All posts by jb

Defensive Security Podcast Episode 176

November 6, 2016Podcast0 day, Anthem, Windowsjb

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Overconfidence is putting organizations at higher risk for attacks

http://arstechnica.com/security/2016/11/windows-zero-day-exploited-by-same-group-behind-dnc-hack/

http://www.bankinfosecurity.com/those-suing-anthem-seek-security-audit-documents-a-9498

https://it.slashdot.org/story/16/11/05/1744231/it-workers-facing-layoffs-jolted-by-ceos-message

Defensive Security Podcast Episode 175

November 2, 2016Podcastmalvertising, phishing, Shadowjb

Podcast: Play in new window | Download | Embed

Subscribe: RSS

http://www.securityweek.com/shadow-brokers-leaks-servers-allegedly-hacked-nsa

http://www.bankinfosecurity.com/online-ad-industry-threatened-by-security-issues-a-9488

http://m.elpasoinc.com/news/local_news/article_92e82ee0-9f84-11e6-b429-0b2b853bae0b.html?mode=jqm

http://researchcenter.paloaltonetworks.com/2016/10/unit42-psa-conference-invite-used-lure-operation-lotus-blossom-actors/

Defensive Security Podcast Episode 174

October 23, 2016Podcastdata breach, DDOS, Dirt COW, Dyn, HIPAA, Miraijb

Podcast: Play in new window | Download | Embed

Subscribe: RSS

Serious Dirty Cow Linux Vulnerability Under Attack

http://news.softpedia.com/news/hackers-steal-research-and-user-data-from-japanese-nuclear-research-lab-509380.shtml

https://www.databreaches.net/rainbow-childrens-clinic-notifies-33368-patients-of-ransomware-attack/

https://krebsonsecurity.com/2016/10/hacked-cameras-dvrs-powered-todays-massive-internet-outage/

New Slack Channel

October 9, 2016SecuritySlackjb

Click the button below and enter your email for an invitation to our new slack channel.

[invitations_for_slack]

Defensive Security Podcast Episode 172

October 3, 2016Podcastdata breach, Nation State, passwordsjb

Podcast: Play in new window | Download | Embed

Subscribe: RSS

http://cybersecurity.oxfordjournals.org/content/early/2016/08/08/cybsec.tyw001

The psychological reasons behind risky password practices

http://www.nytimes.com/2016/09/29/technology/yahoo-data-breach-hacking.html?_r=0

http://www.databreachtoday.com/blogs/yahoo-breach-great-nation-state-cop-out-p-2260

Defensive Security Podcast Episode 171

September 21, 2016Podcast, SecurityRansomware, SWIFT, Wells Fargojb

Podcast: Play in new window | Download | Embed

Subscribe: RSS

http://www.csoonline.com/article/3119965/security/a-single-ransomware-network-has-pulled-in-121-million.html

https://www.sans.org/reading-room/whitepapers/dataprotection/data-breaches-prevention-practical-37267

http://www.bankinfosecurity.com/aligning-cyber-framework-organizations-strategy-goals-a-9401

http://arstechnica.com/security/2016/09/swift-fraudsters-detection-system-bangladesh-bank-heist/

http://www.bankinfosecurity.com/blogs/ransomware-victims-please-come-forward-p-2255

http://www.nytimes.com/2016/09/17/business/dealbook/wells-fargo-warned-workers-against-fake-accounts-but-they-needed-a-paycheck.html

Defensive Security Podcast Episode 170

September 11, 2016Podcastcisco, facebook, Fraud, OPM, Wells Fargojb

Podcast: Play in new window | Download | Embed

Subscribe: RSS

http://news.softpedia.com/news/retiring-sysadmin-fakes-cyber-attack-to-get-away-with-data-theft-507992.shtml

https://oversight.house.gov/wp-content/uploads/2016/09/The-OPM-Data-Breach-How-the-Government-Jeopardized-Our-National-Security-for-More-than-a-Generation.pdf

http://money.cnn.com/2016/09/08/investing/wells-fargo-created-phony-accounts-bank-fees/index.html

http://spectrum.ieee.org/view-from-the-valley/computing/it/facebook-engineers-crash-data-centers-in-realworld-stress-test

http://www.bloomberg.com/news/articles/2016-09-08/cisco-s-network-bugs-are-front-and-center-in-bankruptcy-fight

Defensive Security Podcast Episode 169

August 30, 2016PodcastDDOS, Equation Group, malware, phishing, vulnerabilitiesjb

Podcast: Play in new window | Download | Embed

Subscribe: RSS

http://www.csoonline.com/article/3110975/techology-business/how-do-you-measure-success-when-it-comes-to-stopping-phishing-attacks.html

http://www.databreachtoday.com/equation-group-hacking-tool-dump-5-lessons-a-9358

http://www.csoonline.com/article/3109982/security/attackers-dont-need-vulnerabilities-when-the-basics-work-just-as-well.html

http://www.securityweek.com/attacker-uses-virtual-machine-hide-malicious-activity

http://www.networkworld.com/article/3110653/security/imperva-application-layer-ddos-attacks-are-on-the-rise.html

http://arstechnica.com/security/2016/08/actively-exploited-ios-flaws-that-hijack-iphones-likely-spread-for-years/

Defensive Security Podcast Episode 168

August 21, 2016PodcastCerber, NIST, password security, Ransomware, Shadow Brokersjb

Podcast: Play in new window | Download | Embed

Subscribe: RSS

https://nakedsecurity.sophos.com/2016/08/18/nists-new-password-rules-what-you-need-to-know/

http://www.extremetech.com/extreme/234031-your-guide-to-the-shadow-brokers-nsa-theft-which-puts-the-snowden-leaks-to-shame

http://phys.org/news/2016-08-people-software-percent.html

http://www.csoonline.com/article/3108025/cyber-attacks-espionage/cerber-ransomware-earns-2-3mil-with-0-3-response-rate.html