Old Software Needs Security Love Too, Windows 7 Going the Way of the Dodo, and Pwn2Own

Summary: Steve and Gerry discuss the discovery of a 19 year old vulnerability, how organizations using Windows 7 now really really have to do something about it, and how the Pwn2Own 0-day contest in Vancouver is dropping 0-days like it’s hot.<br> As always they end with One Cool Thing.<br> <a href="https://podcast.musc.edu/podcast/infosec/e68-infosecicu/" target="_blank" rel="noopener noreferrer">Show Notes</a><br> <br> Resources:<br> WinRar Bug<br> <a href="https://www.scmagazine.com/home/security-news/hack-u-next-ariana-grande-file-is-one-of-100-ways-attackers-are-exploiting-winrar-bug/" target="_blank" rel="noopener noreferrer">https://www.scmagazine.com/home/security-news/hack-u-next-ariana-grande-file-is-one-of-100-ways-attackers-are-exploiting-winrar-bug/</a><br> Microsoft will start notifying users of Windows 7 about the end of (support) days. What you need to know.<br> <a href="https://techcrunch.com/2019/03/20/windows-7-security-updates/" target="_blank" rel="noopener noreferrer">https://techcrunch.com/2019/03/20/windows-7-security-updates/</a><br> Pwn2Own Zero Day Initiative<br> <a href="https://www.thezdi.com/blog/2019/3/20/pwn2own-vancouver-2019-day-one-results" target="_blank" rel="noopener noreferrer">https://www.thezdi.com/blog/2019/3/20/pwn2own-vancouver-2019-day-one-results</a><br> Contact<br> Email <a href="mailto:infosecicu@musc.edu">infosecicu@musc.edu</a><br> Twitter:<br> <br> * <a href="https://twitter.com/Gerald_Auger" target="_blank" rel="noopener noreferrer">Gerry Auger (@Gerald_Auger)</a><br> * <a href="https://twitter.com/sgcardinal" target="_blank" rel="noopener noreferrer">Steven Cardinal (@sgcardinal)</a><br> <br>