This page will include show notes/links, etc from the podcast.

If you find the podcast useful/interesting you are welcome to send me a donation, as I don’t want to have to resort to sponsorship as this will not let me be as frank and honest as I want to be, and also I’m fed up of the sponsor ads on almost every podcast I listen too, as I think it detracts from the rest of the material being covered.

So this will be a FREE podcast, in the sense of not having any sponsors, but to make it viable (in the long run) I need it to be self-supporting via the community of listeners. If you want to say thanks, you can use the Donate button on this page

Do you have a story to share, either via email, or would you like to tell the story yourself and be a guest?

Got a burning cyber security related question that you would like me to cover/explain on the show?

You can submit these via email (or via the Contact Form), use the Anchor.fm app (Android or iOS) to leave a voice message, call me to discuss, or whatever works for you.

---

Want to say thank you for the podcast or blog? You can say thanks with a donation

Processing ... GBP Donate Now

---

Episode 3 – The one about Sextortion, Social Engineering, SIEM and SOAR

Show Notes:

• Blog about Sextortion Sextortion – Your Money, or Your Pride!
• Jenny Radcliffe’s Youtube channel (About Social Engineering) https://www.youtube.com/channel/UCKI6KPxYgrF-Hg9ichVOPXA
• What is SIEM and SOAR https://swimlane.com/blog/siem-soar/
• Insurers Collaborate on Cyber Security Ratings https://www.darkreading.com/risk/insurers-collaborate-on-cybersecurity-ratings/d/d-id/1334258
• Blog posting on  “Cyber Catalyst”  Cyber Catalyst; Dead Cert or Rank Outsider?
• Credential-Stuffing Attacks Behind 30 Billion Login Attempts in 2018 https://www.darkreading.com/threat-intelligence/credential-stuffing-attacks-behind-30-billion-login-attempts-in-2018/
• FIN6 Group Diversifies Activity, Uses LockerGoga and Ryuk Ransomware https://www.bleepingcomputer.com/news/security/fin6-group-diversifies-activity-uses-lockergoga-and-ryuk-ransomware/

If there is anything I missed, or you want links to (that I discussed in an episode), please let me know…

Episode 2 – The one about Passwords, 2FA/MFA, Password Managers, and APTs

Show Notes:

• Blog about password re-use. Helping the Hackers: Password Re-Use is Widespread!
• Blog about passwords being the new exploit. Question of the Day: Are Passwords the New Exploit?
• Sam Harris, Making Sense podcast: https://samharris.org/podcasts/152-trouble-facebook/
• Have I Been Pwned web site https://haveibeenpwned.com/
• Talos blog about Facebook being used by cyber criminals https://blog.talosintelligence.com/2019/04/hiding-in-plain-sight.html
• Trusted Reviews article about the other Facebook data breaches https://www.trustedreviews.com/news/new-facebook-data-breach-might-be-the-scariest-yet-3690921
• Password managers and 2FA/MFA Question of the Day: Password Managers
• Cyber Security and Cloud Expo, 2019 London. https://www.cybersecuritycloudexpo.com/global/
• F-Secure article about password re-use https://blog.f-secure.com/how-to-keep-your-passwords-from-being-an-attackers-key-to-your-account/

If there is anything I missed, or you want links to (that I discussed in an episode), please let me know…

Episode 1 – The one about Insurance, Breaches, and Lazy Reporting, Oh My!

Show Notes:

• Latest news about the Norsk Hydro incident, and expected costs.
• Statement from Hiscox regarding the DLA Piper claim.
• My blog post on CryptoJacking, what is it, and why you should be worried?
• The PRA letter and more on Silent Cyber risks.
• My blog posting on Silent Cyber and Insurance (the importance of having the right policy for the risk).
• My blog postings about password re-use, passwords managers and two/multi-factor authentication.
• 2.2 Billion credentials dumped!
• Latest LockerGoga details, here and here.

If there is anything I missed, or you want links to (that I discussed in an episode), please let me know…

Episode 0.5  – (Pilot) The one about Ransomware…

Show Notes:

• The AIDS Trojan (https://medium.com/un-hackable/the-bizarre-pre-internet-history-of-ransomware-bb480a652b4b)
• Norsk Hydro Ransomware attack and analysis of LockerGoga (https://www.zdnet.com/article/norsk-hydro-will-not-pay-ransom-demand-and-will-restore-from-backups/) and (https://doublepulsar.com/how-lockergoga-took-down-hydro-ransomware-used-in-targeted-attacks-aimed-at-big-business-c666551f5880)
• Hexion and Momentive Ransomware attacks (https://motherboard.vice.com/en_us/article/8xyj7g/ransomware-forces-two-chemical-companies-to-order-hundreds-of-new-computers)
• Smashing Security Podcast (Episode 117) 2019 – me interviewed about the Mondelez/Zurich insurance spat.
• Carbon Black Live Broadcast: Be Empowered to Threat Hunt in 2019 (Live Stream Webinar).
• My blog posting on Ransomware
• My blog posting on CryptoJacking
• Why OMG Cyber Security?

If there is anything I missed, or you want links to (that I discussed in an episode), please let me know…