Trust and Risks in EDR Vendor Relationships

Three Buddy Problem - Episode 19: We explore Ivan Kwiatkowski’s essay on the limits of threat intelligence, Sophos using kernel implants to surveil Chinese hackers, the concept of ‘hack-back’ and legal implications, geopolitical layers of cyber espionage, CIA malware in Venezuela, Vatican/Mossad mentioned in high-profile Italy hacks, and Canada bracing for .gov attacks from India.

Cast: Juan Andres Guerrero-Saade (SentinelLabs), Costin Raiu (Art of Noh) and Ryan Naraine (SecurityWeek).

Links:

• Transcript (unedited, AI-generated)
• Ivan Kwiatkowski: Threat intel truths inside
• JAG-S LABScon keynote
• Sophos Used Custom Implants to Surveil Chinese Hackers
• Sophos Pacific Rim report
• NCSC details ‘Pygmy Goat’ network backdoor
• NCSC 'Pygmy Goat' report
• Massive hack-for-hire scandal rocks Italian political elites – POLITICO
• Vatican, Israel implicated in Italy hacking scandal
• Wired on CIA hack of Venezuela military payroll system
• Is Now on VT!