Podcasts about have i been pwned

One unlocked phone can unravel the defenses of a billion-dollar enterprise—because in cybersecurity, small mistakes don't stay small for long. Attackers can read notes, steal IDs, or impersonate you on WhatsApp. A reused password can launch a remote tool that looks completely legitimate.Rob Maas (Field CTO, ON2IT) and Luca Cipriano (Cyber Threat Intelligence Program Lead, ON2IT) reveal how poor cyber hygiene erodes trust, endangers partners, and weakens enterprise defenses.CISOs, CIO and IT managers remember: in a Zero Trust world, your weakest link might not even be inside your organization.(00:00) - Why your cyber hygiene affects others (00:28) - Meet the speakers (Rob Maas, Luca Cipriano) (00:47) - Cyber hygiene defined for CISOs (03:00) - Unlocked phone → passwords in notes, WhatsApp fraud, ID photos (05:53) - SOC case: contractor email compromise → remote tool drop (ConnectWise) (09:40) - OSINT: 19 breaches + iterative password reuse (17:01) - What to fix now: MFA, vaults, device lock, breach monitoring (20:24) - Final takeaways & resources What You'll Learn (From Real-Life Example Discussions)• How a stolen phone quickly turns into identity theft, impersonation, and scams targeting your contacts.• A real SOC case: a contractor's reused password allowed attackers to hide a remote access tool inside normal IT activity.• How OSINT and dark web data reveal how password reuse spreads risk across accounts.• Why shared tools like Google Docs can quietly multiply breaches when one user slips up.• Simple upgrades—MFA, password vaults, breach alerts, and secure devices—that cut your organization's exposure fast.Click here to view the episode transcript. Related ON2IT Content & Referenced Resources• ON2IT: https://on2it.net/• Threat Talks: https://threat-talks.com/• AMS-IX: https://www.ams-ix.net/ams• WatchYourHack: https://watchyourhack.com• Have I Been Pwned: https://haveibeenpwned.comGuest and Host Links: Rob Maas, Field CTO, ON2IT: https://www.linkedin.com/in/robmaas83/ Luca Cipriano, Cyber Threat Intelligence Program Lead, ON2IT: https://www.linkedin.com/in/luca-c-914973124/If this helped, subscribe to Threat Talks. Share this episode with your partners and contractors—stronger cyber hygiene across your ecosystem protects everyone. 

Send us a textCheck us out at:  https://www.cisspcybertraining.com/Get access to 360 FREE CISSP Questions:  https://www.cisspcybertraining.com/offers/dzHKVcDB/checkoutGet access to my FREE CISSP Self-Study Essentials Videos:  https://www.cisspcybertraining.com/offers/KzBKKouvA headline‑grabbing data leak is the wake‑up call; what you do next is the difference between panic and control. We start with concrete actions you can take today—check exposure with Have I Been Pwned, lock down your credit with freezes, turn on MFA, and keep meticulous records so you have proof when it counts. From there, we switch gears into the playbook every CISSP candidate and security leader needs: a clear path through the access control maze that actually maps to real work.We break down Discretionary Access Control (DAC) and why it's fast but fragile, then show how non‑discretionary models keep large environments consistent. Role‑Based Access Control (RBAC) gets the spotlight with practical guidance: define roles by job function, automate approvals, prevent role explosion, and audit entitlements so inheritance doesn't hand out surprise privileges. We separate role‑based from rule‑based—one tied to people and jobs, the other to conditions like time, location, and transaction type—using examples you can adopt immediately.For high‑assurance scenarios, we dig into Mandatory Access Control (MAC): labels, clearances, compartments, and the uncompromising policies that protect the most sensitive data. Finally, we look ahead with Attribute‑Based Access Control (ABAC), where context drives decisions in cloud and zero trust architectures. User attributes, device posture, data sensitivity, time, and geo all combine to answer the crucial question: should this subject access this object, right now?You'll walk away with exam‑ready cues, battle‑tested pros and cons, and a mental model to pick the right approach for your team. If this helped, subscribe, share it with a teammate who keeps mixing up role‑based and rule‑based, and leave a quick review so others can find us.Gain exclusive access to 360 FREE CISSP Practice Questions at FreeCISSPQuestions.com and have them delivered directly to your inbox! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Send us a textIn this episode of Investors Coffee Shop, Brian Harte sits down with Joe Soeka, a cybersecurity and digital forensics expert with over a decade of hands-on experience in identifying and analyzing cyber threats. Joe has worked extensively in digital forensics and incident response, holding advanced certifications that allow him to tackle complex technical challenges head-on.Joe shares insights on:The most pressing cyber threats facing individuals and businesses todayHow digital forensics uncovers the truth hidden within systems and dataPractical steps anyone can take to strengthen their personal and organizational cybersecurity postureListeners will also walk away with tools and resources to stay ahead of evolving threats. One highlighted resource is Have I Been Pwned, a free service where you can check if your email or phone number has been part of a data breach.Whether you're an investor, entrepreneur, or just someone who wants to better understand how to protect your digital identity, this episode is packed with valuable knowledge.Support the show

Windows 11 version 25H2 is here, but blink and you might miss the difference from last year! Also, Microsoft just hiked Xbox Game Pass Ultimate to $30/month and is leaving gamers everywhere weighing their subscriptions—and their loyalty. 25H2 is here?! Microsoft announced that 25H2 is GA! But where is it? And what is it? Microsoft has a list of "new" features More Windows 11 Microsoft delivers the 24H2 Week D update in Week E No, it's not the preview version of 25H2 for some reason But it is a massive update. And it is essentially 25H2 Pavan Davuluri was promoted to president and his first change was to bring Windows engineering back in-house and out of Azure Dev and Beta: Minor changes to File Explorer, Quick settings, Get Started Photos app is getting AI-based categories Windows 10 Extended Security Updates to be free-free in the EU Snapdragon X2 It's real and it's really better than almost anything out there. The bad news: Not until next year Hardware prototypes point the way for device makers Arm is the epiphany we need for everything to just work Also, apparently Qualcomm still makes phone chips Qualcomm declares "total litigation victory" against Arm Holdings. More like Harm Holdings, ammmi right? AI Microsoft CEO Satya Nadella steps aside to focus on engineering Microsoft enters a new era for Copilot/AI "More Copilot" is the new "more cowbell" Microsoft 365 Premium is the AI-powered subscription you were looking for, Copilot Pro is out This maps neatly to the three app structure model and to Paul's "I will not pay for AI" thing Tied to this, Microsoft also announced inside app vibe working updates across Office apps Is this also tied to low uptick on paid AI? Report claims just 8 million seats for Microsoft 365 Copilot Stevie Bathiche came to Hawaii to talk about the importance of NPUs and on-device AI "Directive AI, 80 TOPS NPUs enable concurrent AI, AI agents are the "outside app" structure, Orchestration is evolving Copilot users can talk to a cartoon now Xbox and gaming Major revamp to Xbox Game Pass with some good and some bad Xbox Cloud Gaming is out of beta after what feels like 17 years, now on all Game Pass tiers Game Pass Ultimate gets big price hike but also some improvements Game Pass Premium replaces Standard Game Pass Essential replaces Core Amazon Luna got a big update too You can preorder a ROG Xbox Ally Gaming handheld now And Microsoft announces how it will handle compatibility Costco drops Xbox consoles Flight Simulator 2024 is coming to P5 in 2025 EA goes private for $55 billion Tips and picks Tip of the week: Videogames are getting expensive App pick of the week: Proton Mail RunAs Radio this week: HaveIBeenPwned with Troy Hunt Brown liquor pick of the week: Compass Box Vellichor Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Download or subscribe to Windows Weekly at https://twit.tv/shows/windows-weekly Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/windowsweekly zapier.com/windows

Windows 11 version 25H2 is here, but blink and you might miss the difference from last year! Also, Microsoft just hiked Xbox Game Pass Ultimate to $30/month and is leaving gamers everywhere weighing their subscriptions—and their loyalty. 25H2 is here?! Microsoft announced that 25H2 is GA! But where is it? And what is it? Microsoft has a list of "new" features More Windows 11 Microsoft delivers the 24H2 Week D update in Week E No, it's not the preview version of 25H2 for some reason But it is a massive update. And it is essentially 25H2 Pavan Davuluri was promoted to president and his first change was to bring Windows engineering back in-house and out of Azure Dev and Beta: Minor changes to File Explorer, Quick settings, Get Started Photos app is getting AI-based categories Windows 10 Extended Security Updates to be free-free in the EU Snapdragon X2 It's real and it's really better than almost anything out there. The bad news: Not until next year Hardware prototypes point the way for device makers Arm is the epiphany we need for everything to just work Also, apparently Qualcomm still makes phone chips Qualcomm declares "total litigation victory" against Arm Holdings. More like Harm Holdings, ammmi right? AI Microsoft CEO Satya Nadella steps aside to focus on engineering Microsoft enters a new era for Copilot/AI "More Copilot" is the new "more cowbell" Microsoft 365 Premium is the AI-powered subscription you were looking for, Copilot Pro is out This maps neatly to the three app structure model and to Paul's "I will not pay for AI" thing Tied to this, Microsoft also announced inside app vibe working updates across Office apps Is this also tied to low uptick on paid AI? Report claims just 8 million seats for Microsoft 365 Copilot Stevie Bathiche came to Hawaii to talk about the importance of NPUs and on-device AI "Directive AI, 80 TOPS NPUs enable concurrent AI, AI agents are the "outside app" structure, Orchestration is evolving Copilot users can talk to a cartoon now Xbox and gaming Major revamp to Xbox Game Pass with some good and some bad Xbox Cloud Gaming is out of beta after what feels like 17 years, now on all Game Pass tiers Game Pass Ultimate gets big price hike but also some improvements Game Pass Premium replaces Standard Game Pass Essential replaces Core Amazon Luna got a big update too You can preorder a ROG Xbox Ally Gaming handheld now And Microsoft announces how it will handle compatibility Costco drops Xbox consoles Flight Simulator 2024 is coming to P5 in 2025 EA goes private for $55 billion Tips and picks Tip of the week: Videogames are getting expensive App pick of the week: Proton Mail RunAs Radio this week: HaveIBeenPwned with Troy Hunt Brown liquor pick of the week: Compass Box Vellichor Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Download or subscribe to Windows Weekly at https://twit.tv/shows/windows-weekly Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/windowsweekly zapier.com/windows

Windows 11 version 25H2 is here, but blink and you might miss the difference from last year! Also, Microsoft just hiked Xbox Game Pass Ultimate to $30/month and is leaving gamers everywhere weighing their subscriptions—and their loyalty. 25H2 is here?! Microsoft announced that 25H2 is GA! But where is it? And what is it? Microsoft has a list of "new" features More Windows 11 Microsoft delivers the 24H2 Week D update in Week E No, it's not the preview version of 25H2 for some reason But it is a massive update. And it is essentially 25H2 Pavan Davuluri was promoted to president and his first change was to bring Windows engineering back in-house and out of Azure Dev and Beta: Minor changes to File Explorer, Quick settings, Get Started Photos app is getting AI-based categories Windows 10 Extended Security Updates to be free-free in the EU Snapdragon X2 It's real and it's really better than almost anything out there. The bad news: Not until next year Hardware prototypes point the way for device makers Arm is the epiphany we need for everything to just work Also, apparently Qualcomm still makes phone chips Qualcomm declares "total litigation victory" against Arm Holdings. More like Harm Holdings, ammmi right? AI Microsoft CEO Satya Nadella steps aside to focus on engineering Microsoft enters a new era for Copilot/AI "More Copilot" is the new "more cowbell" Microsoft 365 Premium is the AI-powered subscription you were looking for, Copilot Pro is out This maps neatly to the three app structure model and to Paul's "I will not pay for AI" thing Tied to this, Microsoft also announced inside app vibe working updates across Office apps Is this also tied to low uptick on paid AI? Report claims just 8 million seats for Microsoft 365 Copilot Stevie Bathiche came to Hawaii to talk about the importance of NPUs and on-device AI "Directive AI, 80 TOPS NPUs enable concurrent AI, AI agents are the "outside app" structure, Orchestration is evolving Copilot users can talk to a cartoon now Xbox and gaming Major revamp to Xbox Game Pass with some good and some bad Xbox Cloud Gaming is out of beta after what feels like 17 years, now on all Game Pass tiers Game Pass Ultimate gets big price hike but also some improvements Game Pass Premium replaces Standard Game Pass Essential replaces Core Amazon Luna got a big update too You can preorder a ROG Xbox Ally Gaming handheld now And Microsoft announces how it will handle compatibility Costco drops Xbox consoles Flight Simulator 2024 is coming to P5 in 2025 EA goes private for $55 billion Tips and picks Tip of the week: Videogames are getting expensive App pick of the week: Proton Mail RunAs Radio this week: HaveIBeenPwned with Troy Hunt Brown liquor pick of the week: Compass Box Vellichor Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Download or subscribe to Windows Weekly at https://twit.tv/shows/windows-weekly Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/windowsweekly zapier.com/windows

Windows 11 version 25H2 is here, but blink and you might miss the difference from last year! Also, Microsoft just hiked Xbox Game Pass Ultimate to $30/month and is leaving gamers everywhere weighing their subscriptions—and their loyalty. 25H2 is here?! Microsoft announced that 25H2 is GA! But where is it? And what is it? Microsoft has a list of "new" features More Windows 11 Microsoft delivers the 24H2 Week D update in Week E No, it's not the preview version of 25H2 for some reason But it is a massive update. And it is essentially 25H2 Pavan Davuluri was promoted to president and his first change was to bring Windows engineering back in-house and out of Azure Dev and Beta: Minor changes to File Explorer, Quick settings, Get Started Photos app is getting AI-based categories Windows 10 Extended Security Updates to be free-free in the EU Snapdragon X2 It's real and it's really better than almost anything out there. The bad news: Not until next year Hardware prototypes point the way for device makers Arm is the epiphany we need for everything to just work Also, apparently Qualcomm still makes phone chips Qualcomm declares "total litigation victory" against Arm Holdings. More like Harm Holdings, ammmi right? AI Microsoft CEO Satya Nadella steps aside to focus on engineering Microsoft enters a new era for Copilot/AI "More Copilot" is the new "more cowbell" Microsoft 365 Premium is the AI-powered subscription you were looking for, Copilot Pro is out This maps neatly to the three app structure model and to Paul's "I will not pay for AI" thing Tied to this, Microsoft also announced inside app vibe working updates across Office apps Is this also tied to low uptick on paid AI? Report claims just 8 million seats for Microsoft 365 Copilot Stevie Bathiche came to Hawaii to talk about the importance of NPUs and on-device AI "Directive AI, 80 TOPS NPUs enable concurrent AI, AI agents are the "outside app" structure, Orchestration is evolving Copilot users can talk to a cartoon now Xbox and gaming Major revamp to Xbox Game Pass with some good and some bad Xbox Cloud Gaming is out of beta after what feels like 17 years, now on all Game Pass tiers Game Pass Ultimate gets big price hike but also some improvements Game Pass Premium replaces Standard Game Pass Essential replaces Core Amazon Luna got a big update too You can preorder a ROG Xbox Ally Gaming handheld now And Microsoft announces how it will handle compatibility Costco drops Xbox consoles Flight Simulator 2024 is coming to P5 in 2025 EA goes private for $55 billion Tips and picks Tip of the week: Videogames are getting expensive App pick of the week: Proton Mail RunAs Radio this week: HaveIBeenPwned with Troy Hunt Brown liquor pick of the week: Compass Box Vellichor Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Download or subscribe to Windows Weekly at https://twit.tv/shows/windows-weekly Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/windowsweekly zapier.com/windows

How do you know if one of your accounts has been part of a security breach? Richard chats with Troy Hunt about HaveIBeenPwned, a free service that allows individuals to receive notifications when their accounts appear in a security breach. Troy discusses other services available alongside HaveIBeenPwned for sysadmins, including password checking, identifying accounts associated with a specific domain, and more. When considering the cost of managing a customer with an exploited account, being able to prevent or mitigate potential risk is highly valuable. LinksHaveIBeenPwnedPark Mobile SettlementSnowflake Data BreachRecorded September 25, 2025

Windows 11 version 25H2 is here, but blink and you might miss the difference from last year! Also, Microsoft just hiked Xbox Game Pass Ultimate to $30/month and is leaving gamers everywhere weighing their subscriptions—and their loyalty. 25H2 is here?! Microsoft announced that 25H2 is GA! But where is it? And what is it? Microsoft has a list of "new" features More Windows 11 Microsoft delivers the 24H2 Week D update in Week E No, it's not the preview version of 25H2 for some reason But it is a massive update. And it is essentially 25H2 Pavan Davuluri was promoted to president and his first change was to bring Windows engineering back in-house and out of Azure Dev and Beta: Minor changes to File Explorer, Quick settings, Get Started Photos app is getting AI-based categories Windows 10 Extended Security Updates to be free-free in the EU Snapdragon X2 It's real and it's really better than almost anything out there. The bad news: Not until next year Hardware prototypes point the way for device makers Arm is the epiphany we need for everything to just work Also, apparently Qualcomm still makes phone chips Qualcomm declares "total litigation victory" against Arm Holdings. More like Harm Holdings, ammmi right? AI Microsoft CEO Satya Nadella steps aside to focus on engineering Microsoft enters a new era for Copilot/AI "More Copilot" is the new "more cowbell" Microsoft 365 Premium is the AI-powered subscription you were looking for, Copilot Pro is out This maps neatly to the three app structure model and to Paul's "I will not pay for AI" thing Tied to this, Microsoft also announced inside app vibe working updates across Office apps Is this also tied to low uptick on paid AI? Report claims just 8 million seats for Microsoft 365 Copilot Stevie Bathiche came to Hawaii to talk about the importance of NPUs and on-device AI "Directive AI, 80 TOPS NPUs enable concurrent AI, AI agents are the "outside app" structure, Orchestration is evolving Copilot users can talk to a cartoon now Xbox and gaming Major revamp to Xbox Game Pass with some good and some bad Xbox Cloud Gaming is out of beta after what feels like 17 years, now on all Game Pass tiers Game Pass Ultimate gets big price hike but also some improvements Game Pass Premium replaces Standard Game Pass Essential replaces Core Amazon Luna got a big update too You can preorder a ROG Xbox Ally Gaming handheld now And Microsoft announces how it will handle compatibility Costco drops Xbox consoles Flight Simulator 2024 is coming to P5 in 2025 EA goes private for $55 billion Tips and picks Tip of the week: Videogames are getting expensive App pick of the week: Proton Mail RunAs Radio this week: HaveIBeenPwned with Troy Hunt Brown liquor pick of the week: Compass Box Vellichor Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Download or subscribe to Windows Weekly at https://twit.tv/shows/windows-weekly Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/windowsweekly zapier.com/windows

Windows 11 version 25H2 is here, but blink and you might miss the difference from last year! Also, Microsoft just hiked Xbox Game Pass Ultimate to $30/month and is leaving gamers everywhere weighing their subscriptions—and their loyalty. 25H2 is here?! Microsoft announced that 25H2 is GA! But where is it? And what is it? Microsoft has a list of "new" features More Windows 11 Microsoft delivers the 24H2 Week D update in Week E No, it's not the preview version of 25H2 for some reason But it is a massive update. And it is essentially 25H2 Pavan Davuluri was promoted to president and his first change was to bring Windows engineering back in-house and out of Azure Dev and Beta: Minor changes to File Explorer, Quick settings, Get Started Photos app is getting AI-based categories Windows 10 Extended Security Updates to be free-free in the EU Snapdragon X2 It's real and it's really better than almost anything out there. The bad news: Not until next year Hardware prototypes point the way for device makers Arm is the epiphany we need for everything to just work Also, apparently Qualcomm still makes phone chips Qualcomm declares "total litigation victory" against Arm Holdings. More like Harm Holdings, ammmi right? AI Microsoft CEO Satya Nadella steps aside to focus on engineering Microsoft enters a new era for Copilot/AI "More Copilot" is the new "more cowbell" Microsoft 365 Premium is the AI-powered subscription you were looking for, Copilot Pro is out This maps neatly to the three app structure model and to Paul's "I will not pay for AI" thing Tied to this, Microsoft also announced inside app vibe working updates across Office apps Is this also tied to low uptick on paid AI? Report claims just 8 million seats for Microsoft 365 Copilot Stevie Bathiche came to Hawaii to talk about the importance of NPUs and on-device AI "Directive AI, 80 TOPS NPUs enable concurrent AI, AI agents are the "outside app" structure, Orchestration is evolving Copilot users can talk to a cartoon now Xbox and gaming Major revamp to Xbox Game Pass with some good and some bad Xbox Cloud Gaming is out of beta after what feels like 17 years, now on all Game Pass tiers Game Pass Ultimate gets big price hike but also some improvements Game Pass Premium replaces Standard Game Pass Essential replaces Core Amazon Luna got a big update too You can preorder a ROG Xbox Ally Gaming handheld now And Microsoft announces how it will handle compatibility Costco drops Xbox consoles Flight Simulator 2024 is coming to P5 in 2025 EA goes private for $55 billion Tips and picks Tip of the week: Videogames are getting expensive App pick of the week: Proton Mail RunAs Radio this week: HaveIBeenPwned with Troy Hunt Brown liquor pick of the week: Compass Box Vellichor Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Download or subscribe to Windows Weekly at https://twit.tv/shows/windows-weekly Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: 1password.com/windowsweekly zapier.com/windows

Personal Security 101: Die Security-Basics für Entwickler*innenDenkst du, Passwortmanager sind in 2025 längst Standard? Dann kennst du vermutlich noch nicht die Realität von vielen Devs. Selbst bei den Profis landen SSH-Schlüssel, API-Keys oder Secrets oft unverschlüsselt auf der Festplatte.In dieser Episode gehen wir zurück zu den Security-Basics. Wir sprechen offen darüber, was wirklich Best Practice ist und was in der Praxis (und bei uns privat) anklang findet. Warum sind Passwortmanager ein echtes Must-have? Wann reicht TOTP – und wann brauchst du Hardware-Tokens wie den Yubikey? Welche Kompromisse gehst du zwischen UX, Sicherheit und „Faulheit“ ein? Außerdem diskutieren wir, wie du SSH-Keys richtig schützt und wie du sensible Umgebungsvariablen verwaltest. Weiterhin klären wir, was Phishing, Typosquatting und homographische Angriffe sind.Engagiere dich in unserer Community, teile deine Security-Stories und verrate uns deine Lieblings-Tools – oder die Hacks, auf die du heute lieber nicht mehr stolz bist. Vielleicht schaffen wir es gemeinsam, Security 2025 ein Stück besser zu machen.Unsere aktuellen Werbepartner findest du auf https://engineeringkiosk.dev/partnersDas schnelle Feedback zur Episode:

In this episode, we're joined by Troy Hunt, Australian online security consultant, creator of Have I Been Pwned, and one of the world's leading voices on data breaches. He breaks down the key differences between encryption and hashing, and what they mean for keeping your data safe. We dive into infamous data breaches, including the Ashley Madison case, and explore the often hidden, long-term impacts these leaks can have on people's lives. With online scams and breaches costing Australians over $3 billion every year, we also look at the rising threat of ransomware and why it's so hard to fight. This conversation opened so many cans of worms, we had to save the rest for part two. https://haveibeenpwned.com/ Linkedin: Troy Hunt

Another Israeli spyware vendor surfaces. Win11 to delete restore points more quickly. The EU accelerates its plans to abandon Microsoft Azure. The EU sets timelines for Post-Quantum crypto adoption. Russia to create a massive IMEI database. Canada and the UK create the "Common Good Cyber Fund". U.S. states crack down on Bitcoin ATMs amid growing scams. Congressional staffers cannot use WhatsApp on gov devices. LibXML2 and the problems with commercial use of OSS. A(nother) remote code execution vulnerability in WinRAR. Have-I-Been-Pwned gets a cool data visualization site. How is ransomware getting in? Windows to offer "safe" non-kernel endpoint security? Proactive age verification coming to porn sites. How? Canada (also) says "bye bye" to Hikvision. Germany will be banning DeekSeek. The whole EU may follow. Cloudflare throttled in Russia? What must the U.S. do to compete in global exploit acquisition? Show Notes - https://www.grc.com/sn/SN-1033-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: expressvpn.com/securitynow Melissa.com/twit 1password.com/securitynow hoxhunt.com/securitynow canary.tools/twit - use code: TWIT

Another Israeli spyware vendor surfaces. Win11 to delete restore points more quickly. The EU accelerates its plans to abandon Microsoft Azure. The EU sets timelines for Post-Quantum crypto adoption. Russia to create a massive IMEI database. Canada and the UK create the "Common Good Cyber Fund". U.S. states crack down on Bitcoin ATMs amid growing scams. Congressional staffers cannot use WhatsApp on gov devices. LibXML2 and the problems with commercial use of OSS. A(nother) remote code execution vulnerability in WinRAR. Have-I-Been-Pwned gets a cool data visualization site. How is ransomware getting in? Windows to offer "safe" non-kernel endpoint security? Proactive age verification coming to porn sites. How? Canada (also) says "bye bye" to Hikvision. Germany will be banning DeekSeek. The whole EU may follow. Cloudflare throttled in Russia? What must the U.S. do to compete in global exploit acquisition? Show Notes - https://www.grc.com/sn/SN-1033-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: expressvpn.com/securitynow Melissa.com/twit 1password.com/securitynow hoxhunt.com/securitynow canary.tools/twit - use code: TWIT

Another Israeli spyware vendor surfaces. Win11 to delete restore points more quickly. The EU accelerates its plans to abandon Microsoft Azure. The EU sets timelines for Post-Quantum crypto adoption. Russia to create a massive IMEI database. Canada and the UK create the "Common Good Cyber Fund". U.S. states crack down on Bitcoin ATMs amid growing scams. Congressional staffers cannot use WhatsApp on gov devices. LibXML2 and the problems with commercial use of OSS. A(nother) remote code execution vulnerability in WinRAR. Have-I-Been-Pwned gets a cool data visualization site. How is ransomware getting in? Windows to offer "safe" non-kernel endpoint security? Proactive age verification coming to porn sites. How? Canada (also) says "bye bye" to Hikvision. Germany will be banning DeekSeek. The whole EU may follow. Cloudflare throttled in Russia? What must the U.S. do to compete in global exploit acquisition? Show Notes - https://www.grc.com/sn/SN-1033-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: expressvpn.com/securitynow Melissa.com/twit 1password.com/securitynow hoxhunt.com/securitynow canary.tools/twit - use code: TWIT

Another Israeli spyware vendor surfaces. Win11 to delete restore points more quickly. The EU accelerates its plans to abandon Microsoft Azure. The EU sets timelines for Post-Quantum crypto adoption. Russia to create a massive IMEI database. Canada and the UK create the "Common Good Cyber Fund". U.S. states crack down on Bitcoin ATMs amid growing scams. Congressional staffers cannot use WhatsApp on gov devices. LibXML2 and the problems with commercial use of OSS. A(nother) remote code execution vulnerability in WinRAR. Have-I-Been-Pwned gets a cool data visualization site. How is ransomware getting in? Windows to offer "safe" non-kernel endpoint security? Proactive age verification coming to porn sites. How? Canada (also) says "bye bye" to Hikvision. Germany will be banning DeekSeek. The whole EU may follow. Cloudflare throttled in Russia? What must the U.S. do to compete in global exploit acquisition? Show Notes - https://www.grc.com/sn/SN-1033-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: expressvpn.com/securitynow Melissa.com/twit 1password.com/securitynow hoxhunt.com/securitynow canary.tools/twit - use code: TWIT

Another Israeli spyware vendor surfaces. Win11 to delete restore points more quickly. The EU accelerates its plans to abandon Microsoft Azure. The EU sets timelines for Post-Quantum crypto adoption. Russia to create a massive IMEI database. Canada and the UK create the "Common Good Cyber Fund". U.S. states crack down on Bitcoin ATMs amid growing scams. Congressional staffers cannot use WhatsApp on gov devices. LibXML2 and the problems with commercial use of OSS. A(nother) remote code execution vulnerability in WinRAR. Have-I-Been-Pwned gets a cool data visualization site. How is ransomware getting in? Windows to offer "safe" non-kernel endpoint security? Proactive age verification coming to porn sites. How? Canada (also) says "bye bye" to Hikvision. Germany will be banning DeekSeek. The whole EU may follow. Cloudflare throttled in Russia? What must the U.S. do to compete in global exploit acquisition? Show Notes - https://www.grc.com/sn/SN-1033-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: expressvpn.com/securitynow Melissa.com/twit 1password.com/securitynow hoxhunt.com/securitynow canary.tools/twit - use code: TWIT

Another Israeli spyware vendor surfaces. Win11 to delete restore points more quickly. The EU accelerates its plans to abandon Microsoft Azure. The EU sets timelines for Post-Quantum crypto adoption. Russia to create a massive IMEI database. Canada and the UK create the "Common Good Cyber Fund". U.S. states crack down on Bitcoin ATMs amid growing scams. Congressional staffers cannot use WhatsApp on gov devices. LibXML2 and the problems with commercial use of OSS. A(nother) remote code execution vulnerability in WinRAR. Have-I-Been-Pwned gets a cool data visualization site. How is ransomware getting in? Windows to offer "safe" non-kernel endpoint security? Proactive age verification coming to porn sites. How? Canada (also) says "bye bye" to Hikvision. Germany will be banning DeekSeek. The whole EU may follow. Cloudflare throttled in Russia? What must the U.S. do to compete in global exploit acquisition? Show Notes - https://www.grc.com/sn/SN-1033-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: expressvpn.com/securitynow Melissa.com/twit 1password.com/securitynow hoxhunt.com/securitynow canary.tools/twit - use code: TWIT

Another Israeli spyware vendor surfaces. Win11 to delete restore points more quickly. The EU accelerates its plans to abandon Microsoft Azure. The EU sets timelines for Post-Quantum crypto adoption. Russia to create a massive IMEI database. Canada and the UK create the "Common Good Cyber Fund". U.S. states crack down on Bitcoin ATMs amid growing scams. Congressional staffers cannot use WhatsApp on gov devices. LibXML2 and the problems with commercial use of OSS. A(nother) remote code execution vulnerability in WinRAR. Have-I-Been-Pwned gets a cool data visualization site. How is ransomware getting in? Windows to offer "safe" non-kernel endpoint security? Proactive age verification coming to porn sites. How? Canada (also) says "bye bye" to Hikvision. Germany will be banning DeekSeek. The whole EU may follow. Cloudflare throttled in Russia? What must the U.S. do to compete in global exploit acquisition? Show Notes - https://www.grc.com/sn/SN-1033-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: expressvpn.com/securitynow Melissa.com/twit 1password.com/securitynow hoxhunt.com/securitynow canary.tools/twit - use code: TWIT

Another Israeli spyware vendor surfaces. Win11 to delete restore points more quickly. The EU accelerates its plans to abandon Microsoft Azure. The EU sets timelines for Post-Quantum crypto adoption. Russia to create a massive IMEI database. Canada and the UK create the "Common Good Cyber Fund". U.S. states crack down on Bitcoin ATMs amid growing scams. Congressional staffers cannot use WhatsApp on gov devices. LibXML2 and the problems with commercial use of OSS. A(nother) remote code execution vulnerability in WinRAR. Have-I-Been-Pwned gets a cool data visualization site. How is ransomware getting in? Windows to offer "safe" non-kernel endpoint security? Proactive age verification coming to porn sites. How? Canada (also) says "bye bye" to Hikvision. Germany will be banning DeekSeek. The whole EU may follow. Cloudflare throttled in Russia? What must the U.S. do to compete in global exploit acquisition? Show Notes - https://www.grc.com/sn/SN-1033-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to Security Now at https://twit.tv/shows/security-now. You can submit a question to Security Now at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free shows, a members-only Discord, and behind-the-scenes access. Join today: https://twit.tv/clubtwit Sponsors: expressvpn.com/securitynow Melissa.com/twit 1password.com/securitynow hoxhunt.com/securitynow canary.tools/twit - use code: TWIT

Catherine Dupont-Gagnon revient sur la « Mother of all Breaches » qui désigne une gigantesque compilation de fuites anciennes regroupant plus de 16 milliards d'identifiants et mots de passe circulant sur le dark web. Aucune nouvelle attaque n'a eu lieu, mais la facilité d'accès à cette base organisée accroît les risques, surtout pour ceux qui réutilisent leurs vieux mots de passe. Elle recommande de vérifier ses courriels via des sites comme Have I Been Pwned, d'utiliser un gestionnaire de mots de passe, d'activer l'authentification à deux facteurs et de rester vigilant face aux courriels frauduleux.

C'est une annonce qui a fait trembler la planète numérique : 16 milliards d'identifiants associés à des comptes Apple, Google ou Meta auraient été compromis. Un chiffre vertigineux, présenté comme la plus grande fuite de données de l'histoire. Mais derrière l'alerte, les experts appellent au calme. Car il ne s'agirait pas d'une nouvelle brèche, mais plutôt d'une énorme compilation de données déjà piratées… parfois depuis des années.C'est Lawrence Abrams, spécialiste reconnu du site Bleeping Computer, qui lève le voile. Selon lui, ces données proviennent d'infostealers — des logiciels malveillants spécialisés dans le vol d'identifiants. Leur format, structuré en « URL + nom d'utilisateur + mot de passe », trahit leur origine. Ces fichiers circulent librement sur des canaux comme Discord, Telegram ou encore Pastebin, où les cybercriminels se les échangent… gratuitement, souvent pour briller dans la communauté ou appâter de futurs « clients ».Ce recyclage est bien connu dans le milieu : d'autres collections massives comme RockYou2024 ou Collection #1 ont déjà fait parler d'elles, avec des milliards de mots de passe exposés, sans constituer pour autant de nouvelles attaques. Faut-il pour autant baisser la garde ? Non. Mais inutile de paniquer, voici ce que vous pouvez faire dès maintenant :-Scannez votre ordinateur avec un antivirus fiable avant toute action. Si un logiciel espion est actif, il pourrait capturer vos nouveaux mots de passe.-Vérifiez si vos identifiants ont fuité via le site HaveIBeenPwned.com : c'est gratuit, fiable, et vous alerte si votre adresse email figure dans une base compromise.-Enfin, adoptez les bons réflexes : gestionnaire de mots de passe, authentification à deux facteurs via une appli (évitez les SMS), et surveillance régulière de vos comptes sensibles.Avec ces outils, cette « fuite géante » reste un rappel utile — mais elle n'a pas besoin de tourner à la catastrophe personnelle. Hébergé par Acast. Visitez acast.com/privacy pour plus d'informations.

I'm joined by guests Praveen Perera, Future Paul & Ben Carman to go through the list.Bitcoin • Software Releases & Project Updates (00:01:29) Cove Wallet (00:18:14) Harbor.cash (00:35:45) Sparrow Wallet (00:37:05) BDK bdk_chain (00:37:52) Liana (00:38:24) Nunchuk Android (00:39:02) Bull Bitcoin Mobile (00:40:39) Blue Wallet (00:41:00) Bitkey App (00:43:21) FullyNoded (00:44:03) Zaprite (00:45:43) BoltzExchange (00:45:46) Padawan Wallet (00:46:23) Blockstream Green Android (00:46:37) Samourai Dojo (00:46:49) ESP-Miner (00:46:51) NBXplorer (00:47:12) Mempal• Poject Spotlight (00:47:23) DahLIAS (00:48:25) Manna Bitcoin (00:48:34) Darkwire (00:48:44) Parasite Pool (00:48:55) Blockpicker (00:49:10) LOCK Protocol (00:49:17) Sigbash (00:49:38) Arkade OS (00:50:09) Swift Bitcoin (00:50:36) Pythia (00:50:45) Arcana Seed Lodge (00:50:54) BIP47 Message Verifier (00:51:02) Traxe (00:51:08) Censorship Resistant (00:51:21) Bitcoin-4-AllVulnerability Disclosures (00:51:38) Coinbase data breach (00:54:07) Ledger Donjon (00:54:46) CVE-2023-21563 (00:55:59) BitpixiePrivacy & Other Related Bitcoin Projects • Software Releases & Project Updates (00:57:14) SimpleX (00:57:15) NomadNet (00:57:16) Sideband (00:57:17) Mullvad VPN Loader (00:58:17) Signal Desktop (00:58:20) Have I Been Pwned (00:58:22) KYCnot.me• Poject Spotlight (01:00:26) OniuxLightning + L2+ • Project Spotlight (01:00:39) Routstr (01:02:22) Lightning Blinder (01:02:32) Phoenixd MCP Server (01:03:27) Amboss Rails (01:03:48) Sixty Nuts (01:03:54) BTCNutServerBoosts (01:07:13) Shoutout to top boosters AVERAGE_GARY, hgw39, Rod Palmer, Chris, Hech, AVERAGE_GARY, Bob the Cow, Plunger & Homer Hodl.Links & Contacts:Website: https://bitcoin.review/Substack: https://substack.bitcoin.review/Twitter: https://twitter.com/bitcoinreviewhqNVK Twitter: https://twitter.com/nvkTelegram: https://t.me/BitcoinReviewPodEmail: producer@coinkite.comNostr & LN: ⚡nvk@nvk.org (not an email!)Full show notes: https://bitcoin.review/podcast/episode-97

Have I Been Pwned 2.0 is Here; All About all the New Bits; Cloudflare Turnstile Anti-Automation https://www.troyhunt.com/weekly-update-453/See omnystudio.com/listener for privacy information.

In this episode of the Cyber Uncut podcast, David Hollingworth and Daniel Croft have a chat about everything, from the NSW government's new drive to use AI to solve the housing crisis to deepfake takedowns, who may or may not be behind the hacking campaign targeting big-name UK retailers (still!), security issues at the Australian Taxation Office, and the relaunch of HaveIBeenPwned. Hollingworth and Croft start off with positive AI-related news, starting with the Trump administration's decision to enact new laws regarding deepfake and revenge porn, before swivelling to the NSW state government's plan to use AI to help address a housing construction backlog and grow the workforce. Then it's straight into cyber crime, with more twists and turns from the highly disruptive hacking campaign targeting UK retailers. The pair discuss why one chain is leaking money like a sieve as it tries to rebuild, and why another is getting back on its feet. It's a lesson everyone can learn from. Hollingworth and Croft wrap up this section of the podcast with a discussion of the ATO's issues with identity theft following revelations that hackers had compromised some individual accounts and stolen funds. The pair wrap things up with news of one of their favourite research tools – HaveIBeenPwned – launching a V2 of its website, and how useful it is for average consumers and researchers alike. Enjoy the podcast, The Cyber Uncut team

In this episode of the Cyber Uncut podcast, David Hollingworth and Daniel Croft have a chat about everything, from the NSW government's new drive to use AI to solve the housing crisis to deepfake takedowns, who may or may not be behind the hacking campaign targeting big-name UK retailers (still!), security issues at the Australian Taxation Office, and the relaunch of HaveIBeenPwned. Hollingworth and Croft start off with positive AI-related news, starting with the Trump administration's decision to enact new laws regarding deepfake and revenge porn, before swivelling to the NSW state government's plan to use AI to help address a housing construction backlog and grow the workforce. Then it's straight into cyber crime, with more twists and turns from the highly disruptive hacking campaign targeting UK retailers. The pair discuss why one chain is leaking money like a sieve as it tries to rebuild, and why another is getting back on its feet. It's a lesson everyone can learn from. Hollingworth and Croft wrap up this section of the podcast with a discussion of the ATO's issues with identity theft following revelations that hackers had compromised some individual accounts and stolen funds. The pair wrap things up with news of one of their favourite research tools – HaveIBeenPwned – launching a V2 of its website, and how useful it is for average consumers and researchers alike. Enjoy the podcast, The Cyber Uncut team

"Zumindest wird es nicht langweilig", könnte das April-Fazit aus IT-Security-Sicht lauten. Und den beiden "Passwort"-Hosts fällt es erneut leicht, spannende Sicherheitsgeschichten zu erzählen. Unter anderem geht es um eine neue Form der Supply-Chain-Attacke, die KI-Halluzinationen von Softwarebibliotheken ausnutzt. Aber auch eine trickreiche Umgehung der USB-Sperre von Mobilgeräten stellt Co-Host Christopher vor - und Sylvester ärgert sich über unvollständige Sicherheitsflicken beim Security-Appliance-Hersteller Fortinet. Einig sind sich beide allerdings wieder bei ihrem Dauerbrenner: Eine nun beschlossene Änderung in der WebPKI findet beider Beifall. - ChoiceJacking-Vortrag auf der BlackHat: https://i.blackhat.com/Asia-25/Asia-25-Draschbacher-Watch-Your-Phone.pdf - Offener Brief der EFF in der Causa Krebs: https://www.eff.org/press/releases/eff-leads-prominent-security-experts-urging-trump-administration-leave-chris-krebs - ckus (In-)Security Appliance Bingo: cku.gt/appbingo25 - Slopsquatting-Paper „We Have a Package for You“: https://arxiv.org/abs/2406.10279 - OpenCVE-Installationsanleitung: https://docs.opencve.io/deployment/ - Folgt uns im Fediverse: @christopherkunz@chaos.social @syt@social.heise.de Mitglieder unserer Security Community auf heise security PRO hören alle Folgen bereits zwei Tage früher. Mehr Infos: https://pro.heise.de/passwort

It sure seems like hacks and breaches are intensifying. This week, the man behind Have I Been Pwned was phished, if it can happen to him, it can happen to anyone. Be skeptical of any message you're getting that asks you to log in or do anything else that could compromise you. We've got some other tech news to cover, tips to tech better, and picks to get. Enjoy! Watch on YouTube! - Notnerd.com and Notpicks.com INTRO (00:00) Tax Day (04:15) Importance of video at SMMW (09:05) Minecraft Movie (09:50) MAIN TOPIC: You will be pwned (12:25) Have I Been Pwned owner Troy Hunt's mailing list compromised in phishing attack https://haveibeenpwned.com/ DAVE'S PRO-TIP OF THE WEEK:  Learn for FREE at online universities (19:50) JUST THE HEADLINES: (24:54) Blue Origin mission with all-female crew, including Katy Perry, completes space trip Hacked crosswalks in Bay Area play deepfake-style messages from tech billionaires 33-year-old AmigaOS for Commodore computers gets an unexpected update Microsoft warns that anyone who deleted mysterious folder that appeared after latest Windows 11 update must take action to put it back Hugging Face has acquired the open source robot startup Pollen Robotics to help “democratize” robotics Fintech founder charged with fraud after ‘AI' shopping app found to be powered by humans in the Philippines Instagram is working on an iPad app TAKES: ChatGPT was the world's most downloaded app last month (29:15) Microsoft Patch Tuesday, April 2025 Edition (34:40) Temu pulls its U.S. Google Shopping ads (37:05) BONUS ODD TAKE:  368 Chickens game (40:10) PICKS OF THE WEEK: Dave: Shark HV371 Rocket Pro DLX Corded Stick, Removable Hand Vacuum, Advanced Swivel Steering, XL Cup, Crevice Tool, Upholstery Tool & Anti-Allergen Dust Brush, Fuchsia, Capacity (44:25) Nate: Diymore USB C Power Meter Testers,USB C Tester Power Tester Color Screen,Multimeter Tester,Three Screens Switch to Display Current,Voltage,CPU Temperature,Voltage Meter,DC4-30V/0-12A (49:25) RAMAZON PURCHASE - Giveaway! (53:25)

I'm Back Home; Perth Event Next Week; Partner Placement in Have I Been Pwned; The New UX is Looking *Amazing*! Sponsored by Malwarebytes https://www.troyhunt.com/weekly-update-447/See omnystudio.com/listener for privacy information.

Dans son billet, Catherine Dupont-Gagnon revient sur une mésaventure vécue par Troy Hunt, figure reconnue de la cybersécurité et créateur du site Have I Been Pwned. Victime d'hameçonnage alors qu'il était fatigué.

Achtung, die Blutdruckpillen werden ausgepackt! Christopher und Sylvester ärgern sich über laxe Sicherheitspraktiken bei Konzernen und deren undurchsichtige Krisen-PR. Sie freuen sich hingegen über reichlich Hörer-Feedback zu vergangenen Folgen und diskutieren über Neuerungen im Zertifikats-Ökosystem. Und auch eine sehr prominente, aber vorbildlich gemeisterte Phishing-Attacke wird zum Thema - die Hosts erklären, warum sich wirklich niemand schämen sollte, Opfer geworden zu sein. - https://gitlab.torproject.org/legacy/trac/-/wikis/doc/TorPlusVPN - https://github.com/wesaphzt/privatelock - https://eylenburg.github.io/android_comparison.htm - https://samwho.dev/bloom-filters/ - https://github.com/mozilla/clubcard Mitglieder unserer Security Community auf heise security PRO hören alle Folgen bereits zwei Tage früher. Mehr Infos: https://pro.heise.de/passwort

It’s the new Have I Been Pwned brand! Fresh new look, new UI, more features, better stickers, and much more

00:00 - PreShow Banter™ — Not Talking About Anything04:29 - BHIS - Talkin' Bout [infosec] News 2025-03-0305:42 - Story # 1: FBI Warns iPhone, Android Users—We Want ‘Lawful Access' To All Your Encrypted Data24:28 - Story # 2: Disney engineer downloaded ‘helpful' AI tool that ended up completely destroying his life34:28 - Story # 3: Have I Been Pwned adds 284M accounts stolen by infostealer malware43:22 - Story # 4: Dragos's 8th Annual OT Cybersecurity Year in Review Is Now Available45:53 - Story # 5: Trump administration retreats in fight against Russian cyber threats55:19 - Story # 5b: Exclusive: US intel shows Russia and China are attempting to recruit disgruntled federal employees, sources say57:33 - Story # 6: Feds: Army soldier suspected of AT&T heist Googled ‘can hacking be treason,' ‘defecting to Russia'

According to Kroll's cyber risk team, healthcare leads as the most breached industry in 2024 at 23% of all incidents, with medical data valued up to $1,000 on dark markets compared to just $5 for credit card information. Drex provides updates on the Change Healthcare breach one year later, noting that notifications are still ongoing for the incident that affected nearly half of all Americans. The episode concludes with a spotlight on "Have I Been Pwned," a valuable resource for checking if your email has been compromised in data breaches, which now tracks nearly a thousand separate breach incidents.Remember, Stay a Little Paranoid Subscribe: This Week Health Twitter: This Week Health LinkedIn: This Week Health Donate: Alex's Lemonade Stand: Foundation for Childhood Cancer

Thousands of exposed GitHub repositories, now private, can still be accessed through Copilot Cellebrite halts product use in Serbia following Amnesty surveillance report New Ghostwriter campaign targets Ukrainian Government and opposition activists in Belarus  Huge thanks to our sponsor, Conveyor It's 2025. This is your second sign to get a trust center if you don't already have one.  Reduce manual work by 80% when you can share one link to your trust center and let customers download what they need on demand. Trusted by the world's top B2B companies, Conveyor's enterprise-grade trust center is specially designed to handle multiple products, complex orgs, and with AI first so you can even push your customers to self-serve their own AI answers to questionnaires. Learn more at www.conveyor.com.

Welcome to ohmTown. The Non Sequitur News Show is held live via Twitch and Youtube every day. We, Mayor Watt and the AI that runs ohmTown, cover a selection of aggregated news articles and discuss them briefly with a perspective merging Science, Technology, and Society. You can visit https://www.youtube.com/ohmtown for the complete history since 2022.Articles Discussed during Non Sequitur News (s4e56) on 2/25/2025:Have I Been Pwned?https://www.ohmtown.com/groups/technologytoday/f/d/have-i-been-pwned-adds-284m-accounts-stolen-by-infostealer-malware/A 2000 Year Old Roman Swordhttps://www.ohmtown.com/groups/mobble/f/d/metal-detectorists-stumble-upon-a-rare-2000-year-old-roman-sword-in-poland/Boogey Beeshttps://www.ohmtown.com/groups/nonsequiturnews/f/d/for-bees-the-right-dance-moves-are-key-to-food-gathering-success/DNA of American Treeshttps://www.ohmtown.com/forums/d/scientists-decode-the-dna-of-one-of-americas-most-iconic-trees/Wooly Devil from a National Parkhttps://www.ohmtown.com/groups/mobble/f/d/meet-the-wooly-devil-the-first-new-plant-genus-discovered-in-a-national-park-since-1976/The Future of the Internethttps://www.ohmtown.com/groups/nonsequiturnews/f/d/the-future-of-the-internet-is-likely-smaller-communities-with-a-focus-on-curated-experiences/A Luxury Strawberry for $19https://www.ohmtown.com/groups/mobble/f/d/this-luxury-grocery-store-is-selling-single-strawberries-for-19/AI Replaces 4000 Roles at Bankhttps://www.ohmtown.com/groups/technologytoday/f/d/major-asia-bank-to-cut-4000-roles-as-ai-replaces-humans-2/Dressing for the Oscarshttps://www.ohmtown.com/groups/nonsequiturnews/f/d/it-costs-10-million-to-dress-an-a-list-actress-at-the-oscars-these-10-jaw-dropping-figures-reveal-the-price-tag-of-hollywoods-biggest-night/Felon in Love during Crime Spree

Nakasone addresses AI at the Munich Cyber Security Conference. Court documents reveal the degree to which DOGE actually has access. Dutch police dismantle a bulletproof hosting operation. German officials investigate Apple's App Tracking. Hackers exploited security flaws in BeyondTrust. CISA issues 20 new ICS advisories. The new Astoroth phishing kit bypasses 2FA. Hackers waste no time exploiting a SonicWall proof-of-concept vulnerability. Our guest today is Lawrence Pingree, VP of Technical Marketing at Dispersive, joining us to discuss why preemptive defense is essential in the AI arms race. Have I Been Pwned ponders whether resellers are worth the trouble.  Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Our guest today is Lawrence Pingree, VP of Technical Marketing at Dispersive, joining us to discuss why preemptive defense is essential in the AI arms race. You can read more in "How Cybercriminals Are Using AI: Exploring the New Threat Landscape." Selected Reading Putting the human back into AI is key, former NSA Director Nakasone says (The Record) Court Documents Shed New Light on DOGE Access and Activity at Treasury Department (Zero Day) Musk's DOGE team: Judges to consider barring it from US government systems (Reuters) Anyone Can Push Updates to the DOGE.gov Website (404 Media) Dutch Police seizes 127 XHost servers, dismantles bulletproof hoster (Bleeping Computer) Apple app tracking rules more strict for others – watchdog (The Register) PostgreSQL flaw exploited as zero-day in BeyondTrust breach (Bleeping Computer) CISA Releases 20 ICS Advisories Detailing Vulnerabilities & Exploits (Cyber Security News)  Astaroth 2FA Phishing Kit Targets Gmail, Yahoo, Office 365, and Third-Party Logins (GB Hackers)  SonicWall Firewall Vulnerability Exploited After PoC Publication (SecurityWeek) Have I Been Pwned likely to ban resellers (The Register) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Geeking out on Home Theatres; Should We Ban Resellers from Have I Been Pwned; A Week of new Breaches; Sponsored by Report URI https://www.troyhunt.com/weekly-update-438/See omnystudio.com/listener for privacy information.

January News You Can Use Data Breach Diaries: Who Pwned Me Now? Change Data Breach impacting nearly 200 million people Get yourselves credit monitoring and securing personal information through tools like "Have I Been Pwned." Meanwhile get you credit locked with major agencies to prevent fraud and minimize exposure to breaches Stargate AI Computing Partnership - OpenAI's collaboration with Oracle aims to address growing computing demands Where will all these new data centers go in a competitive AI "arms race." RSV Vaccination for Pregnant Women shows effectiveness in providing significant immunity to newborns by transferring antibodies across the placenta We talk WHO and NIH Challenges and the decision to reduce involvement with the WHO We are concerned about losing vital global health collaboration and research dissemination To stream our Station live 24/7 visit www.HealthcareNOWRadio.com or ask your Smart Device to “….Play Healthcare NOW Radio”. Find all of our network podcasts on your favorite podcast platforms and be sure to subscribe and like us. Learn more at www.healthcarenowradio.com/listen

Anyone Got a Security Contact? Processing Info Stealer Logs in Have I Been Pwned; Synology DiskStation Success; Sponsored by Report URI https://www.troyhunt.com/weekly-update-434/See omnystudio.com/listener for privacy information.

Home Sweet 127.0.0.1; Rebuilding the Front End of Have I Been Pwned; Bluesky Users Cranky About X Links ; Sponsored by 1Password https://www.troyhunt.com/weekly-update-432/See omnystudio.com/listener for privacy information.

I'm in Dubai; Welcoming the Armenian Government to Have I Been Pwned; Giving the “Pwned” Book Away for Free; Sponsored by Rubrik https://www.troyhunt.com/weekly-update-429/See omnystudio.com/listener for privacy information.

Hackers have been releasing password leaks for years. But what exactly is a password leak, and should you be concerned? In this episode of How Hacks Happen, we look at how password security has changed over the years, and how you can keep yourself safe in the ever-changing world of online security.ResourcesRockyou2024 analysis: Mega password list or just noise?Have I Been Pwned? Check your passwordNIST Special Publication: Digital Identity GuidelinesSend us a textEveryday AI: Your daily guide to grown with Generative AICan't keep up with AI? We've got you. Everyday AI helps you keep up and get ahead.Listen on: Apple Podcasts SpotifySupport the showJoin our Patreon to listen ad-free!

Over the last week, Bitcoin and many other cryptocurrencies have gone up significantly. Please don't take our investment advice, but we will examine the increase and how the election impacted it. It was a pretty slim week in tech news, but we found some interesting stories to cover and a rousing round of Just the Headlines. Also, we have some great tips and picks to help you tech better! Watch on YouTube! INTRO (00:00) MAIN TOPIC: CryptoWatch (02:45) Bitcoin touches record-high $85K, adds almost $20K in a week DAVE'S PRO-TIP OF THE WEEK: Navigating Google Workspace on the Web (10:35) JUST THE HEADLINES: (19:55) FDA forces Costco to recall 80,000 pounds of butter because packaging did not say it ‘contains milk' NASA investigates laser-beam welding in a vacuum for in-space manufacturing LG's new stretchable display can grow by 50%, bendy panels can be deformed into new form factors Apple Music is publishing a $450 hardcover book celebrating its 100 Best Albums Intel brings back workers' free coffee, seeking to stem morale decline Boeing reportedly considers selling off its space business TAKES iOS 18.1 added a new ‘Inactivity Reboot' security feature for iPhone (24:05) iOS 18.2 fixes one of the most annoying aspects of the new Photos app (28:05) Microsoft wants $30 to let you keep using Windows 10 securely for another year (31:00) Databreach.com emerges as an alternative to HaveIBeenPwned (36:50) BONUS ODD TAKE: The Quilt Index (40:10) PICKS OF THE WEEK: Dave: Stouchi 4 Packs Airtag Holder Key Ring with Soft TPU Case, Stainless Steel Invisible Slim Keychain Compatible with Airtag 2021 Finder Items, Dog, Key, Backpacks Air Tag Accessories (42:40) Nate: ESR for iPad Air 11 Inch Case M2, iPad Air 6th/5th/4th Gen , Powerful Magnetic Attachment, Slim Trifold Stand Case, Supports Pencil Pro&Pencil USB-C, Durable Protection, Grey (47:40) RAMAZON PURCHASE - Giveaway! (51:55)

Let's go through everything that's currently sitting on the Have I Been Pwned backlog; what else can we add? Sponsored by 1Password https://www.troyhunt.com/weekly-update-424/See omnystudio.com/listener for privacy information.

Are the frequent stories about data breaches in the news making us desensitized?

Rich offers his hands on impressions of the new Apple products: iPhone 16 models, Apple Watches and AirPods. Bill in Los Angeles wonders if those websites offering a free iPhone 15 are legit.

This week on Dark Rhiino Security's Security Confidential podcast, Host Manoj Tandon talks to Troy Hunt. Troy is an Australian Microsoft Regional Director and MVP for Developer Security. He's known for his expertise in web security, as well as his creation of 'Have I Been Pwned?' He's a prolific author for Pluralsight, a sought-after speaker at global conferences, and has been featured in a number of articles with publications including Forbes, TIME magazine, Mashable, PCWorld, ZDNet and Yahoo! Tech. Aside from technology and security, Troy is an avid snowboarder, windsurfer and tennis player 00:00 Introduction 01:17 We're going to outsource you 05:20 Have I Been Pwned? 10:10 Does the value length matter? 15:13 Convenience vs Security 20:20 Recovering an account 34:08 What is the effectivity of 2FA? 37:45 Artificial Intelligence and NLP 443:27 If you're going to do nothing, at least do this 52:25 More about Troy -------------------------------------------- To learn more about Troy visit https://www.troyhunt.com/ https://haveibeenpwned.com/ https://ndcoslo.com/ To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurity.com ---------------------------------------------------------------------- SOCIAL MEDIA: Stay connected with us on our social media pages where we'll give you snippets, alerts for new podcasts, and even behind the scenes of our studio! Instagram: @securityconfidential and @Darkrhiinosecurity Facebook: @Dark-Rhiino-Security-Inc Twitter: @darkrhiinosec LinkedIn: @dark-rhiino-security Youtube: @DarkRhiinoSecurity ​

Rich talked about the AT&T outage and the healthcare hack this week, and how it got him to thinking about having a backup plan.International authorities busted a major ransomware hacking group called LockBit and released free software to help victims unlock their files.Thurman in Massachusetts wants an alternative to the Thunderbird email app. Rich recommends checking out a website called AlternativeTo.net.Bill in San Diego wants to retrieve text messages from his deceased sister's phone. He has the passcode. Rich recommends the iMazing App.Rose in Los Angeles looking for more information about Google's Results About You feature. Rich mentioned DIY opt-out guides at DeleteMe and HaveIBeenPwned.comVivian in Menifee says she is locked out of her iPhone because she forgot her passcode.Ring stops selling its Car Cam.Google is pausing its Gemini AI image generator until it can get things right.ZJ in Anaheim wants to obscure his home on Google Maps. Rich says to follow the directions here. Find your home on Street View and tap Report a Problem in the lower right-hand corner. Here, you can request to blur out your home. Google says they will “review your report as fast as we can.”Chris in Long Beach wants to know if auto-generated passwords are a good thing. Rich recommends using a password manager and also setting it as the Autofill on your iPhone or Android.Arthur Edelstein of PrivacyTests.org, open-source tests of web browser privacyPam in Ventura is worried about her credit card being hacked. Rich mentioned some ways to protect your card number including using Tap to Pay and the chip when possible. And when shopping online protect your number with a one-time use number from a service like Privacy.com.Samsung released a major software update for the S24 series that improves the display and camera.Samsung will bring its new AI features to older flagship phones including the S23 series in March.Elsa in Playa Del Rey, CA says be careful with fraud alerts. Most of the time banks won't call, so if you get a call be aware it could be a scam.Alan in West LA wants to know how to get a streaming service for his parents in a simple way. Rich recommends Fire TV stick.Apple Sports is a free new app that lets you choose your favorite sports teams and see when they're playing, scores, betting odds and more.Apple is making iMessage encryption even stronger to combat quantum computers cracking the code.Neal O'Farrell, founder of the Center for AI Crime will share 20 ways AI is accelerating all kinds of scams and frauds.Beware of Facebook funeral scams.Turns out, rice isn't the best way to dry out a wet smartphone.60 - February 24, 2024Rich DeMuro talks tech news, tips, gadget reviews and conducts interviews in this weekly show.Airs 11 AM - 2 PM PT on KFI AM 640 and syndicated on stations nationwide through Premiere Networks.Stream live on the iHeartRadio App or subscribe to the podcast.Follow Rich on X, Instagram and Facebook.Call 1-888-RICH-101 (1-888-742-4101) to join in!Links may be affiliate.RichOnTech.tvRichOnTech.tv/wikiSee Privacy Policy at https://art19.com/privacy and California Privacy Notice at https://art19.com/privacy#do-not-sell-my-info.