Home Featured Chronicle

An InfoSec Life | A Conversation with Alissa Valentina Knight

By Marco Ciappelli and Sean Martin

"A long time ago in a galaxy far, far away...."

I cannot think of a better way to start this intro chronicle to today's Episode. While it will become clear why this is the case as you listen to it, you will probably come to envision a movie made from this story. I sure saw one in my head while I was following along as Alissa was telling us about her many adventures.

The truth might be that I have quite an over sensitive imagination—nothing new there—but I really couldn't resist the impulse of pausing her long enough so I could grab a bucket of popcorn. I know it wasn't just me because Sean was listening quietly for a long time. If you know us, as you should by now, you are likely aware that for he and I, sitting quietly in the background is not an easy thing to do.

MITRE ATT&CK—This Is Not Just Another Framework | A Conversation At The Edge With Katie Nickels, Fred Wilmot, and Ryan Kovar

By Sean Martin

Guests: Katie Nickels | Fred Wilmot | Ryan Kovar
Host: Sean Martin

It took me a while to get the conversation with Katie Nickels and Fred Wilmot sorted so we could talk about all things MITRE ATT&CK. Fortunately, we found some time together in person in Las Vegas during Hacker Summer Camp. As a bonus, I also got the chance to meet Ryan Kovar who happened to be presenting on ATT&CK with Katie that smae week. Ryan joined us for the conversation as well.

Have a listen as we explore what MITRE ATT&CK is, what it’s for, who it’s for, how to get started with it, how to be successful with it, and what scenarios could be leveraged to learn from others’ successes and challenges.

An InfoSec Life | A Conversation With Vandana Verma

By Marco Ciappelli

All right, ladies and gentlemen, it finally happened: Vandana Verma is my distinguished guest on this An InfoSec Life Podcast.

For those of you that haven't had the pleasure to meet her in person—Sean and I had this honor in Las Vegas this year—let me tell you, she is as nice as she sounds. In my opinion, there is nothing more valuable to add to someone's professionalism and skills than a big heart. It helps to make them a role model and an inspiration for any just entering—or that are about to enter—their career in the InfoSec community.



When Ransomware Strikes Our Towns | In The News With Michael Echols and Edward Block

By Sean Martin & Marco Ciappelli

Guests:
- Michael Echols
, CEO, IACI International Association of Certified ISAOs and former Director, Cyber Joint Program Management Office, US Dept. of Homeland Security
- Edward Block, Practicing Attorney, Foley Gardere, and former Chief Information Security Officer, State of Texas

Many small town and cities across the grand state of Texas have had better days. Much better days, in fact. There have been many articles highlighting the recent ransomware attacks to successfully compromise more than nearly two dozen Texan towns.

We had many questions to ask our two guests — both of whom have a direct and deep understanding of these types of attacks, the readiness of this specific region, and the potential threats looking in other similar regions across the United States. Have a listen to hear their thoughts on this situation.

The Jenny Radcliffe Talk Show | Episode Zero

By Marco Ciappelli & Sean Martin

“Water drops hit the wet stone floor. The sound reverberates in the distance.”

“I see there is somebody lurking in the shadow here.”

“Grunt__”

“Sean?__”

“Grunt__” “Grunt__”

“He couldn't sound creepier if he tries to sound creepier__

“I could try.”

“He could probably be.“

“He probably could. He probably could__ anxious laugh.”

“Evil laugh echoes in the emptiness of the dark corridor__”

This was not scripted. It just happened. The podcast starts like this and there is nothing I can do about it. Actually, to be honest, I am glad it did.

Black Hat USA 2019 Event Coverage | A Conversation With Steve Wylie

By Sean Martin &  Marco Ciappelli

Black Hat USA 2019 was a huge success — again. Toward the end of the conference, Sean and Marco connect with Black Hat General Manager, Steve Wylie, to have him give us an overview of what happened throughout the week of trainings, briefings, and summits.

Black Hat USA 2019 Event Coverage | A Conversation With Kymberlee Price

By Sean Martin &  Marco Ciappelli

Guest: Kymberlee Price, Microsoft

I was excited for two things happening during this year's Hacker Summer Camp excursion:

1) An opportunity to meet—in person—someone leading the bug bounty charge for quite some time: Kymberlee Price, Principal Security PM Manager - Microsoft Security Response Center's Community Programs

2) To explore and discuss the dedicated Bug Bounty micro-summit during Black Hat USA 2019

Fortunately, both of these activities came together in a single setting during Black Hat, as Marco and I got to meet Kymberlee not only to discuss the micro summit, but to also hear about her journey in InfoSec and her role in establishing some of the best practices being leveraged by the industry for some time now—specifically via her work at Microsoft, at Bugcrowd, and Microsoft (again).

I loved this having conversation and hearing Kymberlee's story.

Now it's your turn to hear it. Have a listen.

Black Hat USA 2019 Event Coverage | A Conversation With Stephanie “Snow” Carruthers

By Marco Ciappelli & Sean Martin

I happen to know some of the more skilled social engineers in the cybersecurity industry, and during Hacker Summer Camp 2019, Sean Martin and I were invited to meet one of the best.

You probably know her. She goes by the handle @sn0ww. This is her story.

Do you want to hear it? Of course, you do. No, really, you do. You don’t want to be the only one not listening to it, do you?

Go ahead, type your in your SSN, and click play... 🔥😇😈🔥

Black Hat USA 2019 Event Coverage | A Conversation With Charity Wright

By Marco Ciappelli & Sean Martin

No doubt, we are living interesting times—full of incredible technological advancements and achievements. Yet, we still get to see the other side of the picture—cybercrime at its worst.

The dark web is peaking on a global scale. Last year, there were over 4 million users on TOR, and, with that, we are seeing some other “interesting” trends. It’s these trends which lead us to our second conversation with Charity—this time during Black Hat 2019.

Hacker Summer Camp Event Coverage | Cybersecurity Woman of the Year — 2019 Awards

By Sean Martin &  Marco Ciappelli

We care deeply and passionately about creating a diverse cybersecurity workforce — not just when it come to gender, but also for background, origin, age, religion, neuro-makeup, and more — essentially anything and everything that makes us unique; makes us human. We hope to reach a point where we no longer have to shake the box to remind ourselves of the benefits associated with diversity, but until we reach that point, you’ll find us shaking things up at the intersection of technology, cybersecurity, and society. With this, we ask you to celebrate with us the successes these cybersecurity leaders have achieved.

Mission Critical with Karen Worstell | Episode Zero

By Marco Ciappelli & Sean Martin

Welcome Mission Critical. A new talk show on ITSPmagazine Hosted by Karen Worstell

This is about the challenges in cyber and how the cyber community can thrive and “stay in the game” in the face of them.

Karen knows from experience that all those things come from a workplace with high expectations and a sense of belonging—and we need a lot of help with that right now! At the heart of this series of podcasts are the values she has learned to hold most dear: Justice, Compassion, Leadership and Allyship.  

Listen to Karen, Sean, and Marco introducing this new talk show.

We couldn’t ask for a better host to tell these stories and help us to make a difference in our community.

Chats On The Road To Hacker Summer Camp 2019 | DEF CON 27 — Policymakers | A Conversation With Meg King and Beau Woods

By Marco Ciappelli & Sean Martin

Black and blue, and who knows which is which, and who is who?

It is a matter of perspective and a matter of time — and given the right knowledge, these usually change together. Don't they? What is at stake and what we are fighting for can change yesterday's foe into tomorrow's best ally. But what about today?

I believe that today in technology and infosec, we are at the crossroad where Sean and I have been waiting for a few years now. Exactly 4 years ago, when we founded ITSPmagazine, we did it because we wanted to have the conversation that media, politicians, business owners, technology experts, and politicians were not having yet - and, most still don't.

Chats On The Road To Hacker Summer Camp 2019 | DEF CON 27 — AppSec Village | A Conversation With Erez Yalon, Liora Herman, and Jim Manico

By Sean Martin &  Marco Ciappelli

It’s also important to recognize that the products and solutions (and applications) we are building a using are comprised of multiple components from all of the place—custom, commercial, and open source—and from all over the world.

At the end of the day, we’re all speaking about code and we all need to write secure code. Start speaking about it with your peers at the inaugural AppSec Village at DEF CON 27. But first, have listen to this chat to learn more.

Chats On The Road To Hacker Summer Camp 2019 | Black Hat — CyberInsurance Micro Summit | A Conversation With Jeffrey Smith

By Sean Martin &  Marco Ciappelli

According to our guest for this chats on the road to Las Vegas, Jeffrey Smith, Managing Partner at Cyber Risk Underwriters, there’s been a considerable uptick in the number of policies written, especially at the small/medium business level.

Be sure to listen to this podcast to learn more about this trend and then join Jeffrey Smith, Jeremiah Grossman, and many more for the inaugural micro summit for cyber insurance at Black Hat.

Chats On The Road To Hacker Summer Camp 2019 | DEF CON 27 — Aviation Village | A Conversation With Pete Cooper

By Sean Martin &  Marco Ciappelli

Sticking with the transportation theme from some of our DEF CON 26 conversations, for this next chat we take a look under the hood of another new village introduced for DEF CON 27 — the Aviation Village.

To help us understand how multiple parties can (and are) working together to understand the risks, how to mitigate them, and the challenges getting all of the cybersecurity dots connected throughout the entire ecosystem, we connected with one of the leaders of the Aviation Village, Pete Cooper.

Chats On The Road To Hacker Summer Camp 2019 | Wicked6 Games Competitors

By Sean Martin & Marco Ciappelli

In this chats on the road to Hacker Summer Camp in Las Vegas, you’ll get to hear from the following Wicked6 Cyber Games contestants:

Nouran Alotaibi represents the University of North Carolina Wilmington
Team: Cyber Seahawks

Shilpa Joshy represents University Of Colorado Boulder
Team: BuffOvrFlows

Franklin Pearson represents ECPI Columbia
Team: D0wn the L1ne

We have three great stories to share in this chat. Have a listen!

An InfoSec Life | A Conversation With Chris Cochran

By Sean Martin & Marco Ciappelli

For ITSPmagazine's An InfoSec Life column Marco and I had the pleasure to speak with a connection we made through a mutual cyber friend from the EU. Our guest today, Chris Cochran, served his country, made the move into the infosec industry, and is also a fellow podcaster where he discusses all things appsec and human element. While he is often the host of his own show, Chris joins us today to tell his own InfoSec life story. It’s one you won’t want to miss.

How To Protect Your Data, Devices, and Privacy During Hacker Summer Camp

By Marija Atanasova

#HackerSummerCamp is almost upon us. A plethora of security conferences — Black Hat, BSides, DEF CON, Queercon, Wicked6 Games, The Diana Initiative, and so much more — are all happening in Las Vegas on the same week (Aug 3 - 11).

With the infosec community about to overtake the city in a few days, how are hackers and civilian attendees protecting their data, devices and privacy during the conference? This guide provides you with a few tips.

An InfoSec Community Q&A With Francesco Cipollone

By Sean Martin & Marco Ciappelli

Guest: Francesco Cipollone

As part of our In The News series, in this episode, we connect with Francesco Cipollone to host a Q&A session where the questions were driven by the InfoSec community. The questions asked were presented to Francesco via social media and Francesco selected 3 questions to respond to in this episode. These are the people and their questions: Jim Manico [@manicode ] | John Opdenakker‏ [@j_opdenakker] | Tanya Janca [@shehackspurple].