Tradecraft Tuesday with Huntress Labs

Episode 4: Ransomware as a Service Overview - Human Roles in the Cyber Underground - Dark Web Forums and Revenue Sharing - Popular Ransomware Delivery Mechanisms - Analysis of 70 Sodinokibi Campaigns (Most MSP Focused) - How to Protect Yourself and Combat this Nonsense Register for Tradecraft Tuesday: huntress.zoom.us/webinar/register…_mSNG_iAkc5UwW9Q Video available at: https://www.youtube.com/watch?v=qHcK1u9H-6E&list=PLCEYktOUOsrut0iW5jQcScsaNXz1fD4lp&index=1

Episode 3: Intro to Multi Factor Authentication. In this episode we dive into MFA attacks and bypasses including: 1. Social engineering pin codes 2. Phishing pages that request the 2FA 3. SIM swapping and jacking 4. Masquerade attacks using a stolen cookies Register for Tradecraft Tuesday: https://huntress.zoom.us/webinar/register/7315647633627/WN__F1p-Q_mSNG_iAkc5UwW9Q Video available at: https://www.youtube.com/watch?v=QnclxduxRHI&list=PLCEYktOUOsrut0iW5jQcScsaNXz1fD4lp&index=3

We had a major studio upgrade (our condolences to anyone who watched last month's episode and misses the giant mic blocking Kyle). This month, we talk admin privileges and why IT departments and MSPs should minimize them. Hackers with admin access are wreaking havoc within networks in many ways, including: 1. Bypassing Anti-Tamper Mechanisms in Security Products 2. Disabling and Redirecting Web Traffic 3. Preventing Applications and Security Products from Running 4. Hijacking Logged-In User...

Recorded 8/13/19: Tradecraft Tuesday is back! We're hosting from a shiny new studio that (allegedly) features drying paint, suspect audio, and Chris sitting on a stool. Our crew covers the latest on hacking iOS remotely, the ConnectWise ManagedITSync plugin exploitation, techniques used to obfuscate execution and download payloads in the Kaseya, Webroot, and NinjaRMM incidents, and injection techniques. Kyle also schools us on hacker-friendly-trampolines(?) Register for Tradecraft Tuesday:...