Take 1 Security Podcast: Episode 10
Unsupervised Learning16 Mars 2015

Take 1 Security Podcast: Episode 10



Play Podcast

START CONTENT


* There was another SQL Injection bug found in SEO by Yoast


* It required admins to click a malicious link
* Was patched quickly
* It’s the plugins that make WordPress vulnerable

* Attackers are targeting gamers for ransomware


* Virlock is one version of ransomware that not only locks the screen, but infects files
* It’s also polymorphic, so it changes itself every time it runs
* TeslaCrypt goes after gamers, which seems super smart because they are often addicted

* The Hello Barbie doll is recording kids voices and sending the recordings over the Internet for voice recognition


* I get asked a lot about what to do about this kind of stuff
* Start by making a list of everything that can record voice or audio in your home, and determine what kind of controls you have on them
* Assume the worst, even though it’s probably not that bad

* US industrial systems attacked 245 times between October 2013 and September 2014


* Most attacks were against Critical Manufacturing and Energy
* Biggest vectors were spear phishing and port scanning

* CloudFlare aims to defeat DDoS with Virtual DNS


* They want to proxy DNS before it hits customer name server

* The CIA supposedly tried to hack Apple hardware


* The article has come under extreme scrutiny

* Going to be on the Security Weekly podcast with Pau
* Hillary Clinton’s email account dram
* OpenSSL is getting an audit


* Bout time

* Wikimedia is suing the NSA over surveillance
* Spoofing the boss is the best way to phish someone, evidently
* Had a great time at CactusCon in Phoenix


* Did a talk with Jason and saw Dave’s keynote
* Dave’s keynote was about struggling with the basics, not APT
* He asked when a major breach was NOT a dumb mistake

* Someone’s looking to make a Snowden Phone
* Looks like I’ll be on the Security Weekly podcast with Paul


* Going to talk about IoT security and my our OWASP project



END CONTENT

Play Podcast

Notes


* Comments welcome on content and format, as usual.

Become a Member: https://danielmiessler.com/upgrade

See omnystudio.com/listener for privacy information.

Avsnitt(532)

News & Analysis | NO. 351

News & Analysis | NO. 351

Cloudflare vs. CAPTCHA, Exchange 0-Day, NSA Leaker Sponsor: Zerofox: Download the External Cybersecurity GuideBecome a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

3 Okt 202217min

News & Analysis | NO. 350

News & Analysis | NO. 350

Infowar Audit, Zoom Reflections, SF CamerasBecome a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

26 Sep 202215min

News & Analysis: NO. 349

News & Analysis: NO. 349

Uber Hacked, GTA Leak, Goodbyes Listen to JJAgha's comments on Relentless Iterations and What He Expects from a Modern SIEM: https://panther.com/resources/podcasts/compass-ciso-jj-agha-on-relentless-iterations-and-what-he-expects-from-a-modern-siem/ Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

20 Sep 202214min

News & Analysis | NO. 348 | Spearmishing, Patreon Security, and Triple-Threat Ransomware

News & Analysis | NO. 348 | Spearmishing, Patreon Security, and Triple-Threat Ransomware

Spearmishing, Patreon Security, and Triple-Threat Ransomware Sponsored by JupiterOne: https://www.jupiterone.com/unsupervisedlearningBecome a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

12 Sep 202223min

Metagaming: An Interview with Andrew Ringlein

Metagaming: An Interview with Andrew Ringlein

In today’s standalone episode I’m going to talk with Andrew Ringlein about some interesting new gaming ideas I’ve not seen anywhere else. He's releasing them in a new game called Rifters, and we chat through the concepts themselves and how they manifest in his new release.Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

7 Sep 202253min

News & Analysis | NO. 347

News & Analysis | NO. 347

TikTok Hack, Cloudflare Kiwi, Google OSS Bounty Sponsored by: Keeper Security http://keepersecurity.com/unsupervisedlearning Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

6 Sep 202215min

News & Analysis | NO. 346

News & Analysis | NO. 346

🗞️ Unsupervised Learning NO. 346 | Twitter Whistle, LastPass Plex, Satellite PhonesBecome a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

29 Aug 202219min

News & Analysis | NO. 345

News & Analysis | NO. 345

Become a Member: https://danielmiessler.com/upgradeSee omnystudio.com/listener for privacy information.

22 Aug 202216min

Populärt inom Teknik

uppgang-och-fall
rss-racevecka
elbilsveckan
rss-badfluence
bilar-med-sladd
bosse-bildoktorn-och-hasse-p
market-makers
skogsforum-podcast
rss-veckans-ai
natets-morka-sida
rss-technokratin
rss-laddstationen-med-elbilen-i-sverige
hej-bruksbil
garagehang
mediepodden
solcellskollens-podcast
rss-uppgang-och-fall
rss-snacka-om-ai
developers-mer-an-bara-kod
ai-sweden-podcast