Episode 0x3B
We Have Quorum!
Getting tired of hearing about the latest $problem. Can we do something different with our cognitive surplus?
Upcoming this week...
Lots of News Breaches SCADA / Cyber, cyber... etc. finishing it off with DERPs/Mailbag (or Deep Dive) And there are weekly Briefs - no arguing or discussion allowedAnd if you've got commentary, please sent it to mailbag@liquidmatrix.org for us to check out.
DISCLAIMER: It's not that explicit, but you may want to use headphones if you're at work.
ADDITIONAL DISCLAIMER: In case it is unclear, this is the story of 5 opinionated infosec pros who have sufficient opinions of their own they don't need to speak for anyone except themselves. Ok? Good.
In this episode:
News and Commentary Facebook Awards Largest Bug Bounty To Date for Remote Code Execution Vulnerability - $33,500 Gang Rigged Gas Pumps with Bluetooth Enabled Card Skimmers US Courts uphold that you need an actual reason to search people's stuff F-35 Fighter Plans Intercepted In Shipping Container Destination: Iran Breaches 20 million Korean learn about a trusted insider the hard way (and then the executives own it completely) It wasn't just Target (and the obligatory Krebs) Is Your Twitter Password Secure? SCADA / Cyber, cyber... etc VSAT terminals are on the internetz ready for the p0wn CSEC Current Issues: Questions and Answers DERP Network solutions ripping customers off to make them more secure Snapchat, still not fixing the problem ... but they do implement a bot stopping captcha system... ... that gets broken the same day The first rule of a totalitarian government is you don't talk about hacking (just like an oppresive wannabe theocracy) MailbagWe're reaching a tipping point around the concept of Privacy. Here's a few examples to discuss:
Rating Obama’s NSA Reform Plan: EFF Scorecard Explained MPAA & ICE Confirm They Interrogated A Guy For Wearing Google Glass During A Movie 79-year-old census resister has no regrets after conditional discharge Google outed me Here We Go Again: Canadian Recording Industry Calls on Government To Regulate the Internet TrueCrypt's Plausible Deniability is Theoretically Useless Another Six Weeks: Muting vs. Blocking and the Wolf Whistles of the Internet Briefly -- NO ARGUING OR DISCUSSION ALLOWED Switch to HTTPS Now, For Free RSA Conference Parties WhiteHat Aviator for Windows Alpha NF Tables (die die die IPTables) Predicting attacks (cyber!) ISO 30111 - vulnerability handling process Liquidmatrix Staff Projects -- gratuitous self-promotion The Security Conference Library Contribute to the Strategic Defense Execution Standard (#SDES) and you'll be Doing Infosec Right in no time. If you're interested in helping out with openCERT.ca, drop a line to info@openCERT.ca Upcoming Appearances: -- more gratuitous self-promotion Dave: - Never To Be Seen Again James: - BSidesSF, RSA, etc. Sigh. Ben: - Putting his office tchochkes in a box Matt: - Hiding behind his lustrous facial hair, speaking at AppSec California and BSidesSF/RSA/Metricon/etc. Wil: - Too Pretty (♫ I'm too sexy for this show, too sexy for this show, so sexy it hurts... I'm an actor, you know what I mean and I do my little turn on the catwalk... ♫) Other LSD Writers: - Promised to write up S4 and hasn't Advertising - pay the bills... Signing up for a SANS course? Be sure to use the code "Liquidmatrix_150" and save $150 off the course fee! Or do the math and figure out if 5% off a course would be a better deal with "Liquidmatrix_5" Closing Thoughts Seacrest Says: The NSA is in bed with EVERYONE - including me.Creative Commons license: BY-NC-SA