Sign up to save your podcasts
Or
Share DtSR Episode 187 - NewsCast for March 29th, 2016
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
DtSR Episode 187 - NewsCast for March 29th, 2016
In this episode...
- BadLock bug (which now has a website, a graphic, and more hype than Bieber) is out there
- Is the bug really worth all this hype?
- Is this anything more than a PR stunt, and a big marketing opportunity?
- Everyone has an opinion, but one thing is for certain, this bug is making big waves
- http://www.wired.com/2016/03/hype-around-mysterious-badlock-bug-raises-criticism/
- Your wireless mouse is probably a security risk... seriously.
- RF-based mice typically don't use encryption or mutual authentication
- Some do (all of my Microsoft & Logitech mice tell me they mutually authenticate & encrypt... I think)
- How far up, or down, your risk register is this one; and how much should it matter to enterprise?
- http://www.thefiscaltimes.com/2016/03/23/Your-Wireless-Mouse-May-Be-Exposing-You-Cyber-Hackers
- Your Node.js package manager could be an entry point for worms?
- Now that everything has functionality over our endpoints...
- Dependencies seem to be (at least partially) to blame here (who's surprised?)
- http://news.softpedia.com/news/node-js-package-manager-vulnerable-to-malicious-worm-packages-502216.shtml
- Ransomware is getting nastier (and more effective)
- Remember it's just a business model, so they actually are pretty good at unlocking, support, etc once you pay up
- What happens when a hospital system gets locked/encrypted -- real lives are at stake here!
- Enterprise advice? Backup, test, and take it all offline regularly so you can recover
- This is only going to get worse. Much, much worse.
- http://www.itsecurityplanet.com/experts-corner/hospital-hit-with-ransomware-contagion-declares-internal-emergency
- http://www.healthitoutcomes.com/doc/backup-recovery-system-control-ransomware-attack-0001
- http://www.healthcareitnews.com/news/ransomware-wreak-havoc-2016-icit-study-says
Have something to say? Let's hear it.
Support the show
>>> Please consider clicking the link above to support the show!
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
YouTube home: https://youtube.com/playlist?list=PLyo0dkKRvfVtWXjRxNISrhme1MgBj3C2U&si=scHDiTuLXSEQ9qHq
LinkedIn Page: https://www.linkedin.com/company/down-the-security-rabbithole-podcast/
X/Twitter: https://twitter.com/dtsr_podcast
View all episodes
By Rafal (Wh1t3Rabbit) Los
4.3
9696 ratings
In this episode...
- BadLock bug (which now has a website, a graphic, and more hype than Bieber) is out there
- Is the bug really worth all this hype?
- Is this anything more than a PR stunt, and a big marketing opportunity?
- Everyone has an opinion, but one thing is for certain, this bug is making big waves
- http://www.wired.com/2016/03/hype-around-mysterious-badlock-bug-raises-criticism/
- Your wireless mouse is probably a security risk... seriously.
- RF-based mice typically don't use encryption or mutual authentication
- Some do (all of my Microsoft & Logitech mice tell me they mutually authenticate & encrypt... I think)
- How far up, or down, your risk register is this one; and how much should it matter to enterprise?
- http://www.thefiscaltimes.com/2016/03/23/Your-Wireless-Mouse-May-Be-Exposing-You-Cyber-Hackers
- Your Node.js package manager could be an entry point for worms?
- Now that everything has functionality over our endpoints...
- Dependencies seem to be (at least partially) to blame here (who's surprised?)
- http://news.softpedia.com/news/node-js-package-manager-vulnerable-to-malicious-worm-packages-502216.shtml
- Ransomware is getting nastier (and more effective)
- Remember it's just a business model, so they actually are pretty good at unlocking, support, etc once you pay up
- What happens when a hospital system gets locked/encrypted -- real lives are at stake here!
- Enterprise advice? Backup, test, and take it all offline regularly so you can recover
- This is only going to get worse. Much, much worse.
- http://www.itsecurityplanet.com/experts-corner/hospital-hit-with-ransomware-contagion-declares-internal-emergency
- http://www.healthitoutcomes.com/doc/backup-recovery-system-control-ransomware-attack-0001
- http://www.healthcareitnews.com/news/ransomware-wreak-havoc-2016-icit-study-says
Have something to say? Let's hear it.
Support the show
>>> Please consider clicking the link above to support the show!
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
YouTube home: https://youtube.com/playlist?list=PLyo0dkKRvfVtWXjRxNISrhme1MgBj3C2U&si=scHDiTuLXSEQ9qHq
LinkedIn Page: https://www.linkedin.com/company/down-the-security-rabbithole-podcast/
X/Twitter: https://twitter.com/dtsr_podcast
More shows like Down the Security Rabbithole Podcast (DtSR)
View all
Hacked
185 Listeners
Security Now (Audio)
2,003 Listeners
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
369 Listeners
Risky Business
373 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
638 Listeners
CyberWire Daily
1,016 Listeners
Smashing Security
322 Listeners
Click Here
414 Listeners
Darknet Diaries
8,002 Listeners
Hacking Humans
314 Listeners
CISO Series Podcast
188 Listeners
Defense in Depth
73 Listeners
Cyber Security Headlines
134 Listeners
Risky Bulletin
44 Listeners
Hacker And The Fed
169 Listeners