135: The D.R. Incident

Darknet Diaries

Jack Rhysider

True Crime, Technology

4.9 • 8.6K Ratings

🗓️ 4 July 2023

⏱️ 46 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

Omar Avilez worked in the CSIRT of the Dominican Republic when a major cyber security incident erupted. Omar walks us through what happened and the incident response procedures that he went through. Breakmaster Cylinder’s new album: https://breakmastercylinder.bandcamp.com/album/the-moon-all-that. Sponsors Support for this show comes from Varonis. Do you wonder what your company’s ransomware blast radius is? Varonis does a free cyber resilience assessment that tells you how many important files a compromised user could steal, whether anything would beep if they did, and a whole lot more. They actually do all the work – show you where your data is too open, if anyone is using it, and what you can lock down before attackers get inside. They also can detect behavior that looks like ransomware and stop it automatically. To learn more visit www.varonis.com/darknet. Support for this show comes from Axonius. The Axonius solution correlates asset data from your existing IT and security solutions to provide an always up-to-date inventory of all devices, users, cloud instances, and SaaS apps, so you can easily identify coverage gaps and automate response actions. Axonius gives IT and security teams the confidence to control complexity by mitigating threats, navigating risk, decreasing incidents, and informing business-level strategy — all while eliminating manual, repetitive tasks. Visit axonius.com/darknet to learn more and try it free. Support for this show comes from Flare. Flare automates monitoring across the dark & clear web to detect high-risk exposure, before threat actors have a chance to leverage it. Their unified solution makes it easy to rapidly identify risks across thousands of sources, including developers leaking secrets on public GitHub Repositories, threat actors selling infected devices on dark web markets, and targeted attacks being planned on illicit Telegram Channels. Visit https://flare.io to learn more. Sources https://www.wired.com/story/costa-rica-ransomware-conti/ https://malpedia.caad.fkie.fraunhofer.de/details/win.bandook https://www.youtube.com/watch?v=QHYH0U66K5Q https://www.youtube.com/live/prCr7Z94078 https://www.eff.org/deeplinks/2023/02/uncle-sow-dark-caracal-latin-america https://www.bleepingcomputer.com/news/security/quantum-ransomware-attack-disrupts-govt-agency-in-dominican-republic/ https://www.welivesecurity.com/2021/07/07/bandidos-at-large-spying-campaign-latin-america/ Attribution Darknet Diaries is created by Jack Rhysider. Assembled by Tristan Ledger. Episode artwork by odibagas. Mixing by Proximity Sound. Theme music created by Breakmaster Cylinder. Theme song available for listen and download at bandcamp. Or listen to it on Spotify. Learn more about your ad choices. Visit podcastchoices.com/adchoices

Transcript

Click on a timestamp to play from that location

0:00.0	So throughout my life I've had this recurring dream
0:03.5	It starts out with me being in my front yard and coming down the street is a wild bull
0:10.0	It's typically white in color and it's just on a terror
0:13.9	Running around the neighborhood smashing up cars knocking down trees trampling everything in its path
0:20.3	Nothing can stop it and then it for some reason turns and looks at me and I can tell it's coming from me
0:28.9	I mean, it's so wild. It's like falling down tumbling running into houses and stuff trying to turn to come towards me
0:36.5	So I quickly run into the house slam the door shut lock it and then go to the window to look to see what's going on
0:42.4	But the bull just runs right up to my house hits the front door and just busts through it like it's paper
0:47.4	It's suddenly in my house and it's trying hard to turn corners and navigate through my house to get to me
0:52.6	But it's falling down and smashing and walls and furniture and I'm frantically trying to find a safe place to go
0:58.9	But every room I go into it just smashes through those doors or windows to get to where I am
1:04.6	I keep going into room after room shutting doors locking it, but it just keeps getting in
1:10.0	I usually wake up around here heart racing. I'm in a panic and what I often feel after this dream is helplessness
1:18.6	Complete vulnerability. There's no place that feels safe
1:23.2	And it doesn't matter how many locked doors I have or hiding places I know of that bull always finds me and
1:30.6	Smashes its way to me I
1:33.2	Tell you this because after listening to today's story I get that same feeling of feeling afraid and helpless
1:45.0	These are true stories from the dark side of the internet
1:48.2	I'm Jack recider. This is Dark Knight Diaries
1:56.6	This episode is brought to you by Forronis so many security incidents are caused by attackers finding and exploiting
2:19.2	excessive permissions all it takes is one exposed folder bucket or API to cause a data breach crisis
2:26.0	The average organization has tens of millions of unique permissions and sharing links
	...

Please login to see the full transcript.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from Jack Rhysider, and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of Jack Rhysider and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.