All Episodes
ShadowTalk: Powered by ReliaQuest — 477 episodes
China Nation State Cyber Espionage: How OP-512 Exploited Legacy IIS Servers and Evaded Detection
SonicWall, MFA Bypass, IABs: Why Patched Devices Are Still Handing Attackers Initial Access
Device Code, OAuth, PhaaS: How Session Token Theft is Breaking the Phishing Playbook
SQLite, Mistral, OpenAI: How AI Attacks Are Reshaping the Attack Surface
Canvas, Trellix, Mini Shai-Hulud: How Defenders Respond When Supply Chain Attacks Become Weekly
Akira, ShinyHunters, and The Gentlemen: Extortion Lessons From Early 2026
What Happened to Black Basta's Playbook? The Automated Teams Phishing Threat Hitting Executives
Did ShinyHunters Compromise Vercel? Every CISO's Cloud Security Visibility Problem
What Claude Mythos Means for Organizations
Axios and Trivy — Supply Chain Gaps Organizations Must Fix
Faster, Smarter, and Already Escalated — What It Takes to Defend Against the Modern Threat Landscape
The Invisible Attack Surface: Iran-Aligned Threat Actors and Corporate Blind Spots
The 2026 Annual Threat Report Breakdown, Part 3: The Long Game — Nation-State Threats & What's Coming in 2026
The 2026 Annual Threat Report Breakdown, Part 2 — Once They're In: Post-Compromise Tactics, Ransomware & Exfiltration
The 2026 Annual Threat Report Breakdown, Part 1 — How AI Contributes to Attacker Speed, and the Malware That's Winning
Malware Isn't Required—How Ransomware Groups Turn Legitimate RMMs Into a Weapon
Ransomware vs. Exfiltration-Only—The Extortion Model Showdown
Patch Management Is Losing—The Case for Predictive Vulnerability Defense
Beyond Phishing Emails—Social Engineering Drives Initial Access
Malicious AI—The New Face of Cyber Threats
Maintainer Compromise: The Next Supply-Chain Attack Vector in 2026
Kicking Off 2026 with Ransomware Insights and Defense Strategies
React2Shell Attacks Evolve, ClickFix Attacks, and Holiday Season Threats
React2Shell Exploits, CISA’s Brickstorm Warning, ShadyPanda’s Browser Weaponization
Scattered Lapsus$ Hunters, SilverFox's ValleyRat Campaign, and More
Are Cyber Predictions Worth It? Plus Chinese AI Attacks, IoT Takeovers
Fortinet Flaw Exposed and Exploited! Plus, Threat Hunter Hacks: SEO Hits Hard
Gootloader's Return, LANDFALL Android Spyware, Sector-by-Sector Cyber Trends
Why Cloud Threats Are Escalating: Identity Risks, Automation Flaws, and Legacy Vulnerabilities, Plus the Latest on Chinese APT Campaigns and NPM Package Abuse
Why Cyber Threats Surge 20% During M&A, Plus the Latest on Qilin and Lazarus Group Campaigns
Automate to Defend: A Former FBI Agent's Ransomware Guide for CISOs
Is Your Software a Secret Backdoor? Flax Typhoon's Latest Campaign Unwrapped
Cl0p's Latest Heist: Exploiting Oracle's Critical Vulnerability
Should Governments Hoard Zero Days? Analyzing Brickstorm Malware and Storm-1849
Attacker Breakout Time Hits 18 Minutes, New Shai-hulud NPM Worm
Welcome to ShadowTalk
Do You Need AI to Fight AI? Plus Supply-Chain Attacks and Russia's Latest Backdoor
Salesforce Attack Fallout, Axios Abuse, and Cloud Ransomware
New Silk Typhoon Attacks, the Cybercriminal Recruitment Underworld, and More!
Warlock Ransomware Hits Telecoms, LLM Data Theft, and ShinyHunters Updates
ShinyHunters, Scattered Spider, and Salesforce? Plus, Kimsuky Data Breach!
Akira’s Zero-Day Chaos + The Rise of DRP Threats
Full CrushFTP Attack Chain, Plus BreachForums is Back!
New SharePoint Flaw, How Cybercriminals Use AI
Do You Really Need IOCs? Plus Zero-Day Exploits, AI Data Leaks, and Phishing for VIPs
SafePay Ransomware Rises, North Korea Adopts ClickFix
Citrix Bleed 2, Scattered Spider Hits Aviation
Analyzing Iran-Israel Cyber Threats, New Scattered Spider Attack Chain
Israel-Iran Cyber Warfare, Anubis Ransomware, and More Attacker Trends
Black Basta's Enduring Legacy, Qilin Exploits Fortinet Flaws
Scattered Spider's Evolving Playbook, SentinelOne Outage
SPECIAL: How Russian Market Fuels Credential-Based Attacks
The Threat Evolution: SAP Exploits, SEO Poisoning, and SkitNet Malware
Will US Politics Reshape Russian Cyber Threats?
Scattered Spider Strikes Again, Hunt for North Korean Insiders Heats Up
Demystifying CVE-2025-31324, The New Critical SAP NetWeaver Flaw
BreachForums Down: Hacktivist Attack or FBI Crackdown?
Hijacked and Hidden: ReliaQuest Identifies New Backdoor and Persistence Technique
Fast Flux DNS Challenges, Evolving Adversary Tactics, and Proactive Defense Strategies
From Oracle to AI: Everything You Need to Know About Emerging Cyber Threats
Guest Episode: Navigating Cyber Storms with Expert Insights on Incident Response
When Old Meets New: The Rise of VPN Exploits and Brute-Force Tools
Webcam Warfare, Supply Chains Under Siege, Insider Threats, and More!
Hooked and Hacked: Phishing Frenzy, Ransomware Recap, Zero-Day Fallout
SPECIAL: 'From Data to Defense' - Insights from ReliaQuest's Annual Cyber-Threat Report
BlackLock Ransomware, 8Base Seized, Storm-2372 Phishing
Brute Force Campaign, Ransomware Insider Recruiting, Manufacturing Threats
AI Spies, Unused AWS Buckets, New Lazarus Group Infrastructure
Attackers Accelerating Attacks, Lumma Infostealer, DeepSeek LLM
Ransomware Hits New Heights, FortiGate Data Leaked, Sneaky 2FA Phishing Kit
Guest Episode: Ways Threat Intel Can Prioritize Threats, Vulnerability Chaos, Biden Executive Order
Espionage Hits US Treasury, OtterCookie Tricks Jobseekers, ReliaQuest Tackles Pure Malware
Guest Episode: Are Cyber Predictions Worth It? Clop Strikes, BADBOX Crumbles, US Fights Back Against Chinese Espionage
Termite Ransomware, QR-Code Browser Bypass, CAPTCHA Hijacking
BootKitty Unleashed, Word Corruption Campaigns, M&A Cyber Threats
Guest Episode: Can Someone Non-Technical Be a CISO? New APT28 & Palo Alto Exploits
Black Friday Retail Risks, T-Mobile Troubles, AI Deceptions
2025 Cyber Threat Predictions, MOVEit Data Breach, Volt Typhoon Rebuilds
Credential Theft, LastPass Social Engineering, Interlock Ransomware
Guest Episode: Black Basta's TTP Shift, Diversity, Equity, and Inclusion (DEI) In Cyber Security
Scattered Spider x RansomHub, Anonymous Sudan Unmasked, APT41 Gamble
Ransomware in Q3 2024, Cisco Breached, ChatGPT Misuse
Healthcare Cyber Threat, Salt Typhoon Compromises US Telecoms, Gorilla Botnet DDoS Campaigns
Guest Episode: Importance of Cyber Insurance, Embargo Ransomware Target Cloud, Influence Ops Target US Election
Telegram's Pivot, Kaspersky's Surprise, Remediating Data Exfiltration Attacks
Fortinet Breach, Malware Locks Users in "Kiosk" Mode, Insider Threat Case Studies
GRU Orchestrate Sabotage and Assassination, Sextortion Scams, Inc. Ransom's Novel Attack
Guest Episode: Building Security Teams, Ransomware and Lawsuits, Top Attacker Techniques
Telegram CEO Arrested, Volt Typhoon, Cybercriminal Forum Insights
NPD Breach Latest, Election Disinformation, Service Account Abuse
Unusual Espionage, Vicious Vulnerabilities, Popular Exfiltration Tools and Malware Loaders
Special: LIVE from BlackHat 2024, Unauthorized RMM Useage, DEF CON 32 Preview
Deepfakes-The New Frontier in Deception, Ransomware Roundup, Threats Bypassing Your EDR
CrowdStrike Global IT Outage, Finance & Insurance Threats
Guest Episode: Ransomware in Q2 2024, Disney/AT&T Breach
GenAI Powers Cybercrime, Cobalt Strike Takedown, Record-breaking DDoS Attack
Weekly: TeamViewer Supply Chain Attack, MOVEit Horrors, Medusa Ransomware Case Study
Weekly: Lockbit Claim US Federal Reserve Breach, Protocol Tunneling, Kaspersky Banned in US
Weekly: Future of Scattered Spider, Supply Chain Compromise, Insider Threats
Guest Episode: Cyber Threats Facing Healthcare, Optum Impact, Ransomware, AI and Automation
Special: Live from InfoSec Europe 2024, Snowflake Breach, Cybercriminal AI reflections
Weekly: Microsoft Deprecates VBScript, Common Infostealers, GhostEngine Cryptominer, BlackSuit Attack Analysis
Weekly: Microsoft Enforce MFA, Fileless Malware, Rise of Deepfakes
Weekly: Ransomware Impacting Hospitals, Q1 Most Observed Attacker Techniques, BreachForums Advertise Access to Security Company
Special: AI and Automation at RSAC 2024
Cracking the Code: Getting a Job in Cybersecurity
Weekly: APT28 Activity, Iran/Israel Tensions, Ransomware Rebrands
Weekly: Palo Alto Critical Exploit, VPN Management, RansomHub Leak Optum Data
Weekly: HC3 Social Engineering Warning, ReliaQuest Q1 Phishing Report, Microsoft Copilot
Weekly: New Backdoor in XZ Utils, SEO Poisoning, Impersonation Scams
Weekly: Google AI Search, Spain Telegram Ban, Speculative Execution Vulnerabilities
Weekly: AT&T Breach, Magnet Goblin, ReliaQuest's Annual Threat Report (ATR)
Weekly: TeamCity and Supply Chain Risk, BEC Detections, Midnight Blizzard
Weekly: ConnectWise Critical Vulnerabilities , Credential Theft, NIST Frameworks
Weekly: Lockbit Return, SAT Exercises, Optum Breach
Weekly: Lockbit Taken Down, RMM Tool Abuse, Chinese Gov't Documents Exposed
Weekly: SocGholish, Volt Typhoon, ToothBrush DDoS' and Flipper Zero
Weekly: AnyDesk Breach, Deepfake Social Engineering, Q1 2024 Priorities
Weekly: Killnet 2.0, Baselining Detection Rules, Ransomware in Q4 2023
Weekly: Midnight Blizzard Targets Microsoft, Recent Attacker Techniques, Citrix NetScaler Vulnerabilities
Weekly: Ivanti Zero-days, Valid Account Misuse, Emerging risk from (IoT) devices
Weekly: Cyber Threats Developments of 2023, Lockbit Targets Healthcare
Weekly: 2023 in Review, ALPHV Targeted by FBI, Predictions for 2024
Weekly: BYOVD Report, Log4Shell Two Years Later, ALPHV Site Outage, Delaying SEC Disclosures
Weekly: Ransomware Targeting ESXi, Threats to Airline Organizations, CNI Impacted
Weekly: EDR Pitfalls, Okta Intrusion Update, Secure AI Guidelines, Expired Google Cookies
Weekly: ALPHV SEC Complaint, Scattered Spider Case Study, Sandworm Attacks
Weekly: CitrixBleed, Taking a Proactive Approach to IR, BiBi wiper targets Israeli Organizations
Weekly: Apache ActiveMQ and Atlassian Confluence, SEC files charges, QR code phishing
Weekly: SolarWinds SEC Charges, Vulnerabilities Roundup, AI Executive Order
Weekly: Q3 Ransomware Report, ServiceNow Vulnerability, Okta Incident
Weekly: Critical CISCO IOS XE Vuln, Business Email Compromise (BEC) activity, malicious use of Discord
Weekly: Hamas Cyber Threat Implications, Top Adversary Techniques, Qakbot
Weekly: National Cyber Security Awareness Month (NCSAM), Progress FTP Server, RDP Sessions, IronNet
Weekly: Hunting for MFA bypass techniques, Libwebp Vuln exploited, VMWare ESXi
Weekly: MFA Bypass Techniques, Microsoft Data Leak, Latest ALPHV Attack
Weekly: Anonymous Sudan, Domain Redirection Attacks, UK Ransomware Report and Managed Engine Zero-Day Exploit
Weekly: SocGhoulish deep dive, AI security concerns, LockBit vs. UK MOD
Weekly: Qakbot Takedown, New Barracuda Zero-Day, Resurgence of Hacktivism
Weekly: Malware Loaders, Ransomware Runbooks, Generative AI and Barracuda ESG
Weekly: DefCon, Cl0p, Raccoon Stealer
Weekly: AI at BlackHat, Device Code Phishing, Russia-Ukraine War Trends and DEF CON Tips
Special: CISO Chat Live from BlackHat 2023
Weekly: Business Email Compromise (BEC), ReliaQuest Bi-Annual threat reports, influence of AI on the Cyber Threat Landscape
Weekly: What We're Seeing Right Now, Cl0p Cycle Continues, Ivanti Zero-Day, ALPHV API
Weekly: What We're Seeing Right Now, Cl0p Update, WormGPT
Weekly: Microsoft Cloud Breach, Strava App, Cl0p Update and Remote Management Monitoring
Weekly: Defense Evasion via Virtualization, LockBit target TSMC, CISA Identify New Exploited Vulnerabilities
Weekly: Legal Developments, New APT29 Campaign and ReliaQuest's Annual Threat Report
Weekly: Cl0p update, Killnet target European financial institutions, closed sources findings
Weekly: Cl0p releases company names, Gootloader, new Fortinet RCE, Ukrainians hackers take down Infotel.
Weekly: MOVEit Zero-day and Cl0p attribution, Infostealing ecosystem, DBIR 2023 Report
Weekly: MOVEit Zero-day, RaidForums Breach, Buhti Ransomware
Weekly: GootLoader, Intrusion Truth, Volt Typhoon, and Exponent conference debrief
Weekly: SocGholish, Cactus Ransomware, Greatness Phishing-as-a-service
Weekly: Snake malware takedown, Kubernetes hunts, and Caffeine Phishing-as-a-Service
Weekly: ReliaQuest Threat Management, ALPHV, Veeam Vulnerability Exploited
Weekly: RQ Ransomware Report, 3CX Update, Russia-Ukraine Cyber Operations, and Cybercriminal Ecosystems
Special: RSA Conference 2023
Weekly: Vulnerability Quarterly Roundup, Domino Backdoor, Lockbit Targeting MacOS
Weekly: Cobalt Strike takedown, latest MERCURY campaign, Patch Tuesday
Weekly: Genesis Market seizure, Vulkan Files, and new Microsoft Security Update
Weekly: 3CX supply chain attack, Rostec deanonymize Telegram, IcedID
Weekly: Outlook Vulnerability, TeamTNT and Breachforums closure
Weekly: SVB collapse, FBI IC3 report, and Cl0p update
Weekly: US National Cybersecurity Strategy, Emotet and Cl0p return
Weekly: HTML Smuggling, CISA Guidance on Logging
Weekly: Russia-Ukraine War - One-Year Later
Weekly: Trickbot/Conti Sanctions, OneNote Documents, and NATO DDoS Attacks
Weekly: VMware ESXI campaign and SocGholish overview
Weekly: Hive Ransomware Takedown and Dark Web Cybercriminal Jobs
Weekly: Ransomware Profits Drop, Russian ISP, and Microsoft Investigation
Weekly: 2022 Recap and Forecasting 2023 Trends
Weekly: Turla Target Ukraine, ChatGPT, and Lorenz Ransomware Activity
Weekly: Welcome to 2023!
Weekly: Recent Vulnerabilities, Clop Ransomware, New Year's Resolutions
Weekly: Russian and Ukraine Roundup, Lazarus Group Cryptocurrency Activity, Apple’s Right to Repair
Weekly: Sandworm targets Ukraine, Oracle RCE vulnerability, 300th Episode
Weekly: LockBit Arrest, Tech Layoffs, Black Friday Risks
Weekly: APT29 Credential Roaming, Russian Hacktivists Use Somnia Ransomware, Recent LockBit Activity
Weekly: British Government Scanning UK Devices, Twitter's Verification Process, Latest Emotet Return
Weekly: APT10 Deploy LODEINFO Malware, New Azov Data Wiper, Emotet Malicious Spam
Weekly: Ukraine Activity Roundup, Vice Society Targeting Schools, Iranian Hacktivism
Weekly: REvil connection to Ransom Cartel, Cryptocurrency hacks in Japan by Lazarus, Toyota T-Connect Attack
Weekly: US Airports DDoS’d, Fortinet Vulnerability, Deep Dive Into Information Stealers
Rick Holland with Michael Farnum & Greg Porterfield of Set Solutions: Uber breach & 2023 predictions
First use of LockBit Builder, Ransomware Groups Destroying vs. Encrypting Data, Domain Shadowing
LockBit Builder leak, Lapsus$ breaches Rockstar and Uber, Emotet pushes Quantum and Alphv ransomware
Weekly: Intermittent Encryption Tactics, Geopolitical Developments in Cyber Crime
Weekly: Revival of Hacktivism, Targeting the Education Sector, Terror NFTs
Weekly: LastPass Incident, Montenegro Attacks
Weekly: Cyber Threat Insurance, LockBit’s lockdown, Charming Kitten email attack
Weekly: BlackHat and Defcon Recap, Microsoft’s Patch Tuesday, North Korea Fake Coinbase Jobs
Weekly: A History of Ransomware, deBridge Hack Details, Advice for Multiple Ransomware Attacks
Weekly: 911 Proxy Service Ends, ALPHV claims attack on pipeline and Recent news from Taiwan & China
Weekly: Entrust Ransomware Attack, Coinbase Insider-Trading Case and Redeemer Ransomware Builder
Weekly: North Korea Makes Comeback with Ransomware, How Malware is Distributed, Russia Fines Google
Weekly: Microsoft Patch Tuesday, Russia Targeted, Hive Ransomware Upgrade, TrickBot Attacks Ukraine
Weekly: Chinese Data Leaked, Crypto Scam Targets British Army, Bug Bounty Reports Insider Threat
Weekly: Cyber Threat Intelligence Aids Ukraine, Conti Stops Data Leak, LockBit's New Bounty Program
Weekly: AlphV Publishes Victims' Data, 'BidenCash' Website Sells Credit Card Info, ATO Paper
Weekly: Follina Zero Day, Conti Shuts Down Affiliate Program, LockBit vs Mandiant Discussion
Weekly: LockBit PR Stunt Against Mandiant and Bohrium Targeted Users Via Spear-Phishing Operations
Special: Geoff White and the Lazarus Heist
Special: David Thejl-Clayton Talks Rolling Your Own Verizon DBIR
Weekly: Insider Threat Actor is Sentenced, Microsoft Patch Tuesday Mishap and NFT Scams
Weekly: Costa Rica Declares State of Emergency, EU Accuses Russia of Attack, 5 Years Since WannaCry
Weekly: The Return of REvil, China APT Activity, Russia-Ukraine RoundUp
Weekly: The Return of Lapsus$, 2 Months of Russia-Ukraine War
Weekly: Connection Found Between Conti and Karakurt, ICS Networks Targeted, Lazarus Uses Crypto Apps
Weekly: Cybercriminal Forums Go Down & Cyber Activity in the Russia-Ukraine War Go Up
Weekly: Spring4Shell, Borat RAT, FIN7 Evolves Toolset
Special: Structured Analytical Techniques and Office Banter
Especial: Desvendando o Grupo de Hackers Lapsus$
Weekly: Q1 Review Including Russia-Ukraine War, REvil Arrests, Emergence of Lapsus$ & More!
Especial: Lapsus$, Sus Ataques, y La Brecha de Okta
Weekly: Lapsus$ Targets Large Companies, Russia/Ukraine Ongoing War, TransUnion Data Breach
Special: Russia-Ukraine War Update 22 March 2022
Weekly: New Malware "CaddyWiper", Crypto ATM, Russia to Use TLS Certificates
Weekly: Linux Vulnerability "Dirty Pipe", 2022 Ransomware Landscape So Far, Coinbase Blocks Russia
Special: Russia-Ukraine War Update 07 March 2022
Especial: Rusia y Ucrania Guerra, SWIFT, y Consejos de Mitigación y Reducción del Riesgo
Weekly: Conti Leaks, Reactions from Cybercriminals, & Priority Intelligence Requirements
Special: Russia-Ukraine War Update 02 March 2022
Special: Russia and Ukraine - What We Know So Far - 28 February 2022
Weekly: Russian Offensive Cyber-Team, Conti-Trickbot, OpenSea NFT Breach, & More!
Special: Russia and Ukraine Conflict
Weekly: US DoJ Indictment, Grey Hat & ETH's Bounty, Crypto Ads
Weekly: Microsoft to Enable Macros in Office, Russia Arrests Hacking Group, Valentine's Day Concerns
Weekly: Cyber Operations As Part of Hybrid Warfare in Russia-Ukraine Context
Weekly: Malicious QR Codes, Ransomware Insider Attacks, Russia/Ukraine Conflict Escalates
Weekly: Attacks Against Ukrainian Websites, REvil Arrests, and Microsoft Wiper
Weekly: H2 Database Vulnerability, DDoS Extortion, and Alternate ransomware techniques
Especial: Servicios financieros, ransomware, y ciberdelincuencia
Weekly: Closing out 2021 with Log4j Updates, Karakurt News, and a Cybercriminal Arrest
Special: Log4j Zero-day Vulnerability
Weekly: NICKEL Targets LATAM and Europe, Quantum Computing, and UK Cyberattack
Weekly: IKEA Hack, Sabbath Ransomware Group, Proofpoint Rich Text Format and More!
Weekly: GoDaddy Breach, MosesStaff Political Attacks, and Conti Orchestrates Emotet Comeback
Weekly: Exploit-as-a-Service, Emotet’s Return, and FBI Fake Email Campaign
Special: NCSAM Takeaways and Key Resources
Weekly: Robinhood data leak, NSO in US Appeals Court and Iranian-linked hackers target ISPs
Weekly: NRA under the gun, Groove hoax, and Conti gulf apology
Weekly: NOBELIUM is back, Ransomware Decryptors and Employers, and Spooky Halloween Tales
Weekly: REvil Rep Death, Ransomware Trends, and BlackMatter Advisory
Weekly: FIN12 targets healthcare, Google Phishing, and Pentagon Official Resigns
Weekly: Twitch Hack, Facebook blackout, and Pandora Papers
Weekly: NOBELIUM Malware, BEC scheme, and EU Condemns Russian Cyberactivity
Weekly: FBI under fire, Microsoft goes passwordless, and RaidForums
Special: Dr. Tom Robinson - Threats to Crypto and Tracking Ransomware with Blockchain Analytics
Weekly: Mozi arrest, Fortinet credentials, and Splunk PowerShell Release
Weekly: ProxyToken and Lockfile, AlphaBay’s Comeback
Weekly: #tbt Throwback Thursday Edition
Weekly: Prometheus, Ransomware Updates, and Microsoft Morse Code
Weekly: Phishing Site Targets Scammers, China Pulls False Flag in Israel, $600 Million Crypto Hack
Weekly: Wiper Malware Targets Tokyo Olympics, MeteorExpress Attack, PwnedPiper, Hopper and More!
Weekly: CISA guidelines, Q2 Ransomware roundup, and PunkSpider’s back!
Weekly: Microsoft Exchange attribution, NSO Spyware, Zero-days, and Clippy
Special: Bryson Bort, Cyber Gandalf and MORE!
Weekly: Kaseya Attack Updates, Fancy Lazarus, and Spyware on Google Play
Weekly: LinkedIn Breach, Marketo Marketplace, Playstation Breach, Western Digital MyBook, Nobelium
Special: Cyber Threat Intel Leader Gert-Jan Bruggink, legos, and MORE!
Weekly: Google Releases Supply-Chain Framework, New NATO Agreements, and More!
Special: Pulsedive Founders Dan and Grace Talk Origins, IOCs, and More
Weekly: VPN Vulnerabilities, EA Gets Attacked, Plus Clop Deals With Affiliate Arrests
Special: Anomali’s AJ Nash Talks Origin Story, Building Threat Intel Teams, and More!
Weekly: Chinese Cyber Espionage, GitHub Takedowns, and EURO 2020 Predictions
Weekly: Nobelium Attacks, VMWare Exploits, and the Biden Administration’s Letter on Ransomware
Special: The State of the APAC Cyber Threat Landscape
Weekly: Drug Kingpin Taken Down by Cheese and Ransomware Makes a Comeback
Special: Jeff Stone Discusses His Origin Story, Interviewing Cybercriminals, and More!
Weekly: Colonial Pipeline Updates, DarkSide Feels the Pressure, and More!
Weekly: The Colonial Pipeline Incident, BEC Gift Card Campaigns, and More!
Special: David Thejl-Clayton Talks Data Driven Incident Response and Verizon DBIR
Weekly: VPN Vulnerabilities, Supply Chain Attacks, and Babuk Says “Bye”!
Special: Amy Bejtlich Talks Culture of Candor Within Intel Teams and More!
Special: ShadowTalk’s 200th Episode!
Weekly: Supply Chain Attacks Rule The Day, Plus The FBI Takes On Web-Shells
Weekly: Q1 Ransomware Round-Up - Looking Back at Early 2021
Weekly: Facebook Data Breach, Ransomware Cartel, and More!
Weekly: It’s A Ransomware Round-Up - CNA , Clop, and Much More!
Special: Dr. Chase Cunningham Talks Zero Trust, His Book on Cyber Warfare, and More!
Weekly: More on Microsoft and Acer Receives $50 Million in Ransom Demands
Special: Creator of Zero Trust John Kindervag Talks Origins and the Future of Zero Trust!
Weekly: Ransomware Resurgence - The Return of FIN8, DarkSide, and More!
Weekly: Supply Chain Compromise Round-Up - Microsoft, Verkada, and More!
Weekly: New Australian Legislature, VMware Bugs, and More!
Weekly: When Initial Access Brokers Attack
Weekly: Egregor Arrests, SIM-Swapping, and Oldsmar Updates!
Weekly: Ransomware Updates - CDPR Victimized, Ziggy’s End, and the Oldsmar Water Incident
Weekly: Lebanese Cedar, Nefilim Ghost Credentials, and More on SolarWinds and Emotet
Weekly: Law Enforcement Wins the Week - The Fall of NetWalker and Emotet!
Weekly: CISA Security Advisory, IObit Attack, and more SolarWinds!
Weekly: Sunburst, Sunspot, and more on SolarWinds!
Weekly: SolarWinds Updates, TicketMaster Fraud, Apex Cyber Attack, and More!
Weekly: SolarWinds Supply-Chain Attack Round-Up
Weekly: FireEye Breach, Phishing for the Covid-19 Vaccine, and More!
Special: Guest Brian Wrozek Talks Origin Story, Planning for 2021, and More!
Weekly: Gootkit & REvil, Spam Haus Findings, and More!
Weekly: Egregor Ransomware, IoT Regulations, Black Friday Threats and More!
Weekly: FunnyDream, Ragnar Locker on Facebook, and Egregor Ransom Notes
Weekly: RegretLocker, OceanLotus, Millions Seized in Cryptocurrency, and more!
Weekly: Election Update, Kimsuky Activity, Maze Group Announces Closing, Wroba Mobile Malware
Special: Guest Phillip Wylie Talks Origin Story, Bear Wrestling, and Much More!
Weekly: The Team Gets Spooky with Fancy Bear, Ryuk, and More!
Weekly: SandWorm Indicted by DOJ, Darkside Has A Soft Spot, and Ryuk's Super Speedy Attack!
Weekly: Microsoft Derails Trickbot, Ransomware Running Rampant, Fitbit Customers At Risk, and More!
Special: Guest Marcus Carey Talks Origin Story, BBQ, Diversity, and More!
Weekly: Sanctions from the DOT, Fancy Bear Targets the US Government, and Foreign Spies in Disguise!
Weekly: It’s A Ransomware Roundup: Mount Locker, Old Gremlin, REvil, and More!
Weekly: Law Enforcement Cracks Down On Cybercriminals, Fancy Bear Goes Phishing, And More
Special: Discussing Deception with Chris Sanders
Weekly: Ed Merrett Joins To Talk HackableYou And The Latest In Threat Intel
Weekly: The Team Talks Baka, Epic Manchego, and Smaug, Plus Emotet Rides Again
Weekly: New Zealand Stock Exchange faces DDoS, Tesla avoids cyberattack, and Pioneer Kitten updates
Weekly: Photon Team Talks BeagleBoys, DarkSide, and DeathStalker, oh my!
Special: Guest David Bianco Talks Origin Story, Pyramid of Pain, and More
Weekly: Emotet Gets a Vaccine, NSA Drovorub Advisory, and North Korean Activity plus Bureau 121
Weekly: Defaced Subreddits, Intel Leak Drama on Twitter, and HIBP Goes Open-Source
Weekly: CWT pays ransom, data leaked for 900+ Pulse Secure Servers, EU issues first cyber sanctions
Special: Guest Geoff White Talks Best-Selling Book Crime Dot Com
Weekly: Garmin ransomware attack, QSnatch malware, and ShinyHunters Stage 2
Weekly: Trickbot trojan mishaps, Emotet resurgence, Twitter takeovers, and APT group updates
Weekly: Twitter takeovers, Data Viper breached by NightLion, and a look at CryptBB
Weekly: PAN-OS Vulnerability, Lazarus Group, BEC scammer “Hushpuppi”, and New Photon ATO Research
Weekly: Torigon, Nulledflix, and BlueLeaks, Plus DevSecOps Insights From DS CISO Rick
SPECIAL: Guest Speaker Tom Schmitt Talks About His Origins in Cyber Threat Intel and TITO
WEEKLY: Lookback Operators Deploy New Malware Against US Utilities Sector And Honda Cyber Attack
SPECIAL: What Goes Into The Verizon DBIR With Alex Pinto
WEEKLY: Maze Ransomware Alliance, EndGame DDoS Protection Tool, And Ransomware Disguises
WEEKLY: Hacktivist Chooses Destruction Over Profit w/ Ransomware and Collection 1 Hacker Identified
WEEKLY: Verizon DBIR, ShinyHunters, Sodinokibi Ransomware, And More Phishing
SPECIAL EPISODE: Contact Tracing and COVID-19
SPECIAL EPISODE: Remote Worker Security: Tech & ISP Providers, Data Security, And The Future
WEEKLY: WannaCry Anniversary, Wordpress Plugin Vuln, WeLeakData Compromised
WEEKLY: Competitions On English Forums, Purple Teaming, & Hacker Bribes 'Roblox' Insider
SPECIAL EPISODE: The Human Element Of Cybersecurity Programs With Hacker Valley Studio
WEEKLY: Microsoft Teams ATO Vulnerability, APT32, & Uptick In Ransomware
WEEKLY: Maze Ransomware Infiltrates Cognizant, Czech NCISA Warning, And Third Party Risk Assessment
WEEKLY: SFO Airport Hack, Fin6, And Sodinokibi Switching From Bitcoin To Monero
WEEKLY: COVID-19 Third Party App Risks, Zoom, And DarkHotel Hackers
WEEKLY: Zoom Zero-Day Vulnerabilities and Fin7 Delivering Malware Via Snail Mail
WEEKLY: Remote Worker Threat Model And Cybercrime Updates
WEEKLY: Slack Vulnerability, Apollon Dark Web Exit Scam, And Online Brand Protection
SPECIAL EPISODE: Coronavirus: Cybercrime Reactions And CISO Advice
WEEKLY: Necurs Botnet, SMB Vulnerability, Coronavirus Scams, And Dark Web Updates
WEEKLY: Banking Trojan Steals Google Authen Codes, Ransomware Attacks Epiq, & Tesco Clubcard Fraud
SPECIAL EPISODE: FBI Releases Its Internet Crime Complaint Center (IC3) Report 2019
WEEKLY: Data Breaches, Stalkerware, and Dopplepaymer ransomware
WEEKLY: OurMine hacks FC Barcelona & Olympics twitter handles, Adsense email extortion, & phishing
WEEKLY: yOurMine, Equifax Indictment, and SWIFT POC attack
SPECIAL EPISODE: Threat Report ATT&CK Mapping (TRAM) With MITRE’s Sarah Yoder & Jackie Lasky
WEEKLY: CTI Frameworks, Wawa Breach Updates, APT34, And Coronavirus Phishing Scams
WEEKLY: SANS CTI Summit, Snake Ransomware, CacheOut, And Citrix Vuln Update
WEEKLY: Citrix Vulnerability, Microsoft Data Breach, and Telnet Credentials Published
WEEKLY: NSA Vulnerability Disclosure, Ransomware News, And Iran Updates
WEEKLY: Iranian Cyber Threats, Travelex Ransomware Attack, And Exploit Forum Updates
SPECIAL EPISODE: Iranian Cyber Threats: Practical Advice From CISO Rick Holland
Jingle Bell Ryuk: NOLA Ransomware, Ring Doorbells, And 2020 Predictions
Tochka Dark Web Market Offline, Market.ms Closes, And Data Leakage Stories
Cybercriminal Forum Research, Mixcloud Breach, and International Crackdown On RAT Spyware
Black Friday Deals On The Dark Web, Phineas Fisher Manifesto, And DarkMarket
BSidesDFW Recap, Dynamic CVV Analysis, And The Facebook Camera Bug
BlueKeep Attacks, Megacortex Ransomware, and Web.com Breach
7.5M Adobe Creative Cloud User Records Exposed, City Of Joburg Ransomware Attack, and APT28 Updates
Avast Breach Attempt, NordVPN Breach, And Wifi Security Risks
Singapore Cyber Threat Landscape Updates 1H 2019
Typosquatting and the 2020 U.S. Election, Honeypots, And Sudo Vulnerability
Iran-Linked APT35, Skimming By Magecart 4, Rancour, And Emotet Resurgence
The Tyurin Indictment- Mapping To The Mitre ATT&CK™ Framework
Magecart Five Widens Attack Vectors, Targeting of Airbus Suppliers, & Tortoiseshell Developments
Tortoiseshell Targets IT Providers, The Tyurin Indictment, And Emotet’s Return
NCSC Threat Trends And Ransomware Updates
Purple Teaming: An Interview With Eliza May Austin
Metasploit Project Publishes Exploit For Bluekeep, plus APT3 and Silence Cybercrime Group Updates
Ryuk Ransomware, Twitter Rids SMS Tweets, And Facebook Records Exposed
More Sodinokibi Activity, Imperva Breach, And Weirdest Food At The Texas State Fair
Approaching Cybersecurity As A Third Party Defense Contractor
Texas Ransomware Outbreaks And Phishing Attacks Using Custom 404 Pages
Breach! Exploring The Modern Digital Breach With Cyber Defense Lab’s CEO Bob Anderson: Part 2
Nightmare Market In Disarray And SEC Investigation Into Data Leak At First American Financial Corp
Breach! Exploring The Modern Digital Breach With Cyber Defense Lab’s CEO Bob Anderson - Part 1
Capital One Breach, Ransomware Trends, and Threat Actors
2FA - Advice For Deployment & A Technical Assessment
More BlueKeep updates, FSB contractor hacked, and the Enigma Market
Interview With Dir Of Threat Intelligence At McDonalds, Brian Hillegas
FaceApp Overblown, BlueKeep Updates, And Libra’s Lawmaker Showdown
Interview With Deputy CISO At Accenture, Jason Lewkowicz
TA505 Global Attacks, Zoom 0-Day, and New Magecart Activity
Marriott Faces GDPR Fines - A DPO and CISO Discussion
Operation Soft Cell, Libra Cryptocurrency Impersonations, and New Cyber Espionage Activity
Google Calendar Phishing, Exim Email Server Vulnerability, and Diversity in Cybersecurity
XMRig Cryptocurrency Mining, FIN8 Backdoor, and Attacks Against Office 365
“HiddenWasp” and “BlackSquid” malware, TA505 and Turla actvity, and Too Much Information: The Sequel
JasperLoader, APT28 URL shortening, and RDP vulnerability discussion
CVE-2019-0708 RDP vulnerability and GDPR’s anniversary
ElectricFish malware attributed to "Lazarus Group"
“Buckeye” APT group used Equation Group tools before 2017 leak
Weekly Intelligence Summary: Ep 17
Weekly Intelligence Summary: Ep 16
Weekly Intelligence Summary: Ep 15
Weekly Intelligence Summary: Ep 14
Weekly Intelligence Summary: Ep 13
Weekly Intelligence Summary: Ep 12
Episode 60: Cyber Risks and High-frequency Trading
Weekly Intelligence Summary: Ep 11
Weekly Intelligence Summary: Ep 10
Episode 59: Practitioner’s Guide to Email Spoofing
Weekly Intelligence Summary: Ep 9
Weekly Intelligence Summary: Ep 8
Weekly Intelligence Summary: Ep 7
Episode 58: A Tale of Epic Extortions
Weekly Intelligence Summary: Ep 6
Weekly Intelligence Summary: Ep 5
CISO Spotlight: Security Goals and Objectives for 2019
Weekly Intelligence Summary: Ep 4
Weekly Intelligence Summary: Ep 3
Weekly Intelligence Summary: Ep 2
Episode 57: Singapore Healthcare Breach
Weekly Intelligence Summary: Ep 1
Weekly Intelligence Summary: Ep 0
Episode 56: Positive cyber security developments for 2019
Episode 55: Tackling Phishing
Episode 54: Marriott Breach And 2019 Trends
Episode 53: Threat Actors Use of Cobalt Strike & How Attacker Actions Can Inform Defenses
Episode 52: Black Friday and Cybercrime
Episode 51: Phineas Fisher and the Hacking Team Investigation
Episode 50: CISCO ASA 0-day and VirtualBox Vulnerability
Episode 49: 81,000 Hacked Facebook Accounts For Sale
Episode 48: Tesco Bank Fraud And £16.4m FCA Fine
Episode 47: Ransomware Surges in October, Cathay Pacific Breach, and Triton Attributed
Episode 46: Supply Chain and Third-Party Risks
Episode 45: FASTCash Hidden Cobra, MSP Risks, Five Eyes Tooling Report
Episode 44: Business Email Compromise
Episode 43: Security Flaws Affect 50 Million Facebook Accounts and Equifax Fined £500,000
Episode 42: Security Layering and Usability Trade-offs
Episode 41: Magecart Payment Card Thefts
Episode 40: DoJ Complaint Charges North Korean Actor For Sony Attacks, WannaCry, and More
Episode 39: Credential Hygiene
Episode 38: Midterm meddling and threat modeling
Episode 37: ATM Fraud and Cashout Operations
Episode 36: FIN7 Arrests and Phishing Threats
Episode 35: Cyber threats to ERP Applications
Episode 34: Satori Botnet, OilRig, PowerShell Security, and the Dragonfly Campaign
Episode 33: Digital Risk Protection
Episode 32: MITRE ATT&CK™ Framework and the Mueller GRU Indictment
Episode 31: Carbanak Files and Source Code Leaked?
Episode 30: SSL Inspection and Interception: Uses, Abuses and Trade-offs
Episode 29: Reducing Your Attack Surface: From a Firehose to a Straw
Episode 28: Diversity in Security and Women’s Network Launch
Episode 27: Attribution: The How, The What and The Why
Episode 26: Mythbusting Vulnerabilities and Exploits
Episode 25: Combating Security Debt, Ticketfly Defacement And Data Breach
Episode 24: Seize and Desist: Changes in the cybercriminal underground
Episode 23: L0pht 20 years on and combating cyber threats with military-style tactics
Episode 22: VPN Filter targeting Ukraine, TRITON malware, Roaming Mantis, VBScript & Spectre vulns
Episode 21: eFail vulns affecting Open PGP and S-MIME, and interbank payment systems risks
Episode 20: Winnti Umbrella, DarkHotel, Office 365 Vulnerability, and Olympus Dark Web Marketplaces
Episode 19: Loki Bot, LoJack, GPON Vulnerabilities, and Blackrouter Ransomware
Episode 18: Healthcare hacking, BGP hijacking, crypto jacking, and more
Episode 17: Network Infrastructure Compromise, Magnitude EK Development, the Gold Galleon, & more
Episode 16: Cisco Smart Install Client flaw, Microsoft Outlook vuln, OpIcarus, RSAC, and more
Episode 15: 1.5 Billion Files Exposed Through Misconfigured Services
Episode 14: Panera Breach Lessons, WannaCry’s Re-emergence, Genesis Marketplace, and more
Episode 13: Cambridge Analytica, Trickbot Updates, SamSam Surge Continues, And Dragonfly Attributed
Episode 12: Tax Fraud, AMD Vulnerability, Slingshot Targets Mikrotik Routers, And Hermes Ransomware
Episode 11: Memcached attacks, disinformation in ME, Spectre exploit, German gov network intrusion
Episode 10: Memecached Server DDoS, Flash Vuln in Spam Campaign, Trustico Cert Issues, & Ransomware
Episode 9: SWIFT Attacks, Business Email Compromise, Return Of Thedarkoverlord, And APT - 37
Episode 8: Lazarus Group, Olympics opening ceremony, Bitgrail Theft, and Outlook vulnerabilities
Episode 7: Operation Pzchao, Threats To The Winter Olympics, Infraud Forum Arrests, And More
Episode 6: Cryptocurrency Fraud In-Depth
Episode 5: $530 Million Cyber Heist, DDoS Against Dutch Banks, And The Future Of Anonymous
Episode 4: Dridex, Dark Caracal, Turla, Cozy Bear, And More
Episode 3: CVE-2018 -0802, Mirai Okiru, Bancomext Targeted, and Triton Malware
Episode 2: CoffeeMiner, Turla, and Cyber Threats to the Winter Olympics
Episode 1: Spectre, Meltdown, Satori, and OpNetNeutrality