Mitch and Alan discuss a recent security incident involving CrowdStrike, highlighting the challenges of software updates and the implications for the broader industry. They reflect on their experiences attending the Black Hat conference and the evolving intersection of software development and security. They also share personal anecdotes and insights into the importance of quality assurance in security updates.

Mitchell and Alan talk about the ubiquitous collection of data including geolocation data by Apple, Google and other providers. The uses of this data can be relatively innocent for marketing purposes all the way to serious security issues of life and death. Alan & Mitch also talk about the current state of Cyber AI startups. Has the bloom come off the rose? Will Cyber AI become a big company game with the giants of the field dominating? What about the Palo Alto/IBM partnership? Lots to discuss in that one.

Mitch and Alan take a moment to catch their breath after a great week at RSAC, Broadcast Alley interviews and the DevSecOps and GenAI conference. They affirm that security is about community for them both. They also explore the emerging discussion of whether all this spending on security technologies is making us more secure or not. Links Referenced in Podcast: https://techstrong.tv/videos/rsa-conference-2024 https://www.techstrongevents.com/devopsconnect-devsecops-rsac-2024/virtual-home

Mitch and Alan discuss rebranding the Security Creators Network; CISA brings a new focus to open source and Alan's interview with OpenSSF governing board member Brian Fox (Sonatype) from KubeCon + CloudNativeCon Europe 2024. References mentioned in this podcast: Security Creators Network: https://securityboulevard.com/2024/04/techstrong-group-announces-rebranding-of-security-bloggers-network-to-security-creators-network/ CISA: https://securityboulevard.com/2024/04/federal-support-for-open-source-security/

Alan and Mitch discuss self-replicating AI malware, Cloudflare's announced firewall to protect generative AI LLMs and Alan's interview with Anna Pobletts, head of passwordless at 1Password, about how devs and DevOps teams can improve cybersecurity by eliminating passwords. https://securityboulevard.com/2024/03/compromptmized-ai-worm-malware-richixbw/ https://securityboulevard.com/2024/03/cloudflare-unveils-a-firewall-designed-to-keep-llms-safe https://techstrong.tv/videos/interviews/devops-passwordless-cybersecurity-1passwords-anna-pobletts

Mitch and Alan discuss the State Department's intent to label fake content, expanding the Security Bloggers Network at RSAC 2024, and the government's focus on taking down LockBit and other large ransomware rings. Links Referenced in Podcast: https://securityboulevard.com/2024/02/us-russian-disinformation-richixbw/ https://securityboulevard.com/security-bloggers-network https://securityboulevard.com/2024/02/lockbit-op-cronos-richixbw/ https://securityboulevard.com/2024/02/u-s-offers-10-million-for-info-on-blackcat-alphv-ransomware-leaders/

In this episode of Security Boulevard Chats, hosts Mitch and Alan delve into AI's profound impact on cybersecurity and the dual-edged nature it presents for attackers and security professionals. The conversation takes a deeper dive into the murky waters of deep fakes and AI-generated misinformation. Alan sits down with Chris Eng, Chief Research Officer at Veracode, for an insightful discussion on security debt. They peel back the layers of this often-overlooked aspect of cybersecurity, revealing the long-term consequences of postponed security measures. Join Mitch and Alan for an episode that promises to enlighten and challenge your perceptions of cybersecurity in the AI era. Whether you're a security professional, a technology enthusiast, or simply curious about the future of digital defense, this episode of Security Boulevard Chats is a must-listen. Links Referenced: https://techstrong.tv/videos/interviews/veracode-state-of-sofware-security-2024-chris-eng

Alan and Mitch discuss data leaks and Bank of America' recent data loss and, Alan's interview with security marketing guru and colleague Jennifer Leggio, defending the expanding attack surface. Links referenced: https://www.bleepingcomputer.com/news/security/bank-of-america-warns-customers-of-data-breach-after-vendor-hack/ https://securityboulevard.com/2024/02/what-is-a-data-leak-causes-examples-and-prevention https://techstrong.tv/videos/interviews/how-to-lead-moveable-feast-jennifer-leggio https://techstrong.tv/videos/interviews/challenges-defending-attack-surface-ionix-marc-gaffan