Nexus: A Claroty Podcast
Nexus is a cybersecurity podcast hosted by Claroty Editorial Director Mike Mimoso. Nexus will feature discussions with cybersecurity leaders, researchers, innovators, and influencers, discussing the topics affecting cybersecurity professionals in OT, IoT, and IoMT environments. Nexus is formerly known as Aperture.
Episodes
99 episodes
Andrew Ohrt on Cyber-Informed Engineering
Andrew Ohrt, the resilience practice area lead at West Yost, joins the Nexus Podcast to discuss cyber-informed engineering (CIE) and how it informs engineers and asset operators to understand their role in creating and maintaining a cyber resil...
•
Season 1
•
Episode 99
•
37:06
Megan Stifel on the Impact of the Ransomware Task Force
Megan Stifel, Chief Strategy Officer for the Institute for Security and Technology, joins the Nexus Podcast to discuss the four years of progress and challenges experienced by the
•
Season 1
•
Episode 98
•
29:48
Joe Slowik on Identifying Truly 'Critical' Infrastructure
Security researcher Joe Slowik joins the Nexus Podcast to discuss the broad interpretation of what critical infrastructure entities are truly "critical," and how that creates an ethical wedge between protecting the well-resourced and those that...
•
Season 1
•
Episode 97
•
29:47
Danielle Jablanski on Critical Infrastructure Protection
Danielle Jablanski, Industrial Control Systems Strategist & Subject Matter Expert at CISA, joins the Nexus podcast to discuss her perspectives on critical infrastructure protection and government's role as a cybersecurity partner on ...
•
Season 1
•
Episode 96
•
41:26
Cassie Crossley on Hardware Security, HBOMs
Schneider Electric Vice President of Supply Chain Security Cassie Crossley joins the Nexus Podcast to discuss the nuances of hardware security and the growing need for hardware bills of materials (HBOMs) within critical infrastructure.Ca...
•
Season 1
•
Episode 95
•
28:20
Christiaan Beek on Ransomware's Evolution and Economics
Rapid7 Senior Director of Threat Analytics Christiaan Beek joins the Nexus Podcast to discuss the technical evolution and economic models that maintain ransomware's viability among threat actors. Ransomware became a for-profit threat more than ...
•
Season 1
•
Episode 94
•
30:05
Florence Hudson on the IEEE/UL 2933 Clinical IOT Cybersecurity Standard
Florence Hudson, working group chair of the IEEE/UL 2933 standard and framework for Clinical IOT Data and Device Interoperability with TIPPSS, joins the Nexus Podcast. Published last September, the standard establishes a framework for secure da...
•
Season 1
•
Episode 93
•
40:39
Mike Holcomb on Starting and Succeeding in OT Cybersecurity
Mike Holcomb, global lead for ICS and OT cybersecurity at Fluor, joins the Nexus Podcast to discuss his advocacy and efforts to educate engineers and IT cybersecurity professionals in the nuances of protecti...
•
Season 1
•
Episode 92
•
42:40
Ron Fabela on Low-Skilled OT and ICS Threat Actors
Ron Fabela of ABS Consulting joins the Nexus Podcast to dispel some of the myths surrounding threat actors targeting operational technology and industrial control systems. Groups such as the Russian Cyber Army, UserSec, and the CyberAv3ngers ha...
•
Season 1
•
Episode 91
•
36:33
Munish Walther-Puri on Creating a Scale for Cybersecurity Incidents
Munish Walther-Puri of the Center for Global Affairs at New York University joins the Claroty Nexus podcast to discuss a homegrown severity scale for critical infrastructure cybersecurity incidents. The Infrastructure Cyber Incident Scale, or I...
•
Season 1
•
Episode 90
•
33:25
Brian Foster on the Risks of a Hyperconnected Grid
Brian Foster, Senior Advisor for Grid Security at Southern California Edison, joins the Nexus Podcast to discuss a presentation he gave at the S4 Conference called . Foster covers the impending risk and host of exposures expected as...
•
Season 1
•
Episode 89
•
27:17
CISA's Matthew Rogers on Secure by Demand for OT
Matthew Rogers, ICS Cybersecurity Strategy & R&D Lead at the Cybersecurity & Infrastructure Security Agency (CISA) joins the Nexus Podcast to discuss the agency's latest publication:
•
Season 1
•
Episode 88
•
39:23
Noam Moshe on the IOCONTROL Malware
Claroty Team82 researcher Noam Moshe joins the Nexus Podcast to discuss the IOCONTROL malware used by an Iranian APT actor known as the CyberAv3ngers to target civilian critical infrastructure in the U.S. and Israel. The malware acts as a Linux...
•
Season 1
•
Episode 87
•
23:58
Team82 on Attacking the Insecure IoT Cloud
Claroty Team82's Noam Moshe and Tomer Goldschmidt join the Nexus Podcast to discuss the research team's latest publication on 10 vulnerabilities discovered in Ruijie Networks' Reyee OS cloud platform. A chain of these vulnerabilities could allo...
•
Season 1
•
Episode 86
•
31:38
Volexity's Steven Adair on the Nearest Neighbor Attack
Volexity founder Steven Adair joins the Claroty Nexus Podcast to discuss the Nearest Neighbor Attack, a unique attack carried out by Russia's APT 28 against a high-value target in an attempt to gain intelligence on Ukraine prior to the start of...
•
Season 1
•
Episode 85
•
37:23
Joe Saunders on Advanced Cyberattacks Against Critical Infrastructure
Runsafe Security CEO and Cofounder Joe Saunders joins the Nexus Podcast to discuss the strategic shift from certain APTs toward destructive cyberattacks targeting U.S. critical infrastructure. Groups such as Volt Typhoon and Sandworm have aggre...
•
Season 1
•
Episode 84
•
34:43
Grant Geyer on the Business Impact of Disruptions from Cyberattacks
Claroty Chief Strategy Officer Grant Geyer joins the Nexus Podcast to discuss the results of a survey of 1,100 cybersecurity leaders and practitioners on the business impact of disruptions from cyberattacks on cyber-physical systems. Th...
•
Season 1
•
Episode 83
•
25:03
Alethe Denis on Social Engineering, Red-Teaming
Bishop Fox senior security consultant Alethe Denis joins the Claroty Nexus podcast to discuss social engineering in cybersecurity and how it has become part of red-team engagements, especially inside critical infrastructure organizations. She e...
•
Season 1
•
Episode 82
•
43:45
Alon Dankner on Extracting Crypto Keys from PLCs
Alon Dankner of the Technion Institute for Technology in TelAviv Israel joins the Claroty Nexus Podcast to discuss a presentation he gave at the recent Black Hat cybersecurity conference in Las Vegas. Dankner and colleague Nadav Adir's presenta...
•
Season 1
•
Episode 81
•
27:58
Noam Moshe on Extracting Forensic Data from Unitronics PLCs
Claroty Team82 researcher Noam Moshe joins the Nexus Podcast to talk about Team82’s research into Unitronics Vision series integrated HMI/PLC devices. The OT devices were exploited last year in attacks against water treatment facilities in the ...
•
Season 1
•
Episode 80
•
27:52
Alexander Antukh on Cyber Risk Quantification
Alexander Antukh, CISO of AboitizPower in the Philippines, the country's largest power and renewable energy provider, joins the Nexus Podcast to discuss cyber risk quantification (CRQ). CRQ is a popular framework used to assess the financial im...
•
Season 1
•
Episode 79
•
43:05
Vincente Diaz on Using AI for Malware Analysis
Vincente Diaz, Threat Intelligence Strategist on Google’s VirusTotal team and formerly the EU director of Kaspersky Lab’s Global Research & Analysis Team, joins the Nexus Podcast to discuss how artificial intelligence and machine learning i...
•
Season 1
•
Episode 78
•
27:38
Ahmik Hindman on Patching OT and ICS
Ahmik Hindman, Senior Network and Security Solution Consultant at Rockwell Automation, joins the Claroty Nexus podcast to discuss the challenges and success stories he's experienced in patching operational technology equipment and industrial co...
•
Season 1
•
Episode 77
•
28:16
Dr. Bilyana Lilly on Information Warfare
Dr. Bilyana Lilly, an expert on geopolitics and Russia’s codification of information warfare as a strategy, says that the war in Ukraine has...
•
Season 1
•
Episode 76
•
27:49
Vinnie Liu on Offensive Security Testing During Incidents
Bishop Fox CEO and Cofounder Vinnie Liu joins the Nexus Podcast to discuss his team's role during security incidents in conducting offensive security testing alongside incident response activities. In healthcare environments where ransomware is...
•
Season 1
•
Episode 75
•
29:30