Over the weekend, I had the chance to sit down with The_Gibson and ask him questions submitted by The Cybersec Lounge community members. He was a wonderful guest, giving many students and young professionals great advice and wisdom by sharing his experiences and stories as an Information Security professional. I want to give a big thanks to The_Gibson and The Cybersec Lounge for this opportunity. It was a great deal of fun and I’m hoping to do it again soon.

You can listen to the interview through the embedded player below or by downloading it from Archive.org.

Show Notes

First AMA with The_Gibson on The Cybersec Lounge. The_Gibson is a Security Researcher, Penetration Tester, and End Point Security Specialist with over 20 years of experience.

Timestamps:

  • (00:41) Are you Steve Gibson or not?

  • (01:34) How do you start your day and what do you do during your day?

  • (03:34) Can you run into your typical penetration Windows testing routine?

  • (08:46) What advice would you give to someone entering the field and where should a beginner start with their first goals?

  • (16:19) What would you say to those young computer scientists considering getting into CyberSecurity?

  • (20:10) I am currently trying to get into the field of becoming an ethical hacker. I currently have an associates in CyberSecurity and working on my Security+. I’m trying to learn more about Kali Linux and Python. Is there anything you would suggest looking into as far as getting as much experience as I can get without a security job?

  • (26:08) When it comes to Ethical Hacking, how much do you think security experts and teachers should emphatized on the ethical part of training?

  • (29:22) What are your takes on student burnout imposter syndrome and professional workplace environment?

  • (35:20) How do you balance life, work and practicing research?

  • (42:29) What are some common mistaks in this field that we should know about?

  • (44:30) What’s your biggest mistake you have ever made in your career?

  • (47:24) What’s the most dangerous threat currently?

  • (49:01) Organisation wise, what is the biggest cyber terrorism threat you’ve ever encountered?

  • (51:39) Do you think cyber-terrorist groups are becoming more dangerous with advancements in computers, and the skill level of the attackers increasing? Do you think this will increase the boldness and threat level of these groups?

  • (56:54) Do you think the possibility stands that with the advent of more advanced and robust tech, that is designed in house by hackers/penetration testers, might cause the Cyber defense industry to trip up, as they are still defending with what could be considered outdated defenses?

  • (1:01:50) 5G tech from Huawei is considered a national security threat by many. Do you have any perspectives to offer on this? What novel 5G features would you expect to be most prone to exploitation?

  • (1:04:03) What’s your opinion about bourbon?

  • (1:04:55) What’s your favorite aspect of cyberpunk? Do you think we’re currently living in a cyberpunk reality?

  • (1:07:21) What’s the best/most unique phreaking technique you’ve used or seen someone use?

  • (1:11:14) What’s your opinion on bug bounties?

  • (1:14:23) Any good books to read about CyberSecurity?

  • (1:19:20) I miss the old internet. Do you have any recommendations on places to checkout on tor? usenet? irc? etc.?

  • (1:32:44) Are you going to play Cyberpunk 2077?

  • (1:33:09) What sorts of people would you surround yourself for pentesting?

  • (1:34:58) What do you think about censhorship and copyright laws these days? Is It ridiculous or not? If yes, what can we do to fix it?

  • (1:43:35) What was your first IT position and what sorts of jobs you did to land a penetration testing job