Firewalls Don't Stop Dragons Podcast

Less is More

Listen Later

Last time, I told you how to enumerate all the devices on your home network. Before we go to the trouble of analyzing and mitigating their vulnerabilities, we should take the opportunity to cull the inventory. Do you really need all of these devices? Or could you forego the “smart” features that require them to be connected to your network? Today we’ll talk about reducing your attack surface before we bother trying to secure it.

In other news: the White House announces new cybersecurity labeling program; the SEC mandates a 4-day reporting window for cyber attacks; EFF opposes a bill that threatens our privacy; stolen Microsoft signing keys behind a set of targeted US government email hacks; more details emerge about Facebook mining Onano VPN for user data; TETRA radios used for decades revealed to have deliberately weakened encryption; ALPR data now being used with AI algorithms to guess which cars might contain criminals; Apple threatens to pull Facetime, Messages from UK over proposed surveillance law changes; Google’s Web Integrity API causes a stir; Apple to require justification for use of some APIs that might compromise user privacy.

Article Links
  1. [whitehouse.gov] Biden-⁠Harris Administration Announces Cybersecurity Labeling Program for Smart Devices to Protect American Consumers https://www.whitehouse.gov/briefing-room/statements-releases/2023/07/18/biden-harris-administration-announces-cybersecurity-labeling-program-for-smart-devices-to-protect-american-consumers/
  2. [The Hacker News] New SEC Rules Require U.S. Companies to Reveal Cyber Attacks Within 4 Days https://thehackernews.com/2023/07/new-sec-rules-require-us-companies-to.html
  3. [Electronic Frontier Foundation] Amended Cooper Davis Act Is a Direct Threat to Encryption https://www.eff.org/deeplinks/2023/07/amended-cooper-davis-act-direct-threat-encryption
  4. [TechCrunch] Microsoft lost its keys, and the government got hacked https://techcrunch.com/2023/07/17/microsoft-lost-keys-government-hacked/
  5. [Financial Review] Facebook admits it used app to ‘know nearly everything’ about users https://www.afr.com/companies/media-and-marketing/facebook-admits-it-used-app-to-know-nearly-everything-about-users-20230713-p5do2a
  6. [WIRED] Code Kept Secret for Years Reveals Its Flaw—a Backdoor https://www.wired.com/story/tetra-radio-encryption-backdoor/
  7. [Forbes] This AI Watches Millions Of Cars Daily And Tells Cops If You’re Driving Like A Criminal https://www.forbes.com/sites/thomasbrewster/2023/07/17/license-plate-reader-ai-criminal/
  8. [MacRumors] Apple Threatens to Pull FaceTime and iMessage in the UK Over Proposed Surveillance Law Changes https://www.macrumors.com/2023/07/20/apple-threatens-to-pull-facetime-and-imessage-uk/
  9. [Ars Technica] Google’s nightmare “Web Integrity API” wants a DRM gatekeeper for the web https://arstechnica.com/gadgets/2023/07/googles-web-integrity-api-sounds-like-drm-for-the-web/
  10. [MacRumors] Apple Developers Required to Justify Use of Some APIs in Latest Move to Boost Privacy https://www.macrumors.com/2023/07/28/developers-required-to-justify-api-use/
  11. Tip of the Week: Less is More: https://firewallsdontstopdragons.com/secure-your-network-2-simplify/
    12. Further Info
    • Stop the bad bills: https://www.eff.org/deeplinks/2023/07/you-can-help-stop-these-bad-internet-bills 
    • Dragon Challenge Coin Promo! https://fdsd.me/promo823 
    • Nominate someone for a challenge coin: https://fdsd.me/quest 
    • Get your Firewalls Don’t Stop Dragons Merch! https://fdsd.me/merch 
    • Give the gift of privacy and security: https://fdsd.me/coupons 
    • Send me your questions! https://fdsd.me/qna 
      • Table of Contents

      Add time-based list of markers.

      ...more
      View all episodesView all episodes
      Download on the App Store
      Firewalls Don't Stop Dragons PodcastBy Carey Parker
      • 4.9
      • 4.9
      • 4.9
      • 4.9
      • 4.9

      4.9

      64 ratings

      More shows like Firewalls Don't Stop Dragons Podcast

      View all
      Hidden Brain by Hidden Brain, Shankar Vedantam

      Hidden Brain

      43,513 Listeners

      Global News Podcast by BBC World Service

      Global News Podcast

      7,760 Listeners

      Hacked by Hacked

      Hacked

      189 Listeners

      This Week in Tech (Audio) by TWiT

      This Week in Tech (Audio)

      3,060 Listeners

      Security Now (Audio) by TWiT

      Security Now (Audio)

      2,007 Listeners

      The Daily by The New York Times

      The Daily

      113,049 Listeners

      Darknet Diaries by Jack Rhysider

      Darknet Diaries

      8,113 Listeners

      FT News Briefing by Financial Times

      FT News Briefing

      659 Listeners

      Techlore Surveillance Report by Techlore

      Techlore Surveillance Report

      110 Listeners

      Hard Fork by The New York Times

      Hard Fork

      5,547 Listeners

      The Ezra Klein Show by New York Times Opinion

      The Ezra Klein Show

      16,317 Listeners

      Closed Network Privacy Podcast by Simon Walsh

      Closed Network Privacy Podcast

      20 Listeners

      Watchman Privacy by Gabriel Custodiet

      Watchman Privacy

      74 Listeners

      The Weekly Show with Jon Stewart by Comedy Central

      The Weekly Show with Jon Stewart

      11,023 Listeners

      The 404 Media Podcast by 404 Media

      The 404 Media Podcast

      399 Listeners