This week, David and I discuss how GM is fraudulently collecting driving data and selling it to insurers, and Anton Chuvakin has another article on Detection Engineering - How to test your detections!

Article 1 - Long Article on GM Spying on Its Cars’ Drivers
Supporting Articles:
How GM Tricked Millions of Drivers Into Being Spied On (Including Me) [Non-Paywalled]
GM Shuts Down Tool That Collects Data on Driving Style

Article 2 - Testing in Detection Engineering (Part 8)

If you found this interesting or useful, please follow us on Twitter @serengetisec and subscribe and review on your favorite podcast app!

This week we review the new, proposed American Privacy Rights Act. Lots of words that sound good, but like most government legislation, there are exceptions big enough to drive a truck through.

Article - Committee Chairs Rodgers, Cantwell Unveil Historic Draft Comprehensive Data Privacy Legislation
Support Links:
Philip Dru: Administrator

If you found this interesting or useful, please follow us on Twitter @serengetisec and subscribe and review on your favorite podcast app!

This week David and I discuss an article from Venture in Security on how other industries have consolidated, and what lessons we can take from that into Security. It's more interesting than it sounds, I swear!

Article - Three types of consolidation in cybersecurity, and how monopolization and commoditization are shaping the industry of tomorrow

If you found this interesting or useful, please follow us on Twitter @serengetisec and subscribe and review on your favorite podcast app!

This week we discuss eSIM Stealing (not swapping!), the EPA attempting to secure water systems again, and the coming, future Maximum Overdrive like Apocalypse where Big Rigs become the dominant life form.

Article 1 - SIM swappers hijacking phone numbers in eSIM attacks
Supporting Articles:
About eSIM on iPhone
I Stopped Using Passwords. It’s Great—and a Total Mess

Article 2 - US task force aims to plug security leaks in water sector
Supporting Articles:
Official says 'hack' of Oldsmar city water treatment plant in 2021 didn't happen
Top Cyber Actions for Securing Water Systems

Article 3 - Truck-to-truck worm could infect – and disrupt – entire US commercial fleet

If you found this interesting or useful, please follow us on Twitter @serengetisec and subscribe and review on your favorite podcast app!

This week we take a look at a book that's been making the podcast rounds - Your Face Belongs to Us by Kashmir Hill. We discuss the history of facial recognition, the privacy concerns and what exactly Clearview AI has been doing. Then we finish up with our thoughts on where this all is going. Spoiler - It's not a happy ending. Good book, you should read it!

We recorded this episode in a restaurant, and used an AI tool to remove background noise. This can result in... weird transient sounds. One of them sounded like a ghost. This podcast is not haunted, I swear.

Link - https://a.co/d/i3OJWbb

If you found this interesting or useful, please follow us on Twitter @serengetisec and subscribe and review on your favorite podcast app!

This week we take a look at the Picus Security Blue Report, and provide some analysis of the statements. Interesting findings here. The report was reasonably short, so we also discussed the recent documents leak from the Chinese contractor iSoon, and a surprise article on autonomous drones!

Article 1 - THE BLUE REPORT 2023
Supporting Articles:
SS-RPRT-103: The Red Report 2023

Article 2 - An online dump of Chinese hacking documents offers a rare window into pervasive state surveillance
Supporting Articles:
@still@infosec.exchange

Article 3 - Former Google CEO Gets Into the AI-Powered Kamikaze Drone Business With ‘White Stork’
Supporting Articles:
CW - Soldier Killed by Kamikaze Drone
Horror Short Film - Slaughterbots

If you found this interesting or useful, please follow us on Twitter @serengetisec and subscribe and review on your favorite podcast app!

This week we take a look at 2024 Security Predictions. We found a summary article that listed 24 other companies predictions for the coming year, and we took a look and picked out the most interesting ones. Then we completed the podcast with some of our own predictions!

Article - The Top 24 Security Predictions for 2024

If you found this interesting or useful, please follow us on Twitter @serengetisec and subscribe and review on your favorite podcast app!

This week we discuss the expansion of the EFF's Atlas of Surveillance, the Mother of all Breaches (not to be mistaken with the Mother of all Bombs), and AI Sleeper Agents that are going to eventually surround us all.

Article 1 - EFF adds Street Surveillance Hub so Americans can check who's checking on them
Supporting Articles:
Atlas of Surveillance
Ring will no longer allow police to request users' doorbell camera footage
License plate readers used by repo businesses in the Valley

Article 2 - ‘Mother of all breaches’ uncovered after 26 billion records leaked
Supporting Articles:
Mother of all breaches reveals 26 billion records: what we know so far
Check if your data has been leaked

Article 3 - AI Sleeper Agents

If you found this interesting or useful, please follow us on Twitter @serengetisec and subscribe and review on your favorite podcast app!