Adkins and Alperovitch Talk About the Cyber Safety Review Board and Log4j
The Lawfare Podcast
The Lawfare Institute
4.7 • 6.2K Ratings
🗓️ 25 July 2022
⏱️ 53 minutes
🧾️ Download transcript
Summary
The Cyber Safety Review Board issued its first major report this month, which focused on the Log4j disaster. So, what is the Cyber Safety Review Board, and what is Log4j?
To answer these questions and others, Benjamin Wittes sat down with the deputy chair of the Cyber Safety Review Board, Heather Adkins, and board member Dmitri Alperovitch. They talked about what the board is, where it comes from, how it is composed, and what it does. And they talked about Log4j, why the board started with this particular cybersecurity incident, how the board went about doing its investigation, what it found, and what it recommended.
Support this show http://supporter.acast.com/lawfare.
Hosted on Acast. See acast.com/privacy for more information.
Transcript
Click on a timestamp to play from that location
| 0:00.0 | The following podcast contains advertising to access an ad-free version of the LawFair |
| 0:07.2 | podcast become a material supporter of LawFair at patreon.com slash LawFair. |
| 0:14.7 | That's patreon.com slash LawFair. |
| 0:18.2 | Also, check out LawFair's other podcast offerings, rational security, chatter, LawFair |
| 0:25.6 | no bull and the aftermath. |
| 0:33.5 | Some things lead you guessing. Like, why are your ones contagious? |
| 0:38.3 | But not MailChimp. MailChimp eliminates guesswork from email marketing |
| 0:41.8 | by analysing data from billions of emails to offer up personalized recommendations for |
| 0:46.8 | how to improve your email content and targeting. |
| 0:49.8 | Lesson Selmore, Within to it MailChimp. |
| 0:58.7 | We were very concerned that if alababa had indeed been sanctioned by the Chinese government |
| 1:03.6 | that it sends a chilling effect on the entire industry in China where people will be very |
| 1:10.7 | hesitant to follow best practices that alababa did fall in the case and would provide |
| 1:16.2 | essentially Chinese government with early warning of vulnerabilities that they could use |
| 1:20.4 | potentially for offensive purposes which to be clear did not happen here. |
| 1:25.0 | But if the Chinese government is getting wind of vulnerabilities before fixes out, before |
| 1:29.0 | anyone else is aware, that creates problems and by the way not just the Chinese government |
| 1:33.9 | but really any government that would want to take advantage of these significant vulnerabilities |
| 1:39.7 | and enhance their offensive programs. |
| 1:43.0 | I'm Benjamin Widis and this is the Law Fair Podcast July 25th, 2022. |
| 1:50.7 | The Cyber Safety Review Board issued its first major report this month. It was on the |
| 1:57.3 | Log 4J disaster. I know what you're asking. You're asking, wait, what the heck is the |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from The Lawfare Institute, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of The Lawfare Institute and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2025.