Defensive Security Podcast Episode 198

August 6, 2017PodcastActive Defense, Chrome, risk assessment, Trickbotjerry

Podcast: Play in new window | Download | Embed

Subscribe: RSS

https://www.darkreading.com/vulnerabilities—threats/wannacry-inspires-worm-like-module-in-trickbot/d/d-id/1329491

http://www.securityweek.com/one-million-exposed-adware-hijacked-chrome-extension

https://www.darkreading.com/risk/can-your-risk-assessment-stand-up-under-scrutiny/a/d-id/1329435

Defensive Security Podcast Episode 197

July 24, 2017PodcastAdwind, Fedex, malware, NotPetyajerry

Podcast: Play in new window | Download | Embed

Subscribe: RSS

http://thehackernews.com/2017/07/adwind-rat-malware.html

https://www.theregister.co.uk/2017/07/13/swiss_domain_name_hijack/

http://www.databreachtoday.com/fedex-warns-notpetya-will-negatively-affect-profits-a-10118

http://www.cnbc.com/2017/07/21/a-cyberattack-is-going-to-cause-this-tech-company-to-miss-earnings.html

http://www.securityweek.com/alarming-percentage-employees-hide-security-incidents-report

Defensive Security Podcast Episode 196

July 11, 2017PodcastIntellect Service, ME Doc, NotPetya, Petya, Ukrainejerry

Podcast: Play in new window | Download | Embed

Subscribe: RSS

http://www.databreachtoday.com/notpetya-patient-zero-ukrainian-accounting-software-vendor-a-10080

http://blog.talosintelligence.com/2017/07/the-medoc-connection.html?m=1

http://www.databreachtoday.com/police-seize-backdoored-firms-servers-to-stop-attacks-a-10083

https://www.bleepingcomputer.com/news/security/m-e-doc-software-was-backdoored-3-times-servers-left-without-updates-since-2013/

https://www.wired.com/story/petya-plague-automatic-software-updates/

https://www.theregister.co.uk/2017/06/28/petya_notpetya_ransomware/https://apnews.com/962db1cd370d4fdda6083d064b94dd1b

https://infosec.engineering/notpetya-complex-attacks-and-the-fog-of-war/

Defensive Security Podcast Episode 195

June 26, 2017PodcastCrash Override, Dark Overlord, DRA, Honda, Netflix, Ransomware, wannacryjerry

Podcast: Play in new window | Download | Embed

Subscribe: RSS

http://securityaffairs.co/wordpress/60243/data-breach/dra-data-leak.html

https://www.wired.com/story/crash-override-malware/

https://threatpost.com/fin10-extorting-canadian-mining-companies-casinos/126382/

http://variety.com/2017/digital/features/netflix-orange-is-the-new-black-leak-dark-overlord-larson-studios-1202471400/amp/

https://arstechnica.com/information-technology/2017/06/32tb-of-windows-10-beta-builds-driver-source-code-leaked/

https://arstechnica.com/security/2017/06/5-weeks-after-wcry-outbreak-nsa-derived-worm-shuts-down-a-honda-factory/

Defensive Security Podcast Episode 194

June 21, 2017Podcastheartbleed, Ransomware, vulnerabilitiesjerry

Podcast: Play in new window | Download | Embed

Subscribe: RSS

https://hotforsecurity.bitdefender.com/blog/heartbleed-still-hurting-hard-uk-council-fined-100000-after-data-breach-18205.html

https://threatpost.com/ransomware-attack-hobbles-prestigious-university-college-london/126299/

http://www.securityweek.com/web-hosting-provider-pays-1-million-ransomware-attackers

https://infosec.engineering/improving-the-effectiveness-of-vulnerability-remediation-targeting/

Defensive Security Podcast Episode 193

June 12, 2017PodcastAMT, Powershell, Rogue Admin, Vereloxjerry

Podcast: Play in new window | Download | Embed

Subscribe: RSS

http://www.csoonline.com/article/3198492/security/ceos-risky-behaviors-compromise-security.html

https://www.bleepingcomputer.com/news/security/ex-admin-deletes-all-customer-data-and-wipes-servers-of-dutch-hosting-provider

http://thehackernews.com/2017/06/intel-amt-firewall-bypass.html

http://thehackernews.com/2017/06/microsoft-powerpoint-malware.html

Defensive Security Podcast Episode 192

June 6, 2017PodcastBooz Allen Hamilton, OneLoginjerry

Podcast: Play in new window | Download | Embed

Subscribe: RSS

http://www.csoonline.com/article/3198496/compliance/sometimes-it-is-necessary-to-bend-the-rules-a-bit.html

http://www.securityweek.com/nature-vs-nurture-bad-cybersecurity-our-dna

http://gizmodo.com/top-defense-contractor-left-sensitive-pentagon-files-on-1795669632

https://nakedsecurity.sophos.com/2017/06/02/onelogin-warns-that-attacker-could-be-able-to-decrypt-data/

Defensive Security Podcast Episode 191

May 25, 2017Podcastbitcoin, data breach, Docusign, eternalblue, Ransomware, wannacry, Zomatojerry

Podcast: Play in new window | Download | Embed

Subscribe: RSS

https://arstechnica.com/security/2017/05/windows-7-not-xp-was-the-reason-last-weeks-wcry-worm-spread-so-widely/

http://www.publictechnology.net/articles/news/nhs-cyber-attack-forces-week-long-council-email-block

https://www.washingtonpost.com/business/technology/nsa-officials-worried-about-the-day-its-potent-hacking-tool-would-get-loose-then-it-did/2017/05/16/50670b16-3978-11e7-a058-ddbb23c75d82_story.html

https://www.grahamcluley.com/companies-keeping-bitcoin-hand-case-ransomware-attacks/

http://www.eweek.com/security/zomato-docusign-breaches-reveal-common-security-risks

Defensive Security Podcast Episode 190

May 10, 2017PodcastDBIRjerry

Podcast: Play in new window | Download | Embed

Subscribe: RSS

http://www.verizonenterprise.com/resources/reports/rp_DBIR_2017_Report_en_xg.pdf

Defensive Security Podcast Episode 189

April 24, 2017PodcastDoublePulsar, Shadow Brokers, Taniumjb

Podcast: Play in new window | Download | Embed

Subscribe: RSS

https://www.wsj.com/articles/cybersecurity-startup-tanium-exposed-california-hospitals-network-in-demos-without-permission-1492624287

https://hotforsecurity.bitdefender.com/blog/95-of-enterprise-risk-assessments-find-employees-using-tor-private-vpns-to-bypass-security-report-says-17902.html

http://www.csoonline.com/article/3191286/security/most-employees-willing-to-share-sensitive-information-survey-says.html

https://www.bleepingcomputer.com/news/security/over-36-000-computers-infected-with-nsas-doublepulsar-malware/