DISCARDED: Tales From the Threat Research Trenches
Proofpoint
DISCARDED: Tales from the Threat Research Trenches is a podcast for security practitioners, intelligence analysts, and threat hunters looking to learn more about the threat behaviors and attack patterns. Each episode you’ll hear real world insights from our researchers about the latest trends in malware, threat actors, TTPs, and more.Welcome to DISCARDED
Episodes
Mentioned books
Mar 15, 2022 • 29min
The Troubling Rise of MFA Kits
Send us fan mail!Until recently, threat actors haven’t really invested much time in MFA phish kits because not a lot of people used MFA. (Everyone needs MFA, full stop.)Consequently, threat actors are using more advanced multi-factor authentication-enabled phish kits.Find out why in our first episode of DISCARDED, where we hear from Tim Kromphardt, Email Threat Researcher at Proofpoint, about why MFA kits are sort of like Justin Bieber ticket thieves.Join us as we discuss:How MFA kits differ from ordinary phish kitsWhat threat actors and researchers have in commonA technical dive into transparent reverse proxiesWhy you need multifactor authentication despite the rise of MFA kits Check out these resources we mentioned during the podcast:MFA PSA, Oh My!Catching Transparent Phish: Analyzing and Detecting MITM Phishing Toolkits Keep up with the latest tales from the threat research trenches by subscribing to DISCARDED in Apple Podcasts, Spotify, or wherever you get podcasts. Thanks for listening!
Mar 2, 2022 • 26min
Discussing RTF Template Injection: A Malicious Phishing Attempt
Send us fan mail!If you asked for M&M’s and received Skittles, you might pop a few in your mouth, but it won’t take long to realize something’s off.This is exactly what’s happening with RTF files: Instead of the intended attachment, unaware companies are delivering these files and realizing later that they were actually malicious.On this episode of Protecting People, hosts Selena Larson and Crista Giering chat with Michael Raggi, Senior Threat Research Engineer at Proofpoint, about RTF files, template injection, and campaigns using the technique in an effort to make sure customers aren’t being surprised with “Skittles.”Join us as we discuss:The importance of template injectionCampaigns using the techniqueWidespread adoption of the RTF injectionMitigating and monitoring the techniqueResource mentioned:https://www.proofpoint.com/us/blog/threat-insight/injection-new-black-novel-rtf-template-inject-technique-poised-widespreadFor more episodes like this one, subscribe to us on Apple Podcasts, Spotify, and the Proofpoint website, or just search for Protecting People in your favorite podcast player.
