ShadowTalk: Powered by ReliaQuest

Resources: https://linktr.ee/ReliaQuestShadowTalk

John and Tehman as they discuss:

• How AI is enabling large-scale, high-speed attacks
• Nation-states weaponizing AI for attack automation
• The rise of sophisticated AI-generated malware

John Dilgen: Cyber Threat Intelligence Analyst at ReliaQuest, where he specializes in researching cyber threats impacting ReliaQuest customers. With a strong technical background, he previously serve...

Resources: https://linktr.ee/ReliaQuestShadowTalk

Join hosts Brandon and John as they discuss:

• How supply-chain attacks evolved
• Campaigns targeting NPM package maintainers
• Actionable defense strategies

Brandon Tirado: Director of Threat Research for ReliaQuest. A skilled cyber defense professional with a unique combination of management and hands-on experience. With a deep understanding of adversary motives and the tactics, tec...

Resources: https://linktr.ee/ReliaQuestShadowTalk

Join hosts Brandon and Tehman as they discuss:

• The resurgence of LockBit 5.0 and its December 2025 surge in named organizations
• How top ransomware groups like Qilin, Akira, and Clop dominated in 2025.
• Actionable defense strategies for organizations to proactively combat ransomware in 2026

Brandon Tirado: Director of Threat Research for ReliaQuest. Brandon is a skilled cyber defe...

Resources: https://linktr.ee/ReliaQuestShadowTalk

Join host John and intelligence analyst Ivan as they discuss:

• React2Shell Exploits Flood the Internet as Attacks Continue (1:06)
• ClickFix Style Attack Leveraging Grok and ChatGPT for Malware Delivery (7:39)
• New ConsentFix Attack Hijacking Microsoft Accounts via Azure CLI (13:50)
• Holiday Season Attack Risks: Phishing, Ransomware, and Defense Recommendations (18:22)

John Dilgen: Cy...

Resources: https://linktr.ee/ReliaQuestShadowTalk

Join host John along with systems security engineer Corey and intelligence analyst Hayden as they discuss:

• Chinese Threat Groups Exploiting the React2Shell Vulnerability (1:18)
• CISA Issues Alert on Persistent Brickstorm Backdoor Attacks (9:05)
• ShadyPanda Hackers Turn Millions of Browsers into Weapons (13:36)
• Storm-0249’s Shift to Targeted EDR Exploitation (20:09)

John Dilgen: Cyb...

Resources: https://linktr.ee/ReliaQuestShadowTalk

Join host John and intelligence analysts Alex and Hayden as they discuss:

• Scattered Lapsus$ Hunters Targeting Zendesk (1:14)
• Microsoft Teams Guest Access Phishing Bypass (3:37)
• Dark AI Tools Enhancing Threat Actors (6:08)
• Silver Fox’s Campaign: Chinese APT Spotlight (10:05)

John Dilgen: Cyber Threat Intelligence Analyst at ReliaQuest, where he specializes in researching cyber thr...

Resources: https://linktr.ee/ReliaQuestShadowTalk

Do you really need predictions to tackle cyber threats? Join host Kim along with intelligence analyst John & special guest CISO Rafal Baran as they discuss:

• New NPM Supply Chain Threat (1:13)
• China Manipulates AI for Initial Access (4:46)
• Cloud Gaps Bring IoT Takeover (7:29)
• 2026 Cyber-Threat Predictions (10:57)

Rafal Baran: IT security leader and CISO in the global reinsuran...

Resources: https://linktr.ee/ReliaQuestShadowTalk

Join host Kim, intelligence analyst John, and threat hunter Tristan as they discuss:

• Fortinet Flaw Enables Admin Takeover
• Akira Ransomware Targets Nutanix VMs
• Smart Redirects Evade Phishing Detection
• Threat Hunter Hacks: SEO Hits Hard

Listen on @Listennotes: https://lnns.co/mgbyVjXv7p6

Kim Bromley: Senior Cyber Threat Intelligence Analyst on the ReliaQuest Threat Research Team. Sh...

Resources: https://linktr.ee/ReliaQuestShadowTalk

Wondering why Gootloader is suddenly back in action? Join host Kim along with intelligence analyst Hayden & Systems Security Engineer Corey as they discuss:

• Gootloader Returns Using SEO Poisoning (1:27)
• New Android Spyware LANDFALL (6:33)
• Curly COMrades Hide in Windows Using Linux VMs (10:57)
• Sector-by-Sector Cyber Trends Q3 2025 (15:20)

Kim Bromley: Senior Cyber Threat Intel...

Resources: https://linktr.ee/ReliaQuestShadowTalk

Did you know 99% of cloud identities are over-privileged, creating the perfect storm for attackers to seamlessly infiltrate your environment? Join host Kim along with intelligence analysts John & Alex as they discuss: 

• Chinese Nation-State Campaigns and Geopolitics (1:12)
• Malicious NPM Packages (7:20)
• TruffleNet Attacks on AWS (10:53)
• The Danger of Over-Privileged Cloud Identitie...

Resources: https://linktr.ee/ReliaQuestShadowTalk

Picture this: You close a $50M acquisition on Friday and by Monday, attackers are in your network. Sound far-fetched? It's not. Join host Kim along with intelligence analyst John & Threat Hunter Leo as they discuss:

• Attackers Exploit WSUS Flaw (1:15)
• Qilin Deploys Cross-Platform Attacks (4:21)
• Lazarus Group Reignites Operation DreamJob (9:05)
• Threat Hunter Hacks: Active Cybe...

Resources: https://linktr.ee/ReliaQuestShadowTalk

Wondering what makes ransomware operations successful? Join host Kim along with intelligence analyst John & former FBI Special Agent Keith Mularski as they discuss:

• Year-Long F5 Breach (2:42)
• North Korean Attacker Adopts EtherHiding (7:53)
• Phishing Attacks Target LastPass (12:11)
• Fighting Ransomware Automation: A CISO's Guide (17:19)

Kim Bromley: Senior Cyber Threat Inte...

Resources: https://linktr.ee/ReliaQuestShadowTalk

How long could Flax Typhoon nestle silently in your networks? Join host Kim along with intelligence analysts John & Joey as they discuss:

• Velociraptor Abused in Ransomware Attacks (1:13)
• New Oracle E-business Suite Flaw (5:19)
• GitHub CamoLeak AI Attack (7:46)
• Year-Long Flax Typhoon ArcGIS Campaign  (11:23)

Kim Bromley: Senior Cyber Threat Intelligence Analyst on the ReliaQues...

Resources: https://linktr.ee/ReliaQuestShadowTalk

Join host Kim along with Intelligence Analyst John and Threat Detection Engineer Marken as they discuss:

• Clop's Exploitation of Oracle E-Business Suite (1:09)
• Scattered Lapsus$ Hunters Return With Salesforce Leaks (5:27)
• Shutdown Threatens US Intel Sharing and Cyber Defense (10:02)
• Ransomware and Cyber Extortion in Q3 2025 (15:02)

Kim Bromley: Senior Cyber Threat Intelligenc...

Resources: https://linktr.ee/ReliaQuestShadowTalk

Join host Joey along with intelligence analysts Alex and Hayden as they discuss:

• Brickstorm Backdoor in U.S. Legal and Tech Sectors (1:17)
• Storm-1849 Targeting Cisco ASA Devices (4:38)
• Medusa Attempts to Pay Reporter for Initial Access (7:00)
• Debate Over Government Zero-Day Stockpiling (14:41)

Joseph Keyes: Cyber Threat Intelligence Analyst at ReliaQuest, specializing in technica...

Resources: https://linktr.ee/ReliaQuestShadowTalk

Join host Kim along with intelligence analysts John and Joey as they discuss:

• Summer 2025 Attacker Trends (13:41)
• Self-Replicating 'Shai-hulud' Worm Targeting NPM Packages (1:05)
• Fortra Critical Patch for GoAnywhere MFT Vulnerability (3:49)
• Phishing Round Up: File Fix Campaign and Microsoft's RaccoonO365 Takedown (7:12)

Kim Bromley: Senior Cyber Threat Intelligence...

Resources: https://linktr.ee/ReliaQuestShadowTalk

Thinking about whether you need more AI in SecOps? Join host Kim along with intelligence analyst Joey & systems security engineer Corey as they discuss:

• SAP S/4HANA Flaw Exploitation (2:09)
• AI-Powered Malware Exposes GitHub (4:24)
• APT28 Outlook Backdoor hits NATO (8:21)
• ReliaQuest Experts Answer Your Questions (11:55)

Kim Bromley: Senior Cyber Threat Intelligence Analyst on t...

Resources: https://linktr.ee/ReliaQuestShadowTalk

Need the latest information on Salesloft Drift? Join host Kim along with intelligence analyst John & detection engineer Marken as they discuss:

• Salesloft Drift Tokens Result in Salesforce Data Theft (1:31)
• Storm-0501 Shifts Ransomware Attacks to Cloud (6:36)
• APT29 Microsoft 365 Campaign Disrupted (11:26)
• Axios, Direct Send Abuse Redefine Phishing (14:19)

Kim Bromley: Senior C...