Take 1 Security Podcast: Episode 10
Unsupervised Learning16 Maalis 2015

Take 1 Security Podcast: Episode 10



Play Podcast

START CONTENT


* There was another SQL Injection bug found in SEO by Yoast


* It required admins to click a malicious link
* Was patched quickly
* It’s the plugins that make WordPress vulnerable

* Attackers are targeting gamers for ransomware


* Virlock is one version of ransomware that not only locks the screen, but infects files
* It’s also polymorphic, so it changes itself every time it runs
* TeslaCrypt goes after gamers, which seems super smart because they are often addicted

* The Hello Barbie doll is recording kids voices and sending the recordings over the Internet for voice recognition


* I get asked a lot about what to do about this kind of stuff
* Start by making a list of everything that can record voice or audio in your home, and determine what kind of controls you have on them
* Assume the worst, even though it’s probably not that bad

* US industrial systems attacked 245 times between October 2013 and September 2014


* Most attacks were against Critical Manufacturing and Energy
* Biggest vectors were spear phishing and port scanning

* CloudFlare aims to defeat DDoS with Virtual DNS


* They want to proxy DNS before it hits customer name server

* The CIA supposedly tried to hack Apple hardware


* The article has come under extreme scrutiny

* Going to be on the Security Weekly podcast with Pau
* Hillary Clinton’s email account dram
* OpenSSL is getting an audit


* Bout time

* Wikimedia is suing the NSA over surveillance
* Spoofing the boss is the best way to phish someone, evidently
* Had a great time at CactusCon in Phoenix


* Did a talk with Jason and saw Dave’s keynote
* Dave’s keynote was about struggling with the basics, not APT
* He asked when a major breach was NOT a dumb mistake

* Someone’s looking to make a Snowden Phone
* Looks like I’ll be on the Security Weekly podcast with Paul


* Going to talk about IoT security and my our OWASP project



END CONTENT

Play Podcast

Notes


* Comments welcome on content and format, as usual.

Become a Member: https://danielmiessler.com/upgrade

See omnystudio.com/listener for privacy information.

Jaksot(532)

News & Analysis | NO. 315

News & Analysis | NO. 315

The latest in Security News, Technology News, Human News, Ideas Trends & Analysis, Discovery, Recommendations, and the Weekly Aphorism… Web Version: https://danielmiessler.com/podcast/news-analysis-no-315/Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

24 Tammi 20229min

Your Value Comes from Your Output

Your Value Comes from Your Output

A short essay on how there are no shortcuts to getting a seat at the table. The secret is no secret at all: It's hard work on a hard problem…Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

18 Tammi 20226min

News & Analysis: NO. 314

News & Analysis: NO. 314

The latest in Security News, Technology News, Human News, Ideas Trends & Analysis, Discovery, Recommendations, and the Weekly Aphorism… Web Version: https://danielmiessler.com/podcast/news-analysis-no-314/Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

18 Tammi 202211min

News & Analysis: No. 313

News & Analysis: No. 313

The latest in Security News, Technology News, Human News, Ideas Trends & Analysis, Discovery, Recommendations, and the Weekly Aphorism… Web Version: https://danielmiessler.com/podcast/news-analysis-no-313/Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

10 Tammi 202216min

News & Analysis | No. 312

News & Analysis | No. 312

The latest in Security News, Technology News, Human News, Ideas Trends & Analysis, Discovery, Recommendations, and the Weekly Aphorism… Web Version: https://danielmiessler.com/podcast/news-analysis-no-312/Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

3 Tammi 202215min

A Short Episode Before the Holidays

A Short Episode Before the Holidays

A quick update on log4j and an announcement on the next two weeks during the holidays.Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

20 Joulu 20214min

The Vigilant

The Vigilant

A short essay on how we should pay and otherwise reward the thankless heroes who maintain our core internet code.Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

13 Joulu 20212min

News & Analysis | No. 311

News & Analysis | No. 311

The latest in Security News, Technology News, Human News, Ideas Trends & Analysis, Discovery, Recommendations, and the Weekly Aphorism… Web Version: https://danielmiessler.com/podcast/news-analysis-no-311/Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

13 Joulu 202114min