Security Conversations

Careto returns, IDA Pro pricing controversy, crypto's North Korea problem

Oct 4, 2024

Juan Andres Guerrero-Saade, a security researcher at SentinelLabs specializing in malware analysis, and Costin Raiu, director at Kaspersky, dive into fascinating discussions. They unveil the reemergence of the Careto APT, exploring its unique methods and victimology. The controversial shift of IDA Pro to a subscription model raises concerns, while the duo delves into North Korea's cyber threats targeting crypto companies. They also tackle the pricing issues surrounding VirusTotal and the ethical dilemmas of commercial spyware use by the U.S. government.

01:30:38

Creator website

Episode guests

Costin Raiu

Juan Andres Guerrero-Saade

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The resurgence of the Careto APT underscores the importance of analyzing cultural context and historical targeting methods in cybersecurity.

The transition of IDA Pro to a subscription model has sparked debate over accessibility issues for cybersecurity professionals amid budget constraints.

North Korea's infiltration of the cryptocurrency industry highlights the evolving tactics of cyber adversaries and the regulatory challenges they present.

Deep dives

Return of Careto and Its Significance

The recent announcement of Careto 2 marks an important resurgence in cybersecurity discussions, particularly regarding advanced persistent threats (APTs). This group, which had previously gone quiet, is now showing renewed activity, stirring interest due to its historical context and unique methods of operation. Notably, this APT has been linked to uncommon languages and cultural references, which make its threat profile distinctive compared to typical cyber adversaries. Observations suggest that its past targeting, including entities in Gibraltar, indicates a sophisticated approach to victim selection, raising alarms among cybersecurity professionals as they reassess potential vulnerabilities.

Intro

2min

Unveiling Careto 2: A New Era of APTs

18min

IDA Pro Pricing Controversies

12min

Emerging Tools in Cybersecurity: Ghidra and Yara X Innovations

6min

The Debate on Coding Formats and Standards

2min

Navigating the VirusTotal Conundrum

16min

Assessing VirusTotal and Cyber Threats

7min

Unveiling Geopolitical Influence and Cybersecurity Risks

25min

Celebrating Contributions and Upcoming Conferences in Cybersecurity

3min

Three Buddy Problem - Episode 15: Juanito checks in from Virus Bulletin with news on the return of Careto/Mask, a ‘milk-carton’ APT linked to Spain. We also cover the latest controversy surrounding IDA Pro's subscription model, a major new YARA update, and ongoing issues with VirusTotal's value and pricing. The conversation shifts to North Korean cyber operations, particularly the infiltration of prominent crypto companies, Tom Rid's essay on Russian disinformation results, and the US government's ICE department using commercial spyware from an Israeli vendor.

Cast: Juan Andres Guerrero-Saade (SentinelLabs), Costin Raiu (Art of Noh) and Ryan Naraine (SecurityWeek).

Links:

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Security Conversations

Careto returns, IDA Pro pricing controversy, crypto's North Korea problem

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Return of Careto and Its Significance

Challenges in Attribution

Virus Bulletin Conference Insights

IDA's Shift to Subscription Model

The Impact of North Korean Cyber Operations

Concerns Over Government Use of Spyware

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

Security Conversations

Careto returns, IDA Pro pricing controversy, crypto's North Korea problem

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Return of Careto and Its Significance

Challenges in Attribution

Virus Bulletin Conference Insights

IDA's Shift to Subscription Model

The Impact of North Korean Cyber Operations

Concerns Over Government Use of Spyware

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights