Episode Summary: Walking Through Denver
Podcast: Talkin' About [Infosec] News, Powered by Black Hills Information Security
Episode: 2025-02-10 - Walking Through Denver
Release Date: February 13, 2025
Hosts: Corey, Kelly, Wade, Alex, Ryan
Guest Host: Megan
1. Introduction and Recap of Last Week’s Events
The episode kicks off with a light-hearted banter between Corey and Kelly, setting a friendly and humorous tone. They reminisce about last week's in-person event in Denver, highlighting memorable moments and engaging the audience's FOMO (Fear of Missing Out).
Key Highlights:
-
Award Ceremony Hijinks: Corey shares a funny anecdote about John Strand humorously contacting award recipients.
Corey [00:49]: “...one guy that he called worked for Palo Alto Networks. And so John calls him up and is like, hey, this is John with Black Hills Info Stack...”
-
Swear Jar for EFF Donation: Kelly discusses the successful collection of over $170 for the Electronic Frontier Foundation (EFF) through the swear jar, emphasizing the audience's enthusiasm for contributing.
Kelly [03:54]: “...we collected over $170 into the swear jar for EFF. It was really funny watching John just walk back to the accounting team at BHIS...”
2. Ransomware Payments Decline in 2024
The hosts delve into an Ars Technica article reporting a significant decline in ransomware payments in 2024, based on data from Chainalysis.
Key Points:
-
35% Year-over-Year Drop: Ransomware payments decreased by approximately 34.9%.
Wade [10:10]: “If we want to get into the numbers, the payment decrease was approximately 34.9%.”
-
Possible Reasons for the Decline:
-
Law Enforcement Interventions: Actions against major ransomware groups like LockBit and Alpha Black Cat contributed to disrupting operations.
Wade [10:16]: “LockBit experienced a 79% decrease in payments following the intervention of the UK's National Crime Agency and the FBI's investigation.”
-
Internal Conflicts Among Criminals: Lack of trust and internal disputes within ransomware groups led to fragmentation.
Corey [08:56]: “The biggest enemy to criminals is oftentimes other criminals.”
-
-
Future Projections: The hosts speculate on whether the decline will continue, considering factors like crypto regulations and potential sanctions.
Kelly [12:55]: “...we did see the Biden administration put in some executive orders on digital assets...”
3. Cisco ISE Vulnerability
A brief discussion on a reported vulnerability in Cisco’s Identity Services Engine (ISE), involving command injection requiring read-only authenticated access.
Key Insights:
-
Vulnerability Details: Although the flaw allows for command execution as root, its impact is limited due to stringent access controls.
Corey [14:02]: “...patch your Cisco ISE. I will say I don't...”
-
Community Reactions: Hosts express skepticism about the prevalence of Cisco ISE usage, contending that many listeners might not be directly affected.
4. IoT Botnet Surge
An exploration of a TechRadar article highlighting a 500% increase in botnet activity targeting Internet of Things (IoT) devices.
Discussion Points:
-
Root Causes: Default passwords, outdated software, and inadequate security measures are identified as primary vulnerabilities.
Corey [25:17]: “...default credentials in enough of devices to go like with a botnet...”
-
Enterprise vs. Home Networks: The hosts debate whether the surge primarily affects enterprise networks or home users, leaning towards the latter.
Wade [25:35]: “I would imagine the majority... home networks.”
-
Role of ISPs: The group discusses the potential responsibilities of Internet Service Providers in detecting and mitigating botnet activities.
Alex [30:46]: “...only when not doing so affects their dollars, you know, will they take action.”
5. WhatsApp Spyware Incident
A detailed discussion on WhatsApp’s notification to 92 users about their devices being infected with spyware developed by Paragon Solutions.
Key Points:
-
Nature of the Attack: The spyware, named Graphite, targeted journalists and civil society members through malicious PDFs sent via WhatsApp groups.
Corey [36:16]: “...hackers invited their targets to a WhatsApp group, then sent them a malicious PDF that would then breach their devices.”
-
WhatsApp’s Response: The platform leveraged metadata and backend data to identify and notify affected users despite end-to-end encryption.
Alex [37:56]: “Metadata and communication connections, like who you message is visible to Meta.”
-
Security Implications: The incident underscores the delicate balance between privacy and security, highlighting challenges in protecting users from sophisticated spyware.
Kelly [37:56]: “...it's an abuse of their platform directly.”
6. Microsoft Study on AI and Cognitive Skills
The hosts examine a Microsoft study where self-reported data from 319 participants indicated that 936 instances felt AI made them "stupid."
Discussion Points:
-
Study Limitations: The group criticizes the study for relying solely on self-reported data without objective measures of cognitive performance.
Corey [46:43]: “...at no point during this study did they actually measure cognitive performance.”
-
Impact of AI Tools: While acknowledging AI's efficiency, they debate whether reliance on AI truly diminishes critical thinking skills or simply changes how tasks are approached.
Alex [45:31]: “...how do I make AI do what I want it to do? Does exercise that critical thinking.”
-
Microsoft’s Intentions: Speculation on how Microsoft might use the study to influence perceptions of their AI tools like Copilot.
Ryan [47:49]: “Microsoft has Copilot that they're pushing all over the place. How are they going to be using this study...”
7. Miscellaneous Security Discussions
The episode touches on various other security-related topics, adding depth and diversity to the conversation.
-
Power Grid Vulnerabilities: A humorous yet insightful debate on an article blaming a monkey for a power outage in Sri Lanka, leading to a broader discussion on the fragility of critical infrastructure.
Corey [40:42]: “Can we blame monkeys for ransomware attacks? Can we do that yet?”
-
Employee Data Leak Incident: Corey raises concerns about a security breach involving an employee leaking internal data at Doge (Department of Government Efficiency), highlighting the importance of clearances and data protection protocols.
Corey [52:16]: “...Edward has been terminated for leaking internal information to the competitors.”
8. Light-Hearted Chicken Wing Segment
To wrap up, the hosts shift to a lighter topic, discussing the National Chicken Council’s report on chicken wing consumption and engaging in playful debates about dipping sauces.
Key Highlights:
-
Consumption Statistics: Reporting that 1.47 billion chicken wings were consumed in a single day.
Corey [58:48]: “...147 billion chicken wings.”
-
Dipping Sauce Debate: A humorous exchange about preferences for ranch dressing, blue cheese, or no dip.
Kelly [60:04]: “You never know. So let's ask the most important question. What do you dip it in? Ranch dressing or blue cheese?”
Notable Quotes:
- Corey [08:56]: “The biggest enemy to criminals is oftentimes other criminals.”
- Kelly [37:56]: “...it's an abuse of their platform directly.”
- Corey [46:43]: “...they didn't actually measure cognitive performance at any point during this study...”
Conclusion
The episode provides a comprehensive overview of current infosec news, blending serious discussions on ransomware trends, spyware incidents, and AI implications with lighter segments that showcase the hosts' camaraderie and humor. Notable insights include the decline in ransomware payments due to law enforcement actions and internal conflicts, the complexities of safeguarding IoT devices against botnets, and the delicate balance between user privacy and platform security intelligence. The episode concludes on a fun note with discussions about chicken wing consumption and dipping preferences, leaving listeners both informed and entertained.
Join the Conversation:
Engage with the hosts and other listeners on Discord to share your thoughts on this episode's topics or to participate in upcoming discussions.
![2025-02-10 - Walking Through Denver - Talkin' Bout [Infosec] News cover](/_next/image?url=https%3A%2F%2Fassets.blubrry.com%2Fcoverart%2Forig%2F577207-646458.jpg&w=1200&q=75)