Cybersecurity Growth
- livestream and podcast
Duration: Weekly, 90 minutes
Title: Cybersecurity Growth #2 - Practical uses of the Secure Controls Framework
Welcome to Cybersecurity Growth. A show for aspiring and existing cybersecurity leaders. I’m your host Shawn Valle, Exec Director and CISO of Cybersecurity Growth
Former Chief Security Officer of Rapid7 and former CISO of Tricentis
Musician here on Twitch and elsewhere, MusicBySV (more on that later)
New emergent threat response: "CVE-2022-47966: Rapid7 Observed Exploitation of Critical ManageEngine Vulnerability."
Glenn Thorpe of Rapid7 “This has kept us busy over the past 24+ hours. If you’re running ManageEngine software you should:
1. Patch it always no questions asked just do it.
2a. Keep it as segmented as possible from the public internet regardless of its function.
2b. Migrate away from it.”
Dozens of products impacted.
Access Manager Plus*
Active Directory 360**
ADAudit Plus**
ADManager Plus**
ADSelfService Plus**
Analytics Plus*
Application Control Plus*
Asset Explorer**
Browser Security Plus*
Device Control Plus*
Endpoint Central*
Endpoint Central MSP*
Endpoint DLP*
Key Manager Plus*
OS Deployer*
PAM 360*
Password Manager Pro*
Patch Manager Plus*
Remote Access Plus*
Remote Monitoring and Management (RMM)*
ServiceDesk Plus**
ServiceDesk Plus MSP**
SupportCenter Plus**
Vulnerability Manager Plus*
https://www.csoonline.com/article/3684850/11-top-xdr-tools-and-how-to-evaluate-them.html
By Tim Ferrill CSO Online
XDR is a relatively new class of security tool that combines and builds on the strongest elements of security incident and event management (SIEM), endpoint detection and response (EDR), and even security orchestration and response (SOAR).
Trend Micro,
Microsoft XDR,
Palo Alto Networks Cortex XDR,
Crowdstrike Falcon Insight XDR,
Bitdefender GravityZone Business Security Enterprise,
SentinelOne Singularity XDR,
Cybereason XDR,
VMware Carbon Black XDR,
Elastic Security for XDR,
Trellix XDR Platform,
Cynet 360...
