エピソード

  • S3 Ep7: [Bonus Episode] Protecting Privacy: Brian Hill on Cyber Threats and Individual Security

    S3 Ep7: [Bonus Episode] Protecting Privacy: Brian Hill on Cyber Threats and Individual Security
    2024/11/19
    In this episode of Out of the Woods: The Threat Hunting Podcast, Scott Poley sits down with Brian Hill, a cybersecurity leader with a rich background in law enforcement, military service, and corporate security. Brian shares his journey from major crimes detective and forensics expert to building and managing Security Operations Centers (SOCs) at organizations like Arctic Wolf and Black Cloak. The discussion highlights challenges in scaling SOCs, the importance of balancing specialized expertise with cross-functional training, and unique threats faced by high-profile individuals, such as SIM swapping and personal device vulnerabilities. Brian also explores broader trends like artificial intelligence and deepfake technology, emphasizing the need for education and proactive measures to stay ahead of evolving cyber threats.


    *Connect with Brian Hill: https://www.linkedin.com/in/brian-hill-776b50100/

    ----

    Stay in Touch!
    Twitter: https://twitter.com/Intel471Inc
    LinkedIn: https://www.linkedin.com/company/intel-471/
    YouTube: https://www.youtube.com/channel/UCIL4ElcM6oLd3n36hM4_wkg
    Discord: https://discord.gg/DR4mcW4zBr
    Facebook: https://www.facebook.com/Intel471Inc/
    続きを読む 一部表示
    32 分
  • S3 Ep5: [Bonus Episode] Privacy Meets Protection: Violet Sullivan on the Real Scope of Cyber Insurance

    S3 Ep5: [Bonus Episode] Privacy Meets Protection: Violet Sullivan on the Real Scope of Cyber Insurance
    2024/11/14
    In this episode of Out of the Woods: The Threat Hunting Podcast, Scott Poley catches up with Violet Sullivan, cyber services lead for insurance carrier Crum and Forester, at the Information Security Summit in Cleveland. Violet dives into the evolving world of cyber insurance, shedding light on the often-overlooked layers of coverage that go beyond cyber events, including system outages and privacy litigation. She explains the shifting focus from ransomware to privacy issues, and how the rising importance of privacy is impacting both insurance policies and legal frameworks.

    They discuss the nuanced world of privacy litigation and emerging technologies like privacy scans, which scrutinize website data collection practices. Violet also addresses the current debate on AI training data, ownership, and privacy, offering insights into the challenges and implications for companies and individuals alike. If you’re interested in the intersection of cyber insurance, privacy, and AI, this episode offers a compelling look at how these fields are rapidly converging.

    *Connect with Violet Sullivan: https://www.linkedin.com/in/txcyberlawyer/

    ----

    Stay Connected! Twitter: https://twitter.com/CyborgSecInc
    LinkedIn: https://www.linkedin.com/company/cyborg-security/
    YouTube: https://www.youtube.com/cyborgsecurity
    Instagram: https://www.instagram.com/cyborgsecinc/
    Facebook: https://www.facebook.com/CyborgSecInc
    続きを読む 一部表示
    25 分
  • S3 Ep5: Be the Bengal, Dig Into the Process

    S3 Ep5: Be the Bengal, Dig Into the Process
    2024/11/12
    **Threat Hunting Workshop: Hunting for Discovery
    November 20, 2024 | 12:00 – 1:00 PM EST
    Sign Up Here: https://intel471.com/resources/webinars/threat-hunting-workshop-hunting-for-discovery

    **Out of the Woods: The Threat Hunting Podcast [LIVE EPISODE]
    December 5, 2024 | 12:00 - 1:30 PM EST
    Sign Up Here:     https://intel471.com/resources/podcasts/the-ideal-outcome-the-gift-of-a-well-crafted-threat-hunt

    ----------

    Top Headlines:

    1. Sophos News | Bengal cat lovers in Australia get psspsspss’d in Google-driven Gootloader campaign: https://news.sophos.com/en-us/2024/11/06/bengal-cat-lovers-in-australia-get-psspsspssd-in-google-driven-gootloader-campaign/?amp=1
    2. Wiz Blog | Investigating 0ktapus: Phishing Analysis & Detection: https://www.wiz.io/blog/unmasking-phishing-strategies-for-identifying-0ktapus-domains?&web_view=true
    3. FortiGuard Labs | New Campaign Uses Remcos RAT to Exploit Victims: https://www.fortinet.com/blog/threat-research/new-campaign-uses-remcos-rat-to-exploit-victims
    4. Cado Security Labs | GuLoader: Evolving Tactics in Latest Campaign Targeting European Industry: https://www.cadosecurity.com/blog/guloader-targeting-european-industrial-companies

    ----------

    Stay in Touch! Twitter: https://twitter.com/Intel471Inc
    LinkedIn: https://www.linkedin.com/company/intel-471/
    YouTube: https://www.youtube.com/channel/UCIL4ElcM6oLd3n36hM4_wkg
    Discord: https://discord.gg/DR4mcW4zBr
    Facebook: https://www.facebook.com/Intel471Inc/
    続きを読む 一部表示
    34 分
  • S3 Ep3: [Bonus Episode] Inside Cloud Security with CSA’s John DiMaria

    S3 Ep3: [Bonus Episode] Inside Cloud Security with CSA’s John DiMaria
    2024/11/07
    In this bonus episode of Out of the Woods, Scott Poley sits down with John DiMaria, Director of Operations Excellence at the Cloud Security Alliance (CSA), live from the Information Security Summit in Cleveland. DiMaria discusses his pivotal role in developing CSA’s STAR (Security, Trust, Assurance, and Risk) program and shares insights on cloud security, the evolution of the STAR program, and its alignment with CSA's Cloud Controls Matrix (CCM).

    They also explore the future of STAR in the AI landscape, the crucial role of shared responsibility models in cloud security, and the importance of continuous monitoring and compliance in securing cloud infrastructure. DiMaria highlights his experience and CSA's ongoing efforts to provide businesses with practical resources and tools to manage cloud and AI security risks.

    Perfect for anyone looking to understand the landscape of cloud security and CSA’s impact on the field, this episode offers a deep dive into the essential frameworks guiding secure cloud practices today. Tune in for this engaging and informative conversation!

    *Connect with John DiMaria: https://www.linkedin.com/in/johndimaria/

    -----

    Follow Us! Twitter: https://twitter.com/CyborgSecInc
    LinkedIn: https://www.linkedin.com/company/cyborg-security/
    YouTube: https://www.youtube.com/cyborgsecurity
    Instagram: https://www.instagram.com/cyborgsecinc/
    Facebook: https://www.facebook.com/CyborgSecInc
    続きを読む 一部表示
    23 分
  • S3 Ep4: Security Beyond the Box

    S3 Ep4: Security Beyond the Box
    2024/11/05
    **Threat Hunting Workshop: Hunting for Discovery
    November 20, 2024 | 12:00 – 1:00 PM ET
    Sign Up Here: https://intel471.com/resources/webinars/threat-hunting-workshop-hunting-for-discovery

    ----------

    Top Headlines:

    1. Unit 42 | Jumpy Pisces Engages in Play Ransomware: https://unit42.paloaltonetworks.com/north-korean-threat-group-play-ransomware/
    2. Help Net Security | Sophos Mounted Counter-Offensive Operation to Foil Chinese Attackers: https://www.helpnetsecurity.com/2024/10/31/sophos-china-defensive-operation/?web_view=true
    3. Project Zero | From Naptime to Big Sleep: Using Large Language Models To Catch Vulnerabilities In Real-World Code: https://googleprojectzero.blogspot.com/2024/10/from-naptime-to-big-sleep.html?m=1
    4. The Cyber Express | HeptaX: Uncovering Cyberespionage Operations Through Unauthorized RDP Connections: https://thecyberexpress.com/heptax-cyberattack/?&web_view=true

    ----------

    Stay in Touch! Twitter: https://twitter.com/Intel471Inc
    LinkedIn: https://www.linkedin.com/company/intel-471/
    YouTube: https://www.youtube.com/channel/UCIL4ElcM6oLd3n36hM4_wkg
    Discord: https://discord.gg/DR4mcW4zBr
    Facebook: https://www.facebook.com/Intel471Inc/
    続きを読む 一部表示
    40 分
  • S3 Ep1: [LIVE] Blood, Sweat, and Threats: Carving the Perfect Threat Hunter

    S3 Ep1: [LIVE] Blood, Sweat, and Threats: Carving the Perfect Threat Hunter
    2024/10/30
    *Join our Threat Hunting Workshop: Hunting for Discovery*
    November 20, 2024 | 12:00 - 1:00 PM ET
    Sign Up Here:     https://intel471.com/resources/webinars/threat-hunting-workshop-hunting-for-discovery

    ----

    In this live episode of Out of the Woods: The Threat Hunting Podcast, we dive into essential threat hunting techniques and the journey to mastering the craft.

    Join us as we discuss:

    • Building resilience through community insights and shared resources
    • Practical threat hunting tips with the latest from GitHub repositories and threat actor techniques
    • Managing the grind and balancing detection with proactive hunting strategies
    • Enhancing skill sets by embracing the unknowns in the journey

    Interesting Artifacts:

    • https://github.com/BushidoUK
    • https://github.com/salesforce/logai?tab=readme-ov-file#documentation
    • https://opensource.salesforce.com/logai/latest/intro.html
    • https://detect.fyi/have-you-been-keeping-up-with-your-low-confidence-detections-494c742202e4

    🔗 Join our Discord to interact with us at our next live session: https://discord.gg/Ka6tsEc3

    #ThreatHunting #CyberSecurity #OutOfTheWoods #Podcast
    続きを読む 一部表示
    1 時間 30 分
  • S2 Ep28: Date Your Data… Swipe Right

    S2 Ep28: Date Your Data… Swipe Right
    2024/10/09
    **[LIVE] Out of the Woods: The Threat Hunting Podcast
    October 24, 2024 | 7:00 – 8:30 PM ET
    Sign Up > https://intel471.com/resources/podcasts/blood-sweat-and-threats-carving-the-perfect-threat-hunter

    ----------

    Top Headlines:

    1. Aqua | perfctl: A Stealthy Malware Targeting Millions of Linux Servers: https://www.aquasec.com/blog/perfctl-a-stealthy-malware-targeting-millions-of-linux-servers/
    2. Cisco Talos Blog | Threat Actor Believed to be Spreading New MedusaLocker Variant in Europe and South America: https://blog.talosintelligence.com/threat-actor-believed-to-be-spreading-new-medusalocker-variant-since-2022/?&web_view=true
    3. Proofpoint US | Security Brief: Royal Mail Lures Deliver Open Source Prince Ransomware: https://www.proofpoint.com/us/blog/threat-insight/security-brief-royal-mail-lures-deliver-open-source-prince-ransomware
    4. Security Affairs | Kyiv's Hackers Launched an Unprecedented Cyber Attack on Russian State Media VGTRK on Putin's Birthday: https://securityaffairs.com/169486/cyber-warfare-2/kyivs-hackers-hit-russian-state-media.html?web_view=true

    ----------

    Stay in Touch! Twitter: https://twitter.com/Intel471Inc
    LinkedIn: https://www.linkedin.com/company/intel-471/
    YouTube: https://www.youtube.com/channel/UCIL4ElcM6oLd3n36hM4_wkg
    Discord: https://discord.gg/DR4mcW4zBr
    Facebook: https://www.facebook.com/Intel471Inc/
    続きを読む 一部表示
    34 分
  • S2 Ep27: iCUP… Let's Talk Hygiene

    S2 Ep27: iCUP… Let's Talk Hygiene
    2024/10/01
    **Threat Hunting Workshop: Hunting for Collection
    October 2, 2024 | 12:00 - 1:00 PM ET
    Sign Up > https://intel471.com/resources/webinars/threat-hunting-workshop-hunting-for-collection

    **[LIVE] Out of the Woods: The Threat Hunting Podcast
    October 24, 2024 | 7:00 – 8:30 PM ET
    Sign Up > https://intel471.com/resources/podcasts/blood-sweat-and-threats-carving-the-perfect-threat-hunter

    ----------

    Top Headlines:

    1. The Hacker News | Critical Linux CUPS Printing System Flaws Could Allow Remote Command Execution: https://thehackernews.com/2024/09/critical-linux-cups-printing-system.html?m=1
    2. The DFIR Report | Nitrogen Campaign Drops Silver and Ends With BlackCat Ransomware: https://thedfirreport.com/2024/09/30/nitrogen-campaign-drops-sliver-and-ends-with-blackcat-ransomware/
    3. Netskope | DCRat Targets Users with HTML Smuggling: https://www.netskope.com/blog/dcrat-targets-users-with-html-smuggling
    4. CISA Analysis: Fiscal Year 2023 Risk and Vulnerability Assessments: https://www.cisa.gov/sites/default/files/2024-09/FY23_RVA_Analysis_508.pdf

    ----------

    Stay in Touch! Twitter: https://twitter.com/Intel471Inc
    LinkedIn: https://www.linkedin.com/company/intel-471/
    YouTube: https://www.youtube.com/channel/UCIL4ElcM6oLd3n36hM4_wkg
    Discord: https://discord.gg/DR4mcW4zBr
    Facebook: https://www.facebook.com/Intel471Inc/
    続きを読む 一部表示
    41 分