PP050: Understanding–and Protecting Yourself From–the Malware Economy Packet Protector podcast

42:35

Packet Protector goes global for today’s security news roundup. Microsoft discontinues a program in which engineers in China supported the US Department of Defense’s cloud infrastructure (with the help of US ‘digital escorts’), Taiwanese chipmaker TSMC fires several employees over allegations of attempted theft of sensitive tech, an Arizona woman gets 8 years in prison ... Read more »…

Packet Protector

1
PP073: Identify Yourself: Authentication From SAML to FIDO2 40:06

10 days ago40:06

40:06

From SAML to OAuth to FIDO2 to passwordless promises, we unpack what’s working—and what’s broken—in the world of identity and authentication. Today on the Packet Protector podcast, we’re joined by the always thoughtful and occasionally provocative Wolf Goerlich, former Duo advisor, and now a practicing CISO in the public sector. We also talk about authorization ... Read more »…

Packet Protector

1
PP072: Mobile Device Threat Management 47:13

17 days ago47:13

47:13

Mobile devices blur the boundaries between personal and work devices and are packed with sensitive information, making them popular targets for malware, spyware, and data collection. On today’s Packet Protector we dig into strategies for managing threats to mobile devices with guest Akili Akridge. Akili started his career pulling burner phones off suspects as a ... Read more »…

Packet Protector

1
PP071: SSE Vendor Test Results; Can HPE and Juniper Get Along? 46:20

24 days ago46:20

46:20

CyberRatings, a non-profit that performs independent testing of security products and services, has released the results of comparative tests it conducted on Secure Service Edge, or SSE, services. Tested vendors include Cisco, Cloudflare, Fortinet, Palo Alto Networks, Skyhigh Security, Versa Networks, and Zscaler. We look at what was tested and how, highlight results, and discuss ... Read more »…

Packet Protector

1
PP070: News Roundup – Scattered Spider Bites MSPs, Microsoft Rethinks Kernel Access, North Koreans Seem Good at Their Illicit Jobs 44:03

5 weeks ago44:03

44:03

There’s lots of juicy stories in our monthly security news roundup. The Scattered Spider hacking group makes effective use of social engineering to target MSPs, Microsoft pushes for better Windows resiliency by rethinking kernel access policies for third-party endpoint security software, and the US Justice Department files indictments against alleged operators of laptop farms that ... Read more »…

Packet Protector

1
PP069: A Quantum Primer: It’s More Than Cracking Crypto 41:44

6 weeks ago41:44

41:44

Quantum computing is here, and it’s being used for more than cracking encryption. On today’s Packet Protector we get a primer on quantum, how it differs from classical computing, its applications for difficult computing problems, why quantum will be the death of blockchain, and how to think about quantum risks. Our guest, Johna Johnson, is ... Read more »…

Packet Protector

1
PP068: Common Kubernetes Risks and What to Do About Them 39:09

8 weeks ago39:09

39:09

Today’s Packet Protector digs into risks and threats you might encounter in a Kubernetes environment, what to do about them, and why sometimes a paved path (or boring technology) is the smartest option. My guest is Natalie Somersall, Principal Solutions Engineer for the Public Sector at Chainguard. We talk about risks including identity and access ... Read more »…

Packet Protector

1
PP067: Protecting Secrets With Vault and TruffleHog 35:35

8 weeks ago35:35

35:35

Secrets trickle out through misconfigurations, poor tooling, and rushed Git commits. Today’s guest, John Howard, joins us on Packet Protector to walk through practical secrets management with Vault and TruffleHog to help make sure you don’t expose your privates. John discusses work he’s done to build an automated process in his organization for developers and ... Read more »…

Packet Protector

1
PP066: News Roundup – NIST’s New Exploit Metric, Windows RDP Issues, Compromised Routers, and More 41:34

10 weeks ago41:34

41:34

Our security news roundup discusses the compromise of thousands of ASUS routers and the need to perform a full factory reset to remove the malware, why Microsoft allows users to log into Windows via RDP using revoked passwords, and the ongoing risk to US infrastructure from “unexplained communications equipment” being found in Chinese-made electrical equipment ... Read more »…

Packet Protector

1
PP065: A Microsegmentation Overview 33:47

11 weeks ago33:47

33:47

Microsegmentation divides a network into boundaries or segments to provide fine-grained access control to resources within those segments. On today’s Packet Protector we talk about network and security reasons for employing microsegmentation, different methods (agents, overlays, network controls, and so on), how microsegmentation fits into a zero trust strategy, and the product landscape. Episode Links: ... Read more »…

Packet Protector

1
PP064: How Aviatrix Tackles Multi-Cloud Security Challenges (Sponsored) 42:51

12 weeks ago42:51

42:51

Aviatrix is a cloud network security company that helps you secure connectivity to and among public and private clouds. On today’s Packet Protector, sponsored by Aviatrix, we get details on how Aviatrix works, and dive into a new feature called the Secure Network Supervisor Agent. This tool uses AI to help you monitor and troubleshoot ... Read more »…

Packet Protector

1
PP063: Wi-Fi Security and AI in the WLAN at Mobility Field Day 52:57

12 weeks ago52:57

52:57

Wireless security takes center stage in this episode of Packet Protector. Jennifer Minella and guests discuss “secure by default” efforts by WLAN vendors; the current state of PSK, SAE, and WPA3; NAC and zero trust; more WLAN vendors adding AI to their products (or at least their messaging); and more. Jennifer is joined by Jonathan ... Read more »…

Packet Protector

1
PP062: Hunting for Host Security and Performance Issues with Stratoshark 33:45

14 weeks ago33:45

33:45

Stratoshark is a new tool from the Wireshark Foundation that analyzes system calls on a host. Network, security, and application teams can use Stratoshark to diagnose performance issues and investigate behavior that may indicate malware or other compromises of the host. On today’s Packet Protector we talk with Gerald Combs of the Wireshark Foundation about ... Read more »…

Packet Protector

1
PP061: Comparing Breach Reports, RSAC 2025 Highlights, and a Security Awareness Soapbox 35:36

14 weeks ago35:36

35:36

New breach reports show threat actor dwell times are dropping significantly. It’s a positive development, but there is a caveat. We discuss this caveat and other findings from the 2025 editions of the Verizon Data Breach Investigations Report and the Google M-Trends Report. We also get highlights from the 2025 RSA Conference, and JJ gets ... Read more »…

Packet Protector

1
PP060: Subsea Cables and the Watery Risks to Critical Infrastructure 44:43

15 weeks ago44:43

44:43

Submarine cables are a hidden wonder. These fiber optic bundles carry data and voice traffic around the world and serve as critical global links for communication and commerce. Today on Packet Protector, guest Andy Champagne dives into the history of submarine cables, the technological and operational advancements that allow voice and data to travel hundreds ... Read more »…

Packet Protector

1
PP059: News Roundup – Oracle Plays Breach Word Games, Fast Flux Worries CISA, AI Package Hallucinations, and More 34:09

16 weeks ago34:09

34:09

Once a month, the Packet Protector podcast likes to see what’s going on out there via our news roundup. There’s a lot happening! Today we discuss Fortinet warning that a threat actor has found a way to maintain read-only access on Fortinet devices even if you’ve applied the patch for the original threat. Avanti VPNs ... Read more »…

Packet Protector

1
PP058: Network Discovery with NMAP: You’ve Got Swaptions 45:09

18 weeks ago45:09

45:09

We’re diving into NMAP on today’s show with guest Chris Greer. Chris, an expert in network analysis and forensics, explains what NMAP is, the difference types of scans, how device fingerprinting works, and more. We also coin the term “swaptions” as we have some fun with NMAP terminology. He also gives details on how to ... Read more »…

Packet Protector

1
PP057: Behind the Scenes At Cisco: PSIRT, AI, CVEs, and VEX 54:13

19 weeks ago54:13

54:13

Cisco Systems has a sprawling portfolio of home-grown and acquired products. What’s it like trying to find and address bugs and vulnerabilities across this portfolio? Omar Santos, a Distinguished Engineer at Cisco, gives us an inside look. We dig into how Cisco identifies security bugs using internal and external sources, the growing role of AI ... Read more »…

Packet Protector

1
PP056: Ask A CISO with Joe Evangelisto 38:30

20 weeks ago38:30

38:30

On today’s show, we chat with Joe Evangelisto, CISO at NetSPI. He recounts his journey to becoming a Chief Information Security Officer, one that started as an IT sysadmin, advanced to management, and led him ultimately to the CISO role. Joe talks about building security programs from the ground up and developing both personally and ... Read more »…

Packet Protector

1
PP055: News Roundup – BotNet Targets TP-Link, Threat Hunting In the Electric Grid, Apple Vs. UK Snoops, and More 38:28

20 weeks ago38:28

38:28

This week we dive into security headlines including a botnet bonanza that includes TP-Link routers, Chinese attackers targeting Juniper and Fortinet, and a case study of nation-state actors penetrating the operator of a small US electric utility. We also discuss ransomware attacks targeting critical infrastructure, a backdoor in an Android variant used in streaming devices, ... Read more »…

Packet Protector

1
PP054: Understanding WireGuard and Overlay VPNs with Tom Lawrence 49:11

22 weeks ago49:11

49:11

WireGuard and other overlay VPNs are the focus of today’s podcast with guest Tom Lawrence from Lawrence Systems. We dig into differences between WireGuard and traditional IPSec VPNs, how WireGuard’s opinionated approach to crypto suites helps improve its performance, and how WireGuard compares to OpenVPN. We also look at the broader category of overlay VPNs ... Read more »…

Packet Protector

1
PP053: Rethinking Secure Network Access and Zero Trust With Bowtie (Sponsored) 42:47

22 weeks ago42:47

42:47

On today’s Packet Protector episode we talk with sponsor Bowtie about its secure network access offering. If you think secure network access is just another way to say ‘VPN,’ you’ll want to think again. Bowtie’s approach aims to provide fast, resilient connectivity while also incorporating zero trust network access, a secure Web gateway, CASB, and ... Read more »…

Packet Protector

1
PP052: The State of the Network Security Market In 2025 40:38

23 weeks ago40:38

40:38

How big is the network security market? Is it growing? How is that growth measured? What effect is SASE having on security spending? Will security products or security operators get more effective thanks to AI? We put these and other questions to Mauricio Sanchez. He’s Sr. Director, Enterprise Security and Networking at the Dell’Oro Group, a ... Read more »…

Packet Protector

1
PP051: Security Certifications From Beginner to Advanced 36:53

24 weeks ago36:53

36:53

Certifications are a fact of life in a technical career. They can also provide a pathway to help you earn new roles, sharpen your skills, and boost your salary. On today’s Packet Protector we look at security certifications for beginners, experienced professionals, and advanced practitioners. This episode was inspired by a LinkedIn post by Ethan ... Read more »…

Packet Protector

1
PP050: Understanding–and Protecting Yourself From–the Malware Economy 42:40

25 weeks ago42:40

42:40

There’s a robust malware economy with an active market for exploits, brokered access to compromised systems, ransomware, bots-as-a-service, and more. And this malware economy is targeted at you. On today’s Packet Protector we talk with Jake Williams, a security researcher, consultant, and instructor, about the malware economy, how it operates, and the most effective strategies ... Read more »…

Packet Protector

1
PP049: CSMM – A Practical Model for Improving Your Cloud Security 42:55

26 weeks ago42:55

42:55

The Cloud Security Maturity Model (CSMM) is a practical blueprint for improving the security of your public cloud deployments. Developed in partnership with the Cloud Security Alliance, IANS, and Securosis, the model covers 12 categories, such as network security and application security, across 3 domains. It describes 5 levels of security maturity, and includes process ... Read more »…

Packet Protector

1
PP048: News Roundup – 5G Vulnerabilities Abound, CSRB Disbanded, Magic Packets Target Juniper Routers, and More 39:08

27 weeks ago39:08

39:08

JJ and Drew catch you up on cybersecurity news including new research that uncovers a host of 5G/LTE vulnerabilities, the chain of breaches in a BeyondTrust attack that led to infiltration of the US Treasury Dept., and a lawsuit against LinkedIn alleging that data from paying customers was used to train AI models. Researchers unpack ... Read more »…

Packet Protector

1
PP047: Why Packet Analysis (and Wireshark) Should Be In Your Security Toolkit 43:23

28 weeks ago43:23

43:23

Don’t underestimate the value of packet analysis in your security strategy. And if you’re analyzing packets, the open-source Wireshark software is a go-to tool. On today’s episode, we talk with Chris Greer, a Wireshark trainer and consultant specializing in packet analysis. Chris explains the critical role of packet analysis in cybersecurity, particularly in threat hunting ... Read more »…

Packet Protector

1
PP046: IPv6 Security, Migration, and Adoption 39:42

30 weeks ago39:42

39:42

You asked for more IPv6 and we listened. In today’s episode, we talk with Ed Horley, co-host of the IPv6 Buzz podcast about IPv6 security, migration, and adoption. We talk about how your general security strategy doesn’t change with v4 or v6, but the trouble starts with a lack of v6 knowledge. We talk about ... Read more »…

Packet Protector

1
PP045: Reducing the Risk of Compromised Digital Certificates with CAA and Certificate Transparency 31:28

31 weeks ago31:28