Join hosts Chris and Kim, Field CISO Rick Holland, and Detection Researcher Corey Carter as they discuss: Black Friday: Cyber Threats Facing the Retail Sector T-Mobile Breached Again Attacks Exploiting PAN-OS Zero-Day Fake AI Image Generators Deploy Infostealers Resources: https://linktr.ee/RQShadowTalk Kim Bromley : Kim Bromley is a Senior Cyber Threat Intelligence Analyst on the ReliaQuest Threat Research Team. She joined ReliaQuest in June 2020 following a 10-year career in UK law enforcement...
Nov 20, 2024•33 min
Join hosts Chris, Kim and Anna as they discuss: ReliaQuest's Cyber Threat Predictions for 2025 Huge Data Leak Linked to 2023 MOVEit Flaw New Ransomware Partners with RustyStealer Volt Typhoon Rebuilds Dismantled Botnet Resources: https://www.reliaquest.com/blog/report-shows-ransomware-has-grown-41-for-construction-industry/ https://www.reliaquest.com/blog/service-account-abuse/ Chris Morgan : Chris Morgan is a Senior Cyber Threat Intelligence Analyst on the ReliaQuest Threat Research Team and ha...
Nov 13, 2024•35 min
In this episode of ShadowTalk, hosts Chris and Kim are joined by Senior Threat Intelligence Analyst Ivan Righi, to discuss the latest news in cybersecurity and threat research. Topics this week include: ReliaQuest research exploring credential theft and misuse Social engineering campaign targets LastPass users Patch now: Sharepoint vulnerability exploited in the wild New Interlock ransomware group targeting FreeBSD OS Resources: https://www.reliaquest.com/blog/the-credential-abuse-cycle-theft-tr...
Nov 06, 2024•32 min
In this episode of ShadowTalk, hosts Kim and Chris are joined by guest speaker Eric Knopp, to discuss the latest news in cybersecurity and threat research. Topics this week include: ReliaQuest research identifies Black Basta TTP changes Amazon seize APT29 domains Tango down: Redline & Meta Infostealers taken down by Dutch police The importance of supporting DEI programs in hiring practices Resources: https://www.reliaquest.com/blog/black-basta-social-engineering-technique-microsoft-teams/ ht...
Oct 30, 2024•44 min
In this episode of ShadowTalk, host Kim is joined by Director of Threat Research Brandon Tirado and Threat Hunter Brian Kelly, to discuss the latest news in cybersecurity and threat research. Topics this week include: Scattered Spider x RansomHub: A New Partnership US Authorities Indict Anonymous Sudan Leaders Crypt Ghouls Deploys LockBit on Russian Organizations APT41 Targets Gambling and Gaming Industry in New Financially-Motivated Campaign Resources: https://www.reliaquest.com/resources/resea...
Oct 23, 2024•30 min
In this episode of ShadowTalk, host Chris and Kim are joined by Detection researcher Corey Carter, to discuss the latest news in cybersecurity and threat research. Topics this week include: ReliaQuest reporting on ransomware activity in Q3 2024 OpenAI confirm malicious use of ChatGPT Russian APT29 mass exploiting known vulnerabilities CISCO data reportedly breached by IntelBroker Resources: https://media.defense.gov/2024/Oct/09/2003562611/-1/-1/0/CSA-UPDATE-ON-SVR-CYBER-OPS.PDF https://www.relia...
Oct 16, 2024•30 min
In this episode of ShadowTalk, host Chris and Kim are joined by detection researcher, Marken, to discuss the latest news in cybersecurity and threat research. Topics this week include: Cyber Threats Facing the Health Care and Social Assistance Sector Salt Typhoon Compromises US-based Telecoms Companies Microsoft and US DoJ Takedown Star Blizzard Infrastructure Gorilla Botnet Conducts Large-Scale DDoS Campaign Resources: https://www.reliaquest.com/blog/threats-health-care-social-assistance-landsc...
Oct 09, 2024•34 min
In this episode of ShadowTalk, host Chris and Kim are joined by guest Samantha Billy, AON U.S Broking Growth Leader, to discuss the latest news in cybersecurity and threat research. Topics this week include: The Critical Role of Cyber Insurance in Mitigating Cyber Risk Embargo Ransomware Targeting Cloud Iranian Threat Actors Conducting Influence Ops Against US Elections National Crime Agency Tease Lockbit Update Resources: https://www.reliaquest.com/blog/2024-us-election-top-cyber-threats-organi...
Oct 03, 2024•36 min
In this episode of ShadowTalk, host Chris and Kim, along with Threat Hunter Brian, discuss the latest news in cybersecurity and threat research. Topics this week include: Telegram Pivot 180: Agree to Share IP and Phone Data on Legal Requests Kaspersky Auto-Replace Software with UltraAV Antivirus Dell Investigate Two Data Breaches ReliaQuest Data Exfiltration Case Study
Sep 25, 2024•30 min
In this episode of ShadowTalk, host Chris, along with Corey and Anna, discuss the latest news in cyber security and threat research. Topics this week include: Threat actors express difficulty in retrieving stolen Fortinet data Amadey malware's novel approach: Users locked in Kiosk Mode Aftermath of incident affecting Transport for London (TFL) ReliaQuest Response to Insider Threat Cases Resources: https://www.reliaquest.com/blog/common-infostealers/...
Sep 18, 2024•33 min
In this episode of ShadowTalk, host Chris Morgan, along with Marken Teder, discuss the latest news in cyber security and threat research. Topics this week include: Russia's Military Intelligence target CNI, identified using "Non-Lethal Acoustic Weapons" New Sextortion scam targets spouses Privacy concerns with smart automobiles ReliaQuest research into "Inc Ransom" Data Extortion Attack Resources: https://www.reliaquest.com/blog/inc-ransom-attack-analysis/...
Sep 11, 2024•37 min
In this episode of ShadowTalk, hosts Chris and Kim, along with guest CISO Rob F, discuss the latest news in cyber security and threat research. Topics this week include: City of Columbus Ohio sue security researcher following ransomware breach Dutch Data Protection Authority fine AI/Facial recognition company Building security teams and improving your cyber maturity ReliaQuest research into top attacker techniques Resources: https://www.reliaquest.com/blog/top-cyber-attacker-techniques/...
Sep 04, 2024•44 min
In this episode of ShadowTalk, hosts Chris and Kim, along with Director of Threat Research Brandon Tirado and Threat Intelligence Analyst Anna, discuss the latest news in cyber security and threat research. Telegram CEO arrested in France over alleged criminal use of the platform Return of Volt Typhoon: China APT exploiting Versa high-severity bug Cybercriminals discuss exploiting physical security gaps to target SMEs
Aug 29, 2024•36 min
In this episode of ShadowTalk, host Kim, along with Corey and Gjergji, discusses the latest news in cyber security and threat research. Topics this week include: Data breach at NPD affecting millions resulted from exposed credentials Iran-linked APT groups abuse OpenAI to create US-election propaganda ReliaQuest Research: Service Account Abuse Resources: https://www.reliaquest.com/blog/exploring-impacket-abuse/ https://www.reliaquest.com/blog/service-account-abuse/...
Aug 21, 2024•36 min
In this episode of ShadowTalk, host Kim, along with Marken and Brian, discusses the latest news in cyber security and threat research. Topics this week include: Unusual Espionage: China-linked threat groups target Russian government, IT organizations Vicious Vulnerabilities: New vulnerability in all Windows systems with IPv6, Sonos Speaker flaws allow eavesdropping ReliaQuest Research: Data Exfiltration Tools and Malware Loaders Resources: https://www.reliaquest.com/blog/exfiltration-tools https...
Aug 14, 2024•32 min
In this episode of ShadowTalk, host Rick Holland is joined by ReliaQuest Lead Threat Hunter Colin Ferris LIVE on the BlackHat show floor in Las Vegas to discuss: Takeaways from BlackHat CISO Summit ReliaQuest presentation on Remote Monitoring & Management (RMM) tools Things to look forward to at DEF CON 32
Aug 08, 2024•27 min
In this episode of ShadowTalk, hosts Chris and Kim, along with Ivan Righi, discuss the latest news in cyber security and threat research. Topics this week include: Rise of the Deepfakes: Threat actors target Ferrari, Fake North Korean IT worker fake's job interview Developments in ransomware: Stormous v3, VSXI, Black Basta develop custom malware ReliaQuest Research: Beyond the Endpoint: Threats Bypassing your Endpoint Detection and Response (EDR) solutions Resources: https://www.reliaquest.com/b...
Jul 31, 2024•32 min
In this episode of ShadowTalk, hosts Chris and Kim, along with ReliaQuest CISO Rick Holland, and Detection Researcher Corey Carter, discuss the latest news in cyber security and threat research. Topics this week include: CrowdStrike Global IT Outage breaks records in impacting 8.5 million devices (1:22) The importance of accountability and trust when working with third party vendors ReliaQuest research into threats facing Financial & Insurance (18:46) Resources: https://www.reliaquest.com/bl...
Jul 24, 2024•27 min
In this episode of ShadowTalk, hosts Chris and Kim, along with guest CISO Craig McEwen, discuss the latest news in cyber security and threat research. Topics this week include: ReliaQuest Research: Ransomware in Q2 2024 Weekly roundup: Threat actors weaponizing exploits within 22 minutes, Disney/AT&T breaches Linking security strategy to expenditure Supporting cyber apprenticeships and investing in people Resources: https://www.reliaquest.com/blog/q2-2024-ransomware/ https://app.galabid.com/...
Jul 17, 2024•49 min
In this episode of ShadowTalk, hosts Chris and Kim, along with Brian, discuss the latest news in cyber security and threat research. The influence of Generative Artificial Intelligence (GenAI) on cybercrime Tango down: Law enforcement takedown over 600 Cobalt Strike servers Record breaking DDoS attack disclosed by researchers Rockyou2024: 9.9 Billion stolen passwords posted onto BreachForums Resource: AI-powered Cybercrime Report...
Jul 11, 2024•28 min
In this episode of ShadowTalk, hosts Chris and Kim, along with Marken, discuss the latest news in cyber security and threat research. Topics this week include: TeamViewer compromised by APT29 in supply chain attack MOVEit in the headlines again, critical severity vulnerability disclosed Popular Content Delivery Network (CDN) providers compromised in supply chain attacks ReliaQuest research in a case study attributed to the Medusa ransomware group Resources: https://www.reliaquest.com/blog/medusa...
Jul 03, 2024•37 min
In this episode of ShadowTalk, hosts Chris and Kim, along with Ivan and Gjergji, discuss the latest news in cyber security and threat research. Topics this week include: Lockbit claim breach of the US Federal Reserve, but are they telling the truth? ReliaQuest research into misuse of Protocol Tunneling Fallout from the US Ban of Kaspersky Resources: https://www.reliaquest.com/blog/protocol-tunneling-tools-and-techniques/#:~:text=Protocol%20tunneling%20is%20a%20technique%20used%20to%20encapsulate...
Jun 27, 2024•32 min
In this episode of ShadowTalk, host Chris, along with Marken, discuss the latest news in cyber security and threat research. Topics this week include: Scattered Spider leader reportedly arrested, as group pivot to target SaaS solutions ReliaQuest research into supply chain compromise. Detections to improve your resilience Classifying insider threats and the difficulties of proving intent Resources: https://www.reliaquest.com/blog/what-is-scattered-spider/ https://www.reliaquest.com/blog/scattere...
Jun 20, 2024•43 min
In this Special Guest Episode of ShadowTalk, host Chris and one of ReliaQuest's CISOs Rick Holland are joined by University of Kansas Health System (UKHS) CISO Michael Meis to discuss the latest news in cyber security and threat research. Topics this week include: Significant threats facing healthcare: Ransomware, accidental insiders The influence of COVID on ransomware activity The immediate and long term impact of the Optum breach The importance of understanding your revenue cycle to weather t...
Jun 12, 2024•43 min
In this episode of ShadowTalk, host Chris Morgan is joined by ReliaQuest Chief Strategy Officer Jason Pfeiffer LIVE on the InfoSec Europe show floor in London, UK to discuss: How InfoSec stacks up against the US cyber conferences Snowflake data breach affecting TicketMaster and others Cybercriminal reflections on generative AI Resources: https://www.reliaquest.com/blog/common-infostealers/...
Jun 05, 2024•27 min
In this episode of ShadowTalk host Corey, along with Gjergji and Brian, discuss the latest news in cyber security and threat research. Topics this week include: Microsoft set to begin the deprecation of VBScript in the second half of 2024 ReliaQuest research into the top three Infostealers Dive into a new crypto miner dubbed 'GhostEngine' ReliaQuest analysis of a BlackSuit ransomware attack Resources: https://techcommunity.microsoft.com/t5/windows-it-pro-blog/vbscript-deprecation-timelines-and-n...
May 30, 2024•33 min
In this episode of ShadowTalk, host Chris, along with Director of Threat Research Brandon Tirado, discuss the latest news in cyber security and threat research. Topics this week include: Microsoft mandating multi-factor authentication across Azure ReliaQuest research exploring fileless malware and living against the land (LoTL) techniques Use of deepfakes in social engineering in 2024 Resources: https://www.reliaquest.com/blog/socgholish-fakeupdates/ https://www.reliaquest.com/blog/new-python-so...
May 22, 2024•42 min
In this episode of ShadowTalk, host Chris, along with Ivan and Marken, discuss the latest news in cyber security and threat research. Topics this week include: Recent ransomware attacks on the healthcare sector do not necessarily suggest a change in targeting preferences Black Basta pivot TTPs: New social engineering campaign using mass sign ups to mailing list spam Pain on the adversary, in having multiple controls to slow down an attacker, can greatly improve cyber resilience when combined wit...
May 15, 2024•35 min
In this episode of ShadowTalk, host Rick Holland is joined by ReliaQuest CTO Joe Partlow and Chief Scientist Brian P. Murphy LIVE on the RSAC show floor in San Francisco, CA to discuss all things AI and automation.
May 09, 2024•27 min
In this episode of ShadowTalk, host Chris, along with Brian and Corey, discuss their career paths, as well as offering tips for individuals aiming to gain employment within cybersecurity. The importance of tact and developing both soft and hard skills Working around personnel constraints Picking the right vendors to compliment your security model Recommendations for advancing your own career
May 01, 2024•39 min
