Shows
SecurityLah - the Asian Cyber Security ShowS04.E1 - Crowdstrike - the global blue screenMachine's turn up with blue screen all over the world, the cause seems to be a faulty update affecting Crowdstrike. Whats it about, whats going on, and a special segment on responding to your senior management or Board on the matter2024-07-2142 minSecurityLah - the Asian Cyber Security ShowS03E12. The year wrap up and emerging threats for 2024team SecurityLah ends the year with a wrap up on the top 10 emerging threats for 2024. Lots of laughs and serious talk on what's up ahead!2023-12-311h 12SecurityLah - the Asian Cyber Security ShowS03E11. Cyber Security Month Special - Security AwarenessTeam Securitylah explores the challenge of Cyber Security awareness and how organizations (using Malaysia as an example) can better adopt and implement awareness sessions!2023-10-2651 minSecurityLah - the Asian Cyber Security ShowS03E10: ChatGPT, Generative AI and SecurityAI is all the buzz right now. Using ChatGPT for daily life and work is slowly becoming a norm. Apps embedding AI is the VC's darling. Is there any security risks associated to ChatGPT use? Team #securitylah explores!2023-08-0340 minSecurityLah - the Asian Cyber Security ShowS03E09. FMT interviews SecurityLAHRecently, SecurityLAH was interviewed by Free Malaysia Today on matters pertaining to Cyber Security and Malaysia. The hosts felt that while the article is out, it is only proper that we have a discussion around the questions, to give our listeners a full context of what the answers were. 2023-07-1752 minSecurityLah - the Asian Cyber Security ShowS03E08. ISO 27000 Series - Document Intro, Clause 1 - 3Team SecurityLAH introduces a series of podcast on international standards around cyber security. This is a year long series, with each episode airing beginning of the month.In this episode, the team looks into the document details, from the front page up to Clause 3. 2023-07-1017 minSecurityLah - the Asian Cyber Security ShowS03E07. ISO 27000 Series - Mapping ISO 27001:2013 and ISO27001:2022Team SecurityLAH introduces a series of podcast on international standards around cyber security. This is a year long series, with each episode airing beginning of the month.In this episode, the team looks into the differences between the older version and the current version, with discussion on what needs to be done when moving to the new standard. 2023-06-0652 minSecurityLah - the Asian Cyber Security ShowS03E06. Changes to SingpassSingpass, the national digital ID for Singapore has recently made some changes to it's operations and terms of use. In this episode, team #securitylah reviews the changes to see what is the impact to the average Singaporeans and its citizens. 2023-04-2625 minSecurityLah - the Asian Cyber Security ShowS03E05. CyberSecurity in Sarawak?Team SecurityLah is joined by Dan from SAINS and Awang from MASA to talk about cybersecurity and Sarawak. What do they have in store? 2023-04-2625 minSecurityLah - the Asian Cyber Security ShowS3E04. ISO Series - So you're ready for an ISO Audit (or are you) ?Team SecurityLAH introduces a series of podcast on international standards around cyber security. This is a year long series, with each episode airing beginning of the month.In this episode, team #SecurityLah looks into the aspect of audit readiness and getting to the moment of having the ISO certification cert in your hands. 2023-04-0357 minSecurityLah - the Asian Cyber Security ShowS3E03. ISO Series - Reading the ISO standardTeam SecurityLAH introduces a series of podcast on international standards around cyber security. This is a year long series, with each episode airing beginning of the month.In this episode, team #securityLah explains the standard structure and how one "reads" the standard. 2023-03-0643 minSecurityLah - the Asian Cyber Security ShowS3E02. ISO Series - Primer to the ISO 27000 seriesTeam SecurityLAH introduces a series of podcast on international standards around cyber security. This is a year long series, with each episode airing beginning of the month.We've looked at what standards and ISO is, and now we go into the 27k series. Team looks at the progression of the 27k series, the 7799 series and how the standards have evolved to today's needs.2023-01-0638 minSecurityLah - the Asian Cyber Security ShowS3E01. ISO Series - Of International Standards Ep 1/12Team SecurityLAH introduces a series of podcast on international standards around cyber security. This is a year long series, with each episode airing beginning of the month.In this introductory episode, the team introduces the concept of international standards and the parties involved in making this global initiative happen. 2023-01-0231 minSecurityLah - the Asian Cyber Security ShowS2E17: AirAsia (Capital A) breachJust about a month ago, AirAsia had a data breach. The breach was announced by the ransomware group Daixin. This episode looks into the breach that had happened with team SecurityLah tearing into the details!2022-12-2729 minSecurityLah - the Asian Cyber Security ShowS2E16. Seasons greetings!We're coming to year end, with Christmas around the corner. Here are the hosts with special greetings to all of you!2022-12-2403 minSecurityLah - the Asian Cyber Security ShowS2E15 - Indonesia's PT Telkom & PLN breachPt Telkom and PLN in Indonesia was breached. What happened? Team SecurityLah dives into this recent incident. 2022-12-1919 minSecurityLah - the Asian Cyber Security ShowS2E14: API SecurityWe use API's almost every day, every.minute and it a hidden aspect of our technology use. API is fast becoming a threat vector and needs to be looked at. In this episode, Sku and Doc looks into Top 5 issues plaguing API Security.2022-10-0332 minSecurityLah - the Asian Cyber Security ShowS2E13: iPay88 breach and notification - Part 2/2This is the final part to the 2 part series of the iPa88 breach and notification. 2022-09-1825 minSecurityLah - the Asian Cyber Security ShowS2E12: iPay88 breach and notification - Part 1/2Recently, a Mal;aysian payment gateway named iPay88 released a press release stating that they have been breached. Team #securitylah breaks down the press release to make sense of what happened. 2022-09-0424 minSecurityLah - the Asian Cyber Security ShowBONUS: Doc's Cyber Security Business PlanDoc came up with a new cyber security plan that, according to him, will revolutionise the industry. What is it? 2022-08-2909 minSecurityLah - the Asian Cyber Security ShowS2E11: Why do breaches happen?In this episode, team SecurityLah talks about data breaches and why it happens. Sky gives his top 5 reasons and Doc tears it apart. 2022-08-2237 minSecurityLah - the Asian Cyber Security ShowS2E10: NSO Pegasus and ThailandNSO's Pegasus (a commercial malware/spyware) has been hitting the news for sometime. Team #securitylah looks at the genesis of Pegasus/NSO, what has it been and whats happening with it in Thailand. 2022-08-0125 minSecurityLah - the Asian Cyber Security ShowS2E09: CWE-655CWE or the Common Weakness Enumeration by MITRE is a catalog of identified weaknesses that should be looked at and addressed. In this episode, Doc goes into this particular weakness and shares how most organizations miss this and how it affects security for the organization. 2022-07-2028 minSecurityLah - the Asian Cyber Security ShowS2E08: About CISO, and IT Security Part 2/2Team SecurityLAH continues the discussion on the appointment of CISO for organizations due to regulatory and environmental requirements, and at the same time tearing apart the formation of IT Security in organizations. 2022-05-0223 minSecurityLah - the Asian Cyber Security ShowS2E07. About CISO… Part 1/2“I see, I sow”.. said a podcaster once about CISO position. It’s now a regulatory requirements for some industries to have CISO (Chief Information Security Officer). Team SecurityLAH reviews this position in greater details, but also looks at the evolution of how IT Security from IT itself, in a holistic view. 2022-04-1924 minSecurityLah - the Asian Cyber Security ShowS2E06. Proposed SG CyberSecurity Act amendmentsSingapore is seen to lead the Asian region in technology. This also includes having updated legal and regulatory framework to support this growth. Singapore has made proposals, through CSA , to make changes and keep their CyberSecurity laws updated.What are the proposed changes? Tune in and find out!2022-03-2914 minSecurityLah - the Asian Cyber Security ShowS2E05. International Committee of Red Cross (ICRC) hackedCyber penetration is now fast becoming a common occurrence. But where do we draw the line? In this episode, we review a recent incident involving the International Committee of Red Cross, whom had informed the world that they have been hacked. Data was stolen, internal networks were compromised. What's the impact? Whose affected? What's next? 2022-03-1432 minSecurityLah - the Asian Cyber Security ShowS2E04. Russia/Ukraine - War on the Cyber frontRussia has declared military operations against Ukraine, declaring both Donetsk and Luhansk independent. It’s no longer a war of words, but physical/kinetic and cyber war at large, out in the open. SecurityLah looks into the geopolitics aspect of this war, analyzing past history and the current standing of the situation, beyond just war but also other aspects that provides key information on why the current situation is happening. 2022-02-2546 minSecurityLah - the Asian Cyber Security ShowS2E03. OCBC Singapore phishing attack (Part 2/2)This is the continuation and final episode of the OCBC phishing incident. The team picks up from where it left off in the last episode, with Prof joining in to give her views on the matter. 2022-02-1530 minSecurityLah - the Asian Cyber Security ShowS2E02: OCBC Singapore phishing attack (Part 1/2)Over the year end of 2021, a massive wave of phishing attack targeting customers of OCBC Singapore was executed. We got heads up from one of our listeners who were kind enough to give us some juicy bits about this incident as we deep dive into the incident. This is the first part of the 2 part series on the OCBC phishing scam. 2022-02-0832 minSecurityLah - the Asian Cyber Security ShowS2E01. Trends on Security - 2022Welcome to Season 2 of SecurityLAH!In this opening episode, we look at trends that is upcoming, some already here and some destined to dominate the way we look at NCIS (Network. Cyber and Information Security). 2022-01-2432 minSecurityLah - the Asian Cyber Security ShowBonus Track - Christmas & New Year wishes!Team SecurityLAH would like to wish all of our listeners a very Merry Christmas and a Happy New Year!The team will be taking a break, practice our vocal chords a bit, maybe laze at a beach somewhere for a while since we have 2021-12-2004 minSecurityLah - the Asian Cyber Security ShowEp 35. Risk vs VulnerabilitiesIn a casual chat, the SecurityLah hosts had an internal discussion about security stuff, besides talking about topics for the podcast. This is one of those discussion, that SecurityLah felt should go to a wider audience than just the hosts itself. The team looks at risk management, specifically when dealing with vulnerability management. 2021-12-1329 minSecurityLah - the Asian Cyber Security ShowEp 34. National Bank of Pakistan hackedWe were recently alerted to a report that National Bank of Pakistan may have experienced a cyber attack. Client facing banking infrastructure was seen to be down, causing panic to its customers. Our resident Securitylah financial expert takes a stab on the matter, hoping to give some sense of clarity into the incident. 2021-12-0621 minSecurityLah - the Asian Cyber Security ShowEp 33. China's new data privacy lawChina recently published their laws related to data secrecy and privacy. Team SecurityLah looks through some salient points on what the law says and how it affects China, its people and the global as a whole2021-11-2923 minSecurityLah - the Asian Cyber Security ShowEp 32. Indonesian Intelligence Agency compromisedIn a recent report by one of the CTI providers, it was identified that a few government agencies of Indonesia was compromised by a threat actor. In this episode, the team looks at the claims of the compromise and whether its true or just rumours. 2021-11-2234 minSecurityLah - the Asian Cyber Security ShowEp 31. Thai tourist visa data leakA site, containing visa information to Thailand was left open and discovered by a researcher. What happened? How much of data was potentially left open? What's the impact of that incident? Answers to all those questions in this episode of SecurityLah!2021-11-1523 minSecurityLah - the Asian Cyber Security ShowEp 30. Indonesian COVID-19 data leakRecently, there were reports of data leak affecting the COVID-19 contact tracing app in Indonesia. Details of users and its usage were made available, and the unfortunate victim that was made as an example was non-other that the Prime Minister himself!2021-11-0814 minSecurityLah - the Asian Cyber Security ShowEp 29. APT41 - Double DragonWe explore the activities of APT41 aka Double Dragon which focuses its threat activites around South East Asia, attacking telecommunications, infrastructure and government agencies. 2021-11-0125 minSecurityLah - the Asian Cyber Security ShowEp 28. myIdentity, JPN/LHDN data leakA leak was found mentioning data siphoned off using myIdentity interface, originating from JPN and was done through LHDN. Team SecurityLah dissects this incident into greater details, looking at how it could have happened, and nuggets of wisdom for blue team on detecting such attacks. 2021-10-2525 minSecurityLah - the Asian Cyber Security ShowEp 27. Are Cryptocurrencies secure?One of the question we get from a lot of people around us, including our listeners is this cryptocurrency. Is it secure, and should someone invest on it? Before investing, what does a person need to know and how does he/she protect their digital assets? 2021-10-1131 minSecurityLah - the Asian Cyber Security ShowEp 26. Of Apple CSAM, Samsung Kill Switch and Device OwnershipAs consumers, we own a lot of smart devices. Technically they're not that smart, but you get the drift. We look at the interesting relationship between the consumer, the device and the manufacturer and the unique relationship one has with the other. Security will always be the forefront, hence we analyse how security plays out on this context. 2021-09-2727 minSecurityLah - the Asian Cyber Security ShowEp 25. Does cybersecurity tools/controls make your organization secure?This is a special episode where we make the hosts into 2 groups, and pit these groups against each other based on a topic given. Cat is the moderator. Whole load of fun, with some interesting aha moments!2021-09-1317 minSecurityLah - the Asian Cyber Security ShowEp 24. Single Vendor aka Supply Chain attacksSuecurityLah team finds a disturbing trend. A single attack/hack could affect multiple organizations. In this episode, we dive into the most talked-about attacks which originate from single vendor/source, which for some is known as supply-chain attack. 2021-08-3017 minSecurityLah - the Asian Cyber Security ShowEp 23. Hacking vs ScrapingThe recent buzz about attacks on personal data. Some say it's not a hack, but just scraping. What's the difference? Why does it matter? 2021-08-1625 minSecurityLah - the Asian Cyber Security ShowEp 22. Ransomware - what's happening?Open any international news portal and ransomware dominates the headlines. In this episode, the team examines ransomware and how it affects organizations and even individuals globally. 2021-08-0238 minSecurityLah - the Asian Cyber Security ShowEp 21. Interpol Cyber Security report on ASEAN (2020)The SecurityLAH team reviews the Interpol Cyber Security report focused on the ASEAN region, putting some rationale into the data provided. Some insights into the type attacks and why. 2021-07-1933 minSecurityLah - the Asian Cyber Security ShowEp 20. Degree vs Certification - which path to take?The question that often runs on everyone's mind. Which educational path should one take? Increase skills and ability through professional training, or pursue academic achievements through post degree programs? 2021-07-0534 minSecurityLah - the Asian Cyber Security ShowEp 19. ePay breach - What happened? (MY)The Edge Market reported that ePay, a product of GHL may have experienced a breach. The hosts at SecurityLah deep dive into this issue, looking at all of the publicly available data to get into the meat of the matter, or the bits in the cyber, so to say... 2021-06-2133 minSecurityLah - the Asian Cyber Security ShowEp 18. Are Passwords still relevant?The abomination called passwords become centerstage discussion in this episode. The bane of everyone's existence, passwords, while becoming the reality of technology and computing, is fast becoming an issue. Data leaks, breaches makes it difficult for an average user to use it effectively. We discuss at length about passwords and what are the alternatives, both to business and end users. 2021-06-0718 minSecurityLah - the Asian Cyber Security ShowEp 17. MAS TRM Regulations & Solarwinds incident (SG)Monetary Authority of Singapore recently released a circular to update the requirements previously published under the Technology Risk Management guidelines, in view of addressing issues that recently plagued many organizations through Solarwinds supply chain attack. We review the requirements to see what are the changes and how it impacts organizations. 2021-05-2433 minSecurityLah - the Asian Cyber Security ShowEp 16. Submarine Fiber Cables & CabotageThe Internet powers the world, while the submarine cables powers the Internet. We explore the not-so-public life of submarine cables, the cabotage system and how it affects global Internet and network connectivity, with Australian telco publisher Grahame Lynch from Communications Day.2021-05-1750 minSecurityLah - the Asian Cyber Security ShowEp 15. Mobile Application BanSome mobile apps were DEEMED not secured and countries banned them. What happened and why lah?2021-05-1009 minSecurityLah - the Asian Cyber Security ShowEp 14. Semiconductors - the next big supply chain risk? (CN/TW)Semiconductors power almost everything around us. From mobile phone, computers, connected devices and even cars. The world relies on its semiconductor supplies to keep manufacturing processes running. We explore the tilt in the semiconductor suppliers and how it affects the globe, with Australian telco publisher Grahame Lynch from Communications Day.2021-05-0333 minSecurityLah - the Asian Cyber Security ShowEp 13. Deep Fake - Is it real?Prof described Deep Fake as algorithms duking it out with each other. Is it? What is it? If deep fakes get any more realistic than they already do, will we know what's real anymore?2021-04-2610 minSecurityLah - the Asian Cyber Security ShowEp 12. Dark Basin (IN) - Hacking as a ServiceHacking for hire is a lucrative business. The SecurityLAH! team was divided on some things, but in general, there is consensus that Dark Basin's business could close and pack up, but it will likely pop up again somewhere.Interestingly this was the first episode recorded by SecurityLah last year! It took us a while to schedule and release this episode, competing with other more timely episodes. 2021-04-1214 minSecurityLah - the Asian Cyber Security ShowEp. 11 Hacker Perspective on UniKL hack - Part 2/2Someone wanted to buy the breach data of UniKL? Who is it?Found out in this episode of SecurityLah!A Malaysian university was hacked by a threat actor. A host published the matter in Linkedin, just to find the matter commented by the actual hacker. This is the interview between the host and the hacker. First ever, a view from the hacker perspective. Article link: http://bit.ly/unikl-hackFurther reading: https://www.linkedin.com/pulse/hacker-perspective-unikl-hack-dr-suresh2021-04-0539 minSecurityLah - the Asian Cyber Security ShowEp. 10 Hacker Perspective on UniKL hack - Part 1/2A Malaysian university was hacked by a threat actor. A host published the matter in Linkedin, just to find the matter commented by the actual hacker. This is the interview between the host and the hacker. First ever, a view from the hacker perspective. Article link: http://bit.ly/unikl-hackFurther reading: https://www.linkedin.com/pulse/hacker-perspective-unikl-hack-dr-suresh2021-03-2938 minSecurityLah - the Asian Cyber Security ShowEp 9. Interview - Keith Rozario (SayaKenaHack) - Part 2/2This is the final part on the interview with Keith Rozario, we continue the conversation around Macau Scam, SayaKenaHack and data breaches.2021-03-2223 minSecurityLah - the Asian Cyber Security ShowEp 8. Interview - Keith Rozario (SayaKenaHack/Macau Scam) - Part 1/2In the earlier episode, we had dwelved into what Macau Scam is. In this episode, we speak to our contact Keith Rozario, who has had experience in some aspects of the Macau Scam. This is the first part of the 2 part series. 2021-03-1519 minSecurityLah - the Asian Cyber Security ShowEp 7. Data Transparency and COVID-19 (MY) Part 3/3We speak to Aidila Razak from Kinilabs on data transparency and COVID-19. This is the final instalment in the series. 2021-03-0817 minSecurityLah - the Asian Cyber Security ShowEp 6. Macau ScamWe've been hearing a lot about Macau Scam. What is it? Do you have to go Macau to be scammed? Listen on!2021-03-0113 minSecurityLah - the Asian Cyber Security ShowEp 5. Data Transparency & COVID-19 (MY) Part 2/3The discussion with KiniLabs (Aidila Razak) continues on COVID-19 and the data aspect of the pandemic, specifically on data transparency. 2021-02-2223 minSecurityLah - the Asian Cyber Security ShowEp 4. Capitol Hill aftermath - Social Media censorship Rioters stormed Capitol Hill, the US government's administrative building in early January. Large-scale and believed to have been organised via social media, do social media platforms need to put stricter censorship into effect? 2021-02-1517 minSecurityLah - the Asian Cyber Security ShowEp 3. Data Transparency & COVID-19 (MY) Part 1/3Malaysia took drastic steps to combat COVID-19, which resulted in the declaration of emergency. We look at the aspect of data transparency and how it affects the initiatives of battling the COVID-19 pandemic. 2021-02-0821 minSecurityLah - the Asian Cyber Security ShowEp 2. FireEye & Solarwinds - Nation State attacksThe world was shocked when a company specialising in APT and nation states fell prey to such attacks. The complication of the attack didn't just stop at one company, many other, names in tech also fell prey. 2021-02-0126 minSecurityLah - the Asian Cyber Security ShowEp 1. Capitol Hill Insurgence - Impact to Information SecurityWhen protestors stormed Capitol Hill, physical security breach aside, there are implications for cyber security as well. Physical boundaries with even the best security forces failed to prevent insurgence from entering a highly secured located. This caused losses of information, in forms of physical and electronic. 2021-01-1921 minSecurityLah - the Asian Cyber Security ShowDeep FakesProf described Deep Fake as machine learning models duking it out with each other. What is it really? If deep fakes get any more realistic than they already do, will we know what's real anymore?2021-01-1809 minSecurityLah - the Asian Cyber Security ShowEp 0. Introduction to SecurityLAH!Does cybersecurity only exist in North America?Is cybersecurity a Myth in Asia and do issues exist only in "developed" countries?Come to SecurityLAH! for interesting cybersecurity conversations, with unique Asian perspectives and content.In this intro episode, find out about the folks behind the show and a little of what we'd like to achieve.2021-01-1509 min