Upcoming Episode
Join us for an unmissable episode of Wait Just an Infosec, as host Jerich Beason explores the transformative impact of AI on cybersecurity leadership and strategy. In the first of a three-part series focusing on the pain points that modern CISOs deal with, we dive deep into the world of Artificial Intelligence in cybersecurity with our distinguished guest, Gatha Sadhir, CISO of Carnival Corporation.
Discover how top industry leaders are integrating AI into their frameworks, addressing the rapid changes in the tech landscape, and preparing their teams for the future. From tackling the generative AI revolution to strategizing for cybersecurity skills growth, this conversation sheds light on the critical issues at the intersection of AI and cybersecurity.
Latest Episode
In March, Andres Freund, a developer working at Microsoft, found a sophisticated backdoor in xz-utils, a popular compression library. The backdoor was not only sophisticated from a technical point of view, but the threat actor had clearly prepared extensively, using social engineering to sneak the code into xz-utils and convince some Linux distributions to consider including it.
In this Wait Just an Infosec episode, SANS Internet Storm Center Handler Bojan Zdrnja will discuss what he learned through reverse engineering the backdoor. He will cover how the backdoor was hidden and what techniques the threat actor used to discourage reverse engineering. We will close by discussing the social engineering tactics observed and the implications for the open-source supply chain at large.
Read more about this vulnerability in the ICS Diary.
Episodes
Trusted Quality and Community
Join the Community
SANS Community membership grants you access to thousands of free content-rich resources, summits, and community CTF events to enhance your skills and level up. These resources are produced by SANS instructors and are updated continuously to include immediately useful knowledge and capabilities to support your cybersecurity goals.