Risky Business

Risky Business #782 -- Are the USA and Russia cyber friends now?

Mar 5, 2025

Vincent Stouffer, Field CTO at Corelight, brings his expertise in network visibility and attacker detection to the discussion. The conversation covers North Korea's impressive cyber theft tactics, particularly the Bybit hack. They analyze the U.S.'s shifting stance on Russian cyber threats and how that impacts global security. Stouffer emphasizes the importance of monitoring network traffic to uncover hidden threats while underscoring the challenges of credential management. The dialogue also highlights innovative authentication methods evolving in the cybersecurity landscape.

50:12

Creator website

Episode guests

Vincent Stouffer

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

North Korean attackers demonstrated advanced technical skills in the Bybit incident, showcasing the need for rigorous cryptocurrency wallet verification processes.

Controversial directives within the U.S. government suggest a downplaying of Russian cyber threats, raising public skepticism about cybersecurity communications.

Emerging Iranian-linked DDoS botnets have caused record-breaking attacks, highlighting critical vulnerabilities in national cybersecurity defenses against sophisticated malicious activities.

Deep dives

North Korean Cyber Capabilities

Recent discussions highlight the significant technical prowess exhibited by North Korean attackers, particularly in the Bybit incident. They exploited vulnerabilities in a JavaScript file hosted on a third-party content delivery network, effectively targeting specific wallets with a precision that led to significant monetary theft. Notably, the attackers managed to poison the JavaScript to compromise only Bybit's multimillion-dollar wallet, which showcases their nuanced approach to cybercrime. This incident underscores the importance of rigorous transaction verification processes among users of cryptocurrency wallets, as even small changes can have devastating financial implications.

Intro

4min

Cyber Threats and Digital Intricacies

20min

Improving Authentication: Passkeys and QR Code Innovations

5min

Balancing Security and Accessibility in MFA

6min

Enhancements in Cybersecurity and Troubling News

4min

Enhancing Network Security through Monitoring

10min

Enhancing Cyber Defense for Critical Infrastructure

2min

On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news:

Did the US decide to stop caring about Russian cyber, or not?
Adam stans hard for North Korea’s massive ByBit crypto-theft
Cellebrite firing Serbia is an example of the system working
Starlink keeps scam compounds in Myanmar running
Biggest DDoS botnet yet pushes over 6Tbps

This week’s episode is sponsored by network visibility company Corelight. Vincent Stoffer, field CTO at Corelight joins to talk through where eyes on your network can spot attackers like Salt and Volt Typhoon.

This episode is also available on Youtube.

Show notes

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Risky Business

Risky Business #782 -- Are the USA and Russia cyber friends now?

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

North Korean Cyber Capabilities

US Government and Cybersecurity Tensions

Operational Risks in Cybersecurity Strategies

Data Protection and Geopolitical Tensions

Botnets and DDoS Attacks

Show notes

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

Risky Business

Risky Business #782 -- Are the USA and Russia cyber friends now?

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

North Korean Cyber Capabilities

US Government and Cybersecurity Tensions

Operational Risks in Cybersecurity Strategies

Data Protection and Geopolitical Tensions

Botnets and DDoS Attacks

Show notes

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights