Talkin' Bout [Infosec] News

The post Talkin’ About Infosec News – 10/9/2023 appeared first on Black Hills Information Security. (00:00) - PreShow Banter™ — The Scented Podcast (04:42) - BHIS - Talkin' Bout [infosec] News 2023-10-02 (07:24) - Story # 1: Google assigns new maximum rated CVE to libwebp bug exploited in attacks (24:13) - Story # 2: Progress warns of maximum severity WS_FTP Server vulnerability (31:16) - Story # 3: Sony PlayStation Hack: What We Know So Far About the LAPSUS$ Cyberattack (36:10) - Story # 4: City of Fort Lauderdale loses $1.2 million in phishing scam, police in Florida say (41:42) - Story # 5: FCC announces plans to reinstate net neutrality (52:32) - Story # 6: [New research] Do longer passwords protect you from compromise?

The post Special Segment – Cyber Security Career Advice – 9/28/2023 appeared first on Black Hills Information Security. (00:00) - PreShow Banter™ Segment Special – Cyber Security Career Advice (00:26) - Q :Entry Level Cybersecurity equals Mid-Level I.T. ? (08:05) - Q: How do I get started, I'm new in the Cyber Security Industry? (09:37) - Q: What Degree(s) do you recommend for Cyber Security / Infosec? (16:07) - Q: How did Chris Traynor join Black Hills Information Security? (18:58) - LINK– Pancake Con Chris Traynor Talk - https://youtube.com/watch?v=tMgDSb5_mKs (20:13) - LINK - BHIS Discord - https://discord.gg/bhis (23:35) - LINK - Chicago meetups : https://burbsec.com (25:53) - LINK: YouTube– Acess Granted Webcast – https://youtube.com/live/oaTEK9Feo5s

The post Talkin’ About Infosec News – 9/25/2023 appeared first on Black Hills Information Security. (00:00) - PreShow Banter™ — Poop Shoots and Chocolate Bunnies (02:33) - BHIS - Talkin' Bout [infosec] News 2023-09-25 (07:15) - Story # 1: Cisco to Acquire Splunk (08:15) - CISCO RSA Plane https://assets-cdn.workingnotworking.com/a1w71r9as47v5iap49d6u2md0dfr (09:21) - Jack Rhysider on Splunk https://twitter.com/JackRhysider/status/1704986407415038213 (18:09) - Story # 2: Youth hacking ring at the center of cybercrime spree (26:45) - Story # 3: T-Mobile users say other people’s account information is appearing in their app (30:11) - Story # 4: Okta: Caesars, MGM hacked in social engineering campaign (35:40) - Story # 5: Data breach reveals distressing info: People who order pineapple on pizza (39:28) - Story # 6: National Student Clearinghouse data breach impacts 890 schools (46:16) - Story # 7: Kroll Suffers Data Breach: Employee Falls Victim to SIM Swapping Attack

The post Talkin’ About Infosec News – 9/18/2023 appeared first on Black Hills Information Security. (00:00) - PreShow Banter™ — Billionare Traps & Dump Lists (05:11) - BHIS - Talkin' Bout [infosec] News 2023-09-18 (07:28) - Story # 1: Statement on MGM Resorts International (12:06) - Story # 1b: Okta & MGM sitting in a tree (14:53) - Story # 1c: Okta Agent Involved in MGM Resorts Breach, Attackers Claim (20:26) - Story # 1d: Social Engineering: How It Works, Examples & Prevention (26:49) - Story # 1e: Lina Khan Got Stuck in the Fallout of the MGM Hack at Las Vegas (44:09) - Story # 2: F-35 goes missing near North Charleston; pilot hospitalized after ejecting (48:38) - Story # 3: Pirated Software Likely Cause of Airbus Breach (53:48) - (K)night (I)ndustries (T)esla (T)hree opens parking garage gate

The post Talkin’ About Infosec News – 9/11/2023 appeared first on Black Hills Information Security. (00:00) - PreShow Banter™ — Felling Trees 504 (02:03) - Talkin' Bout [infosec] News 2023-09-11 (05:51) - 22nd Anniversary of the 9-11 Tragedy (10:35) - Story # 1: AT&T Customers Doxed Themselves En Masse In Reply-All Nightmare (15:47) - Story # 1b: Senate email system crashes amid avalanche of reply-alls to security test (18:09) - Story # 2: Millions Infected by Spyware Hidden in Fake Telegram Apps on Google Play (23:47) - Story # 2b: BLASTPASS NSO Group iPhone Zero-Click, Zero-Day Exploit Captured in the Wild (29:16) - Story # 3: Apple finally admits the CSAM scanning flaw we all pointed out (33:32) - Story # 4: Outlook Hack: Microsoft Reveals How a Crash Dump Led to a Major Security Breach (38:57) - Story # 4b: Microsoft finally explains cause of Azure breach: An engineer’s account was hacked (51:16) - Story # 5: FBI, Partners Dismantle Qakbot Infrastructure in Multinational Cyber Takedown — FBI (52:24) - Story # 5b: Data From The Qakbot Malware is Now Searchable in Have I Been Pwned, Courtesy of the FBI (57:49) - https://github.com/alephdata/aleph

Brought to you by Antisyphon Training — https://www.antisyphontraining.com (00:00) - PreShow Banter™ — Deep Disruptions (04:01) - BHIS - Talkin' Bout [infosec] News 2023-08-28 (05:43) - Story # 1: Exclusive: Cybersecurity firm SentinelOne explores sale -sources (13:28) - Story # 2: WinRAR 0-day that uses poisoned JPG and TXT files under exploit since April (20:17) - Story # 3: NIST Publishes Draft Post-Quantum Cryptography Standards (23:29) - Story # 4: Mysterious Cyberattack Shuts Down Yet More Telescopes For Weeks (29:31) - Story # 5: Danish cloud host says customers ‘lost all data’ after ransomware attack (35:04) - Story # 6: Lapsus$: Court finds teenagers carried out hacking spree (35:45) - Story # 6b: GTA 6 Hacker Found To Be Teen With Amazon Fire Stick In Small Town Hotel Room (44:36) - Story # 7: New Juniper Junos OS Flaws Expose Devices to Remote Attacks - Patch Now

Brought to you by Antisyphon Training — https://www.antisyphontraining.com (00:00) - PreShow Banter™ — Overarching Hot Takes (01:27) - BHIS - Talkin' Bout [infosec] News 2023-08-21 (04:30) - Story # 1: Hackers red-teaming A.I. are ‘breaking stuff left and right,’ but don’t expect quick fixes from DefCon: ‘There are no good guardrails’ (06:18) - Story # 1b: What happens when thousands of hackers try to break AI chatbots (08:46) - Story # 2: US lawmaker says FBI notified him of email breach linked to Microsoft cloud hack (11:18) - Story # 3: Elon Musk's army of inactive followers paints a bleak picture of X as a whole (12:42) - Story # 3b: Elon Musk’s Shadow Rule (18:45) - Story # 4: Haggling With Hackers: Surprising Lessons From 50 Negotiations With Ransomware Gangs (23:42) - Story # 5: WinRAR flaw lets hackers run programs when you open RAR archives (27:55) - Story # 6: CISA, experts warn of Citrix vulnerabilities being exploited by hackers (29:44) - Story # 7: Ongoing Duo outage causes Azure Auth authentication errors (30:38) - Story # 8: Phishing campaign steals accounts for Zimbra email servers worlwide (35:48) - Story # 9: WD refused to answer our questions about its self-wiping SanDisk SSDs (38:35) - Story # 9b: Backblaze Drive Stats for Q2 2023 (42:07) - Story # 10: NYC Bans TikTok on City Devices (55:38) - Story # 11: IMAX Still Runs on PalmPilot Operating System (57:25) - Story # 12: Major LinkedIn Account Takeover Campaign Underway

A weekly Podcast with BHIS and Friends. We discuss notable Infosec, and infosec-adjacent news stories. Brought to you by: /// (00:00) - PreShow Banter™ — Messed With Your Head (05:25) - Story # 1: Chinese Malware Could Cut Power To U.S. Military Bases, Businesses And Homes, Report Claims (18:14) - Story # 2: US Senator Wyden Accuses Microsoft of ‘Cybersecurity Negligence’ (18:39) - Story # 2b: US senator victim-blames Microsoft for Chinese hack (19:08) - Story # 2c: https://www.wyden.senate.gov/imo/media/doc/ (27:27) - Story # 3: Russian court jails cyber security executive for 14 years in treason case (33:47) - Story # 4: Almost 40% of Ubuntu users vulnerable to new privilege elevation flaws (47:29) - Story # 5: SEC now requires companies to disclose cyberattacks in 4 days (48:19) - Story # 5b: SEC Adopts Rules on Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure by Public Companies (57:55) - Take Joe's Class https://www.theosintion.com/courses/