NeedleStack

Cyber threat analyst Steven Harris explains why Telegram is crucial for investigating the war in Ukraine. Discusses Telegram's appeal to cyber threat actors. Highlights the significance of problem-solving skills in cyber investigations. Addresses the impact of foreign threat actors on elections.

Alex Lozano of Cybergy joins us to discuss how he uses OSINT and social media to protect executive clients, resources for his cyber students at University of Barcelona and the best tools for real-time monitoring.Key takeawaysHow to use OSINT for executive protectionResources for students and OSINT newbiesTools for real-time monitoring

Language can limit or expand your worldview. That’s important to remember in OSINT where what you’re able to find and analyze can greatly affect the intelligence you build. Skip Schiphorst, OSINT instructor at i-Intelligence, shares his expertise on why even baseline knowledge of a foreign language is important in a world flush with translation services; how foreign language content can counteract bias; and tips for verifying automated translations.Key takeawaysYou can find a lot more online than you may think by using foreign languages — even those using non-Latin charactersYou don’t need to be a ninja with years of training to find foreign content online, or outsource everything to language expertsKnow the basics of OSINT, be critical and be patient when searching online in a foreign language

MJ Banias discusses how one man’s late-night OpSec fail is an OSINTer’s treasure. If that’s too salacious for you, we also talk about how awesome newspaper archives and librarians are.Key takeawaysPut yourself in your targets shoes to understand what sites could give you your next selectorThe sites and services every OSINTer should subscribe toHow overcoming a millennial’s worst nightmare could be the break you need

Journalists, academics and NGOs face unprecedented levels of threats in real life and in the digital world. With limited resources, they often lack secure methods to collect OSINT. That’s why a digital investigations platform is being offered pro bono as part of a larger CISA initiative. Key takeawaysNew threats in the digital landscapeThe risks for journalists, NGOs and academics collecting OSINTHow digital investigative teams can protect themselves

An analysts from DarkOwl joins us to discuss dark web research and all its facets. From AI and other trends on the dark web, to operational security, learn how to turn on the light beneath the surface of the internet.Key takeawaysAI and other dark web trendsOperational security in dark web researchHow to search an unindexed environment

How can I get in? Steve Stasiukonis knows the power OSINT brings to this crucial pen testing question. From uncovering who to pose as, what to wear and how to forge a badge, OSINT can be the key you need to unlock a client's physical security. Steve also discusses the gold mine OSINT brings to cyber pen tests and what CTI pros need to know before going on the dark web.Key takeawaysHow OSINT is used in pen testingDark web OPSEC considerationsHow Steve easily broke into banks (for good!)

We go behind the scenes with Jon DiMaggio of Ransomware Diaries. As the chief security strategist at Analyst 1, Jon has conducted in-depth investigations of ransomware groups, including the famed Lockbit gang. He tells us the open-source tactics he uses and how cyber threats can take a mental toll.Key takeawaysTracking the Lockbit storyWhere OSINT meets ransomware investigationsThe human element in threat detection

Bullsh*t Hunting creators Justin Seitz and Some Lawyer share their tips on how OSINT and legal investigation tactics can benefit one another. They talk about their series “The Hunt” as it examines suspicious legal proceedings and possible wrongful convictions. Plus we dive deep into public records requests with tips of how to get the information you need.Key TakeawaysHow to effectively submit a public records requestWhat OSINTers can learn from legal professionals and vice versaThink like a lawyer when searching legal databases

Cybersecurity is rife with technological solutions, but as security researcher John Hammond knows all too well, it’s people that make the difference. Hear how people make or break security intel, both as researchers and threat actors. We’ll talk sock puppets, the role of OSINT for your own OPSEC and intelligence building, cybergang leaders as businessmen and more. Plus we’ll dive into John’s recent OSINT work on the ScreenConnect vulnerabilities and how they’re being leveraged in the wild.Key takeawaysUsing OSINT for opsec to protect your identity and enhance security intelligenceLurking in dark web forums, sock puppets and engaging with threat actorsThe role OSINT played in dissecting ScreenConnect vulnerabilities and exploits in the wild