Paul's Security Weekly (Audio) Threat Actors With A Thousand Names - PSW #856
8 snips
Jan 9, 2025 Discover the vulnerabilities lurking in DNA sequencers and the urgent need for better security measures. The complexities of naming threat actors reveal both chaos and confusion in cybersecurity. Reflecting on a CEO's unexpected passing adds a emotional layer to industry discussions. Explore how stolen bicycles link to social media accountability. A peculiar bug causes printing woes on Tuesdays, while hackers continue to exploit weaknesses in technologies like Bitlocker and Bluetooth. Plus, get hype for ShmooCon and hear about the latest tech threats!
AI Snips
Chapters
Transcript
Episode notes
Basic Platform Security
- Many appliances lack basic platform security protections, making attacks easier.
- Enabling secure boot, boot guard, and other available features significantly improves security.
Updatable Firmware
- Devices with embedded computers need updatable firmware for ongoing security.
- Plan for updates and clearly define the software's support lifespan.
Abandoned Web Shells
- Researchers found 4,000 abandoned web shells, including some on .gov sites.
- Reusing existing backdoors is easier than compromising systems directly.