
Subscribe
Security 261 – LastPass goes Paid
February 28, 2021
LastPass has decided to start charging for something that was once free. We discuss your options in the free space. Browser based password management is fine, but a third party is better. Bitwarden is free and open source.
Security – 260 – Forbes Signal Article
February 18, 2021
Forbes put out an article on how Signal has some weaknesses using the after first unlock theory.TL;DR – Yes, but not limited to signal. Power off your phone if you are worried. https://www.forbes.com/sites/thomasbrewster/2021/02/08/can-the-fbi-can-hack...
Bonus – 01 – Fitness+ Review
January 26, 2021
Chaim talks about Fitness+ with Casey Liss. How do two non entirely in shape tech nerds feel about Apple’s new offering. TL;DR we like it. Special thanks to Casey Liss | https://www.caseyliss.com/ Casey’s initial Fitness+ Review | https://pca.
Security – 259 – More WhatsApp Fallout
January 21, 2021
There was more news from the WhatsApp privacy fallout that we decided to have another show. As you know, we have moved to signal. If you want an invite, tweet the show, or find one of us. TL;DR, if you are using whatsapp to send cat photos to your fami...
Security 258 – WhatsApp Privacy
January 12, 2021
We look at Apple’s new “Nutrition Facts” and try to figure out if they are actually useful (yes, but not really). We discuss the changes with WhatsApp, and where to move to. https://9to5mac.com/2021/01/04/app-privacy-labels-messaging-apps/ https://arst...
Security – 257 – Signal and iPhone Guide
December 24, 2020
We start off on an article done by the BBC saying that Cellebrite has broken the signal encryption. Clearly, that is an issue if true. Turns out Signal quickly responds with an emphatic no, with evidence. Here is the BBC article: https://www.bbc.
Security 256 – SolarWinds
December 20, 2020
We discuss the solarwinds hack: https://krebsonsecurity.com/2020/12/u-s-treasury-commerce-depts-hacked-through-solarwinds-compromise/ https://krebsonsecurity.com/2020/12/solarwinds-hack-could-affect-18k-customers/ https://krebsonsecurity.
Security 255 – Productivity Score
December 16, 2020
We talk about Black Friday and our non shopping. Youtube-DL is back Finally we discuss Microsoft’s productivity score. A tone deaf way to monitor your work.
Security 254 – Thanksgiving
November 23, 2020
We promote a socially distant Thanksgiving, but explain some virtual things you do to help friends and family.
Security 252 – Mac’s T2 issue
October 28, 2020
On this show we start off with updates to signal, and signal groups. Our main story is the t2 chip unfixable flaw.
Security 251- Open Source
October 15, 2020
What is Open Source?What benefits?What detriments?Licensing?Non-code assets?Creative Commons?
Security 250 – DNS
October 05, 2020
We go back to an early topic on DNS. What is DNS? How it works? What how new secure features of DNS can help you stay private.
Security 249 – Contact Tracing Redux
September 18, 2020
Yes, we talked about contact tracing in the past, but we got a request from the WhatsApp group to do it again. https://www.wired.com/story/why-contact-tracing-apps-not-slowed-covid-us/ Problems we discuss: %age of people who would need to install this,...
Security 248 – Work From School
August 31, 2020
Virtual School starts up for many next week, and we have ideas on what you can do to help your kids be secure while learning.
Security 247 – Defcon Safe Mode Edition
August 06, 2020
This being the week before defcon, we discuss what we expect at the virtual defcon: Teens charged with the twitter hack: https://www.justice.gov/usao-ndca/pr/three-individuals-charged-alleged-roles-twitter-hack Garmin paid the ransomware for their user...
Security 246 – Twitter Takeover
July 23, 2020
We try to describe what happened on twitter that lead to the account takeovers: https://www.schneier.com/blog/archives/2020/07/on_the_twitter_.html Cloudflare takes the internet down: https://blog.cloudflare.
Security 245 – Mac on ARM
July 08, 2020
Show notes: These are the show notes we wrote before talking about the topic. I tried to take out the inaccuracies, but some may remain. CISC – Complete Instruction Set Computing RISC – Reduced Instruction Set Computing Instructions are the abilities o...
Security 244 – Coffee
June 22, 2020
I feel like we discussed this topic before, but yes, we talk about coffee. Since security news is sparse right now, we take a sidebar on a topic that is near and dear to our heart. Zoom adds E2EE for everyone: https://blog.zoom.
Security 243 – Contact Tracing
June 03, 2020
We talk about Google’s and Apple’s Contact Tracing endeavors. While I’m okay with it, Tom rips it to shreds, based on the obvious privacy issues and false positives. I know I messed up the intro.
Security 242- Ubiquiti’s Dream Machine
May 18, 2020
I decided to relearn everything about networking, and got myself a Ubiquiti Dream Machine. I share my experiences. I really do like it. There are a ton of features, I didn’t know I needed. However, there are some quirks,
Security 241 – Bitwarden
May 01, 2020
Bitwarden is a “new to us” password manager. We discuss it, and recommend the software. We still recommend LastPass as well, however, if you want a better free option, and cheaper premium options, Bitwarden is worth a look.
Security 240 – Office 365
April 28, 2020
As a teacher who had to move to distance learning, I can’t tell you how awesome office 365 is. While I thought Google was doing it right, Microsoft secretly has hit it out of the park. This is not an ad for office 365,
Security 239 – Zoom Failures
April 03, 2020
Zoom not end to end encrypted: https://www.theverge.com/2020/3/31/21201234/zoom-end-to-end-encryption-video-chats-meetings Zoom Mac Malware (Should be fixed): https://www.engadget.com/2019-07-10-apple-mac-update-removes-zoom-exploit.
Security 238 – Virtual Meetings
April 03, 2020
We discuss virtual meetings in the age of people now having to learn how to do this.
Security 237- Work From Home Projects
March 17, 2020
Topics are going to get slow until even the hackers venture to do things. We decided to talk about things we can do while riding out the virus.
Security 236- VPNs
February 27, 2020
Another back to basics episode about VPNs, but with a new contender.Wireguard is awesome. Like straight up fast, secure, and awesome. https://www.wireguard.com/ https://pivpn.io
Security 235 – Antivirus
February 19, 2020
In this episode we talk about antivirus, and the lack of need for it. That is correct, we are saying to ditch commercial antivirus and use the built in offerings.
Security 234 – Lotta News
February 07, 2020
https://www.forbes.com/sites/zakdoffman/2020/01/30/severe-perfect-100-microsoft-flaw-confirmed-this-is-a-cloud-security-nightmare/ https://arstechnica.com/tech-policy/2020/01/ajit-pai-carrier-sales-of-phone-location-data-is-illegal-fcc-plans-punishment...
Security 233 – Whole Lot of Oops
January 29, 2020
Microsoft support database leak: https://www.comparitech.com/blog/information-security/microsoft-customer-service-data-leak/ Lastpass is having issues: https://www.bleepingcomputer.com/news/security/lastpass-mistakenly-removes-extension-from-chrome-sto...
Security 232- CryptoPatches
January 24, 2020
We talk about a few nasty bugs. One in Citrix, one in firefox that are being actively exploited. We then talk about how easy it is to be SIM jacked https://www.zdnet.com/article/this-free-windows-10-upgrade-offer-still-works-heres-why-and-how-to-get-it...
Security 231 – Backup 101
January 10, 2020
We start the new year off with back to basics. In this episode we talk about backing up. What is backing up, the best ways to back up, and some free and paid options.
Security 230 – CCPA
January 08, 2020
California implemented the “Strongest” consumer privacy act so far, unfortunately we are underwhelmed with it. https://caprivacy.github.io/caprivacy/ https://oag.ca.gov/data-broker/register
Security 229 – Windows 7 End of Life
December 20, 2019
In less than a month Windows 7 will stop getting security updates. While we don’t tell you to go to Windows 10, for most people that will be your best option. However, we talk about some Linux distros, ChromeOS, and OSX
Security 228 – Moar Passwords
December 11, 2019
Once again, we talk about about passwords. At this point, you have no choice ut to use a password manager.
Security 227 – Firefox
November 22, 2019
We take a look at why you should give Firefox another try. There are a few key differences when it comes to the privacy side that Chrome doesn’t have.
Security 226 – Dumb IOT
November 21, 2019
We have many stories of manufacturers failing to support their smart devices. Best buy Insignia TV’s will drop smart support. Netflix is dropping support on old roku Iris (Lowe’s smart hub) was stopped a few months ago Nest Google issue
Security 225 – Side Channel
November 13, 2019
side channel attacks – we’ve kind of covered this, but it’s probably good to revisit it a bit. Good food for thought. Google buying Fitbit Who is gathering data about you? (Loyalty cards, cable boxes, isp dns)
Security 224 – Backups
October 25, 2019
In today’s episode we plug Adversarialfashion.com. Clothing to thwart license plate readers. Phishing scam: https://twitter.com/DigitalLawyer/status/1181348689756864513https://twitter.com/DigitalLawyer/status/1181348689756864513 Backing up.
Security 223 – A Whole Lotta News
October 14, 2019
We just fly threw the news topics this week. WhatsApp bug: https://amp.news.com.au/technology/online/hacking/whatsapp-users-urged-to-update-as-hackers-break-into-phones-just-by-sending-them-a-gif/news-story/6fc5159ad8a406c9d7d7383067d8f645 Twitter 2FA ...
Security 222 – Candy
October 02, 2019
We had nothing overly general to talk about, so we decided to talk about Candy. We used this picture:
Security 221 – SIM Jacking
September 18, 2019
Twitter’s CEO Jack Dorsey, was a victim of SIM Jacking. We spend our show talking about why SIM jacking is a thing, and how you can protect yourself.
Security 220 – Municipal Ransomware
September 10, 2019
We talk about how insurance companies are more inclined to pay ransomware than to deal with backups.
Security 219 – CamScanner Malware
September 04, 2019
https://youtu.be/Bj_LL2C9rbE This week we are still having meeting problems, but we finally get things moving. We discuss CamScanner which infected many users with malware through the Android play store. Basically a bad API snuck malware in.
Security 218 – Moving off Hangouts
August 21, 2019
Hangouts officially closed shop to hosting video calls. We spent almost an hour trying different things to make something work. We still did a show, it isn’t great this week, but we didn’t want to give up. We are still trying different things,
Security 217 – Equifax Settlement
August 06, 2019
It is the week before Defcon, and we just have some tidbits. Equifax $125 | https://www.ftc.gov/enforcement/cases-proceedings/refunds/equifax-data-breach-settlement Capital One: https://www.theverge.com/2019/7/31/20748886/capital-one-breach-hack-thomps...
Security 216 – FTC Fines
July 28, 2019
We talk about the two fines levied on companies. First is facebook at 5 Billion, and second is Equifax at 700 million. https://www.ftc.gov/news-events/press-releases/2019/07/ftc-imposes-5-billion-penalty-sweeping-new-privacy-restrictions
Security 215 – Terms of Endearment
July 19, 2019
FaceApp is in the news again for putting some questionable things in their Terms of Service. We talk about the privacy issues, but more importantly, we discuss that this is normal.
Security 214 – Zoom to In-Person-Meetings
July 17, 2019
A 0 day exploit hitting Zoom hit this week. Basically if you know what Zoom is, you are probably vulnerable. We talk about ways to reduce your attack surface when it comes to meeting softwares. https://medium.com/@jonathan.
Security 213 – Blinky Boxes
July 09, 2019
All of these products that offer some sort of “better/safer internet” are just scams. We say why.
Security 212- Teaching the Trainers
July 02, 2019
The EFF put out a guide on how to host your own security event. Since we do something like that, we discuss https://sec.eff.org/articles/first-training