inThirty

We take a look at why you should give Firefox another try. There are a few key differences when it comes to the privacy side that Chrome doesn’t have.

We have many stories of manufacturers failing to support their smart devices. Best buy Insignia TV’s will drop smart support. Netflix is dropping support on old roku Iris (Lowe’s smart hub) was stopped a few months ago Nest Google issue

side channel attacks – we’ve kind of covered this, but it’s probably good to revisit it a bit. Good food for thought. Google buying Fitbit Who is gathering data about you? (Loyalty cards, cable boxes, isp dns)

In today’s episode we plug Adversarialfashion.com. Clothing to thwart license plate readers. Phishing scam: https://twitter.com/DigitalLawyer/status/1181348689756864513https://twitter.com/DigitalLawyer/status/1181348689756864513 Backing up.

We just fly threw the news topics this week. WhatsApp bug: https://amp.news.com.au/technology/online/hacking/whatsapp-users-urged-to-update-as-hackers-break-into-phones-just-by-sending-them-a-gif/news-story/6fc5159ad8a406c9d7d7383067d8f645 Twitter 2FA issues: https://boingboing.net/2019/10/08/twitter-admits-two-factor-logi.html FBI spied on citizens: https://www.theverge.com/2019/10/8/20905678/fbi-violated-americans-privacy-rights-court-ruling-fisc-surveillance-nsa No more mixed content for TLS: https://security.googleblog.com/2019/10/no-more-mixed-messages-about-https_3.html iterm2 software issue: https://blog.mozilla.org/security/2019/10/09/iterm2-critical-issue-moss-audit/

We had nothing overly general to talk about, so we decided to talk about Candy. We used this picture:

Twitter’s CEO Jack Dorsey, was a victim of SIM Jacking. We spend our show talking about why SIM jacking is a thing, and how you can protect yourself.

We talk about how insurance companies are more inclined to pay ransomware than to deal with backups.

https://youtu.be/Bj_LL2C9rbE This week we are still having meeting problems, but we finally get things moving. We discuss CamScanner which infected many users with malware through the Android play store. Basically a bad API snuck malware in.

Hangouts officially closed shop to hosting video calls. We spent almost an hour trying different things to make something work. We still did a show, it isn’t great this week, but we didn’t want to give up. We are still trying different things, so please be patient.

It is the week before Defcon, and we just have some tidbits. Equifax $125 | https://www.ftc.gov/enforcement/cases-proceedings/refunds/equifax-data-breach-settlement Capital One: https://www.theverge.com/2019/7/31/20748886/capital-one-breach-hack-thompson-security-data

We talk about the two fines levied on companies. First is facebook at 5 Billion, and second is Equifax at 700 million. https://www.ftc.gov/news-events/press-releases/2019/07/ftc-imposes-5-billion-penalty-sweeping-new-privacy-restrictions

FaceApp is in the news again for putting some questionable things in their Terms of Service. We talk about the privacy issues, but more importantly, we discuss that this is normal.

A 0 day exploit hitting Zoom hit this week. Basically if you know what Zoom is, you are probably vulnerable. We talk about ways to reduce your attack surface when it comes to meeting softwares. https://medium.com/@jonathan.leitschuh/zoom-zero-day-4-million-webcams-maybe-an-rce-just-get-them-to-visit-your-website-ac75c83f4ef5 https://www.theverge.com/2019/7/9/20688113/zoom-apple-mac-patch-vulnerability-emergency-fix-web-server-remove https://mobile.twitter.com/riskybusiness/status/1148819622558236673?s=21 https://www.ohioinfosec.org/2019/07/13/2019-oisf-anniversary-conference/

All of these products that offer some sort of “better/safer internet” are just scams. We say why.