The last episode of the first season of the “Hands-On Security” Podcast is out! This time Dvir Sayag hosts Amitai Ben-Shushan, Threat Researcher at SentinelOne's Threat Intelligence group.

Amiti shares his research on a series of extortion attacks carried out against Israeli organizations by the Iranian APT group BlackShadow and presents the cyberattack suffered by insurance company Shirbit in late 2020 to exemplify the attack vectors and the group’s modus operandi.

Don't miss out this episode to learn all about the BlackShadow APT group, the way they operate and examples of their attacks, and most importantly, to hear some practical mitigations.

Sit back and enjoy!

In this episode of the "Hands-On Security" podcast series, Dvir Sayag hosts Yonatan Hanashvili.

Yonatan will elaborate on his time as a SOC leader and DFIR consultant at BugSec.

Dvir and Yonatan are going to discuss life in a SOC in 2021/2022. They talk about the different characteristics of the work, tips for SOC managers, the most challenging threats, and effective visibility methods.

This is a special one!

The Log4Shell vulnerability is being exploited in the wild, so we conducted a live Q&A with our experts to answer important questions regarding the detection & mitigation of Log4Shell, hosted by Dvir Sayag.

The participants:

Shahar Vaknin - Hunters' Threat Hunting Team Leader

Alon Sloky - Hunters' Product Manager

Guy Yager - Hunters' Cloud Research Team Leader

In this episode of the “Hands-On Security” podcast series, Dvir Sayag hosts Kathy Razmadze, a Data Scientist at Hunters and a Ph.D. candidate in Computer Science at Tel Aviv University.

They provide an introduction to Machine Learning and its use in cybersecurity. ML has a tremendous effect on the security industry and it’s just getting started.

Dvir and Kathy cover the basics of how security practitioners can implement ML, its advantages and disadvantages, and specific examples of Hunters' ML-based detections.

In this episode of the "Hands-On Security" podcast series, Dvir Sayag hosts Daniel Margalit.

Daniel was Elbit’s SOC manager for four years and now he is working at Cybersiem as the Head of their MSSP (Managed security services provider).

Daniel and Dvir are going to introduce life in a SOC in 2021. They talk about the different characteristics of the work, the difficulties related to COVID-19, the most challenging threats, what is missing regarding security tools, and what can security professionals do better for SOC teams.

Omer Tsarfati, Security Researcher at CyberArk, has discovered a vulnerability in Microsoft’s biometrics security system, Windows Hello.

Windows Hello has more than 150 million users worldwide. Attackers exploiting this vulnerability might be able to access computers protected by the passwordless login solution.

In the six-episode of the Hands-On Security Podcast, Dvir Sayag is hosting Omer Tsarfati, to discuss Omer’s research past, research tips, and a thorough explanation of the vulnerability found by Omer.

Ransomware attacks continue to be an ever-growing threat to organizations around the world, with new attacks happening on a daily basis.

In this episode, Dvir Sayag hosts Brad Mecha, Director of Managed Services at Recorded Future, and Guy Yasoor, Threat Researcher at Hunters, to discuss two different perspectives when dealing with Ransomware: Threat Intelligence vs. Threat Hunting.

This exciting debate is filled with valuable recommendations for security teams facing the constant threat of Ransomware. Don't miss out!

This episode will discuss the impact of the latest REvil ransomware, and possible mitigations. It will also discuss different tactical and technical thesis on how to hunt for the next attack in your organization.

Guests: Amit Serper, Area VP of Security Research, North America at Guardicore & Shahar Vaknin, Threat Researcher at Hunters.

Song: Benmozes - She's the Wave

Mitigating phishing campaigns like it’s 2021:

It's 2021 and the security community still deals with email phishing campaigns.

In this episode, Dvir Sayag is hosting Guy Yagev - Hunters' email security expert.

They will provide important investigation layer tips to mitigate phishing attempts in your security stack.

Security researcher, Eliav Levy, discovered an AWS attack technique that allows attackers to obfuscate their use of stolen credentials using CloudTrail and VPC only. In this episode, Eliav shares how he made the discovery and provides recommendations on how to defend against this attack technique. Want to learn more about this discovery? This blog post written by Eliav covers the discovery in more detail: www.hunters.ai/blog/hunters-research-detecting-obfuscated-attacker-ip-in-aws. Enjoy the episode, it’s loaded with tips and tricks for AWS and cloud security in today's SOC.