Coffee Talk with SURGe

Join us as we kick off our new bi-weekly 1-1 interview series, starting with Sergio Caltagirone. Sergio was formerly at NSA, Director of Threat Intelligence at Microsoft, VP of Threat Intelligence at Dragos, Technical Director of the Global Emancipation Network, now the founder and president of the Threat Intelligence Academy, and of course, co-author of The Diamond Model. 
We will talk about all the things threat intelligence, thought models, and probably a solid side of snark.
Links:
Episode livestream
ChrisSanders.org
Read the Cuckoos Egg
Sergio's new adventure!

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Kirsty Paine for another episode of Coffee Talk with SURGe. You can watch the episode livestream here.
The team from Splunk will discuss the latest security news, including: 
- Biden administration releases U.S. National Cybersecurity Strategy 
-PoC exploit for recently patched Microsoft Word RCE is public (CVE-2023-21716)
-Ransomware moving into extortion of health data

Grab a cup of coffee and join David Bianco, Shannon Davis, and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: 
- Twitter plans to remove access to SMS 2FA for non-subscribing usershttps://blog.twitter.com/en_us/topics/product/2023/an-update-on-two-factor-authentication-using-sms-on-twitter
- Google TAG, Mandiant, and Google Trust & Safety release a report analyzing how the war in Ukraine has impacted the cyber threat landscapehttps://blog.google/threat-analysis-group/fog-of-war-how-the-ukraine-conflict-transformed-the-cyber-threat-landscape/
David Bianco and Shannon Davis also competed in a charity challenge comparing the pros and cons of the Pyramid of Pain, a conceptual model created by David to order Indicators of Compromise (IoCs) by the level of difficulty it will cause for an adversary to change the indicators associated with them.https://detect-respond.blogspot.com/2013/03/the-pyramid-of-pain.html
 

Grab a cup of coffee and join Ryan Kovar, Audra Streetman, and special guest David Bianco for another episode of Coffee Talk with SURGe. You can watch the episode livestream here.
 
The team from Splunk will discuss the latest security news, including: 
- VMware warns admins to patch ESXi servers, disable OpenSLP service
- LockBit ransomware group threatens Royal Mail with data leak deadline
- Russia-backed hacker group Gamaredon attacking Ukraine with info-stealing malware
David and Ryan also competed in a 60 second charity challenge to share their take on Netflix's anticipated crackdown on password sharing. The trio also discussed Google's Bard AI chatbot, which was introduced as a competitor to ChatGPT.

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here.
 
The team from Splunk will discuss the latest security news, including: 
- Ticketmaster says a cyberattack disrupted Taylor Swift ticket sales
- Apple iOS 16.3 arrives with support for hardware security keys
- Ukraine signs an agreement to join the NATO cyber defense center
- Google will stop exempting campaign email from automated spam detection
Mick and Ryan also competed in a 60 second charity challenge to explain how cognitive biases can negatively impact cyber threat intelligence assessments.

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here.
The team from Splunk will discuss the latest security news, including:
- LastPass, Slack, and CircleCI notify customers of security incidents.
- Chick-fil-A investigates reports of hacked customer accounts
- CyberScoop reports: Insiders worry CISA is too distracted from critical cyber mission 
Mick and Ryan competed in a 60 second charity challenge to share their opinion of ChatGPT and its impact on the cybersecurity industry. The team also discussed some of the major security headlines from 2022.

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Kirsty Paine for a special episode of Coffee Talk with SURGe, live in Washington, DC for GovSummit. You can watch the episode livestream here. 
 
The team from Splunk will discuss the latest security news, including:
- NIS2 is coming… What does it mean?
- NDAA requires intelligence agencies to study creation of cyber collaboration program
- Exercise Crossed Swords 2022 Kicks Off!
The episode also features a special GovSummit segment featuring Splunk CEO Gary Steele and Juliana Vida, Splunk's Chief Technical Advisor for the public sector.

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here. 
 
The team from Splunk will discuss the latest security news, including:
- ESET Research identifies a wave of ransomware attacks targeting organizations in Ukraine that they're calling #RansomBoggs- Cincinnati State College is added to Vice Society's leak site
- Iranian Hackers use Log4Shell to mine crypto on a US Federal computer system
- The extortion site used in the Medibank attack goes offline after the Australian government pledges 'offensive' actions
Mick and Ryan competed in a 60 second charity challenge about network surveillance. The group also discussed the possibility of Twitter implementing end-to-end encrypted messaging on the platform.

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here. 
 
The team from Splunk will discuss the latest security news, including:
- CISA reminds voters that there is no credible threat to voting equipment for the U.S. midterm elections.
- Splunk released a blog last week about the OpenSSL vulnerabilities, which were downgraded from critical to high severity.
- Medibank says it will not pay the ransom after data for 9.7 million customers was compromised. 
- Azov ransomware is observed destroying data instead of encrypting it.
- The White House creates an International Counter Ransomware Task Force following a two-day summit. 
Mick and Audra also competes in a 60 second charity challenge to share their takes on a proposal from the Red Cross to create digital emblems to deter cyberattacks during conflict targeting systems belonging to hospitals and humanitarian organizations.

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here. 
 
The team from Splunk will discuss the latest security news, including: 
- The DOJ announces charges against two Chinese intelligence officers accused of trying to subvert a U.S. criminal investigation involving a China-based telecom. 
- The FTC is taking action against Drizly, an online alcohol delivery service, for failing to take steps to protect consumer data.- Why Text4Shell is not a Log4Shell-scale vulnerability.
Mick and Ryan competed in a 60 second charity challenge to share their take on the issue of victim-blaming for phishing attacks. The episode ends with a deep dive on cyber threats ahead of the U.S. midterm elections on Nov. 8.