Ryan Kalember joined Dr. Rebecca Wynn on the Soulful CXO. He is the award-winning EVP Cybersecurity Strategy for Proofpoint, a globally renowned expert for leadership and commentary on breaches and best practices. Prior roles included being the Chief Marketing Officer for WatchDox, where he was responsible for successfully building and leading the marketing team through Blackberry’s acquisition, Vice President of Solutions at HP Enterprise Security, Director of Product Strategy at ArcSight, and EMEA Regional Manager and Senior Product Manager at VeriSign. Throughout his career, he has provided cybersecurity counsel to global government delegations, board members, and cybersecurity technical boards. He is a good source for breaking news, including Sky News and CBS This Morning. He's won numerous awards, including the 2021 Cybersecurity Strategy of the Year.
They discuss the evolution of ransomware and cybercrime, highlighting the increasing prevalence of data breaches and attacks, dating back to 1995 but becoming more prominent in 2005 and 2006 with the U.S. Veterans Affairs breach. This breach exposed 26.5 million records and marked a turning point in the rise of ransomware.
Alarming Growth of Ransomware Attacks
Rebecca emphasized the alarming growth of ransomware attacks, citing statistics showing that the cost of such attacks increased from $3 trillion in 2015 to an estimated $10.5 trillion by 2025. These attacks often target logins and credentials, exploiting network and domain trust vulnerabilities. Accessing administrative credentials and service principles in Active Directory is crucial for ransomware actors to execute their attacks domain-wide.
Ryan also delved into the history of ransomware, tracing it back to the 1987 AIDS Trojan. This early form of ransomware was distributed via floppy disks and encrypted essential files, demanding a ransom to be sent to a P.O. box in Panama. However, this technique did not gain widespread traction due to limitations in payment methods and technological advancements.
The monetization of cybercrime has evolved over the years. He highlighted the transition from spam as the first monetization technique to cardholder information, which became a lucrative target for cybercriminals. Retail breaches became common as attackers sought to access databases filled with cardholder information. The dark web provided a platform for cybercriminals to trade and monetize stolen data.
Throughout the show, Ryan provides insights and wisdom for CISOs, CIOs, and CTOs facing the daily challenges of combating cyber threats. He acknowledged the frustration of battling the same security issues for the past 15 to 20 years and the difficulty of obtaining a budget and driving organizational behavioral changes.
Prioritizing Security When Embarking on a Cloud Journey
The show emphasizes prioritizing security when embarking on a cloud journey and advising individuals and organizations to envision a secure future and avoid repeating past mistakes. One key issue highlighted is the tendency in IT to connect old systems to new ones without considering the security implications. This approach is deemed detrimental to security as it introduces complexity and compromises the overall security posture. Instead, Ryan recommends isolating the old, potentially toxic systems from the new ones, ensuring proper security measures can be implemented for the new systems. He also emphasizes that the transition to the cloud is a one-time occurrence, with little likelihood of reverting to on-premises infrastructure. Therefore, maximizing this transition and striving for a secure future in the cloud is crucial.
Listen to the full episode for insights on leadership skills, embracing resiliency, and bridging the gap between technology and business. Additionally, please tune in to hear Ryan's fascinating background, from his early days at Stanford to his accidental entry into the world of information security. You'll be captivated by his journey and how he became a trusted advisor to global government delegates and board members. This episode is a must-listen!
Remember to subscribe to the Soulful CXO on your favorite platforms.
Apple Podcasts
Spotify
Google Podcasts
