About SOCTales
SOCTales is a Podcast that came to life towards the end of 2022 and is centered around IT security with a focus on Security Operations. It was set up by Host Matt Ford, a 25 year veteran of the IT Security Industry, currently working with a leading Global Cyber Threat Intelligence company, as well as working in the NOC for Blackhat Inc at their global Security Events.
The aim of the Podcast is to bring some of the conversations you would have over a drink into the wider listening world with our guest interviews, alongside regular short form episodes that cover some of the weekly news stories as and when they arise.
We also have a "Oh, For SOC's Sake!" feature in each episode where guests reveal something from their experience that has really made them sit back, head in the air and shout "Oh, for SOC's sake!".. or something along those lines anyway.
You can find us on Spotify, Apple Podcasts, Google Podcasts, Amazon Music, Podcast Index and more.
Latest Episodes
Working in Cyber aboard a £3bn Nuclear Submarine
In this Episode we talk with Dave Kennedy, a 14yr Veteran of the Royal Navy and now Cyber and Information Security Consultant with tmc3. The chat focuses not only on the SatCom and IT work he performed while aboard a £3bn Vanguard Class Submarine ("Are you telling me this sucker is Nuclear? - Marty McFly, 1985") but also the help and support received when he decided to join Civilian life. Dave is also a Founder and Lead Advisor for Cybervets, a group that aims to assist and support those leaving the Armed Forces and move into a career within Cyber Security.
The Art of Social Engineering
In this Episode we chat to Richard De Vere, Head of Social Engineering at Ultima Business Solutions. We get a great insight into the art of Social Engineering, how he approaches various engagements from OSINT through to wearing the right colour tie, and delve into the mind games that can be played. We talk physical access, scoping the engagements, what works and what doesn't, and a great For SOC's sake at the end that I whole heartedly agree with.
We also reference a Blog of Richards during the podcast, that you can find here: https://theantisocialengineer.com/2021/07/15/worlds-worst-phishing-campaign/
Dark Web Threat Intel, TOR, Phish Kits and a 44 yr old Woman from Norfolk
Here we chat to Amir, CEO of SOS Intel, a Threat Intelligence monitoring company who help to scour the Dark Web for a wide range of specific TI, from Phished accounts and scam money laundering sites, to active insider access and breach forums. We discuss how there is more than just TOR used to access these areas, exactly how anonymous you are, how much it costs to buy a disgruntled employee, where Law Enforcement are involved and bust a few myths in the process.
Incident Response, Digital Forensics and a 1940's German era Powerplant in Norway
Here we chat to Jack Hughes, head of Digital Forensics and Incident Response at Unit42, the DFIR and Threat Intelligence company. We chat about how malicious actors get into environments, dwell time, lateral movement and how it can be tracked. In addition, Jack talks about his own experiences within the industry not only in his current role but also his career in getting to that stage and where those looking to get into DFIR can concentrate their learning efforts.
We also look at preparation for a SOC, with elements such as table top exercises as well as personal on the job investigations that Jack has been involved in.
It took a few months to arrange this interview given that Jack is "Always out saving the world" according to his colleagues, so it was great to get him on the show and it was certainly worth it.
Just how Intelligent is Threat Intel?
We talk to Jason Steer, CISO at Threat Intelligence company Recorded Future about where Threat Intel has evolved over time from "just" a list of Hashes or IOC's, where it sits within a Security Platform, the importance of being able to curate and understand billions of information entities and what that could mean for a modern day SOC
Also, another great "For SOC's sake" at the end here...
Further Episodes
SOC Managers finding Sex Toys on the Network, MUD Teams running a global Text based adventure game, Neurodiversity for Hiring Managers... All this and more within the other Episodes!
BS - Our Brief Summary weekly(ish) News reviews
Insider Threats, 20,000 bikes under the C2 and Ransomware MQ
For SOCTales BS this week we look at three news stories that an cover insider threat, but with a difference, the shutting down of a Suzuki factory due to a Cyberattack and the Ransomware MQ (Malicious Quartile)
www.podcast.zip and the Tik Tok countdown in Montana.
Another SocTales BS Episode where we offer up a Brief Summary of the IT Security news from this week, including the security implications of the new TLD's that are available, the banning of Tik Tok in Montana and a new RaaS group that are specifically targeting ESXI hosts.
Ransomware Breaches, again, and Infosec Industry Misogyny, again
SOCTales BS is back with a brief summary of the week and we're introducing one of our new Co-Hosts in Liz Pinder, experienced TI and SOC analyst, to help with the weekly chit chat. This week, Misogyny at RSA and is this ok? (Spoiler: it isn't) and news on a couple of Ransomware breaches including a 4TB Data Exfil from Australia.
Guest Host - Liz Pinder
Supply Chain Attacks, Breach Forums and UK Police Honeypots
The second episode of our SOCTales BS where we look into the supply chain attack with 3CX and their response, we talk a bit more about the ongoing story with Breach forums and also how the UK Police set up a honeypot to catch DDossers.
...and yes, you can hear my doorbell go off in the middle, such is the life of an amateur podcaster!
Ferrari, Breach Forums and Dodgy USB Keys
Fancy 15 minutes over a coffee to catch up on some of the news stories of the week? Need a Brief Summary while you're procrastinating over the next task and need an excuse for a break? Got 15 minutes in the car while you're waiting to pick the kids up from ballet practice? You do? Great, go listen to me spouting some BS.
What's Coming up...
Eliza-May Austin
CEO & Co-Founder of th4ts3cur1ty.company and the PocketSIEM
Now Live!
Fancy being a SOCTales Sponsor?
SOCTales is an indpendent and personally funded project, but we do have overheads. Sponsorship packages available if you would like your brand listed and thanked on the Website. All funds generated will be pushed back into hosting and marketing costs.
Or feel free to buy us a coffee by clicking on the cup on the menu bar.