Paul's Security Weekly (Audio) Don't Hack Russia - PSW #864
Mar 6, 2025
Dive into the quirks of hacking your smart mattress and discover why it might be more vulnerable than you think. Explore the latest in music piracy and the absurdity of smart appliances while reflecting on the demise of Skype. Uncover the implications of ransomware threats from Russia and the complexities introduced by AI. Plus, hear about the evolution of cybersecurity practices and the challenges small businesses face with outdated tech. It's a lively mix of tech humor and crucial insights you won't want to miss!
AI Snips
Chapters
Transcript
Episode notes
Enterprise AI Risks Without Need-To-Know Controls
- Copilot-style enterprise AI risks oversharing when it lacks strict need-to-know access controls.
- Without fine-grained controls, these tools surface sensitive files and accelerate data exposure.
Skype's End Marks A Shift To Teams
- Microsoft is discontinuing Skype and pushing Teams, despite Skype's early end-to-end encryption and strong Linux support.
- The panel lamented Microsoft favoring Teams and dropping Skype features like the Linux client and broadcaster tools.
USB Driver Attack Surface On Mobile
- Cellebrite-like USB driver zero-days can enable remote phone compromise through plug-in exploits.
- Android driver updates and lockdown modes are necessary because many users never need USB driver features.