In this episode of ShadowTalk, host Chris, along with Marken, discuss the latest news in cyber security and threat research. This weeks topics include: Palo Alto Critical Vulnerability under active exploitation  ReliaQuest research on VPN attack surface management Optum Healthcare data breached by RansomHub group ..read more

In this episode of ShadowTalk, host Chris, along with Gjergji and James, discuss the latest news in cyber security and threat research. Topics this week include: Health sector Cybersecurity Coordination Center (HC3) issues alert warning regarding attackers using social engineering to target IT helpdesk's across the health sector ReliaQuest releases it's findings from it's Q1 Phishing report How improper permissions can lead to problems with new Microsoft Copilot AI Resources: https://www.reliaquest.com/blog/health-care-social-engineering-campaign ..read more

In this episode of ShadowTalk, host Chris, along with ReliaQuest Threat Hunter's Caroline and Corey discuss the latest news in cyber security and threat research. This week's topics include: Issues with Google AI-powered search generative experience recommending scam sites Spain high court judge issues temporary ban on messaging platform 'Telegram' Speculative Execution vulnerabilities found on Apple M Series and Intel Raptor Lake CPU's ..read more

In this episode of ShadowTalk, host Chris, along with Marken and ReliaQuest CISO Rick, discuss the latest news in cyber security and threat research. This week's topics include: 2021 AT&T breach released for free  Magnet Goblin threat group exploiting 1-day vulnerabilities An introduction to ReliaQuest's Annual Threat Report (ATR ..read more

In this episode of ShadowTalk, host Chris, along with Corey and Caroline, discuss the latest news in cyber security and threat research. Topics this week include: TeamCity Server critical vulnerability leaves potential for supply chain risk ReliaQuest research into advanced business email compromise (BEC) detections Microsoft compromised by Midnight Blizzard password spraying attack Resources:  https://www.rapid7.com/blog/post/2024/03/04/etr-cve-2024-27198-and-cve-2024-27199-jetbrains-teamcity-multiple-authentication-bypass-vulnerabilities-fixed/  https://blog.jetbrains.com/teamci ..read more

In this episode of ShadowTalk, host Chris, along with Brian, Kim, and one of ReliaQuest's CISOs Rick, discuss the latest news in cyber security and threat research. Topics this week include: Lockbit taken down by NCA led operation. Does this spell the end for the ransomware group? ReliaQuest research into abuse of Remote monitoring and management (RMM) tools Insider leaks Chinese government documents on Github Resources: https://www.reliaquest.com/blog/lockbit-taken-down-what-comes-next ..read more

In this episode of ShadowTalk, host Chris, along with James and Ivan, discuss the latest news in cyber security and threat research. Topics this week include: The emergence of Killnet 2.0  Best practices for Baselining Detection Rules Insights from ReliaQuest's Q4 2023 Ransomware blog ..read more

In this episode of ShadowTalk, host Corey, along with Kim and Caroline, discuss the latest news in cyber security and threat research. Topics this week include:  Midnight Blizzard Targeting Microsoft  Threat research on Attacker techniques observed from Customer incidents  Two new Citrix NetScaler vulnerabilities being exploited in the wild Resources: https://msrc.microsoft.com/blog/2024/01/microsoft-actions-following-attack-by-nation-state-actor-midnight-blizzard/  https://www.theregister.com/2024/01/18/citrix_netscaler_bugs_attacked ..read more

In this episode of ShadowTalk, host Chris, along with Brian, Gjergji and ReliaQuest CISO Rick Holland, discuss the latest news in cyber security and threat research. Topics this week include: Ivanti Zero-day vulnerabilities under mass exploitation ReliaQuest research into misuse of Valid Accounts  Risk posed through emerging Internet of Things (IoT) devices Resources: https://forums.ivanti.com/s/article/CVE-2023-46805-Authentication-Bypass-CVE-2024-21887-Command-Injection-for-Ivanti-Connect-Secure-and-Ivanti-Policy-Secure-Gateways?language=en_US  ..read more

In this episode of ShadowTalk, host Chris, along with Marken and Fearghal, discuss the latest news in cyber security and threat research.  Topics this week include: A recap of major developments in 2023: Ransomware, Business Email Compromise, Living off the land (LotL) The influence of Generative AI on cyber threats Lockbit targeting healthcare providers in Germany ..read more