The Hackle Box

By The InfoSec Mission

The Hackle Box is a monthly cyber threat intel discussion where Oscar Minks and members of FRSecure's technical services team (Team Ambush) break down the latest trends in the information security ind... more

· Technology

5

33 ratings

Download on the App Store

Download on the App Store

Get it on Google Play

FAQs about The Hackle Box:

How many episodes does The Hackle Box have?

The podcast currently has 42 episodes available.

The Hackle Box episodes:

October 11, 2021 The Hackle Box October 2021: REBOL Yell, Microsoft Going Password-less, OMIGOD, Microsoft Azure
Team Ambush members Oscar, Eric, and Pinky are back with another session of the Hackle Box—a series where they break down new and noteworthy breaches, vulnerabilities, exploits, and more over the last month.

This month's topics:

Microsoft going “passwordless”
https://arstechnica.com/gadgets/2021/09/starting-today-you-can-remove-your-password-from-your-microsoft-account/

OMIGOD—an exploitable hole in Microsoft open-source code
https://nakedsecurity.sophos.com/2021/09/16/omigod-an-exploitable-hole-in-microsoft-open-source-code/

New Azure Active Directory password brute-forcing flaw has no fix
https://arstechnica.com/information-technology/2021/09/new-azure-active-directory-password-brute-forcing-flaw-has-no-fix/?amp=1

Does your organization have a Security.txt file?
https://krebsonsecurity.com/2021/09/does-your-organization-have-a-security-txt-file/

CISA releases tool to help orgs fend off insider threat risks
https://www.bleepingcomputer.com/news/security/cisa-releases-tool-to-help-orgs-fend-off-insider-threat-risks/?utm_content=182136940&utm_medium=social&utm_source=twitter&hss_channel=tw-71605818

The REBOL Yell—novel exploit using REBOL for command-and-control
https://frsecure.com/blog/the-rebol-yell-new-rebol-exploit/

Teasing Project Hyphae

As always, the session ends with the Hacker Tip of the Month from Eric and the Phishing Report with Pinky.

Give this session a watch or listen, and feel free to send any comments, questions, or topic suggestions to [email protected].

And please like and subscribe!
...more
1h 2min
September 13, 2021 The Hackle Box September 2021: IDN Phishing, Razer Mouse, T-Mobile, Cobalt Strike, and OAuth 2.0
The boys are back with another session of the Hackle Box. This month features in-depth discussion on four vulnerabilities/exploits that have gained the attention of Oscar, Pinky, and Eric over the last month or so.

IDN Phishing — Outlook emails showing legitimate contact cards from lookalike domains
https://arstechnica.com/information-technology/2021/09/microsoft-outlook-shows-real-persons-contact-info-for-idn-phishing-emails/

Razer Mouse Bug — The bug allows admin privileges in Windows 10
https://www.bleepingcomputer.com/news/security/razer-bug-lets-you-become-a-windows-10-admin-by-plugging-in-a-mouse/

T-Mobile Breach — 48 million social security numbers accessed from a pool of 50 million affected customers
https://www.zdnet.com/article/t-mobile-hack-everything-you-need-to-know/

Hacking the Hackers — New exploit available for download lets hackers crash Cobalt Strike team servers
https://arstechnica.com/gadgets/2021/08/critical-cobalt-strike-bug-leaves-botnet-servers-vulnerable-to-takedown/

As always, the session ends with the Hacker Tip of the Month from Eric and the Phishing Report with Pinky.

Give this session a watch or listen, and feel free to send any comments, questions, or topic suggestions to [email protected].

And please like and subscribe!
...more
59min

FAQs about The Hackle Box:

How many episodes does The Hackle Box have?

The podcast currently has 42 episodes available.