Welcome to the first Threat Show of 2023! This week’s special guest is Kathy Wang, a technology and business executive and the CSO of Discord. Kathy has worked in a variety of roles in her 20+ years in the InfoSec and business fields, from security scientist, to CISO, to cofounder, investor, and more.
She gives advice for new and aspiring security leaders, talks about what early stage companies need to do to build their security infrastructure, and how to ensure that you have a diverse team. The team also discusses four major threats you need to know about.
Microsoft Reclassifies SPNEGO Extended Negotiation Security Vulnerability as 'Critical' (01:57)
A medium/high threat vulnerability disclosed by Microsoft in September has had its severity level increase. It turns out it could be a wormable threat. This vulnerability impacts a wide range of protocols and could allow for hackers to remotely execute code.
New Actively Exploited 0-Day Vulnerability Discovered in Apple Products (05:34)
Apple announced their 10th zero-day vulnerability of the year, with this vulnerability revolving around WebKit. If you visit a website affected by the vulnerability, an attacker can remotely execute malicious code.
VMware Patches VM Escape Flaw Exploited at Geekpwn Event (08:56)
A Chinese Pwn2Own organization called Geekpwn has discovered a VM breakout within the VMware platform. If you have admin level access to any code running inside of VM, that can trigger this vulnerability to break out and start running code at the hypervisor level. At that point attackers are essentially in control of every virtual machine that the hypervisor is in control of.
I Solemnly Swear My Driver Is Up to No Good: Hunting for Attestation Signed Malware (13:09)
Signed malware is being used to bypass binary authorization controls. This was discovered by Mandient and further investigation shows an emerging ecosystem of dark web services offering compromised certificates.
Interview With Kathy Wang (19:07)
Kathy gives advice for new and aspiring security leaders, talks about what early stage companies need to do to build their security infrastructure, and gives her perspective on how to build a diverse team.
