Risky Business is a weekly information security podcast featuring news and in-depth interviews with industry luminaries. Launched in February 2007, Risky Business is a must-listen digest for information security pros. With a running time of approximately 50-60 minutes, Risky Business is pacy; a security podcast without the waffle.
https://risky.biz/
Risky Business #484 -- What's up with the new 702?
On this week’s show we’ll be taking a look at the freshly re-authorised section 702 of the FISA act. As you’ll soon hear, the updated section now allows the FBI to search data captured under 702 programs for evidence against US citizens in a bunch of circumstances, including, drum roll please, during investigations with a cyber security tilt.
The co-founder of the Lawfare blog, law professor and Associate Dean for Academic Affairs at the University of Texas Ausin, Bobby Chesney, will be along in this week’s feature to talk about all of that!
In this week’s feature interview we’re joined by Haroon Meer of Thinkst Canary. Haroon will be along to talk about the effectiveness of various honey tokens. Thinkst has been playing around with this stuff for a couple of years now, and Haroon will be joining us to talk about how they’ll will wind up being used in an enterprise context. How do you get detection canaries to scale? That’s coming up later.
Adam Boileau, as always, pops in to discuss the week’s news. It’s been a relatively calm week, but we’ve got some interesting news about botched Spectre patches and a discussion around a sensational report about Kaspersky Lab published by Buzzfeed in conjunction with Russian outlet Meduza.
The show notes/links are below, and you can follow Adam or Patrick on Twitter if that’s your thing.
Show notes Linus Torvalds Thinks the Linux Spectre Patches are "UTTER GARBAGE" Dell Advising All Customers To Not Install Spectre BIOS Updates HP Reissuing BIOS Updates After Intel Meltdown and Spectre Updates Intel Halts Spectre/Meltdown Patching for Broadwell and Haswell Systems | Threatpost | The first stop for security news CoinReport Teetering Tether - CoinReport Evidence is mounting that much of the value in BTC may be artificial – James Crypto Hackers have stolen millions during the ICO craze, report says The $1.5b Bitcoin heist: Hackers have snatched 14 per cent of cryptocurrencies Inside The Fight For The Soul Of Kaspersky Lab Electoral Commission spent up to $8.6m counting ballots by hand after security concerns Facebook calls for cybersecurity research proposals as part of new grant program Less than 10 percent of Google users turn on two-factor authentication Hackers linked to Lebanese government caught in global cyber-espionage operation Google awards record $112,500 bug bounty for Android exploit chain Severe Electron framework vulnerability impacts apps like Skype and Slack Malicious Chrome extension is next to impossible to manually remove | Ars Technica Tinder's Lack of Encryption Lets Strangers Spy on Your Swipes | WIRED Blizzard Fixes DNS Rebinding Flaw that Put All the Company's Users at Risk British 15-year-old gained access to intelligence operations in Afghanistan and Iran by pretending to be head of CIA, court hears Canarytokens Canary — know when it matters