Keith is joined by Red Canary threat hunter Harrison Koll. They kick things off by discussing the latest on the return of the Shai Hulud worm—aka Sha1-Hulud: The Second Coming—a messy npm supply chain compromise that hijacked accounts, stole cloud credentials, and infected GitHub repositories—and what defenders can do in its wake.
After, Harrison breaks down the concept of defense-in-depth, describing security gaps he observes day-to-day, and how implementing multiple layers of controls, including firewalls, SSL inspection, and network segmentation, can go a long way in preventing a future security incident.
View the video