EPISODE · Jul 24, 2025 · 36 MIN
DEAD IN THE WATER | Maersk, Sandworm, and the $10 Billion Breach
from The CISO Signal: True Cybercrime Podcast · host The CISO Signal
The CISO Signal | S1E1: DEAD IN THE WATER | How Sandworm Crippled Maersk — The $10 Billion BreachIn this premiere episode of The CISO Signal, we uncover the chilling true cybercrime story of the NotPetya attack — a weaponized piece of malware launched by the Russian state-backed hacking group Sandworm, which brought Maersk, the world’s largest shipping company, to its knees.What began as an attack on Ukraine’s infrastructure cascaded across the globe, infecting critical systems, halting operations, and costing the logistics giant over $10 billion in damage.But this isn’t just a story about malware — it’s a case study in lateral movement, trusted access abuse, and what happens when even the most mature enterprises are blindsided by nation-state warfare masquerading as ransomware.🎧 With Guest Co-Host: Shlomi AviviWe’re joined by Shlomi Avivi, a veteran cybersecurity executive and former CISO of several hyper-growth companies. With 20+ years in the trenches of risk management and enterprise security, Shlomi brings a sharp, modern lens to what went wrong, and what CISOs everywhere need to understand today.Shlomi is a strong believer in forward-thinking security strategies that evolve with the threat landscape, and in this episode, he helps unpack how legacy vulnerabilities met modern warfare… and lost.🎧 In this episode:- How a single compromised update triggered global chaos- What Maersk lost — and how close they came to losing everything- The technical and emotional toll on security teams- What CISOs can learn from one of history’s most destructive cyberattacks🧠 Guest Commentary from Top CISOsWe bring in real-world CISOs to analyze the breach, not as victims, but as expert investigators. Together, we examine the breach’s timeline, the security failures, and the haunting “what ifs” that still echo through the infosec world.🔐 For CISOs, by CISOs.The CISO Signal is a cinematic true cybercrime podcast designed for cybersecurity leaders, red teamers, and infosec pros. Each episode dissects a real breach with the tone of True Detective, the rhythm of The Twilight Zone, and the insight only seasoned CISOs can provide.🧭 Subscribe now for weekly episodes that turn infamous cyberattacks into case studies every security team should hear.👉 Don’t forget to like, comment, and share with your security team.#Cybercrime #NotPetya #MaerskHack #Sandworm #TheCISOSignal #CISOPodcast #CybersecurityPodcast #TrueCybercrime #IncidentResponse #NationStateAttack #InfoSec #BreachAnalysis #SOC #RedTeam #SecurityLeadership #SupplyChainSecurity
What this episode covers
The CISO Signal | S1E1: DEAD IN THE WATER | How Sandworm Crippled Maersk — The $10 Billion BreachIn this premiere episode of The CISO Signal, we uncover the chilling true cybercrime story of the NotPetya attack — a weaponized piece of malware launched by the Russian state-backed hacking group Sandworm, which brought Maersk, the world’s largest shipping company, to its knees.What began as an attack on Ukraine’s infrastructure cascaded across the globe, infecting critical systems, halting operations, and costing the logistics giant over $10 billion in damage.But this isn’t just a story about malware — it’s a case study in lateral movement, trusted access abuse, and what happens when even the most mature enterprises are blindsided by nation-state warfare masquerading as ransomware.🎧 With Guest Co-Host: Shlomi AviviWe’re joined by Shlomi Avivi, a veteran cybersecurity executive and former CISO of several hyper-growth companies. With 20+ years in the trenches of risk management and enterprise security, Shlomi brings a sharp, modern lens to what went wrong, and what CISOs everywhere need to understand today.Shlomi is a strong believer in forward-thinking security strategies that evolve with the threat landscape, and in this episode, he helps unpack how legacy vulnerabilities met modern warfare… and lost.🎧 In this episode:- How a single compromised update triggered global chaos- What Maersk lost — and how close they came to losing everything- The technical and emotional toll on security teams- What CISOs can learn from one of history’s most destructive cyberattacks🧠 Guest Commentary from Top CISOsWe bring in real-world CISOs to analyze the breach, not as victims, but as expert investigators. Together, we examine the breach’s timeline, the security failures, and the haunting “what ifs” that still echo through the infosec world.🔐 For CISOs, by CISOs.The CISO Signal is a cinematic true cybercrime podcast designed for cybersecurity leaders, red teamers, and infosec pros. Each episode dissects a real breach with the tone of True Detective, the rhythm of The Twilight Zone, and the insight only seasoned CISOs can provide.🧭 Subscribe now for weekly episodes that turn infamous cyberattacks into case studies every security team should hear.👉 Don’t forget to like, comment, and share with your security team.#Cybercrime #NotPetya #MaerskHack #Sandworm #TheCISOSignal #CISOPodcast #CybersecurityPodcast #TrueCybercrime #IncidentResponse #NationStateAttack #InfoSec #BreachAnalysis #SOC #RedTeam #SecurityLeadership #SupplyChainSecurity
NOW PLAYING
DEAD IN THE WATER | Maersk, Sandworm, and the $10 Billion Breach
No transcript for this episode yet
Similar Episodes
Mar 26, 2026 ·1m
Mar 19, 2026 ·34m
Feb 18, 2026 ·11m
Feb 11, 2026 ·45m