Summary: Steve and Gerry discuss the major Windows vulnerability in the news “BlueKeep” and what you need to know about responding to it. They discuss the city of Baltimores current ransomware debacle and finish with firms that promise to aid you in decrypting your ransomware files but in reality are just brokering with the attackers.<br> As always they end with One Cool Thing.<br> <a href="https://podcast.musc.edu/podcast/infosec/e76-infosecicu2/" target="_blank" rel="noopener noreferrer">Show Notes</a><br> <br> Resources:<br> BlueKeep<br> <a href="https://blog.qualys.com/laws-of-vulnerabilities/2019/05/15/windows-rdp-remote-code-execution-vulnerability-bluekeep-how-to-detect-and-patch" target="_blank" rel="noopener noreferrer">https://blog.qualys.com/laws-of-vulnerabilities/2019/05/15/windows-rdp-remote-code-execution-vulnerability-bluekeep-how-to-detect-and-patch</a><br> Baltimore Ransomware Issues<br> <a href="https://arstechnica.com/information-technology/2019/05/baltimore-ransomware-nightmare-could-last-weeks-more-with-big-consequences/" target="_blank" rel="noopener noreferrer">https://arstechnica.com/information-technology/2019/05/baltimore-ransomware-nightmare-could-last-weeks-more-with-big-consequences/</a><br> <a href="https://www.npr.org/2019/05/21/725118702/ransomware-cyberattacks-on-baltimore-put-city-services-offline" target="_blank" rel="noopener noreferrer">https://www.npr.org/2019/05/21/725118702/ransomware-cyberattacks-on-baltimore-put-city-services-offline</a><br> Ransomware Recovery vendors were really just paying the ransom and taking the credit. Are they funding terrorism?<br> <a href="https://arstechnica.com/information-technology/2019/05/these-firms-promise-high-tech-ransomware-solutions-but-typically-just-pay-hackers/" target="_blank" rel="noopener noreferrer">https://arstechnica.com/information-technology/2019/05/these-firms-promise-high-tech-ransomware-solutions-but-typically-just-pay-hackers/</a><br> One Cool Thing<br> <br> MythGard<br> <a href="https://www.mythgardgame.com/" target="_blank" rel="noopener noreferrer">https://www.mythgardgame.com/</a><br> <br> Smartphone Ear Checker<br> <a href="https://www.npr.org/sections/health-shots/2019/05/15/723595540/a-smartphone-app-and-a-paper-funnel-could-help-parents-diagnose-kids-ear-infecti" target="_blank" rel="noopener noreferrer">https://www.npr.org/sections/health-shots/2019/05/15/723595540/a-smartphone-app-and-a-paper-funnel-could-help-parents-diagnose-kids-ear-infecti</a><br> Contact<br> Email <a href="mailto:infosecicu@musc.edu">infosecicu@musc.edu</a><br> Twitter:<br> <br> * <a href="https://twitter.com/Gerald_Auger" target="_blank" rel="noopener noreferrer">Gerry Auger (@Gerald_Auger)</a><br> * <a href="https://twitter.com/sgcardinal" target="_blank" rel="noopener noreferrer">Steven Cardinal (@sgcardinal)</a><br> <br>
