ShadowTalk - Threat Intelligence Podcast by Digital Shadows

Our weekly podcast highlights key findings of primary-source research our Intelligence Team is conducting, along with guest speakers discussing the latest threat actors, campaigns, security events and industry news.

  • yOurMine, Equifax Indictment, and SWIFT POC attack

    yOurMine, Equifax Indictment, and SWIFT POC attack

    Roses are red, violets are blue, here’s our threat intel podcast, just for you!

    Read Post
  • Heard our ShadowTalk Threat Intelligence Podcast?

    Subscribe Here!
  • Threat Report ATT&CK Mapping (TRAM) With MITRE’s Sarah Yoder And Jackie Lasky

    Threat Report ATT&CK Mapping (TRAM) With MITRE’s Sarah Yoder And Jackie Lasky

    Sarah Yoder and Jackie Lasky from MITRE join Rick Holland and Harrison Van Riper in this guest episode to talk through their tool, Threat Report ATT&CK Mapping (TRAM). Both Sarah and Jackie are...

    Read Post
  • CTI Frameworks, Wawa Breach Updates, APT34, And Coronavirus Phishing Scams

    CTI Frameworks, Wawa Breach Updates, APT34, And Coronavirus Phishing Scams

    January was a looooong year. Anyone else? In this week’s episode, Jamie starts by talking about his recent blog, Cyber Threat Intelligence Frameworks, with 5 rules for integrating these frameworks...

    Read Post
  • Check out our Weekly Intelligence Summary

    Access Here
  • SANS CTI Summit, Snake Ransomware, CacheOut, And Citrix Vuln Update [Podcast]

    SANS CTI Summit, Snake Ransomware, CacheOut, And Citrix Vuln Update [Podcast]

    Rick Holland jumps in to kick-off this week’s episode to recap the 2020 SANS CTI Summit with Harrison. Then Harrison, Alex, Kacey, and Charles talk through other top stories of the week.

    Read Post
  • Citrix Vulnerability, Microsoft Data Breach, and Telnet Credentials Published

    Citrix Vulnerability, Microsoft Data Breach, and Telnet Credentials Published

    Following on from last week, Citrix released a first set of patches to fix a vulnerability (CVE-2019 -19781) affecting the company’s NetScaler ADC Application Delivery Controller and it’s Citrix...

    Read Post
  • Like what you hear?
    Rate us on iTunes!

    Rate Here
  • NSA Vulnerability Disclosure, Ransomware News, And Iran Updates

    NSA Vulnerability Disclosure, Ransomware News, And Iran Updates

    Kacey, Charles, Alex, and Harrison host this week’s threat intelligence update from Dallas. We kick off with vulnerabilities from the week. This includes both the NSA CVE and Citrix CVE. The team...

    Read Post
  • Iranian Cyber Threats, Travelex Ransomware Attack, And Exploit Forum Updates

    Iranian Cyber Threats, Travelex Ransomware Attack, And Exploit Forum Updates

    Viktoria hosts this week and introduces the episode bringing Sammy on to provide some regional insight and context around the Iranian cyber threat and discusses whether a cyber response is likely.

    Read Post
  • Iranian Cyber Threats: Practical Advice From CISO Rick Holland

    Iranian Cyber Threats: Practical Advice From CISO Rick Holland

    Rick Holland (CISO at Digital Shadows) joins Harrison to share his thoughts on the Iranian cyber threat and what it means for cyber defenders. What should security practitioners be concerned...

    Read Post
  • Jingle Bell Ryuk: NOLA Ransomware, Ring Doorbells, And 2020 Predictions

    Jingle Bell Ryuk: NOLA Ransomware, Ring Doorbells, And 2020 Predictions

    CISO Rick Holland joins our ShadowTalk hosts (Viktoria, Alex, and Harrison) for our holiday special! This week the team covers: - Ring Doorbell security - New Orleans victim of Ryuk Ransomware -...

    Read Post
  • Tochka Dark Web Market Offline, Market.ms Closes, And Data Leakage Stories

    Tochka Dark Web Market Offline, Market.ms Closes, And Data Leakage Stories

    Alex, Harrison, Kacey, and Charles chat this week on some dark web and cybercriminal updates, data leakage stories that have hit the news, plus a GDPR story where an ISP was hit with a €9.6...

    Read Post
  • Cybercriminal Forum Research, Mixcloud Breach, and International Crackdown On RAT Spyware

    Cybercriminal Forum Research, Mixcloud Breach, and International Crackdown On RAT Spyware

    New cybercrime research we put out on the Modern Cybercriminal Forum and how the rise of alternative technologies hasn’t spelled the end of forums, which seem to be prospering against all odds.

    Read Post
  • Black Friday Deals On The Dark Web, Phineas Fisher Manifesto, And DarkMarket

    Black Friday Deals On The Dark Web, Phineas Fisher Manifesto, And DarkMarket

    Adam Cook and Viktoria Austin talk through the security and threat intelligence stories of this week including an update around Phineas Fisher, where the hacker offered up to $100k in what they...

    Read Post
  • BSidesDFW Recap, Dynamic CVV Analysis, And The Facebook Camera Bug

    BSidesDFW Recap, Dynamic CVV Analysis, And The Facebook Camera Bug

    Dallas is sound effects and all this week with Kacey, Charles, Alex, and Harrison. The team discusses their recent OSINT workshop at BSidesDFW and how you can access the training materials, plus...

    Read Post
  • BlueKeep Attacks, Megacortex Ransomware, and Web.com Breach

    BlueKeep Attacks, Megacortex Ransomware, and Web.com Breach

    This week the London team looks at the following stories: - BlueKeep Exploit Could Rapidly Spread - Megacortex Ransomware Changes Windows Passwords - Japanese Media Company Nikkei - $29 million...

    Read Post
  • 7.5M Adobe Creative Cloud User Records Exposed, City Of Joburg Ransomware Attack, and APT28 Updates

    7.5M Adobe Creative Cloud User Records Exposed, City Of Joburg Ransomware Attack, and APT28 Updates

    Adam Cook, Philip Doherty, and Viktoria Austin host this week’s ShadowTalk update around an unsecured Elasticsearch database exposing account information of aboutt 7.5 million Adobe Creative Cloud...

    Read Post
  • Avast Breach Attempt, NordVPN Breach, And Wifi Security Risks

    Avast Breach Attempt, NordVPN Breach, And Wifi Security Risks

    The team first looks at Avast, which encountered a cyber espionage attempt. Then NordVPN announced that a hacker had breached servers used by NordVPN. And finally Dr. Richard Gold put out a new blog t

    Read Post
  • Singapore Cyber Threat Landscape Updates 1H 2019

    Singapore Cyber Threat Landscape Updates 1H 2019

    Adam Cook, Philip Doherty, and Xueyin Peh join Viktoria Austin for a special ShadowTalk episode around the Singapore Cyber Threat Landscape. The team looks at the heightened threat level for...

    Read Post
  • Typosquatting and the 2020 U.S. Election, Honeypots, And Sudo Vulnerability

    Typosquatting and the 2020 U.S. Election, Honeypots, And Sudo Vulnerability

    Kacey, Charles, Harrison, and Alex kick off this week’s episode talking about our Fall Dallas team event (an amateur version of Chopped). Then we dig into the hot topics of the week.

    Read Post
  • Iran-Linked APT35, Skimming By Magecart 4, Rancour, And Emotet Resurgence

    Iran-Linked APT35, Skimming By Magecart 4, Rancour, And Emotet Resurgence

    We’re back in London this week! Viktoria chats with Adam Cook, Philip Doherty, and Josh Poole on this week’s top stories. - APT35 Targets Email of US political figures & prominent Iranians -...

    Read Post
  • The Tyurin Indictment- Mapping To The Mitre ATT&CK™ Framework

    The Tyurin Indictment- Mapping To The Mitre ATT&CK™ Framework

    Director of Security Engineering, Richard Gold, joins Viktoria Austin in this special episode of ShadowTalk to look at the attacker goals, their TTPs, and map this to the Mitre PRE-ATT&CK and...

    Read Post
  • loading
    Loading More...