Bye Bye Patch Day – Daily Security Byte EP.77

On October 2003almost twelve years ago, Microsoft launched their monthly Patch Day. This week, at the their Ignite Conference, they announced that they plan to stop doing monthly patches with Windows 10. If you’re a Microsoft administrator, watch our vlog to learn what this means to you.

 

(Episode Runtime: 2:26)

Direct YouTube Link: https://youtu.be/I1fOZeyFYI0

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Rombertik Destruction – Daily Security Byte EP.76

Last year I predicted an increase in destructive malware, and with the Sony Pictures breach we’re certainly seeing signs that this prediction is coming true. Today, researchers at Cisco’s Talos have found yet another malware variant that continues this trend. Watch today’s Byte to learn about Rombertik’s destruction and evasive capabilities, and to learn how to protect your network from these kinds of destructive threats.

 

(Episode Runtime: 5:15)

Direct YouTube Link: https://www.youtube.com/watch?v=DlUqzwHMjDY

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Political Trojans, WordPress 0day, and Tool Fails- WSWiR Episode 150

Another week, another flood of security news. Do you find yourself falling behind of the latest InfoSec news? Than this weekly video should help you catch up.

This week’s video covers the latest on the White House breach, a new security tool that got hacked a day later, and an old trojan that has received some politically-motivated updates. Press play to learn about all that and more; and don’t forget the references to other stories below.

As an aside, I’m experimenting with the timing of this weekly blog post. While I will continue to post the weekly video on Friday, I will schedule this blog post the Monday after. If you’d rather see the video on Friday, be sure to subscribe to the YouTube channel.

(Episode Runtime: 10:12)

Direct YouTube Link: https://www.youtube.com/watch?v=EmIr30YlLDA

EPISODE REFERENCES:

EXTRAS:

— Corey Nachreiner, CISSP (@SecAdept)

Bedep Trojan Gets Political – Daily Security Byte EP.74

The Bedep trojan (or botnet client) has been around for a long time, allowing hackers to steal information and make money. However, new research shows that it now has political motives as well. Watch today’s video to learn what it’s up to.

 

(Episode Runtime: 2:12)

Direct YouTube Link: https://www.youtube.com/watch?v=Ja22Rx1c9Us

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Password Alert Fail – Daily Security Byte EP.73

Yesterday, I recommended a free Google Chrome extension that could help spot phishing attacks, but today a security researcher has already figured out how to bypass it. Press play to learn what he did, and whether or not this extension is still worthwhile.

 

(Episode Runtime: 1:24)

Direct YouTube Link: https://www.youtube.com/watch?v=TdzYtcmLpao

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Prevent Phishing with Password Alert – Daily Security Byte EP.72

In today’s extra short daily vlog I recommend a free security tool rather than cover the InfoSec news. If you use Chrome, watch the video to learn how Password Alert can inform you of phishing attempts.

 

(Episode Runtime: 1:02)

Direct YouTube Link: https://www.youtube.com/watch?v=gYuJN8H6Dog

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

0Day WordPress XSS – Daily Security Byte EP.71

A really, really long comment could allow an attacker to hijack your WordPress blog. Watch today’s quick video to learn about the zero day XSS flaw reported by a Finnish security researcher, and what you can do about it.

 

(Episode Runtime: 1:48)

Direct YouTube Link: https://www.youtube.com/watch?v=H2XR2tnm0yQ

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

White House Breach Gets Worse – Daily Security Byte EP.70

We keep learning more about the White House email breach from last year, and the news gets worse and worse. Today we learned the attackers may have had access to more of President Obama’s email correspondence than first suspected. Watch today’s vlog post to for the details, and to learn tips to protect your organization’s email.

 

(Episode Runtime: 3:59)

Direct YouTube Link: https://www.youtube.com/watch?v=ni2xGWmE4yw

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

PoS Fail and Browser Side-Channel – WSWiR Episode 149

As if every week wasn’t busy enough with new information security (InfoSec) news, this week was the RSA Conference, which brings with it a whole new batch of security news. If you find yourself struggling to keep up, follow my daily or weekly videos to get a quick summary of the latest relevant news.

This week, I was too busy at the RSA Conference to post my daily videos, but you can still catch some of the week’s news in today’s summary episode. In it, I cover the latest updates about the White House breach, I share some interesting tidbits from an RSA PoS security presentation, and I point out some great new research highlighting a side-channel attack that affect most web browsers. Watch the video for the details, and check out the references for more stories.

As an aside, I will be attending another industry conference next week as well, so I may not be able to post my regular Daily Security Byte. However, I’ll still post a weekly video at the very least. I’ll continue with the Daily Bytes the week following next. Have a great weekend, and stay safe out there.

(Episode Runtime: 7:20)

Direct YouTube Link: https://www.youtube.com/watch?v=gGqDplwMJA4

EPISODE REFERENCES:

EXTRAS:

— Corey Nachreiner, CISSP (@SecAdept)

Follow

Get every new post delivered to your Inbox.

Join 7,909 other followers