Extra! Extra! Pretty much everybody's computer is broken because of a bad update from a security company.

Connect With Us:

Twitter: @theeffitbucket

Reddit: r/theeffitbucket

E-mail: theeffitbucket@gmail.com

Musical Attribution:

"Special Spotlight" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/

This week in the bucket, RADIUS gets blasted, more passwords than there are living people on the planet get released in plain text, and we discuss merch opportunities for the podcast.

News Stories for Reference:

"New Blast-RADIUS attack bypasses widely-used RADIUS authentication"

https://www.bleepingcomputer.com/news/security/new-blast-radius-attack-bypasses-widely-used-radius-authentication/

"RockYou2024: 10 BILLION unique passwords exposed – what now?"

https://www.itsecurityguru.org/2024/07/09/rockyou2024-10-billion-unique-passwords-exposed-what-now/

"Twilio Authy Data Breach: 33 Million Phone Numbers Compromised"

https://news.trendmicro.com/2024/07/10/twilio-authy-data-breach/

A Little Something Extra

"YouTube | Morgan Eckroth"

https://www.youtube.com/@morgandrinkscoffee

"YouTube | Worst Wifi Password Ever"

https://www.youtube.com/watch?v=bLE7zsJk4AI

Connect With Us:

Twitter: @theeffitbucket

Reddit: r/theeffitbucket

E-mail: theeffitbucket@gmail.com

Musical Attribution:

"Limit 70" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/

This week in the bucket, car dealerships are back to pen and paper, Snowflake loses data from a Bank and Ticketmaster alike, and why it's never too late to consider a career in Cyber.

News Stories for Reference:

"CDK Global works to restore dealer software after hack, but the auto sales fallout still looms"

https://finance.yahoo.com/news/cdk-global-works-to-restore-dealer-software-after-hack-but-the-auto-sales-fallout-still-looms-170520118.html

"Overview of the Snowflake Breach: Threat Actor Offers Data of Cloud Company’s Customers"

https://socradar.io/overview-of-the-snowflake-breach/

"TeamViewer's corporate network was breached in alleged APT hack"

bleepingcomputer.com/news/security/teamviewers-corporate-network-was-breached-in-alleged-apt-hack/

Our Guest(s) This Week:

Jimmy Minhinnett, an avid supporter of people trying to change their career | LinkedIn

Connect With Us:

Twitter: @theeffitbucket

Reddit: r/theeffitbucket

E-mail: theeffitbucket@gmail.com

Musical Attribution:

"Limit 70" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/

This week in the bucket, a fired employee deletes 180 virtual servers, a deep-dive into Identity and Access Management, and we log in with our FACES!

News Stories for Reference:

"Fired employee accessed company’s computer 'test system' and deleted servers, causing it to lose S$918,000"

https://www.channelnewsasia.com/singapore/former-employee-hack-ncs-delete-virtual-servers-quality-testing-4402141

Our Guest This Week:

Bill Harper, Senior Manager of IAM at New American Funding | LinkedIn

Connect With Us:

Twitter: @theeffitbucket

Reddit: r/theeffitbucket

E-mail: theeffitbucket@gmail.com

Musical Attribution:

"Limit 70" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/

This week in the bucket, a study tells us that computers are better at following instructions in order without missing a step, we talk about what it's like to get a job, and Paul makes questionable searches.

News Stories for Reference:

"New Research Warns About Weak Offboarding Management and Insider Risks"

https://thehackernews.com/2024/05/new-research-warns-about-weak.html

Connect With Us:

Twitter: @theeffitbucket

Reddit: r/theeffitbucket

E-mail: theeffitbucket@gmail.com

Musical Attribution:

"Limit 70" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/

This week in the bucket, a woman helps hundreds of North Korean IT workers get jobs at US companies, Slack uses all their customer data to train an AI model, the Pros and Cons of the Tik Tok ban, and orange, crusty leaders.

News Stories for Reference:

"Woman Accused of Helping North Korean IT Workers Infiltrate Hundreds of US Firms"

securityweek.com/woman-accused-of-helping-north-korean-it-workers-infiltrate-hundreds-of-us-firms/

"User Outcry as Slack Scrapes Customer Data for AI Model Training"

https://www.securityweek.com/user-outcry-as-slack-scrapes-customer-data-for-ai-model-training/

"How TikTok grew from a fun app for teens into a potential national security threat"

https://apnews.com/article/tiktok-timeline-ban-biden-india-d3219a32de913f8083612e71ecf1f428

"https://www.reuters.com/legal/tiktok-creators-file-suit-block-us-divestment-or-ban-law-2024-05-14/"

https://www.reuters.com/legal/tiktok-creators-file-suit-block-us-divestment-or-ban-law-2024-05-14/

"Using TikTok is Bad Cybersecurity"

https://blog.procircular.com/using-tiktok-is-bad-cybersecurity

"The House TikTok Ban Is an Empty Threat"

https://time.com/6962823/house-tiktok-ban-is-an-empty-threat/

A Little Something Extra

Harm Reduction: A Framework for Effective & Compassionate Security Guidance:

https://youtu.be/T1YEKAUJVjE

Connect With Us:

Twitter: @theeffitbucket

Reddit: r/theeffitbucket

E-mail: theeffitbucket@gmail.com

Musical Attribution:

"Limit 70" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/

This week in the bucket, the government makes ineffective changes, then the government does MORE ineffective things, we discuss what effective technical teams can do to protect themselves from phishing besides training, and terrifying AI art.

News Stories for Reference:

"The US Government Is Asking Big Tech to Promise Better Cybersecurity"

https://www.wired.com/story/cisa-cybersecurity-pledge/

"UnitedHealth CEO faces grilling from Congress over Change Healthcare hack"

https://www.washingtonpost.com/business/2024/05/01/united-health-hack-ceo-congress-change-healthcare/

"Rudy Giuliani falsely blames Twitter after typo points to anti-Trump website"

https://www.nbcnews.com/tech/tech-news/rudy-giuliani-falsely-blames-twitter-after-typo-points-anti-trump-n944136

A Little Something Extra

"'A Gluten-Free Poodle…' - Derrick Stroup - Stand-Up Featuring"

https://www.youtube.com/watch?v=L30jZojyqQY

Check out Paul Ruffalo's Horrifying AI Artwork

https://www.theeffitbucket.com/2024/05/09/paul-ruffalos-horrifying-ai-artwork/

Connect With Us:

Twitter: @theeffitbucket

Reddit: r/theeffitbucket

E-mail: theeffitbucket@gmail.com

Musical Attribution:

"Limit 70" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/

This week in the bucket, fallout from the Microsoft source code breach, our favorite sources for cyber security info, and our predictions on the future of the job market.

Connect With Us:

Twitter: @theeffitbucket

Reddit: r/theeffitbucket

E-mail: theeffitbucket@gmail.com

Musical Attribution:

"Limit 70" Kevin MacLeod (incompetech.com)

Licensed under Creative Commons: By Attribution 4.0 License

http://creativecommons.org/licenses/by/4.0/