Podcasts

In this edition of Between Two Nerds Tom Uren and The Grugq look at the differences and similarities between signals intelligence and cyber operations. Why did Five Eyes Sigint organisations end up ‘owning’ cyber operations and does that make sense, or should there be a separate cyber intelligence organisation?

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast click here.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Patrick Gray, who’s filling in for Claire Aird.

You can find the newsletter version of this podcast click here.

In this interview we’re chatting with the founder of Greynoise Intelligence, Andrew Morris.

Greynoise operates a global network of sensors that collect data on things like mass scanning, exploitation and reconnaissance. The idea is if your SOC gets an alert from a particular IP you can see if it’s associated with mass scanning or exploitation, or if it’s something that’s just targeting you.

And as you’ll hear, there are other use cases also, but we’re talking about a few things with Andrew today. He talks about being able to selectively port forward attacks targeting his sensor network to a data centre running the services being targeted, about the ESXiArgs ransomware attack and more.

Enjoy!

In this podcast Patrick Gray talks to Tom Uren about North Korea’s foray into state-sponsored ransomware targeting healthcare organisations. There’s reasons to be concerned — North Korea has pulled off some sophisticated hacks and the responses that maybe “work” against cybercriminals might not work at all against the DPRK. Tom thinks that the international community can do a lot more around sanctions that will help.

They also look at President Biden’s talk about privacy at his recent State of the Union speech. Does this mean that the US will finally get meaningful federal privacy and data security legislation? We hope so.

Finally, Tom and Patrick revisit the Chinese spy balloon saga. Even though a single balloon is not a huge threat, an uncontested balloon surveillance program would be and the US is responding strongly. It’s sanctioned six Chinese firms and the US is looking for balloons and finding them. Three more have been shot down since last week, but it looks like they are all just errant balloons rather than more surveillance craft.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast click here.

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including:

• North Korea is ransomwaring hospitals with homegrown and Russian strains
• Russia proposes law greenlighting “patriotic hacks”
• It’s 702 renewal time… again
• CISA releases ESXiArgs recovery script (yay!)
• UK mulls crimephone ban
• Much, much more

This week’s show is brought to you by Thinkst Canary. Haroon Meer is this week’s sponsor guest and joins us to talk about Thinkst’s latest release: the credit card canary.

Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that’s your thing.

In this edition of Between Two Nerds Tom Uren and The Grugq compare and contrast the way Russia and the West project power with cyber operations.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast click here.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast click here.