Sam Sam Ransomware Attack Leads To Indictment Of Two Iranian Nationals The SynAckFinAck podcast

Sam Sam Ransomware Attack Leads To Indictment Of Two Iranian Nationals

4+ y ago 36:00

المحتوى المقدم من Robert Rounsavall, Startup Founder, and BJJ Blue Belt. يتم تحميل جميع محتويات البودكاست بما في ذلك الحلقات والرسومات وأوصاف البودكاست وتقديمها مباشرة بواسطة Robert Rounsavall, Startup Founder, and BJJ Blue Belt أو شريك منصة البودكاست الخاص بهم. إذا كنت تعتقد أن شخصًا ما يستخدم عملك المحمي بحقوق الطبع والنشر دون إذنك، فيمكنك اتباع العملية الموضحة هنا https://ar.player.fm/legal.

In this episode of the podcast I chat with Robert Renzulli, the CISO for the Port of San Diego.

Because of where it is located, they have some unique challenges. They are on an international border, connected to an international airport, a military base, where the Navy SEALs train, and various other things.

They are also a public entity in a state with some unique privacy laws and concerns. We discuss a number of topics including a recent Sam Sam ransomware incident they had that was disclosed to the public and led to an indictment of two Iranian Nationals.

He basically gave a master class on incident response from technical to communication to legal and many of the other things that people don't often take into consideration during an incident.

Some things I took away:

When dealing with an incident, first call your General Counsel, then your Cyber Insurance company.
The port used the NIMS Fema Incident Management System.
Communication is a really big issue during an incident, especially if it is publicly disclosed:

"Cyber always somehow focuses on technical and it's so much more than that."

We discussed hiring, internships, and where Robert finds people to work in security:

"I've found a lot of my best analysts were baristas at Starbucks, or worked as bouncers. It doesn't matter the background, it's the drive, it's the motivation, it's the constantly wanting to learn"

We end up talking about what technology will be key and understanding that it's not necessarily the tech, but the DATA that is critical and how important it is to understand your data, what it is, and how to manage and secure it.

"Emerging technology is going to be all about how you move the data around, how do you protect the data, and how do you control who has access to the data, and what device the data actually lands on."

You can find the SynAckFinAck Podcast wherever you listen to your podcasts. If you like what you hear, please pop over to iTunes and give a review, subscribe to and share the podcast. Thank you for listening!

Spotify iTunes Stitcher iHeartRadio

36 حلقات