Originally Aired on February 1, 2021 Articles discussed in this episode: https://threatpost.com/microsoft-365-bec-innovation/163508/ https://threatpost.com/critical-libgcrypt-crypto-bug-arbitrary-code/163546/ https://www.newyorker.com/magazine/2021/02/08/the-next-cyberattack-is-already-under-way?&web_view=true
Podcast: Play in new window | Download
Subscribe: RSS
ORIGINALLY AIRED ON JANUARY 20, 2021 Articles discussed in this episode: https://www.theregister.com/2021/01/20/malwarebytes_solarwinds_hack_latest/ https://threatpost.com/solarwinds-malware-arsenal-raindrop/163153/ https://threatpost.com/dnspooq-flaws-allow-dns-hijacking-of-millions-of-devices/163163/
Podcast: Play in new window | Download
Subscribe: RSS
A few short years ago, penetration testers did not have to work too hard for their malware command channels to execute. Fast forward to today in the age of Endpoint Detection and Response, User Behavior Analytics, and advanced built-in O/S defenses, your standard toolkit for malware generation/execution does not work anymore. All is not lost! […]
Podcast: Play in new window | Download
Subscribe: RSS
Originally aired on January 13, 2021 Articles discussed in this episode: https://www.theregister.com/2021/01/13/darkmarket_europol_shutdown/ https://www.theregister.com/2021/01/12/microsoft_linux_edr/ https://threatpost.com/mimecast-certificate-microsoft-supply-chain-attack/162965/ https://threatpost.com/hackers-leak-pfizer-covid-19-vaccine-data/163008/ https://krebsonsecurity.com/2021/01/ubiquiti-change-your-password-enable-2fa/
Podcast: Play in new window | Download
Subscribe: RSS
Jordan Drysdale // tl;dr This blog is being provided to demonstrate the capabilities of Sysmon logging broken down by event ID. The IDs will be captured in context and matched to their sysmon-modular configuration section for tuning opportunities. Please allow me a shout out here to the author of the sysmon-modular repository on Github. Olaf […]
This blog was written in conjunction with Wild West Hackin’ Fest. Does the news on SUNBURST and SUPERNOVA have you feeling like you’re flapping in the (Solar)Wind? Join John Strand, Jonathan Ham, and Jake Williams as they discuss the implications of the breaches in this no-FUD webcast. No, we won’t be discussing “cyber Pearl Harbor” […]
Podcast: Play in new window | Download
Subscribe: RSS
Originally aired on December 21, 2020 Articles discussed in this episode: https://citizenlab.ca/2020/12/the-great-ipwn-journalists-hacked-with-suspected-nso-group-imessage-zero-click-exploit/ https://theintercept.com/2020/12/17/russia-hack-austin-texas/
Podcast: Play in new window | Download
Subscribe: RSS
Ray Felch // Introduction While packing up my KeyWe Smart Lock accessories, and after wrapping up my research and two previous blogs “Reverse Engineering a Smart Lock” and “Machine-in-the-Middle BLE Attack”, I came across a couple of KeyWe RFID tags. Although I was somewhat already familiar with RFID (Radio Frequency ID) technology, I decided this […]
