Risky Business #622 -- GitHub weighs exploit ban

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including: GitHub weighs banning exploits Ransomware galore Belgian government crippled in DDoS attack Intrusion Truth Twitter account suspended More Pulsesecure victims identified Much, much more This week’s show is brought to you by ExtraHop networks, and they’ll pop along in this week’s sponsor interview to float a really, really good idea. The Biden administration EO on cybersecurity will mandate software is shipped with a so-called software bill of materials so customers will actually know what’s in their supply chain. Ben Higgins and Ted Driggs from Extrahop will join us today to argue they should also supply a bill of behaviours; data in a standardised form that will tell you things like what domains and IPs the software will connect to. Links to everything that we discussed are below and you can follow Patrick or Adam on Twitter if that’s your thing.