On todays episode: I'll be talking with Ermis Catevatis, who is an offensive security professional, with a background in red teaming, physical penetration testing and software development. We'll be talking about a new platform that he developed to help upskill red teams, and provide organizations with capabilities to test their internal security posture against new [...]
On todays episode: I'll be talking with Lucas Black, who is a CISSP and Principle Security Solution Architect at CDW Canada. We'll be talking about the evolution of cyber insurance, the challenges that organizations face due to the changing threat landscape, and the priorities that need to be focused on for 2023 and beyond. https://youtu.be/sPhMhuegXUo [...]
On todays episode: I'll be talking with Junior Williams, who is a CISSP, advisory board member of ElCanHack, and the Director of Cyber Risk at MIS3, We'll be talking about the disparity between the number of cybersecurity professionals in the industry and the number of vacant positions in the market. https://www.youtube.com/watch?v=JvK3bUYgKz0 https://open.spotify.com/episode/66wYkBNCgvH8tTRIpX1cBb Below is the [...]
How do we have trust in a system that operates without oversight and inherent security? Trust and bias in artificial intelligence (AI) are becoming increasingly important issues as AI systems are being deployed in a variety of settings, including criminal justice, healthcare, and hiring. At the same time, the public's sentiment towards AI is complex, [...]
Canadians pay more often for ransomware attacks, and I'll try to explain why I suspect that is.There are a few key parts to a ransomware attack that I'm going to break down first: Initial access TTPs Ransom request Payouts 1) Initial access This is done via a number of ways called threat vectors. Phishing, social [...]
The Canadian Centre for Cyber Security (also known as Cyber Centre) is Canada’s technical authority on cyber security. Part of the Communications Security Establishment (CSE), they are a single unified source of expert advice, guidance, services and support on cyber security for Canadians and Canadian organizations. The Cyber Centre works in close collaboration with Government [...]
This is a summary of the document published by the Supply Chain Assurance Working Group (SCAWG), from the Canadian Forum for Digital Infrastructure Resilience (CFDIR). In June of 2022, version 0.1 of the document "Recommendations to Improve the Resilience of Canada’s Digital Supply Chain" was published here. This was created in response to the compromise [...]
Designing Risk in IT Infrastructure 