Informational

, , ,

Talkin’ About Infosec News – 5/3/2021

Originally Aired on May 3, 2021 Articles discussed in this episode: https://threatpost.com/deepfake-attacks-surge-experts-warn/165798/ https://threatpost.com/linux-kernel-bug-wider-cyberattacks/165640/ https://www.reddit.com/r/netsec/comments/n36x7h/arbitrary_code_execution_in_exiftool/ https://krebsonsecurity.com/2021/04/experians-credit-freeze-security-is-still-a-joke/ https://github.com/alievk/avatarify-python https://media.ccc.de/v/29c3-5327-en-writing_a_thumbdrive_from_scratch_h264

Podcast: Play in new window | Download

Subscribe: RSS

Read the entire post here

00529_04302021_InformationFromThinAir

, , ,

Information From Thin Air: Using SDR to Extract DTMF from Radio Waves

Ray Felch // Disclaimer  When using an FM transmitter, do not modify the intended operation of the module by amplifying the transmitted signal. Also, be sure that attaching an FM high gain antenna will NOT be transmitting outside the legal range for RF emissions. When transmitting any data, be sure you do not accidentally break any laws by illegally […]

Read the entire post here

00530_04282021_Backdoors&BreachesTTS

, , ,

Backdoors & Breaches LIVE – 4/28/2021

Join our Incident Master BanjoCrashland as we play another round of Backdoors & Breaches (B&B) session using our new Tabletop Simulator (TTS) version! If you have STEAM / TABLETOP SIMULATOR / BACKDOORS & BREACHES WORKSHOP, you can play using the same version of the game. https:/steamcommunity.com/sharedfiles/filedetails/?id=2401033477 Incident Master: Jason Blanchard | BanjoCrashland Defenders: Matt Thomas […]

Podcast: Play in new window | Download

Subscribe: RSS

Read the entire post here

, , ,

Talkin’ About Infosec News – 4/26/2021

Originally Aired on April 26, 2021 Articles discussed in this episode: https://usdaynews.com/celebrities/celebrity-death/dan-kaminsky-death-cause/ https://signal.org/blog/cellebrite-vulnerabilities/ https://arstechnica.com/gadgets/2021/04/hackers-backdoor-corporate-password-manager-and-steal-customer-data/ https://youtu.be/G0gOAvpGoJg

Podcast: Play in new window | Download

Subscribe: RSS

Read the entire post here

, , ,

Talkin’ About Infosec News – 4/19/2021

Originally Aired on April 19, 2021 Articles discussed in this episode: https://www.theverge.com/2021/4/13/22382821/fbi-doj-hafnium-remote-access-removal-hack https://apnews.com/article/russia-safe-harbor-ransomeware-hacking-c9dab7eb3841be45dff2d93ed3102999 https://threatpost.com/critical-cloud-bug-vmware-carbon-black/165278/ https://www.theverge.com/2021/4/18/22390379/federal-investigators-breach-software-codecov-solarwinds https://threatpost.com/google-project-zero-cuts-bug-disclosure-timeline-to-a-30-day-grace-period/165432/

Podcast: Play in new window | Download

Subscribe: RSS

Read the entire post here

00526_04142021_FindingBuriedTreasureSMB

Finding Buried Treasure in Server Message Block (SMB)

David Fletcher // Service Message Block (SMB) shares can represent a significant risk to an organization. Companies often lack a realistic understanding of the exposure that SMB shares represent. Effective management typically requires a sound information management program focused on identifying where critical information resides, actively controlling access to that information, and routinely auditing permissions and access patterns.  Often, when organizations are asked about discovery of sensitive data, administrators […]

Read the entire post here

, , ,

Talkin’ About Infosec News – 4/12/2021

Originally Aired on April 12, 2021 Articles discussed in this episode: https://threatpost.com/azure-functions-privilege-escalation/165307/ https://www.theverge.com/2021/4/8/22374464/linkedin-data-leak-500-million-accounts-scraped-microsoft https://news.linkedin.com/2021/april/an-update-from-linkedin https://www.bbc.com/news/world-middle-east-56708778 https://www.tenable.com/blog/cve-2018-13379-cve-2019-5591-cve-2020-12812-fortinet-vulnerabilities-targeted-by-apt-actors

Podcast: Play in new window | Download

Subscribe: RSS

Read the entire post here

, , ,

Talkin’ About Infosec News – 4/7/2021

Originally Aired on April 7, 2021 Articles discussed in this episode: https://www.scmagazine.com/home/security-news/phishing/array-of-recent-phishing-schemes-use-personalized-job-lures-voice-manipulation/ https://www.coindesk.com/hackers-mined-crypto-on-githubs-servers-report https://www.securityweek.com/white-hats-earn-440000-hacking-microsoft-products-first-day-pwn2own-2021 https://www.infosecurity-magazine.com/news/consulting-firm-data-breach/ https://github.com/Neo23x0/Raccine https://github.com/ralphte/build_a_phish https://support.microsoft.com/en-us/windows/protect-your-pc-from-ransomware-08ed68a7-939f-726c-7e84-a72ba92c01c3 https://www.infosecurity-magazine.com/news/florida-school-district-40m-ransom/

Podcast: Play in new window | Download

Subscribe: RSS

Read the entire post here

, , ,

Talkin’ About Infosec News – 4/5/2021

Originally Aired on April 5, 2021 Articles discussed in this episode: https://www.bleepingcomputer.com/news/security/533-million-facebook-users-phone-numbers-leaked-on-hacker-forum/ https://krebsonsecurity.com/2021/03/whistleblower-ubiquiti-breach-catastrophic/ https://threatpost.com/call-of-duty-cheats-gamers-malware/165209/ https://outflank.nl/services/outflank-security-tooling/ https://thehackernews.com/2021/04/22-year-old-charged-with-hacking-water.html https://www.paulosyibelo.com/2021/04/this-man-thought-opening-txt-file-is.html

Podcast: Play in new window | Download

Subscribe: RSS

Read the entire post here

1 2 3 4 »