Shows
Blumira Briefings🦔 Blumira Briefings Ep. 14: Cisco's Critical Vulnerabilities, Chrome Zero-Day, & CitrixBleed 2 Alert🚨 Welcome to Blumira Briefings! This week, our security experts Jake, Mike, and Michael join Zoe to help break down critical vulnerabilities and trending threats you need to know about. 🚨What We Cover This Week:📱 Two critical Cisco vulnerabilities - hard-coded root credentials in Unified CM (CVSS 10.0) and RCE flaws in Identity Services Engine (CVSS 10.0) 🌐 Google's 4th Chrome zero-day of 2025 - type confusion in the V8 JavaScript engine ⚠️ CitrixBleed 2 exploits now in the wild - allowing attackers to steal session tokens with a CVSS 9.3 rating ⚫ Windows' Blue Screen of Death turning black - Microsoft's response...2025-07-1148 minBlumira Briefings🦔 Blumira Briefings Ep. 13: Critical Veeam RCE, NetScaler Vulns, & Zero-Click Copilot Data Theft🔔 Welcome back for this week’s episode and your weekly security download! We're joined by Jake Ouellette, Taylor Jacobson, and Amanda Berlin to break down the week's most important security headlines with context you can actually use. 🔔What We Cover This Week:📊 Most changed weekly trends, including recurring process dumps for credential theft and suspicious IAM behavior🔧 Critical Veeam RCE vulnerability (CVE-2025-23121) with a 9.9 CVSS score - make sure to patch this one immediately!🌐 NetScaler ADC and Gateway vulnerabilities allowing token theft from internet-facing devices📲 Cisco Meraki MX and...2025-06-2752 minBlumira Briefings🦔 Blumira Briefings Ep. 12: Critical Trend Micro Fix, TeamFiltration Attacks, NIST Zero Trust Guide🔔 Your essential security briefing is here! This week, Matt Warner, Nick Dixon, and Jake Ouellette join Zoe Lindsey to break down critical developments in cybersecurity with practical context for busy IT and security teams. 🔔What We Cover This Week: 🔐 Trend Micro patches 6 critical vulnerabilities (CVSS 9.8) in Apex Central and PolicyServer products - and how the deserialization method leveraged to exploit them works🔍 Over 80,000 Microsoft Entra ID accounts targeted using TeamFiltration - how this pen testing tool is being weaponized by attackers 📘 NIST's new Zero Trust Implementation Guide - less conceptual introductions, with better focus...2025-06-2054 min
Security Weekly (Download Only)Insider threats, migrating away from cloud, RSAC interviews with Cyera and Blumira - Yotam Segev, Matthew Warner, Rob Allen - ESW #411Segment 1 - Interview with Rob Allen from ThreatLocker This segment is sponsored by ThreatLocker. Visit https://www.securityweekly.com/threatlocker to learn more about them! Segment 2 - Topic: Growing Trend - Edge Computing and Hybrid Cloud Segment 3 - Interviews from RSAC 2025 Cyera Cyera is the fastest-growing data security company in history, empowering companies to classify, secure, and manage their data, wherever it is, and leverage the power of the industry’s first AI native,unified Data Security Platform. Yotam Segev, Cyera’s CEO sits down with CyberRisk TV at RSAC Conference 2025 to discuss Cyera’s skyroc...2025-06-161h 19
Security Weekly Podcast Network (Audio)Insider threats, migrating away from cloud, RSAC interviews with Cyera and Blumira - Rob Allen, Matthew Warner, Yotam Segev - ESW #411Segment 1 - Interview with Rob Allen from ThreatLocker This segment is sponsored by ThreatLocker. Visit https://www.securityweekly.com/threatlocker to learn more about them! Segment 2 - Topic: Growing Trend - Edge Computing and Hybrid Cloud Segment 3 - Interviews from RSAC 2025 Cyera Cyera is the fastest-growing data security company in history, empowering companies to classify, secure, and manage their data, wherever it is, and leverage the power of the industry’s first AI native,unified Data Security Platform. Yotam Segev, Cyera’s CEO sits down with CyberRisk TV at RSAC Conference 2025 to discuss Cyera’s skyroc...2025-06-161h 19
Enterprise Security Weekly (Audio)Insider threats, migrating away from cloud, RSAC interviews with Cyera and Blumira - Rob Allen, Matthew Warner, Yotam Segev - ESW #411Segment 1 - Interview with Rob Allen from ThreatLocker This segment is sponsored by ThreatLocker. Visit https://www.securityweekly.com/threatlocker to learn more about them! Segment 2 - Topic: Growing Trend - Edge Computing and Hybrid Cloud Segment 3 - Interviews from RSAC 2025 Cyera Cyera is the fastest-growing data security company in history, empowering companies to classify, secure, and manage their data, wherever it is, and leverage the power of the industry’s first AI native,unified Data Security Platform. Yotam Segev, Cyera’s CEO sits down with CyberRisk TV at RSAC Conference 2025 to discuss Cyera’s skyroc...2025-06-161h 19
Enterprise Security Weekly (Video)Insider threats, migrating away from cloud, RSAC interviews with Cyera and Blumira - Yotam Segev, Matthew Warner, Rob Allen - ESW #411Segment 1 - Interview with Rob Allen from ThreatLocker This segment is sponsored by ThreatLocker. Visit https://www.securityweekly.com/threatlocker to learn more about them! Segment 2 - Topic: Growing Trend - Edge Computing and Hybrid Cloud Segment 3 - Interviews from RSAC 2025 Cyera Cyera is the fastest-growing data security company in history, empowering companies to classify, secure, and manage their data, wherever it is, and leverage the power of the industry’s first AI native,unified Data Security Platform. Yotam Segev, Cyera’s CEO sits down with CyberRisk TV at RSAC Conference 2025 to discuss Cyera’s skyroc...2025-06-161h 19Blumira Briefings🦔 Blumira Briefings Ep. 11: Cloud ISE Cred Twinsies, Windows 0day Exploited, and Play Ransomware UpdatesThis week on Blumira Briefings, join our "Oops! All Detection Engineers" episode as Zoe hosts Jake and Justin to break down the most critical security headlines of the week with practical context you can actually use!🔍 What We Cover This Week:🌩️ Cisco ISE credential vulnerability affecting cloud deployments on AWS, Azure & Oracle (CVE-2025-20286) 🔐 SAP NetWeaver critical missing authorization bug in RFC framework (CVE-2025-42989) 📊 Our most changed security trends of the week - what's suddenly spiking across our detection data 🪟 Windows WebDAV zero-day exploited against Turkish defense organization (CVE-2025-33053) ...2025-06-131h 01Blumira Briefings🦔 Blumira Briefings Ep. 10: Critical Chrome Release, Identity-Based Attacks, Cookie Security Risks🔔 Welcome to Blumira Briefings! This week, we're joined by Michael Kellar, Chris Furner, and Justin Kikani to break down the week's most important security headlines with expert context you can actually use. 🔔What We Cover This Week:🔄 NEW FORMAT! Instead of our usual top trends, we're highlighting the rarest findings in our environments - with insights on what makes these unusual detections worth your attention🌐 Critical Chrome vulnerabilities with active exploits in the wild - what makes use-after-free and out-of-bounds write bugs so dangerous 🛠️ ConnectWise ScreenConnect and other vulnerabilities added to CISA's Known Exploited Vu...2025-06-0651 minBlumira Briefings🦔 Blumira Briefings Ep. 9: Cisco Vulnerabilities, BadSuccessors, Coding Assistant Prompt Injection🔔 Welcome back to Blumira Briefings, your essential security download! This week, Matt Warner, Mike Toole, Jake Ouellette, and Zoe Lindsey break down the latest security headlines with context you can actually use. 🔔What We Cover This Week:🩹 Cisco patches 10 issues, including 2 high-severity DoS and privilege escalation flaws 🔑 184 million login credentials for major platforms exposed online🇷🇺 Russia's Fancy Bear stepping up attacks on logistics and IT firms 💻 BadSuccessor: Understanding a Windows Server 2025 vulnerability exploiting permission inheritence 🤖 GitLab Duo prompt injection vulnerability, highlighting potential AI assistant security risksPlus, Expert Insights On...2025-05-3053 minBlumira Briefings🦔 Blumira Briefings Ep. 8: Chrome Zero-Days, Microsoft’s BIG Patch Tuesday, DNS Attacks & Exploitability Metrics🔔 Your essential security download is here! This week on Blumira Briefings, we're joined by Matt Warner, Jake Ouellette, and Mike Toole to break down the latest security headlines with practical insights for busy IT and security teams. 🔔What We Cover This Week:📱 Chrome patches 3rd actively-exploited vuln in a week - what this means for browser security 🔐 Microsoft's patch Tuesday fixes 78 flaws, including five 0days and a CVSS 10.0 vulnerability in Azure DevOps Server🔄 How attackers are abusing dynamic DNS services to create convincing phishing domains and evade detection 🕸️ We look at a novel "Hazy...2025-05-2346 minBlumira Briefings🦔 Blumira Briefings Ep. 7: Hardcoded Woes, Detection Maintenance, and Dennis Fisher!🔔 Welcome to another episode of Blumira Briefings! This week, we welcome special guest Dennis Fisher, InfoSec journalist extraordinaire and Editor-in-Chief of Decipher, joining Zoe Lindsey, Jake Ouellette, and Nick Dixon to break down the week's most important security headlines. 🔔What We Cover This Week:📱 Apple's iOS/iPadOS 18.5 update patches 30+ security bugs - learn what's affected and why you need to update now💻 ASUS DriverHub vulnerability allows attackers to run admin commands through malicious websites🔧 Cisco IOS XE Wireless Controller critical vulnerability (CVSS 10.0) exploitable via hardcoded JWT tokens☎️ Fortinet zero-day exploited in FortiVoice attacks - what post...2025-05-1655 minBlumira Briefings🦔 Blumira Briefings Ep. 6: AirPlay Vulns, SonicWall Warnings, Risk Turduckens🔔 Welcome back to Blumira Briefings! Fresh from RSA, we're diving into the week's critical security stories with Mike Toole, Michael Keller, and Jake Ouellette to provide actionable context for IT and security teams. 🔔What We Cover This Week:📊 Top trending threats, including suspicious Microsoft 365 activity, Sophos blocked website alerts, and important batch script execution patterns🔊 "AirBorne" - Wormable AirPlay flaws affecting not just Apple devices but also smart speakers, TVs, and CarPlay systems🛡️ Two SonicWall vulnerabilities being actively exploited despite patches being available since 2023/2024🧩 "Bring Your Own Installer" EDR bypass technique used in ransomware attacks a...2025-05-0941 minBlumira Briefings🦔 Blumira Briefings: Fresh Report Drops, Ransom-Tripling Magic Words, AI Accelerating Vulnerability Exploits🔔 It's time for your essential security download with Blumira Briefings! This week, we're joined by Amanda Berlin, Jake Ouellette, and Nick Dixon to break down the week's most important security headlines with context you can actually use. 🔔What We Cover This Week: 📊 Top trending threats, including a rise in stolen credentials attacks and continuing remote access tool abuse 🌐 Critical Erlang/OTP SSH vulnerability with public exploits now available - what it affects and what it doesn't 📲 Cisco WebEx vulnerability allowing code execution through meeting links 🔐 SSL.com certificate issuan...2025-04-2540 minBlumira Briefings🦔 Blumira Briefings, Ep. 4: Critical Apache & Fortinet Updates, Exchange EOL, and Slopsquatting Trends🔔 This week on Blumira Briefings: critical vulnerabilities, cybersecurity drama, and practical tips for your security team! 🔔What We Cover This Week: 📊 Top trending threats across Blumira's platform - including a 50% WoW increase in Azure single-factor PowerShell auth attempts ⚠️ CVSS 10 Apache Roller vulnerability enabling unauthorized session persistence after password changes 🔥 Claimed Fortinet 0day vulnerability allowing unauthenticated remote code execution - plus known exploited vulnerabilities affecting 14,000 devices 🚨 Microsoft Exchange 2016/2019 reaching end-of-life in October 2024 - why it's time to plan your migration now 🏛️ CVE program uncertainty and temporary extension - what security teams need to k...2025-04-1840 minBlumira BriefingsBlumira Briefings, Ep. 3: Halo Fixes, NIST Changes, and Tax Phishing Prevention Tips!🔔 Time for another edition of Blumira Briefings, bringing you the week’s headlines with the extra context you need! 🔔What We Cover This Week:📊 Top trending threats, risks, and suspects detected across our platform - including risky Azure sign-ins and Screen Connect anomalies💻 Halo ITSM vulnerability that allowed pre-auth SQL injection - and how quick vendor responses can demonstrate good security practices 📱 Android's critical April security update fixing over 60 flaws, including an 0day and plenty of privilege escalation bugs🔍 NIST's new "deferred" status for older vulnerabilities (and why legacy CVEs still matter)⚠️ Malici...2025-04-1144 minBlumira BriefingsBlumira Briefings, Ep. 2: Breach News, BlackSuit, and Begone Batch Files!Welcome back for our latest episode of Blumira Briefings! This week, Zoe is joined by Matt Warner (CEO/Co-founder), Mike Toole (Director of IT and Security), and Jake Ouellette (Detection Engineering) to break down the week's headlines with a side of perspective! 🔒In this episode, we'll cover:📊 This week's top threats, suspects, and risks tracked by our detection and response platform⚠️ New critical security flaws found in VMware Tools and CrushFTP (with CVSS scores of 7.8 and 9.8 respectively! Learn what makes certain vulnerabilities more severe than others🔍 CheckPoint confirms a breach but says it contai...2025-04-0447 min
The Cybersecurity Defenders Podcast#197 - Avoiding burnout and a managing stress with Amanda Berlin, CEO of Mental Health HackersIn this episode of The Cybersecurity Defenders Podcast, we discuss stress management and avoiding burnout with Amanda Berlin, CEO of Mental Health Hackers.Amanda is the Senior Product Manager of Cybersecurity at Blumira, where she collaborates with a talented team to make security more accessible. With a career in IT spanning nearly her entire adult life, her expertise includes infrastructure security, network troubleshooting, purple teaming, and security awareness training.Beyond her role at Blumira, Amanda leads Mental Health Hackers, an organization dedicated to addressing the unique mental health challenges faced by cybersecurity professionals and heavy...2025-02-2828 min
Joey Pinz Discipline Conversations#563 Kass Lawrence: 🌍 From MSPs to YouTube: Kass Lawrence’s JourneySend us a textIn this insightful episode, Joey Pinz sits down with Kass Lawrence, who brings a wealth of experience from the MSP world and cybersecurity. From supporting her husband’s MSP to transitioning into sales and security with Blumera, Kass shares her unexpected journey into the industry, the realities of MSP life, and why she never wants to own one herself.💡 Top 3 Highlights:✅ MSP Challenges: Kass discusses the biggest pain points for MSPs—cybersecurity threats, talent retention, and growth.✅ Transparency in Sales: Why being honest and direct with MSPs builds trust and avoids empt...2025-02-2626 min
Business of Tech: Daily 10-Minute IT Services InsightsAI in Business Growth, Wildfire Detection, Healthcare Innovations, and Nostalgic Windows UpdatesHost Dave Sobel discusses the growing role of artificial intelligence (AI) in small businesses, highlighting a recent survey by the U.S. Chamber of Commerce. The survey reveals that 98% of small businesses are utilizing AI tools, with a notable increase in the adoption of generative AI. While many small business owners view AI as a crucial driver for growth, there are significant workforce concerns, with one in three workers advocating for a ban on AI in the workplace due to fears about job security. The episode emphasizes the need for balanced approaches that address both the potential benefits of...2024-09-2613 min
Business of Tech: Daily 10-Minute IT Services InsightsAI Regulations, New, Unusual Cybersecurity Threats, and Intel's Foundry ChallengesThe episode opens with a report on a series of explosions involving handheld pagers in Lebanon and Syria, which injured multiple individuals, including members of Hezbollah. This incident is believed to be a sophisticated attack attributed to Israel, highlighting the ongoing tensions in the region. Sobel also covers a new covert attack method, PIX-L, which can exploit air-gapped networks using sound waves, emphasizing the need for organizations to bolster their defenses against such unconventional threats.The episode shifts focus to cybersecurity measures being implemented in the U.S. ahead of the presidential election. The Cybersecurity and Infrastructure...2024-09-1812 min
Business of Tech: Daily 10-Minute IT Services InsightsTech Hiring Stalls, Cloud Costs Rise, Layoffs Linked to Breaches, Pango Acquires Kaspersky UsersThe August jobs report revealed that the U.S. economy added 142,000 jobs, falling short of expectations, while the unemployment rate decreased to 4.2%. Small businesses are facing challenges, with 40% of owners struggling to fill positions and a significant number reporting a lack of qualified applicants. Despite these hurdles, there is a slight increase in job openings for skilled workers, especially in construction, and a net 33% of business owners raised pay in August.Host Dave Sobel highlights a cautious approach to tech hiring, noting that overall tech employment remains flat. While the tech services sector saw a modest job...2024-09-0910 min
The Cyber Security Matters PodcastSMBs’ Cyber Security Challenges - Episode 40 - Amanda Berlin, Director of Incident Detection Engineering at BlumiraMeet Amanda Berlin, the Director of Incident Detection Engineering at Blumira, Author of The Defensive Security Handbook, Co-Host of the Breaking Down Security Podcast, and CEO of Mental Health Hackers.
She joined us to talk about everything from SMBs’ cyber security challenges to the importance of creating awareness for roles in the sector, and plenty inbetween.
Tune in for a fascinating episode!
The Cyber Security Matters Podcast was created by neuco, a global talent acquisition company that specialises in the space and technology sectors. To learn more about our sponsors, neuc...2024-08-2932 min
Enterprise Security Weekly (Video)Secure Code From the Start, Security Validation & Platformization - Maxime Lamothe-Brassard, Volkan Ertürk, Chris Hatter - ESW #363Qwiet AI provides real time detection of security vulnerabilities in code along with the best AI generated fixes to aid developers in finding and fixing their code with the addition of AI AutoFix. This segment is sponsored by Qwiet AI. Visit https://securityweekly.com/qwietrsac to learn more about them! With scores of security tools implemented, configured, and integrated security teams are overwhelmed while knowing there is still a possibility for a breach. As they work to prioritize threat exposures, it is imperative for organizations to have a clear, context-rich, and up-to-date view of their...2024-05-2447 min
Business Security Weekly (Video)2024 Cyber Resilience Trends & Leveling the Cybersecurity Playing Field - Theresa Lanowitz, Jim Simpson - BSW #351In this segment, Theresa will unpack the complexities of cyber resilience, and dive into new research that examines dynamic computing. She’ll discuss how it merges IT and business operations, taps into data-driven decision-making, and redefines computing for the modern era. This segment is sponsored by LevelBlue. Visit https://www.Securityweekly.com/levelbluersac to learn more about them! In this segment, Jim can discuss how organizations can enhance their cybersecurity posture with Blumira’s automated threat monitoring, detection and response solutions. Jim can talk about the exciting plans Blumira has in store for the next 3 year...2024-05-2129 min
Security Weekly Podcast Network (Audio)Security Money: Rubrick Saves The Index As It Continues To Climb - Jim Simpson, Theresa Lanowitz - BSW #351This week, it’s time for security money, our quarterly review of the money of security, including public companies, IPOs, funding rounds and acquisitions from the previous quarter. This quarter, Rubrick's IPO saves the index, as Cisco finishes the acquisition of Splunk. The index is now made up of the following 25 pure play cybersecurity public companies: Secureworks Corp Palo Alto Networks Inc Check Point Software Technologies Ltd. Rubrik Inc Gen Digital Inc Fortinet Inc Akamai Technologies, Inc. F5 Inc Zscaler Inc Onespan Inc Leidos Holdings Inc Qualys Inc Verint Systems Inc. Cyberark Software Ltd Tenable Holdings Inc Da...2024-05-2056 min
Business Security Weekly (Audio)Security Money: Rubrick Saves The Index As It Continues To Climb - Jim Simpson, Theresa Lanowitz - BSW #351This week, it’s time for security money, our quarterly review of the money of security, including public companies, IPOs, funding rounds and acquisitions from the previous quarter. This quarter, Rubrick's IPO saves the index, as Cisco finishes the acquisition of Splunk. The index is now made up of the following 25 pure play cybersecurity public companies: Secureworks Corp Palo Alto Networks Inc Check Point Software Technologies Ltd. Rubrik Inc Gen Digital Inc Fortinet Inc Akamai Technologies, Inc. F5 Inc Zscaler Inc Onespan Inc Leidos Holdings Inc Qualys Inc Verint Systems Inc. Cyberark Software Ltd Tenable Holdings Inc Da...2024-05-2056 min
Convergence.fmThe Critical Role of Product Management with Jim Simpson, CEO, BlumiraLearning about our customers, and developing products based on their needs is simple to understand, but difficult to execute when you balance your customer desires against what’s best for your shareholders, and what your team can build, deliver and operate. Host Ashok Sivanand and Jim Simpson, CEO of Blumira, discuss his journey in product management, from early coding adventures with a Commodore 64 to leading a cybersecurity SaaS company. Discover how Jim's unique background as a third culture kid and his extensive experience in the tech industry have shaped his approach to product management, leadership, and navigating th...2024-04-3046 min
CyberBytes: The PodcastThe Evolution of SIEM and XDR with Matthew WarnerToday’s guest is Matthew Warner, CTO and Co-Founder at Blumira. In this episode, Matt shares his journey into cybersecurity and entrepreneurship, he provides valuable insights into the evolution of SIEM and XDR, and offers advice to early-stage Founders. Tune in to learn about:Matt’s journey from dropping out of college to becoming a serial entrepreneur The idea behind BlumiraEvolution of SIEM and XDRAdvice for early-stage Founders If you would like to be our next guest or are looking to hire Technical or Go-To-Market Cybersecurity Talent please get in touch via info@aspironsearch.com2024-01-1629 min
7 Minute Security7MS #605: Navigating the Demands of Tech Leadership with Amanda Berlin of BlumiraToday our friend Amanda Berlin, Lead Incident Detection Engineer at Blumira, joins us to talk about being more mentally healthy in 2024! P.S. - did you miss Amanda's past visits to the program? Then check out episode 518, 536 and 588. Be sure to check out the next edition of Amanda's Defensive Security Handbook when it comes out in later January, 2024!2024-01-0558 min
The Mindful Business Security ShowStarting a cybersecurity program in a Small BusinessThe Mindful Business Security Show is a call-in radio style podcast for small business leaders.
Join our hosts as they take questions from business leaders like you! In this episode, Accidental CISO is joined by guest host Amanda Berlin. Amanda leads Detection Engineering at Blumira, where she and her team analyze the tactics, techniques, and procedures used by cyber criminals and create detection rules to spot the nefarious activity and protect their customers' systems. When she isn't ruining the day for the bad guys, she runs a non-profit called Mental Health Hackers that is dedicated to mental...2023-12-2158 min
Gone PhishingMastering the Art of Sales (with Jeremy Young)Ever wondered why the term "salesperson" often carries a cringe-worthy stigma? Today Connor sits with Jeremy Young, Director of Partnerships at Blumira, to unravel the secrets to transforming the world of sales.Join the guys as they recount tales from a recent event, shedding light on the dos and don'ts of sales etiquette. From building genuine relationships to adopting a "Go-Giver" mentality, this episode unveils the keys to being respected and successful in the art of sales.Connect with Jeremy on LinkedIn: https://www.linkedin.com/in/jyoung1216/2023-12-2017 minGone PhishingExplaining Cybersecurity to Your Mom (With Jeremy Young)Do you find it difficult to explain your cybersecurity job to your family during gatherings? In this episode, Connor Swalm is once again joined by Jeremy Young, the partnerships expert at Blumira, who shares his approach to explaining what he does to his Mom. Jeremy provides insightful tips on simplifying the language of cybersecurity, making it relatable even during holiday dinners.As the festive season approaches, this episode serves as a reminder that cybersecurity education can start at home, ensuring that even Grandma understands the importance of multi-factor authentication!...2023-12-0618 minGone PhishingHow MSAs Catapult MSPs into Cybersecurity Success (With Jeremy Young)Have you ever wondered how Managed Service Providers (MSPs) navigate cybersecurity while using Master Service Agreements (MSAs) to grow their business? Today, we will explore the untapped potential of MSAs as a sales tool for MSPs. We will discuss how MSPs can redefine their approach to cybersecurity and make it an integral part of their journey. In this episode, Connor is joined by Jeremy Young, BlueMira's partnership expert who will share valuable insights on leveraging MSAs, setting boundaries, and implementing ingenious strategies for MSPs to make cybersecurity a seamless part of their business growth.2023-12-0415 min7 Minute Security7MS #595: Choosing the Right XDR Strategy with Matt Warner of BlumiraToday we're joined by Matt Warner of Blumira (remember him from episodes #551 and #529 and #507?) to talk about choosing the right XDR strategy! There's a lot to unpack here. Are EDR, MDR and XDR related? Can you get them all from one vendor - and should you? Do you run them on-prem, in the cloud, or both? Join us as Matt answers these questions and more!2023-10-311h 03
Tech TransformedBlumira: Choosing the Right XDR Strategy In The Financial IndustryXDR isn’t just a fancy term or the latest trend; it represents consolidating security tools, enhancing defences against sophisticated attacks, and reducing response time to safeguard against data breaches.Starting from a solid foundation of centralized logs, organizations can use XDR as part of their cybersecurity strategy to detect breaches across many different sources of data. If we look specifically at the financial industry, XDR can be key in stopping attacks rapidly before they cause too much damage. Through reducing complexity and providing stack-wide visibility, SMBs within the banking sector can solve common challenges lik...2023-10-2617 min
The Security StrategistBlumira: Choosing the Right XDR Strategy In The Financial IndustryXDR isn’t just a fancy term or the latest trend; it represents consolidating security tools, enhancing defences against sophisticated attacks, and reducing response time to safeguard against data breaches.Starting from a solid foundation of centralized logs, organizations can use XDR as part of their cybersecurity strategy to detect breaches across many different sources of data. If we look specifically at the financial industry, XDR can be key in stopping attacks rapidly before they cause too much damage. Through reducing complexity and providing stack-wide visibility, SMBs within the banking sector can solve common challenges lik...2023-10-2617 min7 Minute Security7MS #588: Becoming a Sysmon Sensei with Amanda Berlin Today Amanda Berlin from Blumira teaches us how to unlock the power of Sysmon so we can gain insight into the good, bad and ugly things happening on our corporate endpoints! Key takeaways: Sysmon turns your windows logging up to 11, and pairs well with a config file like this one or this one. Careful if you are are running sysmon on non-SSD drives - the intense number of writes might bring that disk to its knees. Just getting started logging all the things with sysmon? Why not pump those logs into a free logging/alerting system like Wazuh? I think i...2023-09-0824 min
Paul's Security Weekly (Audio)Incident Response: Clouds, SMBs, & More! - Amanda Berlin - PSW #797Amanda joins us to discuss aspects of incident response, including how to get the right data to support findings related to an incident, SMB challenges, cloud event logging, and more! Amanda works for Blumira and is the co-author of "Defensive Security Handbook: Best Practices for Securing Infrastructure." In the Security News: How not to send all your browser data to Google, apparently Microsoft needs pressure to apply certain fixes, the mutli-hundred-billion-dollar-a-year industry that tries to secure everything above the firmware, security through obscrurity doesn’t work, should you hire cybersecurity consultants, pen testing is key for compliance, defense contractor le...2023-08-313h 23
Paul's Security Weekly (Video)Incident Response: Clouds, SMBs, and more! - Amanda Berlin - PSW #797Amanda joins us to discuss aspects of incident response, including how to get the right data to support findings related to an incident, SMB challenges, cloud event logging, and more! Amanda works for Blumira and is the co-author of "Defensive Security Handbook: Best Practices for Securing Infrastructure." Show Notes: https://securityweekly.com/psw-797 2023-08-311h 02
The MSP InitiativeJeremy Young of Blumira
🎙️ SPEAKER
Jeremy Young
📍 WHERE TO FIND HIM
LinkedIn: https://www.linkedin.com/in/jyoung1216/
Website: https://www.blumira.com/
📌WHAT IS THE MSP INITIATIVE?
The MSP Initiative was developed with one goal in mind: education for the IT & MSP Channel. We are bringing together some of the best industry minds from all over the planet to help you learn relevant and helpful tips and tricks you need to take your business to the next level!
Every Tuesday and Thursday at 1:00 PM ET, we will have great IT Channel members and experts discussing relevant topics to your busine...2023-08-2956 min
The Cybersecurity Defenders Podcast#60 - Building scalable security products quickly with the SecOps Cloud PlatformA hosted panel discussion with industry leaders to explore the advantages of the SecOps Cloud Platform for product builders.The panel is moderated by LimaCharlie's Head of Product, Ross Haleliuk. The panel participants are:Founder & CTO of Recon InfoSec, Eric CapuanoLead Incident Detection Engineer at Blumira, Amanda BerlinWhat is the SecOps Cloud Platform?The SecOps Cloud Platform is a construct for delivering the core components needed to secure and monitor any given organization: things like, deploying endpoint capabilities through a single agent regardless of...2023-08-2925 min
BrakeSec Education Podcastmeeting new people, walking on your keyboard causes issues, even google gets phone numbers wrong.Check out our sponsor (BLUMIRA) at https://blumira.com/brake youtube channel link: https://youtube.com/c/BDSPodcast Full video on our youtube Channel! https://www.youtube.com/watch?v=BkBeLuM_urk https://www.rapid7.com/blog/post/2023/07/11/cve-2023-29298-adobe-coldfusion-access-control-bypass/ https://www.darkreading.com/remote-workforce/hacker-infected-foiled-by-own-infostealer https://therecord.media/cisa-warnings-adobe-microsoft-citrix-vulnerabilities https://www.itsecurityguru.org/2023/07/18/millions-of-keyboard-walk-patterns-found-in-compromised-passwords/ https://therecord.media/airline-customer-support-phone-number-fraud-google https://twitter.com/Shmuli/status/1680669938468499458 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36884 https://www.jdsupra.com/legalnews...2023-07-211h 207 Minute Security7MS #578: Interview with Mike Toole of BlumiraToday I'm excited to share a featured interview with our new friend Mike Toole of Blumira. We talk about all things EDR, including: How does it differ from something like Windows Defender? What things do I need to keep in mind if I'm in the market for an EDR purchase? Is Mac EDR any good? How do attackers bypass EDR? Will AI create industructible malware, take over the human race and then use our bodies for batteries? 2023-06-301h 00
CEO Sales StrategiesCultivating A Company Culture That Values Employees With Jim Simpson [Episode 101]Every company has a culture, whether you like it or not. And that culture needs to be cultivated so you can get the most out of your employees. Learn how to value employees, engage with them, and be transparent with them as a CEO. Today, Doug C. Brown talks with Jim Simpson, the CEO of Blumira, a leading cybersecurity provider of automated threat detection and response technology. In this episode, you will learn:- Why every company has a culture and why you have to cultivate that.- Why it's okay t...2023-05-0930 min7 Minute Security7MS #569: Interview with Jim Simpson of BlumiraToday we're excited to share a featured interview with our new friend Jim Simpson, CEO of Blumira. Jim was in security before it was hip/cool/lucrative, working with a number of startups as well as some big names like Duo. Blumira and 7 Minute Security have a shared love for helping SMBs be more secure, so it was great to chat with Jim about the IT/security challenges faced by SMBs, and what we can do make security more simple and accessible for them.2023-04-2855 minTech TransformedBlumira: Difficulties SMEs Face with CybersecuritySmall and medium-sized enterprises (SMEs) face numerous challenges when it comes to cybersecurity. One of the most significant challenges is the lack of resources, including budget and personnel, to invest in robust cybersecurity measures. This often leaves SMEs vulnerable to cyber threats, such as phishing attacks, ransomware, and data breaches. Additionally, SMEs may not have the expertise to effectively implement and manage cybersecurity solutions, leaving them susceptible to cyber-attacks.This lack of attention to cybersecurity can lead to devastating consequences for SMEs, including financial losses, reputational damage, and legal liabilities.In th...2023-04-2118 minThe Security StrategistBlumira: Difficulties SMEs Face with CybersecuritySmall and medium-sized enterprises (SMEs) face numerous challenges when it comes to cybersecurity. One of the most significant challenges is the lack of resources, including budget and personnel, to invest in robust cybersecurity measures. This often leaves SMEs vulnerable to cyber threats, such as phishing attacks, ransomware, and data breaches. Additionally, SMEs may not have the expertise to effectively implement and manage cybersecurity solutions, leaving them susceptible to cyber-attacks.This lack of attention to cybersecurity can lead to devastating consequences for SMEs, including financial losses, reputational damage, and legal liabilities.In th...2023-04-2118 min7 Minute Security7MS #561: Interview with Chris Furner of BlumiraToday I sat down with Chris Furner of Blumira to talk about all things cyber insurance. Many of 7MinSec's clients are renewing their policies this time of year, and many are looking into policies for the first time. Naturally, there are a ton of questions to ask and things to think about to make good coverage decisions for your business: How do I get started in looking for a cyber policy - with my general liability insurer? Or are there companies that specialize just in cyber insurance? How do I make sure I have the appr...2023-02-2446 min
Trimarc Happy HourSecurity Horror Stories w/ Amanda BerlinJoining the Trimarc team to talk bloody disgusting security nightmares is Amanda Berlin, Lead Incident Detection Engineer at Blumira. blumira.com2023-01-2848 min7 Minute Security7MS #556: How to Build a Vulnerable Pentest LabToday's episode is brought to us by our friends at Blumira! Today we kick off a series all about building your own vulnerable pentest lab from scratch, specifically: Spinning up a domain controller with a few lines of PowerShell Installing Active Directory Domain Services Setting up an intentionally cruddy password policy Baking in the MS14-025 vulnerability P.S. if you're looking for a more automated/push-button solution to get up and going with a lab to play in, check out some of these options: https://github.com/Orange-Cyberdefense/GOAD https://automatedlab.org...2023-01-2007 min
The Cyber Go-To-Market podcast for cybersecurity sales and marketing teams. Save Cybr Donut!181: How to use a company podcast to get more exposure with Lindsay Tjepkema of CastedYou know how you wish more people knew about your company and products, but they don’t?! One way to fix this is to start a podcast for your company. But it can seem so daunting. Where do you start?Lindsay Tjepkema, co-founder and CEO of Casted explains all this in this weeks episode. Listen in to learn:What could a podcast do for a companyWhat results to expectAs you grow, why the podcast should be at the center of your content strategyAnd, importantly, does she prefer a dive bar or cocktail bar2023-01-1750 min
The Cyber Go-To-Market podcast for cybersecurity sales and marketing teams. Save Cybr Donut!180: Learn how an SMB sales team is being successful with Brian Penney, VP of Sales at BlumiraBlumira is targeting an underserved part of the market; SMBs. Brian, the VP of Sales at Blumira, joins us to discuss how he is successfully running the sales team and growing revenue. His background is in Enterprise selling and he highlights what is similar and also what is different with selling to SMBs. In this episode, you’ll learn:The average length of a sales cycle working with SMBs and what we can learn from that on the enterprise side Advantages of having a rigorous POC process while also being flexible when neededImportance of having enough disci...2023-01-1046 min7 Minute Security7MS #554: Simple Ways to Test Your SIEMToday we talk about Simple Ways to Test Your SIEM. Feel free to check out the YouTube version of this presentation, as well as our interview with Matt from Blumira for even more context, but here are the essential tools and commands covered: Port scanning nmap 10.0.7.0/24 - basic nmap scan massscan -p1-65535,U:1-65535 --rate=1000 10.0.7.0/24 -v - scan all 65k+ TCP and UDP ports! Password spraying Rubeus.exe spray /password:Winter2022! /outfile:pwned.txt - try to log into all AD accounts one time with Winter2022! as the password, and save any pwned...2023-01-0659 min7 Minute Security7MS #551: Interview with Matt Warner of BlumiraToday we welcome our pal Matthew Warner (CTO and co-founder of Blumira) back to the show for a third time (his first appearance was #507 and second was #529). I complained to Matt about how so many SIEM/SOC solutions don't catch early warning signs of evil things lurking in customer networks. Specifically, I whined about 7 specific, oft-missed attacks like port scanning, Kerberoasting, ASREPRoasting, password spraying and more. (Shameless self-promotion opportunity: I will be discussing these attacks on an upcoming livestream on December 29). Matt dives into each of these attacks and shares some fantastic insights into what they lo...2022-12-161h 107 Minute Security7MS #545: First Impressions of Snipe-IT Today’s episode of the 7 Minute Security podcast is brought to you by Blumira, which provides easy-to-use automated detection and response that can be set up in…well..about 7 minutes. Detect and resolve security threats faster, and prevent breaches. Try it free today at blumira.com/7ms. Hey friends, today we're giving you a first impressions look at a free easy asset management tool called Snipe-IT you can use to build your inventory with! Why is this important? Because it's the first critical security control! It might help to see this tool in action, so we invite you to che...2022-11-0440 min7 Minute Security7MS #544: Interview with Nato Riley of Blumira Today’s episode is brought to us by Blumira, which provides easy to use, automated detection and response that can be setup in…well…about 7 minutes! Detect and resolve security threats faster and prevent breaches. Try it free today at blumira.com/7ms! Today we have a really fun interview with Nato Riley of Blumira. He cut his IT/security teeth working for a cell phone company, exorcising malware demons out of workstations, and even building an email-based SIEM. He has had a very cool career path that involves embracing newbness, pushing aside imposter syndrome, and even begging...2022-10-2858 minThe MSP InitiativeJeremy Young from Blumira🎙️ SPEAKER
Jeremy Young from Blumira
📍 WHERE TO FIND HIM
LinkedIn: https://www.linkedin.com/in/jyoung1216/
Website: https://www.blumira.com/
📌WHAT IS THE MSP INITIATIVE?
The MSP Initiative was developed with one goal in mind: education for the IT & MSP Channel. We are bringing together some of the best industry minds from all over the planet to help you learn relevant and helpful tips and tricks you need to take your business to the next level!
Every Tuesday and Thursday at 1PM ET, we will have great members and experts...2022-10-0658 min
QPC Security - Breakfast BytesBusiness Email CompromiseKen Dwight is “The Virus Doctor” – Business consultant and advisor to IT service providers and internal IT at many businesses who have come to him for his training, has his own direct clients. Ken conducts a monthly community meetings for alumni. He provides a list of curated items of current interest for discussion and resources, and has a featured topic which often includes another speaker to provide breadth of perspective. He has been doing this community service for 83 months!
I asked Ken to cover with me some topics that from his perspective don’t get talked about enough.2022-09-2949 min
UNSECURITY: Information Security PodcastUnsecurity Episode 189: An Interview with Chris Furner and Jeremy Young of BlumiraEpisode 189 of the Unsecurity Podcast is now live! This week, Oscar and Brad are joined by Chris Furner and Jeremy Young with Blumira to discuss their perspectives on information security.New EvilProxy Phishing Service Allowing Cybercriminals to Bypass 2-Factor Securityhttps://thehackernews.com/2022/09/new-evilproxy-phishing-service-allowing.htmlTA505 Hackers Using TeslaGun Panel to Manage ServHelper Backdoor Attackshttps://thehackernews.com/2022/09/ta505-hackers-using-teslagun-panel-to.htmlGive episode 189 a listen or watch and send any questions, comments, or feedback to unsecurity@protonmail.com. Don't forget to like and subscribe!2022-09-1439 min7 Minute Security7MS #536: Interview with Amanda Berlin of BlumiraToday we're so excited to welcome Amanda Berlin, Lead Incident Detection Engineer at Blumira, back to the show (did you miss Amanda's first appearance on the show? Check it out here)! You might already be familiar with Amanda's awesome Defensive Security Handbook or her work with the Mental Health Hackers organization. Today we virtually sat down to tackle a variety of topics and questions, including: What if HAFNIUM2 comes out today and only affects 2 specific versions of Exchange? Does Blumira buy every software/hardware thingy out there and have an evil scientist lab where they test out all these diffe...2022-09-021h 05
Tomorrow's Leader#309 - Bloom Where You Are Planted with Jim SimpsonSend us a textIn this episode, host John Laurito talks with the CEO of Blumira, Jim Simpson, all about success and taking advantage of the opportunities they have in their life. Jim shares how he stepped outside his comfort zone, figuring out who he was and what shaped him to become the leader he is today.Jim Simpson joined Blumira in January as vice president of products. Over the past year, Simpson was responsible for guiding the company’s strategic product roadmap to deliver the fastest time to security, with a focus on accessible, ea...2022-08-2932 min
The Gate 15 Podcast ChannelThe Gate 15 Interview EP 25. Amanda Berlin and Megan Roddie talk cybersecurity, mental health hackers, DEFCON, musicals, fruits, and more!In this episode of The Gate 15 Interview, Andy Jabbour speaks with Amanda Berlin and Megan Roddie, cybersecurity leaders & mental health hackers, and they’ve got their hands in a lot more too!
Amanda is the Lead Incident Detection Engineer at Blumira and has worked in I.T. for almost her entire adult life. Before working at Blumira, Amanda’s responsibilities have included infrastructure security, network hardware and software repair, email management, network/server troubleshooting and installation, purple teaming with a focus on phishing employees and organizational infrastructure as well as teaching employees about security and preventing exploits. She currently serves as th...2022-07-251h 01
OITVOIP Partner First (Video)SMB SIEM That Doesn’t Suck? feat. Jeremy Young of Blumira (Video)Join us for this valuable presentation featuring Jeremy Young | Director of Partner Strategy at Blumira alongside our host Ray Orsini of OITVOIP as we go over the SMB SIEM.
SIEM is a four-letter word for most of those with previous experience with them. Tune In live as we go over how Blumira is making a solution that not only doesn't suck but actually enables MSPs to meet compliance and detection and response objectives, while still maintaining operational efficiency and providing an affordable option to clients.
Be sure to follow our guest on LinkedIn and ask...2022-07-2155 minOITVOIP Partner First (Audio)SMB SIEM That Doesn’t Suck? feat. Jeremy Young of Blumira (Audio)Join us for this valuable presentation featuring Jeremy Young | Director of Partner Strategy at Blumira alongside our host Ray Orsini of OITVOIP as we go over the SMB SIEM.
SIEM is a four-letter word for most of those with previous experience with them. Tune In live as we go over how Blumira is making a solution that not only doesn't suck but actually enables MSPs to meet compliance and detection and response objectives, while still maintaining operational efficiency and providing an affordable option to clients.
Be sure to follow our guest on LinkedIn and ask...2022-07-2155 min7 Minute Security7MS #529: Interview with Matthew Warner of BlumiraToday we're featuring a great interview with Matthew Warner, CTO and co-founder of Blumira. You might remember Matt from such podcasts as this one) when Matt gave us a fountain of info on why out-of-the-box Windows logging isn't awesome, and how to get it turned up to 11! Today, we talk about a cool report that Blumira put out called 2022 Blumira's State of Detection & Response, and dive into some interesting topics within it, including: How do companies like Blumira (who we rely on to stay on top of threats) keep their teams on top of threats?...2022-07-151h 137 Minute Security7MS #518: Interview with Amanda Berlin of BlumiraToday we're pumped to share a featured interview with Amanda Berlin, Lead Incident Detection Engineer at Blumira. You might already be familiar with Amanda's awesome Defensive Security Handbook or fine work with Mental Health Hackers. We polled our Slack friends and structured this interview as an AAA (Ask Amanda Anything). That resulted in a really fun chat that covered many things technical and not technical! Questions we posed to Amanda include: Can you tell us more about your infosec superhero origin story and creation of your book? Will there ever be a new version of the Defensive Security...2022-04-2757 min
Paul's Security Weekly (Audio)PSW #736 - Mike Wilkes & Amanda BerlinThis week, we start the show off with an interview Mike Wilkes, Chief Information Security Officer at SecurityScorecard, for an interview about Third Party Risk Management! An interview featuring Amanda Berlin, Lead Incident Detection Engineer at Blumira! Finally, in the Security News for this week: Microsoft Zero-Days, Former Ethereum Developer Virgil Griffith Sentenced to 5+ Years in Prison for North Korea Trip, Chinese hackers are using VLC media player to launch malware, An update to Raspberry Pi OS Bullseye, Bearded Barbie hackers catfish high ranking Israeli officials & more! All that and more, on this episode of Paul’s Security Weekly!...2022-04-153h 25
Paul's Security Weekly (Video)Amanda Berlin - PSW #736Amanda Berlin joins us to discuss what she’s been up to since her last appearance on the show. It’s only been a couple of years, but a lot has changed in that time. Tune in to hear about what changes the pandemic brought to the vision and operations of Mental Health Hackers, and how they pivoted to a virtual environment during this time. The crew talks about their experience going from traveling to 15-20+ conferences a year, down to hardly any conferences during Covid, and what their future plans are now that in-person events are coming back arou...2022-04-141h 007 Minute Security7MS #507: Interview with Matthew Warner of BlumiraToday's featured interview is with Matthew Warner, CTO and co-founder of Blumira. We had a great chat about why out-of-the-box Windows logging isn't super awesome, "free" ways to get logging turned up to 11 (Microsoft's audit policy recommendations, sysmon, sysmon modular), as well as how to get better logging in hard-to-reach places like Kerberos. Be sure to also check out Blumira's resources on detecting Kerberoasting and simplifying Windows log collection and ongoing management with Poshim. And please check out the Webinar we did together which demonstrates some common pentest attacks - and how Blumira can detect them!2022-02-091h 10
BrakeSec Education PodcastAmélie Koran and Adam Baldwin discuss OSS sustainability, supply chain security,, governance, and outreach for popular applications - part2Adam Baldwin (@adam_baldwin) Amélie Koran (@webjedi) https://logging.apache.org/log4j/2.x/license.html https://www.theregister.com/2021/12/14/log4j_vulnerability_open_source_funding/ https://www.zdnet.com/article/security-firm-blumira-discovers-major-new-log4j-attack-vector/ F/OSS developer deliberately bricks his software in retaliation for big companies not supporting OSS. https://twitter.com/BleepinComputer/status/1480182019854327808 https://www.bleepingcomputer.com/news/security/dev-corrupts-npm-libs-colors-and-faker-breaking-thousands-of-apps/ https://developers.slashdot.org/story/22/01/09/2336239/open-source-developer-intentionally-corrupts-his-own-widely-used-libraries Faker.js - https://www.npmjs.com/package/faker Generate mas...2022-01-1846 minBrakeSec Education PodcastOSS sustainability, log4j fallout, developer damages own code-p1Adam Baldwin (@adam_baldwin) Amélie Koran (@webjedi) Log4j vulnerability https://logging.apache.org/log4j/2.x/license.html https://www.theregister.com/2021/12/14/log4j_vulnerability_open_source_funding/ https://www.zdnet.com/article/security-firm-blumira-discovers-major-new-log4j-attack-vector/ F/OSS developer deliberately bricks his software in retaliation for big companies not supporting OSS. https://twitter.com/BleepinComputer/status/1480182019854327808 https://www.bleepingcomputer.com/news/security/dev-corrupts-npm-libs-colors-and-faker-breaking-thousands-of-apps/ https://developers.slashdot.org/story/22/01/09/2336239/open-source-developer-intentionally-corrupts-his-own-widely-used-libraries Fake...2022-01-1243 min
SANS Internet Storm Center's Daily Network Security News PodcastNetwork Security News Summary for Monday December 20th, 2021Automating Public DNS Changes; Office 2021 VPA Version; More #Log4j/Log4Shell fun Disaster Recovery Automation Using Public DNS APIs https://isc.sans.edu/forums/diary/DR+Automation+Using+Public+DNS+APIs/28146/ Office 2021: VBA Project Version https://isc.sans.edu/forums/diary/Office+2021+VBA+Project+Version/28150/ Log4j Updates https://www.blumira.com/analysis-log4shell-local-trigger/ https://logging.apache.org/log4j/2.x/security.html keywords: log4j; log4shell; office 2021; vba versions; disaster recovery; dns; dr2021-12-2006 minBrakeSec Education PodcastBlumira Sponsor #3 - Emily Eubanks, more actionable events, incident response help, and moreIn this sponsored BDS episode, Bryan Brake and Amanda Berlin interview Emily Eubanks, a Security Operations Analyst for #Blumira. We discuss common business risks like IT staff turnover, a lack of Incident Response procedures, choosing not to follow PowerShell best practices, and MFA use for critical or sensitive applications. We also discuss ways to improve security posture to mitigate these risks as well as how Blumira can help organizations in light of these common business challenges. ADDITIONAL RESOURCES OUR REDDIT AMA https://www.reddit.com/r/cybersecurity/comments/qao73j/we_a...2021-11-2153 min
Digital Forensic Survival PodcastDFSP # 299 - Malicious Powershell with BlumiraAmanda Berlin of Blumira speaks on malicious Powershell attacks and defense techniques.2021-11-0920 min
Digital Forensic Survival PodcastDFSP # 299 - Malicious Powershell with BlumiraAmanda Berlin of Blumira speaks on malicious Powershell attacks and defense techniques.2021-11-0920 minBrakeSec Education PodcastSPONSOR-Blumira's Nato Riley on Log Classification, Security Maturity, From Nato’s email:Hi Bryan, Discussing the challenges that come with not having good logging in place could be a great topic! We could make it partly about how security maturity works, in the idea that security generally starts with awareness and visibility. The topic sort of gets into the idea that knowing is half the battle, so logging can be transformative for helping a company properly secure themselves from online risks! What do you think of this topic idea? https...2021-11-0144 min
SysAdmin ShowSAS 055 – Enhanced Windows Logging with Amanda Berlin
In this episode I speak with Amanda Berlin, the Lead Incident Detection Engineer at Blumira, about her project Logmira. We discuss the benefits of enabling enhanced logging on Windows systems and how Logmira can streamline that process.
Connect with Amanda
Twitter: https://twitter.com/InfoSystir
Mental Health Hackers: https://twitter.com/HackersHealth
Logmira: https://github.com/Blumira/Logmira
Blumira: https://twitter.com/blumirasec
My Contact Info:
Dustin@sysadminshow.com
https://www.linkedin.com/in/dustinreybrouck/
Credits:
Music by Ian...2021-10-2100 min7 Minute Security7MS #490: Desperately Seeking a Super SIEM for SMBs - Part 4Hey friends! Today we're going to recap the SIEM/SOC players we've evaluated so far (Arctic Wolf, Elastic, Sumo Logic, Milton Security) and then talk about a new contender that was brought to our attention: Blumira (not a sponsor, but I'm really digging what I'm seeing/hearing/experiencing thus far)!2021-10-1342 minDigital Forensic Survival PodcastDFSP # 295 - Ransomware with BlumiraMatt Warner, Blumira CTO and Co-Founder, talks ransomware investigations.2021-10-1232 minDigital Forensic Survival PodcastDFSP # 295 - Ransomware with BlumiraMatt Warner, Blumira CTO and Co-Founder, talks ransomware investigations.2021-10-1232 minBrakeSec Education Podcast2021-035-GRC selection discussion, TechSecChix, and the 'job description problem'GRC tools (Governance Risk and Compliance) @ki_twyce_ @TechSecChix INfosec unplugged Security Happy Hour Eric’s cyberpoppa show Cyber Insight show - cohost Blumira is hiring https://www.blumira.com/careers/ https://www.cio.com/article/3206607/what-is-grc-and-why-do-you-need-it.html https://www.pwc.ch/en/insights/fs/10-pitfalls-when-implementing-grc-technology-and-how-to-avoid-them.html https://www.oxial.com/all/how-to-go-about-choosing-your-grc-solution/ Why do w...2021-09-291h 06BrakeSec Education PodcastKhalilah Scott, good GRC tool practices - part1GRC tools (Governance Risk and Compliance) @ki_twyce_ @TechSecChix INfosec unplugged Security Happy Hour Eric’s cyberpoppa show Cyber Insight show - cohost Blumira is hiring https://www.blumira.com/careers/ https://www.cio.com/article/3206607/what-is-grc-and-why-do-you-need-it.html https://www.pwc.ch/en/insights/fs/10-pitfalls-when-implementing-grc-technology-and-how-to-avoid-them.html https://www.oxial.com/all/how-to-go-about-choosing-your-grc-solution/ Why do w...2021-09-2943 minDigital Forensic Survival PodcastDFSP # 292 - Top Cloud Threats with BlumiraThis week Nato Riley from Blumira pays a visit to talk about the top threats to cloud computing.2021-09-2123 minDigital Forensic Survival PodcastDFSP # 292 - Top Cloud Threats with BlumiraThis week Nato Riley from Blumira pays a visit to talk about the top threats to cloud computing.2021-09-2123 minBrakeSec Education PodcastSPONSOR: Blumira's Patrick GarrityBlumira- Per crunchbase:“Blumira's end-to-end platform offers both automated threat detection and response, enabling organizations of any size to more efficiently defend against cybersecurity threats in near real-time. It eases the burden of alert fatigue, complexity of log management and lack of IT visibility. Blumira's cloud SIEM can be deployed in hours with broad integration coverage across cloud, endpoint protection, firewall and identity providers including Office 365, G Suite, Crowdstrike, Okta, Palo Alto, Cisco FTD and many others.” Contact sales@blumira.com Patrick Garrity, VP of Operations. Patrick has years...2021-09-1648 min
Cyber Security Interviews#118 – Nato Riley: Reinvent Reality and Reinvent the WorldNato Riley is an Integrations Engineer at Blumira and the Co-founder of Cloud Underground. Nato provides infrastructure, code, and security across all his efforts and is focused on helping Blumira build the most effective and efficient SIEM on the market for small to mid-sized businesses.He is the host of the “Nato as Code” and the "Cloud Underground" productions on YouTube, the creator and maintainer of the Olympiad platform, and the founder of notiaPoint (now known as Cloud Underground).In this episode, we discuss starting in technology repairing computers, going to school for public speaking, find...2021-06-0755 min
BarCodeXRay VisionNato Riley takes what others know to be true and is still able to find something hidden below the surface. It’s a mind frame that proves that seeing the invisible is not impossible. Equipped with true XRAY Vision, Nato joins me at the bar to discuss DevSecOps beyond the SDLC, Security Maturity, his homegrown "Olympiad" SIEM, Man VS Machines, and the potential of technology takeover. SYMLINKS LinkedIn YouTube – NATO AS CODE Cloud Underground Blumira The Tavern (Colorado) DRINK INSTRUCTION C...2021-04-1654 min
401 Access DeniedCross-Trained Cyber Specialists | The Cybrary Podcast Ep. 58On this episode, we welcome Mike Behrmann, Director of Security at Blumira to talk with Cybrary’s Director of Content, Will Carlson, about Workforce Development. Continuous professional development is an expectation at many growing companies today, but is it being made a priority? As Will and Mike discuss the moving target known as Cybersecurity, they delve into resume and job interview expectations, how to set goals that align with your cybersecurity journey, and the importance of cross training while finding your specialization.
Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and Yo...2021-04-1441 min
And Security For AllSIEM Technologies and Other Ways to Avoid Employee BurnoutDuring this episode, host, Kim Hakim, sits down with guest , Nato Riley, to discuss SIEM technology and other ways to be mindful of our employee's mental health to avoid burnout. Often the inside is overlooked, but spending additional time on employee care and creating a prosperous environment can lead to a decrease in insider threat. Nato is the Integrations Engineer at Blumira, the CEO/Founder of notiaPoint, and a content creator on YouTube for his channel ‘Nato as Code’. To find out more about Blumira, follow this link! https://www.blumira.com/2021-03-2655 minBrakeSec Education PodcastNews-Google asking for OSS to embrace standards, insider threat at Yandex, Vectr DiscussionLinks to discussed items: Yandex Employee Caught Selling Access to Users' Email Inboxes (thehackernews.com) Supply-Chain Hack Breaches 35 Companies, Including PayPal, Microsoft, Apple | Threatpost Google pitches security standards for 'critical' open-source projects | SC Media (scmagazine.com) Google’s approach to secure software development and supply chain risk management | Google Cloud Blog https://vectr.io/ https://www.kitploit.com/2021/02/damn-vulnerable-graphql-application.html https://www.blumira.com/careers/?gh_jid=4000142004 sec evangelist @blumira Check out our Store on Teepub! https://brakesec.com/store Jo...2021-02-2157 min
The Valuu Makers PodcastTop 5 Overlooked Cybersecurity Threats for 2021Patrick Garrity, VP of Operations at Blumira, a cloud SIEM provider, shares the top cybersecurity threats organizations might be overlooking going into 2021 This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit valuumakers.substack.com/subscribe2021-02-0830 min
Decipher Security PodcastAmanda BerlinAmanda Berlin of Blumira joins Dennis Fisher to talk about how she got her start in security, learning new skills on the fly, and helping customers find the things that really matter on their networks. 2021-01-1433 minCyber Security Interviews#109 – Amanda Berlin: Happier People Stay LongerAmanda Berlin is the Lead Incident Detection Engineer for Blumira and the CEO and owner of the nonprofit corporation Mental Health Hackers. She is the author of a Blue Team best practices book called "Defensive Security Handbook: Best Practices for Securing Infrastructure” with Lee Brotherston through O'Reilly Media. She is a co-host on the Brakeing Down Security podcast and writes for several blogs.Amanda is an avid volunteer and mental health advocate. She has presented at a large number of conventions, meetings, and industry events such as DerbyCon, O’Reilly Security, GrrCon, and DEFCON.In this...2021-01-1149 min
Paul's Security Weekly (Audio)Larry's 10 Second Delay - PSW #670This week, we welcome back Shani Dodge and Roi Cohen from Vicarius, to present their segment on Vulnerabilities entitled Prioritize This, Prioritize That, Prioritize with Context! In our second segment, we welcome Patrick Garrity, VP of Operations at Blumira, to talk about Democratizing and Saasifying Security Operations! In the Security News, Microsoft Uses Trademark Law to Disrupt Trickbot Botnet, Barnes & Noble cyber incident could expose customer shipping addresses and order history, Zoom Rolls Out End-to-End Encryption After Setbacks, Google Warns of Severe 'BleedingTooth' Low to Medium risk vulnerabilities, Windows TCP/IP Remote Code Execution vulnerability, and a Prison video...2020-10-163h 17
The Neon ShowShruti Gandhi, Array Ventures on taking SaaS companies from Zero to $10 Million ARRShruti is one of the few Indian-origin VCs in US who invest in Enterprise focused Startups globally.After spending 9 years of her career at IBM as an Engineer, she joined Samsung Next as a Principal, where she spent the next 2 years investing in early-stage startups. This was probably what worked out as a perfect mix of (a) Her understanding of Enterprise focussed SaaS businesses & (b) Venture funding ecosystem, which helped her start Array Ventures.Some of her notable investments are CasaOne, Blumira & Modal among others. In this podcast, Shruti shares her experience of supporting founders building early-stage SaaS businesses focussed...2020-09-1330 minBrakeSec Education Podcast-Dr. Allan Friedman, SBOM, Software Transparency, and how the sausage is made - Part 2Ms. Berlin: Tabletop D&D exercise Blumira is hiring https://www.blumira.com/career/lead-backend-engineer/ Allan Friedman - Director of Cybersecurity Initiatives, NTIA, US Department of Commerce NTIA.gov - National Telecommunications and Information Administration https://www.ntia.gov/sbom SBOM guidance Healthcare SBOM PoC - https://www.ntia.gov/files/ntia/publications/ntia_sbom_healthcare_poc_report_2019_1001.pdf Allan’s talk at Bsides San Francisco: https://www.youtube.com/watch?v=9j1KYLfklMQ Question...2020-08-2457 minBrakeSec Education PodcastAllan Friedman, SBOM, software transparency, and knowing how the sausage is made Ms. Berlin: Tabletop D&D exercise Blumira is hiring https://www.blumira.com/career/lead-backend-engineer/ Allan Friedman - Director of Cybersecurity Initiatives, NTIA, US Department of Commerce NTIA.gov - National Telecommunications and Information Administration https://www.ntia.gov/sbom SBOM guidance Healthcare SBOM PoC - https://www.ntia.gov/files/ntia/publications/ntia_sbom_healthcare_poc_report_2019_1001.pdf Allan’s talk at Bsides San Francisco: https://www.youtube.com/watch?v=9j1KYLfklMQ Questions (more may be added during the show, depending on an...2020-08-1944 minBrakeSec Education PodcastBit of news, Ripple20 vulns, IoT Security, windows error codes, captchas used for evil, Marine Momma https://blog.xpnsec.com/hiding-your-dotnet-complus-etwenabled/ https://gist.github.com/Cyb3rWard0g/a4a115fd3ab518a0e593525a379adee3 https://www.ultimatewindowssecurity.com/securitylog/encyclopedia/event.aspx?eventID=4657 https://www.blumira.com/logmira-windows-logging-policies-for-better-threat-detection/ How would we map this against the MITRE matrix? Are there any MITRE attack types that are so similar that one attack can be two different things in the matrix? https://www.us-cert.gov/ics/advisories/icsa-20-168-01 https://www.zdnet.com/article/ripple20-vu...2020-06-2449 min
Layer 8 PodcastEpisode 23: Amanda Berlin - The $15,000 Teddy BearFor this episode, we welcome Amanda Berlin of Blumira. She is also the CEO of the non-profit organization Mental Health Hackers, and can be found on twitter at InfoSystir. Today, she tells us about a romance scam where she helped a friend finally understand she was being duped, and explains how these work, plus she’ll tell us a little bit about a fifteen thousand dollar teddy bear.2020-04-2712 min