The Cyber Insider

Hosted by Emsisoft

TechnologyInterviews guests

Website RSS feed

Episodes

Latest episode

Aug 2024

Language

EN-US

About the show

Welcome to The Cyber Insider by Emsisoft. In our monthly episodes we take you behind the scenes of the cyber world with exclusive interviews, insights, and expert analysis. Tune in to stay ahead of the game. Have questions, suggestions, or stories to share? We'd love to hear from you! Email: podcast@emsisoft.com Twitter: @emsisoft Facebook: @Emsisoft

Listen to episodes

18 recent

August 5, 202429 min

Following the Money: Cybercrime & Money Laundering Exposed, with Geoff White

Send a textThis month's guest on the Cyber Insider webinar series is Geoff White. From billion-dollar cyber heists to global financial crime rings and crypto-gangsters – Geoff White has covered it all. His next book, Rinsed, will reveal technology’s impact on the world of money laundering. It springs from his work on the hit podcast and book The Lazarus Heist, which explored North Korea’s computer hacking campaign. As an author, speaker, investigative journalist and podcast creator, his work’s been featured by BBC News, Audible, Sky News, The Sunday Times and many more. He has given keynote talks for some of the world’s biggest brands, including Microsoft, HSBC, Mastercard, Atos, Orange and Bank of America. The insights shared by our guest offer a compelling glimpse into the multifaceted world of cybercrime, money laundering, and AI. By unraveling the intricate dynamics and evolving trends shaping the cybersecurity landscape, White underscores the importance of proactive defense measures, strategic partnerships, and ethical decision-making in mitigating the risks posed by malicious actors. As the digital frontier continues to evolve and present new challenges, a comprehensive understanding of the intersection between technology, crime, and security is essential for building resilient cyber defenses and safeguarding against emerging threats. Through continued vigilance, innovation, and collaboration, the cybersecurity community can navigate the complexities of the cyber domain and uphold the principles of integrity, transparency, and accountability in the face of evolving cyber risks.All this and much more is discussed in this episode of The Cyber Insider podcast by Emsisoft, the award-winning cybersecurity company delivering top-notch security solutions for over 20 years. Be sure to tune in and subscribe to The Cyber Insider to get your monthly inside scoop on cybersecurity. Resources: Get Geoff's book: https://www.amazon.co.uk/Rinsed-Cartels-Crypto-Industry-Deadliest/dp/0241624835 Geoff on social media: https://x.com/geoffwhite247 Hosts: Luke Connolly – partner manager at Emsisoft Brett Callow – threat analyst at Emsisoft Intro/outro music: “Intro funk” by Lowtone.

July 1, 202425 min

The Downfall of LockBit, with Jon DiMaggio

Send a textJon DiMaggio is the chief security strategist at Analyst1 and has over 16 years of experience hunting, researching, and writing about advanced cyber threats. In 2022, Jon’s authored his first book, “The Art of Cyberwarfare,” which earned him the prestigious SANS Difference Makers Award, solidifying his status as a thought leader in the industry. The following year, SANs recognized his work once again, awarding his most notable research, “The Ransomware Diaries,” detailing his operation to infiltrate the real-world humans behind the LockBit criminal operation. Jon’s other notable achievements include his appearance on 60 Minutes, where he discussed his undercover operations infiltrating some of the world top ransomware gangs. Jon’s research has been featured in The New York Times, Wired, Bloomberg, Fox, CNN, Reuters, and other news organizations. Jon shares insights into the world of cybersecurity, focusing on ransomware attacks and nation-state intrusions. Discussing the infamous LockBit ransomware group and its operations, Jon sheds light on their history, structure, disruptions by law enforcement, and the impact of recent efforts in combating cybercrime. Dive into the detailed discussion with John as he provides expert analysis and exclusive insights into the cyber world. Key points covered include LockBit's origins, their disruptive activities targeting defense contractors and high-profile companies, the impact of law enforcement disruptions, the identification of LockBit's leader as Dmitry Khoroshev, and the ongoing efforts to curtail cybercrime activities. All this and much more is discussed in this episode of The Cyber Insider podcast by Emsisoft, the award-winning cybersecurity company delivering top-notch security solutions for over 20 years. Be sure to tune in and subscribe to The Cyber Insider to get your monthly inside scoop on cybersecurity. Resources: Book: "The Art of Cyber Warfare: An Investigator's Guide to Espionage, Ransomware, and Organized Cybercrime" by Jon DiMaggio Guest on X: @Jon__DiMaggio Hosts: Luke Connolly – partner manager at Emsisoft Brett Callow – threat analyst at Emsisoft Intro/outro music: “Intro funk” by Lowtone.

June 3, 202432 min

Cyber Insurance and the Evolution of Cybersecurity, with Sezaneh Seymour

Send a textThis month’s guest on the Cyber Insider is Sezaneh Seymour. Ms. Seymour is the Vice President and Head of Regulatory Risk and Policy at Coalition – a leading provider of innovative cyber insurance and security services. For nearly twenty years, Sezaneh has held various domestic and foreign policy roles at the nexus of national security, emerging technology, sustainability, and trade. She served as Deputy Assistant U.S. Trade Representative at the Office of the U.S. Trade Representative in the Executive Office of the President where she was responsible for negotiating and enforcing trade agreements. She is the former Senior Advisor to the Deputy Assistant to the President and Deputy National Security Advisor for Cyber and Emerging Technology on the National Security Council. Prior to these roles, she served at the U.S. Department of the Treasury and at the U.S. Department of State. She is a graduate of the National Defense University’s Eisenhower School and earned her Ph.D. from Virginia Tech where she remains on faculty.

May 6, 202454 min

Cryptocurrency Tracing and the Fight Against Cybercrime, with Andy Greenberg

Send a textThis month’s guest on the Cyber Insider is Andy Greenberg. Andy is a senior writer for WIRED who has covered hacking, cybersecurity and surveillance for 17 years. He’s the author of the new book Tracers in the Dark: The Global Hunt for the Crime Lords of Cryptocurrency and the 2019 book Sandworm: A New Era of Cyberwar and the Hunt for the Kremlin’s Most Dangerous Hackers. The two books and excerpts from them published in WIRED have won numerous awards including two Gerald Loeb Awards for distinguished business and financial reporting, a Sigma Delta Chi Award from the Society of Professional Journalists, and the Cornelius Ryan Citation for Excellence from the Overseas Press Club. His 2012 book, This Machine Kills Secrets: How WikiLeakers, Hacktivists and Cypherpunks Aim to Free the World’s Information, was named one of the top ten “greatest tech books of all time” by The Verge. Bitcoin, the first and most well-known cryptocurrency, was initially believed to be an untraceable form of digital cash. However this assumption turned out to be far from the truth. The public nature of the blockchain, the underlying technology behind bitcoin, allows for the traceability of every transaction. By analyzing transaction patterns and clustering addresses, it became possible to trace the flow of cryptocurrency and connect it to real-world identities. "Every bitcoin transaction is recorded in the blockchain. That is how bitcoin functions. Instead of a bank or any other authority kind of tracking every transaction in a big database, that database is public and it's copied out to thousands and thousands of computers around the world." By following the traces, investigators have been able to identify and apprehend cybercriminals involved in activities such as ransomware attacks and the sale of illegal goods on the dark web. However, the fight against cybercrime is an ongoing battle. As criminals adapt and develop new techniques, law enforcement and cybersecurity professionals must stay one step ahead. Greenberg emphasizes the importance of a multi-faceted approach that includes not only tracing cryptocurrency but also increasing the resilience of potential victims and implementing stricter regulations on exchanges and mixing services. As the world of cryptocurrency continues to evolve, it is essential to recognize the traceability of transactions and the potential for law enforcement to leverage this information in the fight against cybercrime. By understanding the capabilities and limitations of cryptocurrency tracing, we can work towards a safer and more secure digital landscape. All this and much more is discussed in this episode of The Cyber Insider podcast by Emsisoft, the award-winning cybersecurity company delivering top-notch security solutions for over 20 years. Be sure to tune in and subscribe to The Cyber Insider to get your monthly inside scoop on cybersecurity. Hosts: Luke Connolly – partner manager at Emsisoft Brett Callow – threat analyst at Emsisoft Intro/outro music: “Intro funk” by Lowtone.

April 1, 202429 min

Ukraine's Cyber War: Challenges, Threats, and Resilience, with Daryna Antoniuk

Send a textThis month’s guest on the Cyber Insider is Daryna Antoniuk. Daryna is a reporter for Recorded Future News based in Ukraine. She writes about cyberattacks and cyber policy in Eastern Europe and the state of the cyberwar between Ukraine and Russia. She previously worked as a tech reporter for Forbes Ukraine. Her work has also been published in The Kyiv Independent, The Kyiv Post, and Sifted. Daryna sheds light on the unique challenges faced by journalists reporting from a country at war. She emphasizes the mental toll it can have, particularly due to the prolonged nature of the conflict. Despite these difficulties, our guest highlights the resilience and determination of journalists in Ukraine. Ukraine has been a frequent target of cyber attacks, with varying intensity and complexity. The Ukrainian Emergency Response Team reported over 2,500 cyber incidents in 2023 alone, indicating the scale and frequency of attacks. Daryna emphasizes the need for caution when reporting on cyber events, as misinformation and disinformation are rampant in this domain. The importance of independent analysis and verification when reporting on cyber events, particularly in the context of the Ukraine-Russia conflict, cannot be overstated. All this and much more is discussed in this episode of The Cyber Insider podcast by Emsisoft, the award-winning cybersecurity company delivering top-notch security solutions for over 20 years. Be sure to tune in and subscribe to The Cyber Insider to get your monthly inside scoop on cybersecurity. Hosts: Luke Connolly – partner manager at Emsisoft Brett Callow – threat analyst at Emsisoft Guest: Daryna Antoniuk – Twitter @daryna_antoniuk Intro/outro music: “Intro funk” by Lowtone.

March 4, 202438 min

Decoding the Cybercriminal Mindset, with Ryan Chapman

Send a textThis month’s guest of the Cyber Insider is Ryan Chapman. Ryan is the author of SANS Forensics FOR528: Ransomware and Cyber Extortion along with a Certified Instructor for SANS. In his day job, he functions as a consultant for threat hunting and incident response. Ryan often presents at conferences, including running workshops the last 4 years running at DefCon. In his free time he spends time with his daughter watching anime, plays plenty of Street Fighter, and enjoys playing retro video games. Ryan highlights the significance of security fundamentals in preventing cyberattacks. He emphasizes that many organizations still struggle with basic security practices, such as implementing multi-factor authentication (MFA) and patching vulnerabilities. In this podcast episode, we also touch on the topic of understanding cybercriminal mindset and how it can help in the fight against ransomware: "Engaging with cybercriminals through interviews can help humanize them and provide valuable insights into their motivations and tactics." By conducting interviews and engaging with threat actors, researchers and law enforcement agencies can gain valuable insights into their mindset and strategies. Our guest cites the example of ransomware actor Wazawaka, who has been known to provide interviews and share insights into the ransomware landscape. These interviews not only shed light on the tactics employed by cybercriminals but also provide valuable information for prevention and mitigation strategies. All this and much more is discussed in this episode of The Cyber Insider podcast by Emsisoft, the award-winning cybersecurity company delivering top-notch security solutions for over 20 years. Be sure to tune in and subscribe to The Cyber Insider to get your monthly inside scoop on cybersecurity. Hosts: Luke Connolly – partner manager at Emsisoft Brett Callow – threat analyst at Emsisoft Intro/outro music: “Intro funk” by Lowtone.

February 5, 202428 min

To ban or not to ban, a conversation on ransomware with Azim Khodjibaev

Send a textThis month’s guest of the Cyber Insider is Azim Khodjibayev. With over a decade of experience in intelligence analysis, Azim has focused on Russian APT and cybercrime activity, particularly in the realm of ransomware. He shares his insights on the current state of cyber threats, the impact of recent breaches, and the future of cybersecurity. One notable trend observed in 2023 was the splintering of cybercriminal groups. Azim highlights how these groups can quickly switch affiliations and work with multiple organizations simultaneously. This flexibility allows them to evade detection and maximize their impact. Azim suggests that this splintering may be a response to increased law enforcement activities and the need to adapt to changing circumstances. Law enforcement efforts have seen some success in recent years, with notable takedowns of cybercriminal groups like ALPHV/BlackCat and Hive. However, the impact of these actions on cybercriminal operations is a subject of debate. Azim acknowledges that short-term disruptions can occur, as cybercriminals assess the risks and adjust their strategies. However, he emphasizes that the allure of quick financial gains and the addictive nature of cybercrime make it unlikely for these individuals to abandon their activities permanently. Azim states, "As long as they have access to computers, as long as they have access to their communication channels, they're going to come back, and they'll do it a little bit better, a little bit more sophisticated." As cyber threats continue to evolve, it is essential to equip individuals with the knowledge and skills to protect themselves and their organizations. Azim emphasizes the importance of cybersecurity education, particularly for the younger generation who are increasingly reliant on technology. Azim explains, "It would be really nice to see middle school classes, for example, about online safety... treating it as bad as we treat all the other safety stuff." As we enter 2024, the cybersecurity landscape remains challenging. While progress has been made in disrupting cybercriminal operations, the battle is far from over. Azim believes that the rate of learning and collaboration among cybersecurity professionals is a positive sign. However, he cautions that the worst is yet to come, as cybercriminals become more sophisticated and globalized. All this and much more is discussed in this episode of The Cyber Insider podcast by Emsisoft, the award-winning cybersecurity company delivering top-notch security solutions for over 20 years. Be sure to tune in and subscribe to The Cyber Insider to get your monthly inside scoop on cybersecurity. Hosts: Luke Connolly – partner manager at Emsisoft Brett Callow – threat analyst at Emsisoft Intro/outro music: “Intro funk” by Lowtone.

January 8, 202427 min

The Fight Against Ransomware, with Allan Liska

Send a textThis month’s guest of the Cyber Insider is Allan Liska, Senior Security Architect and Ransomware Specialist, Recorded Future. With more than 20 years of experience in ransomware and information security, Allan Liska has improved countless organizations’ security posture using more effective intelligence. Liska provides ransomware-related counsel and key recommendations to major global corporations and government agencies, sitting on national ransomware task forces and speaking at global conferences. Liska has worked as both a security practitioner and an ethical hacker at Symantec, iSIGHT Partners, FireEye, and Recorded Future. Regularly cited in The Washington Post, Bloomberg, The New York Times, and NBC News, he is a leading voice in ransomware and intelligence security. Liska has authored numerous books including “The Practice of Network Security”, “Building an Intelligence-Led Security Program”, “Securing NTP: A Quickstart Guide”, “Ransomware: Defending Against Digital Extortion”. “DNS Security: Defending the Domain Name System” and “Ransomware: Understand.Prevent.Recover.” He is also the creator of the first ransomware-themed comic book, Yours Truly, Johnny Dollar. In this thought-provoking discussion, Allan shares his thoughts on the current state of cyber insecurity, the role of the cybersecurity industry, and the challenges posed by ransomware. He also explores potential solutions and strategies to combat this growing threat. "I think the International Ransomware Task Force has been doing a lot of great work with information sharing. We need to bring more countries into that and improve that information sharing so that we can arrest these people wherever they are." Allan shares his insights on the rise of ransomware variants and the increase in ransomware extortion sites. This conversation also touches on the effectiveness of law enforcement efforts, the role of cyber insurance companies, and the presence of ransomware actors on social media platforms. Our guest concludes by suggesting diplomatic and law enforcement actions to disrupt the support structure for ransomware operators and the need for stricter reporting requirements for ransom payments. "If you pay a ransom, you have to report it before you pay the ransom again. If nothing else, maybe we can get some law enforcement tracing". All this and much more is discussed in this episode of The Cyber Insider podcast by Emsisoft, the award-winning cybersecurity company delivering top-notch security solutions for over 20 years. Be sure to tune in and subscribe to The Cyber Insider to get your monthly inside scoop on cybersecurity. Hosts: Luke Connolly – partner manager at Emsisoft Brett Callow – threat analyst at Emsisoft Intro/outro music: “Intro funk” by Lowtone.

December 4, 202340 min

The Role of AI in Cybersecurity: Advantages, Risks, and Future Trends, with Ian Paterson

Send a textThis month we welcome Ian L. Paterson on the Cyber Insider podcast. Ian is an entrepreneur with 10+ years of experience in leading and commercializing technology companies. Paterson has raised millions of dollars in private and public financing, completed international M&A transactions, and is co-inventor of 3 patents on digital identity and data analytics. As CEO of Plurilock, Paterson successfully built and grew Plurilock, leading to its successful public listing on the Toronto Stock Exchange Venture. Previously Paterson served as founder and CEO of data monetization platform Exapik (acquired), and as Director of Insights for Terapeak (acquired), a venture-backed analytics firm. Paterson is a regular speaker, media commentator, and active angel investor. Hosts Brett Callow and Luke Connolly discuss the role of artificial intelligence (AI) in cybersecurity with our expert guest. Ian explains that while AI has its strengths in processing large amounts of data and making determinations based on patterns, it also has its limitations in areas such as content sensitivity, context sensitivity, creativity, and innovation. However, he notes that AI is evolving rapidly and becoming more capable in areas like creativity, as seen with tools like ChatGPT and OpenAI's image creation tools. Ian emphasizes that AI is a valuable tool for processing large amounts of data in cybersecurity, particularly in areas like threat detection and response. Regarding the ethical implications of AI in cybersecurity, our guest discusses the importance of data ownership and rights. He highlights the need for organizations to be cautious about the data they feed into AI systems and ensure they are not accidentally leaking or granting permission to sensitive information. He also mentions the use of data loss prevention tools to mitigate these risks. "AI is an equal opportunity tool. It's not just going to be used by the good guys, it's going to be used by the bad guys as well." In terms of future trends, Ian predicts that there will be multiple AI systems in use, both public and private, within organizations. He believes that each team, individual, and domain will have their own AI system, and organizations will have more control over the models and data used. He also anticipates the emergence of new applications and use cases for AI in cybersecurity that we may not have thought of yet. All this and much more is discussed in this episode of The Cyber Insider podcast by Emsisoft, the award-winning cybersecurity company delivering top-notch security solutions for over 20 years. Be sure to tune in and subscribe to The Cyber Insider to get your monthly inside scoop on cybersecurity. Hosts: Luke Connolly – partner manager at Emsisoft Brett Callow – threat analyst at Emsisoft

November 6, 202340 min

The Power of Security Awareness Training: Key Ingredients for Success, with David Shipley

Send a textThis month we welcome David Shipley on the Cyber Insider podcast’s latest episode. David is a recognized global expert in cybersecurity, regularly speaking at public and private events around the world and frequently appears in national and regional media to address cybersecurity stories and topics. David co-founded Beauceron Security in 2016 with an innovative approach to cybersecurity awareness and risk management which empowers everyone within an organization to know more, and care more, about their key role in protecting against cyber-attacks. Beauceron Security now serves more than 700 clients across North America, Europe, and Africa with 650,000+ end-users. He continues to lead the company as CEO. Prior to co-founding Beauceron Security, David was the security lead for the University of New Brunswick and developed its incident response, threat intelligence and awareness practice. He is a Certified Information Security Manager (CISM) and holds a Bachelor of Arts in Information and Communications Studies, as well as a Master of Business Administration, from the University of New Brunswick. In 2023, David was awarded the Queen’s Jubilee Platinum Medal by the province of New Brunswick for his service in the Canadian Forces, work in cybersecurity, and for co-founding Beauceron Security. David is a former journalist and a Canadian Forces veteran. Be sure to tune in and subscribe to The Cyber Insider to get your monthly inside scoop on cybersecurity. Hosts: Luke Connolly – partner manager at Emsisoft Brett Callow – threat analyst at Emsisoft Intro/outro music: “Intro funk” by Lowtone.