CvCISO Podcast Episode 63 The Salt Typhoon Attack

https://is1-ssl.mzstatic.com/image/thumb/Podcasts221/v4/c0/eb/92/c0eb92ec-a85e-bb5a-a66a-9cd832947336/mza_11038474664625092434.jpg/600x600bb.jpg

CvCISO Podcast

SecurityStudio

71 episodes

1 day ago

Welcome to "The CvCISO Podcast" - an extension of SecurityStudio's vCISO training program. Designed to keep the conversation alive beyond the confines of traditional training, this podcast is your ongoing resource for all things related to Virtual Chief Information Security Officers (vCISOs).

This podcast is a space where vCISOs can continue to explore, discuss, and evolve their understanding of the cybersecurity landscape. Join us as we delve into the experiences, perspectives, and challenges that vCISOs face. From sharing success stories to dissecting tough lessons learned, we cover it all.

The goal of the podcast is to build a community where vCISOs can come together to learn from one another. Through engaging discussions and thought-provoking questions from the vCISO community, we keep the conversation dynamic and relevant. This isn't just a podcast - it's a dynamic platform where your voice matters. So, whether you're a seasoned vCISO or just starting, join us on the "CvCISO Podcast" as we continue the journey of learning and growth together.

Hosts:
Jordon Darling (Vice President, Top Dog PC Services)
https://www.linkedin.com/in/jordon-darling/
Evan Francen (Founder and CEO, SecurityStudio)
https://www.linkedin.com/in/evanfrancen/
Meg Perron (CvCISO Training Academy Director, SecurityStudio)
https://www.linkedin.com/in/meg-perron-mba/

To find out more information about SecurityStudio's CvCISO Training Program visit: www.cvciso.com

Follow SecurityStudio on LinkedIn: https://www.linkedin.com/company/11486715

Email cvcisopodcast@securitystudio.com with questions or topics you'd like our hosts to tackle!

Technology

RSS

All content for CvCISO Podcast is the property of SecurityStudio and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Technology

https://d3wo5wojvuv7l.cloudfront.net/t_rss_itunes_square_1400/images.spreaker.com/original/9064cce198c307ed4a88eb07c24bbc7e.jpg

CvCISO Podcast Episode 63 The Salt Typhoon Attack

CvCISO Podcast

49 minutes

2 months ago

CvCISO Podcast Episode 63 The Salt Typhoon Attack

Summary
In this episode, the hosts discuss the Salt Typhoon hacking group, their recent attacks on US companies, and the broader implications of cybersecurity threats. They explore the reasons behind the naming of hacker groups, the importance of risk management, and the need for situational awareness in organizations. The conversation delves into the role of the Chinese government in cyber attacks, the techniques used by hackers, and notable breaches that have occurred. The episode emphasizes the need for better cybersecurity practices and the potential consequences of neglecting fundamental security measures. In this conversation, the speakers delve into the complexities of cybersecurity, focusing on the challenges of incident response, the long-term strategies employed by adversaries like China, and the implications for national security. They discuss the economic costs of remediation, the accountability of CISOs, and the importance of collaboration in the industry. The conversation emphasizes the need for mission-driven security practices and effective regulatory responses to cyber threats, while also outlining essential defensive strategies for organizations.
Takeaways
The Salt Typhoon group has been active for years, targeting major US companies. Risk management is more important than risk elimination in cybersecurity. Many organizations fail to address their most significant risks despite having large security budgets. Situational awareness is crucial for effective cybersecurity. Chinese government involvement in cyber attacks is a significant concern. Basic cybersecurity practices like patch management are often overlooked. Salt Typhoon has targeted critical infrastructure and telecommunications. The impact of cyber attacks extends beyond immediate breaches. Organizations often treat breaches as a cost of doing business. Understanding the threat landscape is essential for effective defense strategies. Incident response has been haphazard and often driven by self-preservation. China's cyber strategy is long-term, contrasting with the short-term focus of many organizations. National security is at risk due to significant data breaches. Economic costs of cybersecurity failures can be substantial and long-lasting. CISOs often lack the necessary training and accountability for their roles. Collaboration among cybersecurity professionals is essential for effective defense. Mission-driven approaches can lead to better security outcomes and financial success. Compliance certifications often create a false sense of security. Effective patch management and network segmentation are critical defensive strategies. Egress filtering can prevent many attacks by blocking command and control communications.