Talkin' Bout [Infosec] News

This is a special joint webcast from the teams of Black Hills Information Security, Wild West Hackin’ Fest, and Active Countermeasures, presented by John Strand.  In this webcast, we cover the recent wave of attacks we are seeing, and we cover some of the history that got us to where we are. Consider this to […] The post Webcast: New Wave of Ransomware Attacks: How did this happen? appeared first on Black Hills Information Security.

ORIGINALLY AIRED ON DECEMBER 20, 2021 Articles discussed in this episode: 00:00 – PreShow Banter™ — Getting Nerdy With It 04:18 – BHIS – Talkin’ Bout [infosec] News 2021-12-20 – The Final Broadcast … of 2021 05:34 – Story # 1: Apple releases Android app to find rogue AirTags – https://therecord.media/apple-releases-android-app-to-find-malicious-airtags/ 18:24 – Story # […] The post Talkin’ About Infosec News – 12/22/2021 appeared first on Black Hills Information Security. (00:00) - PreShow Banter™ — Getting Nerdy With It (04:18) - BHIS - Talkin' Bout [infosec] News 2021-12-20 – The Final Broadcast ... of 2021 (05:34) - Story # 1: Apple releases Android app to find rogue AirTags - https://therecord.media/apple-releases-android-app-to-find-malicious-airtags/ (18:24) - Story # 2: A Summary of Sorts - The Tale of 2021 (21:40) - Story # 3: Kronos hit with ransomware - https://www.zdnet.com/article/hr-platform-kronos-brought-down-by-ransomware-attack-ukg-warns-of-data-breach/ (22:19) - Story # 4: 300,000 MikroTik Devices Found Vulnerable - https://thehackernews.com/2021/12/over-300000-mikrotik-devices-found.html (26:51) - Story # 5: WordPress Sites Under Cyberattack - https://thehackernews.com/2021/12/16-million-wordpress-sites-under.html (28:45) - Story # 6: Firefox password leak via Windows Cloud Clipboard - https://therecord.media/firefox-fixes-password-leak-via-windows-cloud-clipboard-feature/ (36:33) - Story # 7: Android Application Testing Using Windows 11 - https://sensepost.com/blog/2021/android-application-testing-using-windows-11-and-windows-subsystem-for-android/ (37:43) - Story # 8: Verizon overrides users’ opt-out - https://arstechnica.com/information-technology/2021/12/verizon-ignored-users-previous-opt-outs-in-latest-push-to-scan-web-browsing/ (43:15) - Story # 9: Volvo cyber security breach - https://www.media.volvocars.com/global/en-gb/media/pressreleases/292817/notice-of-cyber-security-breach-by-third-party-1

Ransomware attacks have been growing in popularity, especially in critical infrastructure. Due to the importance of critical infrastructure, the need to secure the environments is an impending issue. The technology used in ICS environments is sensitive and often based on older protocols. The desire for connectivity has created an opportune target for malicious actors. Join […] The post Webcast: Intro to Ransomware and Industrial Control Systems (ICS) appeared first on Black Hills Information Security.

At Black Hills Information Security (BHIS), we make our living doing pentesting, but we’ve never once been paid for a pentest. Penetration Testers get paid for their reports. For their explanations. For their story of the environment as it appears to an attacker. The scanning and testing and exploiting (and failing at those things) is […] The post Webcast: Hack for Show, Report For Dough: Part 2 appeared first on Black Hills Information Security.

ORIGINALLY AIRED ON DECEMBER 13, 2021 00:00 – PreShow Banter™ 09:41 – FEATURE PRESENTATION: The Floor is Java – Log4Shell / Log4J 10:26 – Lets Jump In 11:31 – Oh No… 12:28 – None of This is New 15:36 – How Does This Work? 19:48 – Mitigations 21:48 – Find it on Hosts 23:54 – Hal […] The post Talkin’ About Infosec News – The Floor is Java – 12/15/2021 appeared first on Black Hills Information Security. (00:00) - PreShow Banter™ (09:41) - FEATURE PRESENTATION: The Floor is Java – Log4Shell / Log4J (10:26) - Lets Jump In (11:31) - Oh No... (12:28) - None of This is New (15:36) - How Does This Work? (19:48) - Mitigations (21:48) - Find it on Hosts (23:54) - Hal Translator (25:25) - Find it on the Network (26:53) - Miners Beacon (28:24) - Great Write-Ups! (31:47) - Conversation with Q & A

ORIGINALLY AIRED ON DECEMBER 6, 2021 Articles discussed in this episode: 00:18 – BHIS – Talkin’ Bout [infosec] News 2021-12-06 02:57 – Story # 1: Apple AirTag Car Thefts – https://www.macrumors.com/2021/12/03/airtag-linked-to-car-thefts/ 11:04 – Story # 2: Ubiquiti dev charged for extortion – https://www.bleepingcomputer.com/news/security/former-ubiquiti-dev-charged-for-trying-to-extort-his-employer/ 17:09 – Plug: Pay What You Can SOC Training – https://www.antisyphontraining.com/soc-core-skills-w-john-strand/ 18:24 – […] The post Talkin’ About Infosec News – 12/09/2021 appeared first on Black Hills Information Security. (00:00) - PreShow Banter™ (00:18) - BHIS - Talkin' Bout [infosec] News 2021-12-06 (02:57) - Story # 1: Apple AirTag Car Thefts - https://www.macrumors.com/2021/12/03/airtag-linked-to-car-thefts/ (11:04) - Story # 2: Ubiquiti dev charged for extortion - https://www.bleepingcomputer.com/news/security/former-ubiquiti-dev-charged-for-trying-to-extort-his-employer/ (17:09) - Plug: Pay What You Can SOC Training – https://www.antisyphontraining.com/soc-core-skills-w-john-strand/ (18:24) - Story # 3: U.S. State Department hacked with NSO spyware - https://www.reuters.com/technology/exclusive-us-state-department-phones-hacked-with-israeli-company-spyware-sources-2021-12-03/ (24:15) - Story # 4: The rise of dark web design - https://theconversation.com/the-rise-of-dark-web-design-how-sites-manipulate-you-into-clicking-168347 (33:46) - Story # 5: Researcher Found Way to Brute Force Verizon Customer PINs Online - https://www.vice.com/en/article/93bbpy/brute-force-verizon-pins-researcher-video (39:43) - Story # 6: Russia and China attacking US satellites with lasers and jammers - https://www.independent.co.uk/space/russia-china-attack-us-satellites-lasers-b1967516.html?utm_source=reddit.com (44:25) - Story # 7: Ransomware Takeaways: Q3 2021 - https://www.backblaze.com/blog/ransomware-takeaways-q3-2021/ (49:36) - Story # 8: Microsoft prompts try to stop people downloading Chrome - https://www.theverge.com/2021/12/2/22813733/microsoft-windows-edge-download-chrome-prompts (50:36) - Story # 8b: Microsoft Edge will warn users about downloading Google Chrome - https://arstechnica.com/gadgets/2021/12/microsoft-edge-will-now-warn-users-about-the-dangers-of-downloading-google-chrome/

Kent Ickler // Background Over four years ago now, I wrote a blog post on fixing missing Content-Security-Policy by updating configuration on webservers: https://www.blackhillsinfosec.com/fix-missing-content-security-policy-website/. Content-Security-Policies instruct a user’s web browser how it should behave on certain security considerations. Oh, how times have changed. Here at Black Hills Information Security (BHIS), we’ve actually migrated webservers, hosting […] The post Fixing Content-Security-Policies with Cloudflare Workers appeared first on Black Hills Information Security.

ORIGINALLY AIRED ON NOVEMBER 22, 2021 Articles discussed in this episode: Story # 1: Chinese Team Up With Russia To Launch US Cybersecurity Assault – https://hothardware.com/news/chinese-hackers-team-up-with-russian-ransomware-gang Story # 2: The FBI Got Hacked Over a Beef With a Guy Named Vinny? – https://www.thedailybeast.com/was-fbi-email-hack-just-an-elaborate-troll-of-a-guy-named-vinny-troia Story # 3: Insurers run from ransomware cover as losses mount – https://www.reuters.com/markets/europe/insurers-run-ransomware-cover-losses-mount-2021-11-19/ Story # […] The post Talkin’ About Infosec News – 11/26/2021 appeared first on Black Hills Information Security. (00:00) - PreShow Banter™ — Fixing Compressors (02:13) - BHIS - Talkin' Bout [infosec] News 2021-11-22 (05:31) - Story # 1: Chinese Team Up With Russia To Launch US Cybersecurity Assault – https://hothardware.com/news/chinese-hackers-team-up-with-russian-ransomware-gang (12:23) - Story # 2: The FBI Got Hacked Over a Beef With a Guy Named Vinny? – https://www.thedailybeast.com/was-fbi-email-hack-just-an-elaborate-troll-of-a-guy-named-vinny-troia (18:32) - Story # 3: Insurers run from ransomware cover as losses mount – https://www.reuters.com/markets/europe/insurers-run-ransomware-cover-losses-mount-2021-11-19/ (23:27) - Story # 4: Ransomware gangs rich enough to buy zero-days – https://www.zdnet.com/article/ransomware-gangs-are-now-rich-enough-to-buy-zero-day-flaws-say-researchers/ (35:06) - Story # 5: FBI Alert on FatPipe VPN Zero-Day - https://thehackernews.com/2021/11/fbi-issues-flash-alert-on-actively.html (45:31) - Story # 6: Debunking worthless “security” practices – https://arstechnica.com/information-technology/2021/11/securing-your-digital-life-part-4/

ORIGINALLY AIRED ON NOVEMBER 15, 2021 Articles discussed in this episode: 00:00 – BHIS – Talkin’ Bout [infosec] News 2021-11-15 02:22 – Story # 1: Robinhood data breach – https://www.bleepingcomputer.com/news/security/robinhood-discloses-data-breach-impacting-7-million-customers/ 07:27 – Story # 2: Trojanized IDA Pro – https://thehackernews.com/2021/11/north-korean-hackers-target.html 09:48 – Story # 3: stealing data today, quantum computers tomorrow – https://www.technologyreview.com/2021/11/03/1039171/hackers-quantum-computers-us-homeland-security-cryptography/ 18:42 – Story # 4: DDR4 […] The post Talkin’ About Infosec News – 11/17/2021 appeared first on Black Hills Information Security. (00:00) - BHIS - Talkin' Bout [infosec] News 2021-11-15 (02:22) - Story # 1: Robinhood data breach – https://www.bleepingcomputer.com/news/security/robinhood-discloses-data-breach-impacting-7-million-customers/ (07:27) - Story # 2: Trojanized IDA Pro – https://thehackernews.com/2021/11/north-korean-hackers-target.html (09:48) - Story # 3: stealing data today, quantum computers tomorrow – https://www.technologyreview.com/2021/11/03/1039171/hackers-quantum-computers-us-homeland-security-cryptography/ (18:42) - Story # 4: DDR4 Rowhammer technique – https://arstechnica.com/gadgets/2021/11/ddr4-memory-is-even-more-susceptible-to-rowhammer-attacks-than-anyone-thought/ (26:58) - Story # 5: Secure software supply chain – https://sysdig.com/blog/software-supply-chain-security/ (33:26) - Story # 6: New Android Spyware – https://threatpost.com/new-android-spyware-poses-pegasus-like-threat/176155/ (43:46) - Story # 7: Hoax Email Abused Coding in FBI Website – https://krebsonsecurity.com/2021/11/hoax-email-blast-abused-poor-coding-in-fbi-website/ (55:23) - Story # 8: DomainTools Acquires Farsight Security – https://www.infosecurity-magazine.com/news/domaintools-acquires-farsight/

ORIGINALLY AIRED ON November 08, 2021 Articles discussed in this episode: 00:00 – PreShow Banter™ — God’s Waiting Room 03:08 – BHIS – Talkin’ Bout [infosec] News 2021-11-08 04:50 – Story # 1: JavaScript in Excel – https://techcrunch.com/2021/11/02/microsoft-brings-javascript-to-excel/ 09:12 – Story # 2: Bots That Steal 2FA Codes – https://www.vice.com/en/article/y3vz5k/booming-underground-market-bots-2fa-otp-paypal-amazon-bank-apple-venmo 13:00 – Story # 3: US bans trade with NSO Group – https://www.engadget.com/us-trade-ban-nso-group-145347522.html 22:34 – Story # 4: US House Passes Acts to Help SMBs with Cybersecurity – https://www.infosecurity-magazine.com/news/house-helps-smbs-cybersecurity/ 33:34 – Story # 5: Hackers Apologize to Arab Royal Families – https://www.vice.com/en/article/n7nw8m/conti-ransomware-hackers-apologize-to-arab-royal-families-for-leaking-their-data We are self-publishing free Infosec Zines called PROMPT#. PROMPT# will contain:  Infosec articles  Challenging puzzles  Comic book based on real-life hacking adventures  Coloring contests  Bonus Backdoors & Breaches Consultant Cards (print version only)  Other stuffs  You can check out current and upcoming issues here: https://www.blackhillsinfosec.com/prompt-zine/  (00:00) - PreShow Banter™ — Gods Waiting Room (03:08) - BHIS - Talkin' Bout [infosec] News 2021-11-08 (04:50) - Story # 1: JavaScript in Excel - https://techcrunch.com/2021/11/02/microsoft-brings-javascript-to-excel/ (09:12) - Story # 2: Bots That Steal 2FA Codes - https://www.vice.com/en/article/y3vz5k/booming-underground-market-bots-2fa-otp-paypal-amazon-bank-apple-venmo (13:00) - Story # 3: US bans trade with NSO Group - https://www.engadget.com/us-trade-ban-nso-group-145347522.html (22:34) - Story # 4: US House Passes Acts to Help SMBs with Cybersecurity - https://www.infosecurity-magazine.com/news/house-helps-smbs-cybersecurity/ (33:34) - Story # 5: Hackers Apologize to Arab Royal Families - https://www.vice.com/en/article/n7nw8m/conti-ransomware-hackers-apologize-to-arab-royal-families-for-leaking-their-data