2 weeks ago, I gave a presentation on building a security program as a startup at Venture Cafe’s weekly get-together. I’m not gonna lie, it was a bit intimidating to follow people that are making tasty char siew bahn mi but nevertheless, I persevered. I had 2 goals for the presentation: Provide a map forContinue reading “Presentation Video: Security for Startups”
Author Archives: rybolov
Blue Team Googledorks: Online Account Checkers
Building on the concepts from our Account Checker Tutorial, a logical next step is to broaden our search to uncover other software tools and the communities that develop and use them. You’ll find numerous websites offering tools, ranging from direct downloads to Software-as-a-Service (SaaS) models for basic functionalities. Mastering the ability to locate these sitesContinue reading “Blue Team Googledorks: Online Account Checkers”
Blue Team Googledorks: Account Checker Tutorials
There is an activity called “Credential Stuffing that is very, very common for website owners to see. It starts with a list of usernames and passwords that you got from a data breach, phishing, trading with others, or buying on the Dark Web. You then put the list into a tool like MBA Sentry thatContinue reading “Blue Team Googledorks: Account Checker Tutorials”
New Blog Section: Blue Team Googledorks
Introduction to Googledorking Googledorking is the act of using Google advanced search operators in order to more finely tailor your searches. It’s good for general-purpose searches but where it really shines is when you start to use it in security operations in addition to other Cyber Threat Intelligence (CTI) activities and collection. Googledorking is aContinue reading “New Blog Section: Blue Team Googledorks”
Building a CSIRT or Security Research Team for Startups
One topic that I’ve had several conversations on over the past week with several cybersecurity startups is why they should create a Computer Security Incident Response Team (CSIRT), Computer Emergency Response Team (CERT), or threat research team and how to fund, build, and run the team. TL;DR: I’m a huge champion of building a CSIRTContinue reading “Building a CSIRT or Security Research Team for Startups”
Biases of Customer Base in Cyber Threat Intelligence
Let’s start with a little bit of background. I was a translator (Russian, some Serbian) in the US Army and worked in the intelligence field from when I was 18 until I was 25 and this rewired my brain somewhat. From late 2012 to early 2015, I ran Akamai’s Customer Security Incident Response Team (CSIRT)Continue reading “Biases of Customer Base in Cyber Threat Intelligence”
Video: Information Security Programs for Startups
In this video, we will take a deep dive into the high-level philosophy behind what effective information security programs for startups should look like. We’ll cover several key areas to give you a comprehensive understanding: 3 Types of Security Programs: We’ll start by defining and exploring the three primary categories of security programs: those builtContinue reading “Video: Information Security Programs for Startups”
Why do CISOs Hate Their Vendors?
One thing a friend of mine told me several years ago that has resonated in my head for over 5 years. He ran back-to-back events: one for CIOs and one for CISOs. He noticed that the CIOs love their vendors because they know that they can’t get their job done without them. They might fightContinue reading “Why do CISOs Hate Their Vendors?”
Security Vendors: During a Crisis, be an Ambulance Driver
For the past 10 years, I’ve been working with a security vendor in support of account teams. It’s a fact of life that customers and prospects have security incidents or crisis that they have to deal with and that your company can solve (fully or partially) for them. I’ve joined numerous sales calls related toContinue reading “Security Vendors: During a Crisis, be an Ambulance Driver”
Infosec “Breach Shaming”
As a mentor for 2 different incubator programs, I’ve been seeing and evaluating a lot of pitches this week and last. Office hours and demo day for ICE71. Mentor matching for MassChallenge. And then the past 20+ years of being pitched to by security vendors. And there is one thing that I want to address.Continue reading “Infosec “Breach Shaming””