Risky Business is a weekly information security podcast featuring news and in-depth interviews with industry luminaries. Launched in February 2007, Risky Business is a must-listen digest for information security pros. With a running time of approximately 50-60 minutes, Risky Business is pacy; a security podcast without the waffle.
…
continue reading
Contenuto fornito da Risky.biz and Patrick Gray. Tutti i contenuti dei podcast, inclusi episodi, grafica e descrizioni dei podcast, vengono caricati e forniti direttamente da Risky.biz and Patrick Gray o dal partner della piattaforma podcast. Se ritieni che qualcuno stia utilizzando la tua opera protetta da copyright senza la tua autorizzazione, puoi seguire la procedura descritta qui https://it.player.fm/legal.
Player FM - App Podcast
Vai offline con l'app Player FM !
Vai offline con l'app Player FM !
Risky Business #732 — We are CRUSHED
Manage episode 412967745 series 3234705
Contenuto fornito da Risky.biz and Patrick Gray. Tutti i contenuti dei podcast, inclusi episodi, grafica e descrizioni dei podcast, vengono caricati e forniti direttamente da Risky.biz and Patrick Gray o dal partner della piattaforma podcast. Se ritieni che qualcuno stia utilizzando la tua opera protetta da copyright senza la tua autorizzazione, puoi seguire la procedura descritta qui https://it.player.fm/legal.
On this week’s SURPRISE edition, Patrick Gray and Adam Boileau discuss the week’s security news. They cover:
- Their disappointment over last week’s SEC Twitter hack
- China rainbow-tables Airdrop
- Enterprise bugs galore…
- … and why patching fast is hard when there isn’t even a patch yet
- UEFI flaws get trad-BIOS-era vendor response
- and much, much more…
This week’s show is unsponsored, we’re just here for the fun of it.
Show notes
- The SEC’s Official X Account Was ‘Compromised’ and Used to Post Fake Bitcoin News | WIRED
- Apple AirDrop leaks user data like a sieve. Chinese authorities say they’re scooping it up. | Ars Technica
- FireChat – the messaging app that’s powering the Hong Kong protests
- End-of-life Cisco routers targeted by China’s Volt Typhoon group
- Ivanti Connect Secure attacks part of deliberate espionage operation | Cybersecurity Dive
- Ivanti Connect Secure VPN Exploitation Goes Global
- NetScaler ADC and NetScaler Gateway Security Bulletin for CVE-2023-6548 and CVE-2023-6549
- Aria Automation Missing Access Control Vulnerability (CVE-2023-34063)
- Security Bulletin - January 16 2024
- Stable Channel Update for Desktop
- “MyFlaw” — Cross Platform 0-Day RCE Vulnerability Discovered in Opera’s Browser
- PixieFail: Nine vulnerabilities in Tianocore's EDK II IPv6 network stack.
- LeftoverLocals: Listening to LLM responses through leaked GPU local memory
- Bigpanzi TV Botnet
- Southeast Asian casino industry supercharging cyber fraud, UN says
129 episodi
Manage episode 412967745 series 3234705
Contenuto fornito da Risky.biz and Patrick Gray. Tutti i contenuti dei podcast, inclusi episodi, grafica e descrizioni dei podcast, vengono caricati e forniti direttamente da Risky.biz and Patrick Gray o dal partner della piattaforma podcast. Se ritieni che qualcuno stia utilizzando la tua opera protetta da copyright senza la tua autorizzazione, puoi seguire la procedura descritta qui https://it.player.fm/legal.
On this week’s SURPRISE edition, Patrick Gray and Adam Boileau discuss the week’s security news. They cover:
- Their disappointment over last week’s SEC Twitter hack
- China rainbow-tables Airdrop
- Enterprise bugs galore…
- … and why patching fast is hard when there isn’t even a patch yet
- UEFI flaws get trad-BIOS-era vendor response
- and much, much more…
This week’s show is unsponsored, we’re just here for the fun of it.
Show notes
- The SEC’s Official X Account Was ‘Compromised’ and Used to Post Fake Bitcoin News | WIRED
- Apple AirDrop leaks user data like a sieve. Chinese authorities say they’re scooping it up. | Ars Technica
- FireChat – the messaging app that’s powering the Hong Kong protests
- End-of-life Cisco routers targeted by China’s Volt Typhoon group
- Ivanti Connect Secure attacks part of deliberate espionage operation | Cybersecurity Dive
- Ivanti Connect Secure VPN Exploitation Goes Global
- NetScaler ADC and NetScaler Gateway Security Bulletin for CVE-2023-6548 and CVE-2023-6549
- Aria Automation Missing Access Control Vulnerability (CVE-2023-34063)
- Security Bulletin - January 16 2024
- Stable Channel Update for Desktop
- “MyFlaw” — Cross Platform 0-Day RCE Vulnerability Discovered in Opera’s Browser
- PixieFail: Nine vulnerabilities in Tianocore's EDK II IPv6 network stack.
- LeftoverLocals: Listening to LLM responses through leaked GPU local memory
- Bigpanzi TV Botnet
- Southeast Asian casino industry supercharging cyber fraud, UN says
129 episodi
Tutti gli episodi
×Benvenuto su Player FM!
Player FM ricerca sul web podcast di alta qualità che tu possa goderti adesso. È la migliore app di podcast e funziona su Android, iPhone e web. Registrati per sincronizzare le iscrizioni su tutti i tuoi dispositivi.