inThirty
Summary: Join intrepid host Justin Freid as he traverses the week's biggest tech news in a rapid-fire roundtable discussion before your very ears.
- Visit Website
- RSS
- Artist: inThirty.net
- Copyright: Copyright 2013, inThirty.net
Podcasts:
Don’t leave your laptop open at Starbucks. Don’t back up your WhatsApp: https://www.buzzfeed.com/daveyalba/paul-manafort-whatsapp-encryption-icloud?utm_term=.pkoNzXwOP#.hw9da6VX0 PiHole – https://www.linuxincluded.com/block-ads-malvertising-on-pfsense-using-pfblockerng-dnsbl/
The FBI tells us to reboot our router (go on, we can wait) More Malware on Android phones Troy Hunt shows us the Password light https://arstechnica.com/information-technology/2018/05/fbi-tells-router-users-to-reboot-now-to-kill-malware-infecting-500k-devices/ https://www.engadget.com/2018/05/24/report-finds-android-malware-pre-installed-on-hundreds-of-phones/ https://www.troyhunt.com/pwned-passwords-in-practice-real-world-examples-of-blocking-the-worst-passwords/ https://www.troyhunt.com/have-i-been-pwned-is-now-partnering-with-1password/
we cover what this new PGP vulnerability is, we talk about a big goof from signal, and we finish with your cell phone location data: https://efail.de/ https://lists.gnupg.org/pipermail/gnupg-users/2018-May/060334.html https://krebsonsecurity.com/2018/05/tracking-firm-locationsmart-leaked-location-data-for-customers-of-all-major-u-s-mobile-carriers-in-real-time-via-its-web-site/ https://www.eff.org/deeplinks/2018/05/senate-voted-stand-net-neutrality-now-tell-house-do-same
Main story is how California police caught the serial killer using DNA tests. https://arstechnica.com/tech-policy/2018/04/gedmatch-a-tiny-dna-analysis-firm-was-key-for-golden-state-killer-case/ Pocketcasts gets a new home: https://blog.shiftyjelly.com/2018/05/04/the-next-chapter/ Reinstating open internet rules: https://www.reuters.com/article/us-usa-internet/u-s-senate-to-vote-to-reinstate-open-internet-rules-idUSKBN1I9351 Georgia Governor vetos Security Bill https://www.reuters.com/article/us-twitter-passwords/twitter-urges-all-users-to-change-passwords-after-glitch-idUSKBN1I42JG
Ray Ozzie talks about an encryption model that he think will help law enforcement who produce a valid warrant. https://www.wired.com/story/crypto-war-clear-encryption/
Talk given on April 17th, 2018 at the East Brunswick Public Library on Security and privacy. We did a very introductory topic of what it means to share your data with social media services. We discussed what it means to assess risk, what Facebook has, how tracking and advertising works, and what to do … Continue reading "Security 177 – Social Media and Privacy"
We are talking part 2 of the Facebook mess We are also quickly talking about: https://stopsesta.org/#facts https://www.eff.org/deeplinks/2018/03/secure-messaging-more-secure-mess https://www.bleepingcomputer.com/news/security/drupal-fixes-drupalgeddon2-security-flaw-that-allows-hackers-to-take-over-sites/ . https://www.eff.org/deeplinks/2018/02/cloud-act-dangerous-expansion-police-snooping-cross-border-data https://en.wikipedia.org/wiki/Transport_Layer_Security#TLS_1.3
We are discussing what Cambridge Analytica did in relationship to getting data from Facebook. We are not having a political discussion. https://www.cnn.com/2018/03/21/politics/trump-campaign-cambridge-analytica/index.html https://www.npr.org/sections/thetwo-way/2018/03/21/595470164/in-hidden-camera-expose-cambridge-analytica-executives-boast-of-role-in-trump-wi https://www.eff.org/deeplinks/2018/03/how-change-your-facebook-settings-opt-out-platform-api-sharing
In the situation where you have to keep things secret, like how to pay off someone that may talk to the media, we want you to do it right. Other Link: https://www.tunnelbear.com/blog/tunnelbear_joins_mcafee/ https://community.letsencrypt.org/t/acme-v2-and-wildcard-certificate-support-is-live/55579
We are going to start off with Chrome’s new Ad blocking feature. Links here: https://www.theverge.com/2018/2/14/17011266/google-chrome-ad-blocker-features We will then go into the pros and cons of crypto mining in the browser https://coinhive.com/
inThirty is now TLS (actually a real cert through godaddy) TCL Roku TV issue: https://www.consumerreports.org/televisions/samsung-roku-smart-tvs-vulnerable-to-hacking-consumer-reports-finds/ Kashmir Hill’s connected house exercise: https://gizmodo.com/the-house-that-spied-on-me-1822429852 Cryptomining in browsers (we may have spoken about this) Update wordpress Signal has an option to remove the invite banner
Tom is going to discuss the best way to support cryptocurrencies
It has been a slow week. I think we just sit and talk about what happened in the last two weeks. Seriously, we were all consumed about Meltdown and Spectre. https://gizmodo.com/how-google-fights-password-thieves-1822174355 https://www.eff.org/702-spying https://arstechnica.com/tech-policy/2018/01/fcc-admits-mobile-cant-replace-home-internet-wont-lower-speed-standard/ https://www.eff.org/702-spying
Tom is going to take us through these two 0 day vulnerabilities that affects literally everyone. Yes, you, go update now. https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html https://www.theregister.co.uk/2018/01/02/intel_cpu_design_flaw/ https://security.googleblog.com/2018/01/more-details-about-mitigations-for-cpu_4.html https://arstechnica.com/gadgets/2018/01/meltdown-and-spectre-every-modern-processor-has-unfixable-security-flaws/#p3 https://arstechnica.com/gadgets/2018/01/meltdown-and-spectre-every-modern-processor-has-unfixable-security-flaws/#p3 https://meltdownattack.com/ Intel Responds to Security Research Findings
[Edit: I didn’t record through the microphone. There is an annoying reverb/echo on my end.] So on deck: Stories of 2017: https://www.wired.com/story/2017-biggest-hacks-so-far/ AltCoins Net Neutrality End of Year cleanup Things to look forward to next year