Risky Business is a weekly information security podcast featuring news and in-depth interviews with industry luminaries. Launched in February 2007, Risky Business is a must-listen digest for information security pros. With a running time of approximately 50-60 minutes, Risky Business is pacy; a security podcast without the waffle.
Risky Business #678 -- Iranians Gone Wild
On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including:
- Albania suffers under another crippling Iranian attack
- Iran’s APT42 using clever, multi-persona phishing
- State Department cyber snitching program paying off
- Former NSA director Gen. Keith Alexander sued over alleged IronNet pump and dump
- Mudge fronts US Senate Judiciary Committee
- Much, much more…
This week’s show is brought to you by Stairwell. Mike Wiacek, Stairwell’s founder and CEO is this week’s sponsor guest and he talks about why they’ve pushed their Inception platform beyond YARA hunting. You can see a demo of Inception on our YouTube product demo page.
Links to everything that we discussed are below and you can follow Patrick or Adam on Twitter if that’s your thing.
Show notes
- Risky Biz News: Albania-Iran cyber drama far from over
- US sanctions Iran intelligence agency over Albania cyberattack - The Record by Recorded Future
- Tom Uren on Cyber Embuggerance
- Iranian military using spoofed personas to target nuclear security researchers - The Record by Recorded Future
- Iranian hackers spy on journalists and government officials, researchers warn - The Record by Recorded Future
- FBI, DOJ defend ‘offensive’ actions against Chinese, Russian operations - The Record by Recorded Future
- State Department bounty program for cybercriminal tips has 'born fruit,' top FBI official says
- More than $30 million seized from North Korean hackers involved in Axie crypto-theft - The Record by Recorded Future
- $30 Million Seized: How the Cryptocurrency Community Is Making It Difficult for North Korean Hackers To Profit - Chainalysis
- Twitter whistleblower testifies to Congress, calls for tech regulation reforms - The Record by Recorded Future
- Twitter whistleblower testifies before Senate
- Former NSA Head Keith Alexander Accused of Pump-and-Dump Scheme
- Google: Conti repurposing tools for Ukraine attacks using Follina bug, Musk impersonation - The Record by Recorded Future
- Pro-Ukraine hackers claim attack on Russian TV broadcasts - The Record by Recorded Future
- Initial access broker or ransomware gang has 'exclusive' access to Mitel zero-day exploit: report - The Record by Recorded Future
- Cyberattacks against U.S. hospitals mean higher mortality rates, study finds
- Buenos Aires legislature announces ransomware attack - The Record by Recorded Future
- Ransomware attack knocked a Kentucky city-operated ISP offline before holiday - The Record by Recorded Future
- Ransomware attacks on retail increase, average retail payment grows to more than $200K - The Record by Recorded Future
- Cisco: Log4j vulnerability used to attack energy companies in Canada, US and Japan - The Record by Recorded Future
- Patreon security team layoffs cause backlash in creator community
- This Clever Anti-Censorship Tool Lets Russians Read Blocked News | WIRED
- Apple Kills Passwords in iOS 16 and macOS Ventura | WIRED
- Catalin Cimpanu on Twitter: "They're still recruiting, btw" / Twitter
- Cyberfella on Twitter: "@campuscodi Please convince Patrick to have a segment about NAFO named "Shitposting Dogs on the Bird App are making Vatniks Seethe and Cope" on the next riskybizz ep 🙏🙏🙏" / Twitter
- ironnet chart - Google Search
- Stairwell's Inception Platform - YouTube
- Все Буде Україна (Everything Will Be Ukraine) - YouTube
- Pink Floyd - Hey Hey Rise Up (feat. Andriy Khlyvnyuk of Boombox) - YouTube
- PROBASS ∆ HARDI - GOOD EVENING (WHERE ARE YOU FROM?) - YouTube