In this week’s podcast, we talk with Gadi Evron of Cymmetria, which released Mazehunter, a targeted hack-back tool this week about going on offense and staying on the right side of the law. Also: Ryan Kazanciyan of Tanium is one of the talented hackers who help design Mr. Robot’s hacking scenes. We talk with him about bringing realistic hacks alive on the small screen. And: when Uncle Sam dishes the dirt on a state sponsored campaign against critical infrastructure, what are companies supposed to do with the information? Mark Durfresne of the firm Endgame and Itzik Kotler of the firm Safebreach give us their thoughts.
In this week’s Security Ledger Podcast: do hacked companies have a right to ‘hack back’ against their attackers? For years, the consistent answer has been “no,” but Gadi Evron, the CEO of Cymmetria tells us that companies may have more offensive tools at their disposal than they realize. We talk about Mazehunter, a new tool that Evron’s company, Cymmetria, is offering that allows targeted hack backs that stay on the right side of the law.
Also, when the DHS and FBI published a report over the weekend describing some of the techniques used by a sophisticated Russia-affiliated hacking crew known as “DragonFly” the natural question was: what now? Specifically: now that we know what techniques the hackers use, what can be done to prevent future hacks? To delve into that topic, Security Ledger invited two experts onto the podcast this week to discuss what companies should do next. In our first conversation, Mark Durfresne of the firm Endgame talks about the detection gap facing most firms and a new benchmark for evaluating the workings of endpoint security in light of the types of techniques described by DHS and FBI. Then, Itzik Kotler of the firm Safebreach discusses the best way for companies to use the information provided by Uncle Sam and how more automation is needed to help connect the dots and spot sophisticated hacking campaigns.
And finally, season three of the USA Network’s Mr. Robot launched on October 11. Beyond the show’s Two Golden Globes and three critics choice awards, it has captured the hearts of the fickle hacker community with its realistic portrayals of sophisticated corporate hacking and social engineering. Ryan Kazanciyan of Tanium is one of the talented hackers who help design that show’s hacking scenes. We talk with him about bringing realistic hacks alive on the small screen.
As always: check our full conversation in our latest Security Ledger podcast above or over at Soundcloud. You can also listen to it on iTunes. As always, if you like our intro music, give some love to the group JoeLess Shoe, who recorded “Baxton,” the song we use in just about every podcast.