On todays episode: I'll be talking with Ermis Catevatis, who is an offensive security professional, with a background in red teaming, physical penetration testing and software development. We'll be talking about a new platform that he developed to help upskill red teams, and provide organizations with capabilities to test their internal security posture against new [...]
Blog
The Canadian Cybersecurity Podcast – Episode 02 – The state of the cyber insurance market in 2023
On todays episode: I'll be talking with Lucas Black, who is a CISSP and Principle Security Solution Architect at CDW Canada. We'll be talking about the evolution of cyber insurance, the challenges that organizations face due to the changing threat landscape, and the priorities that need to be focused on for 2023 and beyond. https://youtu.be/sPhMhuegXUo [...]
The Canadian Cybersecurity Podcast – Episode 01 – The disparity between the number of cybersecurity professionals in the industry and the vacant positions in the market.
On todays episode: I'll be talking with Junior Williams, who is a CISSP, advisory board member of ElCanHack, and the Director of Cyber Risk at MIS3, We'll be talking about the disparity between the number of cybersecurity professionals in the industry and the number of vacant positions in the market. https://www.youtube.com/watch?v=JvK3bUYgKz0 https://open.spotify.com/episode/66wYkBNCgvH8tTRIpX1cBb Below is the [...]
Trust and bias in AI – public sentiment and regulatory frameworks
How do we have trust in a system that operates without oversight and inherent security? Trust and bias in artificial intelligence (AI) are becoming increasingly important issues as AI systems are being deployed in a variety of settings, including criminal justice, healthcare, and hiring. At the same time, the public's sentiment towards AI is complex, [...]
Using Generative AI for Cybersecurity (Part 1 of 4- workflow classification)
Generative AI, also known as GANs, use deep learning algorithms to generate new data that is similar to a given dataset. This technology has the potential to revolutionize the way we approach creating content, policies, and strategies for organizations. This has historically been the domain of knowledge workers, as it requires a deep understanding of [...]
The unspoken truth of Ransomware payouts in Canada
Canadians pay more often for ransomware attacks, and I'll try to explain why I suspect that is.There are a few key parts to a ransomware attack that I'm going to break down first: Initial access TTPs Ransom request Payouts 1) Initial access This is done via a number of ways called threat vectors. Phishing, social [...]
2022 is counting down to a massive surge in Cyber Attacks – How to mitigate attack impact before the holidays
2022 has been a record year for cyber attacks and the economic fallout from cyber crime. However, the year is far from over despite being at 93% complete. The next few weeks will see a massive surge over the holidays as organizations go into change freezes and staff numbers are dwindled. This is the perfect [...]
Bill C-26 (ARCS) and what it means for Cybersecurity in Canada – Part 4 (Transportation Systems)
June 2022 was when the first reading of Bill C-26 was done in parliament. The full title of the Bill is: “Act Respecting Cyber Security, amending the Telecommunications Act and making consequential amendments to other Acts”. Bill C-26 can also be called “ARCS” for short. If you want to dig into the actual wording on [...]
The Canadian Centre for Cyber Security recently released the National Cyber Threat Assessment for 2023-2024
The Canadian Centre for Cyber Security (also known as Cyber Centre) is Canada’s technical authority on cyber security. Part of the Communications Security Establishment (CSE), they are a single unified source of expert advice, guidance, services and support on cyber security for Canadians and Canadian organizations. The Cyber Centre works in close collaboration with Government [...]
Bill C-26 (ARCS) and what it means for Cybersecurity in Canada – Part 3 (Energy Sector)
June 2022 was when the first reading of Bill C-26 was done in parliament. The full title of the Bill is: “Act Respecting Cyber Security, amending the Telecommunications Act and making consequential amendments to other Acts”. Bill C-26 can also be called “ARCS” for short. If you want to dig into the actual wording on [...]