Player FM - Internet Radio Done Right
Checked 6d ago
Added three years ago
Content provided by Black Hills Information Security. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Black Hills Information Security or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.
Player FM - Podcast App
Go offline with the Player FM app!
Go offline with the Player FM app!
Podcasts Worth a Listen
SPONSORED
N
Now On Netflix
In a difficult week for Los Angeles, we hope this episode can provide a little bit of respite. Jessica Shaw is joined by Keely Flaherty from Tudum for a deeper dive into the gripping limited series, American Primeval , starring Betty Gilpin and Taylor Kitsch. Then also talk about the delightful return of Cameron Diaz and Jamie Foxx in the new action comedy, Back in Action , directed by Seth Gordon. Follow Netflix Podcasts for more and read about all of the titles featured on today’s episode exclusively on Tudum.com .…
Talkin' About [Infosec] News, Powered by Black Hills Information Security
Mark all (un)played …
Manage series 2996536
Content provided by Black Hills Information Security. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Black Hills Information Security or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.
Download and listen to our weekly infosec podcast where we discuss the latest attacks, breaches, and how they happened and why. We’re a team of penetration testers (ethical hackers) and friends that love how new technology can be broken and made to do things it was never intended to do.
…
continue reading
21 episodes
Mark all (un)played …
Manage series 2996536
Content provided by Black Hills Information Security. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Black Hills Information Security or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.
Download and listen to our weekly infosec podcast where we discuss the latest attacks, breaches, and how they happened and why. We’re a team of penetration testers (ethical hackers) and friends that love how new technology can be broken and made to do things it was never intended to do.
…
continue reading
21 episodes
All episodes
×T
Talkin' About [Infosec] News, Powered by Black Hills Information Security
00:00:00 - PreShow Banter™ — An RGB State of Mind 00:07:20 - BHIS - Talkin’ Bout [infosec] News 2025-01-13 00:10:24 - Story # 1: A Day in the Life of a Prolific Voice Phishing Crew 00:18:39 - Story # 2: Dental group lied through teeth about data breach, fined $350,000 00:25:49 - Story # 3: Hacker claims breach of US location tracking company Gravy Analytics 00:27:48 - Story # 4: License Plate Readers Are Leaking Real-Time Video Feeds and Vehicle Data 00:33:19 - Story # 5: US Cyber Trust Mark launches as the Energy Star of smart home security 00:43:08 - Story # 6: Hackers are exploiting a new Ivanti VPN security bug to hack into company networks 00:45:09 - Story # 7: Hacker Broke into ‘Path of Exile 2’ Admin Account, Hijacked Wave of Characters 00:47:36 - Story # 8: Information Stealer Masquerades as LDAPNightmare (CVE-2024-49113) PoC Exploit 00:54:47 - Story # 9: Ransomware crew abuses AWS native encryption 01:00:41 - Story # 10: Cannabis company Stiiizy says hackers accessed customers’ ID documents…
T
Talkin' About [Infosec] News, Powered by Black Hills Information Security
00:00:00 - PreShow Banter™ — Coffee With Wade Wells 00:05:41 - BHIS - Talkin’ Bout [infosec] News 2025-01-06 00:06:45 - Story # 1: BeyondTrust says hackers breached Remote Support SaaS instances 00:13:18 - Things Continued to be ignored in 2025 00:24:39 - Story # 2: Classified fighter jet specs leaked on War Thunder – again 00:28:26 - Story # 3: New Proposed HIPAA Security Rule Changes 00:34:33 - Story # 4: The Breachies 2024: The Worst, Weirdest, Most Impactful Data Breaches of the Year 00:35:47 - Story # 5: AT&T and Verizon say networks secure after Salt Typhoon breach 00:37:20 - Story # 6: Net Neutrality Rules Struck Down by Appeals Court 00:41:56 - Story # 7: U.S. Army Soldier Arrested in AT&T, Verizon Extortions 00:45:28 - Story # 8: New U.S. DoJ Rule Halts Bulk Data Transfers to Adversarial Nations to Protect Privacy 00:48:38 - Story # 9: Meta’s AI Profiles Are Indistinguishable From Terrible Spam That Took Over Facebook 00:50:42 - Story # 9b: Meta deletes AI character profiles after backlash, racism accusations 00:51:40 - Story # 10: Watch: Tiny robot ‘kidnaps’ 12 big Chinese bots from a Shanghai showroom, shocks world 00:55:27 - Story # 11: China Arrests 4 Who Weaponized ChatGPT for Ransomware Attacks 00:58:42 - Story # 12: Man Accused of SQL Injection Hacking Gets 69-Month Prison Sentence 01:01:22 - Story # 13: Germany cuts hacker access to 30,000 devices infected with BadBox malware…
T
Talkin' About [Infosec] News, Powered by Black Hills Information Security
00:00 - PreShow Banter™ — ChickenSec News Part 3 12:23 - BHIS - Talkin’ Bout [infosec] News 2024-12-16 14:48 - Story # 1: $50 Million Radiant Capital Heist Blamed on North Korean Hackers 20:30 - Story # 2: Trump administration wants to go on cyber offensive against China 32:53 - Story # 3: Krispy Kreme cyberattack impacts online orders and operations 43:02 - Story # 4: Arctic Wolf and BlackBerry Announce Acquisition Agreement for Cylance 52:02 - Story # 5: Europol announces takedown of major DDoS-for-hire network 56:50 - Story # 6: Data breach at Senior Dating website spills info of 765,000 users 58:46 - Story # 7: US sanctions Chinese firm for hacking firewalls in ransomware attacks…
T
Talkin' About [Infosec] News, Powered by Black Hills Information Security
00:00 - PreShow Banter™ — A Better Mike 04:46 - BHIS - Talkin’ Bout [infosec] News 2024-12-09 05:43 - Story # 1: FBI Warns iPhone And Android Users—Stop Sending Texts 23:36 - Story # 2: US agency proposes new rule blocking data brokers from selling Americans’ sensitive personal data 42:55 - Story # 3: Vodka maker Stoli files for bankruptcy in US after ransomware attack 46:48 - Story # 4: British hospitals hit by cyberattacks still battling to get systems back online…
T
Talkin' About [Infosec] News, Powered by Black Hills Information Security
00:00:00 - PreShow Banter™ — C Squad 00:11:03 - BHIS - Talkin’ Bout [infosec] News 2024-12-02 00:15:43 - Story # 1: Gaming Engines: An Undetected Playground for Malware Loaders - Check Point Research 00:30:41 - Story # 2: FTC finds that smart-device makers fail to make clear how long their products will be supported 00:44:47 - Story # 3: US senators propose law to require bare minimum security standards 00:46:35 - Story # 4: Starbucks baristas can’t view their schedules after ransomware attack on vendor 01:04:26 - Story # 5: Volunteer DEF CON hackers dive into America’s leaky water infrastructure 01:08:45 - Shameless Plugs…
T
Talkin' About [Infosec] News, Powered by Black Hills Information Security
00:00:00 - PreShow Banter™ — Discordgate 00:09:24 - BHIS - Talkin’ Bout [infosec] News 2024-11-25 00:10:46 - Story # 1: DOJ says Google must sell Chrome to crack open its search monopoly 00:12:08 - Story # 1b: DOJ’s staggering proposal would hurt consumers and America’s global technological leadership 00:19:16 - Story # 2: The Nearest Neighbor Attack: How A Russian APT Weaponized Nearby Wi-Fi Networks for Covert Access 00:24:37 - Story # 3: Palo Alto Networks tackles firewall-busting zero-days with critical patches 00:25:46 - Discordgate Follow Up 00:26:26 - Story # 4: Enhancing Cyber Resilience: Insights from CISA Red Team Assessment of a US Critical Infrastructure Sector Organization 00:31:08 - Story # 5: Fintech giant Finastra investigates data breach after SFTP hack 00:34:01 - Story # 6: CFPB Finalizes Rule on Federal Oversight of Popular Digital Payment Apps to Protect Personal Data, Reduce Fraud, and Stop Illegal “Debanking” 00:38:49 - Story # 7: T-Mobile finally managed to thwart a data breach before it occured 00:40:22 - Story # 8: D-Link urges users to retire VPN routers impacted by unfixed RCE flaw 00:43:07 - Story # 9: US seizes PopeyeTools cybercrime marketplace, charges administrators 00:46:19 - Story # 10: Razzlekhan, crypto’s most embarrassing rapper, is going to prison 00:48:31 - Story # 10b: Netflix has a perfectly timed Razzlekhan doc coming out in December 00:50:10 - Story # 11: Microsoft Defender Is Not Enough Anymore—This Malware Gets Around It 00:55:11 - Story # 12: Microsoft president asks Trump to “push harder” against Russian hacks 00:57:02 - Story # 13: Hackers Breach Andrew Tate’s Online ‘University,’ Exposing 800,000 Users 01:00:36 - Story # 14: 7-Zip affected by dangerous vulnerability: users must update the app manually 01:01:31 - Story # 15: Microsoft disrupts ONNX phishing-as-a-service infrastructure 01:03:07 - Story # 16: US charges five linked to Scattered Spider cybercrime gang 01:04:25 - Plug: Secure Code Summit 2024…
T
Talkin' About [Infosec] News, Powered by Black Hills Information Security
00:00 - PreShow Banter™ — Yacht Doc 07:40 - BHIS - Talkin’ Bout [infosec] News 2024-11-18 08:49 - Story # 1: Mystery Palo Alto Networks hijack-my-firewall zero-day now officially under exploit 16:02 - Story # 2: CISA Director Jen Easterly to depart agency on January 20 19:26 - Story # 3: Fake North Korean IT Worker Linked to BeaverTail Video Conference App Phishing Attack 28:44 - Story # 4: T-Mobile hacked in massive Chinese breach of telecom networks, WSJ reports 30:55 - Story # 4b: T-Mobile confirms it was hacked in recent wave of telecom breaches 33:03 - Story # 5: An Interview With the Target & Home Depot Hacker 40:04 - Story # 6: Hacker gets 10 years in prison for extorting US healthcare provider 42:47 - Story # 7: Ransomware fiends boast they’ve stolen 1.4TB from US pharmacy network 44:21 - Story # 8: A surge in Pro-Russia cyberattacks after decision to monitor North Korean Troops in Ukraine 45:23 - Story # 9: 23andMe cuts 40% of its workforce and discontinues therapeutics division 50:38 - Story # 10: FBI, CISA, and NSA reveal most exploited vulnerabilities of 2023 56:45 - CPTC - Education Through Competition…
T
Talkin' About [Infosec] News, Powered by Black Hills Information Security
00:00 - PreShow Banter™ — The Old and The New 02:27 - BHIS - Talkin’ Bout [infosec] News 2024-11-11 03:44 - Story # 1: Mattel pulls thousands of ‘Wicked’ dolls off shelves after printing adult website on packaging 08:03 - Story # 2: Office apps crash on Windows 11 24H2 PCs with CrowdStrike antivirus 11:41 - Story # 3: Mislabeled patch sends Windows Server 2022 admins on unwanted upgrade to 2025 16:49 - Story # 4: Suspected Snowflake Hacker Arrested in Canada 18:26 - Story # 5: Interpol Cybercrime Sweep Takes Down 22,000 IP Addresses, Arrests 41 29:47 - Story # 6: Google Cloud to mandate MFA for all users in 2025 41:30 - Story # 7: Cisco scores a perfect CVSS 10 with critical flaw in its wireless system 49:26 - Story # 8: H.I.G. Capital and Thoma Bravo to Acquire CompTIA Brand and Products 59:05 - SANS Holiday Hack Challenge™ 2024…
T
Talkin' About [Infosec] News, Powered by Black Hills Information Security
00:00:00 - PreShow Banter™ — The Grey Times 00:04:33 - BHIS - Talkin’ Bout [infosec] News 2024-11-04 00:05:54 - Story # 1: Midnight Blizzard conducts large-scale spear-phishing campaign using RDP files 00:16:45 - Story # 2: Follow Up - 5 Things To Know On Delta’s Lawsuit Against CrowdStrike 00:17:43 - Story # 2b: CrowdStrike Sues Delta: 5 Key Takeaways 00:22:04 - Story # 3: Russian charged by U.S. for creating RedLine infostealer malware 00:22:59 - Story # 3b: How a series of opsec failures led US authorities to the alleged developer of the Redline password-stealing malware 00:28:09 - Story # 4: Fired Disney staffer accused of hacking menu to add profanity, wingdings, removes allergen info 00:30:02 - Story # 4b: ‘We strive to put humanity above all’: Disney drops arbitration demand over wrongful death lawsuit after woman died from fatal food allergy 00:37:10 - Story # 5: OCR Announces First Financial Penalty Under HIPAA Risk Analysis Enforcement Initiative 00:44:54 - Story # 6: Security researchers found a serious zero-click bug in Synology’s Photos app 00:50:10 - Story # 7: Inside a Firewall Vendor’s 5-Year War With the Chinese Hackers Hijacking Its Devices 00:52:21 - Story # 8: Microsoft wants $30 if you want to delay Windows 11 switch 01:00:03 - Story # 9: Colorado Secretary of State posted spreadsheet with voting system passwords…
T
Talkin' About [Infosec] News, Powered by Black Hills Information Security
00:00:00 - PreShow Banter™ — Sarsaparilla 00:05:50 - BHIS - Talkin’ Bout [infosec] News 2024-10-28 00:06:46 - Story # 1: AWS, Azure auth keys found in Android and iOS apps used by millions 00:15:02 - Story # 2: Burning Zero Days: FortiJump FortiManager vulnerability used by nation state in espionage via MSPs 00:29:03 - Story # 3: Delta officially launches lawyers at $500M CrowdStrike problem 00:40:60 - Story # 4: New Rules for US National Security Agencies Balance AI’s Promise With Need to Protect Against Risks 00:46:25 - Story # 4b: CISA proposes new security requirements to protect govt, personal data 00:51:03 - Story # 5: Largest Retail Breach in History: 350 Million “Hot Topic” Customers’ Personal & Payment Data Exposed — As a Result of Infostealer Infection 00:55:35 - Story # 6: Throne’s toilet camera takes pictures of your poop 01:04:57 - A Community Support Moment - https://www.crisistextline.org…
T
Talkin' About [Infosec] News, Powered by Black Hills Information Security
00:00:00 - PreShow Banter™ — Log Con 00:11:41 - BHIS - Talkin’ Bout [infosec] News 2024-10-21 00:12:51 - Story # 1: Internet Archive exposed again – this time through Zendesk 00:14:57 - Story # 1b: Hackers steal information from 31 million Internet Archive users 00:20:42 - Story # 2: Sophos buys Secureworks for $859 mln to beef up cybersecurity portfolio 00:24:21 - Story # 3: USDoD hacker behind National Public Data breach arrested in Brazil 00:27:12 - Story # 4: Debunking Hype: China Hasn’t Broken Military Encryption With Quantum 00:32:14 - Story # 5: Microsoft said it lost weeks of security logs for its customers’ cloud products 00:35:03 - Story # 6: Should We Chat, Too? FAQ 00:40:05 - Story # 7: More than two dozen countries have used internet outages to sway elections 00:43:50 - Story # 8: Pokemon dev Game Freak confirms breach after stolen data leaks online 00:46:32 - Story # 9: Hackers made robot vacuums randomly yell racial slurs 00:49:19 - Story # 9b: We hacked a robot vacuum — and could watch live through its camera 00:50:19 - Story # 10: The government is getting fed up with ransomware payments fueling endless cycle of cyberattacks 00:54:55 - Story # 11: Google’s Chrome Browser Starts Disabling uBlock Origin 01:01:00 - WWHF Recorvery…
T
Talkin' About [Infosec] News, Powered by Black Hills Information Security
1 2024-09-30 — Cast of Special Characters 1:12:52
1:12:52
Play Later
Play Later
Lists
Like
Liked
1:12:5200:00:00 - PreShow Banter™ — Cast of Special Characters 00:06:37 - BHIS - Talkin’ Bout [infosec] News 2024-09-30 00:08:06 - Story # 1: CUPS flaws enable Linux remote code execution, but there’s a catch 00:23:40 - Story # 2: US Capitol Hit by Massive Dark Web Cyber Attack - Newsweek 00:27:40 - Story # 2b: ‘I’m a black NAZI!’: NC GOP nominee for governor made dozens of disturbing comments on porn forum 00:35:57 - Story # 3: NIST proposes barring some of the most nonsensical password rules 00:47:01 - Story # 3b: Why Two-Factor Authentication Is So Important - Teen Vogue 00:54:04 - Story # 4: Hacker plants false memories in ChatGPT to steal user data in perpetuity 01:00:42 - Story # 5: Millions of Vehicles Could Be Hacked and Tracked Thanks to a Simple Website Bug 01:02:54 - Story # 6: Massive E-Learning Platform Udemy Gave Teachers a Gen AI ‘Opt-Out Window’. It’s Already Over.…
T
Talkin' About [Infosec] News, Powered by Black Hills Information Security
00:00 - PreShow Banter™ — Plane Talk 05:50 - BHIS - Talkin’ Bout [infosec] News 2024-09-23 06:16 - A SANS Difference Maker Award Finalist 09:47 - Story # 1: Pagers attack brings to life long-feared supply chain threat 24:08 - Story # 2: Recaptcha Phish - John Hammond 25:49 - Story # 2b: Clever ‘GitHub Scanner’ campaign abusing repos to push malware 30:05 - Story # 3: Lazarus Group Targets Developers in Fresh VMConnect Campaign 35:22 - Story # 4: LinkedIn Addresses User Data Collection for AI Training 37:40 - Story # 5: Disney ditching Slack after massive July data breach 41:42 - Story # 6: FTC exposes massive surveillance of kids, teens by social media giants 51:35 - Story # 7: Kaspersky deletes itself, installs UltraAV antivirus without warning…
T
Talkin' About [Infosec] News, Powered by Black Hills Information Security
00:00 - PreShow Banter™ — Pour Over News 06:01 - BHIS - Talkin’ Bout [infosec] News 2024-09-16 07:14 - Story # 1: Fortinet confirms data breach after hacker claims to steal 440GB of files 15:37 - Story # 2: Snowflake slams ‘more MFA’ button again – months after Ticketmaster, Santander breaches 21:30 - Story # 3: Omnipresent AI cameras will ensure good behavior, says Larry Ellison 28:11 - Story # 4: Mastercard bolsters threat intelligence capabilities with $2.65 billion deal for Recorded Future 34:27 - Story # 5: Cyber insurance set for explosive growth 40:20 - Story # 6: 23andMe will pay $30 million to settle 2023 data breach lawsuit 45:25 - Story # 7: Google faces EU investigation over AI data compliance 50:35 - Story # 8: Rogue WHOIS server gives researcher superpowers no one should ever have…
T
Talkin' About [Infosec] News, Powered by Black Hills Information Security
1 SPECIAL PRESENTATION: Backdoors & Breaches Live 31:23
31:23
Play Later
Play Later
Lists
Like
Liked
31:2300:00 - Introduction 01:22 - The Scenario 02:50 - First Steps 03:48 - Endpoint Analysis Roll 04:22 - Logon Scripts Were installed 05:09 - I.R. Team Introductions 07:17 - Second Step 10:32 - Network Threat Hunting Roll 11:36 - Third Step 15:12 - Anyway Here’s Firewall Roll 15:43 - Fourth Step 18:26 - SIEM Roll 19:41 - Fifth Step 20:47 - UEBA Roll 21:19 - Senario Recap 22:20 - Senario Plausibility? 25:51 - Wrap-up Takeaways…
Welcome to Player FM!
Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.