Nexus: A Claroty Podcast
Nexus is a cybersecurity podcast hosted by Claroty Editorial Director Mike Mimoso. Nexus will feature discussions with cybersecurity leaders, researchers, innovators, and influencers, discussing the topics affecting cybersecurity professionals in OT, IoT, and IoMT environments.
Episodes
104 episodes
Austin Allen on the Cybersecurity Realities Facing Healthcare
Austin Allen, Sr. Director of Global Solutions Architecture at Airlock Security, joins the Nexus Podcast to discuss cybersecurity realities happening inside healthcare delivery organizations. Allen covers challenges and solutions ar...
•
Season 1
•
Episode 104
•
29:07
Gentry Lane on the Use of 'Salami Cuts' in Cyber Conflict
Gentry Lane, founder of Nemesis Global, joins the Nexus Podcast to discuss the strategies guiding adversaries in their targeting of U.S. critical infrastructure. Primary of which is the desire of countries such as China, Russia, Iran, and North...
•
Season 1
•
Episode 103
•
28:40
Pedro Umbelino on Exploiting ATG Devices in Fuel Storage
Pedro Umbelino, Principal Research Scientist at Bitsight Technologies, joins the Nexus Podcast to discuss his team's research into Automatic Tank Gauge (ATG) systems and how they uncovered 11 vulnerabilities in ATGs manufactured by five differe...
•
Season 1
•
Episode 102
•
27:14
Steven Sim on OT-ISAC and the State of Information Sharing
Steven Sim, Chair of the OT-ISAC Advisory Committee, joins the Nexus Podcast to catch us up on the ISAC's activities, and some of the upcoming community-driven initiatives sponsored by the group. Steven shares the processes by which member orga...
•
Season 1
•
Episode 101
•
43:08
Sarah Fluchs on the Cyber Resilience Act
Cybersecurity and technology expert Sarah Fluchs joins the 100th episode of the Nexus Podcast to discuss the EU's Cyber Resilience Act and what it me...
•
Season 1
•
Episode 100
•
37:46
Andrew Ohrt on Cyber-Informed Engineering
Andrew Ohrt, the resilience practice area lead at West Yost, joins the Nexus Podcast to discuss cyber-informed engineering (CIE) and how it informs engineers and asset operators to understand their role in creating and maintaining a cyber resil...
•
Season 1
•
Episode 99
•
37:06
Megan Stifel on the Impact of the Ransomware Task Force
Megan Stifel, Chief Strategy Officer for the Institute for Security and Technology, joins the Nexus Podcast to discuss the four years of progress and challenges experienced by the
•
Season 1
•
Episode 98
•
29:48
Joe Slowik on Identifying Truly 'Critical' Infrastructure
Security researcher Joe Slowik joins the Nexus Podcast to discuss the broad interpretation of what critical infrastructure entities are truly "critical," and how that creates an ethical wedge between protecting the well-resourced and those that...
•
Season 1
•
Episode 97
•
29:47
Danielle Jablanski on Critical Infrastructure Protection
Danielle Jablanski, Industrial Control Systems Strategist & Subject Matter Expert at CISA, joins the Nexus podcast to discuss her perspectives on critical infrastructure protection and government's role as a cybersecurity partner on ...
•
Season 1
•
Episode 96
•
41:26
Cassie Crossley on Hardware Security, HBOMs
Schneider Electric Vice President of Supply Chain Security Cassie Crossley joins the Nexus Podcast to discuss the nuances of hardware security and the growing need for hardware bills of materials (HBOMs) within critical infrastructure.Ca...
•
Season 1
•
Episode 95
•
28:20
Christiaan Beek on Ransomware's Evolution and Economics
Rapid7 Senior Director of Threat Analytics Christiaan Beek joins the Nexus Podcast to discuss the technical evolution and economic models that maintain ransomware's viability among threat actors. Ransomware became a for-profit threat more than ...
•
Season 1
•
Episode 94
•
30:05
Florence Hudson on the IEEE/UL 2933 Clinical IOT Cybersecurity Standard
Florence Hudson, working group chair of the IEEE/UL 2933 standard and framework for Clinical IOT Data and Device Interoperability with TIPPSS, joins the Nexus Podcast. Published last September, the standard establishes a framework for secure da...
•
Season 1
•
Episode 93
•
40:39
Mike Holcomb on Starting and Succeeding in OT Cybersecurity
Mike Holcomb, global lead for ICS and OT cybersecurity at Fluor, joins the Nexus Podcast to discuss his advocacy and efforts to educate engineers and IT cybersecurity professionals in the nuances of protecti...
•
Season 1
•
Episode 92
•
42:40
Ron Fabela on Low-Skilled OT and ICS Threat Actors
Ron Fabela of ABS Consulting joins the Nexus Podcast to dispel some of the myths surrounding threat actors targeting operational technology and industrial control systems. Groups such as the Russian Cyber Army, UserSec, and the CyberAv3ngers ha...
•
Season 1
•
Episode 91
•
36:33
Munish Walther-Puri on Creating a Scale for Cybersecurity Incidents
Munish Walther-Puri of the Center for Global Affairs at New York University joins the Claroty Nexus podcast to discuss a homegrown severity scale for critical infrastructure cybersecurity incidents. The Infrastructure Cyber Incident Scale, or I...
•
Season 1
•
Episode 90
•
33:25
Brian Foster on the Risks of a Hyperconnected Grid
Brian Foster, Senior Advisor for Grid Security at Southern California Edison, joins the Nexus Podcast to discuss a presentation he gave at the S4 Conference called . Foster covers the impending risk and host of exposures expected as...
•
Season 1
•
Episode 89
•
27:17
CISA's Matthew Rogers on Secure by Demand for OT
Matthew Rogers, ICS Cybersecurity Strategy & R&D Lead at the Cybersecurity & Infrastructure Security Agency (CISA) joins the Nexus Podcast to discuss the agency's latest publication:
•
Season 1
•
Episode 88
•
39:23
Noam Moshe on the IOCONTROL Malware
Claroty Team82 researcher Noam Moshe joins the Nexus Podcast to discuss the IOCONTROL malware used by an Iranian APT actor known as the CyberAv3ngers to target civilian critical infrastructure in the U.S. and Israel. The malware acts as a Linux...
•
Season 1
•
Episode 87
•
23:58
Team82 on Attacking the Insecure IoT Cloud
Claroty Team82's Noam Moshe and Tomer Goldschmidt join the Nexus Podcast to discuss the research team's latest publication on 10 vulnerabilities discovered in Ruijie Networks' Reyee OS cloud platform. A chain of these vulnerabilities could allo...
•
Season 1
•
Episode 86
•
31:38
Volexity's Steven Adair on the Nearest Neighbor Attack
Volexity founder Steven Adair joins the Claroty Nexus Podcast to discuss the Nearest Neighbor Attack, a unique attack carried out by Russia's APT 28 against a high-value target in an attempt to gain intelligence on Ukraine prior to the start of...
•
Season 1
•
Episode 85
•
37:23
Joe Saunders on Advanced Cyberattacks Against Critical Infrastructure
Runsafe Security CEO and Cofounder Joe Saunders joins the Nexus Podcast to discuss the strategic shift from certain APTs toward destructive cyberattacks targeting U.S. critical infrastructure. Groups such as Volt Typhoon and Sandworm have aggre...
•
Season 1
•
Episode 84
•
34:43
Grant Geyer on the Business Impact of Disruptions from Cyberattacks
Claroty Chief Strategy Officer Grant Geyer joins the Nexus Podcast to discuss the results of a survey of 1,100 cybersecurity leaders and practitioners on the business impact of disruptions from cyberattacks on cyber-physical systems. Th...
•
Season 1
•
Episode 83
•
25:03
Alethe Denis on Social Engineering, Red-Teaming
Bishop Fox senior security consultant Alethe Denis joins the Claroty Nexus podcast to discuss social engineering in cybersecurity and how it has become part of red-team engagements, especially inside critical infrastructure organizations. She e...
•
Season 1
•
Episode 82
•
43:45
Alon Dankner on Extracting Crypto Keys from PLCs
Alon Dankner of the Technion Institute for Technology in TelAviv Israel joins the Claroty Nexus Podcast to discuss a presentation he gave at the recent Black Hat cybersecurity conference in Las Vegas. Dankner and colleague Nadav Adir's presenta...
•
Season 1
•
Episode 81
•
27:58
Noam Moshe on Extracting Forensic Data from Unitronics PLCs
Claroty Team82 researcher Noam Moshe joins the Nexus Podcast to talk about Team82’s research into Unitronics Vision series integrated HMI/PLC devices. The OT devices were exploited last year in attacks against water treatment facilities in the ...
•
Season 1
•
Episode 80
•
27:52