Tag Archives: infosec

PODCAST: Physical Pen-testing with Jek Hyde

Jek-Hyde-baby-bump-pic-bathroom-1Guest Jek Hyde of Sincerely Security with prosthetic “baby bump.”

My guest this episode is “Jek” a social engineer/pen-tester who recently live tweeted a real world penetration test in which her team successfully breached a client’s corporate offices and networks. We talk about how she got into social engineering and information security. It was fun to learn about her experiences and pick up a few tips and tricks as I prepare for the Social Engineering Capture The Flag competition at DEFCON next week!

Tagged , , , , , , , , , , , , , , , , , , ,

RSAC 2017: Rob Graham on Mirai and IoT Botnets

UPDATED WITH SLIDES (03/15/17)

rob-graham

“Mirai and IoT Botnet Analysis” MP3 AUDIO FILE

RSAC2017-Mirai-OPENINGSLIDE

“Mirai and IoT Botnet Analysis” SLIDES – PDF FILE

At this year’s RSA security conference in San Francisco, researcher Rob Graham gave a presentation entitled “Mirai and IoT Botnet Analysis.” His talk examined the infamous “Mirai” Internet of Things botnet and shared details on how it operates. Graham also covered technical aspects of the cameras it infects and detailed his own experimentation with Mirai in the wild. He went on to discuss last year’s massive DDoS attacks on DNS provider Dyn, which involved variations of the Mirai IoT botnet.

No official AV video recording of this talk, but the audio and RSAC slides are all you need.

Enjoy!

Also, check out Rob’s blog!

-Vince

Follow me on Twitter!

Tagged , , , , , , , , , , ,

PODCAST: Twitter, Snowden and Privacy

pardon-snowden-screen-shot-1

This episode breaks down last week’s online Q & A between Twitter CEO Jack Dorsey and infamous NSA whistle blower Edward Snowden on Periscope. The event, promoted by the organizers of the campaign Pardon Snowden, featured a lengthy discussion on privacy and the role of social media in sharing user data with law enforcement and intelligence agencies.

jacob-young-twitter-avi-1

Jacob Young – who submitted a question to Snowden and had it answered, sorta.

The event also included questions from Twitter users. Jacob Young, a software engineer and privacy advocate, was one of the lucky users who submitted a question and had it answered by Snowden during the event. Jacob joins the podcast to give his reaction to Snowden’s answer to his question and also shares his thoughts on mass surveillance, privacy and more.

If you are curious about the Snowden Q&A in question and want to view the event in it’s entirety, here’s a link to the Periscope video: https://www.periscope.tv/w/1vOxwgnXeYLxB

subscribe to podcast on

1-logo-itunesstitcher-logo

PODCAST MP3 DIRECT DOWNLOAD

Tagged , , , , , , , , ,

RSA Security Thunderdome Debate

As the glory of 2016 rolls to an end, I plan to empty my archive of some unreleased recordings which never made it on to any podcasts over the past year.

rsa-2016

I’m starting with this recording from the RSA Conference earlier this year in San Francisco, CA. It features Jen Ellis of Rapid7 moderating a “Security Thunderdome” debate between Rob Graham (Errata Security) and Josh Corman (Atlantic Council). It’s basically a debate about debating. A very spirited breakdown of the anatomy of a debate with a focus on cyber security.

The audio quality isn’t the best, but good enough to follow along. If you listen closely you’ll hear me ask a question from the audience toward the end. Big thanks to RSA, Jen, Rob, and Josh for allowing me to record the session. I hope this “Thunderdome Debate” format will return next year to RSA and possibly expand to at least another hour. Enjoy!

DIRECT DOWNLOAD OF MP3

 

 

 

Tagged , , , , , , , , ,

PODCAST: Jon Nichols

WVUsoldier1

Jon Nichols

Jon aka “@wvualphasoldier” is a security researcher, consultant, policy advisor and former US military PSYOP soldier. He served on and off the battlefield in Iraq and Afghanistan. We discuss the recent Shadow Brokers auctioning of computer network exploits which are alleged to have been stolen from NSA linked security firm, Equation Group.

TOPICS INCLUDE: Shadow Brokers, Equation Group, NSA, PSYOP, atmospherics, military intelligence, deception operations, propaganda, patriot hackers, The Jester, ISIS, Junaid Hussain (aka TriCk), Edward Snowden, Zipa Dux, insider threat vs. outside attacker theories, attribution, @thegrugq, Takashi Shimura, Rashomon and more!

DIRECT MP3 DOWNLOAD

SUBSCRIBE ON iTUNES

Tagged , , , , , , , , , , , , , , , , , , , , , ,
%d bloggers like this: