Cybersecurity 101 with Joe and Larry

Episode 27 - Protect Yourself Online: Mobile Carrier Breach, Password Tips, and QR Code Scams


Listen Later

0:06 – 0:22 – Welcome Back!  

Larry and Joe kick off the latest episode of their podcast with excitement, diving straight into the cybersecurity topics of the day.

0:56 – 3:56 – The Mobile Carrier Breach  

Joe breaks down the recent breach involving major telecom carriers (AT&T, Verizon, T-Mobile), discussing how hackers exploited outdated Cisco routers to access sensitive wiretap systems and target political figures.
https://techcrunch.com/2024/11/14/us-confirms-china-backed-hackers-breached-telecom-providers-to-steal-wiretap-data/

3:56 – 4:33 – Implications for Everyday Users  

Joe explains the importance of encrypted communication apps like iMessage, WhatsApp, and Signal, highlighting vulnerabilities in text messaging protocols between iPhone and Android users.

4:33 – 6:09 – Best Practices for 2FA  

The hosts emphasize moving away from SMS-based two-factor authentication and adopting authenticator apps or phishing-resistant methods like hardware keys.
https://techcommunity.microsoft.com/blog/identity/its-time-to-hang-up-on-phone-transports-for-authentication/1751752

6:25 – 8:55 – Protecting Personal Accounts  

Larry and Joe discuss practical ways for regular users to improve password security, including using randomized passwords, password managers, and even a physical password vault.

9:04 – 10:29 – The Pros and Cons of Password Managers  

Joe explores the trade-offs between web-based solutions like LastPass and local password safes https://pwsafe.org/ secured with hardware keys from Yubico https://www.yubico.com/product/yubikey-5-series/yubikey-5c-nfc/, offering insights into selecting the right solution for your needs.

10:30 – 12:38 – VPNs and DNS Privacy  

Joe delves into VPNs, DNS encryption, and how they protect user privacy, while explaining why these measures are essential for blocking ISPs from selling your data to advertisers.
https://en.wikipedia.org/wiki/DNS_over_HTTPS

12:39 – 14:54 – Guarding Against Scams  

Larry shares personal stories of family members targeted by scams, prompting tips from Joe on spotting phishing attempts, verifying suspicious emails, and avoiding QR code traps.

14:54 – 16:37 – The Wild West of the Internet  

The conversation turns philosophical as the hosts discuss the current state of online security and the challenges of protecting vulnerable users, including the elderly, from relentless cybercriminals. Reminds me of "The Beekeeper" movie
https://www.imdb.com/title/tt15314262/

16:37 – 17:55 – QR Code Scams in the Real World  

Joe uncovers the risks of QR code fraud, including fake stickers in restaurants or parking meters and malicious links sent in packages, and how to avoid falling victim to these scams.
https://www.instagram.com/cybersecuritygirl/reel/DCaetPtuBIw/

18:17 – 20:33 – Simple Security Steps for Everyone  

Larry asks Joe for his top advice for everyday users, resulting in actionable steps like maintaining unique passwords for every account and writing them down in a secure password book.

20:33 – 21:50 – Credential Stuffing Explained  

Joe explains the mechanics of credential stuffing, how hackers automate attacks, and why using different passwords for every account is critical.
https://en.wikipedia.org/wiki/Credential_stuffing

21:50 – 22:09 – Planning for the Future  

Joe reflects on how maintaining a secure and accessible password book can help families manage accounts after a loved one’s passing, underscoring the value of preparedness.

...more
View all episodesView all episodes
Download on the App Store

Cybersecurity 101 with Joe and LarryBy Joe Stocker

  • 4.5
  • 4.5
  • 4.5
  • 4.5
  • 4.5

4.5

20 ratings