The Risk Roundtable EP 29: Reports, and Innovation.

In the latest episode of the Risk Roundtable, in a nod to Jen, the team goes full nerd about a series of new cybersecurity products and reports. Starting off with CISA's Known Exploited Vulnerabilities Catalog Jen can barely contain her excitement about the importance of the report while also addressing the challenges organizations face. Dave, clearly out of his element, tries to counter with his own report - Sophos' The State of Ransomware 2022 report that reminded everyone ransomware is still alive and well....and thriving. Shifting to the roulette round, Dave assumes control, albeit briefly, while Jen and Andy talk about various innovative methods organizations can take to strenghten their internal programs and processes. The roundtable wrapped up with some lighter topics during Andy's three questions that were perfect for the time of year. Some of the links discussed in the pod include: Sophos: The State of Ransomware 2022: https://news.sophos.com/en-us/2022/04/27/the-state-of-ransomware-2022/ PDF in DB  KEV https://www.cisa.gov/known-exploited-vulnerabilities-catalog  CISA, FBI, NSA, and International Partners Warn Organizations of Top Routinely Exploited Cybersecurity Vulnerabilities:  https://www.cisa.gov/news/2022/04/27/cisa-fbi-nsa-and-international-partners-warn-organizations-top-routinely-exploited   The Gate 15 Interview: Cannabis ISAO. https://gate15.global/the-gate-15-interview-ben-taylor-on-cannabis-isao-cannabis-industry-security-cybersecurity-rescue-dogs-and-more/  The Cybersecurity Evangelist: Ep 18 – Space Systems are Critical Infrastructure for Critical Infrastructure: https://gate15.global/the-cybersecurity-evangelist-ep-18-space-systems-are-critical-infrastructure-for-critical-infrastructure%EF%BF%BC/  Cofense Annual Phishing Report Highlights 10 Point Increase in Credential Phishing: https://cofense.com/press/cofense-annual-phishing-report-highlights/  S4x22 ICS Security Event: https://s4xevents.com/  OT/ICS Security – Consequence-driven Cyber-informed Engineering (CCE): https://www.waterisac.org/portal/otics-security-%E2%80%93-consequence-driven-cyber-informed-engineering-cce (edited)