Secure-Messaging-ep42ct Mac Management: https://anchor.fm/blue-security-podcast/episodes/Mac-Management-with-Special-Guest-Matthew-Ward-and-Matt-Benyo-eu2i3r ---------------------------------------------- Contact Us: Website: http://bluesecuritypod.com Twitter: https://twitter.com/bluesecuritypod Instagram: https://www.instagram.com/bluesecuritypodcast/ Facebook: https://www.facebook.com/bluesecpod ---------------------------------------------- Andy Jaw Twitter: https://twitter.com/ajawzero LinkedIn: https://www.linkedin.com/in/andyjaw/ Email: andy@bluesecuritypod.com ---------------------------------------------- Adam Brewer Twitter: https://twitter.com/ajbrewer LinkedIn: https://www.linkedin.com/in/adamjbrewer/ Email: adam@bluesecuritypod.com

7 Kesä 202142min