Thu, 17 July 2014
Episode 0x3F
Last one before Summer Security Camp
Pretty much everyone is drowning under piles of wtf and omfg diaf. But we promised you we'd be back and this time we're pretending we care.
Upcoming this week...
- Lots of News
- Breaches
- SCADA / Cyber, cyber... etc.
- finishing it off with DERPs/Mailbag (or Deep Dive)
- And there are weekly Briefs - no arguing or discussion allowed
And if you've got commentary, please sent it to mailbag@liquidmatrix.org for us to check out.
DISCLAIMER: It's not that explicit, but you may want to use headphones if you're at work.
ADDITIONAL DISCLAIMER: In case it is unclear, this is the story of 5 opinionated infosec pros who have sufficient opinions of their own they don't need to speak for anyone except themselves. Ok? Good.
In this episode:
- News and Commentary
- Police Dog Sniffs Out Child Porn Hard Drives
- News about the news - the WaPo launches it's own wiki-leaks-esque platform
- Rogers Releases New Policy on Disclosing Subscriber Information
- UN human rights report blows apart governments’ pro-surveillance arguments
- Breaches
- HotelHippo.com Closes after Data Leak
- Lastpass doesn't think it got breached
- SCADA / Cyber, cyber... etc
- Senate "Intelligence Committee" approves cybersecurity bill.
- If you read Boing Boing, the NSA considers you a target for deep surveillance
- The NSA Revelations All in One Chart
- DERP
- Congress in middle of Hollywood copyright clash with Silicon Valley from listener Marco Tietz
- Mailbag / Deep Dive
- We're coming up to Summer Security Camp in Vegas. Some thoughts on how to survive - and even prosper - while retaining your mind.
- Briefly -- NO ARGUING OR DISCUSSION ALLOWED
- Plain Text Offenders - one of many Tumblrs to follow
- Putting the TOR back in Torrent
- Telehash
- Australian bill will put journos in prison for 10 years for reporting leaks
- Liquidmatrix Staff Projects -- gratuitous self-promotion
- The Security Conference Library
- Contribute to the Strategic Defense Execution Standard (#SDES) and you'll be Doing Infosec Right in no time.
- If you're interested in helping out with openCERT.ca, drop a line to info@openCERT.ca
- Upcoming Appearances: -- more gratuitous self-promotion
- Dave: - Speaking at RSA Asia next week, Attending Black Hat/Defcon (goon) and BSidesLV, BSides Cape Breton as keynote and will be speaking at 44CON, Sector and BSides Toronto is coming.
- James: - Blackhat, DEF CON, Derbycon, BSides Toronto, Sector - dunno where else... somewhere I suppose
- Ben: - Staying at home - cause baby
- Matt: - If you see me, call me. I'm lost. Perhaps I'll be in Las Vegas.
- Wil: -
- Other LSD Writers: - We added another one. Trying to clean up our image. Say hi to Bill - yes, that Bill.
- Advertising - pay the bills...
- Signing up for a SANS course? Be sure to use the code "Liquidmatrix_150" and save $150 off the course fee! Or do the math and figure out if 5% off a course would be a better deal with "Liquidmatrix_5"
- Closing Thoughts
- Seacrest Says: Viva Las Vegas!!!!
Creative Commons license: BY-NC-SA
Direct download: LSDPodcast-0x3F.mp3
Category: LSD_Podcasts
-- posted at: 11:08am EDT
|
|
Fri, 4 July 2014
Episode 0x3E
HAPPY $COUNTRY JULY PAID DAY OFF
We're back. Reasons shall be enumerated. And so forth.
Upcoming this week...
- Lots of News
- Breaches
- SCADA / Cyber, cyber... etc.
- finishing it off with DERPs/Mailbag (or Deep Dive)
- And there are weekly Briefs - no arguing or discussion allowed
And if you've got commentary, please sent it to mailbag@liquidmatrix.org for us to check out.
DISCLAIMER: It's not that explicit, but you may want to use headphones if you're at work.
ADDITIONAL DISCLAIMER: In case it is unclear, this is the story of 5 opinionated infosec pros who have sufficient opinions of their own they don't need to speak for anyone except themselves. Ok? Good.
In this episode:
- News and Commentary
- cryptolocker extortionists use bitcoin for less traceable blackmail payments, extortion payments visible in the blockchain till it goes through a mixer. crime pays
- Harper - Canada needs NSA lite because protesters
- More details on the Hacking Team spying software.
- Los Angeles Police Department Kept User ID and Password to “Big Data Policing” Software on Office Whiteboard, Incidentally Broadcast to CNN Viewers During Interview (UK gov/World Cup)
- Breaches
- Benjamin F. Edwards Co. Discloses Data Breach Affecting Customers
- DDoS Attack Puts Code Spaces Out of Business
- Feedly Suffers Extortion Related DDoS Attack
- SCADA / Cyber, cyber... etc
- The Akamai State of the Internet Report
- Deloitte Global Defense Outlook 2014
- OpenSSL roadmap - we're going faster now
- DERP
- Austria prosecutes a TOR node operate - forgets about other common carriers
- CASL means no more security notifications
- Microsoft steals no-ip's domain
- Mailbag
-
Hi guys,
Where the fuck have you been?
Sincerely,
The Internet
PS Can we have your domain name if you're not using it anymore?
- Briefly -- NO ARGUING OR DISCUSSION ALLOWED
- Awesome Sysadmin: A curated list of sysadmin resources
- Goals are for losers
- iOS 8 is Randomizing MAC Addresses
- Passwords
- Liquidmatrix Staff Projects -- gratuitous self-promotion
- The Security Conference Library
- Contribute to the Strategic Defense Execution Standard (#SDES) and you'll be Doing Infosec Right in no time.
- If you're interested in helping out with openCERT.ca, drop a line to info@openCERT.ca
- Upcoming Appearances: -- more gratuitous self-promotion
- Dave: - Speaking at RSA Asia, Defcon, Black Hat, BSidesLV, Speaking at BSides Cape Breton, Speaking at 44CON, BSides Toronto, Speaking at Sector
- James: - Lots of work travel, Black Hat, DEF CON, BSidesLV, BSides Toronto, Speaking at Sector
- Ben: - Diaper changing
- Matt: - Seacrest OUT
- Wil: - Maybe painting the bathroom before DefCon and Burning Man.
- Other LSD Writers: - At least someone is blogging
- Advertising - pay the bills...
- Signing up for a SANS course? Be sure to use the code "Liquidmatrix_150" and save $150 off the course fee! Or do the math and figure out if 5% off a course would be a better deal with "Liquidmatrix_5"
- Closing Thoughts
- Seacrest Says: "Look at that subtle off-white coloring. The tasteful thickness of it. Oh, my God. It even has a watermark."
Creative Commons license: BY-NC-SA
Direct download: LSDPodcast-0x3E.mp3
Category: LSD_Podcasts
-- posted at: 1:22pm EDT
|
|
Thu, 10 April 2014
Episode 0x3D
My Heart Bleeds for Windows XP
Well this is certainly an exciting week around these here parts. I reckon we've not seen this much marketeering since the APT1 days of ought 13. Goodness gracious I'm not a huge fan of this crap.
Do not listen to this podcast at more than 1.5x speed while operating a motor vehicle or heavy equipment. Your face may melt according to some studies conducted by a Murican we know.
Upcoming this week...
- Lots of News
- Breaches
- SCADA / Cyber, cyber... etc.
- finishing it off with DERPs/Mailbag (or Deep Dive)
- And there are weekly Briefs - no arguing or discussion allowed
And if you've got commentary, please sent it to mailbag@liquidmatrix.org for us to check out.
DISCLAIMER: It's not that explicit, but you may want to use headphones if you're at work.
ADDITIONAL DISCLAIMER: In case it is unclear, this is the story of 5 opinionated infosec pros who have sufficient opinions of their own they don't need to speak for anyone except themselves. Ok? Good.
In this episode:
Creative Commons license: BY-NC-SA
Direct download: LSDPodcast-0x3d.mp3
Category: LSD_Podcasts
-- posted at: 11:09am EDT
|
|
Thu, 27 March 2014
Episode 0x3C
You Got Breached.
And in other news... April 8 is coming up FAST.
Upcoming this week...
- Lots of News
- Breaches
- SCADA / Cyber, cyber... etc.
- finishing it off with DERPs/Mailbag (or Deep Dive)
- And there are weekly Briefs - no arguing or discussion allowed
And if you've got commentary, please sent it to mailbag@liquidmatrix.org for us to check out.
DISCLAIMER: It's not that explicit, but you may want to use headphones if you're at work.
ADDITIONAL DISCLAIMER: In case it is unclear, this is the story of 5 opinionated infosec pros who have sufficient opinions of their own they don't need to speak for anyone except themselves. Ok? Good.
In this episode:
Creative Commons license: BY-NC-SA
Direct download: LSDPodcast-0x3c.mp3
Category: LSD_Podcasts
-- posted at: 12:47pm EDT
|
|
Thu, 23 January 2014
Episode 0x3B
We Have Quorum!
Getting tired of hearing about the latest $problem. Can we do something different with our cognitive surplus?
Upcoming this week...
- Lots of News
- Breaches
- SCADA / Cyber, cyber... etc.
- finishing it off with DERPs/Mailbag (or Deep Dive)
- And there are weekly Briefs - no arguing or discussion allowed
And if you've got commentary, please sent it to mailbag@liquidmatrix.org for us to check out.
DISCLAIMER: It's not that explicit, but you may want to use headphones if you're at work.
ADDITIONAL DISCLAIMER: In case it is unclear, this is the story of 5 opinionated infosec pros who have sufficient opinions of their own they don't need to speak for anyone except themselves. Ok? Good.
In this episode:
We're reaching a tipping point around the concept of Privacy. Here's a few examples to discuss:
Creative Commons license: BY-NC-SA
Direct download: LSDPodcast-3b.mp3
Category: LSD_Podcasts
-- posted at: 11:35am EDT
|
|
Thu, 9 January 2014
Episode 0x3A
We Can Do Better
Before we get too far into things this week, I want to draw special attention to Rich Mogull's $500 Cloud Security Screwup posting. Truly awe inspiring and an example of Doing Infosec Right - admitting that you screwed up and getting on with the solution rather than the very common response which would include hiding what happened and hoping no one finds out that it was you who were the screwup. We should all act more like this. Moving along...
Upcoming this week...
- Lots of News
- Breaches
- SCADA / Cyber, cyber... etc.
- finishing it off with DERPs/Mailbag (or Deep Dive)
- And there are weekly Briefs - no arguing or discussion allowed
And if you've got commentary, please sent it to mailbag@liquidmatrix.org for us to check out.
DISCLAIMER: It's not that explicit, but you may want to use headphones if you're at work.
ADDITIONAL DISCLAIMER: In case it is unclear, this is the story of 5 opinionated infosec pros who have sufficient opinions of their own they don't need to speak for anyone except themselves. Ok? Good.
In this episode:
- News and Commentary
- Five Product Security Questions Nobody At CES Wants You To Ask. Because, you know, internets.
- Mandiant gets bought by FireEye
- Infographic: New ISO 27001:2013 - What Has Changed?
- Find security flaw, go to jail?
- Breaches
- Former TIAA-CREF Worker Gets 6 Years for Selling IDs
- OpenSSL Defacement - Not a Hypervisor Thing
- Riverside Health System 4-year-long HIPAA Breach
- Thank Goodness for the NSA! - a fable
- Yahoo infects people with Malware and makes the bitcoin
- SCADA / Cyber, cyber... etc
- Several European manufacturers spawn NSA-proof Android “cryptophones”
- NSA denials
- DERP
- UK ‘Porn Filter’ Blocks Legitimate File-Sharing Services
- Mailbag
- We receive some of the most batcrap crazy emails here at LSD. What's the right response to people who don't just have a tinfoil hat, but are opting for the full ensemble?
- Dear Mailbag
I'm thinking about not speaking at RSA because of the NSAs, what do you think? Hugs Mikko H. (not the other Mikko guy)
- Briefly -- NO ARGUING OR DISCUSSION ALLOWED
- Crypto Hardening guide for Sysadmins
- Penetration Testing Lab Contents Mindmap
- sigcheck now with Virus total
- Wordpress plugin exploit data
- Skipfish Scanner Used In Financial Sector Attacks
- Liquidmatrix Staff Projects -- gratuitous self-promotion
- The Security Conference Library
- Contribute to the Strategic Defense Execution Standard (#SDES) and you'll be Doing Infosec Right in no time.
- If you're interested in helping out with openCERT.ca, drop a line to info@openCERT.ca
- Upcoming Appearances: -- more gratuitous self-promotion
- Dave: - Shmoocon, SOURCE, Infosec EU, BSides London, HITB EU, Secure360, FIRST...
- James: - At Shmoocon (with a cool surprise), then RSA (sad trombone)
- Ben: - N/A
- Matt: - behind the beard
- Wil: - Gave up, is a car dealer now
- Other LSD Writers: - huh?
- Advertising - pay the bills...
- Signing up for a SANS course? Be sure to use the code "Liquidmatrix_150" and save $150 off the course fee! Or do the math and figure out if 5% off a course would be a better deal with "Liquidmatrix_5"
- Closing Thoughts
- Seacrest Says: My Voice Is My Passport, Verify Me
Creative Commons license: BY-NC-SA
Direct download: LSDPodcast-0x3A.mp3
Category: LSD_Podcasts
-- posted at: 1:40pm EDT
|
|
Sun, 5 January 2014
Episode 0x39
Auld Lang Syne
The Syrian Liberation Army would like to thank Liquidmatrix for their use of Skype.
Upcoming this week...
- Lots of News
- Breaches
- finishing it off with DERPs/Mailbag (or Deep Dive)
- And there are weekly Briefs - no arguing or discussion allowed
And if you've got commentary, please sent it to mailbag@liquidmatrix.org for us to check out.
DISCLAIMER: It's not that explicit, but you may want to use headphones if you're at work.
ADDITIONAL DISCLAIMER: In case it is unclear, this is the story of 5 opinionated infosec pros who have sufficient opinions of their own they don't need to speak for anyone except themselves. Ok? Good.
In this episode:
Creative Commons license: BY-NC-SA
Direct download: LSDPodcast-39.mp3
Category: LSD_Podcasts
-- posted at: 6:19pm EDT
|
|