Risky Business

Risky Business #769 -- Sophos drops implants on Chinese exploit devs

Listen Later

On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:

  • Sophos drops implants on Chinese firewall exploit devs
  • Microsoft workshops better just-in-time Windows admin privileges
  • Snowflake hacker arrested in Canada
  • Okta has a fun, but not very impactful auth-bypass bug
  • Russians bring dumb-but-smart RDP client attacks
  • And much, much more.

    • Special guest Sophos CISO Ross McKerchar joined us to talk about its “hacking back” campaign. The full interview is

    available on Youtube for those who want to really live vicariously through Sophos doing what every vendor probably wants to do.

    This week’s episode is sponsored by attack surface mapping vendor runZero. Founder and CEO HD Moore joins to talk about marrying up the outside and inside views of your network.

    You can also watch this episode on Youtube

    Show notes
    • Okta AD/LDAP Delegated Authentication - Username Above 52 Characters Security Advisory
    • Does bcrypt have a maximum password length? - Information Security Stack Exchange
    • Local Administrator Protection | Privilege Protection
    • Inside Sophos' 5-Year War With the Chinese Hackers Hijacking Its Devices | WIRED
    • A Deeper Look at FortiJump (FortiManager CVE-2024-47575) | Bishop Fox
    • Man Arrested for Snowflake Hacking Spree Faces US Extradition | WIRED
    • Google uses large language model to discover real-world vulnerability
    • GreyNoise Intelligence Discovers Zero-Day Vulnerabilities in Live Streaming Cameras with the Help of AI
    • Thousands of hacked TP-Link routers used in yearslong account takeover attacks - Ars Technica
    • CISA warns of foreign threat group launching spearphishing campaign using malicious RDP files | Cybersecurity Dive
    • Chinese state-backed hackers breached 20 Canadian government networks over four years, agency warns
    • India-Canada row: Canadian officials confess to leaking 'intel' against India to Washington Post - India Today
    • Amid diplomatic row, Canada names India in ‘cyberthreat adversary’ list, accuses it of ‘likely spying’ | World News - The Indian Express
    • The Untold Story of Trump's Failed Attempt to Overthrow Venezuela's President | WIRED
    • Risky Biz News: The mystery at Mango Park
    • North Korean hackers seen collaborating with Play ransomware group, researchers say
      • ...more
      View all episodesView all episodes
      Download on the App Store
      Risky BusinessBy Risky Business Media
      • 4.6
      • 4.6
      • 4.6
      • 4.6
      • 4.6

      4.6

      364 ratings

      More shows like Risky Business

      View all
      Hacked by Hacked

      Hacked

      190 Listeners

      Security Now (Audio) by TWiT

      Security Now (Audio)

      2,009 Listeners

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

      369 Listeners

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

      649 Listeners

      CyberWire Daily by N2K Networks

      CyberWire Daily

      1,024 Listeners

      Smashing Security by Graham Cluley

      Smashing Security

      317 Listeners

      Click Here by Recorded Future News

      Click Here

      419 Listeners

      Darknet Diaries by Jack Rhysider

      Darknet Diaries

      8,057 Listeners

      Cybersecurity Today by Jim Love

      Cybersecurity Today

      178 Listeners

      Hacking Humans by N2K Networks

      Hacking Humans

      314 Listeners

      CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

      CISO Series Podcast

      192 Listeners

      Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

      Defense in Depth

      73 Listeners

      Cybersecurity Headlines by CISO Series

      Cybersecurity Headlines

      137 Listeners

      Risky Bulletin by Risky Business Media

      Risky Bulletin

      46 Listeners

      Hacker And The Fed by Chris Tarbell & Hector Monsegur

      Hacker And The Fed

      167 Listeners