Welcome to the security box, podcast 143. Today, we're going to have a very interesting discussion about the Relationship between Ransomware and Phishing. We know of at least one moron of the podcast, and there is possibly going to be one more. Of course, we'll have news, notes and any questions from the Clubhouse audience.

There are two different articles out there about this one. One from Krebs and the other from Cyberscoop.

I saw a boost on Saturday about a breach with a company named Western Digital. That's nice, we have covered many breaches before. What I found was disturbing from Western Digital according to the boost. While they sent email out, the email was not accessible for those of us who use access technology; namely screen reading technology.

I don't know about you, but I would expect the info not in graphical form, I would expect it in text just like you and I communicate already. Here is my blog post from May 6th that mentions this. As of show note creation time, we do not have any official articles from the tech press, but when we do, we'll be sure to pass it along. Don't put breach notifications in picture form! It doesn't do anyone with disabilities any good.

The main topic comes from Phishlabs. The article is titled What is the Relationship Between Ransomware and Phishing? and was written at the end of March, 2023. This is going to get interesting.

If you'd like to support our efforts on what this podcast is doing, you can feel free to donate to the network, subscribing to the security box discussion list or sending us a note through contact information throughout the podcast. You can also find contact details on our blog page found here. Thanks so much for listening, reading and learning! We can't do this alone.

This show has sections of strong language, but not a lot. The disclaimer is in there just in case, but it is not much in the wake of strong language.

Welcome to the Security box. This is program number 142 of the series and this time, we've got a topic which hasn't been covered before at least on our podcast. The topic covers a very interesting endeavor by the government to deal with Cybersecurity. Besides this, we'll see who gets a moron, we'll cover the landscape, and we'll see what else is of value. Hope you enjoy the program!

One may not completely be a moron, but it qualifies as a group not just what the first item covers. The second, however, you'll just have to read to believe.

1. I'll put this one as a moron, but I really don't understand what seems to be going on over at schools lately. Its ok to keep information on children that have nothing to do with you giving them an education, and that information may include behavioral issues, SSN's and more.

Brian Krebs boosted (retweeted) the following to his followers. Note that my blog post has the linked article, so I'm not going to link it within this section. It says:

2. Our second moron is more of the moron than the first, but here's a blog post titled T-Mobile, do you still want me as a customer? I don’t think so! which has the latest on what they have been up to. It links to yet another article, talking about yet another breach. Should we be surprised in this industry?

This is a Krebs on Security article that we're taking from. He was tooting (tweeting) about this on Mastodon.

The article is titled Highlights from the New U.S. Cybersecurity Strategy and it was interesting. I wonder what will eventually happen with this? Haven't seen anything since this article was written, but maybe they're working on it and we'll see something soon. Only time will tell.

If you'd like to support our efforts on what this podcast is doing, you can feel free to donate to the network, subscribing to the security box discussion list or sending us a note through contact information throughout the podcast. You can also find contact details on our blog page found here. Thanks so much for listening, reading and learning! We can't do this alone.

This is an episode that affiliates can run, and the program is under an hour. We'd like to thank the BBC for doing this research. Its definitely eye opening.

The show notes, which include a link to the video on YouTube follows.

Welcome to the security box, podcast 141A. On this podcast, we're going to provide you with a video. This video comes from the BBC, and it does leave some very interesting questions. Contact info is given at the end.

What sparked this? This toot from Brian Krebs is what sparked this. It says:

Tl;dw, it appears the biggest crypto investment scams targeting people in the UK were promoted by at least a half dozen of England's premiere football (soccer) leagues. These scammers managed to rake in at least a billion dollars, and could afford lucrative sponsorships that got their brand everywhere. As the former scammers explained, there's nothing real about the investment "earnings" shown to people who get roped into these scams: It's all just a digital mirage, and any money invested is gone.

Her video series on the BBC zeroes in on who's responsible. Involves ride-alongs with German police as they worked w/ investigators in the country of Georgia to raid call centers working the phones for these fraudsters.

https://www.youtube.com/watch?v=w6JXZ3GzSCQ

If you're just here for the video, this is the youtube link to the video we give in audio.

Thanks Brian for posting this! I found it very eye opening, and it even made me mad, but that's probably what we'd expect with what you'll hear. I don't blame them though, but you should hear or watch this and make up your own mind.

If you'd like to support our efforts on what this podcast is doing, you can feel free to donate to the network, subscribing to the security box discussion list or sending us a note through contact information throughout the podcast. You can also find contact details on our blog page found here. Thanks so much for listening, reading and learning! We can't do this alone.

Welcome to the Security box, podcast 141. On this podcast, Cyberscoop is along to help us diagnose yet another ransomware group. They actually start by attacking Israeli schools, but will it stop there?

Besides that, we'll have the news, notes from around the landscape, possibly some morons, and of course your thoughts.

Our topic today comes from this Cyberscoop article titled New cybercrime group calling itself DarkBit attacks Israeli university which we sent to the list in mind February.

While we've not seen anything else on this, it isn't for us to keep our mind down as they could attack anything they want.

We hope to see you on the show, thanks so much for listening!

If you'd like to support our efforts on what this podcast is doing, you can feel free to donate to the network, subscribing to the security box discussion list or sending us a note through contact information throughout the podcast. You can also find contact details on our blog page found here. Thanks so much for listening, reading and learning! We can't do this alone.

This program may contain some infrequent occurences of strong language.

Welcome to podcast 140 of the Security box. On this edition of the podcast, we've got two morons at least and a great topic that may still be relevant even though the SVB fiasco is now past us. We'll also have the landscape from people who found things of interest as well. We hope you enjoy the show!

We have two morons of the podcast.

The FDIC did step up when it came to the SVB ordeal, but what about it and bank securituy? A watchdog says that they're not doing enough.

The article Watchdog warns FDIC fails to test banks’ cyberdefenses effectively is one that you should read. We'll be taking this article apart as part of the discussion. Do you think they're doing enough?

If you'd like to support our efforts on what this podcast is doing, you can feel free to donate to the network, subscribing to the security box discussion list or sending us a note through contact information throughout the podcast. You can also find contact details on our blog page found here. Thanks so much for listening, reading and learning! We can't do this alone.