Autonomous IT, Live! Inside the Breach — Identity Hijack Response Exercise, E04
Autonomous IT17 Jul 2025

Autonomous IT, Live! Inside the Breach — Identity Hijack Response Exercise, E04

In this special live episode of Autonomous IT, Live! we walk through a high-stakes incident response drill that mimics a disturbingly realistic threat scenario: an attacker gains access to your internal tools — not by breaking in, but by logging in.

Here's the setup: a user unknowingly reuses compromised credentials with the company’s SSO provider. An attacker logs in, flies under the radar, and impersonates internal IT support using Slack, email, and calendar invites. Their goal? Convince employees to install a fake remote access tool—all while avoiding anyone likely to report suspicious behavior.

Join Landon Miles, Tom Bowyer, and Ryan Braunstein as they:

  • 🔍 Investigate a suspicious login and Slack impersonation
  • 🔐 Contain and remediate the breach using real-world tactics and tools
  • 📉 Discuss phishing-resistant MFA, endpoint visibility, Slack impersonation risks, and more
  • 🧠 Share tips on improving security awareness, incident playbooks, and interdepartmental collaboration
  • 💬 Answer live audience questions about malware analysis, EDR response, and building detection rules

Whether you’re a security veteran or just starting out in IT, this episode offers an unfiltered look at how to respond when credentials are compromised and attackers act like insiders.

📎 Bonus: We also include a downloadable Incident Response Checklist to help your team run your own tabletop exercise.

🛡️ Because in today’s world, attackers don’t need to break in—they just need to log in.

Denne episoden er hentet fra en åpen RSS-feed og er ikke publisert av Podme. Den kan derfor inneholde annonser.

Episoder(220)

Patch [FIX] Tuesday – [AI Hits the Hat Trick], Ep. 32

Patch [FIX] Tuesday – [AI Hits the Hat Trick], Ep. 32

The May 2026 Microsoft Patch Tuesday release looks quiet on the surface – no actively exploited zero-days, no public disclosures at release, and a CVE count below the four-month average. Don't let tha...

12 Mai 34min

Patch [FIX] Tuesday – [Emergency Episode: DirtyFrag Exploit Before Patch], Ep. 31

Patch [FIX] Tuesday – [Emergency Episode: DirtyFrag Exploit Before Patch], Ep. 31

Breaking from the normal Patch Tuesday cadence for an emergency drop. On May 7, security researcher Hyunwoo Kim published a working proof-of-concept for DirtyFrag - a Linux kernel local privilege esca...

8 Mai 10min

Autonomous IT, Live! The Math of Modern Attacks, E07

Autonomous IT, Live! The Math of Modern Attacks, E07

In this episode of Autonomous IT, Live!, we break down the widening gap between exploitation speed and remediation reality. Disclosed vulnerabilities keep climbing, exploitation windows keep shrinking...

28 Apr 33min

Secure IT – Claude Mythos: AI Vulnerability Hype vs. Evidence, E23

Secure IT – Claude Mythos: AI Vulnerability Hype vs. Evidence, E23

Claude Mythos dominated the AI security conversation for two weeks straight, from the Cloud Security Alliance's strategy briefing to sharp public skepticism to yesterday's Bloomberg report that unauth...

23 Apr 7min

Patch [FIX] Tuesday – April 2026 [Double Feature: SQL Another Day + XSS Never Dies], E30

Patch [FIX] Tuesday – April 2026 [Double Feature: SQL Another Day + XSS Never Dies], E30

This month's Patch Tuesday drops a SQL Server elevation of privilege that hands attackers sysadmin access and an actively exploited SharePoint XSS flaw that requires no authentication. SQL injection i...

14 Apr 8min

Automox Insiders – The Magic of Automox: Emily Pace on Building Smarter IT Tools, E11

Automox Insiders – The Magic of Automox: Emily Pace on Building Smarter IT Tools, E11

In this episode of IT Insiders, Maddie Regis speaks with Emily Pace, a Senior Product Manager at Automox. Emily shares her career journey, her role in product management, and the collaborative environ...

9 Apr 14min

Product Talk – From Click to Fix: Bringing Automox Actions to Zendesk, E25

Product Talk – From Click to Fix: Bringing Automox Actions to Zendesk, E25

What if your IT team could troubleshoot and remediate endpoint issues without ever leaving their service desk? In this episode, Steph Rizzuto and Katherine Chipdey break down the new Automox + Zendesk...

2 Apr 19min

Automox Insiders – Tidy Endpoints, Tidy Mind: Spring Cleaning with Adam Whitman, E17

Automox Insiders – Tidy Endpoints, Tidy Mind: Spring Cleaning with Adam Whitman, E17

In this episode of Automox Insiders, host Maddie Regis chats with Adam Whitman, Manager of Solutions Engineering at Automox, about all things IT spring cleaning. From patch management and software aud...

31 Mar 13min

Populært innen Politikk og nyheter

giver-og-gjengen-vg
aftenpodden
aftenpodden-usa
forklart
stopp-verden
fotballpodden-2
popradet
nokon-ma-ga
rss-espen-lee-usensurert
rss-gukild-johaug
lydartikler-fra-aftenposten
aftenbla-bla
rss-ness
dine-penger-pengeradet
hanna-de-heldige
det-store-bildet
e24-podden
chit-chat-med-helle
rss-dannet-uten-piano
frokostshowet-pa-p5