Look for any podcast host, guest or anyone
Showing episodes and shows of

HackableYou

Shows

HackableYou PodcastHackableYou PodcastMore LAPSUS$, Record Breaking 0days, Breach NotificationsGuess who's back with a brand new ra..Podcast. Its Ed, Alex and Will! In this episode we bring you cyber news topics; LAPSUS$ hacking T-Mobile, Google/Mandiant 0day reports and Russian hackers new money laundering challenges. Topic of the week discusses breach notification, using Troy Hunt's recent fun with Avvo as an example. Secrets from the SOC is one of our favourites - We ask each other what SOC tools we WISH we had, that don't exist today. We would love to hear from you: info@hackableyou.com2022-04-2950 minHackableYou PodcastHackableYou PodcastRaidForums DOWN, Global SOC Operations, Importance of CultureIt's been a while, sorry about that!  Join us as always with some cyber news, our topic of the week and the exclusive segment, secrets from the SOC. contact: info@hackableyou.com2022-04-1847 minHackableYou PodcastHackableYou PodcastRussia-Ukraine Threat, Zero Trust, Note Taking TipsWE STAND WITH UKRAINE. In today's episode, we discuss the ongoing cyber threat from Russia amid the tensions and attack on Ukraine.  The Topic of The Week looks at the concept of Zero Trust and why we need it. In Secrets from the SOC we openly discuss what not taking tools we use and how they help us!  We hope you enjoy.2022-02-2644 minHackableYou PodcastHackableYou PodcastCNI Ransomware Warning, PUMA Hacks, QBOT InfectionsThis episode certainly took a  while to come together, we hope you enjoy it! 2022-02-1128 minHackableYou PodcastHackableYou PodcastDeath to 2021 - A Cyber Year in ReviewJoin us on the HackableYou Podcast as we discuss the cyber events of 2021, notable lessons we have learned, and what we think 2022 has in store for all of us. A very big Happy New Year from The HackableYou Team!  2021-12-3136 minHackableYou PodcastHackableYou PodcastZero Days, Log4Shell, Christmas Special 🎅🏼Log4Shell... need we say any more? Merry Christmas from the HackableYou Team!  info@hackableyou.com2021-12-1638 minHackableYou PodcastHackableYou PodcastUPS XSS Phishing, GoDaddy Breach, Securing Keys and SecretsCheck out our episode this week where we discuss the UPS Cross-Site Scripting (XSS) Phishing attack, the Tela Connected Cars outage, and the GoDaddy data breach impacting 1.2 million customers. We also discuss how you should tackle securing your API keys, secrets, and cloud service account credentials.2021-12-0527 minHackableYou PodcastHackableYou PodcastWe're back! Cyber News and Catch-up!This is a overdue episode, but we are back with more content.  To get started have a listen of  a recording from a few weeks ago and ramp up to the next episode!  We missed you, we hope you missed us! 2021-11-2033 minHackableYou PodcastHackableYou PodcastT-Mobile Breach, Docker Containers, Make a House a SOCT-Mobile Breach, Docker Containers, Make a House a SOC In this episode, we dive into the recent T-Mobile breach exposing millions of customers' data. We look at recent arrests for hacker-for-hire actors who made money hacking your iCloud to steal sensitive images and lastly new ShinyGoblin APT using tactics we may have seen used by the Winti group before. The topic of the week we touch on the topic of containerization and Docker, the uses and security threats against the modern DevOps tech. In our exclusive segment, Secrets from The SOC, Alex and I explain how we have made our...2021-09-0541 minHackableYou PodcastHackableYou PodcastAccenture Ransomware, ALPHABAY is Back, Attack SimulationThis episode brings you some great conversation on the week's cyber news. We report on the cyberattack against Accenture, holding them for ransom. New Phishing tactics are seen using morse-code to bypass security controls and the infamous ALPHABAY is back baby. With a new look and new rules which raise an eyebrow.... The topic of the week looks into Attack Simulation and how you can use tools like Atomic RedTeam, CALDERA, and the Attack Range tool to test and verify your security control configuration against the modern attacks of today. As we mentioned in the...2021-08-1538 minHackableYou PodcastHackableYou PodcastNo More Ransom, USB Cyber Attacks, Old School vs. New School SOCsHello and welcome back, it's great to have you here.  In this episode's Cyber News we cover Imperial Kitten/Tortoiseshell using fake Facebook profiles to masquerade as Aerobics instructors in order to exploit defence aerospace contractors, some positive news on the money saved via the No More Ransom movement and we also discuss how an infamous ransomware gang have been hit by ransomware themselves... In the topic of the week, we delve into the world of USB attacks and go over the 4 types of USB attacks with examples and discuss USB attack defences.  La...2021-08-0135 minHackableYou PodcastHackableYou PodcastKaseya Ransomware, Password Attacks, SOC and IR APIsIn this episode we look into cyber news including; Kaseya supply chain ransomware attacks, Chinese hackers exploiting another 0day in a Solarwinds solution, and the critical Microsoft patch dubbed "PrintNightmare". In our topic of the week, we dive into the realm of Password Attacks looking at both active and passive attacks as well as the defences. As always in our exclusive segment Secrets from the SOC, we provide you with some practical insight into some great APIs you can hook into to help your SOC investigations.  We would love to hear your feedback, p...2021-07-1840 minHackableYou PodcastHackableYou PodcastNOBELIUM Microsoft Compromise, Code Signing Attacks, File HashingNOBELIUM Microsoft Compromise, Code Signing Attacks, File Hashing You’re listening to the HackableYou Podcast. In this episode we report on Microsoft’s ongoing research into the Nobelium hacking group's activities, a data beach impacting Mercedes-Benz and more Web scraped LinkedIn data up for sale. The topic of the week touches on the subject of Code Signing, attacks, and countermeasures. Lastly, in Secrets from the SOC we discuss the use of file hashing and how you can use it in your role as a security analyst. Thanks for tuning in a...2021-07-0535 minHackableYou PodcastHackableYou PodcastANOM Arrests, Capture The Flag, Law EnforcementIn this episode of the HackableYou Podcast, we highlight top cyber news including JBS Foods' ransom payment, TrickBot coder's 10-year jail sentence, and the FBI purpose-built encrypted device network deliberately created to catch criminals leading to tonnes of seized drugs and arrests. In Topic of The Week, we provide our top tips for a Capture The Flag exercise and how you can sharpen your approach to the mystery vulnerable boxes.  Lastly, in Secrets from The SOC, we give you sound advice on what to expect and how to work with Law Enforcement.  As al...2021-06-2735 minHackableYou PodcastHackableYou PodcastCheesy Fingers, Initial Access Brokers, Starting Security ExpectationsWelcome back to another episode of the HackableYou Podcast. In this episode you’ll learn about the EncroChat drug dealer who’s fingerprints were detected via an image he posted of a block of cheese. We discuss the Ransomware attack against audio giant Bose and an NSA agent who is facing prison time for holding secret information related to terrorist organisations in their home. The Topic of the Week explains the concept of Initial Access Brokers and what you need to be aware of. Lastly, in Secrets from the SOC we discuss what you can expect in the first few week...2021-06-0238 minHackableYou PodcastHackableYou PodcastWashington Police Ransom, Living off the Land, Hacking LabsWashington Police Ransom, Living off the Land, Hacking Labs Welcome back to another episode of the HackableYou Podcast. In this episode we mention the Washington Police Dept Babuk Ransomware attack, Passwordstate password manager breached and stolen passwords and the Emotet stolen emails that have been uploaded to HIBP. Our topic of the week is one of Ed's favorites as we discuss "Living off the Land" and provide a great Red .vs Blue insight. In our exclusive segment, Secrets from The SOC we show and tell our 1st and current hacking labs all stuff...2021-05-0839 minHackableYou PodcastHackableYou PodcastYou’ve been Zucked, Web Data Scraping, Problem Solving 101Our 1st Birthday giveaway is now live!  http://bit.ly/HBYgiveaway In this episode, we tuck into cyber news relating to a DNS vulnerability hosted on a vast amount of IoT devices around the world, the results of a recent study on cybersecurity awareness, and the infamous Facebook breach exposing 533million users' data via web scraping.  The Topic of the Week takes the Facebook Breach into more detail looking into Web Data Scraping at a deeper level.  Lastly, in our exclusive segment #SFTS we tackle how to solve complex problems that com...2021-04-1836 minHackableYou PodcastHackableYou PodcastUbiquiti Whistle-blower, Deep Fakes, Detection and PreventionHAPPY 1ST BIRTHDAY HACKABLEYOU!  Join us as we celebrate our 1st Podcast since starting the podcast. In the cyber news, we discuss the Ubiquiti Whistle-blower, malicious crypto-mining docker containers, and another Apple iOS 0day vulnerability that is actively being exploited in the wild. In Topic of the Week Alex leads us through the complex technology behind Deep Fake with a cyber threat focus. Last, but not least in Secrets from the SOC we discuss the difference between detection and prevention systems and why there is a use-case for both.  ...2021-04-0331 minHackableYou PodcastHackableYou PodcastTwitter Hacker Jailed, New Routines, SOC Spring CleanGuess whos back? Back again... HackableYou is back with another awesome episode full of cybersecurity news, a topic of the week, and our Secrets from the SOC. We report on the Teen responsible for the Twitter hacks prison sentence, the MoD incident report leaks, and the new variant of Mirai Botnet targeting unpatched routers and IoT.  Topic of the week dives into a more human element of all of us and talks about what COVID remote working means for your work routine and what you have learnt over the last year. L...2021-03-1936 minHackableYou PodcastHackableYou PodcastExchange Vulns, A Passwordless Future, SOC Stand-upsIn this episode of the HackableYou Podcast: We look at the ex-CEO of SolarWinds blame for the hack on an intern with a weak password, the Malaysia Airlines 9 year-long data breach, and the new critical Microsoft Exchange vulnerability actively being exploited by Chinese hackers. In Topicpic of The Week, we debate the idea that passwords are not here to stay and what the concept of Passwordless authentication means for the future. Lastly in our exclusive segment, Secrets from the SOC we discuss the importance of daily and routine standups or huddles when working...2021-03-0529 minHackableYou PodcastHackableYou PodcastWater Supply Hacked, Social Engineering, Reputation BlacklistsBack again with another great episode of the HackableYou Podcast.  This week in the Cyber News we shed light on how some of the Top tech firms like Microsoft, Tesla, Apple have all been compromised through open source code repositorys, we discuss the Yandex insdier who had unauthorised access to 5000 user email accounts and give you our view on the recent Florida based water supply companies remote access hack that could have poisoned thousands of people.  Our Topic of the week dives into "The Art of Social Engineering" and we talk about how Social Engineering is...2021-02-1932 minHackableYou PodcastHackableYou PodcastEmotet Takedown, HoneyPots, TyposquattingBack again with another episode of the HackableYou Podcast. This time it's just Ed and Alex while Will is away. In our Cyber News we talk about the recent Law Enforcement involvement in taking down the Emotet Botnet, the Washington State Audit Office data breach leaking 1.6million records of employment claims and a recent update to Agent Tesla RAT including new evasion techiques. Topic of The Weeks looks at HoneyPots, HoneyNets and Deception Technology and the role they play acorss a security fuction. Go and have a look at Canary Tokens and the Honeynet Project.2021-02-0533 minHackableYou PodcastHackableYou PodcastDating App Hacks, Detecting the Anomaly, Mentor or Coach?Season 2 Episode 2 of the HackableYou Podcast! This time round we discuss the recent Malwarebytes hack related to the SolarWinds supply chain breach.  UK Department of Education shipping out laptops to children riddled with Russian malware and the Dating App MeetMindful's hack potentially exposing 2.28 Million users data. Alex leads us through Anomaly Detection and some simple use cases in Topic of The Week. Lastly in Secrets from the SOC we talk about Mentoring and Coaching, what the difference is and why it is a useful tool to engage with in your career! ...2021-01-2629 minHackableYou PodcastHackableYou PodcastTicketmaster Espionage, Solarwinds Orion Hack, 2021 ChallengeWe are BACK! Hello 2021 and Season 2 of the HackableYou Podcast! Check out our first episode of the new year. With Cyber News related to Babuk Ransomware, Ticketmaster Cyber Espionage and JusPay Amazon merchant PCI Breach. Topic of the week focuses on the SolarWinds Orion Hack with a deeper dive into the details.. We also challenge YOU to learn something NEW and develop a skill in Secrets from the SOC. Share with a firend or colleage and lets get this season started! Cyber News: 01:44 Topic of the Week: 10:232021-01-1129 minHackableYou PodcastHackableYou PodcastFireEye Hacked, 2020 Review vs. 2021 Predictions, SOCs at ChristmasJoin us as we cap off Season 1 of the HackableYou Podcast for this year!  We discuss in depth the recent FireEye state sponsord hack, as well as recent EMA COVID Vaccine data breaches. In our topic of the week we take a look back at the whirlwind year of 2020 from a cyber persepctive and touch on what we think will shape the ether in 2021. Lastly in our Secrets from the SOC, we look at the challenges around working in a SOC over Christmas and what you can expect.  Thank you to EV...2020-12-1434 minHackableYou PodcastHackableYou Podcastcit0day Breach, Black Hat Hackers, Critical Vulnerability ResponseThis is Episode 18 of the HackableYou Podcast!  In this week's episode we cover the cit0day data breach collection, INTERPOL arrests against a Nigerian BEC cyber group and the Manchester United FC security incident.  We discuss the types of Black Hat Hackers in the last of a 3 part series on types of hackers. We range from script kiddies to APTs. Lastly, our exclusive segemnt - Secrets From The SOC, we talk about how a security operation should respond to a critical vulnerability disclosure and what you could be doing to prepare for the ne...2020-11-2641 minHackableYou PodcastHackableYou PodcastGoodbye Maze, Grey Hat Hackers, Malicious Web TrafficJoin us on this episode as we discuss news items on Maze quitting the ransomware game, Microsoft Teams fake updates delivering CobaltStike, and Russian disinformation against the UK's COVID-19 vaccine. Topic of The Week extends our series looking to the different hats in Security, this week focusing on Grey Hat Hackers.  Lastly, in our exclusive segment Secrets from the SOC, we give you practical guidance on how to investigate malicious web traffic.  As always we want to hear from you! Any stories or Feedback please email us at info@hackableyou.co...2020-11-1733 minHackableYou PodcastHackableYou PodcastHalloween Special: USA Election, White Hat Hackers, The Dark WebHackableYou HALLOWEEN Special!  In this week's spooky edition of the Podcast, we bring new a great set of topics including Dr. Reddy's COVID19 Vaccine Hacks, The defacement of President Trump's election campaign website, and a cheeky credential stuffing attack against Nandos. Our topic of the week introduces a 3 part series looking into the 3 types of hackers, with a focus on White Hat Hackers.  Lastly, in Secrets from the SOC we dive into the darkness that is the Dark Web and Dark Net and explains what it is and why you should care about it...2020-10-3037 minHackableYou PodcastHackableYou PodcastHacked Sex Toys, Cyber Awareness Month, Security Certification PathsThis week we bring you a lightly extended episode of the podcast covering topics such as Maze Ransomware Virtual Machine delivery, TrickBot disruption campaign and hilarious news regarding a IoT chastity belt that can be hacked to lock you in" Out topic of the week covers Cyber Security Awareness Month and the importance on educating staff on cyber threats. Last but not least, in Secrets from the SOC we answer a repeat question from listeners about Cyber Security Certifications and what out opinion on a great learning path you could take.  T...2020-10-1645 minHackableYou PodcastHackableYou PodcastMalicious QR Codes, NHS COVID App, SOAR and AutomationMalicious QR Codes, NHS COVID App, SOAR and Automation This week we bring you a slightly longer episode! With great conversation surrounding the risk posed by malicious QR codes, the Russian LinkedIn hacker sentenced to 7 years in prison and the sad news of a death related to hospital ransomware.  Our topic of the week talks about the NHS COVID 19 App and the role of Data Privacy and Information Security. As always, in Secrets from the SOC we gove you out thoughts on the role of SOAR and Automation, and what you could be d...2020-10-0442 minHackableYou PodcastHackableYou PodcastZeroLogon, Network vs Application Attacks, IR Top TipsHello!  We are back with Episode 13 of the HackableYou Podcast. This week we mention Government plans to give energy providers remote access to your smart meter,  KnowB4 Awareness Training Phishing, and the critical Zero Logon Vulnerability. The topic of the weeks gives a high-level touch on Network and Application attacks. Lastly in Secrets from the SOC, we gove you our ultimate top 3 tips for cybersecurity major incident response you should start doing.  Thank you to all our listeners so far!  email: info@hackableyou.com 2020-09-2128 minShadowTalk: Powered by ReliaQuestShadowTalk: Powered by ReliaQuestWeekly: Ed Merrett Joins To Talk HackableYou And The Latest In Threat IntelThis week, Viktoria is joined by ShadowTalk residents Adam and Kim, and on this episode, they speak to guest Ed Merrett, founder of HackableYou, the cybersecurity podcast. Viktoria speaks to Ed Merrett about why he set up HackableYou, then together the team unpack the latest stories, including:-Magento Online Stores: 1,000 stores affected by card skimming-ZeroLogon (CVE-2020-1472) - Critical severity Vulnerability: Impact & Mitigation-US Election: New campaigns observed targeting political candidatesGet our Weekly Intelligence Summary at https://resources.digitalshadows.com/digitalshadows/weekly-intelligence-summary-18-september-2020To listen to Ed’s podcast, visit HackableYou: https://hackableyou.com/podcast/2020-09-1833 minHackableYou PodcastHackableYou PodcastDDoS and AlphaBay, Kill Chain & ATT&CK, Security ConferencesJoin us on episode 12 of the HackableYou Podcast as we discuss the Apple Mac Malware Shlayer, DDoS attacks on the New Zealand Stock Exchange and the 11-year prison sentence given to a moderator of the Dark Web market place AlphaBay.  In our topic of the week, we break down the Cyber Threat Kill Chain and touch upon the MITRE ATT&CK framework. Lastly, in Secrets from the SOC we guide through how to make the most of a cybersecurity conference, whether it's in-person or virtual. We would love to hear from you,if y...2020-09-0432 minHackableYou PodcastHackableYou PodcastSANS Data Breach, Live Response, CSIRTsJoin us in Episode 11 as we look at the Phishing attack that caused the SANS Data Breach, a credential stuffing attack against the Canadian Government, and whether paid for threat intelligence is really worth it. We introduce the concept of life response and help you understand how to do it. Last but not least Secrets from the SOC exposes how a CISRT is built up and why they are important.2020-08-2132 minHackableYou PodcastHackableYou PodcastGarmin Ransomware, Hacker Infrastructure, Malware AnalysisListen in this week as we report on updated Twitter hack arrests, Garmin Ransomware, and the Blackbaud hacks. Our topic of the week exposes how hackers' infrastructure is set up and the concept of Command and Control. In our exclusive segment, Secrets from the SOC we give you a Malware Analysis 101 and how to understand the difference between static and dynamic reverse engineering.  We would love to hear from you! If you have thoughts, feedback, or would like to be on the Podcast please get in touch at info@hackableyou.com. 2020-08-0732 minHackableYou PodcastHackableYou PodcastRussian Threat, Mental Health, Using Threat IntelligenceJoin us with our SPECIAL GUEST Oli Lacey-Reed as we discuss the cyber news, including Twitter VIPs Bitcoin scams, Trickbot Emotet double trouble malware, and the recent report from the NCSC on the Russian Cyber Threat. We openly talk about burn out and mental health in our Guests topic of the week. As always, Secrest from The SOC brings our insight into the basics of Cyber Threat Intelligence and how to use it!2020-07-2438 minHackableYou PodcastHackableYou PodcastEncroChat, Organised Crime and SOC IR vs. Vulnerability ManagementJoin us in episode 8 of the HackableYou Podcast.  This week we report on the EncroChat criminal communications network, Kaspersky's stats on virus submission, and Office 365 Phishing campaigns stopped.  The Topic of the Week follows on from EncroChat and dives into the topic of Organised Crime Groups As always, Secrets from the SOC discusses the role of SOC IR and Vulnerability management when critical vulnerabilities are publicly disclosed.   Enjoy!2020-07-1032 minHackableYou PodcastHackableYou PodcastTwitter Breach and BLM Trickbot, BEC and Communication SkillsJoin us this week as we discuss the recent Twitter Breach, Black Lives Matter Trickbot, and the World Record DDoS attack.  Our topic of the week looks at a growing trend in Business Email Compromise (BEC) and what you can do about it As always, Secrets from the SOC we provide you advice on the importance of communication and articulation needed as a Security Analyst.  We have grown our social media platform to allow you guys and girls to connect with us. Just search for HackableYou on Twitter, Instagram, LinkedIn, and Facebook! 2020-06-2632 minHackableYou PodcastHackableYou PodcastHonda Ransomware, Sub-domain Takeover and Table Top ExercisesToday we discuss the most recent Snake Ransomware attack on Honda and other news. Our topic of the week looks at Sub-domain takeover and the importance of monitoring your DNS and in our exclusive segment, Secrets from the SOC we look at Incident Response and the importance of Table Top Exercises. 2020-06-1432 minHackableYou PodcastHackableYou PodcastEasyJet and Celebrity Breaches, Defence in Depth and Entering the Security IndustryEpisode 5 - EasyJet and Celebrity Breaches, Defence in Depth and Entering the Security Industry Today we discuss the EasyJet breach impacting 9 million customers, we assess the ransomware attack against a law firm representing A-List Celebrities Our topic of the week is the concept of Defence in Depth and as always in Secrets from the SOC we discuss how you can prepare to enter the cybersecurity field.2020-05-2941 minHackableYou PodcastHackableYou PodcastMagecart Favicon, Biometric Security and Open Source Security ToolsEpisode 4 - Magecart Favicon, Biometric Security, and Open Source Security Tools. Today we discuss the most recent Magecart attack using a website Favicon and other news. Our topic of the week dives into the world of biometric security and we give you our top, free, and open-source security tools you can use in an investigation. == List of Tools == https://urlscan.io/ https://www.hybrid-analysis.com/ https://any.run/ https://sitecheck.sucuri.net/ https://www.ipvoid.com/ https://otx.alienvault.com/2020-05-1543 minHackableYou PodcastHackableYou PodcastCognizant Ransomware, Exposed Docker, Traditional vs. Cyber Crime and SOC RolesHello and welcome to Episode 3 of the HackableYou Podcast. Join us on the Podcast as discuss topics around; The Cognizant Maze ransomware attack, exposed docker, Traditional vs. Cyber Crime, and the roles needed with a Security Operations Centre. Please follow the podcast and all our social links to stay up-to-date! Thank you for listening, we hope you enjoy!2020-05-0145 minHackableYou PodcastHackableYou PodcastGoogle Contact Tracking, Dark Nexus and Self LearningHello and welcome to Episode 2 of the HackableYou Podcast. Join us on the Podcast as discuss topics around; Apple and Google Contact Tracking, Meghan Markle, The Dark Nexus Botnet and our exclusive segment Secrets from The SOC. Please follow the podcast and all our social links to stay up-to-date! Thank you for listening, we hope you enjoy!2020-04-1744 minHackableYou PodcastHackableYou PodcastIntro, COVID19, HouseParty and An Attackers MindsetHello and welcome to Episode 1 of the HackableYou Podcast. Join us as we introduce ourselves and the Podcast as well as discuss topics around; COVID-19, HouseParty and An Attackers Mindset. Please follow the podcast and all our social links to stay up-to-date! Thank you for listening, we hope you enjoy!2020-04-0440 minHackableYou PodcastHackableYou PodcastHackableYou Podcast - IntroductionHello and Welcome to the HackableYou Podcast.2020-03-2101 min