Matthew ran a little late this weekend, so apologies for being a day late deploying the latest security news into your earhole!
We talk Solarwinds and a lawsuit, then a little SEC action. Then we discuss the ever decreasing time frame to patch new vulnerabilities, and we lead off with a little conspiracy theory action about a government contractor that just might be using their privileged position for some man in the middle for the gov. I mean, what legitimate government contractor ISN'T run out of a UPS Store?
Article 1 - Mysterious company with government ties plays key internet role
Supporting Article:
Where does Firefox store cerificates and how to delete one?
Article 2 - Zero-day are exploited on a massive scale in increasingly shorter timeframes
Supporting Article:
Microsoft Digital Defense Report 2022
Intro to HDMoore’s Law
Article 3 - SolarWinds Faces Potential SEC Enforcement Act Over Orion Breach
Supporting Article:
CLASS ACTION COMPLAINT FOR VIOLATION OF THE FEDERAL SECURITIES LAWS
SOLARWINDS CORPORATION Form 8-K
If you found this interesting or useful, please follow us on Twitter @serengetisec and subscribe and review on your favorite podcast app!
In this episode, we deep dive into two articles, linked below.Ransomware gang urges victims’ customers to demand a ransom payment Experts fear that Biden’s...
We turn back to one of my (Matthew's) favorite analysts, Anton Chuvakin and his recent article on what a Minimum Viable SOC Transformation looks...
In this episode, we review what we know about Zero Trust Networking, and the types of products that claim to do it. Original Forrester...
