Podcasts

On this week’s show Patrick and Adam discuss the week’s security news, including:

• Zoom settles with FTC over misleading E2EE claim
• Some poor sod had to give up $1bn in Bitcoin
• Solaris SSH 0day? Let’s party like it’s 1999
• Samy Kamkar’s latest trick: NAT Slipstreaming
• Australia’s hardcore critical infrastructure protection bill
• Much, much more

Judging by what gets put on show, we can no longer safely assume US superiority in exploit development.

Australia’s Department of Home Affairs has yielded to pressure from industry and state governments to publish an exposure draft of the bill that underpins its plan to directly intervene in the cyber security of the country’s critical infrastructure.

North Korea’s “Lazarus Group” gets through an impossibly prodigious amount of activity. That’s because this “group” is better understood as several distinct, connected clusters that together add up to North Korea’s formidable hacking operation.

On this week’s show Patrick and Adam discuss the week’s security news, including:

• “Proud Boys” email campaign attributed to Iran in record time
• Sanctions for everyone!
• US doxes more adversary TTPs
• Katie Nickels and Chris Krebs join the show

This week’s show is brought to you by attack simulation platform company AttackIQ. Carl Wright from AttackIQ joins us this week to talk about the distinct possibility that large organisations are going to start slashing their security budgets in response to the changing economy.

CISA and the FBI are calling out Russian intrusions as they see them, while US Treasury imposes sanctions on the developers of Triton ICS malware and Iranian disinformation shops.

In this (wholly sponsored) edition of the Snake Oilers podcast, three vendors will drop by to pitch their sweet, sweet snake oil:

• Gravwell pitches its “structure on read” approach to SIEM
• Plextrac describes its red team/pentest reporting platform
• ITProTV’s Don Pezet talks about trends in online training

On this week’s show Patrick and Adam discuss the week’s security news, including:

• US DoJ unseals indictments against Sandworm operators
• Twitter backtracks on “hacked materials” policy
• No consensus on Trickbot c2 status
• NSA publishes “most exploited” listicle that’s actually interesting
• Much, much more

Russia, Russia, Russia. The US Department of Justice has indicted six members of Sandworm, a military intelligence unit of Russia’s GRU, while the UK accused it of preparing attacks on the (now postponed) Tokyo Olympics. Russian crews have also been identified in recent attacks against Norway’s parliament and state and local governments in the US. We also, reluctantly, touch on another actor with a Russian nexus, Rudy Giuliani.

On this week’s show Patrick and Adam discuss the week’s security news, including:

• Yep, it was Cyber Command
• Also Microsoft, Symantec, Lumen and others
• Norwegian parliament hack pinned on Russia
• We finally talk about “ethics in OST”
• More