Monthly Archives: June 2019

EP26 – CyberArk – Adversary Simulation: The Red Team Is Your Friend – with Shay Nahari

In this 26th episode of the TECHunplugged Podcast we welcome Shay Nahari, Head of Red Team Services at CyberArk. This episode was recorded live at CyberArk Impact in Amsterdam, in May 2019.

Podcast co-hosts Max Mortillaro (@darkkavenger) and Arjan Timmerman (@arjantim) talk with Shay about the CyberArk Red Team activities, adversary simulation services, identifying critical assets and protecting them.

About CyberArk

CyberArk is the global leader in privileged access security, a critical layer of IT security to protect data, infrastructure and assets across the enterprise, in the cloud and throughout the DevOps pipeline. CyberArk delivers the industry’s most complete solution to reduce risk created by privileged credentials and secrets. The company is trusted by the world’s leading organizations, including more than 50 percent of the Fortune 500, to protect against external attackers and malicious insiders.

CyberArk pioneered the market and remains the leader in securing enterprises against cyber attacks that take cover behind insider privileges and attack critical enterprise assets. Today, only CyberArk is delivering a new category of targeted security solutions that help leaders stop reacting to cyber threats and get ahead of them, preventing attack escalation before irreparable business harm is done.

About Shay

Shay Nahari is the head of Red Team services at CyberArk, where he specializes in targeted cyber operations, malware evasion and offensive research. With nearly two decades of cyber security experience, he’s on the front lines in helping global organizations improve their ability to detect and react to targeted attacks using adversary simulation and advanced real life tactics, techniques and procedures.

Nahari previously founded and served as CEO of Red-Sec Inc., a Red Team and consulting services provider, and as a commander in the Israel Defense Forces (IDF) communications unit. With a passion for hacking, he’s won multiple capture the flag competitions – including at Black Hat 2018, where he received the Specter Ops Black Badge.

Shay Nahari, Head of Red Team Services at CyberArk

Show schedule:

  • 00:00 Introduction & Presentation
  • 00:48 Activities in focus for the CyberArk Red Team
  • 01:35 Differentiating between adversary simulation services (Internal vs External adversaries)
  • 02:30 Two questions customers should ask themselves: what are their crown jewels, and what risks are they trying to protect against
  • 03:00 Are Red Teams our friends?
  • 05:35 Helping customers focus on protecting the right pieces of their infrastructure
  • 07:10 Identifying the attack surface, and defining privileged access
  • 08:15 « Each employee is an attack surface, identities are the new perimeter »
  • 09:05 Privileged access goes way beyond admin rights
  • 10:20 How the shift to cloud and containers is impacting the security landscape
  • 11:10 « Ansible access is the new domain admin »
  • 11:50 Cloud makes undetected data leakage possible
  • 12:45 Talking about vulnerabilities and privilege escalation mechanisms – credential abuse is the most common way to get inside a network
  • 14:30 Protecting credentials and isolating sessions as a way to reduce the attack surface
  • 15:00 How do the « bad guys » in the Red Team work with the « good guys » in the Blue Teams? What does the collaboration looks like, and how do the teams interact together?
  • 16:00 « When we get hired, our job is to make our customers more secure »
  • 17:00 Red Teams can be influenced by the creativity of Blue Teams
  • 18:05 Conclusion: words of advice, shifts in the industry, and supply chain attacks
  • 20:30 End

EP25 – Dell Technologies: Storage Portfolio, Data Strategy and VMware’s Key Role – with Pierluca Chiodelli

In this 25th episode of the TECHunplugged Podcast we welcome Pierluca Chiodelli, VP of Product Management Storage Portfolio & Customer Operations at Dell EMC. This episode was recorded live at Dell Technologies World 2019 in Las Vegas.

Podcast co-host Max Mortillaro (@darkkavenger) talks with Pierluca about his new role, the “Data Story” of Dell Technologies, what we can expect from the Dell Technologies storage portfolio (especially in terms of midrange storage portfolio consolidation), as well as the growing role of VMware in the entire Dell Technologies ecosystem.

About Pierluca

Pierluca Chiodelli is currently the VP of Product Management for Storage Portfolio and Customer Operations. Pierluca’s organization oversees the Portfolio Strategy for the Storage BU and is leading the technical resources across the major storage products.

The teams are responsible for creating a single storage portfolio vision and drive solutions to enable end users and service providers to transform their operations and deliver information technology as a service.

Pierluca has been with DellEMC since 1999, with experience in field support and core engineering across Europe and the Americas. Prior to joining EMC, he worked at Data General and as a consultant for HP Corporation. Pierluca holds one degree in Chemical Engineering and a second one in Information Technology.

Show schedule:

  • 00:00 Introductions
  • 01:25 What are Dell Technologies plans to translate their « Data » story into palpable solutions, and how they will bake this into their portfolio
  • 02:40 Customers can buy services in the cloud that have similar capabilities as on-premises products
  • 03:00 The storage portfolio should cover the edge, core, and cloud. Beyond coverage, the necessity to integrate automation in all products
  • 04:00 From a Dell Technologies perspective, VMware Cloud Foundation is the interconnect hub for the entire DT portfolio
  • 04:57 Is Dell moving to a data-centric approach to storage, and what about data mobility?
  • 07:30 Data migration and automation integrations
  • 08:08 Storage is the foundation of everything – are there plans for Dell Technologies to eventually offer a one-stop-shop / portal to consume data and cloud services?
  • 09:40 Unity Cloud Edition – an SDS implementation of Unity for the cloud
  • 11:17 VMware keeps being mentioned in a storage discussion, what is the role of VMware in the Dell Technologies -and especially in the Dell EMC- future?
  • 14:01 Some insights around the rationalisation of Dell EMC’s very broad product portfolio
  • 16:05 The importance of maintaining the installed base, and having a loyal relationship with customers
  • 17:30 More than a portfolio rationalisation, a rationalisation of how platforms and solutions are built
  • 18:20 Final comments: rationalisation is a journey