Risky Business cover image

Risky Business

Soap Box: How to dismantle Volt Typhoon-style relay networks

Feb 11, 2024
Andrew Morris, Greynoise founder, discusses the persistent network of compromised routers despite US actions. Vendors using Greynoise for early warnings, and reversing exploitation attempts. Topics include challenges in dismantling relay networks, fingerprinting techniques, hidden threats in cybersecurity, APT crews' network usage, product security incidents, vulnerability verification, and defensive retaliation.
37:35

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

  • Ongoing Volt Typhoon infections indicate resilient network despite government takedown.
  • Grey Noise serves as early warning system for vendors, detecting and addressing product exploitation attempts.

Deep dives

Gray Noise: Operating Global Honeypots

Gray Noise is known for operating a network of honeypots that offer insights into internet attacks. From compromised devices by Volt Typhoon actors to tracking new exploits, Gray Noise's data aids in identifying targeted versus mass scanning, revealing insights into networks of compromised devices used by attackers.

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
App store bannerPlay store banner