Every Tuesday at 1 PM ET, Red Canary Co-founder Keith McCammon and CISO Dave Farrow tackle cybersecurity news and industry trends with special guests and exclusive operational insights.

Along with some broader discussions of breaking news and industry trends, July’s episodes shed light on emerging adversary tradecraft leveraging npm packages, malvertising, and a new variation of paste and run. We’ve embedded them all here for your viewing pleasure.

Episode 22: Where SIEMs fall short

Keith and Dave tackle a question straight from the audience mailbag: What are the limitations of detection engineering in a SIEM? They also touch briefly on the cyber implications of recent geopolitical events in the Middle East.

Episode 23: AMA with Brian Donohue

Keith and Principal Security Researcher Brian Donohue answer questions from the audience about threat hunting, application controls, privacy concerns, and more.

Episode 24: FileFix and TA582

Dave welcomes Proofpoint’s Joe Wise for a technical breakdown of the “FileFix” technique, a new twist on paste and run that leverages File Explorer to download remote access trojans (RAT).

>

Episode 25: July Intelligence Insights

Senior Intelligence Analyst Stef Rand breaks down the top 10 threat list from July’s Intelligence Insights. Stef zeros in on CleanUpLoader, last month’s third most prevalent threat, which leverages malvertisting to target users attempting to download legitimate software like PuTTY.

Episode 26: npm package compromises

Keith and Dave dive into the persistent issue of malicious npm packages, highlighting recent research and the long-standing problem of open-source software within the developer supply chain.