Assessing Crypto and Third-Party RisksTroy Leach of Cloud Security Alliance on Emerging Trends
Billions of dollars have already been lost in crypto exchanges, and some of the some losses have been due to "basic" security failures, including third parties not implementing common controls, says Troy Leach, security executive in residence, Cloud Security Alliance.
For instance, he says there are "losses in wallets due to easy phishing attacks … $7 billion has been lost just with those kinds of attacks."
"We're seeing more exploits of open-source code … And only 3% of known vulnerabilities have been weaponized," he says.
In a video interview with Information Security Media Group at RSA Conference 2022, Leach also discusses:
- Other concerning third-party risk issues;
- The potential for quantum cryptography;
- His work at the Cloud Security Alliance.
Leach has spent more than 25 years educating on and advocating for the advancement of responsible technology to improve the quality of living and parity for all. He sits on several advisory boards as an expert in information security and financial payments. Leach has also founded a consulting practice that advises on the opportunities to leverage blockchain technology, zero trust methodology and various cloud services to create safe and trusted environments. Previously, he helped establish and lead the PCI Security Standards Council.