Breaking Badness | Podcast

Hacked Chats & Telecom Takedowns: Black Basta & Salt Typhoon

DomainTools — Tue, 11 Mar 2025 19:54:11 +0000

In this episode of of Breaking Badness takes a deep dive into two of the biggest cybersecurity stories of the year.

Building a Hacker Conference from Scratch: The Wild Origins of ShmooCon

DomainTools — Wed, 05 Mar 2025 15:31:02 +0000

In this episode of Breaking Badness, we sit down with Bruce and Heidi Potter, two of the masterminds behind ShmooCon, the legendary cybersecurity conference that ran for 20 years.

Guess who's back, back again? DTI’s back, tell a friend!

DomainTools — Fri, 28 Feb 2025 17:15:53 +0000

Well hello there! If you are a returning reader, that likely means you found this information beneficial to your organization or all of my jokes last month absolutely KILLED. Or all of the above! Either way, welcome back! If you’re new around these parts, I’m Daniel Schwalbe, CISO and Head of Investigations at DomainTools, and […]

S3 Takeovers, DeepSeek Deceptions & the Cloud’s Dirty Laundry

DomainTools — Wed, 26 Feb 2025 14:47:09 +0000

In this episode of Breaking Badness, we dive into two major cybersecurity concerns: the risks of abandoned S3 buckets and a wave of phishing attacks impersonating DeepSeek.

Why RDAP is the Next Big Step in Domain Intelligence

DomainTools — Thu, 20 Feb 2025 17:00:00 +0000

Introduction For many years, domain registration data provided by the Whois protocol has been a crucial source of intelligence for cyber threat researchers. Details such as a registrant’s email address, phone number, and affiliate organization can be critical pivot points for investigators, eventually leading to a more complete answer to the Who, What, When, Where, […]

Breaking Badness 200: Cybersecurity’s Evolution, 200 Puns Later!

DomainTools — Wed, 19 Feb 2025 14:18:47 +0000

Welcome to the 200th episode of Breaking Badness! 🎉 In this special milestone edition, we
take a nostalgic stroll down memory lane, discuss the evolution of cybersecurity, and explore
how the podcast—and the security landscape—has changed since 2019.

Using DomainTools and Microsoft Security Copilot to Enhance Domain Intelligence

DomainTools — Fri, 14 Feb 2025 16:59:54 +0000

February 24, 2025 update: general availability for the Security Copilot and DomainTools integration is now live. Cyber attacks, which almost always leverage DNS infrastructure such as domains and IP addresses, often involve hundreds of data points that make up the malicious infrastructure. This can require cybersecurity teams to spend significant amounts of time collecting and […]

Zero Trust, Secure Coding & Developer Incentives: Tanya Janca on AppSec’s Biggest Challenges

DomainTools — Wed, 12 Feb 2025 16:43:08 +0000

In this episode of Breaking Badness, we dive deep into the fundamental principles of secure software development, the psychology behind developer incentives, and the often-overlooked importance of zero-trust security.

Registration Data Access Protocol Frequently Asked Questions

DomainTools — Thu, 06 Feb 2025 15:13:19 +0000

What is RDAP? RDAP, or Registration Data Access Protocol, is a JSON-format replacement for Whois. This replacement is being driven by Internet management organizations like the Internet Corporation for Assigned Names and Numbers (ICANN) and the Internet Assigned Numbers Authority (IANA). How long has RDAP been around? RDAP was initially standardized by the Internet Engineering […]

DNS Errors and Malware Builders Turning on Attackers

DomainTools — Wed, 05 Feb 2025 15:20:27 +0000

In this episode of Breaking Badness, we analyze two fascinating cybersecurity incidents that expose both corporate misconfigurations and hacker missteps.