Three Buddy Problem

Revisiting the Lamberts, i-Soon indictments, VMware zero-days

Mar 8, 2025

Explore the humorous challenges of cybersecurity naming conventions and the significance of International Women's Day in Eastern Europe. Dive into the complexities of U.S.-Russia cyber operations, the layered dynamics of political messaging, and the unique identifiers of the Blue Lambert malware. Discover the implications of recent VMware vulnerabilities and the ethical dilemmas surrounding state-sponsored hacking linked to private contractors. Conclude with a look at Apple's shift in spyware notifications and the alarming lessons from a massive cryptocurrency hack.

01:39:32

Creator website

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The podcast examines the ambiguity in cybersecurity nomenclature, emphasizing a need for more creative naming that reflects regional and cultural context.

International Women's Day is acknowledged, highlighting the cultural significance and personal experiences associated with its celebrations across various regions.

Discussion on CISA's steadfast position against Russian cyber operations reveals the challenges governmental agencies face in maintaining public trust amidst political ambiguity.

Deep dives

Naming Conventions in Cybersecurity

Discussion revolves around the ambiguity of naming conventions in cybersecurity, particularly concerning Advanced Persistent Threats (APTs). A contributor highlights their dissatisfaction with standardized names, suggesting that a more flexible system analogous to food could convey regional associations without limiting context. This perspective reflects a desire for creativity that still provides some clarity about origins, emphasizing the broader cultural significance of naming rather than strictly adhering to specific labels. The conversation underscores the complexity of categorizing these entities due to their dynamic and often unpredictable behaviors.

Intro

2min

Navigating Complex Political Messaging Amidst Women's Day Celebrations

4min

Theatrical Politics: Public Negotiations and International Relations

3min

Navigating U.S. Cyber Operations Against Russia

8min

Cracking the Blue Lambert Code

18min

Navigating Cyber Vulnerabilities

24min

Indictments and Ethics in Cybersecurity

19min

Apple's Shift in Spyware Notifications

12min

Lessons from a $1.4 Billion Hack

8min

10.

Preparing for Upcoming Events and Celebrating Women's Contributions

2min

Three Buddy Problem - Episode 37: This week, we revisit the public reporting on a US/Russia cyber stand down order, CISA declaring no change to its position on tracking Russian threats, and the high-level diplomatic optics at play.

Plus, a dissection of ‘The Lamberts’ APT and connections to US intelligence agencies, attribution around ‘Operation Triangulation’ and the lack of recent visibility into these actors. We also discuss a fresh batch of VMware zero-days, China’s i-Soon ‘hackers-for-hire’ indictments, the Pangu/i-Soon connection, and a new wave of Apple threat-intel warnings about mercenary spyware infections.

Cast: Juan Andres Guerrero-Saade, Costin Raiu and Ryan Naraine.

Links:

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Three Buddy Problem

Revisiting the Lamberts, i-Soon indictments, VMware zero-days

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Naming Conventions in Cybersecurity

International Women's Day Celebrations

U.S.-Russia Stand Down Order and Military Messaging

Impact of Political Messaging on Engagement

CISA's Position in Cyber Defense

Challenges in Attribution and Operational Visibility

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

Three Buddy Problem

Revisiting the Lamberts, i-Soon indictments, VMware zero-days

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Naming Conventions in Cybersecurity

International Women's Day Celebrations

U.S.-Russia Stand Down Order and Military Messaging

Impact of Political Messaging on Engagement

CISA's Position in Cyber Defense

Challenges in Attribution and Operational Visibility

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights