The Weekly Run-Down 4/15–19

Published in

The Weekly Run Down

5 min readApr 29, 2024

**Please note, some links in this article may lead to affiliate products or services. Clicking and purchasing through these links supports our podcast at no additional cost to you. We thank you for your support.

Welcome to this week’s edition of “The Weekly Run-Down”, where we unravel the complexities of digital defense through deep dives into personal journeys, evolving roles, and the relentless dynamics of cyber threats. Each story highlights a unique aspect of the cybersecurity realm, catering to a diverse audience ranging from aspiring professionals to seasoned C-suite executives.

Welcome to the Wasteland

Greetings Vault Dwellers, Ghouls, and Knights of the Brotherhood of Steel

Video game adaptations have historically struggled to capture the essence of their source material, often setting a low bar for success — 1993’s “Super Mario Bros. movie,” I’m looking at you. But the tide has turned in recent years, marked by successes such as “The Last of Us” on Max and the 2023 “Super Mario Bros. Movie.” Joining these ranks is the “Fallout” TV series on Amazon Prime, which, frankly, is so captivating that I binged the first five episodes last Friday and finished the series the next day. Like the renaissance comic book fans experienced with Marvel’s early cinematic universe, gamers are now enjoying a similar golden era. “Fallout” dives deep into its rich lore, making it a hit with fans and newcomers alike. Even if you’ve never played the games, I highly recommend giving “Fallout” a watch. You can thank me later.

Friday — The Weekly Run-Down 4/19/24

This week’s episode of “Weekly Run-Down” reconnects us with the past while steering us towards future cybersecurity innovations. Ryan Williams Sr. introduces Daniel Acevedo, CISSP, CEH, Six Sigma, an old teammate of Shannon and his from Langley Air Force Base, reflecting on how their military experiences laid a foundation for their cybersecurity careers. Daniel’s unexpected shift from marketing to cybersecurity during the 2008 economic crisis underscores the field’s dynamic nature and its ability to transform challenges into opportunities. The trio’s discussion extends into current cybersecurity trends, emphasizing the importance of continual learning and adaptation in the face of evolving digital threats.

Thursday — The Evolving Role of CISO, Amazing GRC Tools, & The Proper Use of AI In Compliance

“Ask A CISSP” hosts Kayne McGladrey, Field CISO at Hyperproof, who provides insights into the increasing sophistication of cyber threats and the transformative tools combating them. Kayne discusses the pivotal role of human elements in cybersecurity, the need for more inclusive pathways into the field, and the significant impact of Governance, Risk, and Compliance (GRC) processes on organizational security. He also touches upon the critical evolution of the CISO role, necessary for managing the complexities of modern cybersecurity threats effectively.

Wednesday — Double-Dipping On UnitedHealth Cyberattack

A continuation of the UnitedHealth Group ransom saga unfolds as a second ransomware group, RansomHub, enters the fray, demanding a ransom to prevent the sale of stolen data. This episode sheds light on the chaotic and treacherous nature of cybercrime, where even criminals face betrayals and conflicts. The UnitedHealth case exemplifies the critical need for robust cybersecurity measures and the importance of strategic and ethical decision-making in managing cyber incidents.

Tuesday — Government Consulting Firm Leaks 340K SSNs

A significant breach at Greylock McKinnon Associates (GMA) highlights the vulnerabilities in handling sensitive information. The breach exposed hundreds of thousands of Social Security numbers, sparking a discussion on the necessity of stringent cybersecurity practices and the ethical responsibilities of timely communication with those affected. This incident serves as a stark reminder of the continuous need for vigilance and proactive security measures in protecting personal and corporate data.

Monday — Roku Accounts Compromised in Cyber Attack

The week started with an analysis of a credential stuffing attack affecting 576,000 Roku accounts, emphasizing the critical importance of cybersecurity hygiene. The breach discussion highlighted Roku’s strategic responses, including the implementation of two-factor authentication and the broader implications for digital security practices across industries.

Chelsea Pierre — Founder of Blerds Leading Technology & Pierre’s TechHeads, Inc

Looking ahead, Chelsea Pierre, Founder of Blerds Leading Technology, Inc. (BLT) & Pierre’s TechHeads, Inc returns to the podcast to share details about her new initiatives, as well as, her upcoming class, “The Technical Edge: Essential Skills for Cybersecurity Beginners” hosted by Computer Coach IT Training. Make sure you sign up to learn the key skills needed to kickstart your cybersecurity journey on Friday, 5/17/2024 at 10am EST. The event is FREE but you’ll be walking away with priceless information. Hit the link below and share with a friend!

Learn the key skills needed to kickstart your cybersecurity journey at “The Technical Edge” event!

Chelsea’s Previous Episodes

Each story this week not only informs but also challenges us to rethink our strategies and approaches in the fast-paced world of cybersecurity. Stay engaged, stay informed, and let’s continue to fortify our defenses against the ever-growing spectrum of cyber threats.

Thank you for reading and stay tuned for more episodes of The Other Side of the Firewall podcast on Monday, Tuesday, Wednesday, and Fridays, as well as, the Ask A CISSP podcast every Thursday.

Stay safe, stay secure!

Upcoming Courses at Ellington Cyber Academy

Kenneth Ellington, Cyber Security Instructor’s, Ellington Cyber Academy (ECA), is set to launch a series of new courses. Among the most anticipated offerings are “The Cyber Career Boost Program” and “SIEM Analyst Foundations with Splunk” courses.

Make sure to use the promo code ASKACISSP to receive your 15% discount.

The Cyber Career Boost Program

A gateway for those new to cybersecurity, this program focuses on SIEM fundamentals with an approach grounded in practical application. Participants will benefit from:

Hands-on Experience: Detailed coursework based on realistic SIEM practitioner situations.
Guided Mentorship: Instructor-led troubleshooting and career guidance sessions.
An exclusive community: Access to a network of fellow Splunk professionals.

SIEM Analyst Foundations with Splunk

Hands-on Experience: Engage in realistic scenarios and projects that mirror the challenges faced by SIEM practitioners, enhancing understanding and skills in real-world contexts.
Real-World Projects: Tackle assignments that can be added to your professional portfolio, showcasing your expertise to potential employers or clients.
Industry-Leading Technologies: Gain access to and build with some of the most advanced technology stacks in the industry, preparing you for the demands of the cybersecurity field.