Summary: Join intrepid hosts, Justin Freid, Harry Marks, and Chaim Cohen as they traverse the week's biggest tech news in a rapid-fire roundtable discussion before your very ears.
Twitter’s CEO Jack Dorsey, was a victim of SIM Jacking. We spend our show talking about why SIM jacking is a thing, and how you can protect yourself.
We talk about how insurance companies are more inclined to pay ransomware than to deal with backups.
https://youtu.be/Bj_LL2C9rbE This week we are still having meeting problems, but we finally get things moving. We discuss CamScanner which infected many users with malware through the Android play store. Basically a bad API snuck malware in.
Hangouts officially closed shop to hosting video calls. We spent almost an hour trying different things to make something work. We still did a show, it isn’t great this week, but we didn’t want to give up. We are still trying different things, so please be patient.
It is the week before Defcon, and we just have some tidbits. Equifax $125 | https://www.ftc.gov/enforcement/cases-proceedings/refunds/equifax-data-breach-settlement Capital One: https://www.theverge.com/2019/7/31/20748886/capital-one-breach-hack-thompson-security-data
We talk about the two fines levied on companies. First is facebook at 5 Billion, and second is Equifax at 700 million. https://www.ftc.gov/news-events/press-releases/2019/07/ftc-imposes-5-billion-penalty-sweeping-new-privacy-restrictions
FaceApp is in the news again for putting some questionable things in their Terms of Service. We talk about the privacy issues, but more importantly, we discuss that this is normal.
A 0 day exploit hitting Zoom hit this week. Basically if you know what Zoom is, you are probably vulnerable. We talk about ways to reduce your attack surface when it comes to meeting softwares. https://firstname.lastname@example.org/zoom-zero-day-4-million-webcams-maybe-an-rce-just-get-them-to-visit-your-website-ac75c83f4ef5 https://www.theverge.com/2019/7/9/20688113/zoom-apple-mac-patch-vulnerability-emergency-fix-web-server-remove https://mobile.twitter.com/riskybusiness/status/1148819622558236673?s=21 https://www.ohioinfosec.org/2019/07/13/2019-oisf-anniversary-conference/
All of these products that offer some sort of “better/safer internet” are just scams. We say why.
The EFF put out a guide on how to host your own security event. Since we do something like that, we discuss https://sec.eff.org/articles/first-training
Chrome is playing games with Adblock extensions again: https://www.vice.com/en_us/article/evy53j/google-struggles-to-justify-making-chrome-ad-blockers-worse https://www.theverge.com/2019/6/4/18650363/firefox-block-trackers-default-enhanced-tracking-protection Ring Doorbells and Police: https://www.cnet.com/features/amazons-helping-police-build-a-surveillance-network-with-ring-doorbells/ Apple does some magic voodoo to prevent find my mac stalking: https://www.wired.com/story/apple-find-my-cryptography-bluetooth/
Google found out that almost 100% of automated phishing attacks can be prevented with ANY form of 2FA: https://security.googleblog.com/2019/05/new-research-how-effective-is-basic.html
We got some big security holes for you this week. Last week ended with a WhatsApp bug. Update Now! https://arstechnica.com/information-technology/2019/05/whatsapp-vulnerability-exploited-to-infect-phones-with-israeli-spyware/ CPU.Fail: https://cpu.fail/ Google Security Key Vulnerability: https://security.googleblog.com/2019/05/titan-keys-update.html?m=1 Can you please fill out our podtrac survey: http://survey.podtrac.com/start-survey.aspx?pubid=B8NmaYB8k-kH&ver=short
So what privacy settings do you want in your smart cylinder?https://gizmodo.com/a-very-long-list-of-privacy-features-google-talked-abou-1834593900 Why is it a problem that “Works with Nest” is going away. https://variety.com/2019/digital/news/google-works-with-nest-discontinued-1203207335/ Can you please fill out our podtrac survey: http://survey.podtrac.com/start-survey.aspx?pubid=B8NmaYB8k-kH&ver=short
I saw how Banksy authenticates his work, and we got to thinking about how we verified things in the past, and future. https://reprage.com/post/how-banksy-authenticates-his-work https://en.wikipedia.org/wiki/EURion_constellation Can you please fill out our podtrac survey: http://survey.podtrac.com/start-survey.aspx?pubid=B8NmaYB8k-kH&ver=short