Quick Summary of the California Conumser Privacy Act https://isc.sans.edu/forums/diary/CCPA+Quick+Overview/25668/ Cisco Vulnerabilities https://tools.cisco.com/security/center/publicationListing.x XiaoMi Camera Cache Bug https://www.reddit.com/r/googlehome/comments/eine1m/when_i_load_the_xiaomi_camera_in_my_google_home/
It's the first episode of the year and the decade. Join Jerry with special guests, Breeze, and Bre, and we explore the craziness of New York, marriage, and look back at the best of the last decade.Support the showFollow The Hosts on Social Media:Jerry Tha Great - http://bit.ly/Jerrythagreat2Breeze - https://bit.ly/BigBurrNeesy Read More
In Episode 158, Ben and Scott dive into a change that is going to impact all Microsoft Partners and their security posture in Azure Active Directory. Sponsors ShareGate – ShareGate’s industry-leading products help IT professionals worldwide migrate their business to the Office 365 or SharePoint, automate their Office 365 governance, Read More
Happy New Year, everyone! & welcome to the first #WaitForItWednesday of the decade. We hope you all had a wonderful & safe New Year. & with a new year comes new content & @MrEricAlmighty & @PhilTheFilipino team up this week to talk about the Disney+ hit, The Mandalorian. "After the stories Read More
@MrEricAlmighty and @PhilTheFilipino are back with our weekly series titled, "What Did I Miss?". Each week, we discuss any weird and wild news that you may have missed!This week however, we have a very special episode where the guys will give out their best/worst of the year awards in music, Read More
In Episode 157, Ben and Scott go sideways and talk about Microsoft's approach to documenting not only the How but the Why of services and products that they release and how customers can obtain operational guidance today. Sponsors Opsgility - Your Cloud enablement partner to help guide your organization through Read More
It's finally here. The conclusion to the Skywalker Saga that started over 40 years ago. This new trilogy has been met with its fair share of criticisms and @MrEricAlmighty and @PhilTheFilipino are here to give you their thoughts. To skip straight to our grades for the film, that begins at Read More
More DNS over HTTPS Details https://isc.sans.edu/forums/diary/More+DNS+over+HTTPS+Become+One+With+the+Packet+Be+the+Query+See+the+Query/25628/ Ransomware Outing Victims https://krebsonsecurity.com/2019/12/ransomware-gangs-now-outing-victim-businesses-that-dont-pay-up/ Google Chrome Update https://chromereleases.googleblog.com/2019/12/stable-channel-update-for-desktop_17.html
Ben and Scott go down a deep, dark hole and discuss some issues with Microsoft Teams screen sharing on MacOS Catalina. After that, they discuss the newly announced Microsoft Team Exploratory license and some impacts to your tenant if you allow trials.
An Emotet Update https://isc.sans.edu/forums/diary/Emotet+infection+with+spambot+activity/25622/ Emotet Used to Spread Malware From German Federal Agency Accounts (german) https://www.bsi.bund.de/DE/Presse/Pressemitteilungen/Presse2019/Spam-Bundesbehoerden_181219.html Joomla Patches SQL Injection https://developer.joomla.org/security-centre.html Unicode Mapping Problems https://eng.getwisdom.io/hacking-github-with-unicode-dotless-i/
Discovering DNS over HTTPS https://isc.sans.edu/forums/diary/Is+it+Possible+to+Identify+DNS+over+HTTPs+Without+Decrypting+TLS/25616/ Ring Camera Weaknesses https://www.vice.com/en_us/article/epg4xm/amazon-ring-camera-security WhatsApp DoS Bug https://research.checkpoint.com/2019/breakingapp-whatsapp-crash-data-loss-bug/
Slack "Unshare" Not Working As Expected https://www.theregister.co.uk/2019/12/16/slack_filesharing_vulnerability_post_sharing/ Google Making OAUTH Mandatory for GSuite https://gsuiteupdates.googleblog.com/2019/12/less-secure-apps-oauth-google-username-password-incorrect.html TPLink Authentication Bypass https://securityintelligence.com/posts/tp-link-archer-router-vulnerability-voids-admin-password-can-allow-remote-takeover/ Factoring IoT RSA Keys https://info.keyfactor.com/factoring-rsa-keys-in-the-iot-era
It's been a crazy year, and I got all of the stories!Support the showFollow The Hosts on Social Media:Jerry Tha Great - http://bit.ly/Jerrythagreat2Breeze - https://bit.ly/BigBurrNeesy - https://bit.ly/NeesyTDD
Malware Information Sharing https://isc.sans.edu/forums/diary/Code+Data+Reuse+in+the+Malware+Ecosystem/25598/ Apple Improves Tracking Prevention Tracking in WebKit https://webkit.org/blog/9661/preventing-tracking-prevention-tracking/ Google Verified SMS Messages https://www.blog.google/products/messages/safer-conversations-messages-verified-sms-and-spam-protection/ Echobot Keeps Adding More Exploits https://www.bleepingcomputer.com/news/security/new-echobot-variant-exploits-77-remote-code-execution-flaws/ STI Research Paper: Caleb Baker DNS Monitoring https://www.sans.org/reading-room/whitepapers/dns/challenges-effective-dns-query-monitoring-39215
