Threat Talks

Breaking the Illusion: Exposing Security Fallacies

Breaking the Illusion: Exposing Security Fallacies

Find this Threat Talk onExposing Security Fallacies Breaking the Illusion: Confronting Cybersecurity’s Biggest Fallacies Are we truly protecting ourselves from cyber threats, or are we blinded by outdated security practices? In this episode of Threat Talks, ON2IT’s...

Hack the Boat

Hack the Boat

Find Threat Talks onHack the Boat Explore the cutting-edge of maritime cybersecurity Imagine you're the captain of a massive ship, cruising through open waters at full speed. Suddenly, something feels off... Are you veering off course? But your monitors show...

Bridging the Gap: Security and Compliance

Bridging the Gap: Security and Compliance

Find Threat Talks onBridging the Gap What’s more important: compliance or cybersecurity? Explore the often-overlooked operational gap between compliance and actual security in episode #33 of Threat Talks. While many organizations focus on meeting compliance standards,...

The Evolution of Cyber Warfare

The Evolution of Cyber Warfare

Find Threat Talks onThe Evolution of Cyber Warfare Advanced Threat Intelligence helps you know your enemy. Explore the hidden world of cyber warfare and Advanced Persistent Threats (APT's) with Threat Intel Specialist Luca Cipriano and special guest Cyber Security...

Breaking the Bank

Breaking the Bank

Breaking the bank Financial sector cybersecurity threatsIn this episode, special guest and renowned cybersecurity expert Jayson E. Street shares his experiences on how he ethically "robs" banks to reveal security weaknesses. By exploiting human vulnerabilities rather...

Threat Talks on Tour – Cyber Guardians: Anti-DDoS Coalition

Threat Talks on Tour – Cyber Guardians: Anti-DDoS Coalition

Cyber Guardians: Anti-DDoS Coalition This special episode is a discussion on the importance of defending against DDoS attacks, particularly for businesses that rely on online tools and websites. The host, Lieuwe Jan Koning from ON2IT and special guests Remco Poortinga...

Zero Trust with John Kindervag – Threat Talks on tour: Part 2

Zero Trust with John Kindervag – Threat Talks on tour: Part 2

Threat Talks on Tour - Live from the RSA | Part 2 Zero Trust with John Kindervag   Lieuwe Jan Koning, speaking from the RSA Conference in San Francisco, welcomes John Kindervag to delve into the concept of Zero Trust in cybersecurity. This episode is a sequel to...

Healthcare: Responsibilities, regulations and legacies

Healthcare: Responsibilities, regulations and legacies

Listen to The Threat Talks on:Your cybersecurity expertsLieuwe Jan Koning Co-Founder and CTO, ON2ITRob Maas Field CTO, ON2ITSina Yazdanmehr Founder and Managing Director, Aplite GmbHHealthcare: Responsibilities, regulations and legacies The episode discusses the...

Supply Chain: Business as usual?

Supply Chain: Business as usual?

Listen to The Threat Talks on:Your cybersecurity expertsLieuwe Jan Koning Co-Founder and CTO ON2ITLuca Cipriano Threat Intel Specialist ON2ITMatthijs Zwart CIO and CISO Vitens Supply chain: Business as usual?  As reliance on third-party and open-source software grows,...

The Authentication Apocalypse

The Authentication Apocalypse

Your cybersecurity expertsLieuwe Jan Koning Co-Founder and CTO, ON2ITLuca Cipriano Threat Intel Specialist, ON2ITHarald Bosman Senior Endpoint Engineer, AMS-IXThe Authentication Apocalypse Word of data breaches and stolen credentials reaches the news almost every...

Deep Dives

UNIX CUPS Remote Code Execution

UNIX CUPS Remote Code Execution

UNIX CUPS Remote Code Execution The Fallacy of Default Trust "Hello! I'm a Printer! Please Let Me In, thank you!" – It may sound absurd, but this is how attackers can trick your...

XZ Utils Critical Backdoor (CVE- 2024-3094)

XZ Utils Critical Backdoor (CVE- 2024-3094)

XZ Utils Critical Backdoor The Fallacy of Secure Open Source Code How much time would you spend on executing the perfect hack? The user going by the name of ‘JIAT75’ spent almost...

Deep Dive – CrowdStrike auto-update disaster

Deep Dive – CrowdStrike auto-update disaster

CrowdStrike Auto-Update Disaster The Fallacy of automatic updates Last July’s CrowdStrike outage led to closed airports, inaccessible bank accounts and hospitals that were only...

Deep Dive – Binance Exchange Hack

Deep Dive – Binance Exchange Hack

Binance BNB Exchange Hack The Binance BNB Chain Attack – A Deep Dive Into Crypto Vulnerabilities Imagine creating millions in cryptocurrency without spending a cent. In this...

Deep Dive – Ballast System Hack

Deep Dive – Ballast System Hack

Ballast System Hack Ever been asked to hack a boat? When Luca Cipriano and Jeroen Scheerder were given the challenge, they took an unexpected approach—step one: build the boat...

Deep Dive – Securing AIS

Deep Dive – Securing AIS

Securing AIS AIS (Advanced Identification System) is an incredibly important tool in maritime navigation, allowing ships to transmit their location and data to other vessels and...

Deep Dive – HTTP/2 Rapid Reset Attack

Deep Dive – HTTP/2 Rapid Reset Attack

HTTPS/2 Rapid Reset DDoS method Flooding targeted servers and websites The HTTP/2 Rapid Reset attack is a powerful new DDoS method that exploits weaknesses in the HTTP/2...

Deep Dive – Capital One Data Breach

Deep Dive – Capital One Data Breach

Capital One Data Breach Compliance-induced false sense of security Capital One—a leader in finance—learned the hard way that even compliant systems can fail if they’re not...

Deep Dive – OKTA Data Breach

Deep Dive – OKTA Data Breach

OKTA Data Breach Even security providers aren’t immune How does a company specializing in Identity and Access Management like OKTA suffer a data breach? In this case, a service...

Deep Dive – APT Sand Eagle

Deep Dive – APT Sand Eagle

Find Threat Talks onAdvanced Persistent Threat Sand Eagle ‘Sand Eagle’ made headlines 📰 for its ability to infiltrate some of the most secure devices on the market—iPhones 📱 used...

Deep Dive – Russia GRU Viasat Hack

Deep Dive – Russia GRU Viasat Hack

Find Threat Talks onRussia GRU Viasat Hack Ethan Hunt is known for doing the impossible. Mostly by blowing things up with his team. What if he and his team spoke Russian and on...