POPULARITY
Google is cracking down on slipshod Certificate Authorities, a fake strongman duo from Reddit, fish rain in Honduras, SpaceX scraps Mars shot for now, and we discuss the flatness of the universe. Links from this episode: - Google drops the boom on WoSign, StartCom certs for good - Firefox ready to block certificate authority that threatened Web security - Wikipedia: Idiot light - SHA-1 Broken - Fake strongman duo, Chop & Steele, that pranked a news station, started a GoFundMe to pay for legal fees after the news station sued them. - Every Year, the Sky ‘Rains Fish.’ Explanations Vary. - Aerial stocking of fish in the Uintas (Utah) - SpaceX drops plans for powered Dragon landings - Everything About Mars Is The Worst - Was the Space Shuttle a Mistake? - How Long Does it Take to get to the Asteroid Belt? - Our flat universe - How many particles in the Universe? - Numberphile
In our 175th episode of the Steptoe Cyberlaw Podcast, Stewart Baker, Michael Mutek, Alan Cohn, Quentin Johnson, and Gus Hurwitz discuss: longtime USG suspicions of Kaspersky boil over into action; Knight First Amendment Institute brings first amendment claim against Trump for using Twitter's block function; Booz Allen has a plausible explanation for the weirdness of NotPetya’s otherwise self-defeating ransomware pose; impenetrable cybersecurity unit downgraded to dialogue; also, Administration is downsizing international cyber norming to a coalition of the willing; Senator Klobuchar should claim credit' Jeanette Manfra named a/s for cybersecurity; China news: Xi’s crackdown continues as China moves to ban VPN usage; Woe is WoSign, also StartCom, as Google drops them from certificate authority lists; what does that say about the relative Chinese ties of Google, Mozilla, Apple and Microsoft?; speaking of which, Apple caves again. Our guest interview is with Eric Hysen, former Executive Director of the Department of Homeland Security’s Digital Service. The views expressed in this podcast are those of the speakers and do not reflect the opinions of the firm.
Intro/Outro: Halvdan Sivertsen - Twisted little star (Bertine Zetlitz cover) https://www.youtube.com/watch?v=BCpsLnZufFk GDPR will create 75,000 new Data Protection Officers jobs. https://inform.tmforum.org/cybersecurity-privacy/2016/11/gdpr-will-create-roles-75000-data-protection-officers-worldwide/ 'Extreme surveillance' becomes UK law with barely a whimper. https://www.theguardian.com/world/2016/nov/19/extreme-surveillance-becomes-uk-law-with-barely-a-whimper Nemucod downloader spreading via Facebook. https://bartblaze.blogspot.com/2016/11/nemucod-downloader-spreading-via.html Oracle announced that it has signed an agreement to acquire Dyn. https://www.oracle.com/corporate/acquisitions/dyn/index.html poisontap - Exploits locked/password protected computers over USB, drops persistent WebSocket-based backdoor, exposes internal router, and siphons cookies using Raspberry Pi Zero & Node.js. https://github.com/samyk/poisontap Demo: https://www.youtube.com/watch?v=Aatp5gCskvk Watch out, Locky ransomware spread via SVG images on Facebook Messenger. http://securityaffairs.co/wordpress/53650/malware/svg-images-locky.htmlВ Крыму разрабатывают «отечественную» замену импортной Windows. http://ain.ua/v-krymu-razrabatyvayut-otechestvennuyu-zamenu-importnoj-windows Computer scientists urge Clinton campaign to challenge election results. http://edition.cnn.com/2016/11/22/politics/hillary-clinton-challenge-results/index.html Moscow, Beijing targeting Canada’s secret info and technology, spy agency warns. http://ia.thecanadianpress.com/2016/11/21/moscow-beijing-targeting-canadas-secret-info-and-technology-spy-agency-warns/ U.S., Russia request Czechs extradite arrested Russian hacker http://www.reuters.com/article/us-czech-usa-russia-cybercrime-idUSKBN13I0TV Новини Дніпра: Інтернет-кавалер "розкрутив" довірливих українок на сотні тисяч гривень. http://tsn.ua/ukrayina/internet-kavaler-rozkrutiv-dovirlivih-ukrayinok-na-sotni-tisyach-griven-709465.html Аваков: кіберполіція відстежує IP-адреси всіх, хто критикує владу. http://maidan-ua.livejournal.com/62816.htmlРоссийские вооруженные киберсилы: Как государство создает военные отряды хакеров. Репортаж Даниила Туровского — Meduza https://meduza.io/feature/2016/11/07/rossiyskie-vooruzhennye-kibersily 575 - Avast: stack buffer overflow, strncpy length discarded - project-zero - Monorail. https://bugs.chromium.org/p/project-zero/issues/detail?id=575&redir=1 InfoSec Handlers Diary Blog - Port 7547 SOAP Remote Code Execution Attack Against DSL Modems. https://isc.sans.edu/diary/Port+7547+SOAP+Remote+Code+Execution+Attack+Against+DSL+Modems/21759 Хактивисты украинского киберальянса провели успешную операцию "Комендант" https://informnapalm.org/27344-haktivisty-ukrainskogo-kiberalyansa-proveli-uspeshnuyu-operatsiyu-komendant/ Firefox/TorBrowser 0-day https://lists.torproject.org/pipermail/tor-talk/2016-November/042639.html Fatal flaws in ten pacemakers make for Denial of Life attacks http://www.theregister.co.uk/2016/12/01/denial_of_life_attacks_on_pacemakers/ Apple's Further Steps for WoSign https://groups.google.com/forum/m/#!topic/mozilla.dev.security.policy/EqkAdP4nQ_s ПРАВООХОРОНЦІ ЛІКВІДУВАЛИ КІБЕРМЕРЕЖУ "AVALANCHE", ЯКА ЩОДНЯ ІНФІКУВАЛА ПО ПІВМІЛЬЙОНА КОМП'ЮТЕРІВ https://www.npu.gov.ua/uk/publish/article/2065858 Hackers steal more than $31m from Russia's central bank http://www.ibtimes.co.uk/hackers-steal-more-31m-russias-central-bank-1594665 Amazon AWS re:Invent https://reinvent.awsevents.com
A popular cloud based website hosting company could become the next myspace, more powerful IoT botnet, browser vendors lack trust in 2CAs, and some, including myself about an election day hack. All that and more, so stay tuned! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Hack_Naked_News_99_November_2016 Take the Security Weekly Survey: www.securityweekly.com/survey Visit http://hacknaked.tv to get all the latest episodes!
A popular cloud based website hosting company could become the next myspace, more powerful IoT botnet, browser vendors lack trust in 2CAs, and some, including myself about an election day hack. All that and more, so stay tuned! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Hack_Naked_News_99_November_2016 Take the Security Weekly Survey: www.securityweekly.com/survey Visit http://hacknaked.tv to get all the latest episodes!
A popular cloud based website hosting company could become the next myspace, more powerful IoT botnet, browser vendors lack trust in 2CAs, and some, including myself about an election day hack. All that and more, so stay tuned! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Hack_Naked_News_99_November_2016 Take the Security Weekly Survey: www.securityweekly.com/survey Visit http://hacknaked.tv to get all the latest episodes!
A popular cloud based website hosting company could become the next myspace, more powerful IoT botnet, browser vendors lack trust in 2CAs, and some, including myself about an election day hack. All that and more, so stay tuned! Full Show Notes: http://wiki.securityweekly.com/wiki/index.php/Hack_Naked_News_99_November_2016 Take the Security Weekly Survey: www.securityweekly.com/survey Visit http://hacknaked.tv to get all the latest episodes!
WoSign, Cisco, Ransomware, and Linux crash! All that and more, so stay tuned! Visit http://hacknaked.tv to get all the latest episodes!
WoSign, Cisco, Ransomware, and Linux crash! All that and more, so stay tuned! Visit http://hacknaked.tv to get all the latest episodes!
WoSign, Cisco, Ransomware, and Linux crash! All that and more, so stay tuned! Visit http://hacknaked.tv to get all the latest episodes!
WoSign, Cisco, Ransomware, and Linux crash! All that and more, so stay tuned! Visit http://hacknaked.tv to get all the latest episodes!
Ios Zero Days, Russian Hacker convicted in the US, and a certificate authority makes a blunder. Here on Hack Naked TV! Visit http://hacknaked.tv to get all the latest episodes!
Ios Zero Days, Russian Hacker convicted in the US, and a certificate authority makes a blunder. Here on Hack Naked TV! Visit http://hacknaked.tv to get all the latest episodes!
Ios Zero Days, Russian Hacker convicted in the US, and a certificate authority makes a blunder. Here on Hack Naked TV! Visit http://hacknaked.tv to get all the latest episodes!
Ios Zero Days, Russian Hacker convicted in the US, and a certificate authority makes a blunder. Here on Hack Naked TV! Visit http://hacknaked.tv to get all the latest episodes!