The Cyber Threat Perspective
Step into the ever-evolving world of cybersecurity with the offensive security group from SecurIT360. We’re bringing you fresh content from our journeys into penetration testing, threat research and various other interesting topics.
brad@securit360.com
Episodes
134 episodes since 2021
Episode 108: New tales from the trenches!
In this episode, Tyler and Brad talk about various security issues found on recent penetration tests. They outline the how and why, and talk about mitigation strategies to help you beat these issues in your environment.Resources<...
September 18, 2024
•
Season 1
•
Episode 108
•
38:38
Episode 107: How To Defend Against Lateral Movement
In this episode, Spencer and Brad dive into lateral movement, discussing various techniques like RDP, RATs, Impacket tools, PsExec, PTH, PTT, and PowerShell Remoting. They explain how attackers use these methods to gain unauthorized access, eva...
September 11, 2024
•
Season 1
•
Episode 107
•
37:48
(Replay) DNS Security
In our "DNS Security" podcast, we delve into DNS's critical role in how the internet works, exploring its vulnerabilities and attacks like DNS spoofing, cache poisoning, and DDoS. We discuss DNSSEC and its components, including public and priva...
September 04, 2024
•
31:12
Episode 106: An Overview of Cyber Risk
Let's talk about cyber risk classification in this episode of The Cyber Threat Perspective. Brad and Tyler provide a high-level overview of various types of cyber risk encountered in penetration testing.-Reputational Risk
August 28, 2024
•
Season 1
•
Episode 106
•
27:52
Episode 105: How to Monitor Your Attack Surface
In this episode Brad and Spencer discuss Attack Surface Monitoring, what it is, and why it's important for defending against cyber-attacks. They give into the difference between attack vectors and attack surface and share a high-level overview ...
August 21, 2024
•
Season 1
•
Episode 105
•
35:12
Episode 104: How To Get Into Cyber For First Responders
In this episode, Spencer has Sam Killingsworth on the show to talk about getting into cybersecurity, specifically penetration testing, coming from a first responder background. Sam is currently a full-time Firefighter/EMT and part-time penetrat...
August 14, 2024
•
Season 1
•
Episode 104
•
32:41
Episode 103: Email Spoofing
In this episode, Spencer and Brad dive into the complex maze of 3rd party email providers, filtering and spoofing. Email spoofing is a technique used by cybercriminals to disguise the sender's address in an email message, making it appear as th...
August 07, 2024
•
Season 1
•
Episode 103
•
27:10
Episode 102: The Global CrowdStrike Outage
In this episode, Spencer is joined by Joey Vandergrift (SecurIT360's VP of Security Operations) and Mark Brophy (SecurIT360's DFIR practice lead). Together they discuss how CrowdStrike, a leading EDR product, caused one of the largest global IT...
July 31, 2024
•
Season 1
•
Episode 102
•
48:30
Episode 101: Infostealers - 10,000 Victims a Day
In this episode, Spencer and Brad dive into the deep underworld of infostealer malware. They discuss what infostealers are, how they are used and what they are used for. They will dig into how the information obtained from infostealers can help...
July 24, 2024
•
Season 1
•
Episode 101
•
38:11
(Replay) How We Hack Medical Devices To Save Lives
Discover the vulnerabilities lurking within medical devices and how ethical hacking can safeguard patient care. Join Brad, VP of Offensive Security at SecurIT360, as he unpacks the risks and protections against cyber threats in healthcare tech....
July 17, 2024
•
36:12
Episode 100: The OpenSSH RegreSSHion Vulnerability
In this episode, Spencer and Brad discuss the OpenSSH "regreSSHion" vulnerability. This is being tracked as CVE-2024-6409 & CVE-2024-6387. A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race cond...
July 10, 2024
•
Season 1
•
Episode 100
•
27:14
Episode 99: Tool Time - OneDriveEnum & AD Miner
In this episode, Spencer and Tyler discuss two of their current favorite tools: OneDriveEnum for enumerating user accounts in Microsoft 365 and AD Miner for visualizing attack paths in Active Directory. We hope you enjoy and get value from this...
July 03, 2024
•
Season 1
•
Episode 99
•
37:05
Episode 98: Current State of M365 Attacks: Initial Access
In this episode, we discuss the latest trends and techniques for enumerating Microsoft 365. We break down how attackers may identify M365 tenants, how they discover and validate accounts and what you as an IT admin can do to protect your organi...
June 26, 2024
•
Season 1
•
Episode 98
•
27:01
Episode 97: Current State of M365 Attacks: Enumeration
In this episode, we discuss the latest trends and techniques for enumerating Microsoft 365. We break down how attackers may identify M365 tenants, how they discover and validate accounts and what you as an IT admin can do to protect your organi...
June 19, 2024
•
Season 1
•
Episode 97
•
26:18
Episode 96: How to Harden Active Directory to Prevent Cyber Attacks
This is a recording of a webinar aimed at IT professionals, system administrators, and cybersecurity professionals eager to bolster their defenses against cyber threats. In this session, "How to Harden Active Directory to Prevent Cyber Attacks,...
June 12, 2024
•
Season 1
•
Episode 96
•
1:21:40
Episode 95: Navigating the Legal Maze of Cybersecurity with Alexander Boyd
In this episode, Alex Boyd joins Spencer and Brad. Alex is a shareholder in Polsinelli's national Technology Transactions and Data Privacy practice, shares crucial insights for CTOs, IT Directors, CISOs, Security Managers when responding to sec...
June 05, 2024
•
Season 1
•
Episode 95
•
50:20
Episode 94: Defending Against Ransomware Part 2
In this episode, Brad and Spencer discuss the preparation stage of defending against ransomware. As we know, the time to have a plan is before you enter the woods and cybersecurity is no different.
May 29, 2024
•
Season 1
•
Episode 94
•
54:09
Episode 93: Defending Against Ransomware Part 1
In this episode, Brad and Spencer discuss the preparation stage of defending against ransomware. As we know, the time to have a plan is before you enter the woods and cybersecurity is no different.
May 22, 2024
•
Season 1
•
Episode 93
•
28:45
Episode 92: Cybersecurity Training and Certification Advice
In this episode, Spencer and Darrius share their expertise on navigating the world of cybersecurity training and certification. With decades of experience and numerous certifications, they provide valuable insights, tips, and personal stories t...
May 15, 2024
•
Season 1
•
Episode 92
•
34:32
Episode 91: The 2024 Verizon Data Breach Investigations Report
In this episode, Spencer and Brad discuss the highly respected 2024 Verizon Data Breach Investigations Report (DBIR), a data-driven analysis of cyberattacks and data breaches from around the world. Tune in to discover the latest global trends a...
May 08, 2024
•
Season 1
•
Episode 91
•
42:19
Episode 90: Transforming Your Security - Insights from Coaching a Collegiate Cyber Defense Team
In this episode Spencer chats with Mark Brophy (of SecurIT360) to discuss his background and experience with coaching a collegiate cyber defense team and how many of those lessons learned from defending against expert red team operators transla...
May 01, 2024
•
Season 1
•
Episode 90
•
44:38
Episode 89: How to Actually Protect Credentials
In this episode, Spencer and Darrius break down the complexities of credential protection, discussing everything from user education and tools to threat modeling and guardrails. Plus, we delve into the world of protecting credentials within scr...
April 24, 2024
•
Season 1
•
Episode 89
•
43:31
Episode 88: Budgeting for Security: Optimizing Penetration Testing Investments
Get into the dynamic world of penetration testing with Episode 88 of The Cyber Threat Perspective. Hosts Brad and Tyler discuss how to plan for penetration testing from both a budgeting and success perspective.• How to budg...
April 17, 2024
•
Season 1
•
Episode 88
•
25:15
Episode 87: Pentesting Challenges and How to Overcome Them
In this episode, Spencer and Tyler dive into the common challenges, struggles and obstacles a pentester may face in their career and they offer advice for dealing with and overcoming those hurdles. Thank you for listening! We hope this episode ...
April 10, 2024
•
Season 1
•
Episode 87
•
57:33