Talion Threat Set Radio

Follow Talion Threat Set Radio
Share on
Copy link to clipboard

Talion Threat Set Radio is your weekly cyber threat intelligence bulletin. We cut through the noise to give you our honest opinion on the threat news that matters.

Talion Threat Intelligence Team


    • May 2, 2025 LATEST EPISODE
    • monthly NEW EPISODES
    • 6m AVG DURATION
    • 205 EPISODES


    Search for episodes from Talion Threat Set Radio with a specific topic:

    Latest episodes from Talion Threat Set Radio

    Threat Bulletin #299

    Play Episode Listen Later May 2, 2025 4:08


    Multiple UK retailers hit by cyber attacks.Microsoft make strides towards passwordless future.Hacker who stole Disney data pleads guilty.Shameless Plug.

    Threat Bulletin #298

    Play Episode Listen Later Jan 24, 2025 5:35


    Founder of the Silk Road illegal dark web marketplace given full pardon.Trump administration fires review board investigating Chinese APT group.

    Threat Bulletin #297

    Play Episode Listen Later Jan 10, 2025 5:43


    Multiple faulty Tenable updates over holiday period cause global Nessus agent failure.Telegram policy shift on law enforcement requests causes cybercrime exodus.

    Threat Bulletin #296

    Play Episode Listen Later Jan 3, 2025 3:39


    Chinese state actor breaches U.S department responsible for foreign sanctions following BeyondTrust compromise.Quick fire topics.

    Threat Bulletin #295

    Play Episode Listen Later Dec 20, 2024 4:40


    New wave of file transfer platform attacks perpetrated by Clop.Apache Struts exploited in the wild using publicly available PoC code.

    Threat Bulletin #294

    Play Episode Listen Later Dec 13, 2024 4:49


    Termite ransomware claims attack on Blue Yonder SaaS giant.Ivanti suffers sixth CSA security vulnerability in 4 months.

    Threat Bulletin #293

    Play Episode Listen Later Dec 6, 2024 3:55


    New phishing technique abuses office document recovery feature to evade detection.Quick fire topics.

    Threat Bulletin #292

    Play Episode Listen Later Nov 29, 2024 5:42


    First UEFI Bootkit targeting Linux discovered.Russian RomCom group utilises chain vulnerability in widespread attack.

    Threat Bulletin #291

    Play Episode Listen Later Nov 22, 2024 4:06


    Akira claims record breaking 30 victims in one day.Ransomware operation abandons file encryption for extortion tactics.Quick fire topics.

    Threat Bulletin #290

    Play Episode Listen Later Nov 15, 2024 4:08


    Multiple new phishing techniques, ZIP file concatenation, and Docusign API abuse on the rise.Quick fire topics.

    Threat Bulletin #289

    Play Episode Listen Later Nov 8, 2024 4:21


    VEILDrive campaign uses a number of Microsoft services for stealthy compromise.Quick fire topics.

    Threat Bulletin #288

    Play Episode Listen Later Nov 1, 2024 4:58


    Arrested members of the REvil ransomware operation tried and charged in Russian court.Operation Magnus collaborative effort brings down Redline and Meta infostealer malware.

    Threat Bulletin #287

    Play Episode Listen Later Oct 25, 2024 5:09


    New Fortinet 0 day exploit highlights history of bad disclosure and transparency practices Quick fire topics.

    Threat Bulletin #286

    Play Episode Listen Later Oct 18, 2024 3:25


    Tool which disrupts EDR solutions from sending alerts to defenders used in attacks. Quick fire topics.

    Threat Bulletin #285

    Play Episode Listen Later Oct 11, 2024 5:00


    31 million records stolen from the Wayback Machine service.Ivanti hit by even more zero day exploitation in active attacks.Quick fire topics.

    Threat Bulletin #284

    Play Episode Listen Later Oct 4, 2024 3:58


    Evil Corp and LockBit members the target of global sanctions and arrests.Quick fire topics.

    Threat Bulletin #283

    Play Episode Listen Later Sep 27, 2024 4:18


    Telegram in the spotlight, founder arrested, banned in Ukraine, and will now share user data on legal request. Quick fire topics.

    Threat Bulletin #282

    Play Episode Listen Later Sep 20, 2024 4:36


    Explosions were a supply chain compromise, not a cyber attack.Another Ivanti critical flaw exploited in the wild with public exploit.

    Threat Bulletin #281

    Play Episode Listen Later Sep 13, 2024 3:36


    Security giant Fortinet suffers data breach as 440GB of files stolen.Quick fire lightning round.

    Threat Bulletin #280

    Play Episode Listen Later Aug 30, 2024 6:42


    Uncommon technique from 2017 resurrected to drop Cobalt StrikeVersa Director vulnerability leveraged by Volt TyphoonNew persistence technique allowed Linux malware to hide for years. 

    Threat Bulletin #279

    Play Episode Listen Later Aug 23, 2024 6:22


    SolarWinds flaw exploited in the wild & hardcoded credentials.Report indicates ransom payments will break last years record.Lazarus exploit driver present on every Windows system.

    Threat Bulletin #278

    Play Episode Listen Later Aug 16, 2024 6:59


    In this weeks episode: - Over 2 Billion Records of Personal Information Leaked. - Critical TCP/IP remote code execution vulnerability patched by Microsoft. - Ringleader of Ransom Cartel extradited to the US to face charges.

    Threat Bulletin #277

    Play Episode Listen Later Aug 9, 2024 5:54


    The legal challenges against CrowdStrike begin following update incident.CISA re-issues seven year old warning over exploited Cisco install flaw.Chinese group compromises ISP to push poisoned infostealer updates.

    Threat Bulletin #276

    Play Episode Listen Later Aug 2, 2024 7:22


    Microsoft vows less reliance on kernel drivers following CrowdStrike incident.Cloudflare trial product increasingly abused for criminal obfuscation.Black Basta sees success with in house tools following QBot takedown.

    Threat Bulletin #275

    Play Episode Listen Later Jul 26, 2024 6:45


    Repair documentation used to push malware after CrowdStrike incident.New Linux variant of the prolific Play ransomware discovered.New ICS malware FrostyGoop responsible for Ukraine attack.

    Threat Bulletin #274

    Play Episode Listen Later Jul 19, 2024 5:22


    Report highlights alarming speed PoC exploits are weaponized.Kaspersky offers 6 months free service as farewell to US market.Fin7 offers sophisticated evasion tool on underground markets.CrowdStrike botched update causes global havoc.

    Threat Bulletin #273

    Play Episode Listen Later Jul 12, 2024 5:52


    Eldorado ransomware claims 16 victims in short timeframe.Free decryptor released by Avast for DoNex ransomware strain.Blast Radius attacks leverage MD5 collisions to gain admin.

    Threat Bulletin #272

    Play Episode Listen Later Jul 5, 2024 4:40


    "regreSSHion" SSH flaw leads to root on Linux servers.GootLoader continues to deploy updated versions in new attacks.

    Threat Bulletin #271

    Play Episode Listen Later Jun 28, 2024 6:31


    Kaspersky software banned in US due to national security concerns.LockBit misleadingly claims to hit US federal reserve.TeamViewer compromised by Russian state sponsored APT group.

    Threat Bulletin #270

    Play Episode Listen Later Jun 14, 2024 6:56


    PoC exploit code available for heavily targeted Veeam backup solution.New loader dubbed PhantomLoader delivers MaaS payloads.Black Basta may have exploited flaw 3 months before fix issued, as 0 day.

    Threat Bulletin #269

    Play Episode Listen Later Jun 7, 2024 7:19


    Attackers target GitHub repos once again in Ransom-lite extortion.Windows will finally depreciate NTLM, providing transition advice.PoC chaining two flaws for Telerik report released.

    Threat Bulletin #268

    Play Episode Listen Later May 30, 2024 8:06


    In this week news: Check Point Zero-day vulnerability.Okta Credential Stuffing.Operation Endgame Targets Botnets.

    Threat Bulletin #267

    Play Episode Listen Later May 24, 2024 6:32


    In this weeks episode, LockBit Ransomware group have had nothing but setbacks since  “Operation Chronos”, GitHub alerts users to 2 high severity vulnerabilities and a significant uptick in Docusign phishing emails has been observed in May.

    Threat Bulletin #266

    Play Episode Listen Later May 10, 2024 6:07


    LockBit ransomware admin is named and sanctioned.North Korean actors exploiting weak DMARC policies for spearphishing.Ivanti flaws chained together to drop Mirai botnet.

    Threat Bulletin #265

    Play Episode Listen Later May 3, 2024 6:35


    Developers targeted with Python backdoor during false job interviews.New UK law now in effect limits default passwords on smart devices.New malware emerges targeting small office and home routers.

    Threat Bulletin #264

    Play Episode Listen Later Apr 26, 2024 6:13


    MITRE breached using two Ivanti zero days.CrushFTP victim of targeted zero day exploitation.ArcaneDoor campaign targets vulnerable Cisco devices.

    Threat Bulletin #263

    Play Episode Listen Later Apr 19, 2024 6:18


    Large scale exploitation of Palo Alto CVE following PoC disclosures.Atlassian vulnerability leveraged to deploy Cerber ransomware.PuTTY flaw can be used to obtain private cryptographic keys.

    Threat Bulletin #262

    Play Episode Listen Later Apr 12, 2024 7:00


    Warnings issued regarding 10/10 CVSS score Rust vulnerability.Researchers speculate LLM wrote Powershell for malware strain.Change Healthcare hit by ransom demand again following AlphV exit scam.

    Threat Bulletin #261

    Play Episode Listen Later Apr 5, 2024 6:23


    Sophisticated supply chain attack attempted against multiple Linux distros.Linux false Sudo prompt flaw has persisted for over a decade.DinodasRAT now targeting Linux servers with new variant.

    Threat Bulletin #260

    Play Episode Listen Later Mar 28, 2024 4:46


    Huge darknet marketplace seized by German takedown effort.Muddywater group using legitimate RM tools for access.APT31 members sanctioned following US infrastructure attacks.

    Threat Bulletin #259

    Play Episode Listen Later Mar 22, 2024 5:23


    Fujitsu discover malware compromised systems.Russian actors may be targeting Ukrainian telecoms with new wiper malware.New DoS technique discovered able to create infinite feedback loop.

    Threat Bulletin #258

    Play Episode Listen Later Mar 15, 2024 5:02


    Russian groups accesses Microsoft source code in follow up from January attack.StopCrypt, the ransomware still targeting individuals over business has been upgraded.DarkGate leverage recent SmartScreen vulnerability in attacks.

    Threat Bulletin #257

    Play Episode Listen Later Mar 8, 2024 6:41


    The Blackcat / AlphV ransomware operation fakes law enforcement takedown to steal from their own affiliate.

    Threat Bulletin #256

    Play Episode Listen Later Mar 1, 2024 6:31


    LockBit claims swift recovery from takedown operation, downplaying severity and threatening leaks.Lazarus exploit Windows zero day flaw with new improved Rootkit.

    Threat Bulletin #255

    Play Episode Listen Later Feb 23, 2024 6:42


    DoJ takes down botnet used by Russian state group.LockBit ransomware operation gutted by the NCA.ScreenConnect under active attack, Lockbit utilised.

    Threat Bulletin #254

    Play Episode Listen Later Feb 9, 2024 6:49


    Anydesk confirms cyberattack that allowed hackers to gain access to the company's production systems, Cloudflare publicly disclose its internal Atlassian server was breached by a suspected nation-state attacker and the FBI disrupt and neutralize KV-botnet.

    Threat Bulletin #253

    Play Episode Listen Later Jan 26, 2024 6:16


    Microsoft confirms details of recent Russian compromise.Kasseika joins ransomware groups performing BYOVD attacks.Trickbot browser injection developer jailed.

    Threat Bulletin #252

    Play Episode Listen Later Jan 19, 2024 5:47


    VMware critical flaw under active exploitation.Critical vulnerability discovered in Juniper firewalls and switches.Ivanti bypass flaw exploited in the wild.

    Threat Bulletin #251

    Play Episode Listen Later Jan 12, 2024 5:52


    Evasive Async RAT has targeted infrastructure for almost a year.New FBot toolkit targets SaaS and cloud platforms.Turkish group uses Mimic ransomware to target MSSQL servers.

    Threat Bulletin #250

    Play Episode Listen Later Jan 5, 2024 6:15


    Critical Invanti flaw allows compromise of enrolled devices.Multiple malware strains use Google feature for persistence.Microsoft disables MSIX after it is abused by malware again.

    Threat Bulletin #249

    Play Episode Listen Later Dec 22, 2023 5:37


    Rhadamanthys infostealer gains popularity with new features.MongoDB confirms breach and theft of customer data.FBI confirms it breached the Blackcat ransomware group.

    Claim Talion Threat Set Radio

    In order to claim this podcast we'll send an email to with a verification link. Simply click the link and you will be able to edit tags, request a refresh, and other features to take control of your podcast page!

    Claim Cancel