Shows
Security Take Two - Real. Serious. Security.WannaCryMay 12, 2017 was memorable for many in the information security industry, but it was also memorable in health care, manufacturing, shipping and more as the WannaCry worm laid waste to unpatched Windows machines the world over. May it be the last widespread worm we need to cover on this podcast…
Wikipedia - WannaCry
Microsoft - MS17-010
The Hacker News - TSMC Chip Maker Blames WannaCry Malware for Production Halt
Arstechnica - NSA Leaking Shadow Brokers Just Dumped Its Most Damaging Release Yet
NCCIC - What is WannaCry/WanaCryptor
Arstechnica - An NSA De...
2025-08-2035 min
Security Take Two - Real. Serious. Security.LulzSecFor 50 days in mid-2011 the hacker world and even the wider pop-culture world was enthralled by a rampant series of brazen hacks conducted by a splinter group of anonymous who called themselves LulzSec. They claimed it was “just for the lulz”, but as we explore in this episode, there was much more to this than simply the lulz.
Wikipedia - LulzSec
Wired - Anonymous’ Most Notorious Hacker Is Back, and He’s Gone Legit
BBC - LulzSec hacker helps FBI stop over 300 cyber attacks
BBC - LulzSec hacker group handed jail sentences
Purdue Universi...
2025-07-0149 min
Security Take Two - Real. Serious. Security.ILOVEYOUMay 4, 2000 many people in world woke up to a love letter in their INBOX. It wasn’t your typical love letter, this one was one of the world’s most destructive email worms and it quickly spread to infect an estimated 10% of the world’s PCs. For a longer write-up on ILOVEYOU, see my LinkedIn Post.
Wikipedia - ILOVEYOU
CNN - ‘I love you’: How a badly-coded computer virus caused billions in damage and exposed vulnerabilities which remain 20 years on
WIRED - The 20-Year Hunt for the Man Behind the Love Bug Virus
GAO - CRITICAL...
2025-05-0431 min
Security Take Two - Real. Serious. Security.UberUber has suffered many breaches over the years, so this podcast has focused just on breaches that involved external parties and not internal employee abuse of privileges. There is much to learn from Uber’s misfortune and in this episode we cover 5 distinct hacks and a couple of third-party breaches impacting Uber customers and drivers.
The Uber data breach cover-up: A timeline of events
Uber Pays $148 Million Over Yearlong Cover-Up Of Data Breach
Uber driver info stolen yet again: This time from law firm
Uber accidentally leaks personal data for hundreds of drivers
Te...
2025-04-0547 min
Security Take Two - Real. Serious. Security.Transport for LondonThe Transport for London (Operator of the London UK region’s transit network) was crippled by a cyber attack in September, 2024 that had widespread impacts on it’s operation. Fortunately safety was not a casualty, but we explore a bit of the nuance in incident response, segmnentation and other important lessons from this hack.
Boy arrested over London transport cyber hack
TfL writes to 5,000 cyber attack customers
TfL cyber attack: What you need to know
Cyber security recovery
TfL provides update on ongoing cyber security incident - 12 September
TfL cyber attack cost over...
2025-03-0833 min
Security Take Two - Real. Serious. Security.SamSamSamSam may not be the most well known ransomware group, but they triggered a pivotal change when then began operations at the end of 2015. Over the course of nearly 3 years they demonstrated the profitability of extorting businesses instead of consumers and paved the path from $1000 ransom demands to the astronimical sums we see today. Allegedly operating from Iran they demonstrated sanctions evasion, the use of LOLbins and tested the waters for what amounts could be extorted from Western businesses. This podcast explores their operations and explains how they changed the ransomware landscape.
US Department of Justice indictment...
2025-01-1537 min
Security Take Two - Real. Serious. Security.City of AtlantaWhen the City of Atlanta was hit by the ransomware group SamSam in 2018 it made headlines worldwide. Headlines often cited costs ranging from $2.6 million all the way up to $17 million, often presented as the costs incurred for not paying the $52,000 ransom. Ben and Chet dive into the archives to determine what series of events lead to these exceptional expenses.
Coverlink case study on the City of Atlanta
Wired - Atlanta spent $2.6 million to recover from ransomware scare
Archive.org Rendition InfoSec report
Archive.org Emergency procurement spending by the City of Atlanta
Wikipedia...
2024-11-1830 min
Security Take Two - Real. Serious. Security.3CXIn this episode, Chet and Ben dive deep into the 3CX supply chain attack, tracing it back from the initial compromise to the unfolding investigations and findings over several months. We explore how the threat actors, likely linked to North Korea, managed to infiltrate a trusted software supply chain and what the security community uncovered along the way.
3CX Security Alert
Mandiant Initial Results
Mandiant Full Report
Sophos Report on DLL Sideloading
Kaspersky Labs Report
Google TAG Report on Chrome 0-day
Kim Zetter Blog
Kim Zetter’s 3CX Article\
2024-09-1838 min
Security Take Two - Real. Serious. Security.GarminEpisode 2 covers the 2020 ransomware attack against technology giant, Garmin. In this episode, Chester kept track of his sources and provided the following links as additional reading and source materials used in this episode:
https://www.wired.com/story/garmin-ransomware-hack-warning/
https://www.bleepingcomputer.com/news/security/garmin-outage-caused-by-confirmed-wastedlocker-ransomware-attack/
https://www.bleepingcomputer.com/news/security/evil-corp-blocked-from-deploying-ransomware-on-30-major-us-firms/
https://news.sky.com/story/garmin-obtains-decryption-key-after-ransomware-attack-12036761
https://www.wired.com/story/garmin-outage-ransomware-attack-workouts-aviation/
https://www.theverge.com/2020/8/4/21353842/garmin-ransomware-attack-wearables-wastedlocker-evil-corp
https://web.archive.org/web/20200819201313/https://areteir.com/wp-content/uploads/2020/07/Ransomware-WastedLocker-1.pdf
https://x.com/Arete_Advisors/status/1286653508771614721?prefetchTimestamp=1723669546016\
2024-08-1631 min
Security Take Two - Real. Serious. Security.MedibankIn our inaugural podcast we dive into the hack and breach of Medibank Private Health Insurance, an Australian medical insurance provider that lead to the leak of health records on 9.1 million Australians.
Beatings will continue until show notes improve…
2024-07-2146 min
Security Take Two - Real. Serious. Security.PilotIn our pilot episoed we each share a little about our backgrounds in information security and lay out the concept behind what this podcast will share with its listeners.
2024-05-2608 minSecurity Take Two - Real. Serious. Security.PilotIn our pilot episoed we each share a little about our backgrounds in information security and lay out the concept behind what this podcast will share with its listeners.
2024-05-2608 min
Linux at WorkLinux at Work #a: Deep Dive on Microsoft Teams Preview - A close look at the preview release of Microsoft Teams for Linux
Shownotes and Links
Chester Wisniewski and Ben Verschaeren gave the Microsoft Teams Preview for Linux a spin. If you work for a company that uses Microsoft 365, you probably need Teams. Until late last year, Teams was only available as a handmade Electron app or in the web browser for Linux, neither being an optimal solution. Microsoft introduced the “Preview” in October 2019 and it has been updated frequently since.
Official Microsoft Site
Arch Linux AUR Package
2020-04-2200 min