Resources • Videos
Security operations

Red Canary Office Hours: Episode 43 – Defense-in-depth strategies to keep you warm

Air Date: December 2, 2025

Defense-in-depth strategies to keep you warm

Keith is joined by Red Canary threat hunter Harrison Koll. They kick things off by discussing the latest on the return of the Shai Hulud worm—aka Sha1-Hulud: The Second Coming—a messy npm supply chain compromise that hijacked accounts, stole cloud credentials, and infected GitHub repositories—and what defenders can do in its wake.

After, Harrison breaks down the concept of defense-in-depth, describing security gaps he observes day-to-day, and how implementing multiple layers of controls, including firewalls, SSL inspection, and network segmentation, can go a long way in preventing a future security incident.

Episode 43: Layer up!

Resources mentioned in this episode

Red Canary blog

Node problem: Tracking recent npm package compromises

Related Resources

Red Canary Office Hours: Episode 42 – A cornucopia of Intelligence Insights

Videos| Security operations

Red Canary Office Hours: Episode 42 – A cornucopia of Intelligence Insights

Red Canary Office Hours: Episode 41 – Bird feed: How Red Canary names and tracks threats

Videos| Security operations

Red Canary Office Hours: Episode 41 – Bird feed: How Red Canary names and tracks threats

Red Canary Office Hours: Episode 40 – The hidden tunnels of STORM-2603’s ransomware ops

Videos| Security operations

Red Canary Office Hours: Episode 40 – The hidden tunnels of STORM-2603’s ransomware ops

Red Canary Office Hours: Episode 39 – Nightmare on supply chain street

Videos| Security operations

Red Canary Office Hours: Episode 39 – Nightmare on supply chain street

Security gaps? We got you.

Sign up for our monthly email newsletter for expert insights on MDR, threat intel, and security ops—straight to your inbox.

Back to Top