Share Mostly Security
Share to email
Share to Facebook
Share to X
By Jon King and Eric Wuehler
4.9
1414 ratings
The podcast currently has 470 episodes available.
Both Jon and Eric have mic issues, but Eric gets a new monitor and Jon goes fishing again. Everyone should start looking at Passkeys. Jon finds a ClickFix and ways to attack LLMs with math. Eric discovers 3600 year old cheese and Jon shares some poetry.
Eric's nest has emptied, and Jon's pantry is full of asian pear derivatives. Temu denies (rightly?) that the data didn't come from them, Transport for London has to restore 30k employee creds in person, and why not to let the authoritative server for a domain expire. For fun we have another word puzzle by the NYT, and estimating an avatar's gaze at a virtual keyboard to deconstruct typed text.
Eric has some travel news and Jon smells like plums. Eric's beloved Yubikey is unpatchable. AT&T want VMWare security updates and Android malware uses OCR to find cryptocurrency creds in your photo album. Eric doesn't understand transparent flesh while Jon looks at a diamond making machine.
Eric gets productive, while Jon goes to the fair. An airline service to register crew can be SQL Injected, scammers combine location data and photos in sextortion emails, and Microsoft's Mac apps are vulnerable-ish. For fun Eric will be visiting the Monterey Bay Aquarium, and Ganymede had a smashing past.
Eric finishes his chess set project, Jon goes camping. Claude shares some of it's AI internals. Google fixes a zero-day exploit. Slack's AI allows extraction of unexpected data. 3D Printing with Glass?!?! Finally, a Grace Hopper YouTube video you should watch.
Eric moves daughters to college, Jon extracts honey. The Oregon Zoo is compromised for ~6 months, a 60 million dollar BEC, and a new flavor of Mac Malware. Restoring and repairing an old Chess set, and Scientific American stories from 50, 100, and 150 years ago.
Eric is sending kids to college, Jon has four peaches, small green lemons (not limes), and other harvest bounty. Using 0.0.0.0 to attack local networks. Using SEC filings to disclose a breach. Using AI to craft content for Phishing Attacks in real time. Using non conductive liquid as a heat sink. Using Medieval Gibberish as a reference book.
Lazy(-ish) summer weekends for both. Crowdstrike releases their RCA (20!=21), an MDM vendor wipes 13k student devices in Singapore, and the results of a comprehensive audit of Homebrew. For fun we have electrostatics based propulsion and a long lost branch of the Nile likely used to help build the pyramids.
Eric is afraid of getting his car washed. Jon has blackberries. Bits about Money has a humorous take on CrowdStrike and Banks. Google misplaces users' passwords for the better part of a day. Secure Boot isn't as secure as the name suggests. Forget Tamagotchi, here's a Friend. Blaze Star go Boom. Finally, Eric had way too much fun with the chapter titles and associated images this week.
Jon made it home, and Eric's away. Telegram has a zero day 'EvilVideo' allowing APK installation, and Crowdstrike's content update outage over the past weekend that caused mayhem. For fun we have a new game from Panic and the State Hall of the Austrian National Library.
The podcast currently has 470 episodes available.