Dave Bittner (9:13)

We've all been there. You realize your business needs to hire someone yesterday. How can you find amazing candidates fast? Well, it's easy. Just use Indeed when it comes to hiring, indeed is all you need. Stop struggling to get your job Post noticed Indeed. Sponsored Jobs helps you stand out and hire fast. Your post jumps to the top of search results so the right candidates see it first and it works. Sponsored jobs on indeed get 45% more applications than non sponsored ones. One of the things I love about Indeed is how fast it makes hiring. And yes, we do actually use indeed for hiring here at N2K CyberWire, many of my colleagues here came to us through Indeed plus with sponsored jobs. There are no subscriptions, no long term contracts. You only pay for results. How fast is Indeed? Oh, in the minute or so that I've been Talking to you, 23 hires were made on Indeed according to Indeed Data Worldwide. There's no need to wait any longer. Speed up your hiring right now with Indeed and listeners to this show will get a $75 sponsored job credit. To get your jobs more visibility@indeed.com cyberwire just go to indeed.com cyberwire right now and support our show by saying you heard about Indeed on this podcast. Indeed.com cyberwire terms and conditions apply. Hiring Indeed is all you need.

Keith Milarsky (10:48)

Foreign.

Dave Bittner (10:54)

Cyber threats are more sophisticated than ever. Passwords. They're outdated and can be cracked in a minute. Cybercriminals are intercepting SMS codes and bypassing authentication apps. While businesses invest in network security, they often overlook the front door, the login. Yubico believes the future is passwordless. Yubikeys offer unparalleled protection against phishing for individuals, SMBs and enterprises. They deliver a fast, frictionless experience that users love. Yubico is offering N2K followers a limited buy one, get one offer. Visit yubico.com N2K to unlock this deal. That's Yubico. Say no to modern cyber threats. Upgrade your security today. Foreign.

Maria Varmazes (11:51)

Today's guest is Keith Milarsky, Q Intel Chief, Global Ambassador and former FBI Special Agent. Here's his discussion with Dave Buettner.

Dave Bittner (12:00)

So today we are talking about some of the threats that are targeting crypto and the cyber underground. I would love to get your perspective, you know, both from your position at Q Intel and of course your background with the FBI. What led us to this place where we are today when it comes to crypto being a continuing, ongoing hot target for folks in the underground here.

Keith Milarsky (12:27)

Yeah, a great question, Dave. So I think, you know, crypto when it first started was kind of, you know, just this ancillary thing on the side. A lot of people at that time didn't think much of it. When you think almost 20 years ago that this started and now crypto has really gone mainstream and the value of crypto has just gone through the roof the last seven years or so. We have the President of the United States saying he's going to be the first crypto president. He issued a couple tokens himself. So, you know, crypto has gone really from something in the cyber underground to really now very mainstream, where you have Mainstream investors, people are investing in crypto like they would in their regular brokerage accounts. And as a result of that, there is just tremendous money with little regulations around it. So the bad guys are really targeting it right now.

Dave Bittner (13:28)

Well, share some insights. I mean, again, your background in law enforcement, what is the difference between trying to track someone down who is using the traditional financial systems versus someone who's taking advantage of everything available to them these days in crypto?

Keith Milarsky (13:47)

Yeah, I mean, you know, I think crypto, because of the it being anonymous, makes it much more difficult to track than some of the other mainstream types of ways of money laundering, you know, that we've seen, you know, forever. Because a lot of places don't have a know your customer, really knowing who's behind the transaction. So from a law enforcement standpoint, it really makes it much more difficult to track that, even though really all of the transactions are public on the blockchain, that you could see that. But what. What the criminals are doing really are using exchanges to be able to cash out into different coins. So you could take Bitcoin or Ethereum and really instantly change that into another co, such as, like, Monero or something else that may be a little bit more difficult to track. So, you know, in these conversions really just go at. They're instantaneous. They go in real time. And it makes it much more difficult to track that as the criminals are using what they call different crypto mixers in order to launder money on the dark Web.

Dave Bittner (14:58)

Is it fair to say that, you know, cryptocurrency has really been a. An amplifier and enabler for folks who are doing things like ransomware?

Keith Milarsky (15:07)

Oh, absolutely. I don't think ransomware would be where it's at without cryptocurrency because it would be much more difficult to launder $5 million in ransom than it would be through cryptocurrency. So I think cryptocurrency really enabled ransomware to be as big where it is right now. And cryptocurrency has just in the news the last couple of days with North Korea. It's really empowered North Korea, where North Korea over the last couple of years have been targeting crypto exchangers. You know, just last week, they hit for 1.4 billion, you know, a crypto exchanger. Last year, I know of two big exchanges that North Korea hit. You know, I think one was for like 300 million. Another was for like $235 million. So they, you know, North Korea is using cryptocurrency as a way to fund their regime because of all the sanctions that are out there. So it really, crypto is enabling a lot of nefarious activity, being able to fund a lot of nefarious activity.

Dave Bittner (16:21)

Is it surprising to you that we haven't seen more regulation and more of a crackdown from governments around the world?

Keith Milarsky (16:29)

I think it's just been difficult on how to do that. And I think we need to get there because it is one thing where we're seeing cybercriminals use crypto for ransom payments, or you see North Korea hacking. One of the things that we're really seeing out there right now is the targeting of individuals with some of the crypto stealers that are out there. So there are a number of stealer malware is out there. They've been around for a long time. But really these last few years we're seeing the emergence of credential stealing malware, specifically targeting crypto and personal crypto. So, you know, these stealers are evading AV. There are about 30 or 40 different variants that are active at any time. They're targeting Mac and mobile and they're, they will go in, they'll target like the Apple keychain, any kind of password, browser extension that you may have. They know what directories to go into as well. And so we're really seeing the cyber criminals go after individuals and like just I had a personal experience in the last couple of months where a friend of mine had significantly large sum of crypto stolen from him literally in minutes. And it was most likely probably from one of these stealing malwares that was out there. So I think as more and more mainstream people get into crypto and the criminals are targeting that there's going to have to be regulation because there's just no protections around the normal consumer like you and I, if we're going to be putting our, you know, our money into crypto for legitimate investing purposes.

Dave Bittner (18:20)

Right. There's, there's no FDIC insurance for crypto.

Keith Milarsky (18:24)

Yeah, I mean, and it's just very tragic because I know of a number of incidents where people have lost large amounts of money and there's just no recourse. You know, if with my brokerage account, if I see a significant large money out, I call my brokerage, chances are they make me whole or they're able to call back that money. Same with my bank account. But if somebody steals my, you know, 24 word passphrase for my crypto and they wire out hundreds of thousands of dollars that I have in, you know, investments there, there's just no recourse. There's no way to get that money back. The exchanges aren't able to do that and the criminals know that. And so they'll send that money again to one of those mixers, they'll change it into different coins and it's just very difficult to trace. And I just think that the normal consumer right now, this is a big threat to them, especially going forward as crypto becomes more legitimate in mainstream investing.

Dave Bittner (19:25)

When you think about your friend who lost all of that money, does it lead you to any recommendations for folks to better protect themselves?

Keith Milarsky (19:34)

Yeah, I mean, there's really only three ways to protect your crypto. I mean, you could store that in an exchanger, which we see North Korean targeting, but you want to have a reliable exchanger. You can store it on your USB or you could use it in cold storage, have a cold storage service that's out there. None of them are 100% fail safe. Unfortunately, we've seen exchangers go bankrupt. The malware that's going after the usb, it will recognize if you put the USB in or even in cold storage. So there just needs to be some regulation around that. And I think that will have to be or just, you know, people won't put their money in there. The normal consumer won't put their money in there if, if they're losing it.

Dave Bittner (20:30)

Yeah, I mean, it's an interesting insight. I mean, if the folks who want cryptocurrency to grow as an acceptable money exchange system, part of that is having consumers feel like they can trust it. And that seems to me to be a missing piece these days.

Keith Milarsky (20:49)

Yeah, that's the biggest piece and I think we need to move that. And if the administration is talking a lot about cryptocurrency, that may be something that we see here in the coming years.

Maria Varmazes (21:01)

That was Dave Bittner speaking with Keith Milarsky of Q intel. Up next, N2K's own Liz Stokes talking to Ironman. Yep. Stay tuned.

Dave Bittner (21:26)

Do you know the status of your compliance controls right now? Like right now? We know that real time visibility is critical for security, but when it comes to our GRC programs, we rely on point in time checks. Look at this. More than 8,000 companies like Atlassian and Quora have continuous visibility into their controls with Vanta. Here's the VANTA brings automation to evidence collection across 30 frameworks like SoC2 and ISO 27001. They also centralize key workflows like policies, access reviews and reporting and helps you get security questionnaires done five times faster with AI. Now, that's a new way to GRC. Get $1,000 off Vanta when you go to vanta.com cyber. That's vanta.com cyber for $1,000.

Maria Varmazes (22:36)

Last week, some of our team hit the ground in Orlando for Threat Locker Zero Trust World 2025, where we brought Hacking Humans live to the stage. But we didn't stop there. Our very own producer, Liz Stokes, took to the floor to capture the buzz, chatting with attendees about the event and even scoring a conversation with a certain superhero that you just might recognize. She's joined by Colin Ellis, senior solutions engineer at ThreatLocker, to dive into what made this year's event one to remember.

Colin Ellis (23:08)

My name is Colin Ellis. I'm a senior solutions engineer for the Threat Locker team.

Liz Stokes (23:12)

So what has this event been like for you guys? Setting up everything?

Colin Ellis (23:16)

It's a real team exercise and we prove it right every single time. It speaks a lot to just how we operate internally, just our culture.

Liz Stokes (23:23)

I know a lot of people here just trying to educate the population and understand a little bit more about cybersecurity. So how does Threat Locker help with that?

Colin Ellis (23:31)

We can teach the hack. We can teach how simple these things become. Awareness is just really easy. At that point, everyone knows it's possible, so the security side of it becomes really simple.

Liz Stokes (23:40)

I'd be remiss if I didn't bring up the fact that Iron man was standing right next to us. Why is he here? What's going on?

Colin Ellis (23:47)

So everyone really likes our logo, the lock and key. Our cto, Michael Jenkins, the biggest Marvel nerd I have ever met. The trademark that you'll see under a lot of our marketing branding is the fact that we're cyber heroes. So it's only right that the center of what we do brings in a little bit of Iron Man.

Liz Stokes (24:05)

What is one, your favorite Marvel movie? And two, have you seen any hacking in any Marvel movies that you're like, oh, my gosh, this is either so realistic or, oh, my gosh, that's so not how it works.

Colin Ellis (24:17)

Anytime Jarvis takes over any type of of technology, that's it. I'm one of the biggest Spider man fans I could think of, so I'm always going to default to Toby Maguire's Spider Man.

Maria Varmazes (24:34)

If you want to catch more of Liz's interviews from Threat Locker Zero Trust World 2025, just head on over to our YouTube page where we'll be posting all of the conversations that she had on the floor. And while you're there, don't miss our hacking humans live events or tune in wherever you get your podcasts. And that's the Cyberwire. For links to all of today's stories, check out our daily briefing@thecyberwire.com and don't forget to tune in to Research Saturday, where Dave Bittner sits down with Phil Stokes, a threat researcher at SentinelOne's Sentinel Labs, as they discuss the research on macOS Flexible Ferret, further variants of DPRK Malware Family Unearthed. That's Research Saturday. Check it out. We'd love to know what you think of this podcast. Your feedback ensures we deliver the insights that keep you a step ahead in the rapidly changing world of cybersecurity. If you like the show, please share a rating and review in your podcast app. Please also fill out the survey in the show notes or send an email to cyberwiren2k.com we're privileged that N2K Cyberwire is part of the daily routine of the most influential leaders and operators in the public and private sector. From the Fortune 500 to many of the world's preeminent intelligence and law enforcement agencies, N2K makes it easy for companies to optimize your biggest investment your people. We make you smarter about your teams while making your team smarter. Learn how@n2k.com this episode was produced by Liz Stokes. Our mixer is Trey Hester with original music and sound design by Elliot Peltzman. Our executive producer is Jennifer Ivan. Peter Kilpe is our publisher and I'm Maria Varmazes in for Dave Bittner. Thanks for listening. We'll see you next week.

Dave Bittner (26:45)

And now a message from our sponsor. Zscaler, the leader in cloud security. Enterprises have spent billions of dollars on firewalls and VPNs, yet breaches continue to rise by an 18% year over year increase in ransomware attacks and a $75 million record payout in 2024. These traditional security tools expand your attack surface with public facing IPs that are exploited by bad actors more easily than ever with AI tools, it's time to rethink your security Zscaler Zero Trust plus AI stops attackers by hiding your attack surface making apps and IPs invisible eliminating lateral movement Connecting users only to specific apps, not the entire network Continuously verifying every request based on identity and context Simplifying security management with AI powered automation and detecting threats using AI to analyze over 500 billion daily transactions, hackers can't attack what they can't see. Protect your organization with Zscaler Zero Trust and AI. Learn more@Zscaler.com Security.