Post-RSAC, Our Heads Are Spinning, and Big News Keeps on Coming! Plus On-Site Interviews from RSAC – ESW #362
Full Audio
View Show IndexSegments
1. Post-RSAC, Our Heads Are Spinning, and Big News Keeps on Coming! – ESW #362
Suddenly SIEMs are all over the news! In a keynote presentation, Crowdstrike CEO George Kurtz talked about the company's "next-gen" SIEM. Meanwhile, Palo Alto, who was taken to task by some for not having an active presence on the RSAC expo floor, hits the headlines for acquiring IBM's SIEM product, just to shut it down!
Meanwhile, LogRhythm and Exabeam merge, likely with the hopes of weathering the coming storm. The situation seems clear - there's no such thing as "best of breed" SIEM anymore. It's a commodity to be attached to the existing dominant security platforms. Are the days numbered for the older pure-play SIEM/SOAR vendors out there? Crowdstrike and Palo Alto alone could displace a lot of incumbents, even with a less than stellar product.
Announcements
Security Weekly listeners: Join the digital identity community at the ARIA Resort & Casino in Las Vegas, May 28 – 31. The 15th annual Identiverse will bring together over 3,000 security professionals for 4 days of world-class learning, engagement, and entertainment.
As a community member, receive 25% off your Identiverse 2024 tickets using code IDV24-SW25!
Register today: securityweekly.com/idv2024
Dive into cybersecurity with CyberRisk Alliance for exclusive insights from RSA Conference 2024. Explore executive interviews with industry leaders, uncovering visionary perspectives on threats and strategies. Delve into curated articles on trends and innovations, equipping yourself with essential knowledge for today's cyber landscape. Visit securityweekly.com/RSAC for expert guidance and inspiration in navigating cybersecurity challenges confidently.
Hosts
- 1. FUNDING: Eyeing more buyouts, cyber startup Wiz raises $1 bln in private funds
But who will they be buying out, now that the Lacework deal seems to have died?
- 2. FUNDING: TXOne Networks, Leader in Cyber-Physical Systems (CPS) Security, Raises $51 Million in Total in Series B Extension Round Funding
- 3. FUNDING: Traceable AI Secures $30M Strategic Investment Round
- 4. FUNDING: Ransomware defense company Mimic emerges from stealth, announces $27M seed round from Ballistic, Menlo, Team8, Wing, and Shield
- 5. FUNDING: LayerX Security Raises $26M for its Browser Security Platform, Enabling Employees to Work Securely from Any Browser, Anywhere
More browser security!
- 6. FUNDING: Sam Altman-backed Apex emerges from stealth with $7M to help secure AI adoption
- 7. FUNDING: Niobium Secures $5.5 Million in Venture Financing to Commercialize FHE Accelerator Chip
- 8. FUNDING: Resonance Security Closes $1.5M in Pre-Seed Funding
- 9. FUNDING: Startup Dealflow: New Investments at Resonance, RunReveal, StepSecurity, Insane Cyber
- 10. ACQUISITIONS: Akamai Announces Intent to Acquire API Security Company Noname
- 11. ACQUISITIONS: Palo Alto Networks is buying security assets from IBM to expand customer base
- 12. MERGERS: SIEM and UEBA vendors LogRhythm and Exabeam to merge, analysts express mixed feelings
Makes sense, but still a bit of a shocker to see two potential competitors merging. Sign of the times, particularly for the more mature and saturated SIEM/SOAR/UEBM markets.
- 13. ACQUISITION RUMORS: Wiz deal to acquire Lacework collapses
- 14. NEW COMPANIES: SquareX: Be Fearless Online
More browser security! Why do they all have "X" on the end?
- 15. NEW PRODUCTS: Introducing Google Threat Intelligence: Actionable threat intelligence at Google scale
- 16. NEW PRODUCTS: Splunk Asset and Risk Intelligence
Competing in the CAASM market?
- 17. NEW FEATURES: BalkanID Copilot
- 18. ANNOUNCEMENTS: Microsoft overhaul treats security as “top priority” after a series of failures
- 19. ANNOUNCEMENTS: Tech Giants Agree to Build Security into Software Products
- 20. DUMPSTER FIRE: Millions of Malicious Containers Found on Docker Hub
An almost literal dumpster fire, if we consider dumpsters containers, that is...
- 21. WHOOPSIES: Google Cloud accidentally deletes UniSuper’s online account due to ‘unprecedented misconfiguration’
- 22. REPORTS: Research Report: 2024 State of Exposure Management
- 23. RSAC: Some numbers on attendance from RSAC’s Twitter account
- 24. RSAC: Final — and deep — thoughts from RSA 2024
Am I reading this right? 40,000 attendees at RSAC, and another 40,000 that were in attendance, but didn't go into the conference proper? If so, that's an interesting stat, and I wonder how it has trended over the years.
For years, we've been hearing, "you need to attend, but no need to buy a ticket", as there are so many side conferences and meetup opportunities outside the conference.
- 25. ESSAYS: The Future of SOC Automation Platforms
Great time for this discussion as legacy SIEMs are merging, getting shut down...
- 26. ESSAYS: The Rise Of Application Security Posture Management (ASPM) Platforms
- 27. AI NEWS: Hello GPT-4o
This is a big one - real time AI chat, two AI bots talking to each other, singing, different vocal tones, etc. Opens up a lot more use cases for high quality GenAI models.
- 28. AI NEWS: Stack Overflow users sabotage their posts after OpenAI deal
- 29. AI SECURITY: tldrsec/prompt-injection-defenses: Every practical and proposed defense against prompt injection.
- 30. PRIVACY: Troubling iOS 17.5 Bug Reportedly Resurfacing Old Deleted Photos
This doesn't fare well for shared responsibility models. If it can happen on the consumer side...
- 31. TRENDS: Banking on trust: How consumer banking behavior is swayed by security
Allegedly, perceived cybersecurity posture drives consumer decisions in banking. Do we buy that? If so, what other consumer/business decisions will it drive?
- 32. SQUIRREL: Fly the friendly skiiiiiiiiieeeesss OMGOMGOMG
- 33. SQUIRREL: NothingSaaS – The Ultimate SaaS Solution for Nothing
2. Flexxon Server Defender, Unforeseen Innovation Outcomes, & Security through Data – Jeetu Patel, Amit Sinha, Camellia Chan – ESW #362
The danger of post-breach disruption and downtime is extremely real. And while we should work to prevent these breaches in the first place, we must also be practical and pre-empt any potential incidents. Organisations armed with the most extensive software-based cybersecurity protection today continue to fall prey to hackers, have their operations disrupted and struggle to overcome the loss of data and system corruption. And with more business assets moving to the cloud than ever before - we are just asking for it aren't we? The answer to this lies in advanced engineering at the hardware layer. Easily integrated into enterprise servers and data centers to provide full-stack protection across the entire life cycle of a potential attack.
Segment Resources: https://x-phy.com/flexxon-fortifies-data-center-security-with-x-phy-server-defender/
This segment is sponsored by Flexxon. Visit https://www.securityweekly.com/flexxonrsac to learn more about them!
Over the past two years, we’ve seen the degree of digital trust in our day-to-day lives being pushed to its limits due to the unintended consequences of innovation. From GenAI to IoT security to quantum computing, we will see a “crescendo of trust” that will push trust to its absolute limits. Here, we will focus on IoT/device trust.
This segment is sponsored by DigiCert. Visit https://securityweekly.com/digicertrsac to learn more about them!
Security needs to be everywhere a potential threat exists – from an IOT device to an OT device, a factory floor, an element of infrastructure, an oil rig, a robotic device or an MRT machine – Cisco recognized that with increased connection comes a greater risk than ever before and that you must bring the security to these workloads...not the other way around. In order to keep up with today’s sophisticated and expansive threat landscape, security can no longer be a fence; it needs to be embedded through the fabric of data centers, whether public or private. Cisco Hypershield does just that and gives defenders a fighting chance against adversaries, as now the industry has the advantage.
Segment Resources: Hypershield Keynote: https://newsroom.cisco.com/c/r/newsroom/en/us/a/y2024/m04/unveiling-a-new-era-of-ai-native-security-with-cisco-hypershield.html
Cybersecurity Readiness Index: https://newsroom.cisco.com/c/r/newsroom/en/us/a/y2024/m03/cybersecurity-readiness-index-2024.html
DUO trusted access report: https://duo.com/assets/ebooks/2024-Duo-Trusted-Access-Report.pdf
Jeetu's blog: https://blogs.cisco.com/news/cisco-hypershield-security-reimagined-hyper-distributed-security-for-the-ai-scale-data-center
Official announcement: https://newsroom.cisco.com/c/r/newsroom/en/us/a/y2024/m04/unveiling-a-new-era-of-ai-native-security-with-cisco-hypershield.html
This segment is sponsored by Cisco. Visit https://securityweekly.com/ciscorsac to learn more about them!
Sponsored By
Guests
Jeetu Patel is Cisco’s Executive Vice President and General Manager of Security and Collaboration. He leverages a diverse set of capabilities to lead the strategy and development for these businesses and also owns P&L responsibility for this multibillion-dollar portfolio. Jeetu combines a bold vision, steeped in product design and development expertise, operational rigor and innate market understanding to create high growth Software as a Service (SaaS) businesses.
A member of the Executive Leadership Team, Jeetu is helping to redefine Cisco’s SaaS business and strategy to further accelerate the company’s transformation and growth. His mission is to build world class, subscription-based products that solve Cisco customers’ biggest problems. His team is creating and designing meaningfully differentiated products that diverge in the way they’re conceived, built, priced, packaged and sold.
Dr. Amit Sinha is CEO of DigiCert. Prior to DigiCert, Dr. Sinha was President of Zscaler. During his 12-year tenure, Zscaler grew from a startup to a NASDAQ-100 company and established itself as a dominant leader in enterprise security. Dr. Sinha is an independent Board Member at Zscaler and at DataRobot, an AI cloud platform company, and an advisor to several startups.
Prior to Zscaler, Dr. Sinha served as CTO for Motorola’s Enterprise Networking and Communications business, delivering Wi-Fi solutions. He was the CTO of AirDefense, a market leader in the wireless security space, leading to its successful acquisition by Motorola in 2008. Prior to AirDefense, Dr. Sinha served as Co-Founder and Chief Technologist at Engim, a Wi-Fi semiconductor company.
Dr. Sinha earned his Masters and Ph.D. in Electrical Engineering and Computer Science from the Massachusetts Institute of Technology, Cambridge, and his B.Tech. in Electrical Engineering from the Indian Institute of Technology, Delhi, where he graduated summa cum laude and was awarded the President of India Gold Medal. He has authored over 25 journal/conference papers, contributed to 3 books, and is the inventor of 39 U.S. patents granted or pending.
Camellia Chan is Flexxon’s Co-Founder and Chief Executive Officer (CEO). She oversees the company’s business development and growth, research and development, industry partnerships, and expansion to regional and global markets.
Since its inception in 2007, Ms Chan has grown Flexxon into an international business with a presence in over 50 cities. Headquartered in Singapore, Camellia has led Flexxon to global heights in recent years. This includes an invite to present at the White House’s Counter Ransomware Initiative in 2022, as well as a win at the World Intellectual Property Organisation’s Global Awards in Geneva, and an invitation from the Maryland Chamber of Commerce to set up its US office in 2023. Flexxon’s US base of operations was officially established in September 2023.
A leading tech and entrepreneurial figure, Ms Chan holds over 40 patents in her name and has received multiple accolades for her contributions to the tech landscape. This includes being named as Singapore’s Top 100 Women in Tech in 2023, as well as clinching two projects under the Cybersecurity Agency of Singapore’s Call for Innovation awards.
Highly passionate about the industry and mentoring the next generation of tech talent, Ms Chan is an active contributor and speaker at technology and entrepreneurship events. In recent years, she was a speaker at Singapore’s SheLeadsTech 2022 forum as well as a guest speaker at the Singapore Management University’s Cybersecurity Leadership Programme.
Hosts
3. AI SOC Solutions, Revamp Your Cybersecurity, & Nightwing Introduction – Jon Check, Ricardo Villadiego, Jim McDonough – ESW #362
Artificial intelligence isn’t a magic wand… but could AI actually solve the alert triage problem every security operations center faces? In this interview with Jim McDonough from Intezer, we’ll talk about how 2023 was a tipping point for the maturity of AI tech, what these solutions actually bring to the table, how SOC teams in the real world are automating their processes with new AI tools, and why MSSPs are driving early adoption.
This segment is sponsored by Intezer. Visit https://securityweekly.com/intezerrsac to learn more about them!
This interview examines the state and future of cybersecurity. Join the conversation as a cybersecurity expert delves into the failings of current defenses, the relentless tactics of attackers, and the imperative for innovative solutions. Explore how Lumu’s latest announcement delivers the innovation that cybersecurity analysts need to operate cybersecurity and meet the demands of the moment.
This segment is sponsored by Lumu Technologies. Visit https://securityweekly.com/lumursac to learn more about them!
On April 1, Nightwing, formerly a business unit of Raytheon, launched as a standalone company. The company’s Vice President of Cyber Protection Solutions, Jon Check, will discuss the transition to Nightwing and its approach to the most pressing cybersecurity challenges, helping customers stay ahead of today’s threats.
This segment is sponsored by Nightwing. Visit https://securityweekly.com/nightwingrsac to learn more about them!
Sponsored By
Guests
Jon Check is the Vice President of Cyber Protection Solutions at Nightwing. He
leads the team that delivers proactive cybersecurity and next-generation technology to protect customers from persistent cybersecurity threats. Prior to this role, Jon held executive positions at Raytheon, CSRA Inc, and IBM Global Business Services. Jon is also a board member and former chairman of the National Cybersecurity Alliance, a board member of the U.S. Cyber Games, and an AFCEA DC board member. He holds a Bachelor of Arts in environmental science from the University of Virginia.
Ricardo Villadiego (RV) is a seasoned entrepreneur and visionary technology leader focused on cybersecurity. His last 20 years have been spent in the quest of solving some of the most prevalent cybersecurity challenges organizations face. RV founded Easy Solutions, a global organization focused on the prevention and detection of electronic fraud. Subsequently, RV led the cybersecurity business unit at Cyxtera Technologies, where he developed a long-term vision and execution plan. His passion for technology and cybersecurity have triggered yet another venture, and he created Lumu Technologies with a clear objective: help the world measure compromise.
Along his career, Ricardo has held various leadership positions at IBM, Internet Security Systems and Unisys Corporation. He is an Electrical Engineer, avid reader, relentlessly curious, technology enthusiast, who currently lives in South Florida with his family.
Jim McDonough is the Vice President of Global Sales at Intezer, a leading provider of AI technology for automating security operations. Outside of work, you’re likely to catch him running in a marathon or on a trail outside Boston.
Host
