Best Katie Moussouris Podcasts (2024)

1
Cris Neckar on the early days of securing Chrome, chasing browser exploits 54:36

7d ago54:36

54:36

Episode sponsors: Binarly, the supply chain security experts (https://binarly.io) XZ.fail backdoor detector (https://xz.fail) Cris Neckar is a veteran security researcher now working as a partner at Two Bear Capital. In this episode, he reminisces on the early days of hacking at Neohapsis, his time on the Google Chrome security team, shenanigans at…

1
Costin Raiu joins the XZ Utils backdoor investigation 51:33

13d ago51:33

51:33

Episode sponsors: Binarly, the supply chain security experts (https://binarly.io) XZ.fail backdoor detector (https://xz.fail) Malware paleontologist Costin Raiu returns for an emergency episode on the XZ Utils software supply chain backdoor. We dig into the timeline of the attack, the characteristics of the backdoor, affected Linux distributions, a…

1
Fireside Chat: Abhishek Arya, Head of Google's Open Source Security Team 31:33

23d ago31:33

31:33

In this exclusive fireside chat, SecurityWeek editor-at-large Ryan Naraine interviews Abhishek Arya, Director of Engineering on Google’s open source and supply chain security teams. We cover the evolving landscape of Software Supply Chain security, highlighting key advancements, challenges, research priorities, and much more. Session recoredef for …

1
Palo Alto Networks Talks IT/OT Convergence 20:58

3M ago20:58

20:58

In this episode, SecurityWeek editor-at-large Ryan Naraine interviews Del Rodillas, Senior Director of Product Management at Palo Alto Networks, about the integration of IT and OT in the ICS threat landscape. We discuss the evolution of cyber resilience, the challenges of merging IT and OT governance structures, process integrations for IT/OT secur…

1
Katie Moussouris on building a different cybersecurity businesses 29:50

3M ago29:50

29:50

Episode sponsors: Binarly, the supply chain security experts (https://binarly.io) FwHunt (https://fwhunt.run) Katie Moussouris founded Luta Security in 2016 and bootstrapped it into a profitable business with a culture of equity and healthy boundaries. She is a pioneer in the world of bug bounties and vulnerability disclosure and serves in multiple…

1
Costin Raiu: The GReAT exit interview 1:32:13

3M ago1:32:13

1:32:13

Episode sponsors: Binarly, the supply chain security experts (https://binarly.io) FwHunt (https://fwhunt.run) Costin Raiu has spent a lifetime in anti-malware research, working on some of the biggest nation-state APT cases in history, including Stuxnet, Duqu, Equation Group, Red October, Turla and Lazarus. In this exit interview, Costin digs into w…

1
Danny Adamitis on an 'unkillable' router botnet used by Chinese .gov hackers 34:07

4M ago34:07

34:07

Episode sponsors: Binarly, the supply chain security experts (https://binarly.io) FwHunt (https://fwhunt.run) Danny Adamitis is a principal information security engineer at Black Lotus Labs, the threat research division within Lumen Technologies. On this episode of the show, we discuss his team's recent discovery of an impossible-to-kill botnet pac…

1
Allison Miller talks about CISO life, protecting identities at scale 38:12

4M ago38:12

38:12

Episode sponsors: Binarly, the supply chain security experts (https://binarly.io) FwHunt (https://fwhunt.run) Allison Miller is founder and CEO of Cartomancy Labs and former CISO and VP of Trust at Reddit. She has spent the past 20 years scaling teams and technology at Bank of America, Google, Electronic Arts, PayPal/eBay, and Visa International. I…

1
Rob Ragan on the excitement of AI solving security problems 51:16

5M ago51:16

51:16

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Rob Ragan, principal architect and security strategist at Bishop Fox, joins the show to share insights on scaling pen testing, the emergence of bug bounty programs, the value of attack surface management, and the role of AI in cybersecurity. We dig into the importance of pro…

1
Seth Spergel on venture capital bets in cybersecurity 28:56

5M ago28:56

28:56

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Seth Spergel is managing partner at Merlin Ventures, where he is responsible for identifying cutting-edge companies for Merlin to partner with and invest in. In this episode, Seth talks about helping startups target US federal markets, the current state of deal sizes and val…

1
Fireside Chat With Former Netflix Security Chief, Jason Chan 33:19

5M ago33:19

33:19

Enjoy this fireside chat with Jason Chan, former head of information security at Netflix and operating advisor, Bessemer Venture Partners. Jason joins SecurityWeek editor-at-large Ryan Naraine for a frank discussion on the state of vulnerability management and software development, multi-cloud deployments and expanding attack surfaces, the cyber st…

1
Dan Lorenc on fixing the 'crappy' CVE ecosystem 41:45

5M ago41:45

41:45

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Dan Lorenc is CEO and co-founder of Chainguard, a company that raised $116 million in less than two years to tackle open source supply chain security problems. In this episode, Dan joins Ryan to chat about the demands of building a "growth mode" startup, massive funding roun…

1
Cisco Talos researcher Nick Biasini on chasing APTs, mercenary hackers 31:27

6M ago31:27

31:27

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Nick Biasini has been working in information security for nearly two decades. In his current role as head of outreach for Cisco Talos Intelligence Group, he leads a team of threat researchers tasked with tracking nation-state APTs, mercenary hacker groups and ransomware cybe…

1
Allison Nixon on disturbing elements in cybercriminal ecosystem 48:39

6M ago48:39

48:39

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Allison Nixon is Chief Researcher at Unit 221B and a trailblazer in the world of cybercrime research. In this episode, we deep-drive into the shadowy dynamics of underground criminal communities, high-profile ransomware attacks, teenage hacking groups breaking into big compa…

1
Dakota Cary on China's weaponization of software vulnerabilities 55:48

7M ago55:48

55:48

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Dakota Cary is a nonresident fellow at the Atlantic Council’s Global China Hub, conducting research on China’s efforts to develop its hacking capabilities, artificial-intelligence and cybersecurity research at Chinese universities, the People’s Liberation Army’s efforts to a…

1
Abhishek Arya on Google's AI cybersecurity experiments 33:27

8M ago33:27

33:27

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Abhishek Arya is director of engineering at Google, overseeing open source and supply chain security efforts that include OSS-Fuzz, SLSA, GUAC and OSV DB. In this episode, Arya talks about some early success experimenting with AI and LLMs on fuzzing and vulnerability managem…

1
Dr Sergey Bratus on the 'citizen science' of hacking 40:02

8M ago40:02

40:02

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Dr Sergey Bratus is a Research Associate Professor of Computer Science at Dartmouth College and a program manager at DARPA. In this episode, he discusses his pioneering work on securing parsers and patching long-forgotten devices. He also puts the AI hype into context and sh…

1
DARPA's Perri Adams on CTF hacking, new $20M AI Cyber Challenge 26:47

8M ago26:47

26:47

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) DARPA program manager Perri Adams joins the conversation to chat about her love for CTF hacking competitions, the hunt for leapfrog security technologies in DARPA’s Information Innovation Office (I2O), and the goal of the new AI Cyber Challenge (AIxCC) offering $20 million i…

1
Ryan Hurst on tech innovation and unsolved problems in security 42:24

8M ago42:24

42:24

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Peculiar Ventures chief executive Ryan Hurst joins the show to talk about a career that spanned 20 years at Microsoft and Google, his work building the plumbing for encryption on the web, unsolved problems in BGP security, the hype and promise of AI, and Microsoft's ongoing …

1
Jason Chan on Microsoft's security problems, layoffs and startups 27:07

9M ago27:07

27:07

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Bessemer Venture Partner's Jason Chan returns to the show for a frank discussion on the state of cyber, including thoughts on Microsoft's prominent security failures, the meaning of layoffs hitting security teams, the excitement around AI, and the long road ahead. The former…

1
GitHub security chief Mike Hanley on secure coding, AI and SBOMs 40:29

9M ago40:29

40:29

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) GitHub security chief Mike Hanley joins the show to discuss merging the CSO and SVP/Engineering roles, securing data and code in an organization under constant attack, the thrilling promise of AI to the future of secure code, the dangers of equating SBOMs to supply chain sec…

1
Jason Shockey, Chief Information Security Officer, Cenlar FSB 33:47

9M ago33:47

33:47

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Cenlar FSB security chief Jason Shockey joins the show to discuss the task of securing a financial institution, pivoting from a career in the military to the private sector, the current state of the job market, managing risk from APTs, and the mission of his My Cyberpath pro…

1
Federico Kirschbaum on a life in the Argentina hacking scene 42:01

9M ago42:01

42:01

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Faraday chief executive Federico 'Fede' Kirschbaum joins the show to talk about building a startup in the vulnerability management space, the intricacies of the Argentinian hacking culture, stories of exploit writers and mercenary hackers, and the overwhelming U.S.-centric v…

1
Kymberlee Price reflects on life at the MSRC, hacker/vendor engagement, bug bounties 48:38

10M ago48:38

48:38

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Product security executive Kymberlee Price joins the show to gab about life in the trenches at the Microsoft Security Response Center (MSRC), the challenges of maintaining healthy hacker/vendor relationships, the harsh realities of bug-bounty programs, and thoughts on the cy…

1
OpenSSF GM Omkhar Arasaratnam on open-source software security 36:11

10M ago36:11

36:11

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) New General Manager of the Open Source Security Foundation (OpenSSF) Omkhar Arasaratnam joins Ryan for a candid conversation on the challenges surrounding open-source software security, lessons from the Log4j crisis, the value of SBOMs, and the U.S. government efforts at sec…

1
Serial entrepreneur Rishi Bhargava on building another cybersecurity company 32:32

1y ago32:32

32:32

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Rishi Bhargava and the team of entrepreneurs behind Demisto’s $560 million exit are back at it with a new startup building technology in the customer identity market. The new company, called Descope, raised an abnormally large $53 million seed-stage funding round with ambiti…

1
Claude Mandy on CISO priorities, data security principles 35:02

1y ago35:02

35:02

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Symmetry Systems executive Claude Mandy joins the show to discuss a career in the security trenches, life as a CISO during the WannaCry crisis, and first principles around data security. We dig into the emerging Data Security Posture Management (DSPM) category and how it ext…

1
Sidra Ahmed Lefort dishes on VC investments and cyber uncertainties 31:00

1y ago31:00

31:00

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Munich Re Ventures investment principal Sidra Ahmed Lefort joins Ryan Naraine for a frank discussion on the state of VC funding in cybersecurity, the rise (and coming correction) in the land of security 'unicorns', the massive early-stage funding rounds and what they mean, l…

1
Paul Roberts on wins and losses in the 'right to repair' battle 47:32

1+ y ago47:32

47:32

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) SecuRepairs.org co-founder Paul Roberts joins the show to discuss his passion for the right to repair consumer electronic devices, the big-ticket lobbyists working to undermine the movement, and how changing consumer spending patterns are helping to rack up regulatory wins. …

1
Katie Moussouris on where bug bounties went wrong 33:18

1+ y ago33:18

33:18

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Luta Security founder and chief executive Katie Moussouris joins the show to dish on the bug-bounty ecosystem, the abuse of hacker labor, and the common mistakes made by even the most mature security programs. A security industry pioneer, Moussouris argues for better use of …

1
Fireside Chat With Steve Mancini, Guardant Health 32:02

1+ y ago32:02

32:02

In this interview from SecurityWeek's 2022 Threat Hunting Summit, Steve Mancini, head of Information Security at Guardant Health, discusses his personal mission to help secure healthcare data in the cancer research space and how threat hunting and threat intelligence fits into a modern cybersecurity program. Mancini discusses a career in the cybers…

1
Robinhood CSO Caleb Sima on a career in the security trenches 30:38

1+ y ago30:38

30:38

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Caleb Sima is a cybersecurity lifer now responsible for security at Robinhood, a mobile stock trading platform. Caleb joins Ryan on the show to discuss the early hacking scene in Atlanta, building SPI Dynamics in a webapp security powerhouse, the evolution of attack surfaces…

1
Charlie Miller on hacking iPhones, Macbooks, Jeep and Self-Driving Cars 59:00

1+ y ago59:00

59:00

Episode sponsors: Binarly (https://binarly.io) FwHunt (https://fwhunt.run) Famed hacker Charlie Miller joins Ryan on the podcast to discuss a career in vulnerability research and software exploitation. Charlie talks about hacking iPhones and Macbooks at Pwn2Own, the 'No More Free Bugs' campaign, the Jeep hack that led to a recall and his current wo…

1
JAG-S on big-game malware hunting and a very mysterious APT 52:40

1+ y ago52:40

52:40

Episode sponsors: Binarly and FwHunt - Protecting devices from emerging firmware and hardware threats using modern artificial intelligence. SentinelLabs malware hunter Juan Andres Guerrero-Saade (JAG-S) returns to the show to discuss how big-game attribution has changed over the years, the nation-state APT landscape, Mudge and the nightmares facing…

1
Chainguard's Dan Lorenc gets real on software supply chain problems 47:07

1+ y ago47:07

47:07

Episode sponsors: Binarly and FwHunt - Protecting devices from emerging firmware and hardware threats using modern artificial intelligence. Dan Lorenc and a team or ex-Googlers raised $55 million in early-stage funding to build technology to secure software supply chains. On this episode of the show, Dan joins Ryan to talk about the different faces…

1
Fireside Chat With Fidelity CISO, Adam Ely 35:04

1+ y ago35:04

35:04

Enjoy this engaging fireside chat on security leadership with Adam Ely, Chief Information Security Officer at Fidelity Investments. At SecurityWeek's 2022 CISO Forum, SecurityWeek's editor-at-large Ryan Naraine hosted a discussion with Adam on the role of the modern CISO, the challenges of building a mature risk management program, communications c…

1
Fireside Chat With Katie Moussouris, Luta Security 31:44

1+ y ago31:44

31:44

In this fireside chat from SecurityWeek's CISO Forum, Luta Security chief executive Katie Moussouris shares lessons from her work creating bug bounty and vulnerability disclosure programs for some of the biggest organizations in the world. Join this session to learn about the value -- and pitfalls -- of bug bounty programs, best practices around ma…

1
Vinnie Liu discusses a life in the offensive security trenches 1:07:34

1+ y ago1:07:34

1:07:34

A conversation with Bishop Fox chief executive Vinnie Liu on the origins and evolution of the pentest services business, the emerging continuous attack surface management space, raising $75m as a 'growth mode' investment, cybersecurity's people problem, and much more... Links: Vinnie Liu on LinkedIn Vinnie Liu at MS BlueHat v8 Anti-Drone Tools Test…

1
Down memory lane with Snort and Sourcefire creator Marty Roesch 1:07:34

1+ y ago1:07:34

1:07:34

Network security pioneer Marty Roesch takes listeners on a trip down memory lane, sharing stories from the creation of Snort back in the 1990s, the startup journey of building Sourcefire into an IDS/IPS powerhouse and selling the company for $2 billion, the U.S. government killing a Check Point acquisition, and his newest adventure as chief executi…

1
Subbu Rama, co-founder and CEO, BalkanID 34:17

2y ago34:17

34:17

Serial entrepreneur Subbu Rama joins the show to talk about building a cybersecurity business, addressing the problem of entitlement sprawl and raising seed funding for intelligent access governance technology. Links: BalkanID Platform Architecture Subbu Rama on LinkedIn Subbu Rama on TwitterBy Ryan Naraine

1
Should CISOs Care About Cyberwarfare? 46:15

2y ago46:15

46:15

For the modern CISO, it's impossible to avoid news headlines and warnings about 'cyberwar' and nation-state APT attacks that require urgent attention. From the latest zero day exploit discovery to advisories from intelligence agencies, security leaders are often overwhelmed and unable to filter through the noise to make informed decisions. In this …

1
Fireside Chat With Shane Huntley, Google Threat Analysis Group (TAG) 28:36

2y ago28:36

28:36

Enjoy this exclusive fireside chat with Shane Huntley, head of Google's TAG (Threat Analysis Group). In this session from SecurityWeek's Threat Intelligence Summit, we have a frank discussion on the science of threat intelligence, the cloudy nature of the APT landscape, the surge in big-game ransomware and nation-state malware activity worth tracki…

1
Project Zero's Maddie Stone on the surge in zero-day discoveries 42:10

2y ago42:10

42:10

Maddie Stone is a security researcher in Google's Project Zero team. Over the last few years, she has publicly tracked the discovery and disclosure of zero-day malware attacks seen in the wild. On this episode, Maddie joins Ryan to chat about three years of zero-day exploitation data, the nuances around 0day disclosures, the never-ending struggle t…

1
Prof. Mohit Tiwari on the future of securing data at scale 46:01

2y ago46:01

46:01

Symmetry Systems co-founder Mohit Tiwari has been studying data security and control flow access for more than a decade. On this episode of the podcast, he discusses his transition from academia to data security entrepreneurship, first principles around the data security and privacy, the exploding DSPM (data security posture management) space, and …

1
News Podcast: Pipedream/Incontroller ICS Malware Designed to Target ICS 12:24

2y ago12:24

12:24

[Breaking News Podcast] Sergio Caltagirone, VP of Threat Intelligence at industrial cybersecurity firm Dragos, discusses the U.S. government's joint advisory on the discovery of rare custom malware known as Pipedream/Incontroller, which is capable of doing damage to ICS/SCADA installations. Follow SecurityWeek on LinkedIn…

1
Google's Shane Huntley on zero-days and the nation-state threat landscape 40:44

2y ago40:44

40:44

Director at Google's Threat Analysis Group (TAG) Shane Huntley joins the show and talks about lessons from the 2009 Aurora attacks, the surge in zero-day discoveries, the usefulness of IOCs, North Korean APT operations, private sector mercenary hackers, the expanding nation-state threat actor map, and much more... Links: Shane Huntley on LinkedIn T…

1
Fireside Chat With McDonald’s CISO Shaun Marion 39:58

2y ago39:58

39:58

In this security leadership fireside chat, McDonald’s CISO Shaun Marion joins SecurityWeek’s Ryan Naraine to discuss the role of the modern CISO, the challenges of building a mature risk management program, securing multi-cloud deployments, supply chain anxieties, and much more. (Source: SecurityWeek’s 2022 Attack Surface Management Summit) Follow …

1
Lamont Orange, CISO, Netskope 26:02

2y ago26:02

26:02

Netskope security chief Lamont Orange joins the show to chat about the changing role of the Chief Information Security Officer (CISO), managing security as a business enabler, the cybersecurity skills shortage, and his own unique approach to security leadership. Links: Lamont Orange: A CISO's Point of View on Log4j Five minutes with Lamont Orange L…

1
Haroon Meer on the business of cybersecurity 1:15:12

2y ago1:15:12

1:15:12

Thinkst founder and CEO Haroon Meer joins Ryan Naraine on the show to talk about building a successful cybersecurity company without venture capital investment, fast-moving attack surfaces and the never-ending battle to mitigate memory corruption issues. Links: Haroon Meer on Twitter Thinkst: We bootstrapped to $11 million in ARR Memory Corruption …

1
Tony Pepper, co-founder and CEO, Egress 19:37

2y ago19:37

19:37

Chief executive officer at Egress Tony Pepper joins the show to talk about entrepreneurship in the fast-paced age of modern computing, the state of e-mail security, and his company's bet on securing the future of messaging in the enterprise. Links: About Egress Tony Pepper on LinkedIn InfoSecurity Interview: Tony Pepper…

Podcasts Worth a Listen

Katie Moussouris Podcasts

Podcasts Worth a Listen

Quick Reference Guide