Videos

In this podcast Tom Uren and Patrick Gray talk about the evolving relationship between Russian intelligence services and the country’s cybercriminals. The GRU’s sabotage unit, for example, has been recruiting crooks to build a destructive cyber capability. Tom suspects that GRU thugs are not so good at hands-on-keyboard operations, but excellent at coercing weedy cybercriminals to hack for the state.

They also talk about OpenAI’s report into malicious actor’s use of its models, and how Australia’s proposed cyber security law looks pretty sensible.

On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:

• Chinese spooks all up in western telco lawful intercept
• Jerks ruin the Internet Archive’s day
• Microsoft drops a great report with a bad chart
• The feds make their own crypto currency and get it pumped
• Forti-, Palo- and Ivanti-fail
• And much, much more

This week’s episode is sponsored by detection-as-code vendor Panther. Casey Hill, Panther’s Director Product Management joins to discuss why the old “just bung it all in a data lake and… ???… “ approach hasn’t worked out, and what smart teams do to handle their logs. …

In this podcast Tom Uren and Adam Boileau talk a new UN report that spells out the role Telegram plays as a massive enabler for transnational organised crime.

They also discuss China’s hacking of US telcos to possibly target of lawful intercept equipment and a remarkably entertaining account of North Korean IT workers being employed by over a dozen cryptocurrency firms.

In this podcast Tom Uren and Adam Boileau talk about how the US government’s response to Iranian election interference is proceeding at light speed. This allows other actors such as Meta to make decisions relating to interference with certainty.

They also discuss how Russian cybercrime group Evil Corp’s relationship with Russian intelligence was built on the founder’s marriage.

Linux security, more identity security and Wiz moves on code scanning…

In this edition of Snake Oilers we hear pitches from three security vendors:

• Sandfly Security: An agentless Linux security platform that actually sounds very cool: https://sandflysecurity.com
• Permiso: An identity security platform founded by ex FireEye folks: https://permiso.io/
• Wiz: The cloud security giant is getting in on code security scanning: https://wiz.io/rb

You can listen to the podcast version of Snake Oilers here: https://risky.biz/snakeoilers20pt2

In this product demo CEO Eoin Hinchy shows how Tines’ Workbench can integrate an LLM into security workflows to gather, analyse and act on data from both inside and outside your company. This demo includes grabbing IOCs from an external webpage, comparing them to your companies own incidents and taking actions like resetting passwords.

In this podcast Tom Uren and Patrick Gray talk about the possibility of deterring Volt Typhoon, the Chinese group that is compromising US critical infrastructure to enable future disruption operations in the event of a conflict with US.

Tom thinks it is not possible to deter Volt Typhoon, but things might work the other way around. If the US can neuter Volt Typhoon and take away the PRC’s magic cyber bullet, it could make conflict less likely.

They also discuss the lessons for all companies in Microsoft’s security turnaround and how X and Telegram have folded in the face of government pressure.

Patrick Gray and Adam Boileau discuss the week’s cybersecurity news with everyone’s favourite ex-NSA big-brain, Rob Joyce. They talk through:

• Musk and Durov bow to government pressure
• Tiktok rushes to ban authoritarian propagandists
• The US doesn’t want Chinese software in its cars
• Kaspersky replaces itself with an AV no one has ever heard of
• Aussie police chalk up another crimephone takedown
• Press Win-R Ctrl-V to prove you’re human
• And much, much more.

This week’s show is brought to you by Stairwell, and Stairwell’s founder Mike Wiacek will be along to talk about how people are using their platform to hunt down detection resistant malware….

On this week’s Risky Business cybersecurity podcast, Patrick Gray and Adam Boileau discuss the weeks security news, including:

Hezbollah’s attempts to avoid SIGINT with pagers ends in explosions The US shines many bright lights on RT’s disinfo role Australia counters Chinese bullying in the Pacific Valid accounts are the most prevalent entry point, says CISA’s data Ivanti and Fortinet vie for worst vendor of the week Krebs writes up the shift towards charging The Com with terrorism And much, much more…

This week’s episode is sponsored by Push Security, who bring security visibility to where it needs to be these days – the browser. Luke Jennings joins this week’s show to discuss how phish-kit crews are driving the arms race forward, and how detection has to adapt and go where the users are. …

In this podcast Tom Uren and Patrick Gray talk about the structure of the spyware ecosystem. It’s concentrated, with lots of vendors in India, Israel and Italy. And its a small pool of talent, with many companies being founded by just a few individuals.

They also talk about the US government’s actions against Russia’s disinformation ecosystem. The US very clearly linked different ‘layers’ of that ecosystem directly to the Russian government. Employing influencers via cutouts also shows how Russian disinformation has responded as social media platforms have countered interference efforts.