UNSECURITY: Information Security Podcast

Episode 203 of the Unsecurity Podcast is live!This week, Oscar and Brad sit down to discuss 'malvertising' and 'malverposting'.Links:“Malverposting” — With Over 500K Estimated Infections... https://labs.guard.io/malverposting-with-over-500k-estimated-infections-facebook-ads-fuel-this-evolving-stealer-54b03d24b349 Give this episode a listen or watch and send any questions, comments, or feedback to unsecurity@protonmail.com.

This week, Oscar and Brad sit down to discuss passwordless tech, and the FBI's recent move to take down The Hive, one of the world's most notorious ransomware gangs.FBI Takedown of The Hive https://therecord.media/hive-ransomware-decryptors-fbi-bryan-smith-interview-click-here Give this episode a listen and send any questions, comments, or feedback to unsecurity@protonmail.com

This week, Oscar and Brad sit down to discuss used network equipment resale, the risks posed to organizations, and how you can protect yourself. Give this episode a listen and send any questions, comments, or feedback to unsecurity@protonmail.com.

This week, Oscar and Brad sit down with the creators of Hack Space Con to discuss the mission behind the conference, the unique venue, how the event came to be, and more!Links:https://www.hackspacecon.com/ Send any questions, comments, or feedback to unsecurity@protonmail.com. Don't forget to like and subscribe!

Episode 198 of the Unsecurity Podcast is now live!This week, Oscar and Brad discuss a new APT compromise strategy, a 3-year-old vulnerability exploited by multiple threat actors, and more.Links:3-Year-Old Vulnerability Exploited by Multiple Hacking Groups https://thehackernews.com/2023/03/multiple-hacker-groups-exploit-3-year.htmlAdobe ColdFusion Bughttps://gbhackers.com/adobe-coldfusion-bug/Don't forget: The show is now available in audio form wherever you get your podcasts!Send any questions, comments, or feedback to unsecurity@protonmail.com.

Episode 197 of the Unsecurity Podcast is now live! This week, Oscar and Brad discuss vendor risk management, incident response practices, and the recent Facebook vulnerability.Links:KillNet DDoS Blocklisthttps://github.com/securityscorecard/SSC-Threat-Intel-IoCs/blob/master/KillNet-DDoS-Blocklist/proxylist.txtGive this episode a listen and send any questions, comments, or feedback to unsecurity@protonmail.com. Don't forget to like and subscribe!

Episode 196 of the Unsecurity Podcast is now live! This week, Oscar is joined by FRSecure's Eric Hanson and Seth Bowling to discuss red teaming and R&D.Give this episode a listen or watch and send any questions, comments, or feedback to unsecurity@protonmail.com. Don't forget to like and subscribe!

This week, Oscar and Brad discuss some ideas for new year's resolutions you can apply to your security program.Give this episode a listen and send any questions, comments, or feedback to unsecurity@protonmail.com. Don't forget to like and subscribe!

Episode 194 of the Unsecurity Podcast is now live! This week, Oscar and Brad discuss a CISA alert regarding Veeam backup and replication vulnerabilities being exploited, FBI seizing 48 domains linked to DDoS services, hackers using .svg files to install QBot malware on windows systems, and more.Links:CISA Alert: Veeam Backup and Replication Vulnerabilities Being Exploited in Attacks https://thehackernews.com/2022/12/cisa-alert-veeam-backup-and-replication.htmlFBI Seized 48 Domains Linked to World’s Leading DDoS-for-Hire Services https://gbhackers.com/fbi-seized-48-domains/Citrix ADC and Citrix Gateway Security Bulletin for CVE-2022-27518 https://support.citrix.com/article/CTX474995/citrix-adc-and-citrix-gateway-security-bulletin-for-cve202227518Hackers Use SVG Images to Install QBot Malware on Windows Systems https://gbhackers.com/hackers-use-svg-images/Give episode 194 a listen and send any questions, comments, or feedback to unsecurity@protonmail.com Don't forget to like and subscribe!

Episode 193 of the Unsecurity Podcast is now live! This week, Oscar and Brad discuss the new CISA reporting rule and what it means for organizations in the critical infrastructure sector. Links:Critical Infrastructure Sectorshttps://www.cisa.gov/critical-infrastructure-sectorsCISA - Reporting Rulehttps://thehackernews.com/2022/12/what-cisa-reporting-rule-means-for-your.htmlhttps://www.congress.gov/bill/117th-congress/house-bill/5440/text?format=txthttps://www.federalregister.gov/documents/2022/09/12/2022-19551/request-for-information-on-the-cyber-incident-reporting-for-critical-infrastructure-act-of-2022https://www.cisa.gov/reporthttps://www.cisa.gov/sites/default/files/publications/Sharing_Cyber_Event_Information_Fact_Sheet_FINAL_v4.pdfGive episode 193 a listen or watch and send any questions, comments, or feedback to unsecurity@protonmail.com.