
Risky Business
Soap Box: How to dismantle Volt Typhoon-style relay networks
Feb 11, 2024
Andrew Morris, Greynoise founder, discusses the persistent network of compromised routers despite US actions. Vendors using Greynoise for early warnings, and reversing exploitation attempts. Topics include challenges in dismantling relay networks, fingerprinting techniques, hidden threats in cybersecurity, APT crews' network usage, product security incidents, vulnerability verification, and defensive retaliation.
37:35
Episode guests
AI Summary
AI Chapters
Episode notes
Podcast summary created with Snipd AI
Quick takeaways
- Ongoing Volt Typhoon infections indicate resilient network despite government takedown.
- Grey Noise serves as early warning system for vendors, detecting and addressing product exploitation attempts.
Deep dives
Gray Noise: Operating Global Honeypots
Gray Noise is known for operating a network of honeypots that offer insights into internet attacks. From compromised devices by Volt Typhoon actors to tracking new exploits, Gray Noise's data aids in identifying targeted versus mass scanning, revealing insights into networks of compromised devices used by attackers.
Remember Everything You Learn from Podcasts
Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.