loader from loading.io

lynsey wolf, conducting insider threat investigations, CASB and UEBA utlization to good use.

BrakeSec Education Podcast

Release Date: 04/30/2023

Youtube exclusive! Mick Douglas discussing Sensible AI use poilcy, RAGs, and how to get up to speed for your business' sake show art Youtube exclusive! Mick Douglas discussing Sensible AI use poilcy, RAGs, and how to get up to speed for your business' sake

BrakeSec Education Podcast

Youtube Video:     Questions and topics: (please feel free to update or make comments for clarifications) * Everyone wants us to use AI, but only when it benefits them    * “Don’t use AI to submit your resume to our company”    * “Do know how to use AI”     * “Don’t use AI to answer the interview questions” * AI implementations range from “super easy” to “crazy easy”     * If you already know how to use AI * Setting it up wrong can really hurt your company * Tasks in AI that can get you into trouble     *...

info_outline
Jay Beale discusses his K8s class at BlackHat, Kubernetes developments, and mental health show art Jay Beale discusses his K8s class at BlackHat, Kubernetes developments, and mental health

BrakeSec Education Podcast

Youtube Video at: https://www.youtube.com/watch?v=yHPvGVfPgjI   Jay Beale is a principal security consultant and CEO/CTO for InGuardians. He is the architect of multiple open source projects, including the Peirates attack tool for Kubernetes (in Kali Linux), the Bustakube CTF Kubernetes cluster, and Bastille Linux. Jay created and leads the Kubernetes CTF at DEF CON and previously helped in the Kubernetes project's Security efforts. He’s co-written eight books and given many public talks at Black Hat, DEF CON, RSA, CanSecWest, Blue Hat, ToorCon, DerbyCon, WWHF, HushCon and others. He...

info_outline
Socvel intel threat quiz, Pearson Breached, nintendo bricking stuff, and kevintel.com show art Socvel intel threat quiz, Pearson Breached, nintendo bricking stuff, and kevintel.com

BrakeSec Education Podcast

socvel.com/quiz if you want to play along! Check out the BrakeSecEd Twitch at join the Discord: https://bit.ly/brakesecDiscord Music: Music provided by Chillhop Music: https://chillhop.ffm.to/creatorcred "Flex" by Jeremy Blake Courtesy of Youtube media library

info_outline
Bronwen Aker - harnessing AI for improving your workflows show art Bronwen Aker - harnessing AI for improving your workflows

BrakeSec Education Podcast

Guest Info: Name:       Bronwen Aker Contact Information (N/A):   Time Zone(s): Pacific, Central, Eastern   –Copy begins–   Disclaimer: The views, information, or opinions expressed on this program are solely the views of the individuals involved and by no means represent absolute facts. Opinions expressed by the host and guests can change at any time based on new information and experiences, and do not represent views of past, present, or future employers.   Recorded:     Show Topic Summary: By harnessing AI, we can assist in being...

info_outline
post-bsides SD discussion, EPSS, the answer I should have given, and 'Lord Brake' show art post-bsides SD discussion, EPSS, the answer I should have given, and 'Lord Brake'

BrakeSec Education Podcast

Check out the BrakeSecEd Twitch at or Youtube: https://youtube.com/c/BDSPodcast join the Discord: https://bit.ly/brakesecDiscord https://arxiv.org/abs/2302.14172 - EPSS whitepaper https://www.linkedin.com/posts/jayjacobs1_epss-threatintel-vulnerabiltymanagement-activity-7308146548767404032-RubN https://www.first.org/epss/ https://events.zoom.us/ev/AmoNH3baC7HVqDlDmgUtd2uCmTCMwJXfkR8mG6I5OxzbW01nhRMQ~AoEYQz5ROK4ybE4iX9b0PL-1utz4z0nbyrTjT4lskH_08_zfesR_Q_rNlA - BHIS training with Bronwen Aker on 03 April 2025 Music: Music provided by Chillhop Music:...

info_outline
March23: buy browser extensions, attackers don't need exploits, socvel CTI quiz show art March23: buy browser extensions, attackers don't need exploits, socvel CTI quiz

BrakeSec Education Podcast

Check out the BrakeSecEd Twitch at https://twitch.tv/brakesec Join the Discord! https://bit.ly/brakesecDiscord Questions and topics: (please feel free to update or make comments for clarifications) * https://techoreon.com/http-flaw-in-apple-passwords-left-iphones-vulnerable/ * https://darkmarc.substack.com/p/attackers-dont-need-exploits-when * https://www.techzine.eu/news/security/129713/the-browser-is-riddled-with-bugs-2025-may-squash-them/ * https://medium.com/@vanvleet/compound-probability-you-dont-need-100-coverage-to-win-a2e650da21a4 (interesting article on quantifying attack risk by...

info_outline
steam distributes malware in game form, RDP open from DOGE servers, hacking a supply chain for 50K show art steam distributes malware in game form, RDP open from DOGE servers, hacking a supply chain for 50K

BrakeSec Education Podcast

Youtube VOD:     – supply chain issues can crop up anywhere… are you blocking people from steam and popular software downloads online? <- 100 digits of pi <- periodic table song   Additional information / pertinent LInks (Would you like to know more?): https://www.socvel.com/quiz/ https://xphantom.nl/posts/Offensive-Security-Lab/ Show points of Contact: Amanda Berlin: Brian Boettcher:   Bryan Brake:   Brakesec Website: Youtube channel: discord: https://discord.gg/brakesec Twitch Channel:    Music: "Flex" by Jeremy...

info_outline
Tanya Janca Talks secure coding, Semgrep Academy, and community building, and more! show art Tanya Janca Talks secure coding, Semgrep Academy, and community building, and more!

BrakeSec Education Podcast

Check out the BrakeSecEd Twitch at https://twitch.tv/brakesec Join the Discord! https://discord.gg/brakesec #youtube VOD (in 1440p):   Questions and topics: Bsides Vancouver discussion Semgrep Community and Academy Building communities What are ‘secure guardrails’ Reducing barriers between security and developers How to sell security to devs: “hey, if you want to see us less, buy/use this?” “Security is your barrier, but we have goals that we can’t reach without your help.” https://wehackpurple.com/devsecops-worst-practices-artificial-gates/  How are you seeing things...

info_outline
Josh Grossman - building Appsec programs, bridging security and developer gaps show art Josh Grossman - building Appsec programs, bridging security and developer gaps

BrakeSec Education Podcast

Youtube VOD:   #appsec, #owasp, #ASVS, #joshGrossman, #informationsecurity, #SBOM, #supplychain, #podcast, #twitch, #brakesec, #securecoding, #Codeanalysis Questions and topics: 1. The background to the topic, why is it something that interests you? How do you convince developers to take your course? 2. What do you think the root cause of the gap is? 3. Who is causing the gaps? (‘go fast’ culture, overzealous security, GRC requirements, basically everyone?) 4. Where do gaps begin? Is it the ‘need’ to ‘move fast’? 5. What can devs do to involve security in their process?...

info_outline
Managing messaging with management, becoming a CISO with Mary Gardner from Goldiknox show art Managing messaging with management, becoming a CISO with Mary Gardner from Goldiknox

BrakeSec Education Podcast

Disclaimer: The views, information, or opinions expressed on this program are solely the views of the individuals involved and by no means represent absolute facts. Opinions expressed by the host and guests can change at any time based on new information and experiences and do not represent views of past, present, or future employers.   Recorded: 08 Apr 2024 Youtube VOD: https://www.youtube.com/watch?v=K8qApvsFtqw   Show Topic Summary: If you want to get in the mind of a board member, I submit to you my discussion with we did last night on . Join Mary and I as we discuss...

info_outline
 
More Episodes

Show Topic Summary (less than 300 words)

Insider threat still exists, Lynsey Wolf talks with us about HR’s role in insider threat, how prevalent investigations are in the post-pandemic work from home environment.

 

Questions and potential sub-topics (5 minimum):

  1. What is the difference between insider threat and insider risk?

  1. Motivators of insider threat (not much different than espionage,IMO -bryan)  (MICE: Money, Ideology, Compromise, and Ego.) https://thestack.technology/pentagon-leaks-insider-threat-sysadmin/ 

  1. 75% of all insider threats are being kicked off by HR departments. In short, it's proactive.

  1. “How did HR figure that out?” How are investigations normally initiated? What tools are they implementing to check users or predicting a disgruntled employee?” UEBA? CASB? Employee surveys that are ‘anonymous’? Someone who reported others and it was dismissed? What if HR ‘gets it wrong’ or ‘it’s a hunt to find people no into ‘groupthink’ or ‘not a culture fit’? https://www.cbsnews.com/news/french-worker-fired-for-not-being-fun-at-work-wins-lawsuit-cubik-responds/

  1. How can organizations be mindful of how and what data is collected to mitigate risk without affecting employee trust? And who watches the watchers to ensure data is handled responsibly? Are there any privacy guidelines companies need to understand before they implement such a system? (GDPR? CCPA? Privacy notices? Consent to monitoring on login? https://securiti.ai/blog/hr-employee-data-protection/ )

  1. Are companies causing the thing they are protecting against? (making an insider threat because they’ve become repressive?) (hoping there’s an ‘everything in moderation idea here… finding the happy medium between responsible ‘observability’ and ‘surveillance’)

  1. Lots of ‘insider threat’ tools, including from EDR companies. Do companies do a good job of explaining to employees why you need EDR?

  1. Quiet Quitting - latest term for companies to use to describe “employee has a side gig”. How does this figure into insider threat? Is it assumed that people only have one ‘thing’ they do, or did the lack of a commute give people more time during the pandemic to diversify?

  1. Solutions for employees? Separate their work and private/side gig? Learn what their contract states to keep conflicts of interest or your current/past employer from taking your cool side project/start-up idea away from you? Solutions for companies?

 

Additional information / pertinent Links (would you like to know more?):

(contact info for people to reach out later):

https://www.cisa.gov/detecting-and-identifying-insider-threats 

https://venturebeat.com/data-infrastructure/how-observability-has-changed-in-recent-years-and-whats-coming-next/ 

https://ccdcoe.org/library/publications/insider-threat-detection-study/ 

https://resources.sei.cmu.edu/asset_files/TechnicalReport/2016_005_001_454627.pdf (insider threat ontology)

https://www.intelligentcio.com/apac/2022/08/01/survey-reveals-organizations-see-malicious-insiders-as-a-route-for-ransomware/ 

https://www.helpnetsecurity.com/2022/04/08/organizations-insider-threats-issue/ 

https://www.fortinet.com/resources/cyberglossary/what-is-ueba 

https://www.gartner.com/en/information-technology/glossary/cloud-access-security-brokers-casbs 

https://thecyberwire.com/glossary/mice

https://qohash.com/the-high-price-of-trust-the-true-cost-of-insider-threats/ 

https://abc7chicago.com/classified-documents-jack-teixeira-air-national-guard-arrest/13126206/ (Air National Guardsman accused in military records leak makes 1st court appearance - story still developing as of 16 April 2023)

https://www.theverge.com/2020/8/4/21354906/anthony-levandowski-waymo-uber-lawsuit-sentence-18-months-prison-lawsuit 

 

Show Points of Contact:

Amanda Berlin: @infosystir @hackershealth 

Brian Boettcher: @boettcherpwned

Bryan Brake: @bryanbrake @[email protected]

Website: https://www.brakeingsecurity.com Twitch: https://twitch.tv/brakesec 

Youtube: https://youtube.com/c/BDSPodcast