Risky Business #685 -- Australia releases the hounds, and it might just work

Why the Australian government's announcement is more than bluster...
16 Nov 2022 » Risky Business

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including:

  • Australia lets ASD loose on ransomware crews, but will it work? (Tom Uren joins us to chat about this one)
  • Twitter’s wheels haven’t fallen off yet but they sure are wobbling
  • Hundreds of millions stolen from FTX mid implosion
  • Security researchers start looking at Mastodon and… yeah
  • Much, much more!

This week’s show is brought to you by Gigamon. George Sandford from Gigamon pops in for this week’s sponsor interview to talk about how to successfully stand up an NDR program.

Links to everything that we discussed are below and you can follow Patrick or Adam on Twitter if that’s your thing.

Show notes

Risky Biz News: Australia to hack the hackers
Australia to consider banning ransomware payments - The Record by Recorded Future
Two enormous cyberattacks convince Australia to 'hack the hackers' - The Washington Post
Australian Federal Police say cybercriminals in Russia behind Medibank hack - The Record by Recorded Future
The Hunt for the FTX Thieves Has Begun | WIRED
US reissues sanctions on Tornado Cash, tying it to North Korea's nuclear weapons program - The Record by Recorded Future
Twitter’s SMS Two-Factor Authentication Is Melting Down | WIRED
Is it safe to use Twitter? Security fears rise after Elon Musk drives off staff
Twitter’s Security And Privacy Leaders Quit Amidst Musk’s Chaotic Takeover
FTC tracking developments at Twitter with 'deep concern' after CISO resigns - The Record by Recorded Future
Mastodon users vulnerable to password-stealing attacks | The Daily Swig
Risky Biz News: Major hack-and-leak info-op unfolding in Moldova
All Day DevOps: Third of Log4j downloads still pull vulnerable version despite threat of supply chain attacks | The Daily Swig
Billbug: State-sponsored Actor Targets Cert Authority, Government Agencies in Multiple Asian Countries | Symantec Enterprise Blogs
Lenovo driver goof poses security risk for users of 25 notebook models | Ars Technica
Cisco: InterPlanetary File System seeing ‘widespread’ abuse by hackers - The Record by Recorded Future
Project Zero: A Very Powerful Clipboard: Analysis of a Samsung in-the-wild exploit chain
Google Pixel screen-lock hack earns researcher $70k | The Daily Swig
DJ Zavala & DMNTED - Welcome to Ukraine - YouTube