Paul's Security Weekly (Audio)

What We've Learned from LockBit and Black Basta Leaks (and News) - Ian Gray - PSW #888

Aug 21, 2025
Guest
Ian Gray
Ian Gray, VP of Intelligence at Flashpoint and expert in cybercrime, joins to discuss insights from the LockBit and Black Basta leaks. He reveals how these leaks expose ransomware tactics and negotiation strategies, providing crucial intelligence for defenders. The conversation touches on the rise of opportunistic ransomware tactics, as well as the increasing influence of AI in cybercrime. Ian highlights actionable steps for security teams, emphasizing the importance of understanding adversary behaviors and bolstering defenses.
Ask episode
AI Snips
Chapters
Transcript
Episode notes
ANECDOTE

From Admin Work To Ransomware Research

  • Ian Gray described starting at Flashpoint doing grunt admin work and growing into ransomware research over 11 years.
  • He later pursued advanced degrees and now teaches while focusing on ransomware intelligence.
ADVICE

Plan For Double Extortion Scenarios

  • Prepare for double extortion by protecting sensitive data and planning legal/regulatory responses.
  • Focus payments decisions on data exposure risk, not just availability of backups.
ANECDOTE

Evite Vulnerability Story

  • Paul recalled the Evite disclosure Trent found that exposed poor security in a popular event site.
  • That example shows even non-security apps can hold serious privacy and security flaws.
Get the Snipd Podcast app to discover more snips from this episode
Get the app