Risky Biz Podcast

In this episode of  Risky Biz, Airlock Digital’s Daniel Schell talks about his adventures with WDAC, and Dave Cottingham predicts Windows 12 will go all in on signed code.

In this Risky Business episode, Catalin Cimpanu talks with Airlock Digital founders Daniel Schell and David Cottingham about the recent Microsoft Digital Defense Report and the problems that come with trying to properly secure PowerShell.

In this Risky Business episode, we’re going to be talking about a great topic – living off the land.

The recent Volt Typhoon report out of Microsoft chronicled the adventures of a Chinese APT crew in US critical infrastructure. But one of the most fascinating aspects of the Volt Typhoon campaign was that the attackers almost exclusively used so-called "living off the land techniques".

So the question becomes – what can you do about an attacker in your environment who has privilege and isn’t using malware?

Guests David Cottingham and Daniel Schell, the CEO and CTO of Airlock Digital, join the show to talk it through.

Airlock Digital co-founders Daniel Schell and Dave Cottingham join host Patrick Gray to talk about:

• What an effective allowlisting program looks like
• Why the third party allowlisting industry failed the first time
• What you can achieve with Microsoft tooling versus specialist tools
• How much effort is involved to do this right

Airlock Digital co-founders Daniel Schell and Dave Cottingham join host Patrick Gray to talk about:

• What an effective allowlisting program looks like
• Why the third party allowlisting industry failed the first time
• What you can achieve with Microsoft tooling versus specialist tools
• How much effort is involved to do this right

Patrick Gray and Adam Boileau discuss Samsung, LG Android signing keys pinched, LastPass gets owned again, APT41 steal covid relief money, and many other news. Airlock joins host Patrick Gray  to talk about admin to kernel as a security boundary, and the limitations of kernel driver blocklists

In this episode Patrick Gray interviews Airlock Digital CTO Daniel Schell and CEO David Cottingham about Microsoft’s new Smart Application Control feature, why controlling browser extensions via endpoint instrumentation is really hard and why PAM solutions don’t actually do allowlisting, even if they claim they do.

On this episode Patrick Gray and Adam Boileau discuss security news. Airlock Digital co-founder and CTO Daniel Schell gives an interview. He walks listeners through some of his own research into how to own Microsoft boxes via document-embedded office add-ins.