In this episode of the cybersecurity month-end review, host Jim Love is joined by Daina Proctor from IBM in Ottawa, Randy Rose from The Center for Internet Security from Saratoga Springs, and David Shipley, CEO of Beauceron Security from Fredericton.
The panel discusses major cybersecurity stories from the past month, including the Oracle Cloud breach and its communication failures, the misuse of Signal by U.S. government officials, and global cybersecurity regulation efforts such as the UK’s new critical infrastructure laws. They also cover notable incidents like the Kuala Lumpur International Airport ransomware attack and the NHS Scotland cyberattack, the continuous challenges of EDR bypasses, and the importance of fusing anti-fraud and cybersecurity efforts. The discussion emphasizes the need for effective communication and stringent security protocols amidst increasing cyber threats.
00:00 Introduction and Panelist Introductions
01:25 Oracle Cloud Breach: A Case Study in Incident Communication
10:13 Signal Group Chat Controversy
20:16 Leadership and Cybersecurity Legislation
23:30 Cybersecurity Certification Program Overview
24:27 Challenges in Cybersecurity Leadership
24:59 Importance of Data Centers and MSPs
26:53 UK Cybersecurity Bill and MSP Standards
28:09 Cyber Essentials and CMMC Standards
32:47 EDR Bypasses and Small Business Security
39:32 Ransomware Attacks on Critical Infrastructure
43:34 Law Enforcement and Cybercrime
47:24 Conclusion and Final Thoughts