The Inside Out Security Show 1v3m73

Matt Radolec and David Gibson for this episode of the State of Cybercrime, recording from Black Hat 2023, as they cover the latest threats you need to know about. Also be sure to check out our webinar, New SEC Cyber Rules: Action Plan for CISOs and CFOs on Tuesday, August 22 | 12 p.m. ET. Link here: https://info.varonis.com/en/webinar/what-the-new-sec-requirements-mean-for-your-org-2023-08-22

The Storm-0558 incident has proven to be even more widespread than initially reported. While Microsoft originally stated that only Outlook.com and Exchange Online were affected, Wiz Research has discovered that the compromised g key may have allowed the cybercriminal group to forge access tokens for SharePoint, Teams, OneDrive, and every other app that s logging in with Microsoft credits. Watch our team of experts during this State of Cybercrime episode that assesses the reach of this incident and teaches you what you should do to make sure you are safe and secure.

A Microsoft zero-day vulnerability has allowed hacking group Storm-0558 to forge Azure AD authentication tokens, and breach organizations — including U.S. government agencies — in the past week. Watch this State of Cybercrime episode to hear our experts break down how this attack happened, see the discoveries made by the Varonis Threat Labs team, and learn what you can do to make sure your data is safe and secure.

Across the globe, CL0P ransomware group is extorting hundreds of organizations after exploiting an unknown SQL injection vulnerability in file transfer service MOVEit. The victims need to the ransomware group by June 14 or their stolen data will be published publicly on the group’s extortion site. Matt Radolec, David Gibson, and special guest Dvir Sason to learn more about how the ransomware group exploited the critical flaw in the transfer application, which they were likely experimenting with since 2021.

In the wake of the U.S. defense leak, the Pentagon CIO has given a one-week deadline for all defense agencies to ensure compliance with DOD information security protocols. But what does that actually mean? Matt, David, and Varonis Team Lead Engineer for U.S. Public Sector Trevor Brenn for a State of Cybercrime episode that breaks down what the DOD is demanding from its agencies and how this influences the future of information security within government.

Links mentioned in this episode:  • Video course (free) on building an IR plan: https://info.varonis.com/thank-you/course/cyber-incident-response  • Blog post about LockBit: https://www.varonis.com/blog/anatomy-of-a-ransomware-attack • Blog post about HardBit: https://www.varonis.com/blog/hardbit-2.0-ransomware

Recent cyberattacks, zero-days, and APTs have positioned China as a cybersecurity adversary. Matt Radolec and David Gibson for a special State of Cybercrime episode, during which the two will discuss the recent wave of stealth Chinese cyberattacks against U.S. private networks and what this means for U.S.-Chinese relations in 2023. Matt and David also cover: -The congressional TikTok hearing surrounding data privacy concerns as a byproduct of Chinese ownership -The recent Facebook s hacked by the ChatGPT Chrome extension -Our “good news” segment: the shutdown of the notorious Breached hacking forum -The 55 zero-days that were weaponized in 2022

Still reeling from last year’s data breach, manager Last recently shared that the same attacker who targeted the organization in August has struck again, this time using stolen data to hack an employee’s home computer. Matt Radolec and David Gibson as they walk you through the multi-stage attack, revisiting the discussion of the initial intrusion and outlining how that stolen data was weaponized months later to breach the company’s vault. Matt and David will also spotlight recent vulnerabilities that you should keep an eye on and discuss the meteoric rise of wiperware. We cover: The anatomy of the Last attack and the threats of secret and scanning after a breach New malware and ransomware frameworks The increase in wiperware that’s destroying data rather than holding it for ransom And of course some wins on the cybersecurity front (let’s not forget the good news!)   Links mentioned in the show: HardBit 2.0 Ransomware LockBit ransomware, what you need to know VMware ESXi in the Line of Ransomware Fire   Visit our website and sign up for emails to be notified of new live episodes. Watch the podcast on our Youtube channel.

We're back! Kind of. We'll soon relaunch this podcast and wanted to give you a quick update on what's happening.

Thanks for watching the first season of the security tools podcast! Want more? We're live on the SecurityFwd YouTube channel twice per week!  Come hack with us or watch any of the previously recorded streams.

Thanks for watching the first season of the security tools podcast! Want more? We\'re live on the SecurityFwd YouTube channel twice per week! \r\nCome hack with us or watch any of the previously recorded streams.\r\n

Nick's Twitter: https://twitter.com/nickgodshall Kody's Twitter: https://twitter.com/kodykinzie Varonis Cyber Attack Workshop: https://www.varonis.com/cyber-workshop/

Nick\'s Twitter: https://twitter.com/nickgodshall\r\nKody\'s Twitter: https://twitter.com/kodykinzie\r\nVaronis Cyber Attack Workshop: https://www.varonis.com/cyber-workshop/\r\n

Canary Tokens - https://canarytokens.org/generate Learn more about canaries - https://canary.tools/ Adrian's Twitter - https://twitter.com/sawaba

Canary Tokens - https://canarytokens.org/generate\r\nLearn more about canaries - https://canary.tools/\r\nAdrian\'s Twitter - https://twitter.com/sawaba\r\n

Apologies for the scratchy mic! Check out Vic's Twitter:  https://twitter.com/VicHarkness Kody's Twitter: https://twitter.com/kodykinzie Varonis Cyber Attack Workshop: https://www.varonis.com/cyber-workshop/  

Apologies for the scratchy mic!\r\nVic\'s Blog on Defeating Facial Recognition: https://vicharkness.co.uk/2019/02/01/the-art-of-defeating-facial-detection-systems-part-two-the-art-communitys-efforts/\r\nCheck out Vic\'s Twitter:  https://twitter.com/VicHarkness\r\nKody\'s Twitter: https://twitter.com/kodykinzie\r\nVaronis Cyber Attack Workshop: https://www.varonis.com/cyber-workshop/\r\n \r\n

Joshua's Twitter: https://twitter.com/jbrowder1 DoNotPay's website: https://donotpay.com Sue Phone Scammers: https://donotpay.com/learn/robocall-compensation This podcast is brought to you by Varonis, if you'd like to learn more check out the Cyber Attack Lab at https://www.varonis.com/cyber-workshop/

Joshua\'s Twitter: https://twitter.com/jbrowder1\r\nDoNotPay\'s website: https://donotpay.com\r\nSue Phone Scammers: https://donotpay.com/learn/robocall-compensation\r\nThis podcast is brought to you by Varonis, if you\'d like to learn more check out the Cyber Attack Lab at https://www.varonis.com/cyber-workshop/\r\n

Mathy's Website: https://www.mathyvanhoef.com Mathy's YouTube Channel: https://twitter.com/vanhoefm Mathy's Paper on Defeating MAC Address Randomization: https://papers.mathyvanhoef.com/asiaccs2016.pdf This podcast is brought to you by Varonis, if you'd like to learn more check out the Cyber Attack Lab at https://www.varonis.com/cyber-workshop/