40 min listen
Unavailable
Currently unavailable
DtSR Episode 187 - NewsCast for March 29th, 2016
Currently unavailable
DtSR Episode 187 - NewsCast for March 29th, 2016
ratings:
Length:
40 minutes
Released:
Mar 29, 2016
Format:
Podcast episode
Description
In this episode...
BadLock bug (which now has a website, a graphic, and more hype than Bieber) is out there
Is the bug really worth all this hype?
Is this anything more than a PR stunt, and a big marketing opportunity?
Everyone has an opinion, but one thing is for certain, this bug is making big waves
http://www.wired.com/2016/03/hype-around-mysterious-badlock-bug-raises-criticism/
Your wireless mouse is probably a security risk... seriously.
RF-based mice typically don't use encryption or mutual authentication
Some do (all of my Microsoft & Logitech mice tell me they mutually authenticate & encrypt... I think)
How far up, or down, your risk register is this one; and how much should it matter to enterprise?
http://www.thefiscaltimes.com/2016/03/23/Your-Wireless-Mouse-May-Be-Exposing-You-Cyber-Hackers
Your Node.js package manager could be an entry point for worms?
Now that everything has functionality over our endpoints...
Dependencies seem to be (at least partially) to blame here (who's surprised?)
http://news.softpedia.com/news/node-js-package-manager-vulnerable-to-malicious-worm-packages-502216.shtml
Ransomware is getting nastier (and more effective)
Remember it's just a business model, so they actually are pretty good at unlocking, support, etc once you pay up
What happens when a hospital system gets locked/encrypted -- real lives are at stake here!
Enterprise advice? Backup, test, and take it all offline regularly so you can recover
This is only going to get worse. Much, much worse.
http://www.itsecurityplanet.com/experts-corner/hospital-hit-with-ransomware-contagion-declares-internal-emergency
http://www.healthitoutcomes.com/doc/backup-recovery-system-control-ransomware-attack-0001
http://www.healthcareitnews.com/news/ransomware-wreak-havoc-2016-icit-study-says
BadLock bug (which now has a website, a graphic, and more hype than Bieber) is out there
Is the bug really worth all this hype?
Is this anything more than a PR stunt, and a big marketing opportunity?
Everyone has an opinion, but one thing is for certain, this bug is making big waves
http://www.wired.com/2016/03/hype-around-mysterious-badlock-bug-raises-criticism/
Your wireless mouse is probably a security risk... seriously.
RF-based mice typically don't use encryption or mutual authentication
Some do (all of my Microsoft & Logitech mice tell me they mutually authenticate & encrypt... I think)
How far up, or down, your risk register is this one; and how much should it matter to enterprise?
http://www.thefiscaltimes.com/2016/03/23/Your-Wireless-Mouse-May-Be-Exposing-You-Cyber-Hackers
Your Node.js package manager could be an entry point for worms?
Now that everything has functionality over our endpoints...
Dependencies seem to be (at least partially) to blame here (who's surprised?)
http://news.softpedia.com/news/node-js-package-manager-vulnerable-to-malicious-worm-packages-502216.shtml
Ransomware is getting nastier (and more effective)
Remember it's just a business model, so they actually are pretty good at unlocking, support, etc once you pay up
What happens when a hospital system gets locked/encrypted -- real lives are at stake here!
Enterprise advice? Backup, test, and take it all offline regularly so you can recover
This is only going to get worse. Much, much worse.
http://www.itsecurityplanet.com/experts-corner/hospital-hit-with-ransomware-contagion-declares-internal-emergency
http://www.healthitoutcomes.com/doc/backup-recovery-system-control-ransomware-attack-0001
http://www.healthcareitnews.com/news/ransomware-wreak-havoc-2016-icit-study-says
Released:
Mar 29, 2016
Format:
Podcast episode
Titles in the series (100)
DtSR Episode 311 - Further the Browser: Guest: Scott Petry of Authentic8 by Backpacking Light Magazine Podcasts