In 2017 the ShadowBrokers group leaked information stolen from the NSA. Within the leak was evidence that the NSA had compromised a SWIFT bureau in the Middle East called EastNets, probably so that they could gather financial intelligence. The leak gives an unprecedented insight into how a sophisticated actor like the NSA operates. In this episode,…

Back in 2015 the offensive security company Hacking Team were compromised by the vigilante hacker Phineas Fisher. Helpfully, Phineas Fisher shared a full description of how they completed the attack, and it's rich in detail for both red and blue teamers. In this episode, we discuss that report. To read the original report by Phineas Fisher, see her…

In this episode we discuss the 2024 CrowdStrike Global Threat Report. We dig into the key themes that CrowdStrike have identified, and explore what lessons there are for defenders. As always, we consider the offensive and the defensive sides. The report can be downloaded here: https://www.crowdstrike.com/global-threat-report/ Steve has a LinkedIn a…

In this episode we discuss the 2024 CrowdStrike Global Threat Report. We dig into the key themes that CrowdStrike have identified, and explore what lessons there are for defenders. As always, we consider the offensive and the defensive sides. The report can be downloaded here: https://www.crowdstrike.com/global-threat-report/ Steve has a LinkedIn a…