Jan 22 2016, Episode 376 Show Notes

Posted in Breach, Conference Coverage, criminal forensics, darkweb, Exclusive News, Podcast, Show Notes, The CyberJungle, Vulnerabilities, web server security with tags , , , on January 22, 2016 by datasecurityblog

Episode 376 of The CyberJungle is about 28 minutes long. The special Tales From the Dark Web interview with Elastica’s Director of Security, Adi Sood, on Ukraine Grid Attacks begins at about 7min 45sec.  The interview with Ercan Erciyes of GetMonument, on Low Cost Private Cloud Device for Photos begins at 21min 20sec. You may download the file directly – great for listening on many smartphones. Or, you may go to the listening options page and browse for other ways to hear the show.

To listen to Episode 376 via the flash player:

Interview

Ercan Erciyes of GetMonument, on Low Cost Private Cloud Device for Photos

Link from the segment: GetMonument.com

 

Our Take on This Week’s News

* Major Linux and Android exploit went undetected for three years

* Android malware steals one-time passcodes to hijack accounts protected by two-factor authentication

 

Tales from The Dark Web

Special Tales From the Dark Web interview with Elastica’s Director of Security, Adi Sood, on Ukraine Grid Attacks . Elastica’s blog.

Wrap

The Wrap is one winter break.

Please support our sponsors, as they help make The CyberJungle possible:

peerlyst

Peerlyst is a network of security professionals. Our goal is to make our members’ jobs easier by giving them a place to find and compare security solutions—and learn from their peers’ real‐world experiences. Peerlyst is the place where security pros can instantly connect with each other, rate and learn about products, securely collaborate on projects, grow their expertise, and discover new career opportunities.

PLEASE VISIT THEIR SITE Peerlyst.com

 

Dec 10 2015, Episode 375 Show Notes

Posted in criminal forensics, darkweb, Podcast, Show Notes, The CyberJungle, Vulnerabilities with tags , , , on November 16, 2015 by datasecurityblog

Episode 375 of The CyberJungle is about 29 minutes long. The interview with Tomer Bitton, of enSilo begins at about 11min.  You may download the file directly – great for listening on many smartphones. Or, you may go to the listening options page and browse for other ways to hear the show.

To listen to Episode 375 via the flash player:

Interview

Tomer Bitton, co-founder of enSilo on a potential security flaw in many AV products.

Links from the segment:

enSilo technical blog posting about the flaw
High-level blog posting about the flaw on the enSilo site
The Vulnerability Checker Software Tool on github

 

Our Take on This Week’s News

* Another Linksys WiFi router 0day

* VTECH breach; Security flaws baked-in

 

Tales from The Dark Web

Malware by-passes AV via early boot

Wrap

No time for the wrap this epsisode

Please support our sponsors, as they help make The CyberJungle possible:

peerlyst

Peerlyst is a network of security professionals. Our goal is to make our members’ jobs easier by giving them a place to find and compare security solutions—and learn from their peers’ real‐world experiences. Peerlyst is the place where security pros can instantly connect with each other, rate and learn about products, securely collaborate on projects, grow their expertise, and discover new career opportunities.

PLEASE VISIT THEIR SITE Peerlyst.com

 

Nov 16th 2010 Episode 374 Show Notes

Posted in Podcast, The CyberJugle on November 16, 2015 by datasecurityblog

Due a technical problem, the show notes for this episode are temporarily unavailable. We apologize for the inconvenience.

Oct 2nd 2015, Episode 373 Show Notes

Posted in Breach, Conference Coverage, criminal forensics, darkweb, Podcast, Show Notes, The CyberJungle, Vulnerabilities with tags , , , , , , , on October 2, 2015 by datasecurityblog

Episode 373 of The CyberJungle is about 24 minutes long. The interview with David Dohl from SpiderOak on a more secure alternative to Slack begins at about 13:20.  You may download the file directly – great for listening on many smartphones. Or, you may go to the listening options page and browse for other ways to hear the show.

To listen to Episode 373 via the flash player:

Interview

David Dahl from SpiderOak on a more secure alternative to Slack The interview was recorded up the Las Vegas strip at DefCon.  Links mentioned in the segment: Github.com/cryton,  @deezthugs .

Our Take on This Week’s News

* Stagefright2.0, but how many will apply patch?

* DHS CISO wants security enforcement

* VW and the DMCA

Tales from The Dark Web

Dridex malware attacks bank customers while Cuckoo Miner malware attacks the banks via staffer PCs

Wrap

Time for Mac El Capitan?

Please support our sponsors, as they help make The CyberJungle possible:

peerlyst

Peerlyst is a network of security professionals. Our goal is to make our members’ jobs easier by giving them a place to find and compare security solutions—and learn from their peers’ real‐world experiences. Peerlyst is the place where security pros can instantly connect with each other, rate and learn about products, securely collaborate on projects, grow their expertise, and discover new career opportunities.

PLEASE VISIT THEIR SITE Peerlyst.com

 

Aug 23rd 2015, Episode 371 Show Notes

Posted in Conference Coverage, Exclusive, Exclusive News, Interview Only Edition, Podcast, Show Notes, The CyberJungle with tags , , , , on August 23, 2015 by datasecurityblog

Episode 371 of The CyberJungle is about 33 minutes long. This special episode has two newsmaker interviews from DEFCON23 and one newsmaker interview from BSidesLV 2015.  You may download the file directly – great for listening on many smartphones. Or, you may go to the listening options page and browse for other ways to hear the show.

To listen to Episode 371 via the flash player:

Interviews

Exclusive: Daniel Ayoub is the founder of ITUS Networks, the makers open source-based firwalls and now WiFi access points.  The interview was recorded at DEFCON 23 in Las Vegas.

Exclusive: Dutch economist Rene Mahieu spoke with us in the DEF CON Crypto & Privacy Village about upcoming research on the business of privacy. Mahieu and research partners at Princeton are hoping to discover the reasons the market for privacy enhancement products is sluggish. They’d like to hear from privacy entrepreneurs who are willing to share their experiences and insights. Contact renemahieu (at) riseup.net if you have stories to share. The interview was recorded at DEFCON 23 in Las Vegas.

Exclusive: David Porco is the developer of a new open source Windows Live Artifacts Acquisition Script project, called AChoir.

Our Take on This Week’s News

Our take on this week’s news is out on a fact finding mission.

Tales from The Dark Web

Tales from the dark web is out trolling TOR this week.

Wrap

The Ashley Madison breach and blackmailing users.

Please support our sponsors, as they help make The CyberJungle possible:

peerlyst

Peerlyst is a network of security professionals. Our goal is to make our members’ jobs easier by giving them a place to find and compare security solutions—and learn from their peers’ real‐world experiences. Peerlyst is the place where security pros can instantly connect with each other, rate and learn about products, securely collaborate on projects, grow their expertise, and discover new career opportunities.

PLEASE VISIT THEIR SITE Peerlyst.com

 

Aug 22th 2015, Episode 370 Show Notes

Posted in Breach, Conference Coverage, Court Cases, criminal forensics, darkweb, eMail Security, Podcast, Show Notes, The CyberJungle, Vulnerabilities, web server security with tags , , , , , , on August 12, 2015 by datasecurityblog

Episode 370 of The CyberJungle is about 22 minutes long. The interview with Blackphone CTO John Callas on Android patching and the second generation Blackphone begins at about 14:30.  You may download the file directly – great for listening on many smartphones. Or, you may go to the listening options page and browse for other ways to hear the show.

To listen to Episode 370 via the flash player:

Interview

Blackphone CTO John Callas on Android patching . Correction: In the interview, Ira Victor said he was recording John Calla at BlackHat. The interview was recorded up the Las Vegas strip at DefCon.

Our Take on This Week’s News

Elastica Discloses Script Injection Vulnerability in Salesforce . More coverage at BetaNews.

SEC: CyberGang stole secrets for up to $100 million insider-trading profit

Researchers: Another critical car attack

 

Tales from The Dark Web

Ubiquiti Networks victim of $39 million social engineering attack

Wrap

Check out Conference Notes and Ira’s Twitter timeline for our takes on BSidesLV, PasswordHack2015, and DEF CON 23

Please support our sponsors, as they help make The CyberJungle possible:

peerlyst

Peerlyst is a network of security professionals. Our goal is to make our members’ jobs easier by giving them a place to find and compare security solutions—and learn from their peers’ real‐world experiences. Peerlyst is the place where security pros can instantly connect with each other, rate and learn about products, securely collaborate on projects, grow their expertise, and discover new career opportunities.

PLEASE VISIT THEIR SITE Peerlyst.com

 

Follow

Get every new post delivered to your Inbox.

Join 1,435 other followers