Shared Security Podcast

By Tom Eston, Scott Wright, Kevin Tackett

Shared Security is the the longest-running cybersecurity and privacy podcast where industry veterans Tom Eston, Scott Wright, and Kevin Tackett break down the week’s security WTF moments, privacy fail... more

4.5

2828 ratings

Download on the App Store

Download on the App Store

Get it on Google Play

FAQs about Shared Security Podcast:

How many episodes does Shared Security Podcast have?

The podcast currently has 623 episodes available.

Shared Security Podcast episodes:

October 25, 2009Social Media Security Podcast 3 – Phishing and Koobface, What is CSRF, Protected Tweets
This is the third episode of the Social Media Security Podcast recorded October 23, 2009. This episode was hosted by Scott Wright, Tom Eston and Kevin Johnson. Below are the show notes, links to articles and news mentioned in the podcast:
Tom and Scott talk about phishing on social networks. How can you tell the difference between a fake friend request and a real one? Here is a screen shot of a fake friend request and a real friend request. Just by looking at the email…it’s really hard to tell the difference isn’t it? The only way you can tell the difference is to look at the URL the link is going to by looking at the message source (code and/or mail header info). We advise you check your Facebook Inbox for legitimate friend requests, don’t click on friend request links in email.
Tom gives a primer on Koobface. What is the Koobface worm and how does it spread? If you want to learn more about Koobface check out this very good paper created by TrendMicro on how Koobface works.
Kevin gives a great non-technical overview of CSRF (Cross-site request forgery). Want to see a real CSRF attack demonstrating stealing private Facebook profile information? Check out this video and blog post. Here is the great talk by Jeremiah Grossman about exploiting business logic flaws that Tom mentioned.
Interested to know more about CSRF? Check out Security Now! Episode 166.
Are your protected tweets able to be searched by Google? Tom clarifies that this article was not true at all. However, there are some important things you need to know about protected tweets and why making your Twitter account private doesn’t buy you much.
Due to popular demand we are going to try recording the podcast bi-weekly!
Be sure to follow us on Twitter to stay up-to-date on all the latest news in the world of social media security!
Please send any show feedback to feedback [aT] socialmediasecurity.com or comment below. You can also call our voice mail box at 1-613-693-0997 if you have a question for our Q&A section on the next episode. You can also subscribe to the podcast now in iTunes! Thanks for listening!
The post Social Media Security Podcast 3 – Phishing and Koobface, What is CSRF, Protected Tweets appeared first on Shared Security Podcast.
...more
56min
September 27, 2009Social Media Security Podcast 2 – Month of Facebook Bugs, What is XSS, Canadian Privacy Ruling
This is the second episode of the Social Media Security Podcast recorded September 25, 2009. This episode was hosted by Scott Wright, Tom Eston and our new co-host Kevin Johnson. Below are the show notes, links to articles and news mentioned in the podcast:
Introducing our new co-host, Kevin Johnson. Kevin is a Senior Security Analyst for InGuardians and is also an instructor for the SANS Institute, teaching both SEC504: Hacker Techniques, Exploits, and Incident Handling and SEC542: Web App Penetration Testing and Ethical Hacking courses.
Tom talks about the Month of Facebook Bugs (created by a security researcher called “theharmonyguy”) why this is important and how many vulnerable applications have been exploited and fixed so far. Here is the list of top Facebook applications that Tom mentioned in the podcast.
Kevin gives a great non-technical overview of a web application vulnerability called Cross-site Scripting (XSS). Many of the Facebook applications we found in the “month of Facebook bugs” were vulnerable to XSS. Kevin describes what XSS is, how it works and how dangerous this vulnerability is to social networking applications like Facebook.
Scott talks about the recent ruling regarding the Canadian Federal Privacy Commissioner vs. Facebook. This ruling in Canada has created wide reaching changes to privacy and the way applications function within Facebook.
Scott also included a brief interview with the Canadian Privacy Commissioner’s Office about this recent Facebook ruling.
Tom has updated his Facebook Privacy & Security Guide. You can download the latest version here.
Please send any show feedback to feedback [aT] socialmediasecurity.com or comment below. You can also call our voice mail box at 1-613-693-0997 if you have a question for our Q&A section on the next episode. You can also subscribe to the podcast now in iTunes! Thanks for listening!
The post Social Media Security Podcast 2 – Month of Facebook Bugs, What is XSS, Canadian Privacy Ruling appeared first on Shared Security Podcast.
...more
58min
August 25, 2009Social Media Security Podcast 1 – Zombies, Bad Facebook Apps, Twitter SPAM
This is the first episode of the Social Media Security Podcast. This episode was hosted by Scott Wright and Tom Eston. Below are the show notes, links to articles and news mentioned in the podcast:
How did socialmediasecurity.com get started? Want to help out? Join our mailing list!
Weaponizing the Web: More Attacks on User Generated Content (good article on Nathan and Shawn’s talk)
Aviv Raff’s Month of Twitter bugs, research on Facebook applications by theharmonyguy
What are the Black Hat and DEFCON conferences?
History of DEFCON, Black Hat and the security underground (ThreatPost interview with founder Jeff Moss)
Twitter Botnet Found
Want to know more about SPAM bots? Tom’s presentation at Notacon 6: Rise of the Autobots: Into the Underground of Social Network Bots (slidedeck)
Tom and Kevin’s presentation at DEFCON 17 “Social Zombies: Your Friends Want to Eat Your Brains”
KreiosC2: Command & Control PoC for Twitter
Two more rogue Facebook apps linked to Fucabook scam
Twitter Profile Image SPAM
Staying clear of Twitter SPAM
Private profiles on Twitter. Worth the effort?
Please send any show feedback to feedback[aT]socialmediasecurity.com or comment below. You can also call our voice mail box at 1-613-693-0997 if you have a question for our Q&A section on the next episode. Thanks for listening!
**You can subscribe to the podcast now in iTunes!
The post Social Media Security Podcast 1 – Zombies, Bad Facebook Apps, Twitter SPAM appeared first on Shared Security Podcast.
...more
36min

FAQs about Shared Security Podcast:

How many episodes does Shared Security Podcast have?

The podcast currently has 623 episodes available.

More shows like Shared Security Podcast

Hacked by Hacked

Hacked

187 Listeners

Security Now (Audio) by TWiT

Security Now (Audio)

2,007 Listeners

Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

372 Listeners

Risky Business by Patrick Gray

Risky Business

371 Listeners

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

651 Listeners

CyberWire Daily by N2K Networks

CyberWire Daily

1,021 Listeners

Smashing Security by Graham Cluley

Smashing Security

319 Listeners

Click Here by Recorded Future News

Click Here

416 Listeners

Darknet Diaries by Jack Rhysider

Darknet Diaries

8,062 Listeners

Cybersecurity Today by Jim Love

Cybersecurity Today

179 Listeners

Hacking Humans by N2K Networks

Hacking Humans

315 Listeners

CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

CISO Series Podcast

188 Listeners

Defense in Depth by David Spark, Steve Zalewski, Geoff Belknap

Defense in Depth

74 Listeners

Cyber Security Headlines by CISO Series

Cyber Security Headlines

139 Listeners

The 404 Media Podcast by 404 Media

The 404 Media Podcast

391 Listeners