2024 End-of-Year News and Wrapup – ESW #388
As we wrap up the year, we have an honest discussion about how important security really is to the business. We discuss some of Katie's predictions for AppSec in 2025, as well as "what sucks" in security!
Hosts
- 1. RESEARCH: What sucks in security? Research findings from 50+ security leaders
Some HUGELY interesting insights in this piece.
- 2. PREDICTIONS: Five Predictions for Application Security in 2025
- 3. ESSAYS: Let’s have an honest conversation about the state of cybersecurity
- 4. ESSAYS: A Year-End Reflection on the SIEM and SecOps Landscape
- 5. AI NEWS: BBC complains to Apple over misleading shooting headline
If Apple can't get AI right in basic use cases like this, how can we expect any of this "AI SOC analyst" stuff to work well???
- 6. ANNOUNCEMENT: Microsoft Announces Security Update with Windows Resiliency Initiative
While the "Windows Resilience Initiative" was triggered by Crowdstruck, it is more broad and thoughtful than just the handful of changes that would prevent another similar incident. The key components of the initiative include:
- Strengthening Reliability
- Reducing Administrative Privileges
- Strong Apps & Drivers Controls
- Improving Identity Protection
- Collaboration with Security Partners
- Data Protection (e.g. Personal Data Encryption feature)
- Transition to Rust
- 7. PASSWORDLESS: Convincing a billion users to love passkeys: UX design insights from Microsoft to boost adoption and security
I'm really hoping Microsoft can help to continue accelerating passkey use.
- 8. SQUIRREL: Check Out 14 Hilarious Winners From the Nikon Comedy Wildlife Photography Awards Contest
A squirrel story with actual squirrels. This is the story we leave you with for the last episode of the year. Enjoy the holidays!
