In this Soap Box podcast Patrick Gray talks to George Glass, the threat intelligence operations leader in the Cyber Risk practice at Kroll.

They talk about all sorts of things, like:

  • How the ransomware ecosystem is evolving into “ma and pa” operations
  • Some killer detections they’ve figured out
  • What separates the good networks from the bad ones
  • Why EDR is of limited value if you’re not actually monitoring it
  • Why not letting MDRs do the R part of their job is really, really, really dumb