Risky Business is a weekly information security podcast featuring news and in-depth interviews with industry luminaries. Launched in February 2007, Risky Business is a must-listen digest for information security pros. With a running time of approximately 50-60 minutes, Risky Business is pacy; a security podcast without the waffle.
…
continue reading
Risky.biz and Patrick Gray에서 제공하는 콘텐츠입니다. 에피소드, 그래픽, 팟캐스트 설명을 포함한 모든 팟캐스트 콘텐츠는 Risky.biz and Patrick Gray 또는 해당 팟캐스트 플랫폼 파트너가 직접 업로드하고 제공합니다. 누군가가 귀하의 허락 없이 귀하의 저작물을 사용하고 있다고 생각되는 경우 여기에 설명된 절차를 따르실 수 있습니다 https://ko.player.fm/legal.
Risky Biz와 비슷한 콘텐츠
The avforums podcast brings you the latest tech, movie and gaming news, plus special features, interviews and show reports from the world of audio visual home entertainment
…
continue reading
Tech News Briefing is your guide to what people in tech are talking about. Every weekday, we’ll bring you breaking tech news and scoops from the pros at the Wall Street Journal, insight into new innovations and policy debates, tips from our personal tech team, and exclusive interviews with movers and shakers in the industry.
…
continue reading
Technical interviews about software topics.
…
continue reading
The Cārvāka Podcast is a series of long-form conversations hosted by Kushal Mehra. The podcast covers a wide range of subjects where Kushal speaks with a wide range of guests to talk about sports, philosophy, public policy, current affairs, history, economics, etc.
…
continue reading
The daily cybersecurity news and analysis industry leaders depend on. Published each weekday, the program also includes interviews with a wide spectrum of experts from industry, academia, and research organizations all over the world.
…
continue reading
Windows Weekly is about more than Windows. Veteran Microsoft insiders Paul Thurrott and Richard Campbell join Leo for a deep dive into the most valuable company in the world. From consumer to enterprise, AI to Xbox, Windows Weekly is the only Microsoft podcast you'll ever need. Records live every Wednesday at 2:00pm Eastern / 11:00am Pacific / 18:00 UTC.
…
continue reading
If you’re reading this, chances are you’re not an undecided voter. But if you don’t want Donald Trump to become president again, between now and November you’ll need to convince as many as you can to cast their ballot for Joe Biden. With the help of some of the smartest strategists, pollsters, and organizers in politics today, host Jon Favreau explores the minds of voters who will decide the 2024 election, and gives you everything you need to persuade the persuadables in your life. Season 4 ...
…
continue reading
A daily dose of irreverent, offbeat, and informative takes on business & tech news. Hosted by Jon Weigell and the rotating cast of The Hustle. Plus, expert insight on business strategies including marketing, scaling, sales, and overall entrepreneurship.
…
continue reading
Crystal Orderson brings news from the continent.
…
continue reading
Player FM -팟 캐스트 앱
Player FM 앱으로 오프라인으로 전환하세요!
Player FM 앱으로 오프라인으로 전환하세요!
))
Risky Business #783 -- Evil webcam ransomwares entire Windows network
Manage episode 470918784 series 3234705
Risky.biz and Patrick Gray에서 제공하는 콘텐츠입니다. 에피소드, 그래픽, 팟캐스트 설명을 포함한 모든 팟캐스트 콘텐츠는 Risky.biz and Patrick Gray 또는 해당 팟캐스트 플랫폼 파트너가 직접 업로드하고 제공합니다. 누군가가 귀하의 허락 없이 귀하의 저작물을 사용하고 있다고 생각되는 경우 여기에 설명된 절차를 따르실 수 있습니다 https://ko.player.fm/legal.
On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news with special guest Rob Joyce, a Former Special Assistant to the US President and Director of Cybersecurity for NSA.
They talk through:
- A realistic bluetooth-proximity phishing attack against Passkeys
- A very patient ransomware actor encrypts an entire enterprise with a puny linux webcam processor
- The ESP32 backdoor that is neither a door nor at the back
- The X DDoS that Elon said was Ukraine is claimed by pro-Palestinian hacktivists
- Years later, LastPass hackers are still emptying crypto-wallets
- …and it turns out North Korea nailed {Safe}Wallet with a malicious docker image. Nice!
Rob Joyce recently testified to the US House Select Committee on the Chinese Communist Party, and he explains why DOGE kicking probationary employees to the curb is “devastating” for the national security staff pipeline.
This week’s episode is sponsored by SpecterOps, makers of the BloodHound identity attack path mapping tool. Chief Product Officer Justin Kohler and Principal Security Researcher Lee Chagolla-Christensen discuss their pragmatic approach to disabling NTLM authentication in Active Directory using BloodHound’s insight.
This episode is also available on Youtube.
Show notes
- CVE-2024-9956 - PassKey Account Takeover in All Mobile Browsers | Tobia Righi - Security Researcher
- Feds Link $150M Cyberheist to 2022 LastPass Hacks – Krebs on Security
- Camera off: Akira deploys ransomware via webcam
- Tarlogic detects a hidden feature in the mass-market ESP32 chip that could infect millions of IoT devices
- Alleged Co-Founder of Garantex Arrested in India – Krebs on Security
- 37K+ VMware ESXi instances vulnerable to critical zero-day | Cybersecurity Dive
- Apple patches 0-day exploited in “extremely sophisticated attack” - Ars Technica
- What Really Happened With the DDoS Attacks That Took Down X | WIRED
- Eleven11bot estimates revised downward as researchers point to Mirai variant | Cybersecurity Dive
- Previously unidentified botnet infects unpatched TP-Link Archer home routers | The Record from Recorded Future News
- Safe.eth on X: "Investigation Updates and Community Call to Action" / X
- How to verify Safe{Wallet} transactions on a hardware wallet | Safe{Wallet} Help Center and Support.
- US charges Chinese nationals in cyberattacks on Treasury, dissidents and more | The Record from Recorded Future News
- Former top NSA cyber official: Probationary firings ‘devastating’ to cyber, national security | CyberScoop
- U.S. pauses intelligence sharing with Ukraine used to target Russian forces - The Washington Post
128 에피소드
공유
Manage episode 470918784 series 3234705
Risky.biz and Patrick Gray에서 제공하는 콘텐츠입니다. 에피소드, 그래픽, 팟캐스트 설명을 포함한 모든 팟캐스트 콘텐츠는 Risky.biz and Patrick Gray 또는 해당 팟캐스트 플랫폼 파트너가 직접 업로드하고 제공합니다. 누군가가 귀하의 허락 없이 귀하의 저작물을 사용하고 있다고 생각되는 경우 여기에 설명된 절차를 따르실 수 있습니다 https://ko.player.fm/legal.
On this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news with special guest Rob Joyce, a Former Special Assistant to the US President and Director of Cybersecurity for NSA.
They talk through:
- A realistic bluetooth-proximity phishing attack against Passkeys
- A very patient ransomware actor encrypts an entire enterprise with a puny linux webcam processor
- The ESP32 backdoor that is neither a door nor at the back
- The X DDoS that Elon said was Ukraine is claimed by pro-Palestinian hacktivists
- Years later, LastPass hackers are still emptying crypto-wallets
- …and it turns out North Korea nailed {Safe}Wallet with a malicious docker image. Nice!
Rob Joyce recently testified to the US House Select Committee on the Chinese Communist Party, and he explains why DOGE kicking probationary employees to the curb is “devastating” for the national security staff pipeline.
This week’s episode is sponsored by SpecterOps, makers of the BloodHound identity attack path mapping tool. Chief Product Officer Justin Kohler and Principal Security Researcher Lee Chagolla-Christensen discuss their pragmatic approach to disabling NTLM authentication in Active Directory using BloodHound’s insight.
This episode is also available on Youtube.
Show notes
- CVE-2024-9956 - PassKey Account Takeover in All Mobile Browsers | Tobia Righi - Security Researcher
- Feds Link $150M Cyberheist to 2022 LastPass Hacks – Krebs on Security
- Camera off: Akira deploys ransomware via webcam
- Tarlogic detects a hidden feature in the mass-market ESP32 chip that could infect millions of IoT devices
- Alleged Co-Founder of Garantex Arrested in India – Krebs on Security
- 37K+ VMware ESXi instances vulnerable to critical zero-day | Cybersecurity Dive
- Apple patches 0-day exploited in “extremely sophisticated attack” - Ars Technica
- What Really Happened With the DDoS Attacks That Took Down X | WIRED
- Eleven11bot estimates revised downward as researchers point to Mirai variant | Cybersecurity Dive
- Previously unidentified botnet infects unpatched TP-Link Archer home routers | The Record from Recorded Future News
- Safe.eth on X: "Investigation Updates and Community Call to Action" / X
- How to verify Safe{Wallet} transactions on a hardware wallet | Safe{Wallet} Help Center and Support.
- US charges Chinese nationals in cyberattacks on Treasury, dissidents and more | The Record from Recorded Future News
- Former top NSA cyber official: Probationary firings ‘devastating’ to cyber, national security | CyberScoop
- U.S. pauses intelligence sharing with Ukraine used to target Russian forces - The Washington Post
128 에피소드
모든 에피소드
×
플레이어 FM에 오신것을 환영합니다!
플레이어 FM은 웹에서 고품질 팟캐스트를 검색하여 지금 바로 즐길 수 있도록 합니다. 최고의 팟캐스트 앱이며 Android, iPhone 및 웹에서도 작동합니다. 장치 간 구독 동기화를 위해 가입하세요.
Risky Biz와 비슷한 콘텐츠
Risky Business is a weekly information security podcast featuring news and in-depth interviews with industry luminaries. Launched in February 2007, Risky Business is a must-listen digest for information security pros. With a running time of approximately 50-60 minutes, Risky Business is pacy; a security podcast without the waffle.
…
continue reading
The avforums podcast brings you the latest tech, movie and gaming news, plus special features, interviews and show reports from the world of audio visual home entertainment
…
continue reading
Tech News Briefing is your guide to what people in tech are talking about. Every weekday, we’ll bring you breaking tech news and scoops from the pros at the Wall Street Journal, insight into new innovations and policy debates, tips from our personal tech team, and exclusive interviews with movers and shakers in the industry.
…
continue reading
Technical interviews about software topics.
…
continue reading
The Cārvāka Podcast is a series of long-form conversations hosted by Kushal Mehra. The podcast covers a wide range of subjects where Kushal speaks with a wide range of guests to talk about sports, philosophy, public policy, current affairs, history, economics, etc.
…
continue reading
The daily cybersecurity news and analysis industry leaders depend on. Published each weekday, the program also includes interviews with a wide spectrum of experts from industry, academia, and research organizations all over the world.
…
continue reading
Windows Weekly is about more than Windows. Veteran Microsoft insiders Paul Thurrott and Richard Campbell join Leo for a deep dive into the most valuable company in the world. From consumer to enterprise, AI to Xbox, Windows Weekly is the only Microsoft podcast you'll ever need. Records live every Wednesday at 2:00pm Eastern / 11:00am Pacific / 18:00 UTC.
…
continue reading
If you’re reading this, chances are you’re not an undecided voter. But if you don’t want Donald Trump to become president again, between now and November you’ll need to convince as many as you can to cast their ballot for Joe Biden. With the help of some of the smartest strategists, pollsters, and organizers in politics today, host Jon Favreau explores the minds of voters who will decide the 2024 election, and gives you everything you need to persuade the persuadables in your life. Season 4 ...
…
continue reading
A daily dose of irreverent, offbeat, and informative takes on business & tech news. Hosted by Jon Weigell and the rotating cast of The Hustle. Plus, expert insight on business strategies including marketing, scaling, sales, and overall entrepreneurship.
…
continue reading
Crystal Orderson brings news from the continent.
…
continue reading
Player FM -팟 캐스트 앱
Player FM 앱으로 오프라인으로 전환하세요!
Player FM 앱으로 오프라인으로 전환하세요!
