Three Buddy Problem

Typhoons and Blizzards: Cyberespionage and national security on front burner

Oct 11, 2024

In this engaging discussion, Juan Andres Guerrero-Saade from SentinelLabs and Costin Raiu from Kaspersky delve into critical cybersecurity issues. They break down the GCHQ report on Russian cyber threats and the complexities of tracking advanced persistent threats like APT29. The risks of supply chain attacks and the alarming rise of zero-day vulnerabilities are explored. They also scrutinize the tension between lawful surveillance and abuse, while emphasizing the urgent need for improved cybersecurity measures in today’s volatile threat landscape.

01:09:09

Creator website

Episode guests

Costin Raiu

Juan Andres Guerrero-Saade

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The GCHQ report on Russia’s SVR outlines sophisticated tactics used by APT29, revealing significant challenges in tracking these evolving cyber threats.

Organizations face severe risks due to a lack of indicators of compromise from advanced espionage operations, leading to a reactive rather than proactive security stance.

Cybersecurity governance struggles highlight the tension between civil liberties and necessary surveillance, emphasizing the need for more effective international cyber threat management strategies.

Deep dives

The Impact of Solar Flares on Technology

Solar flares can significantly affect technological systems, particularly GPS and telecommunications. Recent discussions highlight a massive solar flare that raised concerns but also led to curiosity about whether it could address existing technological issues. Observations of auroras prompted excitement about the natural phenomenon's visibility from locations typically devoid of light pollution. The incident underscores the importance of monitoring solar activity's impact on everyday technology.

Intro

2min

Navigating Cyber Threat Landscapes

23min

Speculating on the Motivations Behind a Major Cybersecurity Leak

3min

The Tensions of Cyberespionage

8min

Cybersecurity Dynamics and Espionage Implications

21min

Rising Tide of Zero-Day Vulnerabilities and Systemic Failures

4min

Investigating Cyber Vulnerabilities

7min

Three Buddy Problem - Episode 16: We break down the new GCHQ advisory on the history and tactics of Russia’s APT29, the challenges of tracking and defending against these sophisticated espionage programs, the mysterious Salt Typhoon intrusions, the absence of technical indicators (IOCs), the risks of supply chain attacks. We also touch on the surge in zero-day discoveries, the nonstop flow of exploited Ivanti security bugs, and why the CSRB should investigate these network edge device and appliance vendors.

Cast: Juan Andres Guerrero-Saade (SentinelLabs), Costin Raiu (Art of Noh) and Ryan Naraine (SecurityWeek).

Links:

NCSC exposé on SVR/APT29 history and tactics
APT29 / Midnight Blizzard
VIDEO: A Surprise Encounter With A Telco APT
The Athens Affair - IEEE Spectrum — How some extremely smart hackers pulled off the most audacious cell-network break-in ever
Wikipedia: The Athens Affair
WSJ report on Salt Typhoon hacks
In-the-wild zero-day counter
Microsoft Confirms Exploited Zero-Day in Windows Management Console

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Three Buddy Problem

Typhoons and Blizzards: Cyberespionage and national security on front burner

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

The Impact of Solar Flares on Technology

Understanding the SVR's Cyber Threats

Challenges in Detecting and Responding to Cyber Espionage

Opportunistic Targeting and Social Engineering

Reflections on Governance and Cybersecurity Practices

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

Three Buddy Problem

Typhoons and Blizzards: Cyberespionage and national security on front burner

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

The Impact of Solar Flares on Technology

Understanding the SVR's Cyber Threats

Challenges in Detecting and Responding to Cyber Espionage

Opportunistic Targeting and Social Engineering

Reflections on Governance and Cybersecurity Practices

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights