From Security Weekly Wiki
Jump to navigationJump to search

Paul's Security Weekly - Episode 475 - 6:00PM-7:00PM

Episode Audio

Recorded: July 28, 2016

Interview: Federico Kirschbaum

Federico Kirschbaum is currently the CTO of Infobyte Security Research, company based in Buenos Aires, Argentina. With more than 10 years of experience researching and pentesting networks, he has developed a deep knowledge in the computer security & telecomunications field.

He is one of the founders of the ekoparty security conference, one of the biggest con in Latin America which is held yearly in BA.

  1. Three words to describe yourself.
  2. If you were a serial killer, what would be your weapon of choice?
  3. If you wrote a book about yourself, what would the title be?
  4. In the popular game of ass grabby-grabby, do you prefer to go first or second?
  5. Choose two celebrities to be your parents.

Listener Feedback - 7:00PM-7:30PM

Jeff writes in:

Hey guys!

Long time listener, first time caller. I'm about to get married later this year, but earlier in the year, I started a job as a pentester at a security firm, moving from more traditional role of security engineering 9-5. I find myself thinking more and more about balancing work and life as I get closer to the wedding, especially since the topic of kids is consistently coming up. I'm finding even without kids I'm having to keep research and extra curricular activities like lab time, blogging, project starting to a minimum between my workload and my fiancee. You guys are always talking about your kids, Paul you just had another one... How do you do it all? Between the podcast, the classes, a startup, how do you maintain a happy relationship and spend time with your kids while continually improving your careers and skills? It's seemingly a Sisyphean task to me. From my perception I think you guys invented time travel and aren't sharing.

Thanks, Jeff

Security News - 7:30PM-8:00PM

Paul's Stories

  1. NIST Recommends SMS Two-Factor Authentication Deprecation
  2. Saved from ransomware thugs... by rival ransomware thug
  3. Cloud Adoption Grows as Security Lags
  4. Snowden Designs Phone Case To Spot Hack Attacks
  5. The End Of Yahoo: Why Verizon Spent Big
  6. TechCrunch Defaced By Self-Professed White Hats
  7. Osram Lightify Light Bulbs Vulnerable To Hack
  8. Hackers Could Sniff Out Your Passwords If You're Typing Nearby
  9. "Zero-day hole can pwn millions of LastPass users
  10. Airbus Is Making Drone Killers
  11. Flipping the economy of a Hacker
  12. Everything You Need To Know About Web Shells
  13. Drone operator arrested for flying over wildfire

Larry's Stories

  1. Upcoming KeySniffer Release
  2. Forced turnover of phones reveals WhatsApp chat logs for failed Turkish Coup
  3. CyberSpectrum meet up at DEF CON at the SYN Shop Hackerspace
  4. Spoofing GPS to catch Pokemon
  5. rx_tools: rtl-like command line tools for just about any SDR
  6. Adafruit Feather - LoRa radio implementation
  7. WoW remote control a victim with a simple chat command

Michael's (Santa) Stories

  1. Amazon Echo now controls your August Smart Lock Awesome? Scary?
  2. Cyber worker shortage hurting operations —> these are all perception surveys. Our industry is diverse. So what are we hiring for? Grow up.
  3. Some wireless keyboards could put your personal info at risk If you watch the show, you aren't surprised... but the risk?
  4. NIST declares the age of SMS-based 2-factor authentication over thoughts?

And based on the announcement - grab your copy of the Straight Talk Framework here: https://securitycatalyst.com/resources/straight-talk-framework/ (then check out some of the additional options and the new launch)