Darknet Diaries

Craig Jones, a former Sophos security leader, and Andrew Brandt, a veteran threat researcher, unpack a six-year cyber war with suspected Chinese operators. They cover stolen firewall source code, mass exploitation of 80,000 devices, emergency remote hotfixes, covert countermeasures, domain seizures, targeted APAC intrusions, and the chilling discovery of a possible UEFI bootkit.

A shadow economy in the Dominican Republic built on stolen credit cards and cash withdrawal crews. A daring plan to encode stolen numbers onto blank cards and hit Manhattan ATMs by the thousands. High-stakes cash runs, international laundering trips, arrests and a deadly ambush back home. The story follows the tradecraft, timing and fallout of a $2.8 million heist.

A consumer streaming device that promised endless, ad-free content turns out to be a network menace. The story follows discovery, packet captures, ARP impersonation, and hidden remote access. It traces fake manufacturers, influencer-driven sales, reseller networks, and links to massive botnets and DDoS. The narrative covers retail deception, takedown challenges, and the broader risks these devices pose to home and corporate networks.

They dig into how music charts and streaming numbers can be faked and weaponized. Stories cover social marketing hacks, clickjacking, and buying traffic to manufacture hits. The conversation reveals massive fraud rings, hijacked devices, dark web streaming services, and how payouts are siphoned from real artists. They also explain building detection systems and industry responses to stop the scams.

Tim Zee (TMZ), long-time Phrack staffer and editor who coordinated recent revivals and print runs. They dig into Phrack’s roots in phone-freaking and 90s hacker culture. They recount controversial publications, legal fights, and the magazine’s influence on vulnerability research. Hear stories about reviving the archive, printing hardcopies, DEF CON distribution, and plans to grow the community.

Eli, known as Acid Freak, co-founded the Masters of Deception, a notorious hacker group that outshined the Legion of Doom. He shares captivating insights into MoD's gritty exploits, including their origins and playful hacks on pay phones. The group’s infamous intrusion claims, including a purported White House breach, highlight their notoriety. Eli recounts dramatic rivalries, surveillance by the Secret Service, and the legal challenges that ensued, culminating in the gradual demise of the hacker golden age.

Explore the origins of the Legion of Doom, a legendary hacker group from the 80s and 90s. Discover the underground world of phone phreaking, blue boxes, and the thrill of BBS culture. Hear about the fallout from the infamous Ramparts article and how it ignited police crackdowns. Learn about Paul Stira's audacious access to a telco switch and the role of Frack magazine in shaping hacker ethics. Delve into the implications of the Computer Fraud and Abuse Act and the notorious AT&T outage, revealing the intersection of hacking and government response.

Danny Jenkins, CEO and co-founder of ThreatLocker, shares insights from his extensive experience in cybersecurity. He discusses alarming ransomware attacks that hit a manufacturer and a hospital, revealing how his company’s deny-by-default approach can block such threats. Also, hear about the challenges faced during recovery and the necessity of changing the security paradigm. Jenkins emphasizes the effectiveness of ThreatLocker's architecture over traditional detection methods, highlighting real-world success stories that demonstrate the importance of proactive security measures.

Maxie Reynolds, a professional penetration tester and entrepreneur, shares her electrifying journey from underwater robotics to cybersecurity. She recounts daring physical intrusions, including impersonating a Swedish executive to breach a factory. Maxie reveals the adrenaline rush of red teaming and the chaos of network scans. She discusses her innovative idea of underwater data centers, explaining how they operate and their environmental benefits. Tune in for thrilling stories and insights into both hacking and tech security!

Tanya Janca, a renowned AppSec expert and founder of We Hack Purple, shares gripping tales from her cybersecurity journey. She vividly recounts how a single SQL injection changed her career and describes her first penetration testing experiences. Tanya reveals an incident where exploratory inputs crashed a production server and led to a significant data leak. She discusses her role in incident response and the importance of training help desk teams in recognizing security threats. Her passion for secure coding inspires developers to prioritize cybersecurity.