Join Ryan Kovar and special guest Kirsty Paine, Field CTO and Strategic Advisor at Splunk, for a conversation about her career in cybersecurity, including with her work on technical standards and emerging technologies, including artificial intelligence, IoT, and quantum computing. 

Links:  - Cryptographically Relevant Quantum Computers (CRQCs) & The Quantum Threat  - Quantum-Safe Cryptography & Standards: QSC, PQC, QKD & More! - The Quantum Threat: Options for Migrating to Quantum Safe Cryptography  - Kirsty’s Blog Posts - Cyber Security for Consumer Internet of Things (ETSI EN 303 645) - Indicators of Compromise (IoCs) and Their Role in Attack Defence (RFC 9424)

Grab a cup of coffee and join Mick Baccio, Katie Brown and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: 

- Ukraine’s top mobile internet company is down, blames Russian cyberattack - IRGC-Affiliated Cyber Actors Exploit PLCs in Multiple Sectors, Including U.S. Water and Wastewater Systems Facilities - North Korean hackers using Log4J vulnerability in global campaign

Audra and Katie also competed in a charity challenge to share what they consider to be the largest cyber incident of 2023. 

Join Shannon Davis and special guest Patrick Gray, host of the Risky Biz podcast, for a discussion about Patrick's cybersecurity reporting career and the work behind the scenes to produce each episode. You can listen to Risky Biz at risky.biz or wherever you get your podcasts. 

Grab a cup of coffee and join Mick Baccio, Ryan Kovar and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: 

- RCE in Progress WS_FTP Ad Hoc via IIS HTTP Modules (CVE-2023-40044)

- Exim patches three of six zero-day bugs disclosed last week

- Exploit released for Microsoft SharePoint Server auth bypass flaw

- Developments in ChatGPT capabilities 

- Tom Hanks warns fans about ‘AI version of me’ promoting dental plan

Mick and Ryan competed in a 60 second charity challenge to share the pros and cons of Cybersecurity Awareness Month.

Join Ryan Kovar and special guest Sherrod DeGrippo, Director of Threat Intelligence Strategy at Microsoft, for a discussion about crimeware, threat actor naming conventions, and Sherrod's essay in a new book by SURGe titled, "Bluenomicon: The Network Defender's Compendium."

Grab a cup of coffee and join Audra Streetman and special guests Haylee Mills, Katie Brown and Drew Church for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: 

Microsoft's Xbox plans revealed in emails tied to FTC case

38TB of data accidentally exposed by Microsoft AI researchers

Hackers who breached casino giants MGM, Caesars also hit 3 other firms, Okta says

All thanks to ‘Big Yellow Taxi’: How State discovered Chinese hackers reading its emails

Join Ryan Kovar and special guest Derrick Lawson, Staff Sales Engineer at Splunk, for a discussion about M-21-31, a US memorandum establishing an event logging maturity model for federal government agencies. They’ll discuss strategies and tools that can help agencies with compliance.

Join Ryan Kovar and special guest Jamie Williams, MITRE ATT&CK for Enterprise Lead and Principal Adversary Emulation Engineer, for a discussion about MITRE ATT&CK use cases and Jamie's essay in a new book by SURGe titled, "Bluenomicon: The Network Defender's Compendium."

Download Bluenomicon

Grab a cup of coffee and join Mick Baccio, Ryan Kovar and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: 

- Famed hacker and Twitter whistleblower Peiter 'Mudge' Zatko is joining the Biden administration https://www.washingtonpost.com/politics/2023/09/05/cisa-makes-big-name-hire-its-crusade-against-insecure-products/ - FBI, Partners Dismantle Qakbot Infrastructure in Multinational Cyber Takedown https://www.fbi.gov/news/stories/fbi-partners-dismantle-qakbot-infrastructure-in-multinational-cyber-takedown - Infamous Chisel Malware Analysis Report https://www.cisa.gov/news-events/analysis-reports/ar23-243a

Mick and Ryan competed in a 60 second charity challenge to share their favorite hack of all time before a deep dive on extortionware vs. ransomware. 

Join Ryan Kovar and special guest Rick Holland, VP and CISO at ReliaQuest, for an interview about Rick’s career journey, his advice for cybersecurity leaders, and his contribution to the SURGe team’s new book titled, “Bluenomicon: The Network Defender’s Compendium.”

Follow Rick on Twitter 

Download the Bluenomicon PDF

Grab a cup of coffee and join Mick Baccio, Ryan Kovar and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: 

- Ivanti: Customers ‘impacted’ by new zero-day vulnerability

- Nearly 2,000 Citrix NetScaler Instances Hacked via Critical Vulnerability

- Joint Advisory on Safeguarding the US Space Industry

- Tesla says data breach impacting 75,000 employees was an insider job

- CISA Factsheet on Quantum Readiness

- Kirsty's Blog: Cryptographically Relevant Quantum Computers (CRQCs) & The Quantum Threat in 2023

Join Audra Streetman and special guest Jake Williams (@MalwareJake) for a discussion about hiring in cybersecurity, interview advice, the challenges associated with vulnerability prioritization, Microsoft's Storm-0558 report, and Jake's take on the future of AI and LLMs in cybersecurity.

Join Audra Streetman and special guest Eric McGinnis, Senior Threat Researcher at Splunk, for a conversation about Detection as Code and how it helps to streamline the threat detection process, especially at scale. 

Links: 

https://github.com/splunk/attack_range

https://atomicredteam.io/

https://github.com/splunk/attack_data

https://github.com/splunk/security_content

https://github.com/splunk/contentctl

Grab a cup of coffee and join Mick Baccio, Ryan Kovar and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: 

- Threat Actors Exploit Ivanti EPMM Vulnerabilities  - Splunk Threat Research Team analytic story  - Strengthening Cybersecurity: Can The SEC’s Landmark New Rules Be Enforced? - Senator calls on DOJ to investigate alleged China hack of Microsoft cloud tools - U.S. Hunts Chinese Malware That Could Disrupt American Military Operations

Mick and Ryan also shared their top advice for people attending Black Hat and Defcon for the first time next week.

Join Audra Streetman and special guest Eva Galperin, director of cybersecurity at the Electronic Frontier Foundation, for an interview about data privacy, stalkerware, artificial intelligence, and the recent rise in deepfake sextortion schemes. You can follow Eva on Twitter @evacide and learn more about her work at EFF.org.

Join Mick Baccio and Ryan Kovar as they interview several Splunk cybersecurity experts at .conf23 whose essays are featured in Bluenomicon: The Network Defender’s Compendium. The authors include Sydney Howard, Principal Threat Hunter at Splunk, Jason Lee, Splunk CISO, and Paul Kurtz, Splunk's Chief Cybersecurity Advisor. To order a free copy of Bluenomicon, visit: https://www.splunk.com/en_us/form/the-network-defenders-compendium.html. 

Join Ryan, Mick, and Audra for a special edition of Coffee Talk with SURGe, live from .conf23 in Las Vegas. This episode, the trio from Splunk is joined by cybersecurity experts Jake Williams and Eva Galperin to discuss the trends in tradecraft they've observed among APT groups along with the topic of data privacy. 

Grab a cup of coffee and join Mick Baccio, Ryan Kovar and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: 

- Threads Becomes Most Rapidly Downloaded App, Raising Twitter’s Ire - U.S. and E.U. Finalize Long-Awaited Deal on Sharing Data - Three new MOVEit bugs spur CISA warning as more victims report breaches - Apple Ships Urgent iOS Patch for WebKit Zero-Day

Mick and Ryan competed in a 60 second charity challenge benefitting the Malala Fund to share their suggestions for this year's defense policy bill. 

The trio also took a deep dive into the Washington Post's new Printer Week series.

Grab a cup of coffee and join Mick Baccio, Ryan Kovar and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the livestream here. 

The team from Splunk will discuss the latest security news, including: 

- SolarWinds says SEC investigation ‘progressing to charges’

- The potent cyber adversary threatening to further inflame Iranian politics

- Siemens Energy, UCLA latest confirmed victims in MOVEit hack

- Turn your phone off every night for five minutes, Australian PM tells residents

-  Cyber Force for the military? Senators want to know

Join Ryan Kovar and special guest Alex Pinto, Senior Manager of Threat Intelligence at Verizon for an interview about the key takeaways from the 2023 Verizon Data Breach Investigations Report (DBIR).

You can watch the livestream of this episode here.

Read the DBIR report Follow Alex on Twitter

Grab a cup of coffee and join Mick Baccio, Ryan Kovar and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the livestream of this episode here.

The team from Splunk will discuss the latest security news, including:

- Fortinet fixes critical RCE flaw in Fortigate SSL-VPN devices, patch now

- Barracuda Urges Replacing — Not Patching — Its Email Security Gateways

- MOVEit Transfer Vulnerability Advisory from CISA

- STRT Analytic Story for MOVEit Transfer vulnerability

- Americans should prepare for cyber sabotage from Chinese hackers, US official warns

- Binding Operational Directive 23-02

- How North Korea’s Hacker Army Stole $3 Billion in Crypto, Funding Nuclear Program

Join Mick Baccio and special guest Scott Roberts, head of threat research at Interpres Security for an interview about Scott's career journey, how he's seen cybersecurity evolve over time, and his essay featured in the SURGe team's new book, Bluenomicon: The Network Defender’s Compendium.

You can watch the livestream of this episode here. 

Grab a cup of coffee and join Mick Baccio and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the livestream here.

The team from Splunk will discuss the latest security news, including:

- Volt Typhoon targets US critical infrastructure with living-off-the-land techniques

- COSMICENERGY: New OT Malware Possibly Related To Russian Emergency Response Exercises

- Real-world experience' informs new Pentagon cyber strategy

- Lender OneMain fined $4.25 million for cybersecurity lapses 

- A.I. Poses ‘Risk of Extinction,’ Industry Leaders Warn

Grab a cup of coffee and join Ryan Kovar, Kirsty Paine, and Floris Ladan for a special EMEA edition of Coffee Talk with SURGe. The team from Splunk will compare highlights and similarities across recent cyber threat reports, including: 

- UK NCSC Annual Review 2023 - ENISA Threat Landscape 2023 - Cyber security assessment of the Netherlands 2023 

Ryan and Floris also competed in a 60 second charity challenge to explain the importance of red teaming.

Join Audra Streetman and special guest Sydney Howard, Principal Threat Hunter at Splunk for an interview about her career journey, why she thinks purple teaming is so important, and her approach to threat hunting. Links:

- Introducing the PEAK Threat Hunting Framework 

- Hypothesis-Driven Hunting with the PEAK Framework 

- Model-Assisted Threat Hunting (M-ATH) with the PEAK Framework 

- SCYTHE Purple Team Exercise Framework 

Grab a cup of coffee and join Mick Baccio and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the livestream of this episode here. 

The team from Splunk will discuss the latest security news, including:

- Software engineer publicly discloses Telegram vulnerability

- Dallas says it 'will likely take weeks to get back to full functionality' after ransomware attack

 - Hackers attempt to extort Dragos and its executives in suspected ransomware attempt

- Joint advisory on Hunting Russian Intelligence “Snake” Malware

Mick and Audra also shared their stance on AI regulation as part of this week's 60 second charity challenge, with proceeds benefitting the Save Elephant Foundation.

Join David Bianco and special guest Aaron Gee-Clough, Senior Data Engineer at DomainTools for an interview about their collaboration for a research project evaluating the trustworthiness of certificate authorities (CAs) by analyzing five billion TLS certificates using Splunk.

Watch the livestream of this episode here. 

Listen to the talk at RSA Conference 2023

RSA slides

DomainTools 2021 report

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the livestream of this episode here.

The team from Splunk will discuss the latest security news, including: 

- The DOJ Detected the SolarWinds Hack 6 Months Earlier Than First Disclosed - US Marshals Service still recovering from February ransomware attack affecting system used by fugitive hunters - Industrial security vendors partner to share intelligence about critical infrastructure threats

Ryan and Mick competed in a charity challenge to discuss the impact of splintering social media platforms for keeping track of security news and opinions. The trio also recapped the highlights from RSA Conference.

Grab a cup of coffee and join Mick Baccio and special guests Juan Andres Guerrero-Saade and Jon DiMaggio for another episode of Coffee Talk with SURGe, live from RSA Conference in San Francisco. Guerrero-Saade and DiMaggio are both contributing authors for Bluenomicon, a new book by SURGe that features stories and advice from security leaders and practitioners. You don't want to miss it!

You can watch the livestream of this episode here. 

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the livestream of this episode here.

The team from Splunk will discuss the latest security news, including: 

- Citizen Lab releases report on NSO Group's new zero-click exploit chains

- LockBit ransomware encryptors found targeting Mac devices

- Did someone really hack into the Oldsmar, Florida, water treatment plant? New details suggest maybe not.

Mick and Ryan competed in a 60 second charity challenge about how generative artificial intelligence could be used in cyber threat intelligence, with proceeds benefiting the ACLU. 

The trio also discussed Microsoft's new threat actor naming taxonomy and the role of attribution in cyber threat intelligence.

Join Coffee Talk with SURGe for our bi-weekly interview series. This week, Audra Streetman interviews Michael Haag, Senior Threat Researcher at Splunk. They'll discuss his YouTube show, Atomics on a Friday, along with the Living off the Land Drivers project, which aims to consolidate vulnerable and malicious drivers into a centralized location.  

Links:

Episode livestream

Splunk Threat Research Team

Splunk blog about certificate abuse

Splunk blog about IIS Modules

Splunk content on Windows drivers

LOLDrivers Project

Form to submit drivers

Atomic Red Team

SANS Talk about Windows driver rootkits

Atomics on a Friday

Follow Michael on Twitter

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here. 

The team from Splunk will discuss the latest security news, including: 

-The Splunk Threat Research Team releases a blog with insights into the 3CX supply chain compromise -Medical device manufacturers in the US must soon provide SBOMs -Italy's data protection agency temporarily bans ChatGPT

Audra and Mick competed in a 60 second charity challenge on whether or not they see artificial intelligence reaching singularity, with proceeds benefiting DataEthics4All. The trio wrapped up with a deep dive into the RESTRICT ACT and proposed TikTok ban in the United States.

Join Coffee Talk with SURGe for our bi-weekly interview series. This week, SURGe member Shannon Davis interviews Allan Liska, threat intelligence analyst at Recorded Future and author of Ransomware: Understand. Prevent. Recover. They'll talk about the threat of ransomware, including recent trends, the impact of hack-back operations, and how organizations can become more resilient against attacks. 

Links: 

Watch the episode livestream

Follow Allan on Twitter

Learn more about Allan's book

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here. 

The team from Splunk will discuss the latest security news, including:

- Oakland could be dealing with a second ransomware attack in two months

- Notorious hacking forum shuts down after administrator gets arrested

- Google Pixel flaw allowed recovery of redacted, cropped images

Mick and Ryan shared their takes on responding to 0day vulnerabilities and the trio also discussed GPT-4 and the future of generative AI.

Join David Bianco and special guest Cat Self, Principal Adversary Emulation Engineer at MITRE and macOS/Linux Lead for ATT&CK, for a conversation about Cat’s career journey from military intelligence to cybersecurity along with her current work at MITRE. 

Links:  - Mitre Engenuity CTID Project - Blog: "A Deep Dive into the OceanLotus Adversary Emulation for macOS & Linux" - Defensive guidance in an enterprise environment: OBTS v6 presentation, “Dropping Lotus Bombs: ATT&CK in macOS Purple Team Operations” by Cat Self & Megan Carney - CTID Adversary Emulation Library

Join us as we kick off our new bi-weekly 1-1 interview series, starting with Sergio Caltagirone. Sergio was formerly at NSA, Director of Threat Intelligence at Microsoft, VP of Threat Intelligence at Dragos, Technical Director of the Global Emancipation Network, now the founder and president of the Threat Intelligence Academy, and of course, co-author of The Diamond Model. 

We will talk about all the things threat intelligence, thought models, and probably a solid side of snark.

Links:

Episode livestream

ChrisSanders.org

Read the Cuckoos Egg

Sergio's new adventure!

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Kirsty Paine for another episode of Coffee Talk with SURGe. You can watch the episode livestream here.

The team from Splunk will discuss the latest security news, including: 

- Biden administration releases U.S. National Cybersecurity Strategy 

-PoC exploit for recently patched Microsoft Word RCE is public (CVE-2023-21716)

-Ransomware moving into extortion of health data

Grab a cup of coffee and join David Bianco, Shannon Davis, and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: 

- Twitter plans to remove access to SMS 2FA for non-subscribing users https://blog.twitter.com/en_us/topics/product/2023/an-update-on-two-factor-authentication-using-sms-on-twitter

- Google TAG, Mandiant, and Google Trust & Safety release a report analyzing how the war in Ukraine has impacted the cyber threat landscape https://blog.google/threat-analysis-group/fog-of-war-how-the-ukraine-conflict-transformed-the-cyber-threat-landscape/

David Bianco and Shannon Davis also competed in a charity challenge comparing the pros and cons of the Pyramid of Pain, a conceptual model created by David to order Indicators of Compromise (IoCs) by the level of difficulty it will cause for an adversary to change the indicators associated with them. https://detect-respond.blogspot.com/2013/03/the-pyramid-of-pain.html

Grab a cup of coffee and join Ryan Kovar, Audra Streetman, and special guest David Bianco for another episode of Coffee Talk with SURGe. You can watch the episode livestream here.

The team from Splunk will discuss the latest security news, including: 

- VMware warns admins to patch ESXi servers, disable OpenSLP service

- LockBit ransomware group threatens Royal Mail with data leak deadline

- Russia-backed hacker group Gamaredon attacking Ukraine with info-stealing malware

David and Ryan also competed in a 60 second charity challenge to share their take on Netflix's anticipated crackdown on password sharing. The trio also discussed Google's Bard AI chatbot, which was introduced as a competitor to ChatGPT.

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here.

The team from Splunk will discuss the latest security news, including: 

- Ticketmaster says a cyberattack disrupted Taylor Swift ticket sales

- Apple iOS 16.3 arrives with support for hardware security keys

- Ukraine signs an agreement to join the NATO cyber defense center

- Google will stop exempting campaign email from automated spam detection

Mick and Ryan also competed in a 60 second charity challenge to explain how cognitive biases can negatively impact cyber threat intelligence assessments.

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here.

The team from Splunk will discuss the latest security news, including:

- LastPass, Slack, and CircleCI notify customers of security incidents.

- Chick-fil-A investigates reports of hacked customer accounts

- CyberScoop reports: Insiders worry CISA is too distracted from critical cyber mission 

Mick and Ryan competed in a 60 second charity challenge to share their opinion of ChatGPT and its impact on the cybersecurity industry. The team also discussed some of the major security headlines from 2022.

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Kirsty Paine for a special episode of Coffee Talk with SURGe, live in Washington, DC for GovSummit. You can watch the episode livestream here. 

The team from Splunk will discuss the latest security news, including:

- NIS2 is coming… What does it mean?

- NDAA requires intelligence agencies to study creation of cyber collaboration program

- Exercise Crossed Swords 2022 Kicks Off!

The episode also features a special GovSummit segment featuring Splunk CEO Gary Steele and Juliana Vida, Splunk's Chief Technical Advisor for the public sector.

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here. 

The team from Splunk will discuss the latest security news, including:

- ESET Research identifies a wave of ransomware attacks targeting organizations in Ukraine that they're calling #RansomBoggs - Cincinnati State College is added to Vice Society's leak site

- Iranian Hackers use Log4Shell to mine crypto on a US Federal computer system

- The extortion site used in the Medibank attack goes offline after the Australian government pledges 'offensive' actions

Mick and Ryan competed in a 60 second charity challenge about network surveillance. The group also discussed the possibility of Twitter implementing end-to-end encrypted messaging on the platform.

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here. 

The team from Splunk will discuss the latest security news, including:

- CISA reminds voters that there is no credible threat to voting equipment for the U.S. midterm elections.

- Splunk released a blog last week about the OpenSSL vulnerabilities, which were downgraded from critical to high severity.

- Medibank says it will not pay the ransom after data for 9.7 million customers was compromised. 

- Azov ransomware is observed destroying data instead of encrypting it.

- The White House creates an International Counter Ransomware Task Force following a two-day summit. 

Mick and Audra also competes in a 60 second charity challenge to share their takes on a proposal from the Red Cross to create digital emblems to deter cyberattacks during conflict targeting systems belonging to hospitals and humanitarian organizations.

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here. 

The team from Splunk will discuss the latest security news, including: 

- The DOJ announces charges against two Chinese intelligence officers accused of trying to subvert a U.S. criminal investigation involving a China-based telecom. 

- The FTC is taking action against Drizly, an online alcohol delivery service, for failing to take steps to protect consumer data. - Why Text4Shell is not a Log4Shell-scale vulnerability.

Mick and Ryan competed in a 60 second charity challenge to share their take on the issue of victim-blaming for phishing attacks. The episode ends with a deep dive on cyber threats ahead of the U.S. midterm elections on Nov. 8.

Grab a cup of coffee and join Mick Baccio, Ryan Kovar, and Audra Streetman for another edition of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: 

- LockBit says ICBC paid ransom over hack that disrupted US Treasury market  https://www.reuters.com/technology/cybersecurity/icbc-paid-ransom-after-hack-that-disrupted-markets-cybercriminals-say-2023-11-13/ - Sandworm Disrupts Power in Ukraine Using a Novel Attack Against Operational Technology https://www.mandiant.com/resources/blog/sandworm-disrupts-power-ukraine-operational-technology - The NSA Seems Pretty Stressed About the Threat of Chinese Hackers in US Critical Infrastructure https://www.wired.com/story/nsa-china-hacking-criticial-us-infrastructure/

Mick and Ryan will also compete in a charity challenge to explain what constitutes an influence operation, and why network defenders should care.

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here.

The team from Splunk will discuss the latest security news, including: 

- President Joe Biden signs an executive order outlining a new data transfer framework between the EU and US. 

- Ransomware attacks disrupt programming for three Brazilian broadcasters and a bank in Brazil reportedly paid $950,000 in Bitcoin to a LockBit affiliate. 

- Healthcare providers associated with CommonSpirit Health are still dealing with outages from a suspected ransomware attack. 

- Vice Society adds more school districts to its leak site after releasing personal data of students at Los Angeles Unified School District. 

- Lloyd's of London says its investigation into a possible cyberattack found no evidence of data compromise. 

- The Pro-Russia hacktivist group Killnet targets the websites of U.S. state governments and airlines.  

Mick, Ryan, and Audra also competed in a 60 second charity challenge to name their top takeaway from Cybersecurity Awareness Month.

Grab a cup of coffee and join Audra Streetman and special guests David Bianco and Haylee Mills for another episode of Coffee Talk with SURGe. You can watch the episode livestream here. 

The trio will discuss the latest cybersecurity news, including:

- Officials in Ukraine say they believe the Kremlin is planning "massive cyberattacks on critical infrastructure" 

- Mandiant researchers at Google see Russia coordinating with hacktivists in cyberattacks tied to the Ukraine war 

- VICE reports on an internet monitoring tool purchased by the U.S. military

- The alleged hacker behind the Optus breach withdraws their extortion demands citing law enforcement scrutiny 

- Toolkit to build LockBit 3.0 ransomware leaked 

Haylee and David competed in a 60 second charity challenge to explain the concept of domain shadowing. The team also discussed the Uber hack as it relates to general security practices at companies.

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here. 

The team from Splunk discussed the latest cybersecurity news, including:

- Twitter’s former head of security, Peiter Zatko, testified in a Senate committee hearing about security concerns he claims the company ignored. 

- Albania reports a second cyberattack that officials attribute to the Iranian government.

- CISA issues an alert about the Vice Society ransomware group targeting the education sector.

- Ransomware groups are switching to the tactic of intermittent encryption.

- CISA is requesting public feedback about its forthcoming incident reporting rules. 

- Researchers at Norton Labs found that more than 80% of the top websites leak user searches to advertisers. 

Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. You can watch the episode livestream here. 

The team from Splunk will discuss the latest security news including:

- Twitter whistleblower Peter Zatko will testify at a Senate hearing on Sept. 13.

- Group-IB published a blog about a phishing campaign targeting Okta identity credentials that they're calling "Roasting Oktapus." 

- Montenegro is dealing with cyberattacks targeting critical infrastructure. 

- Lloyd's plans to exclude catastrophic nation-backed cyberattacks from insurance coverage. 

Mick and Ryan competed in a 60 second charity challenge to explain why they think password managers are still your best option for password security. The team also discussed data privacy after the FTC announced it is suing a data broker for selling geolocation data. Meanwhile, the FCC is launching an investigation into mobile carriers' geolocation data practices.