Blue Security
A podcast for information security defenders (blue team) on best practices, tools, and implementation for enterprise security.
Episodes
On this week's episode, Adam and Andy talk about a ransomware gang making an SEC complaint against their victim, a medical office breach, and AI voice clones. -------------------------------------------
Youtube Video Link: https://youtu.be/iGgp8SurXM8
-------------------------------------------
Documentation:
On this week's episode, Adam and Andy talk about more things on security from Microsoft Ignite. From canary capabilities in MDE to Automatic Conditional Access Policies, there are a TON of really amazing announcements. Tune in to hear the 2nd half of Ignite news!
-------------------------------------------
Youtube Video Link: https://youtu.be/Pl010QG_n5I
-------------------------------------------
Documentation:
On this week's episode, Adam and Andy talk about all the security announcements from Microsoft Ignite 2023. There were SO many that this will be part 1 with another episode being released in the following week. Listen in to some of the amazing advancements with Copilot, generative AI, and security within the Microsoft portfolio!
-------------------------------------------
Youtube Video Link: https://youtu.be/wXIJJhNv-pI
--...
On this week's episode, Andy and Adam talk about the follow up investigation from Okta about their support system breach along with some lessons that listeners can take away. They also talk about passkeys going mainstream and what that means for the future of passwordless.
-------------------------------------------
Youtube Video Link: https://youtu.be/5Cz07OKHAII
-------------------------------------------
Documentation:
On this week's episode, Andy and Adam talk about the SEC charging the Solarwinds CISO with fraud and the implications on the overall security leadership community. They also talk about some questions that came up about backing up and restoring M365 data and a new capability coming out in public preview very soon!
-------------------------------------------
Youtube Video Link: https://youtu.be/1FIZOQMXZBg
----------------------...
On this week's episode, Andy and Adam talk about the 23andMe and Okta breach that happened recently along with some recommendations on how organizations can try and prevent similar attacks in the future. They also talk about a revolutionary new feature in Microsoft Defender for Endpoint called Automatic Attack Disruption. They talk about how it works and how organizations can take advantage of it even if MDE is not your incumbe...
On this week's episode, Andy and Adam talk about some new features with Entra Web Sign-in and Microsoft Defender for Endpoint Device Control. They also talk about what every infosec professional goes through: imposter syndrome.
-------------------------------------------
Youtube Video Link: https://youtu.be/AiU8tjl_oPA
-------------------------------------------
Documentation:
On this week's episode, Andy and Adam talk about how to think about your conditional access policy design to avoid some common gaps that attackers can take advantage of.
-------------------------------------------
Youtube Video Link: https://youtu.be/ULO9oRqJaV4
-------------------------------------------
Documentation:
https://danielchronlund.com/2022/01/07/the-attackers-guide-to-azure-ad-conditional-access/
On this week's episode, Andy and Adam talk about a fun Twitter/X thread where cybersecurity professionals expressed some "unpopular opinions."
-------------------------------------------
Youtube Video Link: https://youtu.be/qEV3zbskXX8
-------------------------------------------
Documentation:
https://x.com/merill/status/1700615539452965327?s=20
On this week's episode, Andy and Adam talk about Johnson Controls' ransomware attack and some implications on national security. They also talk about some lessons learned from ransomware negotiations and CISA's new campaign, Secure Your World.
-------------------------------------------
Youtube Video Link: https://youtu.be/bslx3jol8tg
-------------------------------------------
Documentation:
On this week's episode, Andy and Adam talk about the results of the MITRE Engenuity ATT&CK Evaluations and how to interpret them. They also talk about the rising costs of insider risk and some things you can do to combat insider risk.
-------------------------------------------
Youtube Video Link: https://youtu.be/FF1ZD73X5nA
-------------------------------------------
Documentation:
On this week's episode, Andy and Adam talk about the security incident impacting MGM Resorts. They discuss the attack vector of social engineering and ways that you can help protect your helpdesk and users from this type of attack.
-------------------------------------------
Youtube Video Link: https://youtu.be/2UvrVA7u4VA
-------------------------------------------
Documentation:
On this week's episode, Andy and Adam talk about Apple's no-click zero day, the technical findings of the follow up investigation on Storm-0558, and the new Microsoft Conditional Access Dashboard and Templates.
-------------------------------------------
Youtube Video Link: https://youtu.be/BmHqNkQQx8I
-------------------------------------------
Documentation:
https://citizenlab.ca/2023/09/blastpass-nso-group-iphone-zero-c...
On this week's episode, Andy and Adam talk about data security in Microsoft 365. They talk about data discovery, data classification, and some of the tools like sensitivity and retention labels to help keep your data security within M365.
-------------------------------------------
Youtube Video Link: https://youtu.be/rZErX9s03zM
-------------------------------------------
Documentation:
On this week's episode, Andy and Adam catch up some worthy infosec news including a new side channel attack, the White House cybersecurity workforce plan, and IBM's Cost of a Data Breach report.
-------------------------------------------
Youtube Video Link: https://youtu.be/CkQ19CGiEeE
-------------------------------------------
Documentation:
https://www.bleepingcomputer.com/news/security/new-acoustic-attack-steals...
On this week's episode, Andy and Adam talk with Michael Belton and Dave Falkenstein from 23p, a Madison, Wisconsin based red-teaming company about pentesting, purple teaming, and start out in red-teaming.
-------------------------------------------
Youtube Video Link: https://youtu.be/msWQ0mH-fUQ
-------------------------------------------
Documentation:
On this week's episode, Andy and Adam talk about securing Entra external identities. They talk about B2B and B2C as well as a few other lesser known features of external identities like direct connect and multi-tenant synchronization.
-------------------------------------------
Youtube Video Link: https://youtu.be/V1_RIGQKUYI
-------------------------------------------
Documentation:
On this week's episode, Andy and Adam welcome guest Howard Friedman of Ascent Solutions to the program. Howard helps educate our audience of security defenders on the why, when, and how to engage with partners.
-------------------------------------------
Youtube Video Link: https://youtu.be/Q3GgxefbbnQ
-------------------------------------------
Documentation:
On this week's episode, Adam and Andy talk about some new SEC and FCC rules as well as some news on Samsung device security.
-------------------------------------------
Youtube Video Link: https://youtu.be/_N7WBSuDW9s
-------------------------------------------
Documentation:
https://www.sec.gov/news/press-release/2023-139https://www.theverge.com/2023/7/11/23791183/fcc-sim-swapping-port-out-phone-hijacking-security-prot...
On this week's episode, Adam and Andy follow up on Storm-0558 and how Microsoft is expanding cloud logging as a result of the threat actor. They also chat about Threads, Meta's new Twitter clone, and some new Entra features that will help orgs be more secure.
-------------------------------------------
Youtube Video Link: https://youtu.be/6NGvpcxrWC0
-------------------------------------------
Documentation: https://www.mic...
Popular Podcasts
Current and classic episodes, featuring compelling true-crime mysteries, powerful documentaries and in-depth investigations.
If you can never get enough true crime... Congratulations, you’ve found your people.
He’s a former Secret Service Agent, former NYPD officer, and New York Times best-selling author. Join Dan Bongino each weekday as he tackles the hottest political issues, debunking both liberal and Republican establishment rhetoric.
If you've ever wanted to know about champagne, satanism, the Stonewall Uprising, chaos theory, LSD, El Nino, true crime and Rosa Parks, then look no further. Josh and Chuck have you covered.
Listen to 'The Bobby Bones Show' by downloading the daily full replay.