Digital Shadows

Resources: https://linktr.ee/RQShadowTalkJoin hosts Chris and Kim, ReliaQuest field CISO Rick Holland, and detection researcher Marken as they discuss:Termite Ransomware claiming responsibility for Blue Yonder incidentRansomware impacting Romanian electricity supplyResearchers divulge QR code based browser bypassReliaQuest research into malware distribution through CAPTCHA hijackingChris Morgan: Chris Morgan is a Senior Cyber Threat Intelligence Analyst on the ReliaQuest Threat Research Team and has been the host of ShadowTalk since 2021. Chris joined ReliaQuest in August 2020, previously working as a Cyber Threat Intelligence analyst in the telecommunications and financial sectors. Chris also has a background in the British military. With his diverse background, he  brings deep insights into various threat landscapes.Kim Bromley: Kim Bromley is a Senior Cyber Threat Intelligence Analyst on the ReliaQuest Threat Research Team. She joined ReliaQuest in June 2020 following a 10-year career in UK law enforcement

Resources: https://linktr.ee/RQShadowTalkJoin hosts Chris and Kim, and Threat Hunter Brian Kelly as they discuss: BootKitty Linux BootkitLockBit Arrest in RussiaNovel Phishing Campaign Corrupts WordCyber Threats During M&AKim Bromley: Kim Bromley is a Senior Cyber Threat Intelligence Analyst on the ReliaQuest Threat Research Team. She joined ReliaQuest in June 2020 following a 10-year career in UK law enforcement, and has acted as host since 2024.  Kim brings a wealth of experience in threat intelligence and law enforcement tactics, providing unique insights for ShadowTalk.  Chris Morgan: Chris Morgan is a Senior Cyber Threat Intelligence Analyst on the ReliaQuest Threat Research Team and has been the host of ShadowTalk since 2021. Chris joined ReliaQuest in August 2020, previously working as a Cyber Threat Intelligence analyst in the telecommunications and financial sectors. Chris also has a background in the British military. With his diverse background, he  enhances ShadowTalk with deep insights into v

Join hosts Chris and Kim, and guest CISO Chris Gunner, as they discuss:APT28 conduct 'Nearest Neighbor' WiFi AttackWindows Reissue Controversial Recall Feature Update on Palo Alto Critical Vulnerability ExploitationNavigating potential obstacles as a new CISOResources: https://linktr.ee/RQShadowTalkChris Gunner: Group CISO at a global financial service firm, comprised of federated business units across 20 countries. Chris is responsible for Group-wide cyber strategy as well as advising the business in the Group. Previously held roles as a security leader in law firms, as well as varied roles in consulting. Passionate that cyber security is a business enabler, where it can drive better business decisions, as well as protecting organizations and their customers.Chris Morgan: Chris Morgan is a Senior Cyber Threat Intelligence Analyst on the ReliaQuest Threat Research Team and has been the host of ShadowTalk since 2021. Chris joined ReliaQuest in August 2020, previously working as a Cyber Threat Intelli

Join hosts Chris and Kim, Field CISO Rick Holland, and Detection Researcher Corey Carter as they discuss:Black Friday: Cyber Threats Facing the Retail SectorT-Mobile Breached AgainAttacks Exploiting PAN-OS Zero-DayFake AI Image Generators Deploy InfostealersResources:https://linktr.ee/RQShadowTalkKim Bromley: Kim Bromley is a Senior Cyber Threat Intelligence Analyst on the ReliaQuest Threat Research Team. She joined ReliaQuest in June 2020 following a 10-year career in UK law enforcement, and has acted as host since 2024.  Kim brings a wealth of experience in threat intelligence and law enforcement tactics, providing unique insights for ShadowTalk.  Chris Morgan: Chris Morgan is a Senior Cyber Threat Intelligence Analyst on the ReliaQuest Threat Research Team and has been the host of ShadowTalk since 2021. Chris joined ReliaQuest in August 2020, previously working as a Cyber Threat Intelligence analyst in the telecommunications and financial sectors. Chris also has a background in the British military. With h

Join hosts Chris and Kim and guest Anna as they discuss:ReliaQuest's Cyber Threat Predictions for 2025Huge Data Leak Linked to 2023 MOVEit FlawNew Ransomware Partners with RustyStealerVolt Typhoon Rebuilds Dismantled BotnetResources:https://www.reliaquest.com/blog/report-shows-ransomware-has-grown-41-for-construction-industry/https://www.reliaquest.com/blog/service-account-abuse/Chris Morgan: Chris Morgan is a Senior Cyber Threat Intelligence Analyst on the ReliaQuest Threat Research Team and has been the host of ShadowTalk since 2021. Chris joined ReliaQuest in August 2020, previously working as a Cyber Threat Intelligence analyst in the telecommunications and financial sectors. Chris also has a background in the British military. With his diverse background, he  enhances ShadowTalk with deep insights into various threat landscapes.Kim Bromley: Kim Bromley is a Senior Cyber Threat Intelligence Analyst on the ReliaQuest Threat Research Team. She joined ReliaQuest in June 2020 following a 10-year career i

In this episode of ShadowTalk, hosts Chris and Kim are joined by Senior Threat Intelligence Analyst Ivan Righi, to discuss the latest news in cybersecurity and threat research. Topics this week include:ReliaQuest research exploring credential theft and misuseSocial engineering campaign targets LastPass usersPatch now: Sharepoint vulnerability exploited in the wildNew Interlock ransomware group targeting FreeBSD OSResources:https://www.reliaquest.com/blog/the-credential-abuse-cycle-theft-trade-and-exploitation/

In this episode of ShadowTalk, hosts Kim and Chris are joined by guest speaker Eric Knopp, to discuss the latest news in cybersecurity and threat research. Topics this week include:ReliaQuest research identifies Black Basta TTP changesAmazon seize APT29 domainsTango down: Redline & Meta Infostealers taken down by Dutch policeThe importance of supporting DEI programs in hiring practicesResources:https://www.reliaquest.com/blog/black-basta-social-engineering-technique-microsoft-teams/https://www.reliaquest.com/blog/5-critical-threat-actors-you-need-to-know-about/Eric Knopp: VP Security Operations for one of ReliaQuest’s customers, a large global financial services company. Eric has been in the IT industry for almost 30 years, with the past 11 in IT Security. He also has a passion for diversity, equity and inclusion, co-leading the DEI Committee in London. He also supports the cyber apprenticeship program in the UK.Kim Bromley: Kim Bromley is a Senior Cyber Threat Intelligence Analyst on the ReliaQuest Threa

In this episode of ShadowTalk, host Kim is joined by Director of Threat Research Brandon Tirado and Threat Hunter Brian Kelly, to discuss the latest news in cybersecurity and threat research. Topics this week include:Scattered Spider x RansomHub: A New PartnershipUS Authorities Indict Anonymous Sudan LeadersCrypt Ghouls Deploys LockBit on Russian OrganizationsAPT41 Targets Gambling and Gaming Industry in New Financially-Motivated Campaign  Resources:https://www.reliaquest.com/resources/research-reports/five-ways-cyber-attackers-exploit-cloud-environments/https://www.reliaquest.com/blog/virtual-machines-defense-evasion/Kim Bromley: Kim Bromley is a Senior Cyber Threat Intelligence Analyst on the ReliaQuest Threat Research Team. She joined ReliaQuest in June 2020 following a 10-year career in UK law enforcement, and has acted as host since 2024.  Kim brings a wealth of experience in threat intelligence and law enforcement tactics, providing unique insights for ShadowTalk.Brandon Tirado: Brandon Tirado is the Di

In this episode of ShadowTalk, host Chris and Kim are joined by Detection researcher Corey Carter, to discuss the latest news in cybersecurity and threat research. Topics this week include:ReliaQuest reporting on ransomware activity in Q3 2024OpenAI confirm malicious use of ChatGPTRussian APT29 mass exploiting known vulnerabilitiesCISCO data reportedly breached by IntelBrokerResources:https://media.defense.gov/2024/Oct/09/2003562611/-1/-1/0/CSA-UPDATE-ON-SVR-CYBER-OPS.PDFhttps://www.reliaquest.com/blog/q3-2024-ransomware/Chris Morgan: Chris Morgan is a Senior Cyber Threat Intelligence Analyst on the ReliaQuest Threat Research Team and has been the host of ShadowTalk since 2021. Chris joined ReliaQuest in August 2020, previously working as a Cyber Threat Intelligence analyst in the telecommunications and financial sectors. Chris also has a background in the British military. With his diverse background, he  enhances ShadowTalk with deep insights into various threat landscapes. Kim Bromley: Kim Bromley is a Sen

In this episode of ShadowTalk, host Chris and Kim are joined by detection researcher, Marken, to discuss the latest news in cybersecurity and threat research. Topics this week include:Cyber Threats Facing the Health Care and Social Assistance SectorSalt Typhoon Compromises US-based Telecoms Companies Microsoft and US DoJ Takedown Star Blizzard InfrastructureGorilla Botnet Conducts Large-Scale DDoS CampaignResources:https://www.reliaquest.com/blog/threats-health-care-social-assistance-landscape/

In this episode of ShadowTalk, host Chris and Kim are joined by guest Samantha Billy, AON U.S Broking Growth Leader, to discuss the latest news in cybersecurity and threat research. Topics this week include:The Critical Role of Cyber Insurance in Mitigating Cyber RiskEmbargo Ransomware Targeting CloudIranian Threat Actors Conducting Influence Ops Against US ElectionsNational Crime Agency Tease Lockbit UpdateResources:https://www.reliaquest.com/blog/2024-us-election-top-cyber-threats-organizational-impacts/

In this episode of ShadowTalk, host Chris and Kim, along with Threat Hunter Brian, discuss the latest news in cybersecurity and threat research. Topics this week include:Telegram Pivot 180: Agree to Share IP and Phone Data on Legal RequestsKaspersky Auto-Replace Software with UltraAV AntivirusDell Investigate Two Data BreachesReliaQuest Data Exfiltration Case Study

In this episode of ShadowTalk, host Chris, along with Corey and Anna, discuss the latest news in cyber security and threat research. Topics this week include:Threat actors express difficulty in retrieving stolen Fortinet dataAmadey malware's novel approach: Users locked in Kiosk Mode Aftermath of incident affecting Transport for London (TFL)ReliaQuest Response to Insider Threat CasesResources:https://www.reliaquest.com/blog/common-infostealers/

In this episode of ShadowTalk, host Chris Morgan, along with Marken Teder, discuss the latest news in cyber security and threat research. Topics this week include:Russia's Military Intelligence target CNI, identified using "Non-Lethal Acoustic Weapons" New Sextortion scam targets spousesPrivacy concerns with smart automobilesReliaQuest research into "Inc Ransom" Data Extortion Attack Resources:https://www.reliaquest.com/blog/inc-ransom-attack-analysis/ 

In this episode of ShadowTalk, hosts Chris and Kim, along with guest CISO Rob F, discuss the latest news in cyber security and threat research. Topics this week include:City of Columbus Ohio sue security researcher following ransomware breachDutch Data Protection Authority fine AI/Facial recognition companyBuilding security teams and improving your cyber maturityReliaQuest research into top attacker techniquesResources:https://www.reliaquest.com/blog/top-cyber-attacker-techniques/ 

In this episode of ShadowTalk, hosts Chris and Kim, along with Director of Threat Research Brandon Tirado and Threat Intelligence Analyst Anna, discuss the latest news in cyber security and threat research.Telegram CEO arrested in France over alleged criminal use of the platform Return of Volt Typhoon: China APT exploiting Versa high-severity bug Cybercriminals discuss exploiting physical security gaps to target SMEs

In this episode of ShadowTalk, host Kim, along with Corey and Gjergji, discusses the latest news in cyber security and threat research. Topics this week include:Data breach at NPD affecting millions resulted from exposed credentialsIran-linked APT groups abuse OpenAI to create US-election propagandaReliaQuest Research: Service Account AbuseResources:https://www.reliaquest.com/blog/exploring-impacket-abuse/https://www.reliaquest.com/blog/service-account-abuse/

In this episode of ShadowTalk, host Kim, along with Marken and Brian, discusses the latest news in cyber security and threat research. Topics this week include:Unusual Espionage: China-linked threat groups target Russian government, IT organizationsVicious Vulnerabilities: New vulnerability in all Windows systems with IPv6, Sonos Speaker flaws allow eavesdroppingReliaQuest Research: Data Exfiltration Tools and Malware LoadersResources:https://www.reliaquest.com/blog/exfiltration-toolshttps://www.reliaquest.com/blog/common-malware-loaders

In this episode of ShadowTalk, host Rick Holland is joined by ReliaQuest Lead Threat Hunter Colin Ferris LIVE on the BlackHat show floor in Las Vegas to discuss:Takeaways from BlackHat CISO SummitReliaQuest presentation on Remote Monitoring & Management (RMM) toolsThings to look forward to at DEF CON 32

In this episode of ShadowTalk, hosts Chris and Kim, along with Ivan Righi, discuss the latest news in cyber security and threat research. Topics this week include:Rise of the Deepfakes: Threat actors target Ferrari, Fake North Korean IT worker fake's job interviewDevelopments in ransomware: Stormous v3, VSXI, Black Basta develop custom malwareReliaQuest Research: Beyond the Endpoint: Threats Bypassing your Endpoint Detection and Response (EDR) solutionsResources:https://www.reliaquest.com/blog/beyond-the-endpoint-cyber-threats-eluding-endpoint-detection/https://arstechnica.com/tech-policy/2024/07/us-security-firm-unwittingly-hired-apparent-nation-state-hacker-from-north-korea/https://www.drive.com.au/news/ferrari-ceo-impersonated-ai-deepfake-scam/