Command and Control

Supply Chain Security - Command and Control Episode 7

Carl Gottlieb and Paul Heffernan discuss Supply Chain Security, victim shaming, risk assessments and the Morrisons vicarious liability ruling. Show Notes

Supply Chain Security – Command and Control Episode 7

Carl Gottlieb [https://twitter.com/CarlGottlieb] and Paul Heffernan [https://twitter.com/pjh_22] discuss Supply Chain Security, victim shaming, risk assessments and the Morrisons vicarious liability ruling. Episode 7 – We talk about supply chain security and what we can do to beef it up. And we’ll discuss what happens when those controls fail, we get a breach, and whether shaming the victims is the best way forward. MORRISONS CASE England and Wales Court of Appeal (Civil Division) Decisions: https://www.bailii.org/ew/cases/EWCA/Civ/2018/2339.html [https://www.bailii.org/ew/cases/EWCA/Civ/2018/2339.html] SAMPLE RISK ASSESSMENT TOOL Risk and Controls Assessment Template.xlsx https://drive.google.com/file/d/1BlBV7illXUZfPD36JUKLFxD_1sQDrRJU/ [https://drive.google.com/file/d/1BlBV7illXUZfPD36JUKLFxD_1sQDrRJU/]

Banking and Blinking Lights – Command and Control Episode 6

Carl Gottlieb and Paul Heffernan discuss APP fraud, shifts in cyber crime against banks and security's focus on the wrong priorities. Show Notes

Banking and Blinking Lights – Command and Control Episode 6

Episode 6 – The first episode with Paul Heffernan! We focus on APP fraud and the security’s focus on the wrong priorities. APP FRAUD Revolut video with Paul Heffernan talking APP fraud: > 🕵️‍♀️ [https://s.w.org/images/core/emoji/13.1.0/72x72/1f575-fe0f-200d-2640-fe0f.png]In the first half of this year, scammers stole £500m from UK banking customers. Our Chief Information Security Officer explains how this happened, and what we're doing to protect our customers. pic.twitter.com/Q9uvHIHMKY [https://t.co/Q9uvHIHMKY] — Revolut (@RevolutApp) September 26, 2018 [https://twitter.com/RevolutApp/status/1044910997012721665?ref_src=twsrc%5Etfw] Payment Systems Regulator Report: https://www.psr.org.uk/psr-publications/consultations/APP-scams-report-and-consultation-Nov-2017 [https://www.psr.org.uk/psr-publications/consultations/APP-scams-report-and-consultation-Nov-2017] SUPERMICRO STORY Original Bloomberg story: https://www.bloomberg.com/news/features/2018-10-04/the-big-hack-how-china-used-a-tiny-chip-to-infiltrate-america-s-top-companies [https://www.bloomberg.com/news/features/2018-10-04/the-big-hack-how-china-used-a-tiny-chip-to-infiltrate-america-s-top-companies] Rebuttal statements from Amazon, Apple, Supermicro, and the Chinese Government: https://www.bloomberg.com/news/articles/2018-10-04/the-big-hack-amazon-apple-supermicro-and-beijing-respond [https://www.bloomberg.com/news/articles/2018-10-04/the-big-hack-amazon-apple-supermicro-and-beijing-respond] KAN “YE” WEST IPHONE PASSCODE (MOUNTAIN OUT OF MOLEHILL) https://www.google.com/search?q=kanye+west+000000 [https://www.google.com/search?q=kanye+west+000000] Apology – On the podcast Carl mistakenly called SuperMicro “Microscope”. Blame Paul for making Carl record the podcast late in the day.

Antivirus Testing Exposed – Command and Control Episode 5

Interview with Chad Skipper from Cylance – the makers of Next Generation Antivirus built upon Machine Learning and a whole lot of very smart people. We discuss why Dell chose Cylance for their business laptops, what’s wrong with legacy antivirus products and what we can all do to better evaluate products for ourselves. Show Notes