Paul's Security Weekly (Audio) Zero Days Are Not Just Fiction - PSW #863
Feb 27, 2025
This discussion dives into cybersecurity's pressing issues, like Apple's data protection and Australia's Kaspersky ban. Outdated software poses significant risks, and emerging tech like topological qubits could change the game. Ransomware chat logs reveal dark hacking techniques, while vulnerabilities in UEFI and Grub add to the challenge. The conversation highlights the need for quantum-resistant encryption and critiques a recent series on cybersecurity. Finally, it stresses the importance of robust authentication over insecure SMS options.
AI Snips
Chapters
Books
Transcript
Episode notes
Leaked Chats Became Threat Intelligence
- Paul and colleagues analyzed leaked Black Basta chat logs and found detailed targeting and credential lists.
- Reading actor chatrooms yielded threat intelligence beyond CVEs, revealing actual attacker tactics.
Secure Low‑Priority Network Devices First
- Patch and prioritize network devices, VPNs, and printers because attackers target low-priority assets first.
- Manage credentials and remove default passwords to reduce easy attack vectors.
Majorana Qubits Promise Lower Errors
- Majorana topological qubits may offer vastly lower error rates and better scaling if proven.
- The result could dramatically reduce error correction overhead compared with current quantum systems.
