Don't Panic: The Unit 42 Podcast

By Palo Alto Networks

Listen to a podcast, please open Podcast Republic app. Available on Google Play Store.


Category: Technology

Open in iTunes


Open RSS feed


Open Website


Rate for this podcast


Description

Don't Panic! is the official podcast from Unit 42 at Palo Alto Networks. We find the big issues that are frustrating cyber security practitioners and help simplify them so they don't need to panic.

Episode Date
Adversary Playbooks
20:41

Unit 42 leaders Ryan Olson and Rick Howard present another another episode of their "Don't Panic" podcast, where they break down the big issues in cyber security and tell you why you don't need to panic.

This week's episode is about Adversary Playbooks. These are our way of sharing the Tactics Techniques and Procedures used by an adversary in a standard, machine readable format to help you better understand how to defend against an adversary. 

Adversary Playbook Description: https://unit42.paloaltonetworks.com/unit42-introducing-the-adversary-playbook-first-up-oilrig/

Playbook Viewer: https://pan-unit42.github.io/playbook_viewer/

Send us feedback via Twitter:

Unit 42 ( @unit42_intel )

Ryan (@ireo

Rick (@raceBannon99)

Jan 18, 2019
Transitioning from STIX 1 to STIX 2
22:25

Unit 42 leaders Ryan Olson and Rick Howard present another another episode of their "Don't Panic" podcast, where they break down the big issues in cyber security and tell you why you don't need to panic.

This week's episode is about Structured Threat Information Expression (STIX™) . STIX is the most-widely adopted standard in threat intelligence sharing, but STIX 1.X has some challenges. STIX 2.0 was recently introduced and is a complete rebuild of the standard.

STIX 2.0 Specification: https://oasis-open.github.io/cti-documentation/stix/intro

Send us feedback via Twitter:

Unit 42 ( @unit42_intel )

Ryan (@ireo

Rick (@raceBannon99)

Jan 14, 2019
Cyber Insurance
18:40

Unit 42 leaders Ryan Olson and Rick Howard present another another episode of their "Don't Panic" podcast, where they break down the big issues in cyber security and tell you why you don't need to panic.

This week's episode is about Cyber Insurance. While some practitioners may not see the value of this type of insurance, it can play an important role in managing the risk of major cyber events. 

Send us feedback via Twitter:

Unit 42 ( @unit42_intel )

Ryan (@ireo

Rick (@raceBannon99)

Jan 07, 2019
Fileless Attacks
14:37

Unit 42 leaders Ryan Olson and Rick Howard present another another episode of their "Don't Panic" podcast, where they break down the big issues in cyber security and tell you why you don't need to panic.

This week's episode is about Fileless Attacks, what are they and why you don't need to panic about this new buzzword in cyber security. 

Andrea Lelli's Blog on Fileless attacks - https://bit.ly/2RjEXLF 

Send us feedback via Twitter:

Unit 42 ( @unit42_intel )

Ryan (@ireo

Rick (@raceBannon99)

Dec 31, 2018
Business Email Compromise
16:16

Unit 42 leaders Ryan Olson and Rick Howard present another another episode of their "Don't Panic" podcast, where they break down the big issues in cyber security and tell you why you don't need to panic.

This episode is about Business E-mail Compromise or BEC. These attacks involve criminals compromising an executives e-mail account and then using that access to trick people in an organization into transferring large amounts of cash to the criminal. 

Send us feedback via Twitter:

 

Unit 42 ( @unit42_intel )

Ryan (@ireo

Rick (@raceBannon99)

Dec 24, 2018
Mitre's ATT&CK Framework
18:09

Unit 42 leaders Ryan Olson and Rick Howard present another another episode of their "Don't Panic" podcast, where they break down the components of large scale cyber security attacks and tell you why you don't need to panic.

 

In this episode the topic is Mitre’s ATT&CK Framework.  This framework provides a standard terminology and a wealth of information about the tactics and techniques commonly deployed by adversaries. It can be a bit intimidating at first given it’s there size, but it’s an amazing resource.

 

We recorded this Episode in October 2018, so our reference to ATT&CKCON being in the future is a bit dated. All of the videos from ATT&CKCON are available here, it was great!.

References in this episode: 

ATT&CK Framework Website

MITRE ATT&CK™: Design and Philosophy

The Lone Gunmen

 

Unit 42 ( @unit42_intel )

Ryan (@ireo

Rick (@raceBannon99)

Dec 17, 2018
Cyber Reconnaissance
16:15

Unit 42 leaders Ryan Olson and Rick Howard present another another season of their "Don't Panic" podcast, where they break down the components of large scale cyber security attacks and tell you why you don't need to panic.

 

In this episode the topic is Cyber Reconnaissance - the tactic of gathering information about a target to help further a cyber attack. This is the first phase of the well-known cyber attack lifecycle, and one that people often ignore. We’re discussing how it works, what you can do about it, and what you should not do about it.

 

References in this episode: 

The Art of Deception by Kevin Mitnick  -

Intelligence-Driven Computer Network Defense Informed by Analysis of Adversary Campaigns and Intrusion Kill Chains

Unit 42 ( @unit42_intel )

Ryan (@ireo

Rick (@raceBannon99)

Dec 10, 2018
Measuring Cyber Security Risk
18:31

Unit 42 leaders Ryan Olson and Rick Howard present another another season of their "Don't Panic" podcast, where they break down the components of large scale cyber security attacks and tell you why you don't need to panic.

In this episode the topic is Measuring Cyber Security Risk. We discuss how to get a handle on the numbers behind the risk to your enterprise so you can make better decisions. 

References in this episode: 

Book Review: How to Measure Anything in Cybersecurity Risk

Rick's RSA Presentation - Super Forecasting: Even You Can Perform High-Precision Risk Assessments

The Cybersecurity Canon Project

Unit 42 ( @unit42_intel )

Ryan (@ireo

Rick (@raceBannon99)

Dec 03, 2018
Threat Actor Naming
14:16

So how do all those malicious threats get the cool, and often weird, names when they're published? We've got the answer!

Unit 42 Threat Researcher, Ryan Olson, is joined in the studio by Rick Howard, Chief Security Officer at Palo Alto Networks for another season of their "Don't Panic" podcast, where they break down the components of large scale cyber security attacks and tell you why you don't need to panic.

Jul 30, 2018
ioT Botnets
15:07

Are your internet-connected home devices someday going to turn against you? Today we're talking about botnets and their role in compromising the Internet of Things, and just how much you need to worry about it.

Unit 42 Threat Researcher, Ryan Olson, is joined in the studio by Rick Howard, Chief Security Officer at Palo Alto Networks for another season of their "Don't Panic" podcast, where they break down the components of large scale cyber security attacks and tell you why you don't need to panic.

Jul 03, 2018
Software Supply Chain Attacks
23:19

How could a malicious actor would execute a software supply chain attack?

Unit 42 Threat Researcher, Ryan Olson, is joined in the studio by Rick Howard, Chief Security Officer at Palo Alto Networks for another season of their "Don't Panic" podcast, where they break down the components of large scale cyber security attacks and tell you why you don't need to panic.

 

Jun 20, 2018
Endpoints
16:21

Unit 42 Threat Researcher, Ryan Olson, is joined in the studio by Rick Howard, Chief Security Officer at Palo Alto Networks for another season of their "Don't Panic" podcast.

In this episode they talk about challenges in securing endpoints, and how the enterprise is moving away from traditional antivirus protection.

May 31, 2018
The Cloud
18:57

Unit 42 Threat Researcher, Ryan Olson, is joined in the studio by Rick Howard, Chief Security Officer at Palo Alto Networks for another season of their "Don't Panic" podcast.

In this episode they talk about securing....The Cloud.

May 31, 2018