SilverLining Episode 37: Software Package Dependencies Attacks

Episode 37 April 13, 2021 00:27:16
SilverLining Episode 37: Software Package Dependencies Attacks
SilverLining IL
SilverLining Episode 37: Software Package Dependencies Attacks
/

Hosted By

Moshe Ferber Ariel Munafo

Show Notes

Attendees

Guest: Tzachi Zornstain

Guest Title: Co-Founder & CEO, Dustico

Topic: Software Package Dependencies Attacks

Abstract

Supply chain and software dependencies attacks are becoming more popular, and organizations are having a hard time coping with those types of vectors. In this episode, we spoke with Tzach Zornstain, Co-Founder at Dustico, about the difference between malicious software and vulnerable software, and how organizations should use 3rd party software for the development of their own applications securely.

Other Episodes

Episode 40

July 21, 2021 00:22:55
Episode Cover

SilverLining Episode 40: Protecting SaaS services using automation & continuous monitoring

Guest: Adam Gavish Guest Title: Co-Founder and CEO, DoControl.io Topic: Protecting SaaS services using automation & continuous monitoring Abstract: SaaS services are blooming and organizations are adopting more and more of them. In this episode, we hosted Adam Gavish, co-founder, and CEO at DoControl - an innovative startup that is reshaping the way we govern and monitor SaaS applications -  about the business case of SaaS services, the market gaps, and how organizations should catalog, protect and monitor their SaaS portfolio. ...

Listen

Episode 45

January 26, 2022 00:42:16
Episode Cover

SilverLining Episode 45: Incident response at scale

Guest: Omri Segev Moyal Guest title: Co-Founder and CEO at Profero Language: English   Abstract Incident response and forensics of cloud breaches is one of the most challenging topics in Information security. In this episode, (recording date Aug 2021) Omri Segev Moyal, co-founder & CEO at Profero, shares fascinating stories regarding recent incidents his team was involved in and provides insights, recommendations and best practices that are really eye opening for any organization out there.    ...

Listen

Episode 16

February 12, 2020 00:56:21
Episode Cover

Episode 16: Merging Cloud Based Startup Into Financial Giants

Attendees Guest: Ori Troyna Guest title: Global head of product security at Payu Company: Payu Abstract Payu, a global fintech gaint acquired Zooz , a small payment startup.  In this episode we talk with Ori Troyna, Global head of product security at Payu about the challenges that such a merger between two very different companies with different engineering methodologies and how they cope with those challenges. Timing: 1.14 Ori introduce himself 11.40 challenges of merging small companies into financial giants. Integrating different technologies stacks into one.   18.33 how to build the organizational structure the consolidate the different companies and technology stacks  21.30 understanding the acquisition considerations of PayU and its effect on security considerations   27.0 solving the consolidation challenges - the people angel. Moving to tribes and clans and providing security goals  34.30 the difference between product security and IT security   36.0 solving the consolidation challenges - the process angel. How to integrate different tribes and clans to create one joint development backlog and mature devops   46.40 solving the consolidation challenges - the technology angel. Building global infrastructure that support multiple projects  53.22 summary and last words ...

Listen