This is the audio podcast version of Troy Hunt's weekly update video published here: https://www.troyhunt.com/tag/weekly-update/
…
continue reading
内容由Anton Chuvakin提供。所有播客内容(包括剧集、图形和播客描述)均由 Anton Chuvakin 或其播客平台合作伙伴直接上传和提供。如果您认为有人在未经您许可的情况下使用您的受版权保护的作品,您可以按照此处概述的流程进行操作https://zh.player.fm/legal。
Player FM -播客应用
使用Player FM应用程序离线!
使用Player FM应用程序离线!
EP98 How to Cloud IR or Why Attackers Become Cloud Native Faster?
Manage episode 347659418 series 2892548
内容由Anton Chuvakin提供。所有播客内容(包括剧集、图形和播客描述)均由 Anton Chuvakin 或其播客平台合作伙伴直接上传和提供。如果您认为有人在未经您许可的情况下使用您的受版权保护的作品,您可以按照此处概述的流程进行操作https://zh.player.fm/legal。
Guests:
- Matt Linton, Chaos Specialist @ Google
- John Stone, Chaos Coordinator @ Office of the CISO, Google Cloud
Topics:
- Let’s talk about security incident response in the cloud. Back in 2014 when I [Anton] first touched on this, the #1 challenge was getting the data to investigate as cloud providers had few logs available. What are the top 2022 cloud incident response challenges?
- Does cloud change the definition of a security incident? Is “exposed storage bucket” an incident? Is vulnerability an incident in the cloud?
- What should I have in my incident response plans for the cloud? Should I have a separate cloud IR plan?
- What is our advice on running incident response jointly with a CSP like us?
- How would 3rd party firms (like, well, Mandiant) work with a client and a CSP during an investigation?
- We all read the Threat Horizons reports, but can you remind us of the common causes for cloud incidents we observed recently? What goals do the attackers typically pursue there?
Resources:
- “Building Secure and Reliable Systems” book (especially ch 14-16, and ch17)
- Google Cybersecurity Action Team Threat Horizons Report #4 Is Out! (#3, #2, #1)
- “Incident Plan vs Incident Planning?” blog (2013)
170集单集
Manage episode 347659418 series 2892548
内容由Anton Chuvakin提供。所有播客内容(包括剧集、图形和播客描述)均由 Anton Chuvakin 或其播客平台合作伙伴直接上传和提供。如果您认为有人在未经您许可的情况下使用您的受版权保护的作品,您可以按照此处概述的流程进行操作https://zh.player.fm/legal。
Guests:
- Matt Linton, Chaos Specialist @ Google
- John Stone, Chaos Coordinator @ Office of the CISO, Google Cloud
Topics:
- Let’s talk about security incident response in the cloud. Back in 2014 when I [Anton] first touched on this, the #1 challenge was getting the data to investigate as cloud providers had few logs available. What are the top 2022 cloud incident response challenges?
- Does cloud change the definition of a security incident? Is “exposed storage bucket” an incident? Is vulnerability an incident in the cloud?
- What should I have in my incident response plans for the cloud? Should I have a separate cloud IR plan?
- What is our advice on running incident response jointly with a CSP like us?
- How would 3rd party firms (like, well, Mandiant) work with a client and a CSP during an investigation?
- We all read the Threat Horizons reports, but can you remind us of the common causes for cloud incidents we observed recently? What goals do the attackers typically pursue there?
Resources:
- “Building Secure and Reliable Systems” book (especially ch 14-16, and ch17)
- Google Cybersecurity Action Team Threat Horizons Report #4 Is Out! (#3, #2, #1)
- “Incident Plan vs Incident Planning?” blog (2013)
170集单集
所有剧集
×欢迎使用Player FM
Player FM正在网上搜索高质量的播客,以便您现在享受。它是最好的播客应用程序,适用于安卓、iPhone和网络。注册以跨设备同步订阅。