Лучшие подкасты про Hacked Off (2024)

1
108. IASME: IOT Security Compliance 26:18

3d ago26:18

26:18

Following audience responses to Pod 107 with Jason Blake, Secarma Jen Williams has circled back to do a deeper dive into the PSTI legislation and IoT devices.With the legislation going live at the end of April, any manufacturers that have not yet found a successful route to show compliance should listen to this podcast which goes into finer detail …

1
107. Jason Blake: IoT and PSTI 24:22

3M ago24:22

24:22

Secarma Head of Testing, Simon Chapman, takes over the hosting duties as the Hacked Off podcast returns. Episode 107 focuses on IoT and the new regulations that are forcing manufacturers to place security at the heart of their devices. Simon interviews Jason Blake, IOT scheme manager at IASME and Jen Williams who heads up consultancy services at Se…

1
106. Simon McNamee: Optimising Security Services 43:11

2+ y ago43:11

43:11

In this episode of Hacked Off, Holly interviews Simon McNamee - Secure Impact's Security Technology Lead. This week, they discuss what issues security experts often encounter when working with businesses; both those with a high level of security maturity, as well as those just starting off on that journey. Holly and Simon offer some sage advice to …

1
105. Rob Demain: SOCs and SMEs 42:27

2+ y ago42:27

42:27

For some organisations, using Security Operation Centre services is a great way to minimise the impact of a possible cyberattack. Moving quickly and effectively, SOCs can detect, analyse and respond to breaches if an organisation doesn’t have the resources to do so themselves. In this episode we spoke to Rob Demain – founder and CEO at e2e-assure –…

1
104. David Barr: Cybersecurity CSI 30:45

2+ y ago30:45

30:45

In the cybersecurity world, the digital forensics dept acts as the Crime Scene Investigation team for a business that has fallen foul of a cyber-criminal. DFI techniques are used to investigate and rectify the problems caused by the hack, and/or bring the perpetrator to justice. Similarly to traditional forensics, cyber incident response teams can …

1
103. Declan Doyle: Cyber Resilience 31:26

2+ y ago31:26

31:26

Valuing your SME as ‘too small to get hacked’ can leave you complacent and open to attacks, with little to no defences in place. For those who find cybersecurity daunting, there are organisations out there, ready to help.In this episode, we talk to Declan Doyle – head of Ethical Hacking at the Scottish Business Resilience Centre – about cyber resil…

1
102. Nick Blundell: Automating Testing 1:05:10

2+ y ago1:05:10

1:05:10

The medium of cyber-attacks is code, but the mastermind that drives them is always human intelligence. Systems are created by people, and automated tech still can't understand every nuance that humans embed into them. In this episode, we talk to Nick Blundell – head of R&D at AppCheck – about the pros and cons of vulnerability scanning, how hackers…

1
101. Greg van der Gaast: Rethinking Recruitment 31:49

2+ y ago31:49

31:49

In a time of record unemployment due to the pandemic, it’s strange that cybersecurity job openings receive so little applicants and take 20% longer to fill than typical IT roles. Is there a cyber skills shortage, or are we simply looking in the wrong places? In this episode, we talk to Greg van der Gaast – CISO at Scoutbee GMBH and author of Rethin…

1
100. Jai Aenugu: Why We Have to Win Every Time 46:16

2+ y ago46:16

46:16

To celebrate Hacked Off's 100th episode, we spoke with Jai Aenugu – founder of TechForce Cyber - a highly regarded cybersecurity resilience organisation with offices in both Edinburgh and Aberdeen. This week’s podcast features conversation around what sets Scotland apart in terms of cybersecurity, doing one thing and doing it really well, plus secu…

1
099. Ian Murphy: Against Apathy 45:10

3y ago45:10

45:10

Workplace security training can be hit or miss; to keep your business safe, your awareness training needs to be memorable, but a conventional annual security presentation on passwords and phishing scams can be tedious and forgettable.In this episode, we talk to Ian Murphy – founder and content creator at CyberOff, and co-founder of LMNTRIX – about …

1
098. Javvad Malik: What Makes Effective Security Awareness Training? 46:15

3y ago46:15

46:15

Security awareness training is a common requirement in most businesses, but oftentimes it can be difficult to effectively teach employees how to recognise and respond to security risks. In this episode, we speak with Javvad Malik – Security Awareness Advocate at KnowBe4, co-founder of Security B-Sides London and cybersecurity blogger – about the va…

1
097. Dr Andrea Cullen & Lorna Armitage: Women in Cyber 44:10

3y ago44:10

44:10

Studies in recent years have revealed how little diversity there is within the cybersecurity industry, with women making up only 8% of the cyber workforce in the UK. In this episode, we speak with Dr Andrea Cullen and Lorna Armitage – co-founders of cyber training organisation CAPSLOCK – about the difficulties of getting into cyber, the need for ac…

1
096. Natasha Taylor: The Future of Cybersecurity Events 45:07

3y ago45:07

45:07

Over the past year and a half, the event industry have had to adapt like never before, and this led to many events going online via webinars, digital roundtables, and large-scale virtual conferences.In this episode, we interviewed Natasha Taylor - Senior Conference Producer at DTX - about what makes a successful cybersecurity event, networking from…

1
095. Kathleen Booth: How Cyber Criminals Target Your Marketing Team 42:11

3y ago42:11

42:11

This week, Holly is joined by Clean.io's Kathleen Booth to talk about how the very methods that marketing teams use to bring in customers may also attract the unwanted attention of cyber-criminals. Whether it's third party plug-ins, digital ads, or even a stray tweet - hackers can corrupt your marketing department's efforts and attack your organisa…

1
094. Patricia Keating: How Crisis Spawns Innovation 36:01

3y ago36:01

36:01

This week, Holly speaks with Patricia Keating, founder of Tech Manchester - a start-up hub designed to upskill Manchester-based entrepreneurs, nurture their ideas, and connect them with investors. They discuss cybersecurity for start-ups, the tech business landscape in Manchester, and how virtual conferencing allows you to be in two places at once.…

1
093. Dr Dan Prince: Teaching the Next Generation to Think Differently 42:59

3y ago42:59

42:59

This week, Holly delves deeper into the topic of security higher education and training with Dr Dan Prince - Senior Lecturer in Security and Protection Science at Lancaster University's School of Computing and Communications.Together, they discuss the challenges that the mentors of today have when teaching the security experts of tomorrow, how to p…

1
092. University of Salford & Tanium: Higher Education's Security Challenges 1:00:49

3y ago1:00:49

1:00:49

Recently, the University of Salford announced their partnership with Tanium, to help the education institution improve their security against an increase of attacks. Universities have been high up on the target list for threat actors over the course of the pandemic, and these nefarious parties aren't slowing down anytime soon.In this episode, Holly…

1
091. Evan Jones: Demystifying Security Architecture 50:50

3y ago50:50

50:50

Although our specialty is penetration testing, there's a wide variety of interesting roles available within the security industry. In this episode, Holly sits down with Evan Jones of Complete Cyber, to explore the ins and outs of security architecture.Over the course of the conversation, they discuss the skills necessary to become a security archit…

1
090. Jonathan Slater: Start-ups and Starting Again: The Benefits of Reskilling 50:00

3y ago50:00

50:00

In last week's episode we talked about how security professionals can leverage their skills to get into cyber, but how do you obtain those skills in the first place? Enter Jonathan Slater, co-founder of CapsLock and our guest for today. In this episode, we discuss his journey from nuclear, to recruitment, to co-founding a disruptive education model…

1
089. Jay Jay Davey: Getting Into Cybersecurity 43:20

3y ago43:20

43:20

In this episode, Holly interviews Jay Jay Davey - SOC Analyst at CyberClan and founder of NoxCyber - a one stop page of career advice for aspiring cyber security professionals, with resources to help you get into the industry.We spoke with him about the different routes into cyber, as well as what to do once you're in. Listen to this episode for ca…

1
088. Shauni Adekoya: Marketing Cybersecurity Services 32:06

3y ago32:06

32:06

In this episode, Holly sits down with Shauni - our Marketing Manager - to discuss how she promotes technical services to a non-technical audience. Marketers in the security industry have a pretty big task on their hands; as technical people - cybersecurity is our passion (hence last week's 55 minute rant about security policies), but how do you cre…

1
087. Michael Ranaldo: Your Security Policy Needs to Make Sense 55:30

3y ago55:30

55:30

In this episode, Holly and Michael have an in-depth discussion - okay, maybe it's a little bit of a rant - about security policies. Many organisations' cybersecurity policies are rarely given the attention they deserve, despite them being such an important part of protecting your business.Over the course of this conversation, Holly and Michael take…

1
086. Thomas Ballin: The MITRE ATT&CK Framework 34:17

3y ago34:17

34:17

In this episode, Holly and Thomas discuss the MITRE ATT&CK framework and the multi-layered security strategies that organisations need to defend against threat actors.0:58 What is the MITRE ATT&CK framework?9:50 A real-world breach progresses in layers11:50 Using MITRE ATT&CK15:08 Communication is key16:50 Vulnerability scan, penetration test, or r…

1
085. Certifications and Training 16:34

3y ago16:34

16:34

What are the benefits of gaining skills that are a little more broad to the niche that you do?In this episode, we have a discussion around certifications, training, and upskilling. We also provide a brief overview of our penetration testing training courses, which are a great resource for businesses that are looking to upskill their security and IT…

1
084. CyberFirst Girls: Creating a Diverse Talent Pool 37:11

3y ago37:11

37:11

The Hacked Off podcast is back! In this episode, we sit down with Sarah and Sian from the NCSC's CyberFirst initiative to talk about the CyberFirst Girls competition.The National Cyber Security Centre is committed to developing the UK's next generation of IT professionals and has a number of fantastic initiatives designed to introduce 11 – 17 year …

1
2020: A Year in Review 22:00

3+ y ago22:00

22:00

It's the last podcast of the year, so Holly is revisiting some of our key guest interviews from 2020. We also couldn't do a 'A Year in Review' without discussing the impact of the pandemic on business security, and how now is the time to revisit your change management and risk register.Key points:0'34 Our new training course4'00 Lockdown and change…

1
082. The Biggest Threats To Your eCommerce Business 18:17

3+ y ago18:17

18:17

Generally when you think of eCommerce attacks you probably think of theft of personal information and payment cards, when in fact there are many ways a hacker could attack your online store. Holly Grace discusses the most common threats to eCommerce businesses, and a few you may not have considered before!Key points:0'47 CIA - Confidentiality, Inte…

1
081. PenTesting APIs 12:16

3+ y ago12:16

12:16

Application Program Interfaces have increasingly become a target for hackers. With 6 of the OWASP Top 10 vulnerabilities being API related, it is no surprise that OWASP released their first list of API Security Top 10, last year. For those wanting to better understand the process of API penetration testing, Holly Grace takes you through the process…

1
080. eCommerce Security Issues to Address Ahead of Black Friday 14:25

3+ y ago14:25

14:25

Is your online store ready for Black Friday and Christmas shopping? Have you considered how automated bots, fake reviews, plugins and a data breach could wreak havoc over the busiest shopping period of the year? This podcast is a perfect starting point for eCommerce businesses wanting to secure their business ahead of the mad rush!0'52 Preventing t…

1
079. Month In Review: Nation State Hacks and Zero-days 13:32

3+ y ago13:32

13:32

This month there has been a lot going on in the world of cybersecurity. With major IT firm Sopra Steria getting hit by a cyberattack, Apple paying out over $250,000 to a team of bug hunters for finding 55 vulnerabilities in Apple systems, as well as the USA indicting 6 Russian Intelligence Officers for a range of attacks such as attacks against the…

1
078. Alyssa Miller: Threat Modelling and DevSecOps 38:55

3+ y ago38:55

38:55

Threat modelling is broader than just security, and DevSecOps is more than just secure code. Application Security Advocate, Alyssa Miller talks passionately about the importance of a collaborative approach to security, where implementing a culture of building efficiently and understand security as you go, can help with getting ahead of the game.0'2…

1
077. Keeping Mobile Devices Secure 14:16

3+ y ago14:16

14:16

Mobile Device Management increases security, reduces risk and plays an important role in Government certified assurance models. Holly Grace discusses the role of device management for Cyber Essentials, and the challenges that come with employees using their own devices at work.Key points:1'08 What is Mobile Device Management (MDM)?3'05 Device Manag…

1
076. Joe Thorpe: Hacking Mobile Apps 17:16

3+ y ago17:16

17:16

We speak to fellow co-worker and Senior Security Consultant at Secarma, Joe Thorpe, who specialises in app testing. He gives us the low down on hacking mobile apps, how they're similar to web apps, which vulnerabilities are most common and how to choose the right testing for your mobile app. Key points:0'43 What is mobile application testing?3'43 S…

1
075. Month in Review: Cyber Attacks aren't always Financially Motivated! 16:00

3+ y ago16:00

16:00

In September's Month in Review, Holly Grace is delighted to announce that this month's hacks aren't just all about ransomware! From political motivation to notoriety, she discusses the different kind of motives a hacker may have, and the kind of attacks they might use to get what they want.Key Points: 0'55 Financially Motivated: KuCoin Hack3'07 Ins…

1
074. Martin Lethbridge: There’s more to Firewalls than Blocking Packets 57:49

3+ y ago57:49

57:49

There's more to firewalls than simply installing them and leaving them to it! WatchGuard's Senior Sales Engineer Martin Lethbridge, joins Holly Grace Williams to discuss common firewall misconceptions, and how to get the most out of your firewall to ensure your organisation is safe. 0'22 Guest introduction 2'10 Firewall misconceptions - they aren't…

1
073. Vulnerabilities in Firewalls 14:38

3+ y ago14:38

14:38

Although perimeter breaking vulnerabilities are quite rare they're certainly not unheard of - Firewalls aren't perfect systems and they can have vulnerabilities too. In this week's episode, Holly Grace looks at some previous critical vulnerabilities in firewalls and tries to highlight some key lessons learned.4'37 The firewall vulnerability 'BEIGNC…

1
072. An Intro: Firewall Security 23:57

3+ y ago23:57

23:57

Our latest 'Intro' podcast takes a look at Firewall Security. Holly discusses different types of firewalls, the importance of network segmentation and Firewall Configuration Security Reviews, and how firewalls are targeted during a pentest.1'30 How firewalls are they targeted during a Penetration Test?8'29 Network segmentation11'08 How threat actor…

1
071. Month In Review: Bribery & Bug Bounties 15:13

3+ y ago15:13

15:13

From bribery to bug bounties! In August's Month in Review podcast, Holly Grace discusses the failed social engineering attack on a Tesla employee, and the uproar off the back of Slack's minimal payout to a researcher for a critical security bug. Key points:1'20 The failed social engineering attack against Tesla3'05 How to test your organisation aga…

1
070. How Vulnerability Scanners Work 1:05:51

3+ y ago1:05:51

1:05:51

Whilst Secarma perform Penetration Testing which is in-depth approach to security testing, organisations can get additional assurance through ongoing automated security scanningNick Blundell, AppCheck's Head of R&D, joins us on our podcast to discuss how vulnerability scanners work, their pros and cons, and how they compliment Penetration Testing t…

1
069. An Introduction to the OWASP Top 10 17:42

3+ y ago17:42

17:42

The OWASP Top 10 is a list of the 10 most common web application vulnerabilities. This podcast provides an introduction to this awareness document, and why it's so beneficial to organisations and their journey to better security.Key Points:1'00 Who are the Open Web Application Security Project?2'18 What is the OWASP Top 10?7'55 The current OWASP To…

1
068. An Intro: Vulnerability Scanning 26:05

3+ y ago26:05

26:05

This podcast provides an excellent introduction to vulnerability scanning, covering how it works and what it tests. It discusses the benefits of vulnerabilities scanning and how alongside penetration testing, can provide an organisation with a more continuous testing model.Key points:1’34 What is vulnerability scanning?2’16 What does vulnerability …

1
067. Month in Review: Data Stolen and Ransoms Paid 18:20

3+ y ago18:20

18:20

In July it was revealed that travel company CWT paid $4.5 million in ransom to cyber criminals. Whilst shocking, ransomware is unfortunately not new and not uncommon. Secarma’s MD, Holly Grace Williams, discusses why ransomware is such a popular option for cyber criminals and how companies can prepare for potential attacks with incident response tr…

1
066. Encryption isn't Magic 27:58

3+ y ago27:58

27:58

After a brief break, the Hacked Off Podcast is back! If you missed our MD’s Trusted Tech Talks webinar last week, Holly Grace Williams summarises the key points of her presentation, Encryption isn’t Magic: Hackers Can Break It. She discusses why encryption is a little more complex than being on or off and the importance of configuring it correctly.…

1
065. PenTesting: Efficiency vs Realism 18:38

4y ago18:38

18:38

In today's episode we talk about penetration testing realism versus efficiency, and why sometimes aiming for a security test that exactly matches the options available to criminals isn't always possible and why sometimes it isn't always desirable. It's all about the context.Key points:1'05 The motiviation behind an assessment is key2'10 When realis…

1
064. Mike Jones: Privacy and OpSec 46:06

4y ago46:06

46:06

Privacy is a right and it is important to protect that right, but operational security it hard. Mike Jones joins us again to talk all things OpSec and we cover some things to check to make sure your privacy is protected.Key Points:1'30 Why is Privacy important?4'20 Photos, GPS and Geotagging10'15 Social Media settings12'15 Removable Media14'15 Comm…

1
063. Incentivising the Security Team 18:05

4y ago18:05

18:05

In today's episode we talk about incentivising your Security Team and making sure that the defensive team are getting praise for a job well done. As well as noting that the red team's job isn't over when they find a high impact vulnerability.Key Points:0'49 There's more to staff retention than bonuses1'40 The problem of the romanticisation of the r…

1
062. Adam Louca: Cutting Through Vendor Noise 41:33

4y ago41:33

41:33

Adam Louca joins us today to talk about how to get the most out of security products, and how to cut through the marketing to find out what works for you!Key Points:0'30 What is a technologist?2'05 Why do we have to cut through vendor noise?4'21 How you can determine the truth of products9'25 Planning for the unknown12'00 How to know products are w…

1
061. - Kevin Fielder: Building Security, Teams, and Culture 53:24

4y ago53:24

53:24

Kevin Fielder joins us today discussing building security and building security teams. We talk risk appetite, balancing likelihood and impact, and team culture!1'20 Where to start4'00 Risk Appetite and moving quickly11'13 Balancing appetite, likelihood and impact15'15 Keeping the security team happy18'45 Team Culture25'45 Team Development and build…

1
060. Security Strategy 59:50

4y ago59:50

59:50

Today we have a Marc Avery, Kevin Fielder, and Sean Atkinson discussing how to build a business security strategy. We talk about cyber insurance, operational security, and building security in companies. As well as detours to talk about Equifax getting hit by Hurricane Irma, the problems of working from home, and company culture.Key Points:01'00 Gu…

1
059. - Mike Jones: Anonymous, Suits, and Building Better Security 44:10

4y ago44:10

44:10

Mike Jones is a former member of anonymous, a former confidential informant, and is here to talk about building better security. We talk about everything from Cyber Prevent programmes to help people avoid becoming cyber criminals to becoming a better penetration tester.01'12 Working with Anonymous03'25 Meeting with the Suits04'18 Working as a Confi…

Подкасты, которые стоит послушать

Подкасты на тему Hacked Off

Подкасты, которые стоит послушать

Краткое руководство