Insider Spear Phishing – Daily Security Byte EP. 212

Usually, we discuss spear phishing as an external attack. However, a recent Department of Justice case proves insiders leverage spear phishing too. Watch today’s video to learn how a former Nuclear Regulatory Committee employee tried to spear phish his ex-coworkers, and how you might avoid such attacks.

(Episode Runtime: 2:33)

Direct YouTube Link: https://www.youtube.com/watch?v=Mh76Bnew7JI

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

TaoBao Account Hijack – Daily Security Byte EP. 211

TaoBao, China’s Ebay, suffered a major account hijack where attackers accessed over 20M user accounts. However, the attack wasn’t the fault of the e-commerce site itself. Watch today’s video to learn how this happened, why it should concern everyone in the world, and what you can do about it.

(Episode Runtime: 2:47)

Direct YouTube Link: https://www.youtube.com/watch?v=DVFmSIz4ITQ

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

#OpNasaDrones Hack – Daily Security Byte EP. 210

A hacking group calling themselves AnonSec claims to have hacked NASA’s network, and shared a 250GB dump of NASA drone data to back up the claim. Meanwhile, NASA says the data is public, and claims they can’t find evidence of a breach. Whether or not AnonSec’s story is fiction, I think you can learn from it. Watch today’s Byte episode to learn how.

(Episode Runtime: 3:44)

Direct YouTube Link: https://www.youtube.com/watch?v=f0DABSVg5rA

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

OpenSSL DSA Vulnerability – Daily Security Byte EP. 209

Last week, the OpenSSL team fixed a vulnerability that could allow attackers to get the key used to encrypt your HTTPS or SSL connections. Watch today’s video to learn a bit more about this vulnerability, the update, and how WatchGuard products are affected.

(Episode Runtime: 3:17)

Direct YouTube Link: https://www.youtube.com/watch?v=I8yBGcTGtqM

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Two Phishing Breaches – Daily Security Byte EP. 208

This week, two different organization’s in two different industry verticals suffered security incidents that either lost them tons of money, or tons of time. What do they both have in common, and what can we learn from them? Watch today’s video to find out!

(Episode Runtime: 3:26)

Direct YouTube Link: https://www.youtube.com/watch?v=crBB4CU-cTs

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

GCHQ Encryption Backdoor? – Daily Security Byte EP. 207

First the NSA, and now GCHQ. A university researcher has claimed to find a weakness in a GCHQ-developed encryption algorithm that could allow governments to snoop on VoIP calls. Watch Friday’s video to learn more about it.

(Episode Runtime: 3:25)

Direct YouTube Link: https://www.youtube.com/watch?v=cK1vIEBVcgs

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Oracle & Apple Patches – Daily Security Byte EP. 206

Another week, another pile of patches. If you use Apple or Oracle products, it’s time to download the latest updates to keep your computers and servers safe. Watch today’s video for a quick summary of the affected products and issue, and check the link below to learn more.

(Episode Runtime: 2:18)

Direct YouTube Link: https://www.youtube.com/watch?v=NT5OqG8VG9k

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

GateKeeper Bypassed Again – Daily Security Byte EP. 205

Many Apple fans think their Macs are immune to malware. Unfortunately, Apple’s computersthough less targetedare as susceptible to threats as any other computer. In fact, attackers can even evade OS X’s built-in anti-malware mechanism. Watch today’s video to learn why GateKeeper is vulnerable and how you can keep your Mac safe.

(Episode Runtime: 2:36)

Direct YouTube Link: https://www.youtube.com/watch?v=kPaMkmUDK0A

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

BB-8 Hacked – Daily Security Byte EP. 204

Today’s video covers an Internet of Things (IoT) hack for Star Wars geeks (like me). It’s not really dangerous, and probably won’t get exploited in the next “cyber war,” but its interesting nonetheless. Watch below to learn more.

(Episode Runtime: 2:42)

Direct YouTube Link: https://www.youtube.com/watch?v=3YREQah6PXQ

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

OpenSSH Client Flaws – Daily Security Byte EP. 203

Today, Qualys disclosed two new vulnerabilities in the popular secure shell application, OpenSSH. One of the flaws is pretty serious, but only affects the OpenSSH client. Watch today’s episode to learn more about these issues, and learn what other products might be affected.

(Episode Runtime: 2:31)

Direct YouTube Link: https://www.youtube.com/watch?v=EQlJLOXCNZ4

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Follow

Get every new post delivered to your Inbox.

Join 8,238 other followers