Digital Podcast

Zoom Vulnerability Responses, Ponemon Report on 3rd Party Vendor Risk in Healthcare, Data and Privacy Security Academic Conference


Join Now to Share


InfoSec ICU show

Summary: Gerry and Steve discuss Zoom and Apples response and actions from the Zoom fallout of silent local webservers on endpoints. The guys discuss the Ponemon report on third party risk management in the healthcare industry. Finally they discuss the academic conference Gerry is currently attending in Charleston and feature a talk on Adversarial Attack Sampling of Phishing Websites.<br> As always they end with One Cool Thing.<br> <a href="https://podcast.musc.edu/podcast/infosec/e84-infosecicu" target="_blank" rel="noopener noreferrer">Show Notes</a><br> <br> Resources:<br> Zoom Vulnerability / Apple Response<br> <a href="https://medium.com/bugbountywriteup/zoom-zero-day-4-million-webcams-maybe-an-rce-just-get-them-to-visit-your-website-ac75c83f4ef5" target="_blank" rel="noopener noreferrer">https://medium.com/bugbountywriteup/zoom-zero-day-4-million-webcams-maybe-an-rce-just-get-them-to-visit-your-website-ac75c83f4ef5</a><br> Ponemon Report <br> <a href="https://www.healthcareitnews.com/news/hospitals-are-paying-not-vetting-their-vendors" target="_blank" rel="noopener noreferrer">https://www.healthcareitnews.com/news/hospitals-are-paying-not-vetting-their-vendors</a><br> <a href="https://9to5mac.com/2019/07/10/zoom-apple-macos-update/" target="_blank" rel="noopener noreferrer">https://9to5mac.com/2019/07/10/zoom-apple-macos-update/</a><br> Data and Applications Security and Privacy XXXIII 33rd Annual IFIP WG 11.3 Conference, DBSec 2019<br> <a href="https://dbsec2019.cse.sc.edu/" target="_blank" rel="noopener noreferrer">https://dbsec2019.cse.sc.edu/</a><br> <br> One Cool Thing<br> Instagram Hack<br> <a href="https://threatpost.com/researcher-bypasses-instagram-2fa/146466/" target="_blank" rel="noopener noreferrer">https://threatpost.com/researcher-bypasses-instagram-2fa/146466/</a><br> <br> Steve’s BitterSweet <br> <br> Contact<br> Email <a href="mailto:infosecicu@musc.edu">infosecicu@musc.edu</a><br> Twitter:<br> <br> * <a href="https://twitter.com/Gerald_Auger" target="_blank" rel="noopener noreferrer">Gerry Auger (@Gerald_Auger)</a><br> * <a href="https://twitter.com/sgcardinal" target="_blank" rel="noopener noreferrer">Steven Cardinal (@sgcardinal)</a><br> <br>