Talkin’ About Infosec News – 2/4/2022





ORIGINALLY AIRED ON JANUARY 31, 2022

Articles discussed in this episode:

00:00 – PreShow Banter™ — Legions of the Undead

01:26 – BHIS – Talkin’ Bout [infosec] News 2022-01-31

04:06 – Story # 1: Hacktivists say they hacked Belarus rail system to stop Russian military buildup – https://arstechnica.com/information-technology/2022/01/hactivists-say-they-hacked-belarus-rail-system-to-stop-russian-military-buildup/

08:46 – Story # 2: Ukrainian government calls out false flag operation in recent data wiping attack – https://therecord.media/ukrainian-government-calls-out-false-flag-operation-in-recent-data-wiping-attack/

11:18 – Story # 3: Ukrainian cyber defense in need of upgrades as tensions rise – https://therecord.media/ukrainian-cyberdefense-in-need-of-upgrades-as-tensions-rise/

17:32 – Story # 4: DoD weapons testers to assess cybersecurity of GPS satellites, ground system, and user equipment – https://spacenews.com/dod-weapons-testers-to-assess-cybersecurity-of-gps-satellites-ground-system-and-user-equipment/

24:50 – Story # 5: FBI Reportedly Considered Buying NSO Spyware – https://www.govinfosecurity.com/fbi-reportedly-considered-buying-nso-spyware-a-18407

28:02 – Story # 6: Hacking the Apple Webcam (again) – https://www.ryanpickren.com/safari-uxss

30:36 – Story # 7: Microsoft Teams users can now chat with any Teams user outside their organization – https://techcommunity.microsoft.com/t5/microsoft-teams-blog/microsoft-teams-users-can-now-chat-with-any-teams-user-outside/ba-p/3070832

34:11 – Story # 7b: https://twitter.com/rucam365/status/1487861808081915906

38:15 – Story # 8: Lazarus hackers use Windows Update to deploy malware – https://www.bleepingcomputer.com/news/security/lazarus-hackers-use-windows-update-to-deploy-malware/

41:38 – Story # 9: Elon Musk Tried To Pay A Teen Thousands Of Dollars To Stop Tracking His Plane – https://jalopnik.com/elon-musk-tried-to-pay-a-teen-thousands-of-dollars-to-s-1848435520

45:36 – Story # 10: 1.5M US bank cards have been hacked: NordVPN – https://finance.yahoo.com/news/15-m-us-bank-cards-have-been-hacked-nord-vpn-161248088.html

51:15 – Story # 11: 2FA app with 10,000 Google Play downloads loaded well-known banking trojan – https://arstechnica.com/information-technology/2022/01/2fa-app-with-10000-google-play-downloads-loaded-well-known-banking-trojan/

54:50 – Story # 12: Hackers Exploited MSHTML Flaw to Spy on Government and Defense Targets – https://thehackernews.com/2022/01/hackers-exploited-mshtml-flaw-to-spy-on.html



We are self-publishing free Infosec Zines called PROMPT#.

PROMPT# will contain: 

  • Infosec articles 
  • Challenging puzzles 
  • Comic book based on real-life hacking adventures 
  • Coloring contests 
  • Bonus Backdoors & Breaches Consultant Cards (print version only) 
  • Other stuffs 

You can check out current and upcoming issues here: https://www.blackhillsinfosec.com/prompt-zine/