CyberTalk: The Security Update

Welcome to a video series intended to raise awareness of cybersecurity issues beyond what is simply in the latest newsfeed.

In this series, Robin Johns and Bill Carter discuss the top Security items that every cyber team needs to know to help keep them aware of what is happening in the wider security space, and more importantly, how Cato helps keep you protected.

In today's episode, we discuss the following topics:

1. Meta's New Framework - Chain,chain chain....
   • Meta has proposed a new 10-step kill chain model that they feel more adequately addresses online threats. What are the gaps in your current security stack, and how does Cato keep you secured?
2. FIFA 2022 - Phishing for the Cup
   • Phishing attempts targeting middle eastern countries have more than doubled leading up to the World Cup in Qatar. How can Cato keep you protected against phishing attacks?
3. Twitter Bloatware - SSO what?
   • SMS-based multi-factor authentication using OAUTH to Twitter is no longer functioning correctly since they began removing attached microservices characterized now as "bloatware". What is the impact of authentication and authorization as part of your overall security posture?
4. AXLocker Dual Threat - Sowing Discord
   
   • In addition to AES-encrypting files with certain extensions, the AXLocker ransomware steals and exfiltrates ID tokens via Discord from the local system using a webhook URL. Is personal use of work assets a concern for you?

Watch it here: