Episodios

  • 2024-08-12 — Scotty's Pizza (Not Sponsored)

    2024-08-12 — Scotty's Pizza (Not Sponsored)
    Aug 14 2024

    00:00 - PreShow Banter™ — Scotty’s Pizza (Not Sponsored)

    03:38 - BHIS - Talkin’ Bout [infosec] News 2024-08-12

    03:59 - Hacker Summer Camp Report 2024

    08:56 - Story # 1: ‘Sinkclose’ Flaw in Hundreds of Millions of AMD Chips Allows Deep, Virtually Unfixable Infections

    14:26 - Story # 2: Black Hat USA 2024, DEF CON 32 attendees treated like children – or criminals – with invasive hotel room checks

    29:49 - Story # 3: DEF CON Badge Maker Pulled Off Stage Amid Claims of Non-Payment and Failed Work

    30:06 - New raspberry pi chip in badge

    33:31 - Story # 4: Exploit released for Cisco SSM bug allowing admin password changes

    34:12 - Story # 5: 0.0.0.0 Day: Exploiting Localhost APIs From the Browser

    38:02 - Story # 6: Intelligence bill would elevate ransomware to a terrorist threat

    44:36 - Story # 6b: Proposed bill would block large ransomware payments by financial institutions

    46:26 - Story # 6c: Report shows decreased ransomware payments

    54:26 - Story # 7: After global IT meltdown, CrowdStrike courts hackers with action figures and gratitude

    55:12 - Story # 8: CrowdStrike pursuing deal to buy patch management specialist Action1

    57:24 - Story # 9: Microsoft punches back at Delta Air Lines and its legal threats
    Más Menos
    1 h y 3 m
  • 2024-08-05 - What's the f_____

    2024-08-05 - What's the f_____
    Aug 6 2024

    00:00 - PreShow Banter™ — What’s the f___

    03:34 - BHIS - Talkin’ Bout [infosec] News 2024-08-05

    06:57 - Story # 1: Proofpoint Email Routing Flaw Exploited to Send Millions of Spoofed Phishing Emails

    23:57 - Story # 2: Bumble and Hinge allowed stalkers to pinpoint users’ locations down to 2 meters, researchers say

    36:47 - Story # 3: Eavesdropping on HDMI cables can reveal computer screen’s content

    37:43 - Story # 3b Hak5 Screen Crab

    39:18 - Story # 4: Microsoft says massive Azure outage was caused by DDoS attack

    43:31 - Story # 5: CrowdStrike says it’s not to blame for Delta’s days-long outage

    55:34 - Story # 6: CrowdStrike sued by investors over massive global IT outage
    Más Menos
    1 h y 3 m
  • 2024-07-29 - Microsoft Sad Face

    2024-07-29 - Microsoft Sad Face
    Jul 31 2024

    00:00 - PreShow Banter™ — Microsoft Sad Face

    02:13 - BHIS - Talkin’ Bout [infosec] News 2024-07-29

    03:08 - Story # 1: Fake CrowdStrike repair manual pushes new infostealer malware

    15:26 - Story # 1b: 83-year-old man found safe a week after going missing when CrowdStrike outage canceled flight

    20:39 - Story # 2: Multifactor Authentication Is Not Enough to Protect Cloud Data

    38:59 - Graphrunner

    47:19 - Story # 3: Data pilfered from Pentagon IT supplier Leidos

    57:57 - Story # 4: How a North Korean Fake IT Worker Tried to Infiltrate Us
    Más Menos
    1 h
  • 2024-07-24 - CrowdStroke Memes

    2024-07-24 - CrowdStroke Memes
    Jul 24 2024

    00:00 - PreShow Banter™ — CrowdStroke Memes

    05:59 - BHIS - Talkin’ Bout [infosec] News 2024-07-22

    07:01 - Story # 1: A Windows version from 1992 is saving Southwest’s butt right now

    07:36 - Crowdstrike Global Outage - BHIS - Talkin’ Bout [infosec] #News

    09:48 - Story # 1b: CrowdStrike’s faulty update crashed 8.5 million Windows devices, says Microsoft

    12:13 - Story # 1c: Let’s blame the dev who pressed “Deploy”

    17:23 - Figure 1

    22:14 - Story # 2: DHS Has a DoS Robot to Disable Internet of Things ‘Booby Traps’ Inside Homes

    25:58 - Story # 3: Notorious Hacker Kingpin ‘Tank’ Is Finally Going to Prison

    28:08 - Story # 4: UK Police Arrest Suspect in MGM Ransomware Attack

    30:49 - Story # 5: Russians plead guilty to involvement in LockBit ransomware attacks

    33:24 - Story # 6: DHS watchdog rebukes CISA and law enforcement training center for failing to protect data

    38:32 - Story # 7: Yacht giant MarineMax data breach impacts over 123,000 people

    40:38 - Story # 8: Sizable Chunk of SEC Charges Against SolarWinds Tossed Out of Court

    47:14 - Story # 9: The US Supreme Court Kneecapped US Cyber Strategy

    52:12 - Story # 10: War Thunder does it again, this time with classified documents relating to 3 Russian tanks
    Más Menos
    59 m
  • 2024-07-22 - Crowdstrike Global Outage

    2024-07-22 - Crowdstrike Global Outage
    Jul 22 2024

    The outage of the decade!
    Más Menos
    1 h y 4 m
  • 2024-07-18 - Absolute Madmen

    2024-07-18 - Absolute Madmen
    Jul 18 2024

    00:00 - PreShow Banter™ — Absolute Madmen

    02:28 - BHIS - Talkin’ Bout [infosec] News 2024-07-15

    03:18 - Wi-Fi Forge

    07:31 - Story # 1: CISA Red Team’s Operations Against a Federal Civilian Executive Branch Organization Highlights the Necessity of Defense-in-Depth

    22:39 - Story # 2: AT&T says criminals stole phone records of ‘nearly all’ customers in new data breach

    33:35 - Story # 3: FTC study finds ‘dark patterns’ used by a majority of subscription apps and websites

    38:48 - Story # 4: Club Penguin fans breached Disney Confluence server, stole 2.5GB of data

    41:52 - Story # 5: Heritage Foundation Exec Threatens ‘Gay Furry Hackers’ in Unhinged Texts

    47:51 - Story # 6: German Navy to replace aging 8-inch floppy drives with an emulated solution for its anti-submarine frigates

    50:14 - Story # 7: 1.4 GB NSA Data Leaked Online – Email Address, Phone Number & Gov Classified Data Exposed

    53:56 - Story # 8: Hackers Claim to Have Leaked 1.1 TB of Disney Slack Messages
    Más Menos
    1 h y 4 m
  • 2024-07-08 – A Bunch of Lunatics

    2024-07-08 – A Bunch of Lunatics
    Jul 10 2024

    00:00 - PreShow Banter™ — A Bunch of Lunatics

    05:09 - BHIS - Talkin’ Bout [infosec] News 2024-07-08

    08:41 - Story # 1: Europol takes down 593 Cobalt Strike servers used by cybercriminals

    09:54 - Story # 1b: National Crime Agency leads international operation to degrade illegal versions of Cobalt Strike

    15:17 - Story # 2: ‘RockYou2024’: Nearly 10 billion passwords leaked online

    22:12 - Story # 3: Ticketmaster Breach: ShinyHunters Leak 440K Taylor Swift Eras Tour Ticket Data

    24:20 - Story # 3b: Hackers reverse-engineer Ticketmaster’s barcode system to unlock resales on other platforms

    27:41 - Story # 4: US Supreme Court ruling will likely cause cyber regulation chaos

    39:39 - Story # 5: California Advances Unique Safety Regulations for AI Companies Despite Tech Firm opposition

    41:13 - Story # 5b: Senator Scott Wiener

    43:45 - Story # 6: OpenAI Did Not Disclose 2023 Breach to Feds, Public: Report

    53:10 - Story # 7: Microsoft’s Midnight Blizzard source code breach also impacted federal agencies

    55:27 - Story # 8: Japan’s Government Finally Stops Using Floppy Disks

    57:48 - Story # 9: This smart toilet paper monitor tells you when you need a new roll

    58:50 - Story # 10: Twilio says hackers identified cell phone numbers of two-factor app Authy users
    Más Menos
    1 h y 8 m
  • 2024-07-01 - Ice Cream Season

    2024-07-01 - Ice Cream Season
    Jul 3 2024

    00:00 - PreShow Banter™ — Ice Cream Season

    07:22 - BHIS - Talkin’ Bout [infosec] News 2024-07-01

    07:48 - Story # 1: TeamViewer’s corporate network was breached in alleged APT hack

    09:11 - Story # 1b: TeeamViewer Security Update – June 28, 2024, 12:10 PM CEST

    16:33 - Story # 2: Supreme Court orders new look at Texas, Florida social media laws

    21:32 - Story # 3: New OpenSSH Vulnerability Could Lead to RCE as Root on Linux Systems

    24:52 - Story # 4: CISA: Most critical open source projects not using memory safe code

    40:03 - Story # 5: Exploit for critical Fortra FileCatalyst Workflow SQLi flaw released

    42:35 - Story # 6: South Korean telecom company attacks customers with malware — over 600,000 torrent users report missing files, strange folders, and disabled PCs

    49:24 - Story # 7: Drone As First Responder Programs Are Swarming Across the United States

    55:22 - GRC Rapid Fire
    Más Menos
    1 h