A brief overview of the product announcements made at CPX 2024. The materials are available on CheckMates: https://community.checkpoint.com/t5/General-Topics/CPX-2024/m-p/208174#M34494 

Reviewing some of the top cyber security stories for 2023.  Hope to see everyone at CPX 2024!

In this episode, PhoneBoy talks about fraud and how to be resilient against it.6 types of fraud to remain aware of (and other trends)10 ways to reduce your risk of cyber fraudQuantum SASE 

In this episode, PhoneBoy covers three stories:Kerberoasting attacks explained (and how to prevent them)7 actionable security automation best practices5 emerging malware threats, record-breaking malware activity

In this episode, PhoneBoy talks about the challenges with ensuring security with open-source software, which is in many products and services you use today.

In this episode, PhoneBoy talks with Aaron Brongersma about his exploration of AI tools, the issues with data residency and AI, the societal issues with AI, AI as a Service, and a few words about Quantum SASE.

Some questions and answers around Blockchain Security from our TechTalk on Blockchain Security.

PhoneBoy talks to Adam Gray, CTO of Novacoast about how ChatGPT is used by threat actors to compromise systems, the GPT-4 System Card, where ChatGPT seems to be useful in general with respect to cyber security, ChatGPT writing legal briefs, what early search engines and ChatGPT have in common, and how the more some things change, the more they stay the same.

A discussion between Check Point's Chief Strategy Officer Itai Greenberg and Idan Levin, Partner at Collider Ventures about the security trends related to blockchain security.

In this episode, PhoneBoy talks to Adam Gray, CTO of Novacoast to discuss some of what he's seen as part of their MSSP operations, including Living off the Land attacks, how AI is being actively used to exploit vulnerabilities, mobile security, CIS Controls, browser extensions, the data modern cars collect and share, password managers being a source of compromise, biometrics, why organizations use MSSPs like Pillr, automation and orchestration, vulnerability management, and Windows XP still being in use. 

In this episode, I talk about how over-provisioning identities in the cloud leads to "shadow access" by malicious actors...and what you can do about it.Eight Key Success Factors for Cloud-Native Application Protection (CNAPP)CloudGuard Cloud Native Application Protection Platform

In this episode, PhoneBoy talks about some of the more rogue uses of GPT-like tools.ChatGPT generates 'convincing' fake scientific article'DarkBERT' GPT-Based Malware Trains Up on the Entire Dark WebThe WormGPT case: How Generative artificial intelligence (AI) can improve the capabilities of cybercriminals and allows them to launch sophisticated attacksLowering the Bar(d)? Check Point Research’s security analysis spurs concerns over Google Bard’s limitations

In this episode, PhoneBoy talks with Aaron Brongersma about the challenges of ensuring your code is secure, particularly when people who traditionally haven't written code are having to do so to leverage certain technologies like ChatGPT.VSCode Security: Malicious Extensions Detected- More Than 45,000 Downloads- PII Exposed, and Backdoors Enabled

Ralph Bonnell did a great session on DNS as a CheckMates TechTalk. You can access the materials (including some Q&A) here.

In this episode, PhoneBoy covers a few recent stories related to the legal and cybersecurity issues related to generative AIs such as ChatGPT.Highly effective responses to the alarming democratization of AIBreaking GPT-4 Bad: Check Point Research Exposes How Security Boundaries Can Be Breached as Machines Wrestle with Inner ConflictsAuthors Accuse OpenAI of Using Pirate Sites to Train ChatGPT

Cyber Security Evangelist Ashwin Ram talks about ChatGPT in the context of Artificial Intelligence and the Evolving Threat Landscape.Full TechTalk: https://community.checkpoint.com/t5/General-Topics/AI-and-the-Evolving-Threat-Landscape-TechTalk-Video-Slides-and-Q/m-p/181992/highlight/true#M30319 

Another series of headlines from our friends at CyberTalk.orgWhat is purple teaming and why is it useful?One easy way to secure your Android6 simple & straightforward Cyber Monday fraud prevention tipsCanada advances cyber security via Indo-Pacific Strategy

Second in a series on business data and how organizations can protect it. Mazhar Hamayun is a Security Engineer with Check Point and a member of the Office of the CTO who covered this topic on CyberTalk.org. We discuss some of his tips in this episode.The book I mentioned in this section: Building Internet Firewalls 2nd Edition. 

Some articles from our friends at CyberTalk.org about passwords, phishing, and passkeys.20 Password Management Best Practices10 Signs of Phishing for Anyone Who Champions Security5 Steps to Mitigate Credential Exposure RisksThis is How We Will Replace Passwords in the Near Future…

First of a series on business data and how organizations can protect it. Mazhar Hamayun is a Security Engineer with Check Point and a member of the Office of the CTO who covered this topic on CyberTalk.org. We begin the series by discussing what business data is, where it might reside, who might want it that shouldn't, and why.