Podcasts

CISA and the FBI are calling out Russian intrusions as they see them, while US Treasury imposes sanctions on the developers of Triton ICS malware and Iranian disinformation shops.

In this (wholly sponsored) edition of the Snake Oilers podcast, three vendors will drop by to pitch their sweet, sweet snake oil:

• Gravwell pitches its “structure on read” approach to SIEM
• Plextrac describes its red team/pentest reporting platform
• ITProTV’s Don Pezet talks about trends in online training

On this week’s show Patrick and Adam discuss the week’s security news, including:

• US DoJ unseals indictments against Sandworm operators
• Twitter backtracks on “hacked materials” policy
• No consensus on Trickbot c2 status
• NSA publishes “most exploited” listicle that’s actually interesting
• Much, much more

Russia, Russia, Russia. The US Department of Justice has indicted six members of Sandworm, a military intelligence unit of Russia’s GRU, while the UK accused it of preparing attacks on the (now postponed) Tokyo Olympics. Russian crews have also been identified in recent attacks against Norway’s parliament and state and local governments in the US. We also, reluctantly, touch on another actor with a Russian nexus, Rudy Giuliani.

On this week’s show Patrick and Adam discuss the week’s security news, including:

• Yep, it was Cyber Command
• Also Microsoft, Symantec, Lumen and others
• Norwegian parliament hack pinned on Russia
• We finally talk about “ethics in OST”
• More

A group of technology companies were ready to unveil a long-term plan to disrupt and impose costs on the operators of the TrickBot botnet, when some other parties started messing with it…

In this (wholly sponsored) edition of the Snake Oilers podcast, three vendors will drop by to pitch their sweet, sweet snake oil:

• Vaughan Shanks pitches the Cydarm SOC incident management platform
• Adrian Kitto introduces Detexian, a platform that audits SaaS accounts
• Eric Skinner from Trend Micro talks about XDR

On this week’s show Patrick and Adam discuss the week’s security news, including:

• The UHS ransomware attack
• Someone is messing with TrickBot: Did the USA release the hounds?
• US Treasury issues final warning on sanctioned ransomware crews
• Azerbaijan and Armenia going at it
• Fancy Bear owns US government department

This week alone, ransomware attacks have crippled several hundred US hospitals and inconvenienced scientists working on COVID-19 vaccines and treatments. The lines have been crossed so many times now: do lawmakers really need to wait until an attack changes patient outcomes before the hounds are released?

In this podcast you’ll hear an interview with former Australian prime minister Malcolm Turnbull. He joins Risky Business to talk through a bunch of issues from Huawei’s exclusion from Australia’s NBN and 5G builds, to political accountability and leadership in cybersecurity.