Podcasts about delete stolen data

In November 2017, with Dara Khosrowshahi a few months into his job as Uber CEO, the ride-hailing company came to me with some explosive information: The company claimed that during Travis Kalanick's time as CEO, Uber had covered up a massive data breach. Hackers had downloaded sensitive information about Uber's riders and drivers, and the company's chief security officer, Joe Sullivan, had kept it under wraps by paying the hackers $100,000. Uber fired Sullivan and one of the company's lawyers. I published the exclusive story with the headline, Uber Paid Hackers to Delete Stolen Data on 57 Million People.Cyber security reporters have — for years — raised questions about the Khosrowshahi regime's story. Sullivan tried to frame the $100,000 payout as part of the company's white hat bug bounty program. And Sullivan's defenders argued that Kalanick era Uber's effort to conceal the payout — at a time when it was under investigation by the Federal Trade Commission over a prior data breach — looks even less anomalous today in a world where companies pay ransoms to hackers all the time. So I've watched the case closely over the years to see whether I'd been had. Had Khosrowshahi and crew whipped up a fake scandal? (I never quite understood why they would need to — Kalanick era Uber already had so many.)Over the years, the legal system has consistently validated Khosrowshahi era Uber's account. * In 2018, Uber reached a $148 million settlement with 50 states and the District of Columbia over its handling of the data breach. * In 2019, two men pleaded guilty to the Uber hack. * In 2020, the Justice Department indicted Sullivan, a former federal prosecutor, for his handling of the hack. * Finally, last week a jury found Sullivan guilty of both counts that prosecutors brought against him. (Those charges were obstruction of the Federal Trade Commission and misprision of a felony.) Still, parts of the cyber security world defended Sullivan's actions.Joseph Menn, the well-respected cyber security reporter for the Washington Post and author of Cult of the Dead Cow, recently quoted security experts raising concerns about the potential ramifications of the guilty verdict.Menn wrote,Most security professionals had been anticipating Sullivan's acquittal, noting that he had kept the CEO and others who were not charged informed of what was happening.“Personal liability for corporate decisions with executive stakeholder input is a new territory that's somewhat uncharted for security executives,” said Dave Shackleford, owner of Voodoo Security. “I fear it will lead to a lack of interest in our field, and increased skepticism about infosec overall.”John Johnson, a “virtual” chief information security officer for multiple companies, agreed. “Your company leadership could make choices that can have very personal repercussions to you and your lifestyle,” he said. “Not saying everything Joe did was right or perfect, but we can't bury our head and say it will never happen to us.”So Tom Dotan and I invited Menn onto the Dead Cat podcast to get his perspective on Sullivan's conviction. We also asked Menn about crypto currency hacks, Cult of the Dead Cow, and Twitter's whistleblower. Give it a listen.Read the automated transcript. Get full access to Newcomer at www.newcomer.co/subscribe

In November 2017, with Dara Khosrowshahi a few months into his job as Uber CEO, the ride-hailing company came to me with some explosive information: The company claimed that during Travis Kalanick's time as CEO, Uber had covered up a massive data breach. Hackers had downloaded sensitive information about Uber's riders and drivers, and the company's chief security officer, Joe Sullivan, had kept it under wraps by paying the hackers $100,000. Uber fired Sullivan and one of the company's lawyers. I published the exclusive story with the headline, Uber Paid Hackers to Delete Stolen Data on 57 Million People.Cyber security reporters have — for years — raised questions about the Khosrowshahi regime's story. Sullivan tried to frame the $100,000 payout as part of the company's white hat bug bounty program. And Sullivan's defenders argued that Kalanick era Uber's effort to conceal the payout — at a time when it was under investigation by the Federal Trade Commission over a prior data breach — looks even less anomalous today in a world where companies pay ransoms to hackers all the time. So I've watched the case closely over the years to see whether I'd been had. Had Khosrowshahi and crew whipped up a fake scandal? (I never quite understood why they would need to — Kalanick era Uber already had so many.)Over the years, the legal system has consistently validated Khosrowshahi era Uber's account. * In 2018, Uber reached a $148 million settlement with 50 states and the District of Columbia over its handling of the data breach. * In 2019, two men pleaded guilty to the Uber hack. * In 2020, the Justice Department indicted Sullivan, a former federal prosecutor, for his handling of the hack. * Finally, last week a jury found Sullivan guilty of both counts that prosecutors brought against him. (Those charges were obstruction of the Federal Trade Commission and misprision of a felony.) Still, parts of the cyber security world defended Sullivan's actions.Joseph Menn, the well-respected cyber security reporter for the Washington Post and author of Cult of the Dead Cow, recently quoted security experts raising concerns about the potential ramifications of the guilty verdict.Menn wrote,Most security professionals had been anticipating Sullivan's acquittal, noting that he had kept the CEO and others who were not charged informed of what was happening.“Personal liability for corporate decisions with executive stakeholder input is a new territory that's somewhat uncharted for security executives,” said Dave Shackleford, owner of Voodoo Security. “I fear it will lead to a lack of interest in our field, and increased skepticism about infosec overall.”John Johnson, a “virtual” chief information security officer for multiple companies, agreed. “Your company leadership could make choices that can have very personal repercussions to you and your lifestyle,” he said. “Not saying everything Joe did was right or perfect, but we can't bury our head and say it will never happen to us.”So Tom Dotan and I invited Menn onto the Dead Cat podcast to get his perspective on Sullivan's conviction. We also asked Menn about crypto currency hacks, Cult of the Dead Cow, and Twitter's whistleblower. Give it a listen.Read the automated transcript. Get full access to Newcomer at www.newcomer.co/subscribe

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Alex Hamerstone, Justin Bollinger, and Rob Simon.    [Stories] Title: Apple search bot leaked internal IPs via proxy configuration URL: https://www.bleepingcomputer.com/news/security/apple-search-bot-leaked-internal-ips-via-proxy-configuration/ Author: Ax Sharma   Title: Woman accused of impersonating prosecutor, dropping criminal charges against herself URL: https://www.unionleader.com/news/courts/woman-accused-of-impersonating-prosecutor-dropping-criminal-charges-against-herself/article_1fdb1551-147d-53dd-ad45-6680bfc556fa.html?fbclid=IwAR2ovZ_mr_uVcIXJIcW3j_bEji7eLjE1yw_s90IPUKzsSxZ94-cDE-7YDys Author: Mark Hayward   Title: Why Paying to Delete Stolen Data is Bonkers URL: https://krebsonsecurity.com/2020/11/why-paying-to-delete-stolen-data-is-bonkers/ Author: Brian Krebs

On this week’s show Patrick and Adam discuss the week’s security news, including: Zoom settles with FTC over misleading E2EE claim Some poor sod had to give up $1bn in Bitcoin Solaris SSH 0day? Let’s party like it’s 1999 Samy Kamkar’s latest trick: NAT Slipstreaming Australia’s hardcore critical infrastructure protection bill Much, much more This week’s show is brought to you by Remediant. Company co-founder Paul Lanzi joins the show in this week’s sponsor interview to talk about how they’ve been helping companies recover from ransomware attacks. Maybe listen to this one. You know. Just in case you find yourself in that situation one day? Links to everything that we discussed are below and you can follow Patrick or Adam on Twitter if that’s your thing. Show notes Zoom settles FTC charges for misleading users about security features | ZDNet Someone has transferred ~$1 billion from a bitcoin wallet quiet since 2015 | Ars Technica The feds just seized Silk Road’s $1 billion stash of bitcoin | Ars Technica Hacker group uses Solaris zero-day to breach corporate networks | ZDNet NAT Slipstreaming hack tricks firewalls and routers | The Daily Swig Australia's hardcore critical infrastructure laws open to challenge - Risky Business 23,600 hacked databases have leaked from a defunct 'data breach index' site | ZDNet More suspected North Korean malware identified after US alert on Kimsuky hackers Suspected North Korean hackers who targeted job applicants prove more ambitious than first believed The many personalities of Lazarus - Risky Business Windows 10, iOS, Chrome, and many others fall at China's top hacking contest | ZDNet Linux version of RansomEXX ransomware discovered | ZDNet Cyberattack on U. of Vermont hospital IT network delays chemotherapy, mammogram appointments Building wave of ransomware attacks strike U.S. hospitals | Reuters Why Paying to Delete Stolen Data is Bonkers — Krebs on Security Israeli companies targeted with new Pay2Key ransomware | ZDNet Capcom takes systems offline following cyber-attack | The Daily Swig Company that runs US illegal immigration detention centers discloses ransomware attack | ZDNet Ransomware Hits Dozens of Hospitals in an Unprecedented Wave | WIRED Italian beverage vendor Campari knocked offline after ransomware attack | ZDNet Compal, the second-largest laptop manufacturer in the world, hit by ransomware | ZDNet Toy maker Mattel discloses ransomware attack | ZDNet Wisconsin Republicans say last minute hack cost party $2 million meant to reelect Trump FBI: Hackers stole source code from US government agencies and private companies | ZDNet Pwned: Deloitte Hacker IQ game forced offline after hack | The Daily Swig Russian authorities make rare arrest of malware author | ZDNet CERT/CC launches Twitter bot to give security bugs random names | ZDNet Oracle publishes rare out-of-band security update for WebLogic servers | ZDNet Apple fixes three iOS zero-days exploited in the wild | ZDNet After two zero-days in Chrome desktop, Google patches a third zero-day in the Android version | ZDNet Google’s Project Zero discloses Windows 0-day that’s been under active exploit | Ars Technica Google discloses Windows zero-day exploited in the wild | ZDNet Google patches second Chrome zero-day in two weeks | ZDNet ACOS/aGalaxy GUI RCE Vulnerability – CVE-2020-24384 – A10 Support Infamous ‘Hoax’ Artist Behind Trumpworld’s New Voter Fraud Claim (1) Matthew Gertz (@MattGertz) / Twitter

Unsere fliegende Glaskugel zeigt eventuelle Einblicken in die neue Ära des Internets. Welche Strukturen werden ausgebaut, auf- und abgelöst? Was macht die tonangebende Jugend? Was ist Was und wo sind eigentlich meine Socken? Lieber Fluggast, wenn dir das Gehörte gefällt oder dir Sorgenfalten auf die edle Stirn fabriziert, dann haben wir etwas für dich: iTunes Bewertungen. Follow-up „Pixelmator Pro“ im Mac App Store iMac Pro is a love letter to developers Der Grund für Dropbox’ Redesign liegt in Stuttgart: Nintendo brings HD Wii games to China’s Nvidia Shield—is Switch next? [Updated] • Ars Technica MarsEdit 4 Overkill for Mac PSA: If you have an older iPhone with slow performance, a new battery could solve your problems • 9to5Mac WebDAV Sharing unter High Sierra Use wfsctl to Manage WebDAV Shares in macOS 10.13 High Sierra High Sierra Server Part 5: WebDAV Set Up The ‘Cuphead’ Scam and TouchArcade: What Happened Das Internet in 10 Jahren? It’s Time to Bust the Online Trusts - WSJ (bzw.) Goodbye for now – Vidme – Medium The End of the Social Era Can’t Come Soon Enough – Vanity Fair There’s a Digital Media Crash. But No One Will Say It – Talking Points Memo Something is wrong on the internet – James Bridle – Medium josch: Die Grenzen des Geheimen YouTube: Kindervideos mit Sex und Gewalt auf Youtube The end of the cloud is coming • VentureBeat Uber Hack Shows Vulnerability of Software Code-Sharing Services - Bloomberg – Uber Paid Hackers to Delete Stolen Data on 57 Million People - Bloomberg PDF: Bittorrent’s Kademlia protocol Twitter Sidestepped Russian Account Warnings, Former Worker Says - Bloomberg Here’s How the End of Net Neutrality Will Change the Internet • WIRED Bitte lächeln: Bayer erkennt keine Gesichter in Apotheken mehr – netzpolitik.org Gesundheitsdaten bei Fitness-Apps: Abmahnungen und eine Klage gegen Apple – netzpolitik.org Unsere Picks Patrick: chrisiaut/pictshare: PictShare is an multi lingual, open source image and mp4 hosting service with a simple resizing and upload API that you can host yourself. Andreas: Spectrum Rafael: Unreal Engine In Spenderlaune? Wir haben Flattr und PayPal am Start und würden uns freuen.

Самые громкие новости последних недель. Удивительное яблоко, #FuckResponsibleDisclosure, обновленно обещание от Джона и еще что-то. Не пропустите! 00:00:58 #FuckResponsibleDisclosure Sean Brian Townsend https://www.facebook.com/ruheight https://informnapalm.org/uca/ http://usa.mfa.gov.ua/ua/consular-affairs/services/passport 00:07:26 Apple и все все все Why 'blank' Gets You Root https://objective-see.com/blog/blog_0x24.html As Apple fixes macOS root password hole, here's what went wrong http://www.theregister.co.uk/2017/11/29/apple_macos_high_sierra_root_bug_patch/ https://forums.developer.apple.com/thread/79235 https://twitter.com/fristle/status/935670476214378496 Repair file sharing after Security Update 2017-001 for macOS High Sierra 10.13.1 https://support.apple.com/en-us/HT208317 MACOS UPDATE ACCIDENTALLY UNDOES APPLE'S "ROOT" BUG PATCH https://www.wired.com/story/macos-update-undoes-apple-root-bug-patch/ Thousand-dollar iPhone X's Face ID wrecked by '$150 3D-printed mask' https://www.theregister.co.uk/2017/11/13/iphone_x_face_id/ Zero-day iOS HomeKit vulnerability allowed remote access to smart accessories including locks, fix rolling out https://9to5mac.com/2017/12/07/homekit-vulnerability/ 00:12:50 John McAfee https://twitter.com/officialmcafee/status/935900326007328768/photo/1 Bitcoin Miner NiceHash Hacked, Possibly Losing $62 Million in Bitcoin https://www.darkreading.com/cloud/bitcoin-miner-nicehash-hacked-possibly-losing-$62-million-in-bitcoin/d/d-id/1330585 Сайт блокчейн-проекта Confido недоступен: все профили команды проекта оказались поддельными https://forklog.com/sajt-blokchejn-proekta-confido-nedostupen-vse-profili-komandy-proekta-okazalis-poddelnymi/ 00:15:17 CVE-2017-11937 | Microsoft releases an emergency update to fix a flaw in Malware Protection Engine http://securityaffairs.co/wordpress/66475/hacking/cve-2017-11937-malware-protection-engine.html 00:17:49 Uber Paid Hackers to Delete Stolen Data on 57 Million People https://www.bloomberg.com/news/articles/2017-11-21/uber-concealed-cyberattack-that-exposed-57-million-people-s-data 00:18:28 Intel Management Engine pwned by buffer overflow https://www.theregister.co.uk/2017/12/06/intel_management_engine_pwned_by_buffer_overflow/ 00:18:52 Thousands of WordPress sites infected with a Keylogger and cryptocurrency miner scripts http://securityaffairs.co/wordpress/66432/hacking/keylogger.html Websites use your CPU to mine cryptocurrency even when you close your browser https://arstechnica.com/information-technology/2017/11/sneakier-more-persistent-drive-by-cryptomining-comes-to-a-browser-near-you/ 00:19:09 Android flaw lets attack code slip into signed apps https://www.theregister.co.uk/2017/12/08/android_flaw_lets_attack_code_slip_into_signed_apps/ 00:19:24 Mailsploit: It's 2017, and you can spoof the 'from' in email to fool filters http://www.theregister.co.uk/2017/12/06/mailsploit_email_spoofing_bug/ Music - KEYGEN MUSIC ~ One hour mix https://www.youtube.com/watch?v=c17k4LfLkaE

This week we discuss the Uber hack, Apple and VR acquisition, the new iPhone SE, the iMac powered by A10 and once again MacBook Pro wishes. Show Notes Uber Paid Hackers to Delete Stolen Data on 57 Million People - Bloomberg (https://www.bloomberg.com/news/articles/2017-11-21/uber-concealed-cyberattack-that-exposed-57-million-people-s-data) Google collects Android users' locations even when location services are disabled — Quartz (https://qz.com/1131515/google-collects-android-users-locations-even-when-location-services-are-disabled/) Dual Lens Switching on iPhone X – Studio Neat (https://www.studioneat.com/blogs/main/dual-lens-switching-on-the-iphone-x) Apple acquired augmented reality headset startup Vrvana for $30M – TechCrunch (https://techcrunch.com/2017/11/21/apple-acquires-mixed-reality-headset-startup-vrvana-for-30m/) Rumour Corner iPhone SE 2 Again Rumored to Launch in First Half of 2018 - Mac Rumors (https://www.macrumors.com/2017/11/22/iphone-se-2-release-date-first-half-2018/) iMac Pro to feature A10 Fusion coprocessor, possibly for always-on ‘Hey Siri’ – 9to5Mac (https://9to5mac.com/2017/11/18/imac-pro-a10-fusion-chip/) Guilherme Rambo on Twitter (https://twitter.com/_inside/status/932023185075261441) The Best Laptop Ever Made – Marco.org (https://marco.org/2017/11/14/best-laptop-ever) Fixing the MacBook Pro – Marco.org (https://marco.org/2017/11/24/fixing-the-macbook-pro) -- Awesome theme song by Jim Kulakowski (http://jimkulakowski.com/) | Photo by Carl Heyerdahl (https://unsplash.com/photos/KE0nC8-58MQ)

Chris and Ian discuss the Uber, UK Broadband, Android and Loot Boxes http://www.digitaloutbox.com/podcasts/episode323/DigitalOutbox-323-171124.mp3 Download iTunes MP3 Shownotes Twitter removes verified checkmarks from several white supremacists’ profiles PC vendors scramble as Intel announces vulnerability in firmware Android devices seen covertly sending location data to Google Uber Paid Hackers to Delete Stolen Data on 57 Million People Broadband firms must ditch 'misleading' speed ads UK supermarkets try face-based ID and payment system OnePlus 5T announced with bigger screen, new camera system, and a headphone jack Apple pushes HomePod release to early 2018 Hours before launch, EA strips micro-transactions from ‘Star Wars: Battlefront II’ HTC reveals standalone Vive Focus VR headset and cancels Daydream plans

Trump defends Moore Amid Sexual Assault Allegations, "he says he didn't do it". Kushner faces scrutiny over undisclosed contacts with foreign leaders. Uber Paid Hackers to Delete Stolen Data on 57 Million People, and didn’t tell anyone. UpBeat Lens is released Monday through Friday by 7:30am EST. Email us at contact@UpbeatLens.com and subscribe today!