Dark Rhino Security Podcast

#SecurityConfidential #DarkRhiinoSecurity Dan Lohrmann is an internationally recognized cybersecurity leader, keynote speaker, and author with over 30 years of experience. He served as Chief Security Officer, CTO, and CISO for Michigan's government and received numerous national awards, including CSO of the Year and Computerworld Premier 100 IT Leader. He has advised top-level government and business leaders, including at the White House and U.S. Department of Homeland Security. Currently, Dan is the Field CISO for Presidio and co-author of Cyber Mayday and the Day After, a guide for managing business disruptions. 00:00 Snippet 01:59 Our Guest 09:13 Was Cybersecurity a term back then? 13:05 Everybody keeps getting breached, Why? 19:00 Creating a culture 32:50 Trust but Verify mentality 45:53 Stopping Online Fraud 52:13 Bring your own AI 57:05 Cyber Mayday ---------------------------------------------------------------------- To read about Dan visit https://www.govtech.com/authors/dan-lohrmann.html To

#SecurityConfidential #DarkRhiinoSecurity Nick Espinosa is a cybersecurity expert with over 25 years of experience in the field. He founded Windy City Networks, later acquired in 2013, and went on to create Security Fanatics in 2015, specializing in custom cyber defense strategies for medium to enterprise-level corporations. Nick is a board member, advisor, and contributor to several cybersecurity organizations and initiatives, including Roosevelt University, the COVID-19 Cyber Threat Coalition, and the Cyber Peace Institute. He’s also an award-winning co-author, TEDx speaker, and host of the nationally syndicated radio show "The Deep Dive." 00:00 snippet 01:20 Our Guest 02:07 Growing up around technology 06:42 What can’t companies do right? 14:40 Nerd to English translation 21:07 The 5 laws of Cybersecurity 35:21 Innovating around Systems 49:24 More about Nick ---------------------------------------------------------- To learn more about Nick visit https://www.linkedin.com/in/nickespinosa/ Vi

#SecurityConfidential #DarkRhiinoSecurity Jake has been an innovator in the cloud-native ecosystem for over 15 years. After engineering roles at Amazon and Google, Jake founded Quay, the first private Docker registry, which was acquired by CoreOS. Jake then became an engineering leader at CoreOS, which was acquired by Red Hat (and then IBM). He is now the co-founder and CEO of AuthZed, the company commercializing SpiceDB, the industry-leading cloud-native permissions database. 00:00 Intro 00:58 Our guest 02:15 The Entrepreneur chip on your shoulder 06:58 The fear of failure 09:46 How do you pay salaries on open source when you use it daily 12:40 The basics of a Distributed Architecture 20:00 Distributed Databases 26:43 What if the platform isn’t distributed? 31:38 AuthZed 43:21 What will AI do in your world? 47:01 News from Jake ---------------------------------------------------------------------- Kiteworks enables organizations to effectively manage risk in every send, share, receive, and save of sensi

#SecurityConfidential #DarkRhiinoSecurity Aaron is a Security Confidential Alumni, Entrepreneur, Author, former VP of Microsoft in China, and the CEO of Nametag Inc, the company that invented “Sign in with ID” as a more secure alternative to passwords. 00:00 Intro 00:57 Our Guest 01:46 Social Engineering trends 04:03 Deep fakes: how does it work? 09:18 Watermarking content 11:30 Deepfake Prevention: Injection attack 13:11: Deepfake prevention: Presentation attack 15:00 How do you verify behind a screen? 27:16 Hidden security in your phones 32:08 Social Engineering and MFA in Healthcare 41:18 How to maintain LOYAL Employees 46:15 China: Friend or Foe? 50:13 Connecting with Aaron ------------------------------------------------------------------ Watch our other episode with Aaron: https://youtu.be/m2PLow9cWSE ------------------------------------------------------------------ To learn more about Nametag visit https://getnametag.com/ To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurit

#SecurityConfidential #DarkRhiinoSecurity Purandar Das is a visionary leader in tech, having served as CTO for two of the largest marketing services companies. He is now the CEO of a leading data protection company, pioneering innovative approaches to secure personal data. Transitioning from data monetization to data protection, Purandar was driven by concerns about the inadequacies of existing security products. His unique journey underscores a deep commitment to redefining data security standards in today’s digital age. 00:00 Snippet 01:15 Our Guest 02:05 What is the biggest vulnerability for organizations? 03:10 What makes Data valuable? 06:25 What role does AI play in data protection? 12:23 Doing the minimum 13:28 How can Organizations better protect themselves? 17:33 Encrypting data 20:49 Best Practices for SMBs ---------------------------------------------------------------------- To learn more about Purandar visit https://www.linkedin.com/in/purandardas/ To learn more about Dark Rhiino Security

Dr. Eric Daimler is a leading authority in robotics and artificial intelligence with over 20 years of experience as an entrepreneur, investor, technologist, and policymaker. He served as a Presidential Innovation Fellow for AI and Robotics under the Obama Administration, driving U.S. leadership in AI research and commercialization. Eric has founded and led several pioneering tech companies and currently serves on the boards of WelWaze Medical and Petuum. His latest venture, Conexus, addresses the critical issue of data deluge in information technology. With a career spanning business, academia, and policy, Eric offers a unique perspective on shaping the future of AI for societal benefit.  00:00 Snippet01:09 Our Guest05:40 AI is much more than Machine Learning10:57 Lisp and data30:54 Conexus 32:53 Type Theory and Quantum compiling34:44 The government's role in AI39:14 Connecting with Eric ------------------------------------------------------------------ To learn more about Eric visit https://www.linked

#SecurityConfidential #DarkRhiinoSecurity Vivek Ramachandran is a security researcher, author, speaker/trainer, and serial entrepreneur with over two decades of experience in offensive cybersecurity. He is currently the founder of⁠ SquareX⁠, building a browser-native security product focused on detecting, mitigating, and threat-hunting web attacks. Prior to that, he was the founder of Pentester Academy (acquired), which has trained thousands of customers from government agencies, Fortune 500 companies, and enterprises from over 140+ countries. He has authored multiple books in cybersecurity and spoken at DEFCON, BlackHat multiple times.  00:00 Introduction  01:04 Our Guest 05:55 Advice from Vivek to those who want to follow a passion 09:19 Ransomware payments have gone down  13:37 Why is this still not addressed? 27:55 Should the CISO report to the board or the CIO?  36:55 Vulnerabilities in Gmail, Outlook, and their counterparts 47:14 SquareX + DEFCON   ----------------------------------------------------

Vivek Ramachandran is a security researcher, author, speaker/trainer, and serial entrepreneur with over two decades of experience in offensive cybersecurity. He is currently the founder of SquareX, building a browser-native security product focused on detecting, mitigating, and threat-hunting web attacks. Prior to that, he was the founder of Pentester Academy (acquired), which has trained thousands of customers from government agencies, Fortune 500 companies, and enterprises from over 140+ countries. He has authored multiple books in cybersecurity and spoken at DEFCON, BlackHat multiple times.  00:00 Introduction  01:04 Our Guest 05:55 Advice from Vivek to those who want to follow a passion 09:19 Ransomware payments have gone down  13:37 Why is this still not addressed? 27:55 Should the CISO report to the board or the CIO?  36:55 Vulnerabilities in Gmail, Outlook, and their counterparts 47:14 SquareX + DEFCON   SOCIAL MEDIA: Stay connected with us on our social media pages where we'll give you snippets,

Stephen Kowski is a seasoned cybersecurity expert with a robust career spanning over two decades. He is currently the CTO at SlashNext, the leader in Ai-powered cloud email, mobile, and browser messaging security. Stephen has a rich history of leading and implementing comprehensive cybersecurity strategies, ensuring robust protection for organizations against evolving cyber threats. His expertise encompasses risk management, compliance, incident response, and innovative security solutions. Stephen is also a passionate advocate for cybersecurity education and awareness, continuously contributing to the development of the cybersecurity community. 00:00 Introduction 00:32 Our Guest 02:08 What is a field CTO? 03:19 Learning to speak their language 07:26 Why not take the traditional approach? 11:00 Anything made by a human can be broken by a human 15:03 What role does Risk play into product design? 20:35 3D Phishing 25:25 What are you trying to solve? 36:11 Is Email marketing effective anymore? 42:58 Attackers

This week on Dark Rhiino Security’s Security Confidential podcast, Host Manoj Tandon celebrates 150 episodes with Robert Kerbeck. Robert is a multifaceted storyteller, former corporate spy, actor, acclaimed author, and founder of the Malibu Writers Circle. His award-winning debut book, "Malibu Burning: The Real Story Behind LA's Most Devastating Wildfire," earned him the 2020 IPPY Award and Readers’ Favorite Award, among others. One of his stories was adapted into the award-winning film, "Reconnected," showcased at film festivals globally. His latest memoir, "RUSE: Lying the American Dream from Hollywood to Wall Street," offers a thrilling glimpse into his career as a corporate spy. 00:00 Introduction 00:39 Our Guest 02:10 Corporate spy 06:10 Hacking your people 33:04 What’s the legal position for companies? 36:06 RUSE 43:30 People want connection 46:26 Getting a signed copy of RUSE ---------------------------------------------------------------------- To learn more abou

This week on Dark Rhiino Security’s Security Confidential podcast, Host Manoj Tandon talks to Brian Vallelunga. Brian is the Founder and CEO of Doppler, which is the first secrets management platform for developers. Doppler empowers tens of thousands of engineering and devops teams to seamlessly orchestrate, govern, and manage their secrets across environments at scale. Brian has been featured in Forbes 30 Under 30, worked at improving overall Safety at Uber, and has won multiple state level science fairs. 00:00 Introduction 00:18 Our Guest 01:03 Building a successful company 07:37 Falling in love with your own idea 11:20 Killing Bad Startups 20:53 What problem are you solving? 26:38 Closing the gap 30:25 The bigger the company, the worse their security is 37:20 Out of Business 6 months after Breach 41:26 Will Machine Learning and Quantum Computing play a role? 46:07 More about Brian ------------------------------------------------- To learn more about Brian visit https://www.linkedin.com/in/vallelungabria

This week on Dark Rhiino Security’s Security Confidential podcast, Host Manoj Tandon talks to Max Hillebrand. Max is the CEO at ZKSNACKS and Wasabi Wallet, a pioneering figure in the realm of privacy-focused cryptocurrency wallets. He is a dedicated open-source contributor focused on liberty and digital freedom. He champions non-scarcity in the digital realm, sharing his creations generously. Hillebrand works to build a robust economic ecosystem, empowering individuals for entrepreneurial pursuits. 00:00 Introduction  00:21 Our Guest 03:41 ZKSNACKS and Wasabi Wallet 06:41 The Basics of Bitcoin: How does it work? 13:30 How do bitcoin exchanges fail? 26:46 Changing the rules 33:47 Why do Ransomware actors want their cash in bitcoin? 37:00 How to get your public key on the blockchain? 44:10 Quantum computing and future issues 57:05 Book Recommendations from Max

#SecurityConfidential #DarkRhiinoSecurity This week on Dark Rhiino Security’s Security Confidential podcast, Host Manoj Tandon talks to Daryl Donley. Daryl is currently a VP at Outcomes responsible for Security and IT. He has a passion for building and solving problems through secure software and embraces secure software development practices. He spent 20 years directly involved as a tester, developer, and architect building end-user solutions. For the last 15+ years, he has been working in Information Security, helping teams build secure and compliant solutions. In his spare time, he enjoys sports and tinkering with technology like blockchain and digital assets. 00:00 Introduction 00:17 Our Guest 06:15 How do you manage 3rd party risk? 07:48 The role of threat intelligence 09:34 Do the stakeholders understand? 12:10 Not replying solely on Open source 18:40 Convenience over security 20:30 It’s secure enough 26:20 Throwing technology at a problem doesn’t solve it 29:36 Can AI help? 46:50 More about Daryl

This week on Dark Rhiino Security’s Security Confidential podcast, Host Manoj Tandon talks to Troy Hunt. Troy is an Australian Microsoft Regional Director and MVP for Developer Security. He's known for his expertise in web security, as well as his creation of 'Have I Been Pwned?' He's a prolific author for Pluralsight, a sought-after speaker at global conferences, and has been featured in a number of articles with publications including Forbes, TIME magazine, Mashable, PCWorld, ZDNet and Yahoo! Tech. Aside from technology and security, Troy is an avid snowboarder, windsurfer and tennis player 00:00 Introduction 01:17 We’re going to outsource you 05:20 Have I Been Pwned? 10:10 Does the value length matter? 15:13 Convenience vs Security 20:20 Recovering an account 34:08 What is the effectivity of 2FA? 37:45 Artificial Intelligence and NLP 443:27 If you’re going to do nothing, at least do this 52:25 More about Troy -------------------------------------------- To learn more about Troy visit http

This week on Dark Rhiino Security’s Security Confidential podcast, Host Rory Meikle fills in for Manoj Tandon as he talks to Richard Hollis, the Founder and Chief Executive of Risk Crew. Richard is a seasoned cyber security expert and ardent privacy rights advocate who possesses over 30 years of “hands-on” skills and experience in designing, implementing, and testing the security integrity of business information technology systems. He lives and breathes cyber security and understands how to simplify it and make it relevant. 00:00 Introduction 00:17 Our Guest 06:25 People, process, and Technology 08:25 The cybersecurity community takes zero accountability 12:50 Cybersecurity vendors profit from the insecurity of computing 16:15 Either it works or it doesn’t 27:40 How do we get nontechnical people to understand? 34:24 Nothing is free 38:20 Until it’s personal 46:13 How did we get to this point? 50:25 How business owners can become more aware 54:08 Connecting with Richard ------------------------------------

This week on Dark Rhiino Security’s Security Confidential podcast, Host Manoj Tandon talks to Tom Eston. Tom’s work over his 17 years in cybersecurity has focused on information security, network, red team, and application penetration testing as well as security and privacy advocacy. Tom has led multiple projects in the cybersecurity community, improved industry-standard testing methodologies, and is an experienced team manager and leader. Tom is also a frequent speaker at security user groups and international cybersecurity conferences including Black Hat, DEF CON, DerbyCon, SANS, InfoSec World, OWASP AppSec, and ShmooCon. 00:00 Introduction 00:20 Our Guest 12:34 The leadership role 14:09 Would you redesign the internet? 18:55 The Golden age of education 22:03 why is it that the hacking community can be better than the OEM? 25:19 Do you think Cybersecurity adds value to the market offering? 29:48 The Hackback program 35:08 Misconceptions of cybersecurity  48:56 More About Tom

Dorota Wrobel is the Chief Research and Devlopment Officer at G2A.com, the world's largest and most trusted marketplace for games, DLCs, in-game items, as well as software, and e-learning. She has worked in e-commerce for the last 9 years, is passionate about revolutionizing online shopping experiences, and a big advocate of women in tech. Dorota believes that the best work comes from diverse teams with interdisciplinary backgrounds. She is a cycling enthusiast and a big fan of documentaries. 00:00 Introduction 00:10 Our Guest 02:50 Listening to the customers 04:55 Selling to different cultures 08:15 Creating a secure platform on G2A 16:44 How to be safer online 19:06 Regulation for e-commerce 20:59 AI transforming e-commerce 31:40 Why do people game? 33:15 Keeping Personal data safe 35:30 Diversity in a team 43:51 More about Dorota and G2A ---------------------------------------------------------------------- To learn more about Dorota visit https://www.linkedin.com/in/dorota-wr%C3%B3bel-b653823b/ T

This week on Dark Rhiino Security’s Security Confidential podcast, Host Manoj Tandon talks to Scott Augenbaum. Scott is a Retired FBI Supervisory Special Agent, Author, Keynote Speaker, and Cybercrime Prevention Trainer. Scott spent most of his 30-year career handling Cybercrime investigations. In January 2019, he released a book called “The Secret to Cybersecurity, A Simple Plan to Protect Your Family and Business from Cybercriminals”. He says “It gave me an opportunity to share my thoughts about Cybercrime prevention with the world and also led to accomplish a major personal goal”. He has been featured on popular News broadcasting programs including Dr. Phil’s Talk Show.  00:00 Introduction 00:40 Our Guest 4:57 Did you always want to be an FBI Agent 07:47 “Advanced” computer skills in 1997 13:03 Technology will solve all of our problems 17:41 How long until the FBI is involved?   17:54 The FOUR truths about Cybersecurity 31:24 Magic Software solves our problems 38:45 The biggest takeaways from Scott 46:17

This week on Dark Rhiino Security’s Security Confidential podcast, Host Manoj Tandon talks to Christian Espinosa. Christian is a bestselling author, certified high-performance coach, powerful keynote speaker, and the founder and CEO of Blue Goat Cyber, an organization designed to combat cybercrime through technical prowess and emotional intelligence. Christian is a US Air Force veteran with a BS in Engineering from the US Air Force Academy and MBA from Webster University. He holds multiple patents related to cybersecurity attack and defense. 00:00 Introduction 00:16 Our Guest 04:48 The Air Force Academy 07:07 The Culture and Operation at Blue Goat Cyber 08:18 Emotional Intelligence and Communicating with non-technical people 14:57 Hiring Personality 19:34 The Checklist should be Organized by Risk 22:33 Extreme Sports and it’s Correlation with Cyber 22:55 Translating Cybersecurity 35:50 Where does AI come into view? 42:03 Connecting with Christian -------------------------------------------------------------

#SecurityConfidential #darkrhiinosecurity This week on Dark Rhiino Security’s Security Confidential podcast, Host Manoj Tandon talks to Adam Levin. Adam Adam Levin is a nationally recognized expert on cyber security, privacy, identity theft, fraud, and personal finance and has distinguished himself as a fierce consumer advocate for the past 40 years. Former Director of the New Jersey Division of Consumer Affairs, Levin is the founder of CyberScout and co-founder of Credit.com. He is the author of the critically acclaimed book, Swiped: How to Protect Yourself in a World Full of Scammers, Phishers, and Identity Thieves. 00:00 Introduction 00:19 Our Guest 06:50 Agreeing to the terms 09:34 Why haven’t regulators caught up? 14:21 What can we do about Data companies? 18:55 Congress won’t deal with Privacy policies 27:20 Lie like a superhero 31:53 Virtual Kidnappings + Safe Words 34:26 Get your house in Order 50:25 More about Adam ---------------------------------------------------------------------- To learn