Josh, Robbie and Vaughan look at developments in the threat landscape this week, including an SSRF campaign from 4000s unique IPs, an SSRF vulnerability in ChatGPT's infrastructure and the GitHub supply chain attack that leaked secrets.

Josh, Robbie and AJ discuss the recent attack on the Polish space agency, a developer who tried to enact revenge when he was fired, a win for the good guys and the 2022 LastPass breach's involvement in crypto heists.

Welcome back! For season 2 of the Cyber Space podcast. Four cyber security experts unpick some key developments in the threat landscape, including unpicking the Bybit hack where 1.5 trillion dollars of Ethereum was stole, how AI models leaked 1...

On this episode of Cyber Space, Josh tells the others about a reckless penetration tester who decided he should hack local businesses in order to create business for himself. He's currently facing jail time for it, so where is the line between ...

The Empirical Training gang dive into a sophisticated attack where a state sponsored actor managed to compromise a Wifi network from the other side of the world, before they take a closer look at some reports on the similarities and shared capa...

Join Robbie, AJ and Josh as they take questions from the community on what it takes to be a SOC analyst, the moment they felt like they made it! And the moment's they are humbled...We then dive into the T-Mobile breach, reported to be c...

All four of the Empirical Trainers sit down to discuss the latest threats they've been facing in their SOCs. Securing S3 buckets has been an issue since they existed, and new developments have seen an increase in success for S3 buc...

There's a lot to be scared about in cyber security, ransomware actors, payment of ransoms, 23 and me genome mapping company breach, and critical incidents coming in at 5:25pm.Josh and Robbie, former SOC analyst together and present day ...

Price's Law, also known as Price's Square Root Law, is a rule of thumb that states that the square root of the total number of people in a group will achieve 50% of the results - but how does this play out in cyber security? Join t...

Josh and Robbie are joined by James Gallen, Tech and Cyber Security recruiter for this part two of a recruiter ask me anything. Our community ask James for tips and tricks to success in getting security roles, while he shares some wins from peo...

Josh has been deep in the emerging Linux CUPS threat, with four mysterious CVEs touted to drop in October, all of a sudden the researcher made proof of concept exploits public, forcing developers hands to release advisories on the fixes and sec...

Kaspersky customers woke up this week to find that their anti-virus had been uninstalled and replaced with UltraAV. This caused panic that threat actors has uninstalled endpoint protection controls as part of an attack, and although this wasn't...

Robbie has been working on creating insider threat detections for suspicious employees that may be taking competitive sensitive data from their employer just before some mass lay offs. The boys discuss the challenges of insider threat detection...

Kyree GRC Joins us again! Lifting the lid further on governance risk and compliance, as Robbie and Josh get to know Kyree better, how he thinks and what fruit he would be...Kyree shares the realities of what it takes to succeed in a GRC...

Josh and Robbie are joined with a special guest, Kyree GRC, who tells us how some key mentors, numerous internships and personal tenacity helped him find his pathway into governance risk compliance.Today Kyree is a risk analyst, who pas...

We all face procrastination in some form, but in the high paced and high stakes world of cyber security, dealing with procrastination can be even more challenging. AJ, Rob and Vaughan share their experience of getting into cyber security and ho...

Josh is joined by all four of the Empirical Trainers, combining their decades of experience in the field to discuss how the CrowdStrike outage has changed security buyers and customers, a fun update on AJ's wedding celebrations where AJ and Vau...

Josh takes Robbie back to school, and a 2000 year old computer to explain the compute evolution from analogue to digital and the impending quantum revolution. We'll discuss the security implication of quantum computers, the 'steal now, crack la...

Josh has gone MIA, so AJ hosts Robbie and Vaughan to explore their experiences with imposter syndrome during their careers in cyber security. 

Josh, Robbie and AJ sit down with the community to discuss how the Crowdstrike BSOD update has affected their security teams and organisations, identifying lessons can learn and exploring the knock on effects while also discovering that this wa...

Rob and Josh jump on for an emergency episode while the world tries to deal with, what has been dubbed; "The biggest IT outage of our time". Join us for an update on all the latest public information, as well as some security and developer pers...

This bonus episode is a little different, with less focus on security and more focus on getting to know the Empirical Team, Josh, AJ, Robbie and Vaughan. We share stories on how we kept each other sane during our tough first SOC roles, re-visit...

Josh, Robbie, AJ and Vaughan are back to talk all things cyber security, again with the Empirical community as part of this live podcast. Join us to talk about the emerging CloudSorceror advanced persistent threat (APT), as well as diving into ...

Josh is out sick, so AJ and Vaughan take the reigns and discuss incident response tooling, answering questions about TheHive Project, an open source incident response tool and how real world organisation use tools like that. They quickly move o...

The four Empirical Trainers and joined by the biggest and best Empirical member, the Community! For another live podcast discussion and Q+A.This week we dive into the topics that have gotten our community talking most. First we explore ...