Black Hat Startup Spotlight Finalists – Alex Matrosov, Ian Amit – ESW #327
Full Audio
View Show IndexSegments
1. Talking to the founder of Binarly, a Black Hat Startup Spotlight Finalist – Alex Matrosov – ESW #327
Binarly is one of only a few startups focused on highlighting security issues in firmware. The company has discovered a remarkable number of vulnerabilities in firmware in a very short time. Its' founder, Alex Matrosov, joins us to discuss insights discovered along his company's journey to convince vendors that firmware is worth securing.
Announcements
Join us at an upcoming Official Cyber Security Summit in a city near you! This series of one-day, invitation-only, executive level conferences are designed to educate senior cyber professionals on the latest threat landscape. We are pleased to offer our listeners $100 off admission when you use code SecWeek23 to register. Visit securityweekly.com/cybersecuritysummit to learn more and register today!
Guest
Alex Matrosov is CEO and Founder of Binarly Inc. where he builds an AI-powered platform to protect devices against emerging firmware threats. Alex has over two decades of experience with reverse engineering, advanced malware analysis, firmware security, and exploitation techniques. He served as Chief Offensive Security Researcher at Nvidia and Intel Security Center of Excellence (SeCoE). Alex is the author of numerous research papers and the bestselling award-winning book Rootkits and Bootkits: Reversing Modern Malware and Next Generation Threats. He is a frequently invited speaker at security conferences, such as REcon, Black Hat, Offensivecon, WOOT, DEF CON, and many others. Additionally, he was awarded multiple times by Hex-Rays for his open-source contributions to the research community.
Hosts
2. Tons o’ funding, Black Hat Edition! Acquisitions! Remove your Google results! – ESW #327
This week, we discuss Kubernetes attacks and CPU attacks. We also have a better idea of what valuation losses might be for security startups, thanks to the Check Point/Perimeter 81 acquisition. MITRE releases, ATLAS, an ATT&CK-style framework for machine learning models. Bloodhound's new rearchitected Community Edition is out, and Las Vegas's Sphere hasn't been hacked... yet.
Announcements
Security Weekly listeners: Now is your chance to join the infosec community as they come together at InfoSec World 2023, September 23 – 28, 2023 at Disney's Coronado Spring Resort in Lake Buena Vista, FL. Hear keynotes from Scott Shapiro, Founding Director at Yale CyberSecurity Lab’s and Rachel Wilson, Managing Director and Head of Cybersecurity at Morgan Stanley.
As a Security Weekly community member, you’re able to receive 20% off your InfoSec World 2023 tickets using code ISW23-SECWEEK20! Register today: securityweekly.com/infosecworld2023
Hosts
- 1. FUNDING: Nile Raises $175M Series C Funding to Propel Its Vision to Redefine Enterprise Networks
This is a little outside our normal coverage, but it's an important market trend. Old school networks are finally starting to fade a bit. NaaS (network as a service) gets $175M in funding, while Fortinet stock got hammered. While I don't think stock performance is remotely connected to actual market trends in any reliable way, it's a reminder that the sellers of physical and virtual firewalls and switches must prepare for the software-defined end times.
It will be a tricky balancing act to fully fund the latest SASE/SSE trends, while also still supporting sales of more traditional technologies. Fortinet has a lot of SMB/SME customers that have little to no need for SSE/SASE in its current enterprise-focused and bundled form.
- 2. FUNDING: Cyber Insurer Resilience Secures $100 Million in Funding
- 3. FUNDING: Endor Labs raises $70M in series A funding to reform application security
- 4. FUNDING: Horizon3.ai Raises $40M Series C to Confront Attackers with Proactive, Continuous Security Testing
- 5. FUNDING: Cyble Secures $24M in Series B Funding to Further Advance its AI-Powered Threat Intelligence Solutions
- 6. FUNDING: Converge Insurance Announces $15 Million Series A Funding from Forgepoint Capital
- 7. FUNDING: Silk raises $12.5m in seed funding, launches from stealth
- 8. FUNDING: Tromzo Raises $8M to Bring Deep Environmental Context to Application Security Posture Management
- 9. FUNDING: Abbey Labs Secures $5.25 Million Seed Round led by Point72 Ventures to Automate Access Management
- 10. FUNDING: Hushmesh Raises $5.2M to Fix the Web’s Foundational Security Flaws
- 11. FUNDING: Tenzir Concludes Final Closing of €3 Million Seed Financing Round with G+D Ventures and eCAPITAL to Accelerate Market Expansion
- 12. FUNDING: Jericho Security secures $3M to counter AI-powered phishing attacks – SiliconANGLE
- 13. ACQUISITIONS: Rubrik acquires Laminar to expand in data security across public clouds
- 14. ACQUISITIONS: We Hack Purple Joins Forces with Semgrep!
- 15. ACQUISITIONS: Dynatrace acquires cloud-native debugging platform Rookout
- 16. ACQUISITIONS: Check Point buys Perimeter 81 for $490M to enhance its security tools for hybrid and remote workers
- 17. ATTACKS: Researchers find active campaigns exploiting two Kubernetes misconfigurations
- 18. VULNERABILITIES: New Downfall attacks on Intel CPUs steal encryption keys, data
Similar to Meltdown/Spectre, this vulnerability requires the ability to execute code locally, so shouldn't be a huge priority for most folks, but anyone running multi-tenant services within physical computing boundaries should be taking a close look at this one to see how they might be impacted.
- 19. FRAMEWORKS: MITRE ATLAS
MITRE ATT&CK, but for AI/ML attacks
- 20. TOOLS: BloodHound Community Edition: A New Era
- 21. TOOLS: Daniel Miessler – Google tool to manage search results about YOU
"Google has a new feature that lets you view, and remove, results about you on Google." https://myactivity.google.com/results-about-you?pli=1
- 22. TOOLS: GitHub – utkusen/promptmap: automatically tests prompt injection attacks on ChatGPT instances
- 23. SQUIRREL: Las Vegas Spherewatch results!
"They turned it off. Smart"
3. Talking to a co-founder of Gomboc.ai, a Blackhat Startup Spotlight Finalist – Ian Amit – ESW #327
We discuss Ian Amit's background and what led him to want to leave the CISO life to create a startup!
It's one thing for a security product to report problems to a security team. Everyone has these tools, but the problem is that someone has to analyze and triage all those findings, leading to alert fatigue and not a lot getting fixed. Gomboc is proposing to address this gap by auto-generating the fix.
Announcements
Follow Security Weekly Productions on LinkedIn for exclusive show clips, insights, and updates across our organization! Stay connected with our hosts and fellow community members, and join the conversation that's shaping the future of cybersecurity.
Guest
Ian is the Co-Founder and CEO of Gomboc.ai who are providing cloud infrastructure security solutions. Before Gomboc.ai, Ian held senior leadership positions with Rapid7, Cimpress, Amazon, ZeroFOX, IOActive and has over 25 years of experience in the security industry as a practitioner. Ian is also the co-founder of DC9723 – the Tel Aviv DEFCON group-and serves as a BSides Las Vegas board member. He is also the creator and co-CEO of The CISO Track – a series of CISO centric curated events.
Hosts
