Podcasts

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Kaitlyn Sawrey.

You can find the newsletter version of this podcast click here.

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including:

• A look at LastPass’s intrusion post mortem
• A very stable genius decided to ransomware the US Marshals Service
• Why Signal’s complaints about UK’s Online Safety Act are bad faith
• Much, much more…

This week’s show is brought to you by Tines, the no-code automation platform. Its co-founder and CEO Eoin Hinchy joins the show in the sponsor slot, and you can check out a Tines demo we recorded with Eoin on YouTube.

Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that’s your thing.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast click here.

In this edition of Between Two Nerds Tom Uren and The Grugq look at reports that try and distil a country’s cyber power into a single number so that they can be ranked and compared. Do these reports say anything useful and have any value?

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast click here.

In this interview the director of the CIA’s Center for Cyber Intelligence (CCI) sits down with Risky Business podcast host Patrick Gray to talk about:

• What CCI actually does
• The CIA’s role in cyber intel and operations
• What lessons have been learned from Russia’s cyber campaigns targeting Ukraine
• Why a cyber conflict with China will be very, very different
• His views on the ransomware threat
• Much, much more

In this podcast Patrick Gray talks to Tom Uren about investigations into the disinformation industry. One election interference for hire company, known as “Team Jorge”, provides a huge variety of dirty tricks services, but we think its claims of massive influence are overblown. Despite that, however, these companies are still corrosive for democracy and a scourge worth tackling. Patrick thinks they’re the “new internet villain” and will replace NSO as a target of hate.

They also discuss Google’s new report that covers Russian cyber operations in its invasion of Ukraine. On the whole a good report, but both Tom and Pat think some of it is problematic.

Finally, they talk about Patrick’s interview with the head of the CIA’s Center for Cyber Intelligence. It’s great to have intelligence officials explain how they see the cyber threat landscape and get their take on war in Ukraine and what that means for cyber operations in future conflicts.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast click here.

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including:

• Why Twitter had to kill SMS 2FA
• A look at Meta’s new verification service
• How a ransomware attack disrupted the semiconductor supply chain
• Why Anonymous Sudan is probably a Russian info op
• Microsoft mixes up public and private keys in Azure B2C (for real)
• Much, much more

This week’s show is brought to you by Proofpoint. Its Executive Vice President of Cybersecurity Strategy Ryan Kalember joins the show in the sponsor slot.

Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that’s your thing.

In this edition of Between Two Nerds Tom Uren and The Grugq look at the differences and similarities between signals intelligence and cyber operations. Why did Five Eyes Sigint organisations end up ‘owning’ cyber operations and does that make sense, or should there be a separate cyber intelligence organisation?