Podcasts about opsec

This week, we are joined by Nick Cerne, Security Consultant from Bishop Fox, to discuss "Rust for Malware Development." In pursuit of simulating real adversarial tactics, this blog explores the use of Rust for malware development, contrasting it with C in terms of binary complexity, detection evasion, and reverse engineering challenges. The author demonstrates how Rust's inherent anti-analysis traits and memory safety features can create more evasive malware tooling, including a simple dropper that injects shellcode using lesser-known Windows APIs. Through hands-on comparisons and decompiled output analysis, the post highlights Rust's growing appeal in offensive security while noting key OPSEC considerations and tooling limitations. The research can be found here: Rust for Malware Development Learn more about your ad choices. Visit megaphone.fm/adchoices

This week, we are joined by Nick Cerne, Security Consultant from Bishop Fox, to discuss "Rust for Malware Development." In pursuit of simulating real adversarial tactics, this blog explores the use of Rust for malware development, contrasting it with C in terms of binary complexity, detection evasion, and reverse engineering challenges. The author demonstrates how Rust's inherent anti-analysis traits and memory safety features can create more evasive malware tooling, including a simple dropper that injects shellcode using lesser-known Windows APIs. Through hands-on comparisons and decompiled output analysis, the post highlights Rust's growing appeal in offensive security while noting key OPSEC considerations and tooling limitations. The research can be found here: Rust for Malware Development Learn more about your ad choices. Visit megaphone.fm/adchoices

The last twenty years of technological development has given us an internet that is more centrally controlled, devices that gather more information about us, and a system that is generally more monolithic and restrictive. Mark37.com is a company that sells de-Googled phones, pre-Linuxed laptops, and helps you regain some control over your information. Today we talk to Sean Patrick Tario about what you should and shouldn't do in the pursuit of privacy and freedom.

In this episode of The Cybersecurity Defenders Podcast, we discuss some cutting-edge intel coming out of LimaCharlie's community.On March 24, The Atlantic's editor-in-chief Jeffrey Goldberg reported a significant OPSEC failure involving U.S. Secretary of Defense Pete Hegseth, who allegedly sent him detailed U.S. military plans over Signal—an encrypted messaging app—on March 15.A newly discovered supply chain attack on the npm ecosystem is targeting developers by backdooring local packages through a process known as “manifest confusion.” Unit 42 researchers at Palo Alto Networks have uncovered an ongoing software supply chain attack targeting GitHub repositories via malicious GitHub Actions workflows.

STANDARD EDITION: Signal OPSEC, White-box Red-teaming LLMs, Unified Company Context (UCC), New Book Recommendations, Single Apple Note Technique, and much more... You are currently listening to the Standard version of the podcast, consider upgrading and becoming a member to unlock the full version and many other exclusive benefits here: https://newsletter.danielmiessler.com/upgrade Subscribe to the newsletter at:https://danielmiessler.com/subscribe Join the UL community at:https://danielmiessler.com/upgrade Follow on X:https://x.com/danielmiessler Follow on LinkedIn:https://www.linkedin.com/in/danielmiesslerBecome a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

Thanks for listening! You're a special angel!Follow us on:twitter.com/gurlstop_podinstagram.com/gurlstop.podfacebook.com/gurlstop.podEmail us at gurlstop.pod@gmail.comCiao babies

John's monologue discusses the continuing saga of Atlantic EIC Jeffrey Goldberg. Following a day of deflection, denials and attacks on his reporting; he published the content of the Signal group chat he was added to. The released messages show the top administration officials involved in the message thread were misleading at best, downright lying to Congress at worst, when it came to the content and their role in the conversation. Congressional Republicans spent another day downplaying the scandal the way a Texas judge downplays a wealthy white teenager who commits vehicular homicide. The Signal scandal has forced VP Vance to cancel all but one stop on his looming trip to Greenland, even as Pres. Trump doubled down, calling its annexation something we “have to have.” He also talks about Tufts University who released a statement denouncing the arrest and abduction of an international graduate student outside her off-campus housing by Homeland Security. Rumesya Ozturk of Turkey was detained and had her student visa revoked, reportedly for an op-ed she co-authored in the university newspaper. Then, Bob Cesca returns to delve into pop culture and ponder over the stupidity of Signalgate. Next, John speaks with The God Squad featuring former pastor Desimber Rose and theologian Dillion Cruz. They discuss the un-Christian act of republicans gutting Medicare and Medicaid. And finally, legal analyst Dr. Tracy Pearson joins the crew to talk listeners off the ledge with common sense answers to real world struggles..See Privacy Policy at https://art19.com/privacy and California Privacy Notice at https://art19.com/privacy#do-not-sell-my-info.

Send us a textWelcome back to the Ones Ready Podcast! Today, we're breaking down the Pentagon's most recent insanity. From Signal chat leaks and Boeing's sketchy $20 billion contract to the Space Force fighting for scraps, we've got it all.Here's the breakdown: 

Paul Brown of the Wasson Watch company used to be a signals intelligence specialist with the NSA. He joins us to talk about large scale SIGINT, OPSEC, COMSEC, and the future of an AI-powered trustless internet. He also makes automatic field watches which you can preorder from Wassonwatch.com

//The Wire//2300Z March 26, 2025////ROUTINE////BLUF: STRATEGIC AMERICAN BOMBERS STAGE AT DIEGO GARCIA. FALLOUT FROM GROUP CHAT SCANDAL CONTINUES.// -----BEGIN TEARLINE------International Events-Indian Ocean: Aviation watchers have noted a significant buildup of military aircraft at Diego Garcia. Several B2 bombers have forward deployed to the infamous island, along with almost a dozen KC-135R Stratotankers and other transport aircraft.AC: This morning, a Notice-to-Airmen (NOTAM) was issued for Diego Garcia announcing ramp parking spot closures for the runway, indicating preparations to stage large numbers of military aircraft. This NOTAM is active until May 1, 2025.Lithuania: Four American service members were found deceased after a training accident this morning. Initial reporting indicates that an M88 recovery vehicle drove/overturned into a lake during a routine training exercise. The soldiers were assigned to 1st Brigade, 3ID.-HomeFront-Washington D.C. - Fallout from the Atlantic scandal continues in a variety of means. Various liberal politicians have called for various resignations due to this scandal, while conservatives have stated that no resignations will occur. As the initial release of screenshots did not achieve the desired effect, The Atlantic released more screenshots of group chat messages. AC: This morning, the activist group American Oversight filed a lawsuit against SECDEF Hegseth for the leak, and the judge assigned to this case has been announced as D.C. District Court Judge James Boasberg, the same judge who is currently at the center of hot controversy for out-of-jurisdiction rulings.-----END TEARLINE-----Analyst Comments: The events at Diego Garcia are a major indication and warning of an impending large-scale military conflict. Since these aircraft were not entirely covert in their movements, various intelligence services around the world know that this logistical staging is underway. What it's for, is anyone's guess. This could be for an escalation of the conflict in Yemen, or it could be staging for a large scale war with Iran. The use of Diego Garcia as a staging zone implies that the traditional staging sites (Bahrain, Qatar, Kuwait, etc) probably do not want to be diplomatically involved in what is about to take place. The remote location of Diego Garcia (which is also not located in an Islamic nation) provides the added benefit of being out of range of most of Iran's weapons, and thus a vastly more secure site for the staging of strategic bombers. In short, if the United States were to seek a war with Iran, this is exactly the type of forward-deployment that would take place.Of course, despite the very clear and obvious military staging, a single phone call can result in all of these aircraft heading home without firing a shot. From the voyage of the Great White Fleet, to flying B-52's low and slow over various countries over the years, American history is full of examples of American power projection via the movement of very big weapons.However, using the information we have at the moment, the forward-deployment of national-level strategic assets indicates staging for a military campaign.Regarding the group chat scandal, now that we have a closer look at more screenshots provided by The Atlantic, a lot more information of questionable classification level has come to light. Even though the newly-posted screenshots are not the smoking-gun The Atlantic claims, if this information was not a deliberate plant, it would indeed have been a serious violation of Operational Security (OPSEC). Really the only communication that was a serious breach of OPSEC came from the SECDEF, who announced that the targeting missions against the Houthis in Yemen were a "GO", and detailed the number of strikes and estimated Time-on-Target. However, when determining the classification l

Announcements:   “We are currently clean on OPSEC.” Jon Stewart        @1:50 Follow-ups:   Louis DeJoy        @3:14 Politics:  Houthi war plans       @7:10 To Russia with Love       @9:46 China war plans        @22:30 News: TX - TTRPG        @32:13 FL - Child labor laws         @42:18 French Scientist denied entry         @44:04 Confidential information? Religious Nonsense: Moonies in JP         @48:34 Catholic charities        @52:11 Health/Medicine/Science:     Story of the dead child       @55:03 RFK and CHD           @59:36 Measles in MY          @1:02:38 Pseudoscience: Joseph Mercola         @1:03:26 RFK's idea          @1:05:37 Final Stories:  WH Easter egg roll           @1:10:54 Trump painting         @1:12:47 AOC and Bernie in Vegas       @1:16:24

On this episode of Heard Tell host Andrew shares some thoughts on the Signal scandal involving Trump administration officials using the messaging app as a group chat to discuss details of the recent Houthi strikes in Yemen, which included The Atlantic's Editor in Chief Jeffrey Goldberg in a stunning series of events. From the sequence of events, to what might or might not happen next, and how the basic principle of "OPSEC ends where convenience begins" is at the heart of this hot mess on this edition of Heard Tell. All that and more on this episode of Heard Tell.--------------------Heard Tell SubStack Free to subscribe, comes right to your inboxhttps://heardtell.substack.com/Questions, comments, concerns, ideas, or epistles? Email us HeardTellShow@gmail.comPlease follow @HeardTellShow like the program, comment with your thoughts, and share with others.Support Heard Tell here: https://app.redcircle.com/shows/4b87f374-cace-44ea-960c-30f9bf37bcff/donationsSupport this podcast at — https://redcircle.com/heard-tell/donationsAdvertising Inquiries: https://redcircle.com/brandsPrivacy & Opt-Out: https://redcircle.com/privacy

Wes, Eneasz, and David keep the rationalist community informed about what's going on outside of the rationalist communitySupport us on Substack!News discussed:Kelsey Piper and friends dug deep into PEPFAR effectivenessThe astronauts stranded on the ISS are back safe. And they were greeted back to Earth by a pod of dolphins!Federal government awards contract for our angry triangle to BoeingICE rounded up a bunch of Venezuelans and flew them to prison in VenezuelaRoberts responds in a public statementVance is explicitly promoting defiance of the courtsChief Justice Roberts's 2024 year-end report calls it out directly.Green Card Holder Who Has Been in US for 50 Years Detained for weeks.Canadian held for two weeks in prison for document snafuEO Abolishing DoEd.What the DoEd actually does:Bad news on the economyRFK is trying to remove cell phones from schoolsGaza war back onBombed the s**t out of the Houthis, Iran disavows, Trump doesn't buy itSecDef was discussing the plan on Signal with a reporterRussia & Ukraine agreed not to damage energy infrastructureRussia immediately attacked Ukrainian energy infrastructureSubscriber request: NYU was hackedEducation Department investigating more than 50 colleges and universities over racial preferencesColumbia University has agreed to a list of demands in return for negotiations to reinstate its $400m Columbia said it expelled, suspended, or temporarily revoked degrees from some students who seized a building during campus protests last springGreenpeace must pay more than $660 million in damagesHappy News!Prisoners in solitary confinement given VRTaiwan signed a deal to invest $44 billion in Alaskan LNG infrastructureMIT engineers turn skin cells directly into neurons for cell therapyMexican government found a swarm of giraffes in the state bordering El PasoBYD (china) unveiled a new battery and charging system that it says can provide 249 miles of range with a five-minute chargeIdaho cuts regulations by 25% in four years by implementing Zero-Based RegulationUtah just passed a permitting reform lawTroop DeploymentDavid - If you liked The Dragon's Banker, you should read Oathbreakers AnonymousEneasz - How To Believe False ThingsWes - Men and women are different, but not that differentGot something to say? Come chat with us on the Bayesian Conspiracy Discord or email us at themindkillerpodcast@gmail.com. Say something smart and we'll mention you on the next show!Follow us!RSS: http://feeds.feedburner.com/themindkillerGoogle: https://play.google.com/music/listen#/ps/Iqs7r7t6cdxw465zdulvwikhekmPocket Casts: https://pca.st/vvcmifu6Stitcher: https://www.stitcher.com/podcast/the-mind-killerApple: Intro/outro music: On Sale by Golden Duck Orchestra This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit mindkiller.substack.com/subscribe

Ja gut ... OPSEC für Runaways ....   Links: https://infosec.exchange/@briankrebs/114218973589488353 https://www.theatlantic.com/politics/archive/2025/03/trump-administration-accidentally-texted-me-its-war-plans/682151/?gift=DjgA9DZGvABas7wFCM-ptk0vpPuikYUZT9Ej3cJbK1s&utm_source=copy-link&utm_medium=social&utm_campaign=share https://www.esd.whs.mil/Portals/54/Documents/FOID/Reading%20Room/Personnel_Related/22-F-0350_DDS_Comms_Policy-Signal.pdf https://infosec.exchange/@danielkennedy74/114219109940521225 https://en.wikipedia.org/wiki/The_Atlantic https://en.wikipedia.org/wiki/Jeffrey_Goldberg https://en.wikipedia.org/wiki/Hillary_Clinton_email_controversy  

CertiK chief business officer Jason Jiang shares the nitty gritty on how North Korea's Lazarus Group stole $1.4 billion in ETH-related tokens from Bybit, who is ultimately at fault, and what the crypto industry and investors can do to protect themselves against the next major hack. (00:00) Introduction to The Agenda podcast and this week's episode(02:17) How Lazarus Group hacked Bybit (07:17) Are hard wallets and cold wallets safe from hacks?(09:19) How AI and quantum computing could compromise blockchains(12:24) Who is most at fault for the Bybit hack?(16:05) Is THORChain facilitating crime or abiding by the rules of decentralization?(18:46) How smart contract audits work(23:31) Securing AI and planning for the quantum computing Cambrian explosion(26:02) Is there a white hat hacker shortage?(30:34) The future of onchain securityThe Agenda is brought to you by Cointelegraph and hosted/produced by Ray Salmond and Jonathan DeYoung, with post-production by Elena Volkova (Hatch Up). Follow Cointelegraph on X (Twitter) at @Cointelegraph, Jonathan at @maddopemadic and Ray at @HorusHughes. Jonathan is also on Instagram at @maddopemadic, and he made the music for the podcast — hear more at madic.art.Check out Cointelegraph at cointelegraph.com.If you like what you heard, rate us and leave a review!The views, thoughts and opinions expressed in this podcast are its participants' alone and do not necessarily reflect or represent the views and opinions of Cointelegraph. This podcast (and any related content) is for entertainment purposes only and does not constitute financial advice, nor should it be taken as such. Everyone must do their own research and make their own decisions. The podcast's participants may or may not own any of the assets mentioned.

In this episode, James sits down with Sounil Yu, the mind behind the Cyber Defense Matrix and DIE Triad frameworks that have transformed how organizations approach security. From his early days getting stuffed in lockers as a self-described computer geek to becoming a disruptive force at Bank of America and co-founding Gnostic, Sounil shares the mental models that have guided his three-decade journey in cybersecurity. They discuss how an accidental college worm shutdown taught valuable lessons in OpSec, and why Sounil starts with the icebreaker question: "What's the most IT damage you've caused without getting fired?"

In this electrifying episode of Mentor Sessions, we dive deep with NVK, the enigmatic founder of Coinkite and mastermind behind the Coldcard wallet, including the sleek new Coldcard Q (yes, I'm a fan too!). NVK unpacks adversarial thinking—the paranoid art of outsmarting attackers before they strike. From designing bulletproof Bitcoin hardware to everyday OpSec blunders (porn and banking on the same browser, anyone?), NVK reveals why only the paranoid survive in a world of infinite threats. Plus, hilarious tangents, real-world horror stories, and a surprising twist on staying invisible. Are you ready to rethink security?Timestamps: • 00:00 – Intro: Meet NVK & Coinkite's Coldcard Legacy • 00:57 – What is Adversarial Thinking? (Spoiler: It's Not Just Paranoia) • 06:39 – Coldcard's Battle-Tested Edge: $1M Attacks & Beyond • 19:45 – Epic Fails: How Smart People Lose Bitcoin • 31:10 – Inside Coldcard's Silicon: Trust-Minimized Genius • 40:35 – Must-Have Hardware Wallet ChecklistConnect with NVK: • Twitter/X: @nvk • Nostr: primal.net/nvkExplore Coinkite: • Website: coinkite.com • Bitcoin Security Guide: bitcoinsecurity.org • Podcast: Bitcoin Review - https://bitcoin.review/FREE Bitcoin Book Giveaway:New to Bitcoin? Grab a free copy of Magic Internet Money by Jesse Berger! CLICK THE LINK:https://bitcoinmentororange.com/magic-internet-money Don't have enough time to learn Bitcoin Self-Custody? Get Personalized, Expert guidance at Bitcoin Mentor. Check out https://bitcoinmentor.io/ Subscribe to Mentor Sessions:Don't miss an episode—hit that subscribe button and follow us: • BTC Sessions: https://x.com/BTCsessions • Nathan: https://x.com/theBTCmentor• Gary: https://x.com/GaryLeeNYC BITCOIN WELL is the quickest and easiest way to get Bitcoin directly into self custody. They also offer non-KYC sells and bill payments. Transparent 1% spread, no additional fees and no withdrawal fees. Check them out today!https://qrco.de/bfiDC6COINKITE offers the BEST Bitcoin hardware on the market. Use this link to get 8% off anything in their store:https://qrco.de/bfiDBVMine Bitcoin like a pro!

Let's talk OpSec! In practice - we share five indispensable things you shuold adopt today - if you haven't - to ensure you are following proper operational security approaches when dealing with customer data, connectivity, and work in general. Also, Tobi asks Jussi an unexpected question.(00:00) - Intro and catching up.(04:20) - Show content starts.Show links- Windows LAPS overview | Microsoft Learn - Tailscale- Ctrl+Alt+Azure | Episode #235: Understanding Entra SSE- Ctrl+Alt+Azure | Episode #036: All things Security with Sami Laiho- Give us feedback!

Navigating Social Media and OPSEC as a Military Spouse In this episode of Ruck Up Buttercup, hosts Ashley and Sabrina delve into the complexities of using social media as a military spouse. They discuss the importance of Operational Security (OPSEC) and Personal Security (PERSEC) and the potential risks of oversharing online. The conversation covers the dynamics within military spouse Facebook groups, the implications of anonymous posting, and the necessity for careful communication, especially during deployments. They highlight the evolution of social media over the years and its impact on military families, emphasizing the need for respect and understanding in online interactions. Additionally, they touch on the challenges military spouses face in maintaining careers and balancing family responsibilities. The episode concludes with a call for more kindness and constructive dialogue within the military community. 00:00 Introduction and Today's Topic 00:13 Navigating Social Media as a Military Spouse 01:03 The Reality of Spouse Facebook Groups 02:32 Anonymous Posts and Admin Responsibilities 03:35 Rank Dynamics and Social Media 06:40 The Importance of OPSEC and PERSEC 18:02 Deployment Briefs and FRG Meetings 24:45 Social Media Etiquette and Safety Tips 29:23 The Impact of Social Media on Relationships 35:33 Political Neutrality and Respectful Discourse 39:29 The Keyboard Warriors and Online Bullying 40:23 Connecting Through Facebook Groups 42:17 The Challenges of Military Spouses 45:51 The Importance of Community Support 48:11 Navigating Social Media Responsibly 57:34 The Role of Social Media in Modern Life 59:19 The Impact of TikTok and Other Platforms 01:05:33 The Future of Social Media and Community 01:14:18 Final Thoughts and Encouragement Find us or reach out here: Website: www.deployedlove.org/podcast Facebook: www.facebook.com/ruckupbuttercup Instagram: www.instagram.com/ruckupbuttercuppodcast Email: sabrinajohannes@deployedlove.org

In this week's episode, we take a deep dive into Session, a private messaging app, with its co-founder Kee Jefferys. We discuss the philosophy behind Session, its technical architecture, and the broader implications of privacy in a world increasingly hostile to anonymous communication. Kee shares insights on the importance of decentralized networks, the risks of phone number-based messaging, and the role of cryptocurrency in supporting private infrastructure.We also touch on operational security (OPSEC), the real-world challenges of getting people to adopt privacy tools, and how Session is working to improve usability while maintaining strong privacy protections.In this week's episode:Session Private Messenger – Kee Jefferys explains the origins of Session, its core principles, and how it differs from mainstream messaging apps.The Future of Privacy – Discussion on surveillance, government censorship, and the increasing crackdown on privacy tools.Decentralized Messaging – How Session uses a global network of nodes to provide anonymous and resilient communication.Session Pro & Sustainability – Monetization strategies for Session and how the network sustains itself without compromising user privacy.Avoiding the Privacy Valley of Despair – How privacy-conscious users can avoid burnout and find a practical balance.Censorship & Government Interference – Addressing Russia's blocking of Session nodes and strategies to bypass censorship.Show Links:Download Session - https://getsession.orgSession Lite Paper - https://getsession.org/litepaperSupport the Show on Patreon - https://patreon.com/TheLockdownFollow Kee on X - https://x.com/JefferysKeeUntil they become conscious they will never rebel, and until after they have rebelled they cannot become conscious.- George Orwell, 1984Podcast music: The R3cluse

Parce que… c'est l'épisode 0x541! Shameless plug 26-27 février 2025 - SéQCure 2025 9-11 avril 2025 - Google Next ‘25 Description Notes À venir Collaborateurs Nicolas-Loïc Fortin Samuel Couture Israël Hallé Crédits Montage par Intrasecure inc Locaux virtuels par Riverside.fm

When an away team returns from a pre-warp field trip, Reed realizes he didn't do an idiot check before loading back into the shuttlepod. But when they return for the communicator with predictably terrible OPSEC, getting punched in the face repeatedly make the potential for cultural contamination so much worse. What does D'rone have for breakfast every morning? How else is Commander Tucker like a bloodhound? Which host scraps nasty? It's the episode that carefully considers the implications of a beaded curtain.Support the production of The Greatest GenerationGet a thing at podshop.biz!Sign up for our mailing list!Follow The Game of Buttholes: The Will of the Riker - Quantum LeapThe Greatest Generation is produced by Wynde PriddySocial media is managed by Rob Adler and Bill TilleyMusic by Adam Ragusea & Dark MateriaFriends of DeSoto for: Labor | Democracy | JusticeDiscuss the show using the hashtag #GreatestGen and find us on social media:YouTube | Facebook | X | Instagram | TikTok | Mastodon | Bluesky | ThreadsAnd check out these online communities run by FODs: Reddit | USS Hood Discord | Facebook group | Wikia | FriendsOfDeSoto.social

Unchained director of market research Joe Burnett explains how Bitcoiners can level up their hard wallet operational security and how to take advantage of legal tax loopholes that protect portfolio gains. This episode is brought to you by Cointelegraph and hosted by Ray Salmond, with post-production by Elena Volkova (Hatch Up). Follow Cointelegraph on X (Twitter) at @Cointelegraph, and Ray at @HorusHughes.Follow Joe Burnett on X at https://x.com/IIICapital.Check out Cointelegraph at cointelegraph.com.[03:15] Mutlisig vaults for extra security [07:30] Breaking down multisig wallet security for Bitcoin[12:33] Leveraging a Bitcoin IRA for retirement savings[17:00] Understanding the current market relative to Bitcoin [21:40] Longterm Bitcoin wealth planning[27:15] Is holding Bitcoin long term a yield maximizer? [33:49] Managing family Bitcoin inheritance - what to know[35:52] Spending with a multisig wallet [40:00] The Michael Saylor effect [45:10] Bitcoin market cycles and future predictions[47:24] Exploring the Bitcoin retirement calculator If you like what you heard, rate us and leave a review!The views, thoughts and opinions expressed in this podcast are its participants' alone and do not necessarily reflect or represent the views and opinions of Cointelegraph. This podcast (and any related content) is for entertainment purposes only and does not constitute financial advice, nor should it be taken as such. Everyone must do their own research and make their own decisions. The podcast's participants may or may not own any of the assets mentioned.

Forecast: Visibility is low with a 43% chance of extended response times. Heavy downpours of healthcare vulnerabilities dominate, with brief breaks of exploit intelligence. ‍ In this week's episode of GreyNoise Storm⚡️Watch, we kick things off with our regular roundtable introductions before diving into some intriguing poll results about cybersecurity metrics. The community weighed in heavily on what drives action in their organizations, with Mean Time to Respond leading the pack at 43% of votes, followed by Mean Time to Detect at 28%. Notably, system patching status came in third at 26%, while the tongue-in-cheek option about whiskey levels in the team liquor cabinet garnered a surprising 13% of responses. The crew then gathers round the Festivus pole to channel their inner George Costanza's as they each air their grievances — cyber and possibly otherwise — from the past year. So many things were busted in 2024 that we're shocked we kept the episode under four hours. The episode features a crucial discussion on practical OPSEC fundamentals, particularly focusing on executive protection challenges. We explore how predictable movement patterns and excessive public information exposure can create security vulnerabilities. The conversation covers everything from website vulnerabilities to social media risks, emphasizing the importance of consistent security protocols and information control strategies. Healthcare cybersecurity takes center stage as we discuss recent research presented at the Health-ISAC Fall Americas Summit, courtesy of our friends at Censys. We also dig into VulnCheck's comprehensive analysis of Known Exploited Vulnerabilities for 2024, along with essential insights on exploit intelligence and vulnerability prioritization. The show wraps up with a look at the results of platform improvements since GreyNoise's "Greyt Migreytion". Storm Watch Homepage >> Learn more about GreyNoise >>  

Aidan Raney is the founder of Farnsworth Intelligence, an OSINT company that focuses on due diligence investigations, among others. Aidan freely shares content and tools, has been a volunteer with Trace Labs, teaches OSINT and OpSec. He presented at both BSidesSF and ShmooCon about "Catching Some Phisherman" where he exposed a large phishing organization. Aidan has experience with using Artificial Intelligence (AI) in OSINT and has also helped to catch vishing scammers.

This week we are joined by, Blake Darché, Head of Cloudforce One at Cloudflare, to discuss their work on "Unraveling SloppyLemming's Operations Across South Asia." Cloudforce One's investigation into the advanced threat actor "SloppyLemming" reveals an extensive espionage campaign targeting South and East Asia, with a focus on Pakistan's government, defense, telecommunications, and energy sectors. Leveraging multiple cloud service providers, SloppyLemming employs tactics like credential harvesting, malware delivery, and command-and-control (C2) operations, often relying on open-source adversary emulation tools like Cobalt Strike. Despite its activities, the actor's poor operational security (OPSEC) has allowed investigators to gain valuable insights into its infrastructure and tooling. The research can be found here: Unraveling SloppyLemming's operations across South Asia Learn more about your ad choices. Visit megaphone.fm/adchoices

This week we are joined by, Blake Darché, Head of Cloudforce One at Cloudflare, to discuss their work on "Unraveling SloppyLemming's Operations Across South Asia." Cloudforce One's investigation into the advanced threat actor "SloppyLemming" reveals an extensive espionage campaign targeting South and East Asia, with a focus on Pakistan's government, defense, telecommunications, and energy sectors. Leveraging multiple cloud service providers, SloppyLemming employs tactics like credential harvesting, malware delivery, and command-and-control (C2) operations, often relying on open-source adversary emulation tools like Cobalt Strike. Despite its activities, the actor's poor operational security (OPSEC) has allowed investigators to gain valuable insights into its infrastructure and tooling. The research can be found here: Unraveling SloppyLemming's operations across South Asia Learn more about your ad choices. Visit megaphone.fm/adchoices

Conheça nossa área de assinantes com conteúdos exclusivos filmados com diversos especialistas: https://membros.sobrevivencialismo.com/ Confira agora os produtos da Morgantis Metais: https://morgantis.com/ Adquira os produtos Sobrevivencialismo aqui: https://www.lojasv.com.br/

https://linktr.ee/PBNLinks?utm...

Jameson Lopp (Cypherpunk, co-founder & CSO @ Casa) joins us to discuss: the importance of self-custody, duress wallets, physical bitcoin attacks, multisig best practices, InfoSec, OpSec, the state of Bitcoin privacy & buttcoin.

The Cognitive Crucible is a forum that presents different perspectives and emerging thought leadership related to the information environment. The opinions expressed by guests are their own, and do not necessarily reflect the views of or endorsement by the Information Professionals Association. During this episode, Remi Whiteside discusses his Ph.D. research and dissertation which is entitled: Peering into US Army Media, Information, and Data Literacy Fundamentals against Malign Information in the Open Information Environment: A Qualitative Case Study. According to Remi Whiteside, the US Army currently has no institutionalized program-of-record for educational development, uniquely designed for its population of uniformed Information Professionals in training to detect, analyze, and scrutinize malign information in the Open Information Environment. Unlike its peer services, the US Army does not perceive malign information, a reimagined tool of ideological subversion, as a high-caliber threat so far as to invest the time, money, or resources into critical, foundational metaliteracy competencies needed for its Information Professionals for the Open Information Environment.  Recording Date: 1 Aug 2024 Research Question: Remi Whiteside suggests an interested student ask–in relation to media and information—how do narratives derived from the Open Information Environment shape servicemembers' metanarratives and do these metanarratives conflict with military identity? Resources: Peering into US Army Media, Information, and Data Literacy Fundamentals against Malign Information in the Open Information Environment: A Qualitative Case Study Syntactic Structures by Noam Chomsky Rhet Ops: Rhetoric and Information Warfare (Composition, Literacy, and Culture) by Jim Ridolfo and William Hart-Davidson NOEMA Magazine Link to full show notes and resources Guest Bio: Remington Whiteside is an active-duty Chief Warrant Officer in the US Army, career education, and academic researcher into MIDLE (media, information, and data literacy education) and M2DP (malinformation, misinformation, disinformation, propaganda). He started his career as an enlisted Cryptologic Linguist, with work in strategic, SOF, and training environments. He metamorphosed to Signals Intelligence Warrant Officer, specializing in tactical SIGINT, COMINT, OSINT, PAI, OPSEC, and Intelligence Support to Cyber and Electromagnetic Warfare (EW) training as an Observer-Coach-Trainer at Fort Johnson, Louisiana at the Joint Readiness Training Center. Remi holds an undergraduate degree in Middle Eastern studies, a graduate degree in Applied Linguistics with a focus on Computational Linguistics, and a Doctor of Philosophy degree in Education. He is lovingly supported by his wife Sara and his three children: Evolette, Torben, and Soren. About: The Information Professionals Association (IPA) is a non-profit organization dedicated to exploring the role of information activities, such as influence and cognitive security, within the national security sector and helping to bridge the divide between operations and research. Its goal is to increase interdisciplinary collaboration between scholars and practitioners and policymakers with an interest in this domain. For more information, please contact us at communications@information-professionals.org. Or, connect directly with The Cognitive Crucible podcast host, John Bicknell, on LinkedIn. Disclosure: As an Amazon Associate, 1) IPA earns from qualifying purchases, 2) IPA gets commissions for purchases made through links in this post.

This morning many were greeted with news that what looks like a cyber attack caused thousands of devices to explode. While it sounds like it's out of a cyberpunk novel, this attack helps us understand how technology can be used to build a pattern of life on not just individuals, but an organization or country. This episode has been sponsored by Obsidian Arms, a manufacturer of tools, parts and firearms, as well as operating as an OEM shop for those looking to bring excellence to the market. Their Minnesota-based shop builds and cuts parts out of U.S.-sourced materials. Their gunsmith tools, custom firearms, and capabilities can be found at www.obsidianarms.comSupport the REDACTED Culture Cast at redactedculture.locals.comSSP and boutique products at redactedllc.comFollow us on Instagram at @redactedllc

Aldo de Pape, co-founder and CEO of Genomes.io, joins The Agenda podcast to discuss the genomic mapping industry's privacy challenges and their impact on users, including why people should be more cautious with their genetic data amid an atmosphere of hacks and companies selling your DNA data.The Agenda is brought to you by Cointelegraph and hosted/produced by Ray Salmond and Jonathan DeYoung. Follow Cointelegraph on X (Twitter) at @Cointelegraph, Jonathan at @maddopemadic and Ray at @HorusHughes. Jonathan is also on Instagram at @maddopemadic, and he makes the music for the podcast — hear more at madic.art.Follow Aldo on X @aldodepape and Genomes.io at @genomesdao.Check out Cointelegraph at cointelegraph.com.(00:00:00) Introduction to The Agenda podcast and this week's episode(00:01:34) What is genetic sequencing?(00:03:21) What sets Genomes.io apart from its competitors?(00:07:29) The genomic sequencing industry is still the Wild West(00:14:13) Aldo's thoughts on why the industry needs a universal regulatory framework(00:16:06) Not protecting your data could make you the next Henrietta Lacks(00:18:56) How do users know that the Genomes.io platform is secure? (00:22:29) How Genomes.io data sourcing and compensation work(00:25:04) Genomic mapping use case examples(00:27:47) Why does the project have a token and a DAO?(00:42:06) The future role of AI and quantum computing in genomicsIf you like what you heard, rate us and leave a review!The views, thoughts and opinions expressed in this podcast are its participants' alone and do not necessarily reflect or represent the views and opinions of Cointelegraph. This podcast (and any related content) is for entertainment purposes only and does not constitute financial advice, nor should it be taken as such. Everyone must do their own research and make their own decisions. The podcast's participants may or may not own any of the assets mentioned.

On this episode of The Vonu Podcast, we convene for a Q&A episode, on a wide variety of self-liberation/vonu topics; and Kyle and I share give some personal updates on things happening, like VonuFest5 (Sept. 30 – Oct. 30)! Please enjoy, and reach out if you have any questions! Cheers.… The post TVP #220: [Q&A w/ Kyle] Free Isles, Cooperation or Competition? Travel Freedom, Paper Tripping, & Legal Interstices. How To Improve OpSec? appeared first on The Vonu Podcast.

This week I respond to a few listener questions, primarily around the use of social media as a privacy enthusiast. Love it or hate it, you can guess which camp I'm in, social media like LinkedIn has almost become a requirement for job searches, employers, and connecting with other professionals. I also touch on OPSEC for OSINT, a new talk track I am planning to present in the future. It's important for all of us to maintain better Operational Security (OPSEC). Finally, I share my latest blog post: Venturing into AI Security with Locally Hosted LLMs, and why locally hosted AI is essential for privacy.In this week's episode:Redacting  ███ in your social media profilesMinimizing the use of profile photosAlways assume private profiles are NEVER privateAddiction to social media and down regulation of the dopamine receptorsMore on custom domainsOperational Security for OSINT professionalsLocally hosted LLMs for private AIData (PII) leakage with ChatGPTShow Links:ChatGPT Privacy Issue - https://www.nytimes.com/interactive/2023/12/22/technology/openai-chatgpt-privacy-exploit.htmlBrain anatomy alterations associated with Social Networking addiction - https://www.ncbi.nlm.nih.gov/pmc/articles/PMC5362930/AI Security with Locally Hosted LLMs - https://lockdown.media/ai-security-with-llmsExpired Domains - https://www.expireddomains.net/SimpleLogin - https://simplelogin.io/Because you made a phone call.- Brill (Enemy of the State)

Recorded July 29, 2024 - 854560Fundamentals & Business Cat love you, dear listener.BC NostrFundamentals NostrFollow us on X: @RockPBPodcastRHR X PUBKEY HOT STYLE TAKEOVER IN NASHVILLE | RABBIT HOLE RECAP #315Nostr post from discussionBill Burr - Philly RantIf you like the show and would like to support us, you can stream sats by listening with any podcasting 2.0 app.If you'd like to point hash, use the stratum URL "stratum+tcp://NA.lincoin.com:3333" with "RockPaperBitcoin.YourAliasHere" as the worker name.THANK YOU to our hash contributors!EndTheFedJoin our Telegram group and tell us we're assholes.Thanks for listening.

Operational security (OPSEC) is a security and risk management process that prevents sensitive information from getting into the wrong hands.  This can be broken down into many different buckets in your everyday life and is not just something when it comes to military application.  We don't have “operation” on daily basis but we do have […] The post ZERT Coffee & Chaos 73 – Defending Your World: The Crucial Role of OPSEC appeared first on Firearms Radio Network.

Stargazer Goblin hosts malicious code repositories on GitHub. Crowdstrike blames buggy validations checks for last week's major incident. The Breachforums database reveals threat actor OPSEC. Windows Hello for Business (WHfB) was found vulnerable to downgrade attacks. A medical center in the U.S. Virgin Islands is hit with ransomware. Interisle analyzes the phishing landscape. The FTC orders eight companies to explain algorithmic pricing. Meta cracks down on the Nigerian Yahoo Boys. A fake IT worker gets caught in the act. My conversation with Nic Fillingham and Wendy Zenone, co-hosts of Microsoft Security's "The Bluehat Podcast.” Researchers wonder if proving you're human proves profitable for Google.  Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Nic Fillingham and Wendy Zenone, co-hosts of Microsoft Security's "The Bluehat Podcast," talking about what to expect on Bluehat on the N2K media network. You can catch the podcast every other Wednesday. Their latest episode launching today can be found here.  Selected Reading A Hacker ‘Ghost' Network Is Quietly Spreading Malware on GitHub (WIRED) CrowdStrike blames test software for taking down 8.5 million Windows machines (The Verge) BreachForums v1 database leak is an OPSEC test for hackers (Bleeping Computer) Goodbye? Attackers Can Bypass 'Windows Hello' Strong Authentication (Dark Reading) Schneider Regional Medical Center hit by ransomware attack (Beyond Machines) New phishing report names and shames TLDs, registrars (The Verge) FTC Issues Orders to Eight Companies Seeking Information on Surveillance Pricing (FTC) Meta bans 63,000 accounts belonging to Nigeria's sextortionist Yahoo Boys (The Record) How a North Korean Fake IT Worker Tried to Infiltrate Us (KnowBe4) Forget security – Google's reCAPTCHA v2 is exploiting users for profit (The Register)  Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

David Howard comes on to discuss his current project Blood World: Phoenix Throne. His other comic OPSEC and prose novel The Long Game were talked about, along with collaboration, research and deep thinking processes. Pretty interesting. DOWNLOAD Blood World: Phoenix … Continue reading →

The Cybersecurity and Infrastructure Security Agency (CISA) has released a comprehensive guide to bolster operational security (OPSEC) for election officials. This guide aims to enhance the security of election infrastructure by offering detailed strategies for identifying and mitigating potential risks within the election context. This and more on The Rundown. Time Stamps: 0:00 - Welcome to the Rundown 1:34 - Japan Bids Farewell to Floppy Disks 4:15 - NetApp to Focus on AI Integration and Data Resilience 9:04 - Broadcom Launches Omnissa while Streamlining VMware 12:26 - Billions upon Billions of Passwords Published on the Dark Web 16:02 - Douglas Gourlay Takes the Reins at Qumulo 20:27 - Cloudflare Shields Users From Data-Harvesting AI Bots 23:59 - CISA Focuses on Election Security 36:33 - The Weeks Ahead 38:43 - Thanks for Watching Hosts: Stephen Foskett: https://www.twitter.com/SFoskett Jack Poller: https://www.linkedin.com/in/jackpoller/ Follow Gestalt IT Website: https://www.GestaltIT.com/ Twitter: https://www.twitter.com/GestaltIT LinkedIn: https://www.linkedin.com/company/Gestalt-IT

dgutspodcast.com dgutsapparel.com https://soundcloud.com/usailorwillis/ Patreon: https://patreon.com/dgutspodcast Facebook: Don't Give Up The Ship Podcast / Apparel Instagram: @dgutspodcast / @dgutsapparel Youtube: https://www.youtube.com/c/DontGiveUpTheShipPodcast Email: dontgiveuptheshippodcast@gmail.com Store: dgutspodcast.com/shop Substack: https://dguts.substack.com Reddit: r/dgutspodcast u/dgutspodcast Discord: @dgutspodcast Weekly podcast for the professional and leadership development of junior enlisted Sailors and military members. Spin the Yarn – Ethical Dumpster Fire DGUTS discusses the recent ethical failures in the news regarding the former VCNO being arrested on bribery charges and a CMDCS being convicted at court martial for violating OPSEC and lying about it. https://www.navytimes.com/news/your-navy/2024/05/31/retired-navy-four-star-admiral-arrested-in-bribery-scheme/ https://www.msn.com/en-us/news/crime/command-senior-chief-convicted-for-unauthorized-wi-fi-on-her-ship/ar-BB1nyod4 https://www.secnav.navy.mil/Ethics/Pages/codeofethics.aspx https://www.secnav.navy.mil/Ethics/Documents/2024%20VCNO%20Standards%20of%20Conduct%20Guidance.pdf Contact us! (dontgiveuptheshippodcast@gmail.com) DISCLAIMER: The views expressed by the speakers and all guests are not those of the Department of Defense, United States Navy or any other government agency. They are strictly those of the speakers who do not speak for any other organization or entity. DISCLAIMER: The speakers are NOT mental health professionals and do not intend any of the content of this podcast as mental health advice. If you need professional mental health advice, please seek out your closest military or civilian mental health providers immediately.

The biggest threat of you losing your money these days is by having it taken from you.  Almost everybody uses a Google product for something, and this has now become a major problem, in ways you probably aren't expecting.  It can now become a direct gateway to your bank accounts and especially your crypto.  We break down how this new generation of scammers are evolving, and the very simple things you can do to stop them.     What Bitcoin Did Podcast Ep -  https://www.youtube.com/watch?v=NmsAk3kXdz4   Gmail Tips Video - https://www.youtube.com/watch?v=Wx3Y1GUMWjI   Recommended Crypto Trading Platform (And Bonus Eligibility) - https://nononsenseforex.com/cryptocurrencies/best-crypto-trading-platform/   For Decentralized Crypto Trading - https://nononsenseforex.com/decentralized-trading-platform/   Blueberry Markets Blog (Top FX Broker) - https://nononsenseforex.com/uncategorized/blueberry-markets-review-my-top-broker-for-2019/   Markets.com Blog (Other top FX Broker)- https://nononsenseforex.com/uncategorized/markets-com-review/   US Residents Go Here (Top US FX Broker)- https://nononsenseforex.com/uncategorized/ig-us-review/   Follow VP on Twitter https://twitter.com/This_Is_VP4X   Check out my Forex trading material too! https://nononsenseforex.com/   The host of this podcast is not a licensed financial advisor, and nothing heard on this podcast should be taken as financial advice.  Do your own research and understand all financial decisions and the results therein are yours and yours alone.  The host is not responsible for the actions of their sponsors and/or affiliates.  Conversely, views expressed on this podcast are that of the host only and may not reflect the views of any companies mentioned. Trading Forex involves risk.  Losses can exceed deposits. We are not taking requests for episode topics at this time.  Thank you for understanding.

MJ Banias discusses how one man's late-night OpSec fail is an OSINTer's treasure. If that's too salacious for you, we also talk about how awesome newspaper archives and librarians are.

An unnamed guest (for OPSEC reasons) joins the boys to discuss more about combating trafficking and the fall of the US occupation of Afghanistan. Brent also calls out another big influencer in the special operations world... Learn more about your ad choices. Visit megaphone.fm/adchoices

Cybersecurity is rife with technological solutions, but as security researcher John Hammond knows all too well, it's people that make the difference. Hear how people make or break security intel, both as researchers and threat actors. We'll talk sock puppets, the role of OSINT for your own OPSEC and intelligence building, cybergang leaders as businessmen and more. Plus we'll dive into John's recent OSINT work on the ScreenConnect vulnerabilities and how they're being leveraged in the wild.

In this episode of the PowerShell Podcast, Andrew sits down with the knowledgeable Jake Hildreth for an enlightening conversation covering a wide array of security-related topics. Jake shares insights from his journey transitioning into security from a background in operations and administration. The discussion delves into OpSec practices, approaches to toolmaking, and the critical importance of Active Directory Certificate Services (AD CS) security. Jake also sheds light on tabletop exercises for security, the fallacy of security through obscurity, and the dangers of clicking on phishing emails. Tune in for a deep dive into the world of security and PowerShell with Jake Hildreth!   Guest Bio and links: I'm a husband, a dad, and a recovering sysadmin. I've worked in technology since the year 2000, when I got my first tech job as Tier 1 support for cable modem companies. After that, I transitioned into systems & network administration, always with a security focus. In the last three years, I pivoted into security, focusing on Active Directory. When I'm not working, I enjoy cooking, drinking whiskey, lifting weights, traveling, reading... and writing code. Coding is like creating and solving little puzzles for yourself! So soothing.   Watch The PowerShell Podcast on YouTube: https://www.youtube.com/watch?v=8hl2BjkKbNw https://www.meetup.com/gainesville-powershell-user-group/events/298957463/ https://blueteampowershell.com/ https://learn.microsoft.com/en-us/powershell/module/microsoft.powershell.core/about/about_logging_windows?view=powershell-7.4 https://learn.microsoft.com/en-us/powershell/module/microsoft.powershell.core/about/about_logging?view=powershell-5.1 https://discord.gg/pdq https://github.com/GhostPack/PSPKIAudit https://blog.dotdot.horse/ https://github.com/TrimarcJake/Locksmith https://twitter.com/dotdotdotHorse https://infosec.exchange/@horse https://github.com/TrimarcJake/BlueTuxedo https://linked.in/jakehildreth

This week's Affinity Protocol (hosted by the Affinity Innovations, Inc. Team) episode, the Team talked about everything from Swifties, military operations including OPSEC, the Super Bowl, and taxes changing. PLUS the guys discuss video games (including Skull and Bones, Palworld and other survival games) and what the 2024 landscape looks like. Hosts/Guest Hosts: Chris, Paul and Little Chris [NOTE: Check links under description!] ---------- Edited by Munkee Bawlz Media https://www.munkeebawlzmedia.com/ ---------- Affinity Newsletter Bi-Weekly Newsletter of Affinity Innovations, Inc. ---------- Find out more about Affinity https://affinitybsc.com/ ---------- Affinity Innovations, Inc. https://affinityinc.tech/ ---------- Already Using Crypto? Checkout ADAPT! https://www.adapt.exchange/ ---------- **LINKS TO CHECK OUT** GRAB YOUR DV RADIO MERCH NOW! https://bit.ly/DVR_Store ---------- EVERYTHING DYSFUNCTIONAL VETERANS https://whereisdv.carrd.co  ---------- Grab DV Radio's Battlegrounds From Ubora Coffee At: http://bit.ly/DVR-BattlegroundCoffee  ---------- DV RADIO PARTNERS, SPONSORS, and AFFILIATES https://dvr-listen-support.carrd.co   Please remember that any information in this show is given strictly as educational and informative purposes only, using them for your own and personal investment decisions is done so at YOUR OWN discretion.

On this episode of Rehash, we're speaking with Birb aka Chairman Birb Bernanke aka bonecondor on Twitter all about the new Bitcoin ETF and best security practices in crypto.Birb started her career in TradFi and was a product manager for a number of years before joining OtterSec, a blockchain security audits company. We start out by talking about the Bitcoin ETF, and Birb patiently answers a lot of my very basic questions, like what is an ETF and how is it different from index funds, before we move into more interesting questions like is this a good move for the crypto industry overall and what does this tell us about how the SEC will be treating crypto companies in 2024.After we figure out what a Bitcoin ETF is, we get into a discussion about security best practices for DeFi protocols and other companies building onchain. Birb shares her best pieces of advice for organizations and for end users to avoid scams and hacks and gives us an inside look into what really goes on behind the scenes of some of these hacks.

Host: TSgt. Drew Schumann, and TSgt. Chelsea Fitzpatrick from the 127th Wing Public Affairs office, Selfridge Air National Guard Base, Michigan
TRT: 9:21 Topics: Drill events, TFAT Training, Commander's Town Hall, OPSEC, Legacy, and more.

With artifacts to examine and learn from, Task Force 01132 expands their contacts in the region, looking to academics in Baghdad to translate the Winds Unknown to Adad.  OpSec issues, anyone? Yeah, this won't have horrible, unintended consequences. Find out what happens next as we continue Iconoclasts, a Delta Green campaign. Starring: Schroeder Jeff Daniel Spencer   Want to leave a comment? -Email therancorsbrothel@gmail.com.  -Follow us on Twitter @Rancors_Brothel -Follow us on Instagram @rancorsbrothel