Beyond Shadow IT: Understanding the True Attack Surface of Your Software

https://is1-ssl.mzstatic.com/image/thumb/Podcasts211/v4/7c/99/f8/7c99f84a-4f79-232e-4484-1aefc28eed78/mza_10431140791641350716.jpg/600x600bb.jpg

Surfacing Security

Assetnote

11 episodes

9 months ago

In "Surfacing Security," we explore a variety of cybersecurity topics relevant to Attack Surface Management and beyond. Your co-hosts are Michael Gianarakis (Assetnote Co-Founder/CEO) and Shubham Shah (Assetnote Co-Founder/CTO).

Technology

Business

RSS

All content for Surfacing Security is the property of Assetnote and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Technology

Business

Beyond Shadow IT: Understanding the True Attack Surface of Your Software

Surfacing Security

45 minutes

1 year ago

Beyond Shadow IT: Understanding the True Attack Surface of Your Software

This week's episode dives deep into the concept of shadow exposure and how it relates to third-party software, often overlooked in discussions about shadow IT. We explore the historical context of shadow IT, its evolution, and the real risks associated with widely deployed enterprise software that organizations may not fully understand.

Join us as we discuss:

The origins and implications of shadow IT
The challenges of visibility and transparency with third-party vendors
Real-world examples of vulnerabilities in critical software, including ServiceNow and IBM's ASPR Fastback
The limitations of security questionnaires and self-attestation processes
The importance of proactive security measures and effective disclosure processes

We also share insights from our security research team and discuss how organizations can better manage their attack surfaces to mitigate risks associated with shadow exposure.

For more details about Assetnote's Attack Surface Management Platform, visit https://assetnote.io/