Coffee Talk with SURGe

Coffee Talk with SURGe

Follow Coffee Talk with SURGe
Share on
Copy link to clipboard

Grab a cup of coffee and join Ryan Kovar, Mick Baccio and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news and Mick and Ryan will compete in a 60 second charity challenge. You don’t want to miss it!

Ryan Kovar, Mick Baccio, Audra Streetman


    • Dec 19, 2023 LATEST EPISODE
    • every other week NEW EPISODES
    • 36m AVG DURATION
    • 80 EPISODES


    Search for episodes from Coffee Talk with SURGe with a specific topic:

    Latest episodes from Coffee Talk with SURGe

    Coffee Talk with SURGe: The Interview Series featuring Kirsty Paine

    Play Episode Listen Later Dec 19, 2023 31:28


    Join Ryan Kovar and special guest Kirsty Paine, Field CTO and Strategic Advisor at Splunk, for a conversation about her career in cybersecurity, including with her work on technical standards and emerging technologies, including artificial intelligence, IoT, and quantum computing.  Links:  - Cryptographically Relevant Quantum Computers (CRQCs) & The Quantum Threat  - Quantum-Safe Cryptography & Standards: QSC, PQC, QKD & More! - The Quantum Threat: Options for Migrating to Quantum Safe Cryptography  - Kirsty's Blog Posts - Cyber Security for Consumer Internet of Things (ETSI EN 303 645) - Indicators of Compromise (IoCs) and Their Role in Attack Defence (RFC 9424)

    Coffee Talk with SURGe: 12-DEC-2023 Kyivstar Cyberattack, Water Utilities Hacked, Log4j Exploited

    Play Episode Listen Later Dec 12, 2023 28:32


    Grab a cup of coffee and join Mick Baccio, Katie Brown and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including:  - Ukraine's top mobile internet company is down, blames Russian cyberattack - IRGC-Affiliated Cyber Actors Exploit PLCs in Multiple Sectors, Including U.S. Water and Wastewater Systems Facilities - North Korean hackers using Log4J vulnerability in global campaign Audra and Katie also competed in a charity challenge to share what they consider to be the largest cyber incident of 2023. 

    Coffee Talk with SURGe: The Interview Series featuring Eric McGinnis

    Play Episode Listen Later Dec 5, 2023 21:32


    Join Audra Streetman and special guest Eric McGinnis, Senior Threat Researcher at Splunk, for a conversation about Detection as Code and how it helps to streamline the threat detection process, especially at scale.    Links:  https://github.com/splunk/attack_range https://atomicredteam.io/ https://github.com/splunk/attack_data https://github.com/splunk/security_content https://github.com/splunk/contentctl

    Coffee Talk with SURGe: NCSC Annual Review, ENISA Threat Landscape, Netherlands Cyber Assessment

    Play Episode Listen Later Nov 28, 2023 38:19


    Grab a cup of coffee and join Ryan Kovar, Kirsty Paine, and Floris Ladan for a special EMEA edition of Coffee Talk with SURGe. The team from Splunk will compare highlights and similarities across recent cyber threat reports, including:  - UK NCSC Annual Review 2023 - ENISA Threat Landscape 2023 - Cyber security assessment of the Netherlands 2023  Ryan and Floris also competed in a 60 second charity challenge to explain the importance of red teaming.

    Coffee Talk with SURGe: The Interview Series featuring Cat Self

    Play Episode Listen Later Nov 21, 2023 45:26


    Join David Bianco and special guest Cat Self, Principal Adversary Emulation Engineer at MITRE and macOS/Linux Lead for ATT&CK, for a conversation about Cat's career journey from military intelligence to cybersecurity along with her current work at MITRE.  Links:  - Mitre Engenuity CTID Project - Blog: "A Deep Dive into the OceanLotus Adversary Emulation for macOS & Linux" - Defensive guidance in an enterprise environment: OBTS v6 presentation, “Dropping Lotus Bombs: ATT&CK in macOS Purple Team Operations” by Cat Self & Megan Carney - CTID Adversary Emulation Library

    Coffee Talk with SURGe: 2023-NOV-14 ICBC Ransomware, Sandworm Cuts Power in Ukraine, Volt Typhoon

    Play Episode Listen Later Nov 14, 2023 40:17


    Grab a cup of coffee and join Mick Baccio, Ryan Kovar, and Audra Streetman for another edition of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including:  - LockBit says ICBC paid ransom over hack that disrupted US Treasury market  https://www.reuters.com/technology/cybersecurity/icbc-paid-ransom-after-hack-that-disrupted-markets-cybercriminals-say-2023-11-13/ - Sandworm Disrupts Power in Ukraine Using a Novel Attack Against Operational Technology https://www.mandiant.com/resources/blog/sandworm-disrupts-power-ukraine-operational-technology - The NSA Seems Pretty Stressed About the Threat of Chinese Hackers in US Critical Infrastructure https://www.wired.com/story/nsa-china-hacking-criticial-us-infrastructure/ Mick and Ryan will also compete in a charity challenge to explain what constitutes an influence operation, and why network defenders should care.

    Coffee Talk with SURGe: The Interview Series featuring John Hultquist

    Play Episode Listen Later Nov 8, 2023 49:38


    Join Mick Baccio and special guest John Hultquist, Chief Analyst at Mandiant Intelligence, for a conversation about John's career in cybersecurity, his advice for aspiring CTI analysts, and what to expect at CYBERWARCON 2023 on Nov. 9. The link to register is: https://lnkd.in/gsDkmy2u.

    Coffee Talk with SURGe: 2023-10-31 SEC SolarWinds Complaint, Biden's Executive Order on AI

    Play Episode Listen Later Oct 31, 2023 42:24


    Grab a cup of coffee and join Mick Baccio, Ryan Kovar, and Audra Streetman for a spooky Halloween edition of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including:  - SEC Charges SolarWinds and Chief Information Security Officer with Fraud, Internal Control Failures - President Biden Issues Executive Order on Safe, Secure, and Trustworthy Artificial Intelligence Mick and Ryan also competed in a charity challenge benefitting World Central Kitchen to share the lessons learned from Cybersecurity Awareness Month.

    Coffee Talk with SURGe: The Interview Series featuring Michael Rodriguez

    Play Episode Listen Later Oct 24, 2023 43:38


    Join Mick Baccio and special guest Michael Rodriguez, Principal Strategic Consultant for Google Public Sector, for a conversation about Michael's career path into cybersecurity, the origin of his nickname “Duckie,” and his work as a cybersecurity subject matter expert for Google Space.

    Coffee Talk with SURGe: 2023-OCT-17 Cisco IOS XE, Signal Zero-Day Rumor, Conflict Disinformation

    Play Episode Listen Later Oct 17, 2023 44:57


    Grab a cup of coffee and join Mick Baccio, Ryan Kovar, and Katie Brown for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including:  - Cisco Discloses ‘Critical' Zero-Day Vulnerability In IOS XE - Signal Pours Cold Water on Zero-Day Exploit Rumors - European Commission demands X account for disinformation in wake of Hamas attacks

    Coffee Talk with SURGe: The Interview Series featuring Patrick Gray

    Play Episode Listen Later Oct 10, 2023 20:29


    Join Shannon Davis and special guest Patrick Gray, host of the Risky Biz podcast, for a discussion about Patrick's cybersecurity reporting career and the work behind the scenes to produce each episode. You can listen to Risky Biz at risky.biz or wherever you get your podcasts. 

    Coffee Talk with SURGe: 2023-OCT-03 WS_FTP RCE, Exim Scope, ChatGPT, Cybersecurity Awareness Month

    Play Episode Listen Later Oct 3, 2023 54:02


    Grab a cup of coffee and join Mick Baccio, Ryan Kovar and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including:  - RCE in Progress WS_FTP Ad Hoc via IIS HTTP Modules (CVE-2023-40044) - Exim patches three of six zero-day bugs disclosed last week - Exploit released for Microsoft SharePoint Server auth bypass flaw - Developments in ChatGPT capabilities  - Tom Hanks warns fans about ‘AI version of me' promoting dental plan Mick and Ryan competed in a 60 second charity challenge to share the pros and cons of Cybersecurity Awareness Month.

    Coffee Talk with SURGe: The Interview Series featuring Sherrod DeGrippo

    Play Episode Listen Later Sep 26, 2023 42:44


    Join Ryan Kovar and special guest Sherrod DeGrippo, Director of Threat Intelligence Strategy at Microsoft, for a discussion about crimeware, threat actor naming conventions, and Sherrod's essay in a new book by SURGe titled, "Bluenomicon: The Network Defender's Compendium."

    Coffee Talk with SURGe: 2023-SEPT-19 Data Leaks, Casino Breaches, Ransom Demands, Big Yellow Taxi

    Play Episode Listen Later Sep 19, 2023 46:44


    Grab a cup of coffee and join Audra Streetman and special guests Haylee Mills, Katie Brown and Drew Church for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including:  Microsoft's Xbox plans revealed in emails tied to FTC case 38TB of data accidentally exposed by Microsoft AI researchers Hackers who breached casino giants MGM, Caesars also hit 3 other firms, Okta says All thanks to ‘Big Yellow Taxi': How State discovered Chinese hackers reading its emails

    Coffee Talk with SURGe: The Interview Series featuring Derrick Lawson

    Play Episode Listen Later Sep 16, 2023 19:04


    Join Ryan Kovar and special guest Derrick Lawson, Staff Sales Engineer at Splunk, for a discussion about M-21-31, a US memorandum establishing an event logging maturity model for federal government agencies. They'll discuss strategies and tools that can help agencies with compliance.

    surge coffee talk splunk staff sales engineer
    Coffee Talk with SURGe: The Interview Series featuring Jamie Williams

    Play Episode Listen Later Sep 12, 2023 39:36


    Join Ryan Kovar and special guest Jamie Williams, MITRE ATT&CK for Enterprise Lead and Principal Adversary Emulation Engineer, for a discussion about MITRE ATT&CK use cases and Jamie's essay in a new book by SURGe titled, "Bluenomicon: The Network Defender's Compendium."   Download Bluenomicon

    Coffee Talk with SURGe: 2023-SEPT-05 Mudge Joins CISA, Qakbot Takedown, Infamous Chisel Malware

    Play Episode Listen Later Sep 5, 2023 45:34


    Grab a cup of coffee and join Mick Baccio, Ryan Kovar and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including:  - Famed hacker and Twitter whistleblower Peiter 'Mudge' Zatko is joining the Biden administration https://www.washingtonpost.com/politics/2023/09/05/cisa-makes-big-name-hire-its-crusade-against-insecure-products/ - FBI, Partners Dismantle Qakbot Infrastructure in Multinational Cyber Takedown https://www.fbi.gov/news/stories/fbi-partners-dismantle-qakbot-infrastructure-in-multinational-cyber-takedown - Infamous Chisel Malware Analysis Report https://www.cisa.gov/news-events/analysis-reports/ar23-243a Mick and Ryan competed in a 60 second charity challenge to share their favorite hack of all time before a deep dive on extortionware vs. ransomware. 

    Coffee Talk with SURGe: The Interview Series featuring Rick Holland

    Play Episode Listen Later Aug 31, 2023 34:14


    Join Ryan Kovar and special guest Rick Holland, VP and CISO at ReliaQuest, for an interview about Rick's career journey, his advice for cybersecurity leaders, and his contribution to the SURGe team's new book titled, “Bluenomicon: The Network Defender's Compendium.” Follow Rick on Twitter  Download the Bluenomicon PDF

    Coffee Talk with SURGe: 2023-AUG-22 Ivanti, Citrix, Space Industry, Tesla Insider Threat, Quantum

    Play Episode Listen Later Aug 22, 2023 57:46


    Grab a cup of coffee and join Mick Baccio, Ryan Kovar and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including:  - Ivanti: Customers ‘impacted' by new zero-day vulnerability - Nearly 2,000 Citrix NetScaler Instances Hacked via Critical Vulnerability - Joint Advisory on Safeguarding the US Space Industry - Tesla says data breach impacting 75,000 employees was an insider job - CISA Factsheet on Quantum Readiness - Kirsty's Blog: Cryptographically Relevant Quantum Computers (CRQCs) & The Quantum Threat in 2023

    Coffee Talk with SURGe: The Interview Series featuring Jake Williams

    Play Episode Listen Later Aug 17, 2023 30:29


    Join Audra Streetman and special guest Jake Williams (@MalwareJake) for a discussion about hiring in cybersecurity, interview advice, the challenges associated with vulnerability prioritization, Microsoft's Storm-0558 report, and Jake's take on the future of AI and LLMs in cybersecurity.

    Coffee Talk with SURGe: 2023-AUG-01 Ivanti EPMM, SEC Reporting Rules, Black Hat, Defcon

    Play Episode Listen Later Aug 2, 2023 56:12


    Grab a cup of coffee and join Mick Baccio, Ryan Kovar and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including:  - Threat Actors Exploit Ivanti EPMM Vulnerabilities  - Splunk Threat Research Team analytic story  - Strengthening Cybersecurity: Can The SEC's Landmark New Rules Be Enforced? - Senator calls on DOJ to investigate alleged China hack of Microsoft cloud tools - U.S. Hunts Chinese Malware That Could Disrupt American Military Operations Mick and Ryan also shared their top advice for people attending Black Hat and Defcon for the first time next week.

    Coffee Talk with SURGe: the Interview Series featuring Eva Galperin

    Play Episode Listen Later Jul 25, 2023 22:08


    Join Audra Streetman and special guest Eva Galperin, director of cybersecurity at the Electronic Frontier Foundation, for an interview about data privacy, stalkerware, artificial intelligence, and the recent rise in deepfake sextortion schemes. You can follow Eva on Twitter @evacide and learn more about her work at EFF.org.

    SURGe author panel on Bluenomicon: The Network Defender's Compendium

    Play Episode Listen Later Jul 24, 2023 34:58


    Join Mick Baccio and Ryan Kovar as they interview several Splunk cybersecurity experts at .conf23 whose essays are featured in Bluenomicon: The Network Defender's Compendium. The authors include Sydney Howard, Principal Threat Hunter at Splunk, Jason Lee, Splunk CISO, and Paul Kurtz, Splunk's Chief Cybersecurity Advisor. To order a free copy of Bluenomicon, visit: https://www.splunk.com/en_us/form/the-network-defenders-compendium.html. 

    Coffee Talk with SURGe: APT Tradecraft and Data Privacy with Jake Williams and Eva Galperin

    Play Episode Listen Later Jul 24, 2023 42:40


    Join Ryan, Mick, and Audra for a special edition of Coffee Talk with SURGe, live from .conf23 in Las Vegas. This episode, the trio from Splunk is joined by cybersecurity experts Jake Williams and Eva Galperin to discuss the trends in tradecraft they've observed among APT groups along with the topic of data privacy. 

    Coffee Talk with SURGe: 2023-JULY-11 Meta's Threads, US/EU Data Sharing, MOVEit Update, iOS Patch

    Play Episode Listen Later Jul 11, 2023 47:04


    Grab a cup of coffee and join Mick Baccio, Ryan Kovar and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including:  - Threads Becomes Most Rapidly Downloaded App, Raising Twitter's Ire - U.S. and E.U. Finalize Long-Awaited Deal on Sharing Data - Three new MOVEit bugs spur CISA warning as more victims report breaches - Apple Ships Urgent iOS Patch for WebKit Zero-Day Mick and Ryan competed in a 60 second charity challenge benefitting the Malala Fund to share their suggestions for this year's defense policy bill.  The trio also took a deep dive into the Washington Post's new Printer Week series.

    Coffee Talk with SURGe: 2023-JUNE-27 SolarWinds SEC, Iran Hack-and-Leak, MOVEit Fallout, Cyber Force

    Play Episode Listen Later Jun 28, 2023 51:53


    Grab a cup of coffee and join Mick Baccio, Ryan Kovar and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the livestream here.    The team from Splunk will discuss the latest security news, including:  - SolarWinds says SEC investigation ‘progressing to charges' - The potent cyber adversary threatening to further inflame Iranian politics - Siemens Energy, UCLA latest confirmed victims in MOVEit hack - Turn your phone off every night for five minutes, Australian PM tells residents -  Cyber Force for the military? Senators want to know

    Coffee Talk with SURGe: The Interview Series featuring Alex Pinto

    Play Episode Listen Later Jun 28, 2023 56:45


    Join Ryan Kovar and special guest Alex Pinto, Senior Manager of Threat Intelligence at Verizon for an interview about the key takeaways from the 2023 Verizon Data Breach Investigations Report (DBIR). You can watch the livestream of this episode here. Read the DBIR report Follow Alex on Twitter    

    Coffee Talk with SURGe: 2023-JUNE-13 Fortinet, Barracuda, MOVEit Transfer, CISA Directive, DPRK

    Play Episode Listen Later Jun 14, 2023 50:58


    Grab a cup of coffee and join Mick Baccio, Ryan Kovar and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the livestream of this episode here. The team from Splunk will discuss the latest security news, including: - Fortinet fixes critical RCE flaw in Fortigate SSL-VPN devices, patch now - Barracuda Urges Replacing — Not Patching — Its Email Security Gateways - MOVEit Transfer Vulnerability Advisory from CISA - STRT Analytic Story for MOVEit Transfer vulnerability - Americans should prepare for cyber sabotage from Chinese hackers, US official warns - Binding Operational Directive 23-02 - How North Korea's Hacker Army Stole $3 Billion in Crypto, Funding Nuclear Program  

    Coffee Talk with SURGe: the Interview Series featuring Scott Roberts

    Play Episode Listen Later Jun 14, 2023 47:39


    Join Mick Baccio and special guest Scott Roberts, head of threat research at Interpres Security for an interview about Scott's career journey, how he's seen cybersecurity evolve over time, and his essay featured in the SURGe team's new book, Bluenomicon: The Network Defender's Compendium. You can watch the livestream of this episode here. 

    Coffee Talk with SURGe: Volt Typhoon, CosmicEnergy, Pentagon Cyber Strategy, AI Risk

    Play Episode Listen Later Jun 14, 2023 55:04


    Grab a cup of coffee and join Mick Baccio and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the livestream here. The team from Splunk will discuss the latest security news, including: - Volt Typhoon targets US critical infrastructure with living-off-the-land techniques - COSMICENERGY: New OT Malware Possibly Related To Russian Emergency Response Exercises - Real-world experience' informs new Pentagon cyber strategy - Lender OneMain fined $4.25 million for cybersecurity lapses  - A.I. Poses ‘Risk of Extinction,' Industry Leaders Warn  

    Coffee Talk with SURGe: the Interview Series featuring Sydney Howard

    Play Episode Listen Later Jun 14, 2023 18:41


    Join Audra Streetman and special guest Sydney Howard, Principal Threat Hunter at Splunk for an interview about her career journey, why she thinks purple teaming is so important, and her approach to threat hunting. Links: - Introducing the PEAK Threat Hunting Framework  - Hypothesis-Driven Hunting with the PEAK Framework  - Model-Assisted Threat Hunting (M-ATH) with the PEAK Framework  - SCYTHE Purple Team Exercise Framework 

    Coffee Talk with SURGe: Telegram Vulnerability, Dallas Ransomware Attack, Dragos, Snake Malware

    Play Episode Listen Later Jun 14, 2023 37:22


    Grab a cup of coffee and join Mick Baccio and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the livestream of this episode here.    The team from Splunk will discuss the latest security news, including: - Software engineer publicly discloses Telegram vulnerability - Dallas says it 'will likely take weeks to get back to full functionality' after ransomware attack  - Hackers attempt to extort Dragos and its executives in suspected ransomware attempt - Joint advisory on Hunting Russian Intelligence “Snake” Malware Mick and Audra also shared their stance on AI regulation as part of this week's 60 second charity challenge, with proceeds benefitting the Save Elephant Foundation.

    Coffee Talk with SURGe: the Interview Series featuring DomainTools

    Play Episode Listen Later Jun 14, 2023 38:19


    Join David Bianco and special guest Aaron Gee-Clough, Senior Data Engineer at DomainTools for an interview about their collaboration for a research project evaluating the trustworthiness of certificate authorities (CAs) by analyzing five billion TLS certificates using Splunk. Watch the livestream of this episode here.  Listen to the talk at RSA Conference 2023 RSA slides DomainTools 2021 report  

    Coffee Talk with SURGe: 2023-MAY-02 SolarWinds, US Marshals Service, OT Threat Sharing, Bluesky, RSA

    Play Episode Listen Later Jun 14, 2023 42:36


    Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the livestream of this episode here.   The team from Splunk will discuss the latest security news, including:  - The DOJ Detected the SolarWinds Hack 6 Months Earlier Than First Disclosed - US Marshals Service still recovering from February ransomware attack affecting system used by fugitive hunters - Industrial security vendors partner to share intelligence about critical infrastructure threats Ryan and Mick competed in a charity challenge to discuss the impact of splintering social media platforms for keeping track of security news and opinions. The trio also recapped the highlights from RSA Conference.

    Coffee Talk with SURGe: 2023-APR-25 The Interview Series live from RSA Conference

    Play Episode Listen Later Jun 14, 2023 25:17


    Grab a cup of coffee and join Mick Baccio and special guests Juan Andres Guerrero-Saade and Jon DiMaggio for another episode of Coffee Talk with SURGe, live from RSA Conference in San Francisco. Guerrero-Saade and DiMaggio are both contributing authors for Bluenomicon, a new book by SURGe that features stories and advice from security leaders and practitioners. You don't want to miss it! You can watch the livestream of this episode here. 

    Coffee Talk with SURGe: 2023-APR-18 NSO Group, LockBit macOS Encryptors, AI in CTI, MSFT Taxonomy

    Play Episode Listen Later Jun 14, 2023 45:34


    Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the livestream of this episode here.   The team from Splunk will discuss the latest security news, including:  - Citizen Lab releases report on NSO Group's new zero-click exploit chains - LockBit ransomware encryptors found targeting Mac devices - Did someone really hack into the Oldsmar, Florida, water treatment plant? New details suggest maybe not.   Mick and Ryan competed in a 60 second charity challenge about how generative artificial intelligence could be used in cyber threat intelligence, with proceeds benefiting the ACLU.  The trio also discussed Microsoft's new threat actor naming taxonomy and the role of attribution in cyber threat intelligence.  

    Coffee Talk with SURGe: The Interview Series featuring Michael Haag

    Play Episode Listen Later Jun 14, 2023 28:10


    Join Coffee Talk with SURGe for our bi-weekly interview series. This week, Audra Streetman interviews Michael Haag, Senior Threat Researcher at Splunk. They'll discuss his YouTube show, Atomics on a Friday, along with the Living off the Land Drivers project, which aims to consolidate vulnerable and malicious drivers into a centralized location.   Links: Episode livestream Splunk Threat Research Team Splunk blog about certificate abuse Splunk blog about IIS Modules Splunk content on Windows drivers LOLDrivers Project Form to submit drivers Atomic Red Team SANS Talk about Windows driver rootkits Atomics on a Friday Follow Michael on Twitter  

    Coffee Talk with SURGe: 3CX Supply Chain Compromise, Medical Device SBOMs, Italy bans ChatGPT

    Play Episode Listen Later Jun 14, 2023 48:18


    Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here.    The team from Splunk will discuss the latest security news, including:  -The Splunk Threat Research Team releases a blog with insights into the 3CX supply chain compromise -Medical device manufacturers in the US must soon provide SBOMs -Italy's data protection agency temporarily bans ChatGPT Audra and Mick competed in a 60 second charity challenge on whether or not they see artificial intelligence reaching singularity, with proceeds benefiting DataEthics4All. The trio wrapped up with a deep dive into the RESTRICT ACT and proposed TikTok ban in the United States.

    Coffee Talk with SURGe: The Interview Series featuring Allan Liska

    Play Episode Listen Later Jun 14, 2023 37:58


    Join Coffee Talk with SURGe for our bi-weekly interview series. This week, SURGe member Shannon Davis interviews Allan Liska, threat intelligence analyst at Recorded Future and author of Ransomware: Understand. Prevent. Recover. They'll talk about the threat of ransomware, including recent trends, the impact of hack-back operations, and how organizations can become more resilient against attacks.  Links:  Watch the episode livestream Follow Allan on Twitter Learn more about Allan's book  

    Coffee Talk with SURGe: 2023-MAR-21 Oakland Ransomware Attack, BreachForums, Acropalypse, GPT-4

    Play Episode Listen Later Jun 14, 2023 50:17


    Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here.    The team from Splunk will discuss the latest security news, including: - Oakland could be dealing with a second ransomware attack in two months - Notorious hacking forum shuts down after administrator gets arrested - Google Pixel flaw allowed recovery of redacted, cropped images   Mick and Ryan shared their takes on responding to 0day vulnerabilities and the trio also discussed GPT-4 and the future of generative AI.

    Coffee Talk with SURGe: The Interview Series featuring Sergio Caltagirone

    Play Episode Listen Later Jun 14, 2023 48:53


    Join us as we kick off our new bi-weekly 1-1 interview series, starting with Sergio Caltagirone. Sergio was formerly at NSA, Director of Threat Intelligence at Microsoft, VP of Threat Intelligence at Dragos, Technical Director of the Global Emancipation Network, now the founder and president of the Threat Intelligence Academy, and of course, co-author of The Diamond Model.  We will talk about all the things threat intelligence, thought models, and probably a solid side of snark. Links: Episode livestream ChrisSanders.org Read the Cuckoos Egg Sergio's new adventure!

    Coffee Talk with SURGe: 2023-MAR-07 National Cybersecurity Strategy, CVE-2023-21716, Health Data

    Play Episode Listen Later Jun 14, 2023 47:17


    Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Kirsty Paine for another episode of Coffee Talk with SURGe. You can watch the episode livestream here. The team from Splunk will discuss the latest security news, including:  - Biden administration releases U.S. National Cybersecurity Strategy  -PoC exploit for recently patched Microsoft Word RCE is public (CVE-2023-21716) -Ransomware moving into extortion of health data

    Coffee Talk with SURGe: 2023-FEB-21 Twitter SMS 2FA, Ukraine Cyber Threat Landscape, Pyramid of Pain

    Play Episode Listen Later Jun 14, 2023 25:31


    Grab a cup of coffee and join David Bianco, Shannon Davis, and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including:  - Twitter plans to remove access to SMS 2FA for non-subscribing users https://blog.twitter.com/en_us/topics/product/2023/an-update-on-two-factor-authentication-using-sms-on-twitter - Google TAG, Mandiant, and Google Trust & Safety release a report analyzing how the war in Ukraine has impacted the cyber threat landscape https://blog.google/threat-analysis-group/fog-of-war-how-the-ukraine-conflict-transformed-the-cyber-threat-landscape/ David Bianco and Shannon Davis also competed in a charity challenge comparing the pros and cons of the Pyramid of Pain, a conceptual model created by David to order Indicators of Compromise (IoCs) by the level of difficulty it will cause for an adversary to change the indicators associated with them. https://detect-respond.blogspot.com/2013/03/the-pyramid-of-pain.html  

    Coffee Talk with SURGe: 2023-FEB-07 ESXi servers, Royal Mail ransomware, Gamaredon, Bard AI

    Play Episode Listen Later Jun 14, 2023 56:34


    Grab a cup of coffee and join Ryan Kovar, Audra Streetman, and special guest David Bianco for another episode of Coffee Talk with SURGe. You can watch the episode livestream here.   The team from Splunk will discuss the latest security news, including:  - VMware warns admins to patch ESXi servers, disable OpenSLP service - LockBit ransomware group threatens Royal Mail with data leak deadline - Russia-backed hacker group Gamaredon attacking Ukraine with info-stealing malware David and Ryan also competed in a 60 second charity challenge to share their take on Netflix's anticipated crackdown on password sharing. The trio also discussed Google's Bard AI chatbot, which was introduced as a competitor to ChatGPT.

    Coffee Talk with SURGe: 2023-JAN-24 Ticketmaster, Apple Hardware Security Keys, Ukraine, Bias

    Play Episode Listen Later Jun 14, 2023 39:16


    Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here.   The team from Splunk will discuss the latest security news, including:  - Ticketmaster says a cyberattack disrupted Taylor Swift ticket sales - Apple iOS 16.3 arrives with support for hardware security keys - Ukraine signs an agreement to join the NATO cyber defense center - Google will stop exempting campaign email from automated spam detection Mick and Ryan also competed in a 60 second charity challenge to explain how cognitive biases can negatively impact cyber threat intelligence assessments.

    Coffee Talk with SURGe: 2023-JAN-10 LastPass, Slack, CircleCI, Chick-fil-A, CISA, ChatGPT

    Play Episode Listen Later Jun 14, 2023 44:23


    Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here. The team from Splunk will discuss the latest security news, including: - LastPass, Slack, and CircleCI notify customers of security incidents. - Chick-fil-A investigates reports of hacked customer accounts - CyberScoop reports: Insiders worry CISA is too distracted from critical cyber mission  Mick and Ryan competed in a 60 second charity challenge to share their opinion of ChatGPT and its impact on the cybersecurity industry. The team also discussed some of the major security headlines from 2022.

    Coffee Talk with SURGe: 2022-DEC-13 GovSummit, NIS2, Cyber Collaboration, Exercise Crossed Swords

    Play Episode Listen Later Jun 14, 2023 49:55


    Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Kirsty Paine for a special episode of Coffee Talk with SURGe, live in Washington, DC for GovSummit. You can watch the episode livestream here.    The team from Splunk will discuss the latest security news, including: - NIS2 is coming… What does it mean? - NDAA requires intelligence agencies to study creation of cyber collaboration program - Exercise Crossed Swords 2022 Kicks Off! The episode also features a special GovSummit segment featuring Splunk CEO Gary Steele and Juliana Vida, Splunk's Chief Technical Advisor for the public sector.

    Coffee Talk with SURGe: 2022-NOV-29 RansomBoggs, Log4Shell, Medibank Update, Twitter E2EE Messaging

    Play Episode Listen Later Jun 14, 2023 40:55


    Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here.    The team from Splunk will discuss the latest security news, including: - ESET Research identifies a wave of ransomware attacks targeting organizations in Ukraine that they're calling #RansomBoggs - Cincinnati State College is added to Vice Society's leak site - Iranian Hackers use Log4Shell to mine crypto on a US Federal computer system - The extortion site used in the Medibank attack goes offline after the Australian government pledges 'offensive' actions Mick and Ryan competed in a 60 second charity challenge about network surveillance. The group also discussed the possibility of Twitter implementing end-to-end encrypted messaging on the platform.

    Coffee Talk with SURGe: 2022-NOV-08 Election Security, OpenSSL, Medibank, Azov Ransomware, Mastodon

    Play Episode Listen Later Jun 14, 2023 29:12


    Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here.    The team from Splunk will discuss the latest security news, including: - CISA reminds voters that there is no credible threat to voting equipment for the U.S. midterm elections. - Splunk released a blog last week about the OpenSSL vulnerabilities, which were downgraded from critical to high severity. - Medibank says it will not pay the ransom after data for 9.7 million customers was compromised.  - Azov ransomware is observed destroying data instead of encrypting it. - The White House creates an International Counter Ransomware Task Force following a two-day summit.  Mick and Audra also competes in a 60 second charity challenge to share their takes on a proposal from the Red Cross to create digital emblems to deter cyberattacks during conflict targeting systems belonging to hospitals and humanitarian organizations.

    Coffee Talk with SURGe: 2022-OCT-25 DOJ China Espionage, Drizly Complaint, Text4Shell, U.S. Midterms

    Play Episode Listen Later Jun 14, 2023 43:29


    Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here.    The team from Splunk will discuss the latest security news, including:  - The DOJ announces charges against two Chinese intelligence officers accused of trying to subvert a U.S. criminal investigation involving a China-based telecom.  - The FTC is taking action against Drizly, an online alcohol delivery service, for failing to take steps to protect consumer data. - Why Text4Shell is not a Log4Shell-scale vulnerability. Mick and Ryan competed in a 60 second charity challenge to share their take on the issue of victim-blaming for phishing attacks. The episode ends with a deep dive on cyber threats ahead of the U.S. midterm elections on Nov. 8.

    Coffee Talk with SURGe: 2022-OCT-11 EU Data, Vice Society Ransomware, Killnet

    Play Episode Listen Later Jun 14, 2023 39:31


    Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here.   The team from Splunk will discuss the latest security news, including:  - President Joe Biden signs an executive order outlining a new data transfer framework between the EU and US.  - Ransomware attacks disrupt programming for three Brazilian broadcasters and a bank in Brazil reportedly paid $950,000 in Bitcoin to a LockBit affiliate.  - Healthcare providers associated with CommonSpirit Health are still dealing with outages from a suspected ransomware attack.  - Vice Society adds more school districts to its leak site after releasing personal data of students at Los Angeles Unified School District.  - Lloyd's of London says its investigation into a possible cyberattack found no evidence of data compromise.  - The Pro-Russia hacktivist group Killnet targets the websites of U.S. state governments and airlines.   Mick, Ryan, and Audra also competed in a 60 second charity challenge to name their top takeaway from Cybersecurity Awareness Month.

    Claim Coffee Talk with SURGe

    In order to claim this podcast we'll send an email to with a verification link. Simply click the link and you will be able to edit tags, request a refresh, and other features to take control of your podcast page!

    Claim Cancel