Hunters Hands On Security
Hunters Hands On Security
Hunters
Hunters Hands On Security
Behind the Scenes of BlackShadow
The last episode of the first season of the “Hands-On Security” Podcast is out! This time Dvir Sayag hosts Amitai Ben-Shushan, Threat Researcher at SentinelOne's Threat Intelligence group. Amiti shares his research on a series of extortion attacks carried out against Israeli organizations by the Iranian APT group BlackShadow and presents the cyberattack suffered by insurance company Shirbit in late 2020 to exemplify the attack vectors and the group’s modus operandi. Don't miss out this episode to learn all about the BlackShadow APT group, the way they operate and examples of their attacks, and most importantly, to hear some practical mitigations. Sit back and enjoy!
Feb 17, 2022
22 min
Life in a SOC - Part 2
In this episode of the "Hands-On Security" podcast series, Dvir Sayag hosts Yonatan Hanashvili. Yonatan will elaborate on his time as a SOC leader and DFIR consultant at BugSec. Dvir and Yonatan are going to discuss life in a SOC in 2021/2022. They talk about the different characteristics of the work, tips for SOC managers, the most challenging threats, and effective visibility methods.
Jan 23, 2022
23 min
Special Episode: Log4Shell Vulnerability Q&A
This is a special one! The Log4Shell vulnerability is being exploited in the wild, so we conducted a live Q&A with our experts to answer important questions regarding the detection & mitigation of Log4Shell, hosted by Dvir Sayag. The participants: Shahar Vaknin - Hunters' Threat Hunting Team Leader Alon Sloky - Hunters' Product Manager Guy Yager - Hunters' Cloud Research Team Leader
Dec 30, 2021
38 min
ML in Detection & Response
In this episode of the “Hands-On Security” podcast series, Dvir Sayag hosts Kathy Razmadze, a Data Scientist at Hunters and a Ph.D. candidate in Computer Science at Tel Aviv University. They provide an introduction to Machine Learning and its use in cybersecurity. ML has a tremendous effect on the security industry and it’s just getting started. Dvir and Kathy cover the basics of how security practitioners can implement ML, its advantages and disadvantages, and specific examples of Hunters' ML-based detections.
Nov 30, 2021
17 min
Life in a SOC - Part 1
In this episode of the "Hands-On Security" podcast series, Dvir Sayag hosts Daniel Margalit. Daniel was Elbit’s SOC manager for four years and now he is working at Cybersiem as the Head of their MSSP (Managed security services provider). Daniel and Dvir are going to introduce life in a SOC in 2021. They talk about the different characteristics of the work, the difficulties related to COVID-19, the most challenging threats, what is missing regarding security tools, and what can security professionals do better for SOC teams.
Nov 3, 2021
15 min
Windows Hello Vulnerability
Omer Tsarfati, Security Researcher at CyberArk, has discovered a vulnerability in Microsoft’s biometrics security system, Windows Hello. Windows Hello has more than 150 million users worldwide. Attackers exploiting this vulnerability might be able to access computers protected by the passwordless login solution. In the six-episode of the Hands-On Security Podcast, Dvir Sayag is hosting Omer Tsarfati, to discuss Omer’s research past, research tips, and a thorough explanation of the vulnerability found by Omer.
Sep 30, 2021
26 min
Facing Ransomware: Threat Intel vs. Threat Hunting
Ransomware attacks continue to be an ever-growing threat to organizations around the world, with new attacks happening on a daily basis. In this episode, Dvir Sayag hosts Brad Mecha, Director of Managed Services at Recorded Future, and Guy Yasoor, Threat Researcher at Hunters, to discuss two different perspectives when dealing with Ransomware: Threat Intelligence vs. Threat Hunting. This exciting debate is filled with valuable recommendations for security teams facing the constant threat of Ransomware. Don't miss out!
Aug 30, 2021
23 min
Hunt For the Next Supply Chain Attack
This episode will discuss the impact of the latest REvil ransomware, and possible mitigations. It will also discuss different tactical and technical thesis on how to hunt for the next attack in your organization. Guests: Amit Serper, Area VP of Security Research, North America at Guardicore & Shahar Vaknin, Threat Researcher at Hunters. Song: Benmozes - She's the Wave
Jul 30, 2021
26 min
Nobelium APT Group, Phishing Campaigns, and Email Security
Mitigating phishing campaigns like it’s 2021: It's 2021 and the security community still deals with email phishing campaigns. In this episode, Dvir Sayag is hosting Guy Yagev - Hunters' email security expert. They will provide important investigation layer tips to mitigate phishing attempts in your security stack.
Jun 28, 2021
24 min
Not all Clouds have a Silver Lining - Leveraging an AWS Feature into an Attack Technique
Security researcher, Eliav Levy, discovered an AWS attack technique that allows attackers to obfuscate their use of stolen credentials using CloudTrail and VPC only. In this episode, Eliav shares how he made the discovery and provides recommendations on how to defend against this attack technique. Want to learn more about this discovery? This blog post written by Eliav covers the discovery in more detail: www.hunters.ai/blog/hunters-research-detecting-obfuscated-attacker-ip-in-aws. Enjoy the episode, it’s loaded with tips and tricks for AWS and cloud security in today's SOC.
May 26, 2021
22 min
Load more