Car Hacking Revolution – Daily Security Byte EP.125

Weeks ago, I shared a story about a scary remote car hack researchers were previewing before Black Hat. Not only did those researchers release all the details about that attack, but many other researchers have also found significant automotive security flaws. Today’s video highlights a number of new car attacks disclosed in the past few weeks.

(Episode Runtime: 4:03)

Direct YouTube Link: https://www.youtube.com/watch?v=F4OXgxbYzMI

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Piles of August Patches – Daily Security Byte EP.124

While there’s lots of interesting security stories I could share today, one of the most practical infosec actions you can take is to keep your software patched. Yesterday was Microsoft and Adobe patch day, and Mozilla also recently released a pretty important Firefox update. Watch the video to learn about these important fixes, and more importantly, follow the links below to learn how to apply the relevant updates.

UPDATE: On Thursday, Apple released a hand full of security advisories and updates as well, fixing flaws in iOS, OS X, and Safari. This wasn’t covered in the video, but check the links below for more info on those updates.

(Episode Runtime: 2:25)

Direct YouTube Link: https://www.youtube.com/watch?v=yZ6A09t5oWA

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Thunder Strikes Mac Firmware Again – Daily Security Byte EP.123

You probably know that USB devices can be malicious, but did you know that infected Thunderbolt devices could spread a firmware worm to all your Macbooks? In today’s security video, I cover the ThunderStrike 2 attack that researchers disclosed at this year’s Black Hat and DEF CON conferences. Watch to learn what this attack does, and how the industry can fix it.

(Episode Runtime: 4:01)

Direct YouTube Link: https://www.youtube.com/watch?v=1kF9T4Ugz8Q

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Carphone Warehouse Gets Robbed – Daily Security Byte EP.122

UK smart phone shoppers will probably want to know about the latest security breach. This week a popular mobile retailer, Carphone Warehouse, lost 2.4 million customer records. Learn what data is at risk, and what you should do if you’re affected in today’s video.

(Episode Runtime: 2:38)

Direct YouTube Link: https://www.youtube.com/watch?v=YS_f-ViBDcI

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Critical BIND DoS – Daily Security Byte EP.121

The most popular DNS server on the market, BIND, suffers from a new denial of service (DoS) vulnerability that’s trivial to exploit. Watch today’s episode to learn what to do.

(Episode Runtime: 1:21)

Direct YouTube Link: https://www.youtube.com/watch?v=ZxsRs9Ll2-g

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Hacking Sniper Rifles – Daily Security Byte EP.120

When I started in information security, I’d never have guessed hackers would be able to cause sniper rifles to shoot off target. However, the latest research has made that idea a reality. See today’s video to learn about this interesting new hack, and why it should make you aware of the dangers of the “Internet of Thing”.

(Episode Runtime: 1:50)

Direct YouTube Link: https://www.youtube.com/watch?v=LKN5fvxj9ZQ

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

StageFright Affects Most Androids – Daily Security Byte EP.119

Stagefright is a new Android vulnerability that’s serious enough to deserve its fancy marketing name. As one security pundit said, “It’s the Heartbleed of mobile vulnerabilities.” Attackers can leverage this dangerous flaw against 95% of Android devices simply by sending you a text message with a specially crafted file. You don’t even have to interact with the message for the attack to succeed. Watch today’s video to learn what you should do about this issue.

(Episode Runtime: 2:22)

Direct YouTube Link: https://www.youtube.com/watch?v=U9hg5Hx3wRI

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Mr Robot Rewind – Daily Security Byte EP.118

Mr Robot keeps getting better. This is the first show that I’ve seen that gets hacking and technology consistently right; down to the tools they show in screen shots. I like it so much that I have partnered with GeekWire to do an article series analyzing each episode. Watch Friday’s video to learn more about it, and have a great weekend.

Show Note: There will not be a video on Monday or Tuesday.

(Episode Runtime: 1:33)

Direct YouTube Link: https://www.youtube.com/watch?v=0PTk45hAcc0

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Remote Zero Day Car Hack – Daily Security Byte EP.117

The IOActive researchers are at it again. In 2013, they demonstrated how you could hack a car with physical access. However, this year they found the holy grail of car hacksa remote zero day flaw that allows them to control a car over its cellular network. Watch today’s video to learn what you should do if you have a Fiat Chrysler vehicle with a Uconnect system.

(Episode Runtime: 3:34)

Direct YouTube Link: https://www.youtube.com/watch?v=oLQwVsXomDw

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Hacktivists Expose Cheaters – Daily Security Byte EP.116

We can’t condone cyber crime, even when the hacktivists have morals. A group of attackers calling themselves The Impact Team have breached a well-known online cheating site, and threatened to expose all its customers if they don’t shutdown shop. Watch today’s video to learn about this scandalous cyber drama, and why you shouldn’t post anything online that you don’t want your Grandma to see.

(Episode Runtime: 3:41)

Direct YouTube Link: https://www.youtube.com/watch?v=Uvow48dkF54

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Follow

Get every new post delivered to your Inbox.

Join 8,029 other followers