BB-8 Hacked – Daily Security Byte EP. 204

Today’s video covers an Internet of Things (IoT) hack for Star Wars geeks (like me). It’s not really dangerous, and probably won’t get exploited in the next “cyber war,” but its interesting nonetheless. Watch below to learn more.

(Episode Runtime: 2:42)

Direct YouTube Link: https://www.youtube.com/watch?v=3YREQah6PXQ

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

OpenSSH Client Flaws – Daily Security Byte EP. 203

Today, Qualys disclosed two new vulnerabilities in the popular secure shell application, OpenSSH. One of the flaws is pretty serious, but only affects the OpenSSH client. Watch today’s episode to learn more about these issues, and learn what other products might be affected.

(Episode Runtime: 2:31)

Direct YouTube Link: https://www.youtube.com/watch?v=EQlJLOXCNZ4

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Upgrade to IE11 or Edge No Matter What – Daily Security Byte EP. 202

Last month, I warned you that Microsoft planned to End-of-Life all version of Internet Explorer (IE) after January 12, except version 11. This means they will only release security updates for IE11 and the new Edge browser, so if you use Microsoft browsers you need to upgrade to stay safe. However, in today’s video I tell you why you need to upgrade to IE11 (or Edge) even if you don’t plan on using Microsoft’s browsers.

(Episode Runtime: 2:24)

Direct YouTube Link: https://www.youtube.com/watch?v=EkZeCHAXpww

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

New Year, New Microsoft Patches – Daily Security Byte EP. 201

Why not start your new year security plan right by staying current with patches? Tuesday was Microsoft and Adobe’s monthly patch day. Watch the video below to learn about the affected products, the severity of the issues, and how quickly to patch. Or at the very least skip to the reference section to find links to the proper patches.

(Episode Runtime: 2:51)

Direct YouTube Link: https://www.youtube.com/watch?v=4NGW6T3m36U

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Secure Wi-Fi helps SMBs protect their customers online

Wi-Fi access is becoming increasingly popular for businesses to attract and retain customers. From retail stores to hotels to hospitals, wireless access has gone mainstream and many companies are jumping on the bandwagon. While offering Wi-Fi to customers and employees certainly has its benefits, wireless access can ultimately doom any business if it’s not properly secured. According to the National Small Business Association, nearly 50 percent of small businesses have already been impacted by cyber-attacks with an average cost of more than 20 thousand dollars. I’ve got some valuable advice on how you can protect your business when offering free Wi-Fi to customers. Check out my article on Help Net Security to find out more. (Read more)

Malicious WhatsApp Spam – Daily Security Byte EP. 200

Today, a few media outlets picked up on a new malicious spam campaign that masquerades  as a missed WhatsApp message to deliver malware. However, this isn’t the first time cyber criminals have tried this trick. Watch today’s episode to learn how to identify this malicious email and avoid it.

(Episode Runtime: 2:56)

Direct YouTube Link: https://www.youtube.com/watch?v=lMIvQhxRsfg

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

MassPoem4U – Daily Security Byte EP. 199

The term “hacking” has gotten a negative connotation in the press over the years. In most cases, the general public uses the term to describe digital criminal attacks. However, there are still plenty of folks that like to do playful, creative, and benign hacks. Watch today’s video to learn how some security conference attendees forced a fun poem into the logs of millions of web servers.

(Episode Runtime: 2:40)

Direct YouTube Link: https://www.youtube.com/watch?v=Zhxan31pYDw

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Firefox Certificate Security Breaks Vendor Security – Daily Security Byte EP. 198

Mozilla got serious about security early this new year by banning potentially weak certificates created using the SHA-1 hashing function. Unfortunately, many security vendors still use SHA-1, so this browser update broke some things. If you’ve been affected by the Firefox changes, or are concerned with our products stance on SHA-1 certificates, watch today’s video.

Show note: Please excuse the slight audio problems in today’s episode due to a technical glitch.

(Episode Runtime: 3:05)

Direct YouTube Link: https://www.youtube.com/watch?v=PNYfB738M0M

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Hackers Leverage Let’s Encrypt – Daily Security Byte EP. 197

Let’s Encrypt is an organization that wants to help encrypt the web by offering CA validated SSL/TLS certificates for free. Unfortunately, attackers can also benefit from easy encryption. I support HTTPS everywhere, but you need to plan a way to secure your HTTPS traffic. Watch today’s episode to learn how malvertisers are exploiting easy encryption to hide, and how you can protect yourself.

(Episode Runtime: 3:30)

Direct YouTube Link: https://www.youtube.com/watch?v=9cWUGNbLXdc

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Was Dell Hacked? – Daily Security Byte EP. 196

Dell customers have been suffering from phone-based phishing scams, and some suggest the attackers are using stolen Dell information to support their social engineering. Whether or not that’s true, watch today’s video to learn a bit more about “vishing,” and how to identify and avoid it.

(Episode Runtime: 3:30)

Direct YouTube Link: https://www.youtube.com/watch?v=VouLQ4ki0ww

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Follow

Get every new post delivered to your Inbox.

Join 8,247 other followers