The "Com" isn't simply a hacker group, it's an online phenomenon that has changed the cybercrime landscape in the past several years. Allison Nixon shares more in this short clip from her SLEUTHCON 2025 talk with Ben Coon. Watch the full talk here >> www.youtube.com/watch?v=TydZ...

Get your talk submission in by TONIGHT (September 26th @ 11:59pm EST) if you still want a chance to take the stage at CYBERWARCON this year!! Submit here >> www.cyberwarcon.com/cfp2025 If you'd like to join us this year but aren't interested in speaking, tickets are available on our website!

Did you know we have 40+ talks available on our YouTube channel, all about cybercrime? Catch up on a talk by experts during your lunch break and learn something new :) www.youtube.com/@sleuthcon

Meet our keynote @dmitri.silverado.org , Co-Founder & Executive Chairman of Silverado Policy Accelerator, taking the stage at CYBERWARCON 2025. A leading authority on cyberespionage & cyber warfare, his expertise has influenced global cybersecurity strategy and policy. Grab your ticket today!

For more than a year I’ve spoken with Scattered Spider “caller” Noah Urban from a Florida jail. I wanted to know how they chose victims, their methods and how Noah became entangled in a virtually and physically violent world. We’re publishing his story today: www.bloomberg.com/news/feature...

CFP closes in 1 WEEK! Submit yours before its too late: www.cyberwarcon.com/cfp2025 #CYBERWARCON #CFP

Have you submitted your talk proposal yet? 👀 Due 11:59 PM (ET) on Friday, September 26th, 2025. We pay $500 for each 30-min talk. Lightning round talks excluded, but everyone gets great swag! Learn more: www.cyberwarcon.com/cfp2025

Check out Allison Nixon in HBO Max's latest tv series, "Most Wanted: Teen Hacker", on the true story of Julius Kivimäki. Allison Nixon & Ben Coon joined us this year to discuss the "Com", an online phenomenon & subculture consisting of fraud, hacking, & violence. www.youtube.com/watch?v=p0CH...

Check out this DomainTools post about a research project on Russian-affiliated ransomware, which coincides with Jon DiMaggio and Daniel Schwalbe's talk from SLEUTHCON this year. dti.domaintools.com/mapping-hidd... #SLEUTHCON #ransomware

Eric Loui from CrowdStrike gave a talk at SLEUTHCON this year on RADIANT SPIDER, a Chinese cybercrime group that has been targeting North America + East Asia since 2022. Learn more about their intrusion tradecraft and attribution. www.youtube.com/watch?v=5rSJ...

Got knowledge on cyberattacks that would make a great talk at CYBERWARCON? We want to hear about it. Submit your talk proposal TODAY! CYBERWARCON's CFP closes at 11:59 PM (ET) on Friday, September 26th, 2025. www.cyberwarcon.com #CYBERWARCON #CFP #threatintel #cybersecurityevents

ICYMI: Paul Melson, VP of Cyber Intelligence Engineering at Capital One, delivered the SLEUTHCON 2025 keynote! Watch here >> www.youtube.com/watch?v=9FvB...

CYBERWARCON isn’t a typical hacker con or policy forum. It’s a one-day event focused on the destruction, disruption, and disinformation shaping the cyber threat landscape. Happening Wednesday, Nov 19, 2025, in Arlington, VA + virtually! Grab your spot or submit a talk proposal: www.cyberwarcon.com

ICYMI! Bavi Sadayappan and Zach Riddle from Google joined us this year at SLEUTHCON to step inside the minds of notorious ransomware operators and examine their thought processes throughout all stages of the attack lifestyle. Check out their talk here >> www.youtube.com/watch?v=PMLp...

Yo! #CYBERWARCON CFP & Reg is LIVE! You know what to do. AI can't do it for you...or wear these socks. @hultquist.bsky.social @cyberwarcon.bsky.social

@alex.leetnoob.com recently wrote an article detailing a series of smart contract crypto scams that are being advertised by threat actors on YouTube. She joined us last spring at SLEUTHCON to talk about AkiraBot, alongside Jim Walter from SentinelOne. www.sentinelone.com/labs/smart-c...

ICYMI! CYBERWARCON is back. Happening Wednesday, November 19th, in Arlington, VA + virtually! We also have our call for proposals open, and we want to see ALL of your talk submissions! For more info on tickets + CFPs >>> www.cyberwarcon.com

CYBERWARCON is coming!!! Registration and CFP are now open for this year's #CYBERWARCON! This year's keynote speaker will be @dmitri.silverado.org!! We are back in Arlington, VA this year on November 19th. www.cyberwarcon.com

CrowdStrike highlights how COOKIE SPIDER’s SHAMOS stealer is spreading. Author Maddie Stewart also spoke at SLEUTHCON about the rise of macOS info stealers since AMOS’s release in 2023, and where they fit into the eCrime ecosystem. Read the latest below.

Check out the full talk here >> youtube.com/watch?v=Omrz... If this talk interests you, we've got plenty more talks on our YouTube channel! We also are returning November 19th, 2025, in Arlington, VA + virtually with the latest research!!

How do you breach a target you can’t phish or infect with malware? You go after their neighbors. In this short clip from CYBERWARCON 2024, Steven Adair from Volexity breaks down how a Russian APT (GruesomeLarch/APT28) pulled off an unprecedented Wi-Fi-based intrusion.

First criminal sentence for a member of the notorious hacker group Scattered Spider, and appropriately enough, it goes to a Florida man. cyberscoop.com/scattered-sp...

I've been thinking a lot about @maxwsmeets.bsky.social Ransomware Trust Paradox and how I think it's breaking. My analysis below (btw: if you haven't you should buy Max's book).

CYBERWARCON is back. 🗓️ Wednesday, Nov 19, 2025 | Crystal City + virtual 🔗 cyberwarcon.com

Researchers at Defcon just showed they can crack the Securam ProLogic locks used on high-security safes to protect guns, cash, and narcotics in pharmacies. When they told Securam last year, it sent them legal threats—and didn't fix the flaws. www.wired.com/story/secura...

Always a good time!

At CYBERWARCON 2024, Zak Butler presented findings on how RT has evolved its tactics to continue spreading its narratives. Watch the full talk to see Zak Butler’s deeper investigation into these covert influence operations. Watch here >> www.youtube.com/watch?v=ZPmL... #cybersecurity #CYBERWARCON

Why are threat actors copying each other? At #SLEUTHCON 2023, Joe Wise (Proofpoint) broke down how cybercriminals are ditching old tactics and copying what works, like HTML smuggling, to save time and stay effective. More talks like this? Join us June 6 for #SLEUTHCON 2025! 🔗 sleuthcon.com

Sreekar Madabushi & Aleksandar Milenkoski joined us at SLEUTHCON 2025 to present their findings on how North Korean threat actors showed interest in Validin’s threat intel data. Watch their full talk to learn more about what they found. Full presentation >> www.youtube.com/watch?v=UxRQ...

At CYBERWARCON 2023, Kristin Del Rosso + Dakota Cary joined us to explain how China’s mandatory vulnerability reporting laws reshaped global cybersecurity. Watch the full video here >> www.youtube.com/watch?v=xbeR... CYBERWARCON is returning Wed, November 19, 2025 in Arlington, VA + online.

The "Com" isn't simply a hacker group, it's an online phenomenon that has changed the cybercrime landscape in the past several years. Allison Nixon shares more in this short clip from her SLEUTHCON 2025 talk with Ben Coon. Watch the full talk here >> www.youtube.com/watch?v=TydZ...

🚨 Sponsorships are OPEN for CYBERWARCON 2025! Spots are limited + interest is already high. Help us keep the event independent + accessible to the folks doing the work. 📍 Crystal City, VA 📅 Nov 19, 2025 📩 cyberwarcon.com Let’s build something solid again this year.

CYBERWARCON is back! Save the date for Wednesday, November 19, 2025, in Arlington, VA + virtually. Follow us to stay up to date for CFPs, volunteer opportunities + more! Check out for more information + sponsorship opportunities >> www.cyberwarcon.com

Exciting news! Select SLEUTHCON 2025 talks are now live on our YouTube for you to watch! Get a recap on some of your favorite talks from SLEUTHCON 2025, or watch the ones you missed! Check them out here >> www.youtube.com/@sleuthcon #SLEUTHCON #cybersecurity

What is Androxgh0st? Alex Delamotte breaks it down in her SLEUTHCON talk from 2024. She also provides insights on how researchers can attribute tools in an open-source malware ecosystem Check out this clip from her talk to learn more! Full vid here > www.youtube.com/watch?v=iYTe...

Google has just used AI and threat intel to foil a zeroday before it could launch. Working from artifacts gathered by GTIG, Big Sleep was used to identify a vuln before actors could ramp up exploitation. It doesn’t get much better than this in intel. blog.google/technology/s...

Legit remote admin tools are essential for IT teams, but cybercriminals are turning them into a serious threat. Eric Loui explains how. Check out this old #SLEUTHCON 2024 clip, and watch the full talk here >> www.youtube.com/watch?v=i0vP...

Crypters are the secret weapon cybercriminals use to hide their malware in plain sight. Bavi Sadayappan from Mandiant unpacks how these tools work & why they’re thriving in underground markets. Check out this throwback from #SLEUTHCON 2024. View the full video here > www.youtube.com/watch?v=4pHe...

Four UK arrests in Scattered Spider incidents. Suspects are 17 to 20 years old. therecord.media/uk-arrests-f...

At CYBERWARCON 2024, Matthieu Faou exposed Operation Texonto, a Russia-aligned information operation. Watch his full talk here >> www.youtube.com/watch?v=X5lL... Read the research here >> www.welivesecurity.com/en/eset-rese... #CYBERWARCON #ThreatIntel #InformationOperations #Disinformation

A big thank you to all of our sponsors who made SLEUTHCON possible this year! @vertexproject.bsky.social @sentinelone.com @domaintools.bsky.social @crowdstrike.com @teamcymrus2.bsky.social @intel471.bsky.social + VMRay & Validin!

Great feature rolled out by AT&T. SIM swapping is consistently used by Scattered Spider and other actors to defeat MFA. cyberscoop.com/att-wireless...

Stay connected with us! You can find our other socials below. Website: sleuthcon.com YouTube: youtube.com/@sleuthcon Twitter: x.com/SLEUTHCON Linkedin: linkedin.com/company/sleu... pic.x.com/gyQfZ2MGj9

At SLEUTHCON, Allan Liska & Jon DiMaggio hosted the only gameshow where we ask: Is it ransomware? From CL0P to Pay2Key, they broke it all down. They recently joined LeMagIT to discuss how the ransomware ecosystem keeps evolving. You can watch it here: www.brighttalk.com/webcast/1953...

This year at #SLEUTHCON, Alex Delamotte + Jim Walter joined us to share details on AkiraBot, a Python framework used to promote a low-quality SEO service by spamming website chats and contact forms. Read their full report from @sentinellabs.bsky.social here www.sentinelone.com/labs/akirabo...

Google TAG warns of attacks on U.S. insurance firms resembling Scattered Spider tactics. “The insurance industry should be on high alert.” — @hultquist.bsky.social, founder of SLEUTHCON + CYBERWARCON Check out Eric Loui’s 2024 talk that covers Scattered Spider activity: youtu.be/i0vPoKc9jG0

Google's @hultquist.bsky.social says in an emailed statement that the company is seeing "multiple intrusions in the US" that bear the hallmarks of Scattered Spider activity and "now seeing incidents in the insurance industry." Google spox. confirmed there's more than one U.S.-based insurance victim.

Select talks from past SLEUTHCONs are up and ready for you to watch on our YouTube channel. Check them out + subscribe so you're one of the first to know when talks from this year are available. 🐍 www.youtube.com/@sleuthcon #cybersecurity #cybercrime #SLEUTHCON