1. EachPod
EachPod

Episode 30 - The Magic Number

Author
Javvad Malik, Madelaine Howard, Andrew Agnes, Thom Langford
Published
Fri 30 Oct 2020
Episode Link
https://podcast.hostunknown.tv/episodes/episode-30-the-magic-number-3tsWuJfJ

Our presenters delve into their darkest secrets from the past,  the internet is rebooted, the logs cleared, and cats play havoc with your home security (according to your training programme).

This week in Infosec

24th October 2010: 2010: Eric Butler announced Firefox extension Firesheep's release at Toorcon, making HTTP session hijacking on open Wi-Fi trivial.

Today, by far, high traffic sites redirect HTTP requests by default - so 90% of Internet web traffic is encrypted. That long tail though? Sad face. 

https://twitter.com/todayininfosec/status/1320095119857561603?s=20

27th October 1980: ARPANET ground to a halt because a bad status message propagated, causing all IMPs (routers) to exhaust memory. The solution? Reboot all IMPs! Yep, a reboot.

This incident was such a big deal that the case study of it was published as RFC 789.

https://twitter.com/todayininfosec/status/1321054719863828481?s=20

 

Tweet of the Week

https://twitter.com/KathsBurgess/status/1321509257431449600?s=20

Very good awareness video:

 

Billy Big Balls

https://www.huffingtonpost.co.uk/entry/no-woolworths-is-not-returning-to-the-uks-high-streets_uk_5f97f50ec5b6b74d85f459cc

Here to save 2020! Woolworths is coming back to your high street, as a physical store!

A couple of legal things to get sorted, but we’re full steam ahead at Woolworths HQ.

We want to get this right, so we need your help. What do you want at your UK #YourWoolworths?

https://www.standard.co.uk/news/uk/woolworths-reopening-prank-student-a4573379.html

 

Industry News

US and UK Issue Sanctions to Iran and Russia

Amazon Warns Users of Insider Disclosing Details to Third Party

Report: Application Flaws Being Fixed Faster Although Bugs Persist

Akamai Boosts Mobile Security Offering with Asavie Acqusition

 

Rant of the week

https://www.theregister.com/2020/10/26/finland_psychotherapy_clinic_ransom_attack/

A Finnish psychotherapy centre was hit by hackers who stole therapy session notes – before threatening patients of the clinic with ransom demands amid selective dark web leaks of stolen material.

"Psychotherapy Center Vastaamo has been the victim of data breaches and blackmail," said the Helsinki-based clinical chain late last week (in Finnish), adding: "In recent days, the blackmailer has published sections of the information he obtained during the hacking. Now the blackmailer has begun to approach the victims of the breach with blackmail letters demanding a ransom."

 

The Little People

Madelaine Howard of Cygenta and the NCSC


Come on! Like and bloody well subscribe!

Share to: