Shows
The Cybersecurity Defenders Podcast#167 - Running and MDR company with Joshua Sitta, Co-Founder and CTO at SittadelOn this episode of The Cybersecurity Defenders Podcast we talk about running and MDR company with Joshua Sitta, Co-Founder and CTO at Sittadel.My guest today is Joshua Sitta, the co-founder and CTO of Sittadel, a cybersecurity company specializing in 24/7/365 Managed Detection and Response services. With a focus on enterprise-grade EDR solutions, Sittadel provides comprehensive cybersecurity monitoring and incident response. Before founding Sittadel, Joshua served as the Director of Enterprise Security Architecture at SouthState Bank, where he built a robust in-house cybersecurity program that safeguarded billions in assets. He brings a deep expertise in protecting organizations from...
2024-10-3037 min
Better Billing TodayEp. 3: Medical Cyber-Security with Joshua SittaIn this episode our special guest Joshua Sitta of cyber-security firm Sittadel discusses a recent article covering 6 different hospitals that experienced a security breach in Alabama
News Article: https://www.al.com/news/2023/04/company-with-6-hospitals-in-alabama-says-patient-info-may-have-been-disclosed-in-cybersecurity-incident.html
Free Guide: https://sparkbillingservices.com/5k-in-15-minutes
Have a billing story or question to share? Send them in to office@betterbillingtoday.com
2023-04-1934 min
Sittadel Podcast43 - Securing Lazer Guns with Joy BelandThink of the CMMC like HIPAA for companies that work with the Department of Defense. It's a seemingly-endless list of concerns to juggle when planning a CMMC compliance journey, and the guides for getting started are overwhelming. If you can make it past the Special Publications (like NIST 800-53 and 800-171), there are maturity levels to manage and DFARS requirements, and waiting at the finish line is the promise of legal ramifications if you did the whole thing wrong. In this episode, Nate and Joshua find a loophole to bring their Tye Dye Lazer Gun business to ma...
2022-03-2939 minSittadel Podcast42 - Don't Click the Link with Joanna Sitta, BCBAIt's Valentine's Day, and love is in the air in the Sittadel Podcast. The birds are chirping, the phishers are rhythmically clacking away on their mechanical keyboards, and somewhere in the distance the cryptominers are buzzing away in a misconfigured S3 bucket. On this very romantic episode of the Sittadel Podcast, Joshua tricks a Board-Certified Behavior Analyst into discussing cybersecurity for a solid hour. But this isn't just any run of the mill Security Awareness Training conversation. This is a hot and heavy discussion between Joshua "Statistically Average in Height" Sitta and Joanna "The Perfect 10" Sitta. To set t...
2022-02-1456 minSittadel Podcast41 - Sittadel Plays a Role on The Community Bank PodcastWith Nate out on assignment for today's episode, Trafenia Flynn Salzman fills the void to kick off the conversation. We join our heroes as guests on The Community Bank Podcast, hosted by Eric Bagwell and Caleb Stevens from SouthState Bank. The Community Bank Podcast on Apple Podcasts is dedicated to helping community bankers grow themselves, their team, and their profits. Today's clips focus on cybersecurity risk management as applied to banks and their customers, but they're relevant for any business in every vertical.The views, information, or opinions expressed during this show are solely those of...
2022-02-0729 minSittadel Podcast40 - Out-of-the-Box Incident ResponseIn this episode of the Sittadel Podcast, Joshua came prepared with an extreme approach to cybersecurity incident handling. In May of 2019, Israel Defense Force (IDF) shut down the attacks of Hamas cyber operatives. Joshua had planned to talk through the implications of moving from a digital series of events to a physical series of events. His notes on what can be learned about the moments after a cyberattack would have been valuable to hear.Unfortunately, Joshua wasn't prepared for when Nate brought up the logistics of time travel. It was all over after that. Instead of predefined commu...
2022-02-0124 minSittadel Podcast39 - REvil: A suspiciously wonderful outcome.We're back from our long holiday break with some exciting news about 2020's most notorious ransomware gang: REvil. X-Force, IBM's threat intelligence offering, reports that 36% of REvil's victims paid their ransom and at least 12% of victims watched as their sensitive stolen data was auctioned off to the highest bidders on the dark web between 2019 and 2020. REvil's back in the headlines, but this time the story is a little different. After a string of law enforcement activity that pushed the gang further into obscurity, the nations of Russia and the United States have held hands to bring the ran...
2022-01-1416 minSittadel Podcast38 - Stealing Houses in the MetaverseThe holidays are a time to gather round the yule log with the family, reflecting on the most precious parts of your life. And when you get sick of all that, we can turn our attention to the Metaverse and build that perfect digital life. And while many analysts see the Metaverse as a 1 trillion dollar investment opportunity, cybersecurity professionals see more similarities to the Wild West.In this special holiday episode, Nate and Joshua skim over a few notes on the holidays and discuss the future of social engineering attacks launched in the Metaverse. The anonymity of...
2021-12-2725 minSittadel Podcast37 - How Minecraft is Hacking the Internet (Log4j)The sky is falling, and it's all because of your kids' favorite video game. The National Vulnerability Database lists the recently identified Log4j vulnerability as a perfect 10 out of 10. It's everywhere from Minecraft to iCloud, and it doesn't take any special skills to copy and paste the exploit into remote systems. This time next year, businesses all over the globe will have either proved the value of their vulnerability and patch management operations - or they will have learned the reason these ops are a critical piece of running a business in 2021.In this episode, Nate...
2021-12-1330 minSittadel Podcast36 - Defense in Depth and IT HygieneThe grubrious emotet gang is back at it again, and rather than focus on the tricky cybersecurity wizardry necessary to go toe to toe with the threat, Joshua and Nate talk through some entry level security principles: Defense in Depth and IT Hygiene. Sometimes, it's the low hanging fruit that makes the difference between safe and sorry. If it's time you came up with a layered defense to cybersecurity threats, check out the website at https://www.sittadel.com.
2021-12-0728 min2021-11-2208 minSittadel Podcast34 - Joshua Fails a Phishing TestJoshua Sitta holds several Information Security credentials, created the phishing simulations and training for a big bank with over 5000 employees, and has written the playbook for how to identify phishing emails. Throughout his career, he's blocked millions of phishing emails from ever reaching the end user and has personally received hundreds of different phishing scams. He's seen it all, from the Nigerian Prince we all joke about to the spearphishing emails crafted by the world's most successful cyber criminals - and he's never fallen for even one of them. Until today. As Joshua talks through hi...
2021-11-1631 minSittadel Podcast33 - Ben Malisow, Privacy RadicalWhen cybersecurity professionals need to develop their skills and earn credentials, they turn to Ben Malisow, author of Exposed! and a number of self-paced courses on Udemy. In 41 minutes, Joshua completely changed his stance on privacy.Ben Malisow didn't waste any time to bring his unwelcome perspective to the podcast. In Ben's mind, it's time for you to embrace a future of perfect privacy: where all of your secrets become public. Your location, your browser history, and your finances should all be at the fingertips of your neighbors. Big corporations and governments are already using th...
2021-11-0141 minSittadel Podcast32 - Social MediaSocial Media has fostered the most interconnected and mentally unwell society in history. Communities have never been more accessible and people have never felt more alone.What's the point?Silicon Valley titans like Pinterest and Reddit have fundamentally changed the way information is shared on the Internet. For many previously marginalized voices, social media has provided platforms for collaboration and representation. And while those examples are important, the valor of social media starts to drop off from there. After another round of concerning reports on facebook's priorities, Nate has to hold the conversation that stays r...
2021-10-2533 minSittadel Podcast31 - Pegasus SpywareWe know your location, see your pictures, listen in on your microphone, and even get into your encrypted chat. But we only use that for good! (Okay, except for that one time...)Are we fighting fire with fire or becoming the very thing we defend against?Israeli based cyber intelligence company NSO Group is a billion-dollar business that helps law enforcement agencies and governments learn everything about innocent and guilty citizens alike in the name of protecting the virtuous.Cyber weapons like Pegasus represent a moral tradeoff. The intended use is to curb hu...
2021-10-1244 minSittadel Podcast30 - Maxime Lamothe-Bressard, Founder of LimaCharlieSome men see EDR as it is; others see EDR as it should be. Maxime Lamothe-Bressard joins Nate and Joshua for a discussion on the ways LimaCharlie is removing the roadblocks for working with some of the most important data points for Incident Responders and SOC analysts: file execution telemetry. Maxime brings a wealth of experience to the show, bringing insight from his time at Google-X, CrowdStrike, and a French Cafe. You can get started with LimaCharlie today for free by visiting limacharlie.io.For more information, visit https://www.sittadel.com or tweet us at @sittadelpodcast.
2021-10-0445 minSittadel Podcast29 - Social Engineering Via SMS and 2FAFriend of the show Aaron Burns drops by the studio to talk about his experiences with scams sent straight to his phone. Aaron and Nate do their best to reinvent a few new cybersecurity terms, but Joshua wasn't having any of that nonsense. In this episode, the team discusses how Universal 2 Factor Authentication (U2A) promises big improvements by requiring login pages to prove their identity before users are permitted to login.
2021-09-2032 minSittadel Podcast28 - Comedian Jayson AvocadoHappy Labor Day! Comedian Jayson "Avocado" Acevedo helps the Sittadel Podcast team celebrate with a look at 3 day weekends and the social engineering risks they introduce for businesses. Later, Jayson would weigh in on cryptographically relevant quantum computers, which could be the worst idea we've ever had. What does quantum computing have to do with drive thru terminals? Nothing, Jayson. Absolutely nothing. If you'd like to hear more from Jayson, head over to https://jaysonavocado.comTo enjoy CrowdStrike's APT database, check out https://adversary.crowdstrike.comTo chat with the Sittadel Podcast team...
2021-09-0649 min
Sittadel Podcast27 - Strippers and HurricanesTrafenia joins us for another trip back to the 90s to talk about the Melissa Virus, Joshua tells us about how plywood fits into cybersecurity, and Nate introduces us to Jacques.In this episode, the trio discusses phishing, security awareness training, Kevin Mitnick, Hook Security, honest hips, business continuity, and disaster recovery.For more on what Sittadel can do for you, head to our website at https://www.sittadel.com
2021-08-3033 minSittadel Podcast26 - Trafenia Flynn Salzman, Sittadel Co-Founder and CEOTrafenia Flynn Salzman has been working with computers since the movie Rush Hour was a relevant cultural reference. She's bringing that depth of experience to the podcast and comments on the representation of women in cybersecurity, Cloud Security, Zero Trust, and CARTA. Later, Nate would be disappointed the episode wasn't titled White Van Candy Man.Topics in this episode include diversity, Cloud Security, ZTNA, CARTA, MFA, trust algorithms, data centers, and teradactyls.For more on what Sittadel can do for you, head over to our website at https://www.sittadel.com.
2021-08-2331 minSittadel Podcast25 - Troy Hunt, Founder of Have I Been PwnedTroy Hunt created www.HaveIBeenPwned.com with the expectation that a few of his mates would use it to keep their accounts safe, but today it's the resource the world uses to monitor passwords at risk for credential stuffing attacks. Troy spends an hour on the podcast discussing password strength, his work at Pluralsight, and answering the age old question: What do squirrels have to do with cybersecurity?We thank Troy both for his time and for making the Internet a safer place.
2021-08-1646 minSittadel Podcast24 - Cybersecurity in FilmJoshua tries to talk about the role of executive management in a cybersecurity operation, but Nate would rather talk about movies.
2021-08-0930 minSittadel Podcast23 - The Role of Cyber InsuranceWe talk about everything you need to know before buying cyber security insurance, and Nate and Joshua chat about an update to the Kaseya ransomware that crippled 1500 small businesses.Bearded barley is a cool season annual cereal grain, growing about 3 feet high. It's great for adding lots of organic matter or biomass in a short period of time. Additionally, it provides erosion control and weed competition. You can't get cybersecurity facts like these anywhere else.
2021-07-2630 minSittadel Podcast22 - Kaseya, the Largest Ransom Ever DemandedWhat's the business you've always wanted to start? Gourmet hot dog cart? A crafty booth at the farmer's market? That's too normal for Nate, who wants to create new dinosaurs. In this episode, we talk through the Kaseya supply chain attack which demands $70 million for the data of over 1500 small businesses. Nate and Joshua discuss ransomware, Kaseya, RMM tools, and an archaeopteryx. We want to say thank you for trusting Sittadel to bring cybersecurity to Lakeland - and the rest of the globe - as we now have clients and listeners all over the globe. If you want to...
2021-07-1223 minSittadel PodcastJeffrey Snover, Microsoft CTOJeffrey Snover is currently serving Microsoft as the CTO for Modern Workforce Transformation, and he spends an hour with Joshua with Nate discussing everything from dinosaurs to professional advice. Joshua can barely keep it together as they discuss PowerShell, Microsoft, women in technology, Windows Server, Unix, GUI and CLI, fatherly advice, the rapid elasticity of Azure, change management, and professional wrestling.Thank you for the impact you have had on my life, Jeffrey.-Joshua
2021-07-0650 minSittadel PodcastCoding, Coke, and CashBefore the Wannacry attack, MalwareTechBlog was just another place you could go to read about the weapons used by cybercriminals. After the mind behind MalwareTech found a kill switch buried in the Wannacry code, all eyes were on Marcus Hutchins. In this episode, Nate and Joshua talk through one of the most fascinating stories in cyber defense. And offense. Depends on which part of the timeline we're talking about...In this episode, we talk about sinkholing, malware, reverse engineering, wannacry, the NSA, shadowbrokers, and with deep respect, Marcus Hutchins.
2021-06-2849 minSittadel PodcastArtificial IntelligenceWhy didn't John Connor use Ransomware to defeat The Terminator? In this episode, Nate and Joshua discuss the best ways to defend against an attack by robots using a machine learning algorithm to identify their targets. Along the way, they stumble upon the meaning of life.In this episode, we discuss tensorflow, IBM Watson, AI, artificial intelligence, machine learning, autonomous vehicles, and influence.
2021-06-2142 minSittadel PodcastNetwork Topology and Personal SecurityWe hit three main topics in this episode: The endless stream of cyber attacks making headlines, network topology, and personal security. Nate coins the phrase, "What you're choosing should be based on what you're using," which perfectly summarizes the approach business owners should have when designing their network.In this episode, we discuss a series of ransomware attacks, cyber extortion, keyloggers, password managers, UTM platforms, network design, and dinosaurs.
2021-06-141h 00Sittadel PodcastNetSec - Cloud Security with Trafenia Flynn SalzmanYou can count on Nate and Joshua to tackle the hard questions like: How tall is the average American male and what's scarier than a network leviathan. Trafenia Flynn Salzman, a Cloud Security Architect for the federal government, drops by to give her thoughts on how network security is affected by using cloud systems. In this episode, we talk about Zero Trust, network security, cloud security, MFA, access control lists, SaaS, PaaS, IaaS, Anonymous, and a few network security threats.
2021-06-0757 minSittadel PodcastIntro to Network SecurityThinking about network security but don't know where to begin? In this episode, Joshua walks Nate through a few network security fundamentals: Stateful vs Stateless firewalls and IDS vs IPS appliances. It's just enough cybersecurity mumbo jumbo to set the state for June's Network Security series. Also, Hoobastank. We talk a lot about Hoobastank.
2021-05-3145 minSittadel PodcastNate's StoryNate has a unique approach to life, and this is our chance to learn about his story so far. In this episode, we talk about the importance of the moment.
2021-05-2455 minSittadel PodcastGet Your First Cybersecurity JobIs there a secret to getting hired in a cybersecurity role? Not really, but Nate and Joshua break down a few different approaches to land your first job. In this episode, we talk about CompTia A+, Net+, Sec+, CySA+, CISA, CISM, CISSP, and GCFA certifications, as well as penetration testing and forensics ceilings.
2021-05-171h 06Sittadel PodcastRansomwareAnother day, another headline - this time involving the largest gas pipeline in America. The Department of Homeland Security and the FBI agree that ransomware threatens the existence of small businesses with incidents spiking by over 300% during the pandemic. The challenge falls to us to figure out how to make a compelling argument for preparing for the ransom before your data is gone. In this episode, we talk about ransomware, 2600 baud modems, blackberry, Colonial Pipeline Company, DarkSide (loosely), and the fact that people are just meat computers.
2021-05-1046 minSittadel PodcastSwapcast - The Sony HackIt's another Swapcast! Nate applies some of his inside knowledge of the entertainment industry to tell us about the odd ramifications to the time North Korea attacked Sony in response to an unpopular plot development in The Interview.Whether you call them North Korea, Lazarus Group, Guardians of Peace, or a handful of other code names, Nate talks us through the standard operating procedures used by one of the most active groups on the planet.In this episode, we talk about Seth Rogen, James Franco, Disney, Sony Pictures Entertainment, email security, malware droppers, shamoon whiper...
2021-05-0354 minSittadel PodcastThe Superhero Origin StoryWe were supposed to talk about the Facebook breach, but Nate asked Joshua a question about himself.In this episode, we talk about automation with PowerShell, Robocopy, Batch Scripts, registry reconnaissance, SSH, and ransomware.
2021-04-261h 14Sittadel PodcastBitcoin Part 1You asked for it - here's part 1 of our episode on Bitcoin. Joshua and Nate talk through the things individuals should consider before investing in cryptocurrencies (including a few cyber threats to keep in mind), how to break into Ft Knox and kite checks, and a billionaire that wants you to know about his skills in video games. In this episode, we talk about bitcoin, etherium, substratum, blockchain technology, Kim Dotcom, coin miners, and methods of keeping your bitcoin wallet safe from password theft. Not featured: financial advice.
2021-04-191h 04
ElevatePolkA Sword, a Guild, and a DreamAll you need is a sword, a guild, and a dream! Well, that’s according to Sittadel Co-Founders Joshua Sitta and Trafenia Flynn-Salzman. Nate and Chrissanne had the pleasure of speaking with these two longtime friends about their quest to become business owners and how they’ve built their kingdom, Sittadel. Listen in to learn more about their journey and also enjoy some free marketing tidbits from Chrissanne!
2021-04-141h 03
Headway by Catapult Lakeland20. Protecting your Small Business from Cybersecurity ThreatsIt can be easy to overlook the importance of Cybersecurity in your small business, but protecting your small business from potential cyberattacks is not nearly as difficult as it seems.On this episode of Headway, we sit down with Joshua Citta, founder of Sittadel, a cybersecurity company that helps protect and fortify small businesses from cybersecurity attacks.Joshua offers some great insights about how cyberattacks occur, how they affect businesses, and how to prevent them. He also details how you can improve your cybersecurity today, with a few simple, but effective tips.C...
2021-04-1439 minSittadel PodcastZero Trust with Trafenia Flynn SalzmanNate and Joshua catch up with Trafenia Flynn Salzman, CCSP, an Information Security Architect for the US federal government and leads the nation's 3-letter organizations through a multi-year initiative to implement a Zero Trust approach to cybersecurity. It's one of our top 10 best episodes (as of the time of this writing). In this episode, we talk about zero trust, antivirus, firewalls, network segmentation, and the importance of IT asset inventories.
2021-04-1247 minSittadel PodcastEmotet vs The BankThis episode goes way off the rails as we discuss the effect of interdepartmental politics on a cybersecurity response team. The Threat Hacktors don't have to wait for committee approvals to act, so institutions without predefined incident response plans struggle to keep pace with long term cyber incidents. Nate (who I understand is very funny) coins the phrase, "badvertising," and we talk about a deer wearing a mustache. In this episode, we talk about emotet, trickbot, file binary heuristics and telemetry, thread hijacking, watering hole attacks, and badvertising.
2021-04-0553 minSittadel PodcastHacking the BankWhat do Sony and the Bank of Bangladesh have in common? Were they both hacked by Club Penguin using the North Korean malware known as Hidden Cobra? While Nate raises important questions about Club Penguin's involvement in the attempted theft of $850,000,000.00, Joshua went on a 34 minute rant about EDR, MDR, and DDR (don't worry - it was cut for time!).In this episode, we talk about phishing emails, Secure Email Gateways (AKA SEGways), and the importance of having a firm grip on financial procedures.
2021-03-2947 minSittadel PodcastStuxnetWhen American and Israeli cyber operations join forces, you end up with one of the most sophisticated malware operations in history. Nate learns how to make a nuclear bomb, and Josh doesn't know how cars work.In this episode, we discuss zero day vulnerabilities, USB drive controls, hardening, maintaining a software inventory, Carbon Black, and the importance of having a security ally (like Red Canary).
2021-03-2251 minSittadel PodcastSwapcast - Exchange RCEThere's a new worst case scenario for small businesses. In this special emergency release of the Sittadel Podcast, Nate brings the cybersecurity as we talk about over a hundred thousand compromised organizations, and Joshua makes it lit. It's a full on swapcast! And this time, the microphones are on. Featured:CVE - Common Vulnerabilities and Exposures - a unique tracking number for thousands of vulnerabilitiesCVSS - the Common Vulnerability Scoring System - a Richter Scale analog for rating the severity of vulnerabilitiesIDS/IPS - Intrusion Detection / Prevention Systems - a network ap...
2021-03-1549 minSittadel PodcastSolarigate and StrategyJoshua Sitta and Nate Fleming talk through one of the most successful cyber attacks in history - Solarigate. In this episode, we cover the basics of setting up your own Cybersecurity Strategy both in business and in personal lives. Not featured: Hugh Jackman.--- This episode is sponsored by · Anchor: The easiest way to make a podcast. https://anchor.fm/app
2021-03-1542 minSittadel PodcastMærsk: Dead in the WaterWhat's it take to cripple the largest shipping company in the world? About 7 minutes. Joshua talks through the impact NotPetya had on Møller – Mærsk and explains the approach he uses for combating ransomware. Later, Nate works some things out about Tommy. Featured in this episode are attack.mitre.org and RanSim.For free tips on defeating ransomware, check out The Free Ransomware Defense resource on Sittadel.com. If it wasn't clear, this episode is not sponsored by Møller – Mærsk.
2021-03-0849 minSittadel PodcastILOVEYOUNate and Joshua manage to talk through important security issues like bears, worms, and monkeys. In this episode, we highlight the way cybercriminals can share the love without compromising an email server if DKIM, DMARC, and SPF were never configured.
2021-03-0147 min
Sittadel PodcastThe Target HackNate Fleming (Comedian) and Joshua Sitta (Cybersecurity Professional) host the Sittadel Podcast which takes listeners on a journey through cybersecurity incidents and their application to their small business. This episode is about the great Target Hack of 2013 and how that was a supply chain attack, email security and a few references to Hugh Jackman.
2021-02-1544 min