Hacking Humans

The Dark Arts of cyber. [Only Malware in the Building]

Oct 1, 2024

Join cybersecurity experts Dave Bittner, a tech thought leader, and Rick Howard, a seasoned industry professional, as they dive into the shadowy realm of malware. They discuss the dark arts of a newly uncovered cyber espionage campaign involving the cleverly named 'Voldemort' malware, revealing how cybercriminals disguise themselves as tax authorities and exploit platforms like Google Sheets. With a mix of humor and insightful analysis, they explore advanced tactics that threat actors use to collect sensitive data and the ongoing challenges of identifying unknown malware.

32:46

Creator website

Episode guests

Rick Howard

Dave Bittner

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The Voldemort malware campaign exemplifies sophisticated cybercrime tactics by employing clever disguises like tax authorities for espionage purposes.

Utilizing Google Sheets for command and control by attackers demonstrates the evolving and innovative nature of contemporary cyber threats.

Deep dives

Understanding Voldemort Malware

Voldemort malware is identified as a significant cyber threat, with characteristics associated with both espionage and cybercrime. Named after a notorious fictional villain, it utilizes unique naming conventions in its code, reflecting the creativity of its creators. This malware operates by impersonating tax authorities from multiple countries, which enables it to initiate a sophisticated attack chain for gathering sensitive information. The campaign showcases high-volume phishing activities, indicating a well-planned strategy to compromise users and extract data without their knowledge.

Intro

2min

Unmasking Malware: The Voldemort Connection

10min

Exploring Cyber Threat Intelligence and Targeting Tactics

4min

Deceptive Malware: Techniques and Targets in Cybercrime

4min

Unveiling Unknown Malware

8min

Welcome, witches, wizards, and cybersecurity sleuths! You’ve entered, Only Malware in the Building. Join us each month to brew potions of knowledge and crack the curses of today’s most intriguing cyber mysteries. Your host is Selena Larson, Proofpoint intelligence analyst and host of their podcast DISCARDED. Inspired by the residents of a building in New York’s exclusive upper west side, Selena is joined by N2K Networks Dave Bittner and Rick Howard to uncover the stories behind notable cyberattacks.

Being a security researcher is a bit like being a detective: you gather clues, analyze the evidence, and consult the experts to solve the cyber puzzle. On this episode, we dive into how Proofpoint researchers uncovered an espionage campaign casting custom malware known as "Voldemort" in August 2024.

The Dark Arts practitioner behind this campaign targeted global organizations, disguising themselves as mundane tax authorities and weaving clever enchantments like using Google Sheets for command and control (C2). While their ultimate motive remains as shadowy as a cursed Horcrux, this malware is built for intelligence gathering and is primed to unleash additional attacks — likely summoning something even darker, like Cobalt Strike.

Prepare your wands, and let’s dive into this tale of digital sorcery!

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Hacking Humans

The Dark Arts of cyber. [Only Malware in the Building]

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Understanding Voldemort Malware

Innovative Techniques in Cyber Attacks

Targeting Insurance Companies and High-Volume Phishing

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

Hacking Humans

The Dark Arts of cyber. [Only Malware in the Building]

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Understanding Voldemort Malware

Innovative Techniques in Cyber Attacks

Targeting Insurance Companies and High-Volume Phishing

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights