Take 1 Security Podcast: Episode 5
Unsupervised Learning8 Feb 2015

Take 1 Security Podcast: Episode 5



START CONTENT


* Anthem, the second largest healthcare company, had a major breach


* They lost around 80 million socials, addresses, emails, etc., which is roughly double the Target breach
* There’s speculation that it was China, trying to penetrate government, but it’s early
* Watch for phishing scams related to it
* The megabreaches continue…weee!

* A WordPress plugin called FancyBox had a serious compromise in it last week, which affected thousands of websites


* If you’re going to run WordPress, understand that Plugins are the best way to get yourself hacked
* Specifically, the type of plugins that handle user input and do something with it that affects the site’s output
* Image manipulation plugins have been particularly vulnerable, usually to XSS

* There was another critical Flash vulnerability this week


* Like I said last week, and the week before, there’s a first time for everything

* Three bug hunters at HP received the 125,000 prize for finding a major vulnerability in Internet Explorer


* Because they work for HP they couldn’t take the cash, and instead donated it to charity

* Microsoft released Outlook for iOS last week, which looks pretty slick


* Unfortunately it is riddled with security flaws
* Recommendation: wait for a few updates, and for them to get a security assessment


END CONTENT


Play Podcast

Become a Member: https://danielmiessler.com/upgrade

See omnystudio.com/listener for privacy information.

Episoder(532)

NO. 355 | NEWS & ANALYSIS SERIES

NO. 355 | NEWS & ANALYSIS SERIES

Critical TLS, Liz Russia, AI Sweater… Sponsor: Keeper Security | Protect employee passwords in minutes with Keeper — the award-winning password manager that is secure, easy to set up, and easy to use. Keeper works out-of-the-box with identity, MFA, and SIEM solutions including Okta, Azure AD, Ping Identity, G Suite, YubiKey and many others…Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

31 Okt 202213min

Why Everyone Needs a Blog | THE IDEA SERIES

Why Everyone Needs a Blog | THE IDEA SERIES

People used to be defined by where they work, and now they’re defined by their knowledge, capabilities, and opinions.Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

27 Okt 20224min

Creativity Comes From Idleness | THE IDEA SERIES

Creativity Comes From Idleness | THE IDEA SERIES

A few years ago I figured out why we’re so creative in the shower…Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

26 Okt 20222min

AI Art Will Push the Top 1% to Human Artists | THE IDEA SERIES

AI Art Will Push the Top 1% to Human Artists | THE IDEA SERIES

https://danielmiessler.com/blog/ai-art-push-1-percent-human-artists/Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

25 Okt 20224min

NO. 354 | THE NEWS & ANALYSIS SERIES

NO. 354 | THE NEWS & ANALYSIS SERIES

China Controls, TikTok Tracking, Infra Sabotage…Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

24 Okt 202218min

Humiliation is Deadly | THE IDEA SERIES

Humiliation is Deadly | THE IDEA SERIES

Exploring a status game model for understanding negative behavior. https://danielmiessler.com/blog/humiliation-is-deadly/Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

21 Okt 202211min

NO. 353 | THE NEWS & ANALYSIS SERIES

NO. 353 | THE NEWS & ANALYSIS SERIES

🗞️ Caffeine Phishing, Cyber Labeling, Kamikaze Drones… Sponsor: Panther Security https://panther.com/ul22Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

17 Okt 20229min

News & Analysis | NO. 352

News & Analysis | NO. 352

CISA Assets, Contractor Hack, China CVEs… Sponsored by: Jupiter One @ jupiterone.com/unsupervisedlearning Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

12 Okt 202213min

Populært innen Teknologi

romkapsel
teknisk-sett
rss-avskiltet
tomprat-med-gunnar-tjomlid
energi-og-klima
shifter
rss-impressions-2
nasjonal-sikkerhetsmyndighet-nsm
smart-forklart
rss-alt-som-gar-pa-strom
pedagogisk-intelligens
i-loopen
rss-digitaliseringspadden
rss-heis
rss-fjorsilkebris-podcast
teknologi-og-mennesker
elektropodden
kunstig-intelligens-med-morten-goodwin
rss-for-alarmen-gar
rss-plateprat