Episodes
16
Latest episode
Apr 2025
Language
EN
Recognising that sharing cyber insights is in high demand, we created a new fortnightly audio-only format that will feature findings straight from our Security Operations Centre (SOC) and Digital Forensics and Incident Response (DFIR) teams.
Tune in this first episode to hear news from Brad Morgan and Richard Grainger, who will provide updates aboutransomware group activities,the US government's Cybersecurity and Infrastructure Security Agency (CISA) being impacted by a breach,14m Australian emails and addresses for sale on clear web hacking forum, vulnerability of the fortnight, and what we're seeing in the SOC and DFIR.
ACSC Publications Australians being notified about data breaches impacting them IT contractor sentenced for cybercrime and fraud offences after swindling more than $60k Vulnerability of the week - CVE-2023-48788 What we're seeing in the SOC and DFIR Resources for charities and not-for-profits:Educational pack for small businesses, including the Essential Eight and Exercise in a Box resources. These tools are valuable for conducting cyber assessments and implementing cyber security measures. Small business cyber security guide Cyber tips for business presentation [PPT 950KB] Have you been hacked? Questions for boards to ask about cyber security Practical cyber security tips for business leaders Securing customer personal data for small to medium businesses Small business cloud security guides
IntroNew Ivanti VulnerabilityThreat Actor claims to have stolen data belonging to the Five Eyes intelligence group after breaching a US national security technology contractor.Winnti's new UNAPIMON malwarePossible data breach at Australian immigration consultancyVulnerability of the fortnight: CVE-2024-3094 (aka xz Utils backdoor)What is happening in the SOC/DFIR this fortnight
IntroductionGlobal Cybercrime StingMITRE Network Breach via Ivanti Zero-DaysVulnerability of the fortnight CVE-2024-3400 Palo Alto PAN-OSWhat is happening in the SOC/DFIR this fortnightBritish Library cyber incident review
Intro Qantas app debacle - exposes other customer details Millions of records leaked in NSW clubs data breach Australian losses to scams decline, but we're still losing billions Vulnerability of the fortnight Fortnightly SOC and DFIR updates
Intro LockBit founder unmaskedDFAT warns of DPRK IT workersNew government app set to fight credential misuseMicrosoft Secure Future Initiative CVE-2024-30040 - Windows MSHTML Platform Security Feature Bypass VulnerabilityUpdates from our SOC & DFIR teams
IntroLeaking CloudsOptus Forensic report is not protected by legal privilegeAustralian bank account detailsGuardian childcare hackMicrosoft RecallTopic Vulnerability of the fortnight Check Point SecurityBreaking News MediSecureSOC and DFIR updateshttps://www.linkedin.com/feed/update/urn:li:activity:7202881429796466688/https://www.bleepingcomputer.com/news/security/snowflake-account-hacks-linked-to-santander-ticketmaster-breaches/https://community.snowflake.com/s/question/0D5VI00000Emyl00AB/detecting-and-preventing-unauthorized-user-accesshttps://community.snowflake.com/s/article/Communication-ID-0108977-Additional-Informationhttps://www.itnews.com.au/news/optus-loses-bid-to-hide-deloitte-report-on-data-breach-608336https://www.clydeco.com/en/insights/2023/11/legal-protections-in-the-age-of-data-breaches-lesshttps://hallandwilcox.com.au/thinking/court-guidance-on-privilege-and-cyber-forensic-reports-in-australia/ https://www.cyberdaily.au/security/10640-russian-hacker-opens-bidding-on-18-000-lines-of-australian-bank-account-details https://amp.9news.com.au/article/cdf9d285-4ece-413c-8f43-8413f6ff1825https://www.triskelelabs.com/blog/cve-2024-24919-check-pointhttps://www.triskelelabs.com/blog/microsoft-entra-conditional-access-policies
00:00 Intro 02:15 Microsoft delays release of Recall 05:14 ASD releases their Blueprint for secure cloud 10:47 Australian Information Commissioner v Medibank 25:03 Vulnerability of the week - Trio of Vcenter RCE 28:16 News from our SOC and DFIR teams Resources: https://www.itnews.com.au/news/microsoft-to-delay-release-of-recall-ai-feature-608832 https://blueprint.asd.gov.au/ https://www.bleepingcomputer.com/news/security/vmware-fixes-critical-vcenter-rce-vulnerability-patch-now/
- Intro- New Australian Cybersecurity Bill Mandating Ransomware Reporting- Rising Cost of Data Breaches in Australia - IBM and Rubrik Reports- Australian SMBs’ Willingness to Pay Ransomware Criminals- Cyber Extortion Up 61% in Australia- Phishing Attacks Adapting to Current Events- 2024 Midyear Threat Landscape Review
Sydney hospital loses $2m to alleged BEC fraud RedLine and META infostealers disrupted by global operation ASD releases guidance on Detecting and mitigating Active Directory compromises Bengal cat lovers targeted in GootLoader campaign Vulnerability of the month - CVE-2024-47575 affecting FortiManager and FortiManager Cloud
Claim this listing to keep it up to date, reach guests who want to pitch you, and manage bookings with Guestify.
Claim this listing
Jeremy Snyder
Richey Malhotra
Drive Electric Alabama
Proxify
Rupa Singh
The National Academy of Sciences
