All posts by jerry

Defensive Security Podcast Episode 205

https://www.theregister.co.uk/2017/11/09/chipzilla_come_closer_closer_listen_dump_ime/

https://www.bankinfosecurity.com/mayer-strengthened-defense-couldnt-stop-massive-breaches-a-10442

http://www.securityweek.com/phishing-poses-biggest-threat-users-google

Defensive Security Podcast Episode 204

https://www.bleepingcomputer.com/news/security/59-percent-of-employees-hit-by-ransomware-at-work-paid-ransom-out-of-their-own-pockets/

https://motherboard.vice.com/en_us/article/ne3bv7/equifax-breach-social-security-numbers-researcher-warning

https://www.csoonline.com/article/3234675/data-protection/6-reasons-why-awareness-programs-fail-even-when-following-best-practices.html

https://cyberbalancesheet.com/

Defensive Security Podcast Episode 203

https://www.bloomberg.com/news/features/2017-09-29/the-equifax-hack-has-all-the-hallmarks-of-state-sponsored-pros

https://www.databreachtoday.com/ex-ceo-blames-human-error-tech-failures-for-equifax-breach-a-10349

http://www.zdnet.com/article/wsj-kaspersky-software-likely-used-in-russian-backed-nsa-breach/

https://www.washingtonpost.com/world/national-security/israel-hacked-kaspersky-then-tipped-the-nsa-that-its-tools-had-been-breached/2017/10/10/d48ce774-aa95-11e7-850e-2bdd1236be5d_story.html

https://www.bleepingcomputer.com/news/legal/it-admin-trashes-railroad-companys-network-before-he-leaves/

Defensive Security Podcast Episode 202

https://arstechnica.com/information-technology/2017/09/ccleaner-backdoor-infecting-millions-delivered-mystery-payload-to-40-pcs/

https://www.theregister.co.uk/2017/09/26/equifax_ceo_resigns/

https://krebsonsecurity.com/2017/09/source-deloitte-breach-affected-all-company-email-admin-accounts/comment-page-2/

https://www.theregister.co.uk/2017/09/26/deloitte_leak_github_and_google/

Defensive Security Podcast Episode 201

https://krebsonsecurity.com/2017/09/equifax-breach-response-turns-dumpster-fire/

https://www.welivesecurity.com/2017/09/06/security-vulnerability-leaves-fortune-100-firms-vulnerable/

http://nypost.com/2017/09/08/equifax-blames-giant-breach-on-vendor-software-flaw/amp/

https://blogs.apache.org/foundation/entry/apache-struts-statement-on-equifax

https://qz.com/1073221/the-hackers-who-broke-into-equifax-exploited-a-nine-year-old-security-flaw/

Defensive Security Podcast Episode 200

http://www.securityweek.com/three-questions-every-ciso-should-be-able-answer

https://arstechnica.com/information-technology/2017/08/powerful-backdoor-found-in-software-used-by-100-banks-and-energy-cos/?amp=1

https://krebsonsecurity.com/2017/08/blowing-the-whistle-on-bad-attribution/

http://www.csoonline.com/article/3213030/security/when-it-comes-to-the-cloud-do-cisos-have-their-heads-in-the-sand.html

http://www.zdnet.com/article/petya-ransomware-cyber-attack-costs-could-hit-300m-for-shipping-giant-maersk/

https://www.helpnetsecurity.com/2017/08/24/crystal-finance-millennium-compromised/

https://www.lacyberlab.org/what-los-angeles-cyber-lab

Defensive Security Podcast Episode 199

https://www.theregister.co.uk/2017/08/10/salesforce_fires_its_senior_security_engineers_after_defcon_talk/?mt=1502653861726

PR fight ensues after claims of leaked Carbon Black data

https://www.theregister.co.uk/2017/08/10/carbon_black_denies_sec_sys_broken/

http://www.databreachtoday.com/ocr-tells-organizations-to-step-up-phishing-scam-awareness-a-10174

https://www.infosecurity-magazine.com/news/anthem-medicare-patients-hit-breach/

https://www.theregister.co.uk/2017/08/07/cba_blames_software_for_money_laundering_miss/

Defensive Security Podcast Episode 198

https://www.darkreading.com/vulnerabilities—threats/wannacry-inspires-worm-like-module-in-trickbot/d/d-id/1329491

http://www.securityweek.com/one-million-exposed-adware-hijacked-chrome-extension

https://www.darkreading.com/risk/can-your-risk-assessment-stand-up-under-scrutiny/a/d-id/1329435

Defensive Security Podcast Episode 197

http://thehackernews.com/2017/07/adwind-rat-malware.html

https://www.theregister.co.uk/2017/07/13/swiss_domain_name_hijack/

http://www.databreachtoday.com/fedex-warns-notpetya-will-negatively-affect-profits-a-10118

http://www.cnbc.com/2017/07/21/a-cyberattack-is-going-to-cause-this-tech-company-to-miss-earnings.html

http://www.securityweek.com/alarming-percentage-employees-hide-security-incidents-report

Defensive Security Podcast Episode 196

http://www.databreachtoday.com/notpetya-patient-zero-ukrainian-accounting-software-vendor-a-10080

http://blog.talosintelligence.com/2017/07/the-medoc-connection.html?m=1

http://www.databreachtoday.com/police-seize-backdoored-firms-servers-to-stop-attacks-a-10083

https://www.bleepingcomputer.com/news/security/m-e-doc-software-was-backdoored-3-times-servers-left-without-updates-since-2013/

https://www.wired.com/story/petya-plague-automatic-software-updates/

https://www.theregister.co.uk/2017/06/28/petya_notpetya_ransomware/https://apnews.com/962db1cd370d4fdda6083d064b94dd1b

https://infosec.engineering/notpetya-complex-attacks-and-the-fog-of-war/