Liquidmatrix Security Digest Podcast

Liquidmatrix Security Digest Podcast - Episode 1D

Listen Later

Episode 0x1D -- Oops, We Did It Again

Sometimes, breaches happen to the nicest folks

A PSA on TFA!

TFA is addictive, a year ago I started using it at work and then I began using it at home on my webmail. I didn't tell my wife about it for a while because I thought that it would bring up the whole 'if you love me you'll share you password' argument again. My TFA use began to spread to other cloud services and soon I was trying to get other people to start using it as well. Now I do TFA everywhere, whenever I have a quiet moment to access a cloud service. Sometimes I'll even use it on the train when I go to work, I don't care who sees me key in my OTP because I know TFA will keep me safe; it's a good feeling.

  1. Upcoming this week...
  2. Lots of News
  3. Breaches
  4. The SCADAs/ICS and Cyber
  5. finishing it off with DERPs/Mailbag and
  6. Our new weekly Briefs - no arguing or discussion allowed

    7. And if you've got commentary, please sent it to [email protected] for us to check out.

    DISCLAIMER: It's not that explicit, but you may want to use headphones if you're at work.

    ADDITIONAL DISCLAIMER: In case it is unclear, this is the story of 5 opinionated infosec pros who have sufficient opinions of their own they don't need to speak for anyone except themselves. Ok? Good.

    In this episode:

    • News and Commentary
      1. Bug Bounties! Pwn2own 2013 looking good
      2. Kimdotcom is back - Mega and encryption is haardddddd
      3. Another Java vuln confirmed
      4. the brits do some identity outsourcing
      5. Red October (Be very careful not to shoot the nuclear missiles)
      6. Student expelled for finding flaws in edu-software
      7. Blue Coat Caught Up In Global Surveillance Storm Again
      8. Canadian report on ethical hacking sidestepped
      9. Breaches - The never ending never ending story...
        1. Liquidmatrix branches out into Viagra...apparently
        2. The SCADAs/ICS and Cyber
          1. DHS to regulate medical device security
          2. More releases from the SCADA Strangelove folks
          3. Canada has a bad case of the Cybers
          4. Singapore Cybers You Back
          5. Endgame Systems is going to Bonesaw you
          6. US succumbs to sneakernet. Time to glue up your USB ports
          7. Errata / DERP of the week award
            1. ESPN wall of app shame
            2. Mailbag / Bizarro Land

              1. Gentlemen,

                Where did you guys get the term "Narcasistic vulnerability pimps"?

                Jonesy, GTA

                Link
              2. Briefly - NO ARGUING OR DISCUSSION ALLOWED
                1. Like garfield without garfield, it's Risk Unicorns without Alex Hutton!!! Webappsec Quiz! Whoops!! Bobby Tables! httpOnly cookie flag Stats
                2. Mikko gives you video tips on banking online
                3. Condoms and Castles
                4. Google Authenticator for Wordpress. Just sayin.
                5. HackDesign - good for your eyeballs
                6. Record number of British schoolkids participate in National Cypher Challenge (h/t to my Mom, seriously)
                7. TSA ends contract with Rapiscan, maker of full-body scanner
                8. Your Mac Keeps A Log Of All Your Downloads
                9. iGotYa leads to arrest
                10. Liquidmatrix Staff Projects
                  1. The Security Conference Library 
                  2. Contribute to the Strategic Defense Execution Standard (#SDES) and you'll be Doing Infosec Right in no time.
                  3. If you're interested in helping out with openCERT.ca, drop a line to [email protected]
                  4. Upcoming Appearances: James and Dave at RSA e10+, also attending Shmoocon but not speaking
                  5. In Closing
                    1. We're thinking about doing a live podcast with audience participation - drop us a tweet or a line if you're interested 
                    2. Movie Review Mikko was on stage with Eugene at DLD 2013... did it get weird?
                    3. Security Blogger Awards 2013...ah hem (not like we're pandering for votes or anything, we only do that for ISC2 board seats) :)
                    4. everyday is CTF! go set up a team
                    5. Signing up for a SANS course? Be sure to use the code "Liquidmatrix_150" and save $150 off the course fee!
                    6. Seacrest Says: "Al Roker pooped his pants. Seacrest Out!" http://www.vulture.com/2013/01/al-roker-pooped-his-pants-the-remix.html

                      7. Creative Commons license: BY-NC-SA

                      ...more
                      View all episodesView all episodes
                      Download on the App Store
                      Liquidmatrix Security Digest PodcastBy Liquidmatrix Security Digest
                      • 4.8
                      • 4.8
                      • 4.8
                      • 4.8
                      • 4.8

                      4.8

                      13 ratings