Episode 19 - Dressed for Success in Cyber with Ashley Tolbert

This episode of the Hacker Valley Studio podcast features Jon DiMaggio, a Senior Threat Intelligence Analyst at Symantec.  Jon is a researcher and longtime bad guy chaser, and Ron and Chris fill this installment of Hacker Valley Blue with Jon’s thoughts on ransomware, threat research, attribution, and more! Jon introduces himself to listeners who may not yet know much about him, explaining that he started his career as an engineer and that his work for the government in the early 2000s forced him to focus a lot on defending against nation-state attacks.  He developed into an expert in the field, and transitioned about 13-14 years ago into his current line of work.  He now teaches alongside his work as an analyst, and he moved from a government position to Symantec in 2014.  Jon’s specialty is still nation-state, but he has also ventured into enterprise ransomware.  He shares about these areas of specialization with Ron and Chris, detailing what a nation-state is and how to combat it within the context of threat intelligence, and addressing the economics of ransomware. As the conversation continues, Ron and Chris raise a variety of other topics for Jon to address.  Jon considers the threat of a future major worm attack, and provides listeners with insight on how to become established in his line of work.  There are a lot of available resources that people can use to develop their own skills and increase their visibility.  However, becoming a government hacker, and so having an offensive rather than a defensive role, is much more challenging.  Moving toward the conclusion of the conversation, Jon offers tips on navigating attribution and bias (such as being sure to have evidence before making public claims!), explains how he mentally organizes and recalls information, and speaks to the nature of strong communication.   1:41 - Listeners are introduced to Jon DiMaggio and the episode before Jon explains his background.. 5:04 - The first major topic Jon shares about is that of nation-states, specifically speaking to the work of  combating nation-state attackers. 12:57 - The conversation turns to the economics of ransomware. 18:39 - What are Jon’s thoughts on the possibility of another major worm attack? 20:26 - Jon is asked about how people can enter his field or that of hacking. 24:54 - How should listeners approach attribution and bias, and how has Jon navigated bias in his own life? 31:31 - The group considers Jon’s mental organization, his recall of information, and the topic of communication.   Links: Learn more about Hacker Valley Studio Support Hacker Valley Studio on Patreon Follow Hacker Valley Studio on Twitter Follow Ronald Eddings on Twitter Follow Chris Cochran on Twitter Access the recent work and research on Symantec’s threat intelligence feed Learn more about the episode sponsor, RiskIQ

1 Syys 202040min

In this episode of the Hacker Valley Studio podcast, hosts Ron and Chris welcome Valentina Palacín for the third episode in the Hacker Valley Blue series.  Valentina is a threat hunter who used to work as a translator, and she is currently a senior cyber threat intelligence analyst.  She joins Ron and Chris to talk about her background in languages, poetry and the impact of words, and much more. As the conversation gets underway, Valentina explains her background to listeners.  She studied translation before starting her career in that field, but transitioned to information technology about two years ago.  In her free time, she researches threat hunting in her home country of Argentina.  It was challenging for Valentina to change her career path, since she had no background in computer science, but she took multiple steps - working in web development, learning to do programming, taking courses, and more - ultimately becoming a threat intel analyst and speaker.  Though the journey was difficult, Valentina feels she was born to work in her current field, and has found her past experience, including knowledge of over 7 languages, to be helpful in her work. The episode also features Valentina’s insights into threat intelligence.  She and her hosts discuss how knowledge of programming can aid a threat intel analyst, Valentina’s philosophy of MITRE, the relationship between intelligence and threat hunting, and how to keep up with changes in the field.  They arrive at the conclusion that, while it is helpful to stay up to date on political and cyber news, analysts must realize that they cannot know everything, and people in general must realize that threat intelligence is not a catch-all.  The group bridges the gap between personal and professional aspects of life by talking about the importance of hobbies outside of work; most notably, the group addresses poetry and its usefulness for threat intelligence.  Finally, the conversation turns to Valentina’s work with BlueSpace Security. 1:38 - Listeners are introduced to Valentina, her background, and her challenging process to enter into the large intel community in Argentina . 5:24 - Did knowledge of language impact Valentina’s threat intelligence work? 7:55 - Valentina shares about her programming experience and details her journey into threat intel. 14:23 - What are Valentina’s thoughts about MITRE and the relation between intelligence and threat hunting? 18:06 - The group considers how to keep up with changes in the field, and acknowledges that threat intelligence will not catch everything. 22:48 - One thing that Valentina is passionate about pursuing is hobbies outside of work. 27:56 - Does poetry help with threat intelligence work? 32:53 - The conversation turns to Valentina’s community, focusing on BlueSpace Security.   Links: Learn more about Hacker Valley Studio Support Hacker Valley Studio on Patreon Follow Hacker Valley Studio on Twitter Follow Ronald Eddings on Twitter Follow Chris Cochran on Twitter Connect with Valentina Palacín on Twitter Connect with Valentina on LinkedIn Learn more about the episode sponsor, RiskIQ

1 Syys 202036min

Fan-favorite Jack Rhysider of the Darknet Diaries podcast joins Hacker Valley Studio hosts Ron and Chris for the second episode of Hacker Valley Blue! Jack joins the show again during an ideal season - one focused on threat intelligence - and this episode will focus on Jack’s past in the field of threat intelligence, as well as on a major issue faced daily by analysts in the field: that of managing bias. As the conversation begins, the group focuses on threat intelligence and Jack’s work in the field.  Jack has been pouring himself into his own podcast, leaning into the fact that threat intelligence is a form of knowing what has happened in the past by his sharing of stories.  Jack explains what has surprised him recently in his work, how he maintains a sharp sense of focus, and what sort of continuity he sees between the news-sharing of his current role and a more formal practitioner role within the field of threat intelligence.  Jack’s podcast work necessitates practical skill in his field, and demands an ability to share complex concepts through simple expression. The work also necessitates strong skills of managing bias, and it is to this topic that the group turns.  Jack makes a practice of putting aside negative personal feelings about a person and looking for areas of agreement with the individual.  This practice, along with his feedback loop and his efforts to listen to actual voices, help Jack to tell both sides of the stories he shares.  In discussing the counteraction of bias, Jack touches on concepts of assumptions, bias toward self, empathy, and humanization.   And as the conversation winds toward a close, listeners will hear about Jack’s use of audio books, balancing fact and listener interest, appealing to different audiences, and navigating questions of personal privacy.  1:40 - Listeners are introduced to Jack and the episode ahead. 4:13 - How is Jack currently thinking about storytelling? 8:40 - The group dives into some topics related to Jack’s work: his focus and need for practical skill. 12:37 - The conversation turns to the subject of bias. 28:28 - What is Jack doing for research today, and how does he navigate technical questions of storytelling? 36:35 - Finally, Jack and his hosts turn to considerations of personal privacy.   Links: Learn more about Hacker Valley Studio Support Hacker Valley Studio on Patreon Follow Hacker Valley Studio on Twitter Follow Ronald Eddings on Twitter Follow Chris Cochran on Twitter Learn more about Jack Rhysider Follow Jack on Twitter Learn more about Darknet Diaries Learn more about the episode sponsor, RiskIQ

1 Syys 202045min

Hosts Ron and Chris welcome you to today’s episode! This episode of Hacker Valley Studio is the start of a new season, Hacker Valley Blue, a series dedicated to threat intelligence, exclusively for listeners. The episode begins with Ron and Chris sharing their backgrounds in threat intelligence and cybersecurity. Chris picked intelligence as his job field in the United States Marine Corps, and eventually went on to The National Security Agency and United States Cyber Command. He focused on the how, who, and what of all the cyber-attacks happening at the time. Chris then went on to create his own company, and do consulting work in threat intelligence for over a decade. Ron has always had an interest in cybersecurity, and at 16 he found a mentor who took him under his wing in the trade. After a couple of years working in offensive attacks, he transitioned to a job building intelligence tools that dealt with threat data. While Chris focused more on the operational side of threat intelligence, Ron’s was more technical, and their experience converged well. Throughout the rest of the episode, you will hear about what threat intelligence can do for businesses. Ron and Chris discuss how analysts can build rapport with the employees and stakeholders using their intelligence, and what questions companies should ask of analysts for the best results. They do this by walking listeners through Chris’ EASY framework. 1:07 - The new season of Hacker Valley Blue is introduced. 3:43 - Chris shares his background in intelligence. 6:15 - Ron shares his background in intelligence 11:43 - What can threat intelligence do for an organization? 17:50 - The EASY Framework 18:41 - Elicit Requirements 21:40 - Asses Collection Plan 26:03 - Strive for Impact 30:24 - Yield the Feedback Links: Learn more about Hacker Valley Studio Support Hacker Valley Studio on Patreon Follow Hacker Valley Studio on Twitter Follow Ronald Eddings on Twitter Follow Chris Cochran on Twitter Learn more about the episode sponsor, RiskIQ

1 Syys 202041min

Hosts Ron and Chris welcome you to today’s episode! This episode of Hacker Valley Studio features Brian Romansky, the Chief Innovation Officer at Owl Cyber Defense. You will hear about his ideas, inventions, and how hardware is helping us in cybersecurity today.   The episode begins with Brian sharing his background, and journey into the cybersecurity space. He always knew he wanted to do something with technology and thought he may go into robotics. The transition into the cyber world was a natural one when he was working on a team that was moving mechanical postage metering to happen electronically. These machines were often trying to be hacked, and the team also began working on e-commerce and shipping platforms. From then, he continued to work on cybersecurity, data, and cryptography.   Today, at Owl Cyber Defense Brian works on cross domain solutions for the US Department of Defense, and other government organizations, as well as commercial customers. It gets him up in the morning because it combines many of the electrical and cryptography space that interests him, with hardware. His hope for the future, is that there is a paradigm shift in cybersecurity, making it less of a cat and mouse game by using hardware enforced mechanisms.   He doesn’t have a lot of free time, but as the episode wraps up, you will also hear about what Brian is interested in, and working on outside of work.   :29 CIO of Owl Cyber Defense, Brian Romansky is introduced to the show. 4:33 Brian shares his journey from electrical engineering to cybersecurity. 6:25 Brian explains the work he does today. 14:16 Brian hypothosizes on the future of cybersecurity 16:58 Brian answers the question “Is there an unhackable system?” 19:55 Advice for organizations relying more on technology during work from home. 27:48 What does Brian do outside of work?   Links: Learn more about Owl Cyber Defense Learn more about Brian Romansky Learn more about Hacker Valley Studio Support Hacker Valley Studio on Patreon Follow Hacker Valley Studio on Twitter Follow Ronald Eddings on Twitter Follow Chris Cochran on Twitter

24 Elo 202030min

Security and Privacy Expert and author, Christopher Budd, is welcomed to the Hacker Valley Studio podcast! You will hear some great communication tips and how to handle people who fear worst case scenarios during a crisis. He explains how to showcase your authority and credibility during a tough situation. He talks about traits that make someone great at handling these situations, the importance of temperament, and improvisation. In this episode, Christopher Budd shares his journey to becoming an expert in crisis communication. He spent ten years with the Microsoft Security Response Center. He has worked with other security and technology companies as a consultant and full-time employee. He says, “...and if I can sum up what it is I do best, I always say, I take awful news and make it just bad.” Christopher gives some examples of his communication approach. 1) He says he is upfront about news being bad news. He recommends getting credibility by leading with the truth. 2) He then explains reasons why it is a bad situation. 3) Finally, he explains reasons why the situation could be better than you think it might be. He explains that you are not only dealing with the situation itself but also peoples’ fears and projections of the situation. Christopher talks about different personality types and how they handle crisis management. He explains the importance of temperament, the ability to compartmentalize, and thinking about action steps. As the episode draws to a close, Christopher shares some of his thoughts on the workplace today and some of the changes in the COVID environment. He elaborates on topics like privacy and communication. He highlights how technology has allowed us to function as well as it has in the past few months. Links: Learn more about Hacker Valley Studio Support Hacker Valley Studio on Patreon Follow Hacker Valley Studio on Twitter Follow Ronald Eddings on Twitter Follow Chris Cochran on Twitter Follow Christopher Budd on Twitter Learn more about Christopher Budd Check out christopherbudd.com You can reach out to Christopher Budd at unimaginativelychristopher@christopherbudd.com Learn more about the MSRC Christopher Budd is published in Great Thinkers A-Z

18 Elo 202032min

In this episode of the Hacker Valley Studio podcast, hosts Ron and Chris speak with 25-year cybersecurity veteran Chris Kennedy.  Chris is the Chief Information Security Officer and the VP of Customer Success for AttackIQ, and he and the hosts discuss various topics related to cybersecurity and Chris’s background, with special focus on the MITRE ATT&CK framework The beginning of the episode centers on Chris Kennedy himself, as he provides background information on both himself and his company.  Chris’s career took many turns preparing him for his current role, with a few especially remarkable highlights: he was one of the first cybersecurity officers in the Marine Corps, worked for the world’s largest hedge fund, and was basically one of the first CISO's in tech.  As an executive, he saw how much he depended on the ecosystem of security tech, and he also saw how unreliable this technology was.  This realization paved the way for his move to AttackIQ.   Links: Learn more about Chris Kennedy and contact him at chris.kennedy@attackiq.com. Learn more about AttackIQ. Learn more about AttackIQ’s Academy. Learn more about MITRE ATT&CK. Learn more about MITRE ENGENUITY’s Center for Threat-Informed Defense. Learn more about Hacker Valley Studio. Support Hacker Valley Studio on Patreon. Follow Hacker Valley Studio on Twitter. Follow hosts Ron Eddings and Chris Cochran on Twitter.

9 Elo 202036min

In this very special episode, we brought back fan favorite Laura Garnett a world-renowned performance strategist, to examine us to see what makes us special. We finds our purpose, our power, and our core emotional conflict in less than an hour! You really see a master at work in this one.   Laura's Website: https://www.lauragarnett.com/ Laura's LinkedIn: https://www.linkedin.com/in/lauragarnett/ Laura's Twitter: https://twitter.com/garnettl

3 Elo 202059min