Security News

S3 Ep115: True crime stories – A day in the life of a cybercrime fighter [Audio + Text]
2022-12-29 18:20

DUCK. Today's topic is: Incident response - A day in the life of a cyberthreat responder. PETER. Typically, we're brought in either just after an attack or while one is still unfolding.

S3 Ep114: Preventing cyberthreats – stop them before they stop you! [Audio + Text]
2022-12-22 19:56

DUCK. OK, so application control is Sophos's name for the ability to detect, and optionally to block, software that is not malware, but that a well-informed administrator might not want to support in their environment? DUCK. Now, my understanding is most so-called "Fileless malware" does involve files, probably quite a lot of files in its operation.

McGraw Hill's S3 buckets exposed 100,000 students' grades and personal info
2022-12-20 03:30

Misconfigured Amazon Web Services S3 buckets belonging to McGraw Hill exposed more than 100,000 students' information as well as the education publishing giant's own source code and digital keys, according to security researchers. The research team at vpnMentor said they discovered the open S3 buckets on June 12, and contacted McGraw Hill a day later.

S3 Ep113: Pwning the Windows kernel – the crooks who hoodwinked Microsoft [Audio + Text]
2022-12-15 19:10

Microsoft now has an advisory out that's blaming rogue partners. The problem with certified kernel drivers, of course, is because they have to be signed by Microsoft, and because driver signing is compulsory on Windows, it means that if you can get your kernel driver signed, you don't need hacks or vulnerabilities or exploits to be able to load one as part of a cyberattack.

S3 Ep112: Data breaches can haunt you more than once! [Audio + Text]
2022-12-09 19:46

DOUG. Break out the old tag in HTML, make it blink a little bit? [LAUGHS]. DUCK. Doug, for a moment, I was worried you were going to use the word [LAUGHS] .

S3 Ep111: The business risk of a sleazy “nudity unfilter” [Audio + Text]
2022-12-01 19:58

Once you'd authorised it, it was able to read your files, and because it could read your files, it could get the list of all the people you normally corresponded with from your so called nicknames or NAMES file, and blasted itself out to all of them. DUCK. People you'd never heard from for a couple of years suddenly they would be all over your mailbox!

#S3
S3 Ep110: Spotlight on cyberthreats – an expert speaks [Audio + Text]
2022-11-24 19:52

As soon as I give you a piece of information where just acting on that information makes you more secure, then I think we *all win collectively*, because now there's one less avenue for a cybercriminal to attack you and that makes us all collectively more secure. If you're the victim of a ransomware attack where pretty much all the useful data files, on all your computers including your servers, on your entire network, have been encrypted.

S3 Ep109: How one leaked email password could drain your business [Audio + Transcript]
2022-11-17 19:52

Click-and-drag on the soundwaves below to skip to any point. You can listen to us on Soundcloud, Apple Podcasts, Google Podcasts, Spotify, Stitcher and anywhere that good podcasts are found.

S3 Ep108: You hid THREE BILLION dollars in a popcorn tin?
2022-11-10 19:26

Radio waves so mysterious they're known only as X-Rays. Were there six 0-days or only four? The cops who found $3 billion in a popcorn tin.

#S3
S3 Ep107: Eight months to kick out the crooks and you think that’s GOOD? [Audio + Text]
2022-11-03 19:51

Now, the critical update actually, it turned out that while investigating the first update, they found a second related update, so there are actually two of them those only apply to OpenSSL 3.0, not to 1.1.1. DUCK. Well, the critical deal here is when we wrote about the update that included iOS 16.1 and iPadOS 16, which actually turned out to be iPadOS 16.1 after all.

#S3