Exploring the intersection of security, technology, and society—and what might be coming next...

[ Subscribe to the Podcast: iTunes | Android ]

InfoSec news and Articles

• LinkedIn breach from 2013 | 65.5 million emails and salted and hashed passwords
• XSS in WordPress plugin (JetPack)
• DerbyCon is going to stream live this year | you can’t stream the networking, so it probably won’t hurt next year’s sales too much
• Websites using audio fingerprinting to track web users
• Terrorists not showing advanced security tradecraft
• GSM/GPRS traffic interception for penetration testing engagements (NCC)
• Real robocop in Stanford shopping center
• Reddit reset over 100K passwords after surge in hacked accounts
• Google to start shaming partners that don’t provide quick updates
• CEO sacked after company grounded by whaling attack
• Marisa Mlynski gets 30K in Chrome bounties
• Security researcher proposes 5-star rating for IoT Security | strange since the Cavalry have already proposed a 5-star rating
• Lots of Twitter password resets (hacks?)
• FBI says to watch out for USB phone chargers in public places | you deserve what you get if you’re in IT

Technology news and articles

• Waverly labs instant language translation
• Apple, Microsoft, and Google hold 23% of all corporate cash
• MIT makes incandescent light bulbs more efficient than LEDs
• Japan mandating coding education
• Twitter testing a live streaming feature to attack Periscope
• Uber users with low phone batteries more likely to accept surge pricing
• All European scientific articles to be freely accessible by 2020
• Twitter dropping handles and media from character limit

Apple news and articles

• Flowers for Siri: got dumber instead of smarter
• Apple working on Siri and/or AppleTV upgrade in the AI space | looking to release an SDK and possibly do an Alexa competitor | could have a camera and/or facial recognition | they need to step up

Miscellaneous news and articles

• Boys with more books in the house earn more as adults
• People with intellectual disability are at increased risk for both violent and sexual victimisation and offending
• Alzheimer’s possibly related to infections
• Massive infrastructure found for enabling Chinese students to get in and succeed in American colleges
• Education doesn’t fix poverty
• Woman’s blindness fixed by stem cell treatment
• Standing desks may boost productivity in adults

Exploring ideas

• Unsupervised learning
• Threats, threat actors, and risks
• Corporations don’t want employees
• How technology hijacks peoples minds
• KARMA Risk Management

InfoSec tools

• LazyMap: Nmap to Nessus https://n0where.net/auto-nmap-scanning-script-lazymap/
• Halcyon: Nmap Script IDE https://n0where.net/unofficial-ide-for-nmap-script-development-halcyon/
• PTF: Pentesters Framework https://github.com/trustedsec/ptf

InfoSec projects

–

InfoSec papers

–

InfoSec reports

–

InfoSec talks

–

InfoSec initiatives

–

Announcements

• Presenting at BlackHat Arsenal in Vegas this year
• I’ll be at DerbyCon
• About five chapters done on my book, titled FUTURE

Summary and recommendations

• Make sure you either have a password manager or a very strong password scheme
• Make sure you have backups
• Make sure your loved ones have these things as well

Recommended content

• Tristan Harris
  • https://medium.com/swlh/distracted-in-2016-reboot-your-phone-with-mindfulness-9f4c8ad46538#.d66ri2ozn
  • https://medium.com/@tristanharris/how-technology-hijacks-peoples-minds-from-a-magician-and-google-s-design-ethicist-56d62ef5edf3#.f434h93c3
• a16z

inspiration

• Imagination is the one weapon in the war against reality. ~ Jules de Gaultier
• An honest politician is one who, when he is bought, will stay bought. ~ Simon Cameron
• A friend might well be reckoned the masterpiece of nature. ~ Ralph Waldo Emerson

Fin

• Ok, that’s it for this episode
• Thank you for listening
• If you like the show, please recommend it to your friends and share it, blog about it, share it on social media, and leave a review on iTunes
• See you next time

Show notes

• https://danielmiessler.com/blog/derbycon-moving-to-live-streaming-model/
• http://thehackernews.com/2016/05/audio-fingerprint.html?utm_content=buffera2eae&utm_medium=social&utm_source=twitter.com&utm_campaign=buffer
• https://danielmiessler.com/blog/corporations-dont-want-employees/
• http://www.theguardian.com/education/2016/may/29/boys-books-earnings-adults
• http://bmcpsychiatry.biomedcentral.com/articles/10.1186/s12888-016-0869-7
• https://medium.com/@thegrugq/notes-on-isis-european-style-42ef5b617a6#.t8fkx7kfp
• https://danielmiessler.com/blog/derbycon-moving-to-live-streaming-model/
• http://www.nytimes.com/2016/05/26/health/alzheimers-disease-infection.html?_r=1
• http://www.reuters.com/investigates/special-report/college-cheating-iowa/
• http://www.telegraph.co.uk/science/2016/03/12/return-of-incandescent-light-bulbs-as-mit-makes-them-more-effici/
• http://www.demos.org/blog/12/2/15/why-education-does-not-fix-poverty
• https://www.nccgroup.trust/uk/about-us/newsroom-and-events/blogs/2016/may/gsmgprs-traffic-interception-for-penetration-testing-engagements/
• https://medium.com/swlh/how-technology-hijacks-peoples-minds-from-a-magician-and-google-s-design-ethicist-56d62ef5edf3#.3hv6ps7xn
• http://english.eu2016.nl/latest/news/2016/05/27/all-european-scientific-articles-to-be-freely-accessible-by-2020
• https://www.lovefone.co.uk/blogs/news/116694212-flowers-for-siri-what-made-apple-s-ai-so-stupid
• https://blog.sucuri.net/2016/05/security-advisory-stored-xss-jetpack-2.html
• http://www.slideshare.net/AndrewRJamieson/iot-security-its-in-the-stars-169-v201605241355

[ Subscribe to the Podcast: iTunes | Android ]

Notes

1. The intro track is from one of my favorite EDM artists: Zomby. The song is ‘Orion’, and it’s from the ‘With Love’ album. Highly recommended if you like chill EDM.