Rob Allen is a seasoned cybersecurity expert currently working as the Chief Product Officer at ThreatLocker. With over 25 years of experience in the IT industry, Rob has a rich background in managing IT environments, having spent nearly two decades at an MSP (Managed Service Provider) in Ireland. He transitioned from cleaning up ransomware attacks to helping organizations actively prevent them through Threat Locker's innovative cybersecurity solutions. Rob is known for his in-depth understanding of evolving cyber threats and promoting effective preventive measures against them.
Episode Summary:
In this engaging episode of the Phillip Wylie Show, host Phillip Wylie welcomes cybersecurity veteran Rob Allen from Threat Locker. Together, they delve into the intricacies of modern cybersecurity threats, focusing on Threat Locker's innovative approaches to tackling ransomware and other malicious attacks. Listeners get a unique insight into the Threat Locker software, known for its preventive rather than reactive approach to cybersecurity, which includes features like default deny policies, ring fencing, and network control.
Rob Allen unveils how the default deny approach helps mitigate cyber threats, including ransomware and living-off-the-land binaries, by blocking unauthorized actions before they happen. He emphasizes the need for robust security measures to limit what applications and scripts like PowerShell can do, thus preventing these tools from being weaponized by cybercriminals. Besides discussing practical security steps, Rob highlights how Threat Locker addresses the ever-evolving threat landscape using its innovative network control and threat detection capabilities. This conversation is packed with insights into how organizations can safeguard their IT environments in an era of increasingly complex cyber threats.
Key Takeaways:
* Default Deny Approach: Rob highlights the efficiency of Threat Locker's default deny policy, preventing unauthorized programs from running by approving only necessary applications.
* Living Off the Land Prevention: The discussion covers methods to control and restrict the use of common Windows utilities like PowerShell, preventing them from serving malicious purposes.
* Network Control: Insights into handling remote encryption threats through a unique approach to network traffic control, ensuring only trusted devices can connect.
* The Role of AI: A glimpse into how AI can be both a tool for cybersecurity advancements and a potential threat when used by bad actors for phishing and malware development.
* Zero Trust World Conference: Rob invites listeners to the Zero Trust World event focusing on hands-on cybersecurity training and knowledge exchange.
Notable Quotes:
* "100% of successful cyber attacks are not detected in time or at all."
* "Prevent ransomware, lock it by default."
* "AI is just as likely to be used against you as it is to protect you."
* "The fact of the matter is, if nobody ever paid, there would be no such thing as ransomware."
* "You cannot trust a ransomware gang."
Resources:
* Threat Locker Website: https://www.threatlocker.com
* ThreatLocker LinkedIn: https://www.linkedin.com/company/threatlockerinc/
* Zero Trust World Event: Explore more at ZTW.com
* Zero Trust World $200 off discount code: ZTWPW25
* ThreatLocker YouTube: https://www.youtube.com/@ThreatLocker
* Rob's LinkedIn: https://www.linkedin.com/in/threatlockerrob/
Chapters
00:00 Introduction to ThreatLocker and Rob Allen
03:30 Rob Allen's Hacker Origin Story
06:23 Understanding ThreatLocker’s Approach to Cybersecurity
12:29 Living Off the Land: A Cybersecurity Challenge
16:39 Macro Vulnerabilities in Office Applications
19:20 Ransomware Prevention Strategies
23:40 The Importance of Network Control
31:55 AI in Cybersecurity: A Double-Edged Sword
37:37 Zero Trust World Conference Overview
39:56 Closing Thoughts and Resources
42:02 Zero Trust World discount code