ShadowTalk host Stefano alongside Chris and Dani bring you the latest in threat intelligence. This week they cover:* HolyGhost6 ransomware operation linked with North Korea* Explanation on how malware is created and distributed* Russia fines Google for failing to delete YouTube videos ***Resources from this week’s podcast***Q2 2022 Vulnerability Rounduphttps://www.digitalshadows.com/blog-and-research/q2-2022-vulnerability-roundup/Breach Forums – When Student Becomes The Teacherhttps://www.digita...
Jul 22, 2022•46 min
ShadowTalk host Chris alongside Nicole, Ivan, and Rick bring you the latest in threat intelligence. This week they cover:* Microsoft Patch Tuesday* Chinese cyber espionage groups target Russia* Hive ransomware group takes LockBit information to upgrade to Rust* IBM Security X-Force finds evidence on TrickBot attacking Ukraine***Resources from this week’s podcast***Ransomware in Q2 2022: Ransomware is Back in Businesshttps://www.digitalshadows.com/blog-and-research/ransomware-in-q2-2022-ransomwar...
Jul 15, 2022•32 min
ShadowTalk host Stefano alongside Dani bring you the latest in threat intelligence. This week they cover:* Roughly 1 billion Chinese citizens' data breached* British Army's Youtube and Twitter accounts hacked and used to promote cryptocurrency scams* HackerOne employee steals bug reports to sell ***Resources from this week’s podcast***What We’re Reading This Month: June 2022https://www.digitalshadows.com/blog-and-research/what-were-reading-this-month-june-2022/Hacker claims to have stolen 1 bln ...
Jul 08, 2022•36 min
ShadowTalk host Chris alongside Stefano and Kim bring you the latest in threat intelligence. This week they cover:* Recent advances in cyber threat intelligence and end-point protection have helped Ukraine* Conti finally shuts down data leak and negotiates with victims* LockBit debuts ransomware bug bounty program***Resources from this week’s podcast***Market Differentiation: Cybercriminal Forums’ Unusual Features Designed To Attract Usershttps://www.digitalshadows.com/blog-and-research/market-d...
Jul 01, 2022•31 min
ShadowTalk host Chris alongside Stefano and Kim bring you the latest in threat intelligence. This week they cover:* AlphV breaching victims' data in open source* 'BidenCash' website sells your credit card information for only 15 cents* Account Takeover paper***Resources from this week’s podcast***POLONIUM: Proxy Warfare And Iran’s Cyber Strategyhttps://www.digitalshadows.com/blog-and-research/polonium-proxy-warfare-and-irans-cyber-strategy/Vulnerability Intelligence Roundup: Leveraging The OODA ...
Jun 24, 2022•36 min
ShadowTalk host Stefano alongside Ivan, Nicole, and Rick bring you the latest in threat intelligence. This week they cover:* Cybersecurity researchers disclosed a new Windows zero-day vulnerability* Conti shuts down affiliate program* Cybercriminals discuss LockBit vs Mandiant***Resources from this week’s podcast***Weak Credentials Are Fueling A New Generation Of Cyber Threatshttps://www.digitalshadows.com/blog-and-research/weak-credentials-are-fueling-a-new-generation-of-cyber-threats/Subscribe...
Jun 17, 2022•31 min
ShadowTalk host Stefano alongside Xue, and Kim bring you the latest in threat intelligence. This week they cover:- LockBit x Mandiant PR stunt- Bohrium targets victims in various geographiesGet this week’s intelligence summary at:https://resources.digitalshadows.com/weekly-intelligence-summary/weekly-intelligence-summary-10-jun/***Resources from this week’s podcast*** Killnet: The Hactivist Group That Started A Global Cyber War:https://www.digitalshadows.com/blog-and-research/killnet-the-hactivi...
Jun 10, 2022•31 min
ShadowTalk host Chris alongside Nicole and special guest Geoff White cover the cybercrime group Lazarus and their impact in cyber security.In this special episode, they discuss:* Geoff's new book 'The Lazarus Heist'* An overview of the Lazarus Group* How North Korea created one of the most sophisticated cyber crime groups in the world**Resources from this special podcast**Find Geoff on Twitter: https://twitter.com/geoffwhite247Find Geoff on LinkedIn: https://www.linkedin.com/in/geoffwhite247/Pre...
May 31, 2022•29 min
Digital Shadows CISO Rick Holland hosts this edition of ShadowTalk. Rick is joined by repeat special guest David Thejl-Clayton, Senior Advisor in Cyber Defense at Combitech. They discuss:- Rick and David's thoughts on the 2022 DBIR report (Full disclosure, they are fanboys) - Research that shows how APT groups primarily go after known vulnerabilities and not 0days- David's experience helping customers create their custom version of the DBIR***Resources from this week’s podcast***Find David on Tw...
May 27, 2022•1 hr 31 min
ShadowTalk host Chris alongside Ivan, and Nicole bring you the latest in threat intelligence. This week they cover: - Insider Threat Actor at Chinese real estate brokerage is sentenced to 7 years in prison- Microsoft Patch Tuesday mishap- NFT scamsGet this week’s intelligence summary at: https://resources.digitalshadows.com/weekly-intelligence-summary/weekly-intelligence-summary-20-may-2022***Resources from this week’s podcast***: Vulnerability Intelligence Round-Up: The Good, The Bad and The Ri...
May 20, 2022•28 min
ShadowTalk host Stefano alongside Kim bring you the latest in threat intelligence. This week they cover:* Costa Rica declares state of emergency because of Conti* The European Council formally attributes VIASAT attack to Russia* Five years since the WannaCry incident***Resources from this week’s podcast***Five Years After The WannaCry Dumpster Fire, Ransomware Remains A Global Threathttps://www.digitalshadows.com/blog-and-research/five-years-after-the-wannacry-dumpster-fire-ransomware-remains-a-...
May 13, 2022•35 min
ShadowTalk host Chris alongside Ivan and Nicole bring you the latest in threat intelligence. This week they cover:* REvil ransomware returns with new malware* Moshen Dragon targeting telecommunication service providers in Central Asia* Russian hackers utilize embassy emails to target governments***Resources from this week’s podcast***ALPHV: THE FIRST RUST-BASED RANSOMWAREhttps://www.digitalshadows.com/blog-and-research/alphv-the-first-rust-based-ransomware/Colonial Pipeline One Year Later: What’...
May 06, 2022•20 min
ShadowTalk host Stefano alongside Xue, Kim, & Rory bring you the latest in threat intelligence. This week they cover:* Cybercrime group Lapsus$ is back* Cyber activity in the Russia-Ukraine war so far***Resources from this week’s podcast***The Russia – Ukraine War: Two Months Inhttps://www.digitalshadows.com/blog-and-research/the-russia-ukraine-war-two-months-in/Opportunity In The Midst Of Chaos: Russian-Speaking Cybercriminals Grapple With Sanctions And Forum Takedownshttps://www.digitalsha...
Apr 29, 2022•33 min
ShadowTalk host Chris alongside Ivan, Rick, and Nicole bring you the latest in threat intelligence. This week they cover:* Security researchers find connection between Conti and Karakurt* Chernovite’s Pipedream malware targets ICS networks* Lazarus hacking group is targeting organizations in the cryptocurrency and blockchain industries***Resources from this week’s podcast***The Power Of Data Analysis In Threat Intelligence – Part 2: Machine Learninghttps://www.digitalshadows.com/blog-and-researc...
Apr 22, 2022•32 min
ShadowTalk host Stefano alongside Rory bring you the latest in threat intelligence. This week they cover:* 'RaidForums' has been shut down and seized* SandWorm targets electrical substations in Ukraine* The resurgence of hacktivism in the Russia-Ukraine conflict***Resources from this week’s podcast***Q1 2022 Vulnerability Rounduphttps://www.digitalshadows.com/blog-and-research/q1-2022-vulnerability-roundup/Q1 2022 Ransomware Rounduphttps://www.digitalshadows.com/blog-and-research/q1-2022-ransomw...
Apr 14, 2022•37 min
ShadowTalk host Chris alongside Ivan and Austin bring you the latest in threat intelligence. This week they cover:* Spring4Shell: The Internet security disaster that wasn’t* New Borat remote access malware is no laughing matter* FIN7 hackers evolve toolset, work with multiple ransomware gangs***Resources from this week’s podcast***Intelligence Collection Plans: Preparation Breeds Successhttps://www.digitalshadows.com/blog-and-research/intelligence-collection-plans-preparation-breeds-success/Team...
Apr 08, 2022•20 min
ShadowTalk host Stefano alongside Chris and Rick bring you the latest on structured analytical techniques. This episode they cover: *Why they use SATs in their intel team*How they came up with the idea to analyze Lapsus$*How they chose Team A/Team B and how they prepared it*How the exercise performed*Future research direction***Resources from this special podcast***Meet Lapsus$: An Unusual Group In The Cyber Extortion Business https://www.digitalshadows.com/blog-and-research/meet-lapsus-an-unusu...
Apr 04, 2022•30 min
Bem-vindo ao Shadow Talk em Português! Neste episódio, Ivan, Matheus, e Daniel falam sobre:- A história do grupo Lapsus$ e como eles são diferentes- Conexões do Lapsus$ no Brasil- Reações de outros hackers sobre este grupo- Recomendações de como se proteger do Lapsus$***Recursos deste podcast***Meet Lapsus$: An Unusual Group In The Cyber Extortion Businesshttps://www.digitalshadows.com/blog-and-research/meet-lapsus-an-unusual-group-in-the-cyber-extortion-business/Weekly Intelligence Summary 25th...
Apr 04, 2022•34 min
ShadowTalk host Stefano alongside Kim, Xue, and Rick bring you the latest in threat intelligence. This week they cover a recap of a highly dynamic quarter including:* Log4j complex mitigation and remediation* REvil arrests* Cybercrime and Russia-Ukraine War* Extortion and the emergence of Lapsus$***Resources from this week’s podcast***Log4j: What’s Happened Sincehttps://www.digitalshadows.com/blog-and-research/log4j-whats-happened-since/The Log4j Zero-Day: What We Know So Farhttps://www.digitals...
Apr 01, 2022•30 min
Bienvenido a ShadowTalk en Español! En este episodio, Stefano y Dani van a discutir:* Lapsus$: Un grupo inusual en el negocio de la extorsión cibernética* Cómo Lapsus$ conducen sus ataques* Ataques de alto perfil y la brecha de Okta*** Si hoy has escuchado algo que te resulte curioso, no olvides consultar el contenido disponible en la sección de archivos adjuntos más abajo ***Los blogs de Digital Shadows en Lapsus$:Meet Lapsus$: An Unusual Group In The Cyber Extortion Businesshttps://www.digital...
Mar 31, 2022•30 min
ShadowTalk host Chris alongside Kim, Ivan, and Rick bring you the latest in threat intelligence. This week they cover:* Lapsus$ threat group targets several large companies* Russia/Ukraine war shows no sign of slowing down* TransUnion unveils enhanced data breach***Resources from this week’s podcast***Vulnerability Intelligence Round-Up: Russia-Ukraine Warhttps://www.digitalshadows.com/blog-and-research/vulnerability-intelligence-round-up-russia-ukraine-war/The Okta Breach: What We Know So Farht...
Mar 25, 2022•31 min
ShadowTalk host Chris alongside Austin, Stefano, and Rick bring you the latest on the war between Russia and Ukraine. This episode they cover:* Putin and the Russian military forces * The cybersecurity realm in the midst of war* Continuation and timeline of the ongoing conflict ***Resources from this special podcast***Statement by President Biden on Our Nation's Cybersecurityhttps://www.whitehouse.gov/briefing-room/statements-releases/2022/03/21/statement-by-president-biden-on-our-nations-cybers...
Mar 22, 2022•45 min
ShadowTalk host Stefano alongside Kim and Dani bring you the latest in threat intelligence. This week they cover:* New Malware against Ukrainian targets: CaddyWiper* Crypto ATM and cybercriminals' reactions* Russia to start using homegrown TLS certificates***Resources from this week’s podcast***Meet Lapsus$: An Unusual Group In The Cyber Extortion Businesshttps://www.digitalshadows.com/blog-and-research/meet-lapsus-an-unusual-group-in-the-cyber-extortion-business/The Russia-Ukraine War And The R...
Mar 18, 2022•36 min
ShadowTalk host Chris alongside Ivan and Austin bring you the latest in threat intelligence. This week they cover:* New Linux Vulnerability "Dirty Pipe"* Ransomware Landscape in 2022 So Far* Coinbase Blocks More than 25,000 Addresses Linked to Russia***Resources from this week’s podcast***Exploring SIM Swapping Services On Cybercriminal Forumshttps://www.digitalshadows.com/blog-and-research/exploring-sim-swapping-services-on-cybercriminal-forums/Can Cryptocurrency Be Used To Bypass The Impact Of...
Mar 11, 2022•22 min
ShadowTalk host Chris alongside Stefano and Rory bring you the latest on the escalating tension between Russia and Ukraine. This episode they cover:* IDNS rejects Ukraine's request to block Russian Internet content* Anonymous claimed to have hacked Russian channels to broadcast footage from Ukraine***Resources from this special podcast***News and Updates Related to the Russian Invasion of Ukrainehttps://resources.digitalshadows.com/russian-news-and-updatesDonate to the Ukraine crisis via Red Cro...
Mar 07, 2022•24 min
Bienvenido a ShadowTalk en Español! En este episodio, Stefano y Dani van a discutir:* Rusia y Ucrania crisis* Las reacciones de los cibercriminales a estos eventos* La Sociedad para las Comunicaciones Interbancarias y Financieras Mundiales (SWIFT)* Consejos de mitigación y reducción del riesgoCome siempre, si teneis algún comentario sobre este episodio o si queréis saber mas de algún tema, escribenos a [email protected] y estaremos muy felices para tomar sus preguntas!
Mar 04, 2022•32 min
ShadowTalk host Stefano alongside Kim and Xue bring you the latest in threat intelligence. This week they cover:* Conti Leaks* Reactions from Cybercriminals* Priority Intelligence Requirements***Resources from this week’s podcast***Russian Cyber Threats: Practical Advice For Security Leadershttps://www.digitalshadows.com/blog-and-research/russian-cyber-threats-practical-advice-for-security-leaders/Cybercriminals React To Ukraine-Russia Conflicthttps://www.digitalshadows.com/blog-and-research/cyb...
Mar 03, 2022•32 min
ShadowTalk host Chris alongside Stefano, Rory, and Rick bring you the latest on the escalating tension between Russia and Ukraine. This episode they cover:* Recent cyber developments* Malware targeting Ukrainian organizations* New sanctions against Russia***Resources from this special podcast***Donate to the Ukraine crisis via Red Crosshttps://donate.redcross.org.uk/appeal/ukraine-crisis-appealDigital Forensic Research Labmedium.com/dfrlabPhoton BriefingSHAPING YOUR RESPONSE TO THE RUSSIA - UKRA...
Mar 03, 2022•36 min
ShadowTalk host Chris alongside Stefano, Rory, and Rick bring you the latest on the escalating tension between Russia and Ukraine. This episode they cover:* Continuing attacks between Russia and Ukraine* New sanctions against Russian banks* Cybercriminal developments * Nuclear forces on high alert/peace talks***Resources from this special podcast***Donate to the Ukraine crisis via Red Crosshttps://donate.redcross.org.uk/appeal/ukraine-crisis-appealDigital Forensic Research Labhttps://medium.com/...
Feb 28, 2022•34 min
ShadowTalk host Chris alongside Ivan, Austin, and Rick bring you the latest in threat intelligence. This week they cover:* Russian Offensive Cyber-Team* Conti-Trickbot* OpenSea NFT Breach***Resources from this week’s podcast***Russia Invades Ukraine: What Happens Next?https://www.digitalshadows.com/blog-and-research/russia-invades-ukraine-what-happens-next/Recruitment Fraud In 2022https://www.digitalshadows.com/blog-and-research/recruitment-fraud-in-2022/Of Death And Taxes: File Early To Beat Th...
Feb 25, 2022•36 min
