Digital Shadows Podcast - ShadowTalk

Our weekly podcast highlights key findings of primary-source research our Intelligence Team is conducting, along with the latest threat actors, campaigns, security events and industry news.

  • Episode 45: FASTCash Hidden Cobra, MSP Risks, Five Eyes Tooling Report

    Episode 45: FASTCash Hidden Cobra, MSP Risks, Five Eyes Tooling Report

    Digital Shadows CISO Rick Holland, Dr Richard Gold and Simon Hall join Rafael Amado to cover the Hidden Cobra FASTCash campaign alert issued by US authorities, detailing ATM cash out campaigns...

    Read Post
  • Subscribe to ShadowTalk on iTunes!

    Subscribe Now
  • Episode 44: Business Email Compromise

    Episode 44: Business Email Compromise

    In this week’s Shadow Talk, Rafael Amado joins Michael Marriott to discuss Digital Shadows’ latest research on Business Email Compromise. We discuss how criminals are outsourcing this work, and...

    Read Post
  • Episode 43: Security Flaws Affect 50 Million Facebook Accounts and Equifax Fined £500,000

    Episode 43: Security Flaws Affect 50 Million Facebook Accounts and Equifax Fined £500,000

    Rick Holland, CISO of Digital Shadows, joins Richard Gold and Michael Marriott to discuss the latest cybersecurity news. In part one, we discuss the possible implications of Facebook security...

    Read Post
  • Episode 42: Security Layering and Usability Trade-offs

    Episode 42: Security Layering and Usability Trade-offs

    Simon Hall and Richard Gold join Rafael Amado to focus on the trade-offs between security and usability, as well as the practice of security layering that can often make us more insecure. The team...

    Read Post
  • Like what you hear?
    Rate us on iTunes!

    Rate Here
  • Episode 41: Magecart Payment Card Thefts

    Episode 41: Magecart Payment Card Thefts

    In this week’s ShadowTalk, Richard Gold and Simon Hall join Michael Marriott to discuss the latest spate of attacks by the threat actor known as Magecart. We dig into the history of Magecart,...

    Read Post
  • Episode 40: DoJ Complaint Charges North Korean Actor For Sony Attacks, WannaCry, and More

    Episode 40: DoJ Complaint Charges North Korean Actor For Sony Attacks, WannaCry, and More

    In this week’s ShadowTalk, Richard Gold and Rafael Amado join Michael Marriott to discuss the latest Department of Justice complaint against an individual working for Chosun Expo, an alleged front...

    Read Post
  • Episode 39: Credential Hygiene

    Episode 39: Credential Hygiene

    Dr. Richard Gold and Simon Hall join Rafael Amado to discuss the age-old problem of credential hygiene. We’ve all heard of not reusing passwords, employing two factor authentication and using...

    Read Post
  • Episode 38: Midterm meddling and threat modeling

    Episode 38: Midterm meddling and threat modeling

    This week it was revealed that six new domains registered by APT28, spoofing nonprofit, Senate, and Microsoft domains, have been sinkholed. With November’s US midterm elections fast-approaching,...

    Read Post
  • Episode 37: ATM Fraud and Cashout Operations

    Episode 37: ATM Fraud and Cashout Operations

    Digital Shadows’ Strategic Intelligence manager Rose Bernard joins Rafael Amado to discuss four separate ATM stories making headlines this week. In Part I, they’ll cover an alert on an impending...

    Read Post
  • Episode 36: FIN7 Arrests and Phishing Threats

    Episode 36: FIN7 Arrests and Phishing Threats

    Digital Shadows’ Rose Bernard and Simon Hall join Rafael Amado to cover the arrest of three alleged members of the FIN7 organized criminal group. The team go over the United States Department of...

    Read Post
  • Episode 35: Cyber threats to ERP Applications

    Episode 35: Cyber threats to ERP Applications

    In this week’s episode, JP Perez-Etchegoyen, CTO of Onapsis, joins Michael Marriott to talk about the exposure of SAP and Oracle applications, the increase in publicly-available exploits, and the...

    Read Post
  • Episode 34: Satori Botnet, OilRig, PowerShell Security, and the Dragonfly Campaign

    Episode 34: Satori Botnet, OilRig, PowerShell Security, and the Dragonfly Campaign

    Richard Gold and Rose Bernard join Michael Marriott to talked about updates to the Satori botnet, which has expanded to incorporate new IoT devices using TCP port 5555. Amid news of a new wave of...

    Read Post
  • Episode 33: Digital Risk Protection

    Episode 33: Digital Risk Protection

    Rick Holland, CISO at Digital Shadows, discusses the latest 2018 Forrester New Wave for Digital Risk Protection. He discusses how security leaders must avoid blind spots with a more complete risk...

    Read Post
  • Episode 32: MITRE ATT&CK™ Framework and the Mueller GRU Indictment

    Episode 32: MITRE ATT&CK™ Framework and the Mueller GRU Indictment

    In today’s ShadowTalk, we take on the Robert Mueller indictment against 12 Russian individuals for alleged US election interference. However, rather than dwell on issues of attribution and...

    Read Post
  • Episode 31: Carbanak Files and Source Code Leaked?

    Episode 31: Carbanak Files and Source Code Leaked?

    In this week's ShadowTalk, Digital Shadows’ Russian-speaking security specialist discovered files and source code allegedly related to the Carbanak organized criminal group. The Carbanak malware...

    Read Post
  • Episode 30: SSL Inspection and Interception: Uses, Abuses and Trade-offs

    Episode 30: SSL Inspection and Interception: Uses, Abuses and Trade-offs

    The Payment Card Industry recently passed a deadline requiring that all e-commerce sites and merchants cease supporting TLS 1.0. With this and older protocols such as SSL vulnerable to...

    Read Post
  • Episode 29: Reducing Your Attack Surface: From a Firehose to a Straw

    Episode 29: Reducing Your Attack Surface: From a Firehose to a Straw

    Following news that a database containing 340 million records has been publicly exposed to the internet, Richard Gold and Simon Hall join Michael Marriott to discuss how (and why) you can reduce...

    Read Post
  • Episode 28: Diversity in Security and Women’s Network Launch

    Episode 28: Diversity in Security and Women’s Network Launch

    Libby Fiumara is joined by Rose Bernard and Sophie Burke to discuss the launch of Digital Shadows’ Women’s Network, challenges facing women in security, and how companies can foster diversity in...

    Read Post
  • Episode 27: Attribution: The How, The What and The Why

    Episode 27: Attribution: The How, The What and The Why

    Simon Hall and Rich Gold join Michael Marriott to discuss the merits and perils of attribution, including the number of characteristics and variables required for a strong attribution, instances...

    Read Post
  • Episode 26: Mythbusting Vulnerabilities and Exploits

    Episode 26: Mythbusting Vulnerabilities and Exploits

    Simon Hall and Richard Gold join Rafael Amado to discuss misconceptions around vulnerabilities and exploits, other techniques for gaining code execution, and how organizations can prioritize the...

    Read Post
  • loading
    Loading More...