Risky Bulletin

Between Two Nerds: Verify, but don't trust

Sep 9, 2024

Tom Uren, a cybersecurity expert, teams up with The Grugq, a threat intelligence specialist, to dissect North Korea's deceptive tactics targeting cryptocurrency firms. They reveal how North Korean cyber actors use sophisticated social engineering to manipulate victims and establish trust. The discussion emphasizes the need for identity verification in communications and highlights the importance of robust cybersecurity practices in crypto transactions. They also explore the impact of psychological tactics on security and emphasize the need for vigilance against scams.

28:35

Creator website

Episode guests

The Grugq

Tom Uren

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

North Korean cyber actors are increasingly utilizing social engineering tactics to target cryptocurrency firms, moving beyond technical exploits to manipulation.

Mitigating social engineering attacks necessitates critical verification of identities and implementing strategies like multi-factor authentication to safeguard against deception.

Deep dives

North Korean Cyber Tactics Targeting the Crypto Industry

North Korean cyber actors are increasingly employing well-disguised social engineering attacks specifically targeting the cryptocurrency sector. These attackers conduct extensive pre-operational research, leveraging social media and professional networking sites to identify potential victims within these organizations. They create customized scenarios designed to resonate deeply with their targets, employing impersonations of known contacts to increase their credibility. Such tactics illustrate a shift from purely technical exploits to utilizing manipulation and deception to gain trust and orchestrate successful attacks.

Intro

2min

Deceptive Trust: North Korean Cyber Tactics

7min

Navigating Transactions in Investment Offers

2min

Examining Scams and Unrealistic Mitigations

2min

The Importance of Identity Verification in Communication

2min

Navigating Cybersecurity and Trust in Cryptocurrency

14min

In this edition of Between Two Nerds Tom Uren and The Grugq dissect an FBI advisory about North Korean groups targeting cryptocurrency firms with social engineering.

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Risky Bulletin

Between Two Nerds: Verify, but don't trust

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

North Korean Cyber Tactics Targeting the Crypto Industry

Clever Engineering of Social Engineering Scenarios

Mitigation Strategies Against Social Engineering

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

Risky Bulletin

Between Two Nerds: Verify, but don't trust

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

North Korean Cyber Tactics Targeting the Crypto Industry

Clever Engineering of Social Engineering Scenarios

Mitigation Strategies Against Social Engineering

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights