To give you the best possible experience, this site uses cookies. Review our Privacy Policy and Terms of Service to learn more. Entendido!
Artwork

Tech MBA Business News Tech News Chatcyberside
Contenido proporcionado por Chatcyberside. Todo el contenido del podcast, incluidos episodios, gráficos y descripciones de podcast, lo carga y proporciona directamente Chatcyberside o su socio de plataforma de podcast. Si cree que alguien está utilizando su trabajo protegido por derechos de autor sin su permiso, puede seguir el proceso descrito aquí https://es.player.fm/legal.
Player FM : aplicación de podcast
¡Desconecta con la aplicación Player FM !
Get it on App Store Get it on Google Play

Cyberside Chats: Cybersecurity Insights from the Experts »
When the FBI Becomes Your IT Department

13:00
 
Reproducir
Reproduciendo
Compartir
 

MP3Episodio en casa
Manage episode 462297088 series 3625301
Contenido proporcionado por Chatcyberside. Todo el contenido del podcast, incluidos episodios, gráficos y descripciones de podcast, lo carga y proporciona directamente Chatcyberside o su socio de plataforma de podcast. Si cree que alguien está utilizando su trabajo protegido por derechos de autor sin su permiso, puede seguir el proceso descrito aquí https://es.player.fm/legal.

In this episode of Cyberside Chats, we explore the FBI’s daring takedown of PlugX malware. By commandeering the malware’s command-and-control infrastructure, the FBI forced PlugX to uninstall itself from over 4,200 devices globally. This bold move echoes similar actions from 2021, such as the removal of malicious web shells from Exchange servers.

We unpack the legal, ethical, and operational implications of these law enforcement actions and provide actionable advice for IT and security leadership to prepare for similar events.

Key topics include:

  • How the FBI executed the PlugX takedown and what it means for organizations.
  • The risks and benefits of law enforcement hacking into private systems to mitigate threats.
  • Preparing for potential third-party access to your network by “authorized” actors like law enforcement or tech vendors.

Takeaways:

  • Be aware that “authorized” third parties, such as law enforcement or Microsoft, may access your computers if they’re part of a botnet.
  • Monitor threat intelligence feeds so you’re informed when events like these occur.
  • Proactively communicate with your ISP about their processes for responding to law enforcement notifications.
  • Ensure your contact information is current with your ISP and DNS registrars to avoid communication gaps.
  • Review and update your incident response (IR) and forensics plans to account for potential third-party access.
  • Include scenarios involving third-party access in your tabletop exercises to improve preparedness.

Resources:

“FBI Hacked Thousands of Computers to Make Malware Uninstall Itself”

https://www.theverge.com/2025/1/14/24343495/fbi-computer-hack-uninstall-plugx-malware

“The Microsoft Exchange Server Hack: A Timeline”

https://www.csoonline.com/article/570653/the-microsoft-exchange-server-hack-a-timeline.html

“Taking Down the Waledac Botnet (The Story of Operation b49)”

https://www.youtube.com/watch?v=jdFD0a7-GsU

Have thoughts or questions about this episode? Contact us to discuss this and more with other cybersecurity professionals.

#cybersecurity #PlugX #PlugXhack #hack #hacker

  continue reading

3 episodios

#Tech #MBA #Business #News #Tech News #Chatcyberside
Artwork

When the FBI Becomes Your IT Department

Cyberside Chats: Cybersecurity Insights from the Experts

published

Reproducir Reproduciendo
iconCompartir
 
MP3Episodio en casa
Manage episode 462297088 series 3625301
Contenido proporcionado por Chatcyberside. Todo el contenido del podcast, incluidos episodios, gráficos y descripciones de podcast, lo carga y proporciona directamente Chatcyberside o su socio de plataforma de podcast. Si cree que alguien está utilizando su trabajo protegido por derechos de autor sin su permiso, puede seguir el proceso descrito aquí https://es.player.fm/legal.

In this episode of Cyberside Chats, we explore the FBI’s daring takedown of PlugX malware. By commandeering the malware’s command-and-control infrastructure, the FBI forced PlugX to uninstall itself from over 4,200 devices globally. This bold move echoes similar actions from 2021, such as the removal of malicious web shells from Exchange servers.

We unpack the legal, ethical, and operational implications of these law enforcement actions and provide actionable advice for IT and security leadership to prepare for similar events.

Key topics include:

  • How the FBI executed the PlugX takedown and what it means for organizations.
  • The risks and benefits of law enforcement hacking into private systems to mitigate threats.
  • Preparing for potential third-party access to your network by “authorized” actors like law enforcement or tech vendors.

Takeaways:

  • Be aware that “authorized” third parties, such as law enforcement or Microsoft, may access your computers if they’re part of a botnet.
  • Monitor threat intelligence feeds so you’re informed when events like these occur.
  • Proactively communicate with your ISP about their processes for responding to law enforcement notifications.
  • Ensure your contact information is current with your ISP and DNS registrars to avoid communication gaps.
  • Review and update your incident response (IR) and forensics plans to account for potential third-party access.
  • Include scenarios involving third-party access in your tabletop exercises to improve preparedness.

Resources:

“FBI Hacked Thousands of Computers to Make Malware Uninstall Itself”

https://www.theverge.com/2025/1/14/24343495/fbi-computer-hack-uninstall-plugx-malware

“The Microsoft Exchange Server Hack: A Timeline”

https://www.csoonline.com/article/570653/the-microsoft-exchange-server-hack-a-timeline.html

“Taking Down the Waledac Botnet (The Story of Operation b49)”

https://www.youtube.com/watch?v=jdFD0a7-GsU

Have thoughts or questions about this episode? Contact us to discuss this and more with other cybersecurity professionals.

#cybersecurity #PlugX #PlugXhack #hack #hacker

  continue reading

3 episodios

#Tech #MBA #Business #News #Tech News #Chatcyberside

Todos los episodios

×
 
Loading …

Bienvenido a Player FM!

Player FM está escaneando la web en busca de podcasts de alta calidad para que los disfrutes en este momento. Es la mejor aplicación de podcast y funciona en Android, iPhone y la web. Regístrate para sincronizar suscripciones a través de dispositivos.

 

Escucha más de 500 temas
Player FM : aplicación de podcast
¡Desconecta con la aplicación Player FM !
Get it on App Store Get it on Google Play

Guia de referencia rapida

Los mejores podcasts
El Larguero
Cronómetro
Deportes COPE
Libros para Emprendedores
Profesor Briceño
Nadie Sabe Nada
A Vivir Que Son Dos Días
Hora de cultura POP!
Economía directa
MarcianoCast
Hora 25
Contacto Sur
Aprendiendo GTD y productividad
Cienciaes.com
Hablando con Científicos - Cienciaes.com
La Tortulia Podcast: Episodios
Radio Ambulante
Dr. Muerte
Leyendas Legendarias
Elena en El País de los Horrores
Player FM logo
Ayuda/Preguntas frecuentes | Mejorar | Anunciar
Arte|Finanzas|Comedia|Economía|Entretenimiento|Noticias|Política|Religión
Ciencias|Futbol|Deportes|Narración de historias|Tecnología|Crímenes reales
Copyright 2025 | Mapa del sitio | Política de privacidad | Términos de servicio | | Derechos de autor
Episode being played series thumbnail
icon icon
Velocidad
Ajustes de las series
1x
1x
Volume
100%
icon
icon icon
/

Ver Player FM en ...
Player FM
Browser
Chrome
Safari
Firefox
Escucha este programa mientras exploras
Reproducir