In this episode, Sujit Christy and Nishant Raman discuss the breach that occurred in the work management tool, Trello. They highlight the importance of assuming breach and the need for organizations to defend their networks. The breach in Trello was due to an exposed API, which hackers leveraged to gain…

In this conversation, Sujit and Nishant discuss the recent breach at Okta, an identity service provider. They explore the importance of securing identities within organizations and highlight the key factors that led to the breach. Nishant emphasizes the need to properly manage service accounts, provide training to employees, and follow…

In this conversation, Sujit Christy and Nishant Raman discuss the lessons learned from the major data breaches in 2024. They focus on the breach of 23andMe, a company that collects and processes DNA data. The breach resulted in the unauthorized access of approximately 6.9 million user records. The main takeaway…

In this final episode on platformization, Sujit Christy and Chinthaka Ekanayake discuss the future of platformization in the context of cybersecurity and the industry’s technological shift. They explore the benefits of platformization, the impact on security operations, and the changing roles and skills in the cybersecurity industry. The conversation also…

The conversation delves into the impact of platformization on cybersecurity, highlighting the challenges and advancements in the field. It explores the role of automation, AI, and ML in addressing cybersecurity needs and reducing human fatigue. The discussion emphasizes the importance of platformization in providing context, visibility, and policy enforcement for…

The conversation explores the challenges of platformization, including the adoption of platforms, vendor evaluation, and the impact of mergers and acquisitions. It also discusses the role of startups and the need for continuous due diligence on service providers.

In this final episode on offensive security, the conversation focuses on the evolving landscape of offensive security and the increasing concerns of regulators. The discussion highlights the need for organizations to comply with regulations and protect customer data, especially in the context of supply chain vulnerabilities. The importance of certifications…

In this final episode on offensive security, the conversation focuses on the evolving landscape of offensive security and the increasing concerns of regulators. The discussion highlights the need for organizations to comply with regulations and protect customer data, especially in the context of supply chain vulnerabilities. The importance of certifications…

In this conversation, Sujit and Chathura discuss the evolving threat landscape and the importance of building a resilient organization. They explore the concepts of blue teaming and purple teaming, which involve testing and improving an organization’s security controls. They also highlight the need for collaboration and a holistic approach to…

In this conversation, Sujit Christy and Chathura Abeydeera discuss the importance of viability assessment, penetration testing, and red teaming in offensive security. They highlight the role of organizations, regulators, and accreditation bodies in ensuring ethical behavior and proper testing practices. They also emphasize the need for understanding the different flavors…