Risky Business is a weekly information security podcast featuring news and in-depth interviews with industry luminaries. Launched in February 2007, Risky Business is a must-listen digest for information security pros. With a running time of approximately 50-60 minutes, Risky Business is pacy; a security podcast without the waffle.
https://risky.biz/
Risky Business #513 -- The DPRK indictment, BA gets owned, Webauthn issues and more
This edition of the show features Adam Boileau and Patrick Gray discussing the week’s security news:
- The DPRK indictment and subsequent fall out
- British Airways gets owned
- Webauthn hits some roadblocks
- The latest action from Washington DC
- Trend Micro has a bad time
- Tesla pays out for key-fob clone attack
- Tor browser 0day hits Twitter
- Much, much more
We’ve got a great sponsor interview for you this week – we’ll be joined by Haroon Meer of Thinkst Canary. They did something unusual over the last couple of weeks – they removed a feature in their Canary product. We’ll be talking about that, and also about the tendency for security software to be too complicated and configurable.
Links to everything that we discussed are below, including the discussions that were edited out. (That’s why there are extras.) You can follow Patrick or Adam on Twitter if that’s your thing.
Show notes U.S. charges North Korean hacker over Sony, WannaCry incidents US indicts North Korean agent for WannaCry, Sony attacks [Updated] | Ars Technica Analysts expect Lazarus Group to evolve, clean up opsec Don't Punish A North Korean Hacker Just For Following Orders The North Korean Hacker Charges: Line-Drawing as a Necessary but not Sufficient Part of Deterrence - Lawfare British Airways breach caused by the same group that hit Ticketmaster | ZDNet Card-Skimming Malware Campaign Hits Dozens of Sites Daily Worries arise about security of new WebAuthn protocol | ZDNet A call for principle-based international agreements to govern law enforcement access to data - Microsoft on the Issues Exclusive: Trump to target foreign meddling in U.S. elections with sanctions order - sources | Reuters House passes deterrence bill that would call out nation-state hackers First IoT security bill reaches governor's desk in California | ZDNet DHS supply chain and CDM bills pass the House Former Facebook security chief Alex Stamos: Being a CSO can be a ‘crappy job’ | TechCrunch Alex Stamos: Pretty clear GRU's goal was to weaken a future Clinton presidency | ZDNet 'We simply haven't done enough': Facebook and Twitter execs testify on foreign influence campaigns Trend Micro blames data collection issue on code library re-use Apple Removes Top Security App For Stealing Data and Sending it to China Tesla offers 'goodwill' to security researchers hacking its cars Hackers Can Steal a Tesla Model S in Seconds by Cloning Its Key Fob | WIRED U.S. extradites Russian accused in hack of JPMorgan Chase Standard to protect against BGP hijack attacks gets first official draft | ZDNet Exploit Affecting Tor Browser Burned In A Tweet Exploit vendor drops Tor Browser zero-day on Twitter | ZDNet Tor launches official anonymous Android browser US government releases post-mortem report on Equifax hack | ZDNet GAO-18-559, DATA PROTECTION: Actions Taken by Equifax and Federal Agencies in Response to the 2017 Breach Thinkst Canary on Twitter: "This week we totally announced an un-feature. We are removing SNMP as an available service on Canaries. (Turns out its signal to noise ratio is terribad, and everyone we’ve ever caught through SNMP also tripped over other services too)… https://t.co/kiNx6GZPtj"