- 202
- 499 822
Andrew Kalat
United States
Registrace 13. 11. 2006
Defensive Security Podcast Episode 278
In episode 278 of the Defensive Security Podcast, Jerry Bell and Andrew Kalat discuss various recent cybersecurity topics. The episode starts with light-hearted banter about vacations before diving into the main topics. Key discussions include a new vulnerability in YubiKey that requires sophisticated physical attacks, resulting in a low overall risk but sparking debate about hardware firmware updates for security keys. Another key topic is Verkada being fined for CAN-SPAM Act violations and lack of proper security measures, including exposing 150,000 live camera feeds. The hosts also explore reports showing diverging trends in security budgets and spending, with some organizations reducing budgets while overall industry spending increases. They highlight the need for effective use of security products and potential over-reliance on third-party services. The episode also delves into the growing threat of deepfake scams targeting businesses, emphasizing the need for robust authentication policies and awareness training to mitigate risks. Finally, the hosts reflect on the broader challenges of balancing security needs with budget constraints in an evolving threat landscape.
Links:
www.bleepingcomputer.com/news/security/new-eucleak-attack-lets-threat-actors-clone-yubikey-fido-keys/
www.bleepingcomputer.com/news/security/verkada-to-pay-295-million-for-alleged-can-spam-act-violations/
www.cybersecuritydive.com/news/iran-cyberattacks-us-critical-infrastructure/725877/
www.theregister.com/2024/09/05/security_spending_boom_slowing/ vs www.cybersecuritydive.com/news/infosec-spending-surge-gartner/726081/ www.cybersecuritydive.com/news/deepfake-scam-businesses-finance-threat/726043/
Transcript
Jerry: All right, here we go. Today is Saturday, September 7th, 2024. And this is episode 278 of the defensive security podcast. And my name is Jerry Bell. And joining me today as always is Mr. Andrew Kalat.
Andrew: Good evening. Jerry, how are you? Kind sir.
Jerry: Doing fantastic. How are you?
Andrew: I’m great. Just got back from a little vacation, which was lovely. Saw a lot of Canada, saw some whales, saw some trains. It was
Jerry: Did you see any moose?
Andrew: Oddly we did not see a single moose, which was a bummer. We crossed from Toronto to Vancouver on a train and didn’t see a single moose.
I saw a metric crap ton of ducks though. I couldn’t believe literally in the thousands. I don’t know why.
Jerry: The geese are ducks. Cause
Andrew: We saw a
Jerry: geese are pretty scary.
Andrew: We were sealed away from them, so we were protected.
Jerry: I don’t know.
Andrew: hard to
Jerry: I don’t know. I w I wouldn’t I wouldn’t bet my life on that.
Andrew: But yeah, we saw a decent chunk of gooses, but mostly ducks.
Jerry: Good deal.
Andrew: Indeed. I’m good. Now, catching back up on work.
Jerry: And you’re back.
Andrew: And you are apparently the Southern Command Center.
Jerry: I am for another another day or two.
Andrew: Nice. Never sucks to be at the beach.
Jerry: It definitely does not. No, no bad days at the beach.
Andrew: Nice.
Jerry: All right. A reminder before we get started that the thoughts and opinions we express in the show are ours and do not represent those of our employers.
Andrew: Past, present, or future.
Jerry: That’s right. So our first topic or first story from today comes from bleeping computer. And this one was a bit of a, Oh, what’s the best, a bit controversial, best way to say it, controversial on on the social media sites over the past week. And the title is new leak. I’m not even going to try to pronounce that attack.
Let’s threat actors, clone, Yubikey, Fido keys.
Andrew: Shut down the internet. Shut
Jerry: Shut it down, just throw away your Yubikeys, it’s over.
Andrew: And apparently it can happen from 12 miles away with trivial equipment, right?
Jerry: No, actually, they the bad actor here actually has to steal it and it takes some pretty sophisticated knowledge and equipment. But apparently the equipment they allege are about, costs about 11, 000. However, the the YubiKey actually has to be disassembled, like they actually have to take the protective cover, protective covering off, and they have to instrument it and, and then they’re able to leverage a vulnerability in an Infineon chip that’s contained in these YubiKeys to extract the private key. And so it’s not a, it’s not a trivial attack. You have to lose physical possession of the token for some period of time. But if you were, The victim of this, it is possible for someone, some adversary, who was willing to put in the time and effort could clone your key unbeknownst to you, and then find a way to reconstitute Packaging and slide it back into your drawer, and you would be none the wiser.
Andrew: All seriousness, I think this has a very low likelihood of impacting the average listener t...
Links:
www.bleepingcomputer.com/news/security/new-eucleak-attack-lets-threat-actors-clone-yubikey-fido-keys/
www.bleepingcomputer.com/news/security/verkada-to-pay-295-million-for-alleged-can-spam-act-violations/
www.cybersecuritydive.com/news/iran-cyberattacks-us-critical-infrastructure/725877/
www.theregister.com/2024/09/05/security_spending_boom_slowing/ vs www.cybersecuritydive.com/news/infosec-spending-surge-gartner/726081/ www.cybersecuritydive.com/news/deepfake-scam-businesses-finance-threat/726043/
Transcript
Jerry: All right, here we go. Today is Saturday, September 7th, 2024. And this is episode 278 of the defensive security podcast. And my name is Jerry Bell. And joining me today as always is Mr. Andrew Kalat.
Andrew: Good evening. Jerry, how are you? Kind sir.
Jerry: Doing fantastic. How are you?
Andrew: I’m great. Just got back from a little vacation, which was lovely. Saw a lot of Canada, saw some whales, saw some trains. It was
Jerry: Did you see any moose?
Andrew: Oddly we did not see a single moose, which was a bummer. We crossed from Toronto to Vancouver on a train and didn’t see a single moose.
I saw a metric crap ton of ducks though. I couldn’t believe literally in the thousands. I don’t know why.
Jerry: The geese are ducks. Cause
Andrew: We saw a
Jerry: geese are pretty scary.
Andrew: We were sealed away from them, so we were protected.
Jerry: I don’t know.
Andrew: hard to
Jerry: I don’t know. I w I wouldn’t I wouldn’t bet my life on that.
Andrew: But yeah, we saw a decent chunk of gooses, but mostly ducks.
Jerry: Good deal.
Andrew: Indeed. I’m good. Now, catching back up on work.
Jerry: And you’re back.
Andrew: And you are apparently the Southern Command Center.
Jerry: I am for another another day or two.
Andrew: Nice. Never sucks to be at the beach.
Jerry: It definitely does not. No, no bad days at the beach.
Andrew: Nice.
Jerry: All right. A reminder before we get started that the thoughts and opinions we express in the show are ours and do not represent those of our employers.
Andrew: Past, present, or future.
Jerry: That’s right. So our first topic or first story from today comes from bleeping computer. And this one was a bit of a, Oh, what’s the best, a bit controversial, best way to say it, controversial on on the social media sites over the past week. And the title is new leak. I’m not even going to try to pronounce that attack.
Let’s threat actors, clone, Yubikey, Fido keys.
Andrew: Shut down the internet. Shut
Jerry: Shut it down, just throw away your Yubikeys, it’s over.
Andrew: And apparently it can happen from 12 miles away with trivial equipment, right?
Jerry: No, actually, they the bad actor here actually has to steal it and it takes some pretty sophisticated knowledge and equipment. But apparently the equipment they allege are about, costs about 11, 000. However, the the YubiKey actually has to be disassembled, like they actually have to take the protective cover, protective covering off, and they have to instrument it and, and then they’re able to leverage a vulnerability in an Infineon chip that’s contained in these YubiKeys to extract the private key. And so it’s not a, it’s not a trivial attack. You have to lose physical possession of the token for some period of time. But if you were, The victim of this, it is possible for someone, some adversary, who was willing to put in the time and effort could clone your key unbeknownst to you, and then find a way to reconstitute Packaging and slide it back into your drawer, and you would be none the wiser.
Andrew: All seriousness, I think this has a very low likelihood of impacting the average listener t...
zhlédnutí: 7
Video
Defensive Security Podcast Episode 277
zhlédnutí 61Před dnem
In this episode, Jerry Bell and Andrew Kalat discuss various topics in the cybersecurity landscape, including the influence of cyber insurance on risk reduction for companies and how insurers offer guidance to lower risks. They touch upon the potential challenges with cybersecurity maturity in organizations and the consultant effect. The episode also goes into detail about issues surrounding ke...
Defensive Security Podcast Episode 276
zhlédnutí 28Před 21 dnem
Check out the latest Defensive Security Podcast Ep. 276! From cow milking robots held ransom to why IT folks dread patching, Jerry Bell and Andrew Kalat cover it all. Tune in and stay informed on the latest in cybersecurity! Summary: In episode 276 of the Defensive Security Podcast, hosts Jerry Bell and Andrew Kalat delve into a variety of security topics including a ransomware attack on a Swed...
Defensive Security Podcast Episode 275
zhlédnutí 34Před měsícem
Links: • www.crowdstrike.com/wp-content/uploads/2024/08/Channel-File-291-Incident-Root-Cause-Analysis-08.06.2024.pdf • www.theregister.com/2024/08/05/crowdstrike_is_not_at_all/ • www.theverge.com/2024/8/6/24214371/microsoft-delta-letter-crowdstrike-response-comments • www.linkedin.com/posts/alexstamos_why-crowdstrikes-baffling-bsod-disaster-activity-7224046054076243969-1An8? • www.linkedin.com/...
Defensive Security Podcast Episode 274
zhlédnutí 23Před měsícem
www.bleepingcomputer.com/news/security/over-3-000-github-accounts-used-by-malware-distribution-service/ blog.knowbe4.com/how-a-north-korean-fake-it-worker-tried-to-infiltrate-us arstechnica.com/security/2024/07/secure-boot-is-completely-compromised-on-200-models-from-5-big-device-makers/ www.darkreading.com/cybersecurity-operations/crowdstrike-outage-losses-estimated-staggering-54b cdn.prod.web...
Defensive Security Podcast Episode 273
zhlédnutí 21Před měsícem
The Joe Sullivan Verdict - Unfair? - Which Part? (cybertheory.io) (cybertheory.io/the-joe-sullivan-verdict-unfair-which-part/) Fujitsu Details Non-Ransomware Cyberattack (webpronews.com) (www.webpronews.com/fujitsu-details-non-ransomware-cyberattack/) 5 Key Questions CISOs Must Ask Themselves About Their Cybersecurity Strategy (thehackernews.com) (thehackernews.com/2024/07/5-key-questions-cisos...
Defensive Security Podcast Episode 272
zhlédnutí 18Před měsícem
Links: www.darkreading.com/cybersecurity-operations/a-cisos-guide-to-avoiding-jail-after-a-breach www.csoonline.com/article/2512955/us-supreme-court-ruling-will-likely-cause-cyber-regulation-chaos.html/ sansec.io/research/polyfill-supply-chain-attack www.securityweek.com/over-380k-hosts-still-referencing-malicious-polyfill-domain-censys/ www.tenable.com/blog/how-the-regresshion-vulnerability-co...
Defensive Security Podcast Episode 271
zhlédnutí 21Před měsícem
Defensive Security Podcast Episode 271
Defensive Security Podcast Episode 269
zhlédnutí 10Před měsícem
www.bleepingcomputer.com/news/security/cosmicstrand-uefi-malware-found-in-gigabyte-asus-motherboards/ www.bleepingcomputer.com/news/security/hackers-scan-for-vulnerabilities-within-15-minutes-of-disclosure/ www.techcircle.in/2022/07/31/paytm-mall-refutes-cyber-breach-report-says-users-data-safe
Defensive Security Podcast Episode 268
zhlédnutí 3Před měsícem
Stories: www.scmagazine.com/feature/incident-response/why-solarwinds-just-may-be-one-of-the-most-secure-software-companies-in-the-tech-universe www.computerweekly.com/news/252522789/Log4Shell-on-its-way-to-becoming-endemic www.bleepingcomputer.com/news/security/hackers-impersonate-cybersecurity-firms-in-callback-phishing-attacks/ www.cybersecuritydive.com/news/microsoft-rollback-macro-blocking-...
Defensive Security Podcast Episode 267
zhlédnutí 1Před měsícem
Defensive Security Podcast Episode 267 Links: www.justice.gov/opa/pr/aerojet-rocketdyne-agrees-pay-9-million-resolve-false-claims-act-allegations-cybersecurity us-cert.cisa.gov/ncas/alerts/aa22-187a www.zdnet.com/article/these-are-the-cybersecurity-threats-of-tomorrow-that-you-should-be-thinking-about-today/ jerry: [00:00:00] Alright, here we go. Today is Sunday, July 10th, 2022. And this is ep...
Defensive Security Podcast Episode 266
zhlédnutí 10Před měsícem
www.csoonline.com/article/3660560/uber-cisos-trial-underscores-the-importance-of-truth-transparency-and-trust.html thehackernews.com/2022/06/conti-leaks-reveal-ransomware-gangs.html?m=1 www.bleepingcomputer.com/news/security/new-symbiote-malware-infects-all-running-processes-on-linux-systems/ doublepulsar.com/bpfdoor-an-active-chinese-global-surveillance-tool-54b078f1a896
Defensive Security Podcast Episode 265
zhlédnutí 4Před měsícem
Google Exposes Initial Access Broker Ties With Ransomware Actors (bankinfosecurity.com) (www.bankinfosecurity.com/google-exposes-initial-access-broker-ties-to-ransomware-a-18758) Okta says hundreds of companies impacted by security breach | TechCrunch (techcrunch.com/2022/03/23/okta-breach-sykes-sitel/) Okta: “We made a mistake” delaying the Lapsus$ hack disclosure (bleepingcomputer.com) (www.b...
Defensive Security Podcast Episode 264
zhlédnutí 2Před měsícem
Adafruit discloses data leak from ex-employee’s GitHub repo (bleepingcomputer.com) (www.bleepingcomputer.com/news/security/adafruit-discloses-data-leak-from-ex-employees-github-repo/) Malware now using NVIDIA’s stolen code signing certificates (bleepingcomputer.com) (www.bleepingcomputer.com/news/security/malware-now-using-nvidias-stolen-code-signing-certificates/) NSA report: This is how you s...
Threw me completely off, was watching another video and this was under as a suggestion… totally thought this was a new episode. Looking forward to new episodes when you and Jerry get time.
Oh we do have them! Check out episodes 271-273. We are publishing again!
Incredible airplane, incredible pilot and crew!
My Compliments To Capt. Higgins shes one amazing Pilot, This world needs more Pilots like you.
Seriously?? She is PIC, performing aerobatics with unsecured passengers. Unbelievably irresponsible.
What a gel what a woman, Katie could fly me any day 🥰
For decades the C-130 has been transporting Americas hero’s in and out of harms way. It’s always watching Americas finest just enjoying their accomplishments and achievements.
She was having wayyyy to much fun flying!! LOLOL.. Way to go young lady!! And team!!
🌺 Freedom is Colussal 🌺 Hope to see you at the Monument in 2035🌺
That is some serious flying. For the pilot being female, there are lots of female pilots, and they are often better than their male counterparts. 'The female is the more dangerous of the species'.
Woman dri er!
Love the hula girl.
That was a great takeoff I was a crew chief C-130e during the Vietnam war done a few of those combat takeoffs. Great job.
I was a flight engineer on the old P-3 Orion which has the same engines and what they say in airshow about the Orion is true those are not Stunts but actual maneuvers, more so they are actual evasion maneuvers from enemy air attack and ground attack evasion maneuvers.
Im Dusty Cook's uncle, Rusty Hindges
All of you talented.😃😃😃😃😃😃
Thank you for posting this.
wiIfredo arce ortiz
Ark clear
Track check
Auto start clear
Dutch clear
Move right go around
45 bsr
27 your clear
Im linear and signature no location
Qsr.
What a amazing plane how strong the design is to take the force to pull out of the manovers totally awsome . Reminds me of the plane nasa used it huge jet like this and the cargo was all padded and they took u up real hi and would free fall and every one would have 0 gravity for a minute or 2
Makes me wanna puke Soldiers are nothing but dumb dogs and this poor girl is barely human
That was so cool! I love the C-130
That gal can surely handle that big aircraft! I would fly with her anytime!
I Love you Kati,super women beauty women,super pilots.Good l
Capt Katie... that was what we call in my world a "FULL 8"... I have watched this half a dozen times this morning, and loved every second... Well done Captain Higgins. Dont know if you are USAF Ret. now or now, but I hope not. As a dad with Daughers, this is so inspiring. LOVE IT.... Your signal is BUSTER....
The coolest WM Aviator .
Inside a Coast Guard C-27J. czcams.com/video/PrtzT4W4QG0/video.html
Sounds like she has done this a few times. Semper Fi.
No 800Ilb Gorilla in that aircraft. Nope not a bit.
What a strong airframe!!!!!!!!
was this at macdill air force base?
Reminds me of Tex Johnson flying the 707. Maybe we should have Aerobatic Airlines, a C130 based airline, just have racks for people to sit in along the sides and have fun. No drink services, but a hell of a lot of fun getting you there! 😁👍
How is this woman paid less then dr. Fauci.
Apparently the cap knows her shit !! # props !!
Got it! But what about the parachutes?
For a minute I thought I was listening to my wife........
Discipline, skill, good looks and a hula turn bank indicator, wow, it just doesn’t get any better. The airplane was pretty cool too!
Perfect. Semper fi
Wow yaaa
I bet they dont do this is Russia... if they do it's not this cool!
They do. And it is. Russian pilots are ....crazy. Look up their airshow stunts
wow!
Boss pilot.
It has to be a dream come true having this remarkable young lady as the FIRST FEMALE pilot of the Blue Angels' 'Fat Albert!' Not only is she incredibly well-trained as a professional in her role as the C-130's lead flyer, she is a beauty as well! This video was a fantastic experience! Katie Higgins definitely has 'the right stuff!' She does our country proud!
Makes me wanna puke Soldiers are nothing but dumb dogs and this poor girl is barely human
Loved the landing
wow great memory. she must have rehearsed that flight plan