Risky Business

Risky Business #772 -- Salt Typhoon is truly a national security disaster

Nov 27, 2024

Matt Muller from Tines, a security automation expert, dives into the provocative assertion by Gartner that SOAR is dead. The chat reveals the complexities of ransomware attacks, focusing on Blue Yonder and the tough choices companies must make when traditional recovery fails. They also discuss how the evolving tactics of state-backed hackers, particularly Salt Typhoon's telecom assaults, have raised national security alarms. The conversation wraps up with insights on the integration of AI in security and the necessity for adaptive approaches in ever-changing cyber landscapes.

01:01:05

Creator website

Episode guests

Matt Muller

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The ransomware attack on Blue Yonder has severely disrupted operations for many clients, highlighting vulnerabilities in the supply chain software sector.

Russian espionage tactics using Wi-Fi to transition between networks demonstrate existing vulnerabilities in cybersecurity techniques rather than introducing entirely new threats.

China's internal security weaknesses are exposed as surveillance state workers sell access to sensitive data, potentially providing leverage for Western intelligence.

Deep dives

Significant Ransomware Attack on Blue Yonder

A notable ransomware attack has severely impacted Blue Yonder, a company specializing in supply chain and HR management solutions. The attack has disrupted their service offerings, leaving customers scrambling to revert to manual processes for operations like timesheet management, as seen with Starbucks. Details about the ransom or the attackers remain scarce, leading to speculation about the potential loss of data and the state of ongoing negotiations with the attackers. The ambiguity surrounding restoration timelines and the vague updates from Blue Yonder suggest that their predicament is quite dire, potentially impacting a wide range of customers reliant on their services.

Intro

6min

Navigating Ransomware and Telecom Security

24min

Cryptocurrency's Role in Criminal Finance and Corporate Growth

4min

Industry Accountability and Security Failures

4min

Vulnerabilities and Social Media Reflections

7min

Exploring the Evolution of Security Automation Technologies

1min

The Evolution of Automation in Security

14min

On this week’s show, Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including:

A ransomware attack has crippled US supply chain software provider Blue Yonder
Russian spies hack nearby wifi to get to their targets, but that doesn’t seem surprising?
Salt Typhoon’s attacks on telcos are hard to solve and big on impact
China’s surveillance state workers sell their access at home
Palo Alto is bad and should feel bad
And much, much more.

In this week’s sponsor interview Patrick Gray chats with Matt Muller from Tines about Gartner’s “spicy take” that the SOAR category is dead. SOAR is dead! Long live SOAR!

This episode is also available on Youtube.

Show notes

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Risky Business

Risky Business #772 -- Salt Typhoon is truly a national security disaster

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Significant Ransomware Attack on Blue Yonder

APT28's Wi-Fi Exploit

Concerns Over Source Leakage from Salt Typhoon

Chinese Espionage and Data Breaching Insights

Response to SOAR Being Declared 'Dead'

Show notes

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

Risky Business

Risky Business #772 -- Salt Typhoon is truly a national security disaster

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Significant Ransomware Attack on Blue Yonder

APT28's Wi-Fi Exploit

Concerns Over Source Leakage from Salt Typhoon

Chinese Espionage and Data Breaching Insights

Response to SOAR Being Declared 'Dead'

Show notes

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights