{"version":"1.0.0","segments":[{"startTime":0.16,"endTime":3.919,"body":"Welcome to Tech Brood with your host, Greg Doig. We dive deep into the"},{"startTime":3.919,"endTime":7.22,"body":"latest tech trends, innovations, and conversations that matter."},{"startTime":7.6,"endTime":11.28,"body":"Whether you're a tech enthusiast, industry professional, or just curious"},{"startTime":11.28,"endTime":14.644,"body":"about how technology is shaping our world, you found the right"},{"startTime":14.644,"endTime":18.404,"body":"place. So grab your favorite drink, settle in, and let's explore the"},{"startTime":18.404,"endTime":20.425,"body":"fascinating world of technology together."},{"startTime":25.204,"endTime":29.044,"body":"Welcome back. Today, we have an intel drop that's hot off the"},{"startTime":29.044,"endTime":32.579,"body":"press, and trust me, this one's a doozy. We're going"},{"startTime":32.579,"endTime":35.719,"body":"deep on this one. Multiple Western intelligence"},{"startTime":35.94,"endTime":39.32,"body":"agencies just released a joint cybersecurity advisory"},{"startTime":39.62,"endTime":42.76,"body":"that confirms what many of us in the shadows have suspected."},{"startTime":43.565,"endTime":47.005,"body":"Russia's infamous military intelligence unit known as the"},{"startTime":47.005,"endTime":50.685,"body":"GRU has been conducting a sophisticated cyber"},{"startTime":50.685,"endTime":53.985,"body":"espionage operation targeting western logistics"},{"startTime":54.125,"endTime":57.725,"body":"companies and technology firms. Let's break cover on"},{"startTime":57.725,"endTime":61.4,"body":"what's behind this. The main actor is the GRU's eighty"},{"startTime":61.4,"endTime":64.92,"body":"fifth main special service center, also known as"},{"startTime":64.92,"endTime":68.6,"body":"military unit two six one sixty five. If that sounds"},{"startTime":68.6,"endTime":72.295,"body":"familiar to my regular listeners, it should. These are the"},{"startTime":72.295,"endTime":76.055,"body":"same digital spies known in cybersecurity circles as a p t"},{"startTime":76.055,"endTime":79.674,"body":"twenty eight, Fancy Bear, Forest Blizzard, or Blue Delta."},{"startTime":80.134,"endTime":83.895,"body":"They're essentially Russia's premier cyberintelligence unit, and they've"},{"startTime":83.895,"endTime":87.64,"body":"been very, very busy. The target list reads like a who's"},{"startTime":87.64,"endTime":91.02,"body":"who of infrastructure that's helping Ukraine defend itself."},{"startTime":91.16,"endTime":94.68,"body":"Defense industry suppliers, transportation hubs like ports and"},{"startTime":94.68,"endTime":98.38,"body":"airports, maritime shipping companies, air traffic management,"},{"startTime":98.52,"endTime":102.305,"body":"and critical IT service providers. And it's not just in one"},{"startTime":102.305,"endTime":105.925,"body":"country. The operation has hit targets across The US,"},{"startTime":105.985,"endTime":109.825,"body":"UK, Germany, Poland, Romania, Ukraine, and at least"},{"startTime":109.825,"endTime":113.605,"body":"seven other countries. This is a massive coordinated effort."},{"startTime":113.905,"endTime":117.36,"body":"But here's where it gets even more intriguing. These digital"},{"startTime":117.36,"endTime":121.06,"body":"operatives aren't just after corporate secrets to disrupt"},{"startTime":121.12,"endTime":124.82,"body":"operations. They're specifically hunting for detailed information"},{"startTime":124.96,"endTime":128.419,"body":"on aid shipments to Ukraine. Think shipping manifests,"},{"startTime":128.635,"endTime":132.315,"body":"train schedules, container numbers, travel routes, and details about"},{"startTime":132.315,"endTime":135.615,"body":"what exactly is in those aid packages. In a particularly"},{"startTime":135.915,"endTime":139.355,"body":"clever move, they've even compromised IP cameras at border"},{"startTime":139.355,"endTime":143.115,"body":"crossings. Yes. They're literally watching aid cross the border in"},{"startTime":143.115,"endTime":146.569,"body":"real time. Imagine having eyes on the ground without a single"},{"startTime":146.569,"endTime":150.349,"body":"operative in the area. That's next level espionage, folks."},{"startTime":150.89,"endTime":154.51,"body":"Now let's talk trade craft, how these cyber spies are getting in."},{"startTime":154.73,"endTime":158.535,"body":"Think of your network like a house. They're not just trying the front door. They're"},{"startTime":158.535,"endTime":162.315,"body":"checking every window, chimney, and basement entrance. Their toolkit includes"},{"startTime":162.375,"endTime":165.815,"body":"password spraying. Imagine trying every common key on a"},{"startTime":165.815,"endTime":169.035,"body":"building's door until one works. Spear phishing."},{"startTime":169.57,"endTime":172.95,"body":"Sending emails that look legitimate but contain malicious traps."},{"startTime":173.49,"endTime":177.25,"body":"Exploiting vulnerabilities in VPNs and other Internet facing"},{"startTime":177.25,"endTime":181.09,"body":"systems, the digital equivalent of finding an unlocked service"},{"startTime":181.09,"endTime":184.615,"body":"entrance. They've even weaponized calendar invitations in"},{"startTime":184.615,"endTime":188.155,"body":"Outlook that secretly steal authentication credentials when opened."},{"startTime":188.615,"endTime":192.455,"body":"That meeting invitation from HR, it might be a digital spy"},{"startTime":192.455,"endTime":196.25,"body":"operation. And once inside, these hackers move through networks using"},{"startTime":196.25,"endTime":200.09,"body":"stolen credentials and open source tools. They're like ghosts in your"},{"startTime":200.09,"endTime":203.77,"body":"system, modifying permissions, deleting logs, and setting up"},{"startTime":203.77,"endTime":207.39,"body":"long term monitoring. In some cases, they've even attempted"},{"startTime":207.53,"endTime":211.075,"body":"voice phishing, literally calling targets while pretending to be"},{"startTime":211.075,"endTime":214.535,"body":"IT staff. And what makes this campaign particularly"},{"startTime":214.834,"endTime":218.675,"body":"concerning is its persistence. Unit two six one sixty"},{"startTime":218.675,"endTime":222.38,"body":"five has been at this for over two years, creating a continuous"},{"startTime":222.44,"endTime":225.8,"body":"intelligence pipeline back to Moscow about Western aid flown to"},{"startTime":225.8,"endTime":229.26,"body":"Ukraine. So what's your counterintelligence strategy?"},{"startTime":229.64,"endTime":233.26,"body":"The advisory from CISA recommends several defensive measures."},{"startTime":233.8,"endTime":237.495,"body":"One, implement multifactor authentication with strong"},{"startTime":237.495,"endTime":241.095,"body":"factors like hardware keys. Two, segment your"},{"startTime":241.095,"endTime":244.935,"body":"networks to limit lateral movement. Three, monitor and"},{"startTime":244.935,"endTime":248.455,"body":"audit email permissions, especially for accounts that handle shipping"},{"startTime":248.455,"endTime":251.92,"body":"information. Four, update systems and patch"},{"startTime":251.92,"endTime":255.76,"body":"vulnerabilities immediately, and five, train your people to"},{"startTime":255.76,"endTime":259.44,"body":"recognize phishing attempts, human firewall is still your best"},{"startTime":259.44,"endTime":263.28,"body":"defense. The cyber battlefield remains the perfect theater"},{"startTime":263.28,"endTime":266.885,"body":"for modern great power competition, plausible deniability,"},{"startTime":267.345,"endTime":271.185,"body":"and potentially massive intelligence gains. And as always, the first"},{"startTime":271.185,"endTime":273.845,"body":"step in defense is understanding the threat."},{"startTime":274.785,"endTime":278.545,"body":"And remember, in today's world, the most dangerous operatives aren't carrying"},{"startTime":278.545,"endTime":281.96,"body":"guns. They're carrying laptops. Stay vigilant. Stay"},{"startTime":281.96,"endTime":285.419,"body":"secure. Thanks for listening, and we'll talk to you soon."},{"startTime":286.919,"endTime":290.6,"body":"Thank you for tuning in to another episode of Tech Brood. If you enjoyed"},{"startTime":290.6,"endTime":294.139,"body":"today's discussion, don't forget to subscribe wherever you get your podcasts."},{"startTime":294.755,"endTime":298.515,"body":"Have questions or suggestions for future topics? Reach out on our"},{"startTime":298.515,"endTime":302.228,"body":"website or social media channels. Until next time, Greg"},{"startTime":302.228,"endTime":305.908,"body":"asked me to remind you that the future of tech is brewing right now, and"},{"startTime":305.908,"endTime":309.668,"body":"we're all part of that journey. Stay curious, stay connected, and we"},{"startTime":309.668,"endTime":311.448,"body":"will catch you on our next episode."}]}