POPULARITY
Picture of the Week. Cryptomining Rude Surprise Billing. Musk's Twitter is refusing to pay for Cloud Services. IoT DDoS rapidly rising. H1CA found executing code on client machines. Apple's WWDC Redux. France takes a different approach... Russia: Scanners stay out! Miscellany. Closing the Loop. SpinRite. Scanning the Internet. Show Notes: https://www.grc.com/sn/SN-927-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: GO.ACILEARNING.COM/TWIT bitwarden.com/twit athleticgreens.com/securitynow
Picture of the Week. Cryptomining Rude Surprise Billing. Musk's Twitter is refusing to pay for Cloud Services. IoT DDoS rapidly rising. H1CA found executing code on client machines. Apple's WWDC Redux. France takes a different approach... Russia: Scanners stay out! Miscellany. Closing the Loop. SpinRite. Scanning the Internet. Show Notes: https://www.grc.com/sn/SN-927-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: GO.ACILEARNING.COM/TWIT bitwarden.com/twit athleticgreens.com/securitynow
Picture of the Week. Cryptomining Rude Surprise Billing. Musk's Twitter is refusing to pay for Cloud Services. IoT DDoS rapidly rising. H1CA found executing code on client machines. Apple's WWDC Redux. France takes a different approach... Russia: Scanners stay out! Miscellany. Closing the Loop. SpinRite. Scanning the Internet. Show Notes: https://www.grc.com/sn/SN-927-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: GO.ACILEARNING.COM/TWIT bitwarden.com/twit athleticgreens.com/securitynow
Picture of the Week. Cryptomining Rude Surprise Billing. Musk's Twitter is refusing to pay for Cloud Services. IoT DDoS rapidly rising. H1CA found executing code on client machines. Apple's WWDC Redux. France takes a different approach... Russia: Scanners stay out! Miscellany. Closing the Loop. SpinRite. Scanning the Internet. Show Notes: https://www.grc.com/sn/SN-927-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: GO.ACILEARNING.COM/TWIT bitwarden.com/twit athleticgreens.com/securitynow
Picture of the Week. Cryptomining Rude Surprise Billing. Musk's Twitter is refusing to pay for Cloud Services. IoT DDoS rapidly rising. H1CA found executing code on client machines. Apple's WWDC Redux. France takes a different approach... Russia: Scanners stay out! Miscellany. Closing the Loop. SpinRite. Scanning the Internet. Show Notes: https://www.grc.com/sn/SN-927-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: GO.ACILEARNING.COM/TWIT bitwarden.com/twit athleticgreens.com/securitynow
Picture of the Week. Cryptomining Rude Surprise Billing. Musk's Twitter is refusing to pay for Cloud Services. IoT DDoS rapidly rising. H1CA found executing code on client machines. Apple's WWDC Redux. France takes a different approach... Russia: Scanners stay out! Miscellany. Closing the Loop. SpinRite. Scanning the Internet. Show Notes: https://www.grc.com/sn/SN-927-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: GO.ACILEARNING.COM/TWIT bitwarden.com/twit athleticgreens.com/securitynow
Picture of the Week. Cryptomining Rude Surprise Billing. Musk's Twitter is refusing to pay for Cloud Services. IoT DDoS rapidly rising. H1CA found executing code on client machines. Apple's WWDC Redux. France takes a different approach... Russia: Scanners stay out! Miscellany. Closing the Loop. SpinRite. Scanning the Internet. Show Notes: https://www.grc.com/sn/SN-927-Notes.pdf Hosts: Steve Gibson and Leo Laporte Download or subscribe to this show at https://twit.tv/shows/security-now. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit You can submit a question to Security Now! at the GRC Feedback Page. For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6. Sponsors: GO.ACILEARNING.COM/TWIT bitwarden.com/twit athleticgreens.com/securitynow
On this week's episode, we revisit RailsConf 2019 for another live recording, this time with Eileen M. Uchitelle, GitHubber and rails core team member. Eileen joins Chris to discuss her RailsConf talk on how GitHub maintained a custom fork of Rails for years, how they finally moved off it, and what lessons we can take away from their experience. They also discussed Eileen's recent work on automatic database switching coming in Rails 6, microservices and monoliths, and getting into working on Rails. This episode of The Bike Shed is sponsored by Indeed Prime Eileen M. Uchitelle - eileencodes Eileen's talk - The Past, Present, and Future of Rails at GitHub Rails 6 connection switching for databases Circuit break pattern ActiveJob Resque The Success of Open Source ActiveRecord Enums ActionCable S3 Service Disruption Indident IOT DDOS on DNS Aaron Patterson
In today's podcast we hear that an IoT botnet hurricane may be forming among IP cameras. (IP cameras are to DDoS what the West African coast is to Atlantic tropical depressions.) Sofacy rushes to exploit a patched Flash bug in a use-it-or-lose-it espionage race. Want to spy on someone? Go buy an ad. Cisco patches the wi-fi KRACK. NotPetya's still costing manufacturers and their insurers a lot of money. MalwareTech, a.k.a. Emily Wilson from Terbium Labs responding to post-Equifax breach credit agency claims that they can scan the Dark Web. Michael Sutton, CISO at Zscaler on zero-day hoarding. Marcus Hutchins, gets to take off that GPS and stay out late, since the judge decided his pre-trial behavior has been pretty good.
Podcast Notes As mentioned in last weeks episode, MacroFab is moving to a new location currently. See Figure 1. Parker is going to hack his Jeep's radio this weekend with a Bluetooth Audio board. Parker is using this board found on Amazon. See Figure 2. Parker goofed on making the podcast notes and had that NXP was buying out Qualcomm. It is actually the other way around. Set for a $39 billion buy out. Botnet Recall of Things. This is a continuation of the IoT DDOS attacks that have been happening this past couple weeks. Commentator "anszom" in the Hack A Day comment thread had a really good idea. 1. Write a bot attacking the vulnerable devices. It doesn’t seem very difficult 2. Our new bot either simply bricks the device or changes the default password to a random one 3. Problem “solved’ :) Stephen and Parker think they need to make designers and programmers of IoT devices accountable for security. Maybe implement a CE/FCC emissions and ESD testing for hardware. Can a security test be standardized across multiple platforms? Special thanks to whixr over at Tymkrs for the intro and outro!
Kurt and Josh discuss Dirty COW, the big IoT DDoS, and Josh can't pronounce Mirai or Dyn.
Opening with news of the IoT DDOS attack, they discuss the need for security in IoT, and why designers should pay attention to how devices are set up. They discuss the new Kodak phone (nee camera) engaging in a short discussion that the entire premise appears backward facing.Note: We recommend watching the Nintendo Switch video: First Look at Nintendo Switch - https://www.youtube.com/watch?v=f5uik5fgIaIIn the main topic, Joe and Guus use the Nintendo switch to talk about a number of design trend topics. Starting with responsive hardware design, they look at modularisation of both HW and SW and how products should transform to fit different scenarios and contexts. Using the smart home as a proxy, they look at the idea that home spaces in the future should adapt and conform to users activities. Flipping to the opposite, designers should think about how the home, or the concept of home, travels with people and outside spaces to create a personal sense of home. People are beginning to make public spaces personal - think of someone sitting at a café, with their computer, books, and phone all on the table. In this trend, devices that travel with us should be able to turn public spaces into personal spaces. How do public spaces enable that type of transformation - areas like libraries, planes, trains, cafes, or parks… and much newer, self driving cars that provide a service.The pair close with exciting ideas around the important of responsive products and how spaces can better enable personalisation.Kodak phone - http://www.theverge.com/2016/10/20/13333632/kodak-phone-ektra-bullitt --- Send in a voice message: https://anchor.fm/letsfixthings/message
Opening with news of the IoT DDOS attack, they discuss the need for security in IoT, and why designers should pay attention to how devices are set up. They discuss the new Kodak phone (nee camera) engaging in a short discussion that the entire premise appears backward facing.Note: We recommend watching the Nintendo Switch video: First Look at Nintendo Switch - https://www.youtube.com/watch?v=f5uik5fgIaIIn the main topic, Joe and Guus use the Nintendo switch to talk about a number of design trend topics. Starting with responsive hardware design, they look at modularisation of both HW and SW and how products should transform to fit different scenarios and contexts. Using the smart home as a proxy, they look at the idea that home spaces in the future should adapt and conform to users activities. Flipping to the opposite, designers should think about how the home, or the concept of home, travels with people and outside spaces to create a personal sense of home. People are beginning to make public spaces personal - think of someone sitting at a café, with their computer, books, and phone all on the table. In this trend, devices that travel with us should be able to turn public spaces into personal spaces. How do public spaces enable that type of transformation - areas like libraries, planes, trains, cafes, or parks… and much newer, self driving cars that provide a service.The pair close with exciting ideas around the important of responsive products and how spaces can better enable personalisation.Kodak phone - http://www.theverge.com/2016/10/20/13333632/kodak-phone-ektra-bullitt --- Send in a voice message: https://anchor.fm/letsfixthings/message
This is the 57th episode of the Shared Security Podcast sponsored by Security Perspectives – Your Source for Tailored Security Awareness Training and Assessment Solutions. This episode was hosted by Tom Eston and Scott Wright recorded October 5, 2016. Below are the show notes, commentary, links to articles and news mentioned in the podcast: Hackers Stole Account Details […] The post The Shared Security Podcast Episode 57 – Dropbox and Yahoo Breach, IoT DDoS, LinkedIn Endorsements appeared first on The Shared Security Show.
I dagens ostrukturerade avsnitt ger vi en uppdatering om Shadowbrokers, spekulerar om turerna kring Yahoo, pratar IOT-DDoS, hur man bygger ett APT, och mycket mer.
Cell phone boosters (weBoost EQO recommended), digital HDTV antennas (TERK Amplified Antenna recommended), tracking devices on the Internet (using ShodanHQ database), teaching white hacking to kids (r00tz Asylum), streaming Netflix in India (ExpressVPN recommended), Profiles in IT (Roy L. Clay Sr, Godfather of Black Silicon Valley), Dumb Idea of the Week (drilling earphone jack into iPhone7), massive IoT DDOS attack (brought down Krebs security website), Internet DNS control transferred to ICANN (US government out), and igNobel Prizes announced (studies that make you laugh and then think). This show originally aired on Saturday, October 1, 2016, at 9:00 AM EST on WFED (1500 AM).
Cell phone boosters (weBoost EQO recommended), digital HDTV antennas (TERK Amplified Antenna recommended), tracking devices on the Internet (using ShodanHQ database), teaching white hacking to kids (r00tz Asylum), streaming Netflix in India (ExpressVPN recommended), Profiles in IT (Roy L. Clay Sr, Godfather of Black Silicon Valley), Dumb Idea of the Week (drilling earphone jack into iPhone7), massive IoT DDOS attack (brought down Krebs security website), Internet DNS control transferred to ICANN (US government out), and igNobel Prizes announced (studies that make you laugh and then think). This show originally aired on Saturday, October 1, 2016, at 9:00 AM EST on WFED (1500 AM).