Major Password Cache Dumped, HL7 Expert Interview, Defense Health Agency Insecurity

Summary: <br> Steve and Gerry are in the studio discussing a massive password cache that was discovered and if you should actually be concerned. Steve interviews Dallas Haselhorst, an HL7 protocol security expert. Finally they finish off discussing the insecurity discovered by the OIG after reviewing security controls at several DoD healthcare facilities.<br> <br> <br> <br> <a href="https://podcast.musc.edu/podcast/infosec/e59-infosecicu/" target="_blank" rel="noreferrer noopener">Show Notes</a><br> <br> <br> <br> <br> <br> <br> <br> Resources:<br> <br> <br> <br> Password Cache Dump<br> <br> <br> <br> <a href="https://krebsonsecurity.com/2019/01/773m-password-megabreach-is-years-old/" target="_blank" rel="noreferrer noopener">https://krebsonsecurity.com/2019/01/773m-password-megabreach-is-years-old/</a><br> <br> <br> <br> Defense Health Agency Insecurity<br> <br> <br> <br> <a href="https://media.defense.gov/2019/Jan/11/2002078551/-1/-1/1/DODIG-2019-044.PDF" target="_blank" rel="noreferrer noopener">https://media.defense.gov/2019/Jan/11/2002078551/-1/-1/1/DODIG-2019-044.PDF</a><br> <br> <br> <br> <a href="https://motherboard.vice.com/en_us/article/yw79k5/hacker-group-threatens-dump-911-insurance-files-dark-overlord">https://motherboard.vice.com/en_us/article/yw79k5/hacker-group-threatens-dump-911-insurance-files-dark-overlord</a><br> <br> <br> <br> One Cool Thing<br> <br> <br> <br> Fortnite, the new money laundering method:<br> <br> <br> <br> <a rel="noreferrer noopener" href="https://www.independent.co.uk/news/fortnite-v-bucks-discount-price-money-dark-web-money-laundering-crime-a8717941.html" target="_blank">https://www.independent.co.uk/news/fortnite-v-bucks-discount-price-money-dark-web-money-laundering-crime-a8717941.html</a><br> <br> <br> <br> Home Healthcare with TytoCare <br> <br> <br> <br> <a rel="noreferrer noopener" href="https://www.tytocare.com/" target="_blank">https://www.tytocare.com/</a><br>