CyberWire Daily

Disrupting Cracked Cobalt Strike [The Microsoft Threat Intelligence Podcast]

Listen Later

While we are on our winter publishing break, please enjoy an episode of our N2K CyberWire network show, The Microsoft Threat Intelligence Podcast by Microsoft Threat Intelligence. See you in 2025!


On this week's episode of The Microsoft Threat Intelligence Podcast, we discuss the collaborative effort between Microsoft and Fortra to combat the illegal use of cracked Cobalt Strike software, which is commonly employed in ransomware attacks.  To break down the situation, our host, Sherrod DeGrippo, is joined by Richard Boscovich, Assistant General Counsel at Microsoft, Jason Lyons, Principal Investigator with the DCU, and Bob Erdman, Associate VP Research and Development at Fortra. The discussion covers the creative use of DMCA notifications tailored by geographic region to combat cybercrime globally. The group express their optimism about applying these successful techniques to other areas, such as phishing kits, and highlight ongoing efforts to make Cobalt Strike harder to abuse.   

 

In this episode you’ll learn:      

  

  • The impact on detection engineers due to the crackdown on cracked Cobalt Strike 
  • Extensive automation used to detect and dismantle large-scale threats 
  • How the team used the DMCA creatively to combat cybercrime 

    •  

    Some questions we ask:     

      

    •  Do you encounter any pushback when issuing DMCA notifications? 
    •  How do you plan to proceed following the success of this operation? 
    •  Can you explain the legal mechanisms behind this take-down? 

      •  

      Resources:  

      View Jason Lyons on LinkedIn 

      View Bob Erdman on LinkedIn   

      View Richard Boscovich on LinkedIn  

      View Sherrod DeGrippo on LinkedIn  


       

      Related Microsoft Podcasts:                   
      • Afternoon Cyber Tea with Ann Johnson 
      • The BlueHat Podcast 
      • Uncovering Hidden Risks     

         

        Discover and follow other Microsoft podcasts at microsoft.com/podcasts  

         

        Get the latest threat intelligence insights and guidance at Microsoft Security Insider 

         

         

        The Microsoft Threat Intelligence Podcast is produced by Microsoft and distributed as part of N2K media network.  

        Learn more about your ad choices. Visit megaphone.fm/adchoices

        ...more
        View all episodesView all episodes
        Download on the App Store
        CyberWire DailyBy N2K Networks
        • 4.8
        • 4.8
        • 4.8
        • 4.8
        • 4.8

        4.8

        999 ratings

        More shows like CyberWire Daily

        View all
        Hacked by Hacked

        Hacked

        186 Listeners

        Security Now (Audio) by TWiT

        Security Now (Audio)

        2,004 Listeners

        Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

        Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

        370 Listeners

        Risky Business by Patrick Gray

        Risky Business

        374 Listeners

        SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

        SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

        637 Listeners

        Smashing Security by Graham Cluley

        Smashing Security

        322 Listeners

        Click Here by Recorded Future News

        Click Here

        415 Listeners

        Darknet Diaries by Jack Rhysider

        Darknet Diaries

        8,020 Listeners

        Cybersecurity Today by Jim Love

        Cybersecurity Today

        174 Listeners

        Hacking Humans by N2K Networks

        Hacking Humans

        314 Listeners

        CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

        CISO Series Podcast

        189 Listeners

        Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

        Defense in Depth

        73 Listeners

        Cyber Security Headlines by CISO Series

        Cyber Security Headlines

        137 Listeners

        Risky Bulletin by risky.biz

        Risky Bulletin

        45 Listeners

        Hacker And The Fed by Chris Tarbell & Hector Monsegur

        Hacker And The Fed

        170 Listeners