Description

In this episode...

• Friend and security researcher Chris Roberts steps into it... 
  • A poorly-conceived tweet, followed by mass hysteria
  • Most everyone talking about this is missing the point entirely
  • Of course, the EFF jumps in to keep from "chilling research" (roll eyes)
  • http://www.usatoday.com/story/tech/2015/04/19/chris-roberts-one-world-labs-united-rsa-computer-security-tweets/26036397/
  • The EFF take: https://www.eff.org/deeplinks/2015/04/united-airlines-stops-researcher-who-tweeted-about-airplane-network-security
• Corporate threat intelligence teams opting to go anonymous?
  • New company, making intelligence sharing work, anonymously?
  • Many questions on whether anonymity is workable in the intelligence space
  • https://www.eff.org/deeplinks/2015/04/united-airlines-stops-researcher-who-tweeted-about-airplane-network-security
• Target settles with Mastercard for $19M USD
  • Mastercard trying to settle this out, as alternative payout option for victims (this time the issuers, not card holders)
  • http://www.theregister.co.uk/2015/04/16/target_settles_with_mastercard_for_us19_million/
• The looming security threat no one is talking about
  • We're talking about it!
  • Windows 2003 is going out of service... after 12 yrs?
  • Final deadlines is July 14th
  • Panic? Compensating security controls?
  • http://www.healthcaredive.com/news/himss15-the-looming-it-security-threat-that-no-one-is-talking-about/386754/
• HTTP "ping of death" coming to a Windows IIS web-server near you
  • Patch now... people are actively exploiting this flaw to knock over web servers
  • Quick turn-around from "patch released" to "patch reverse-engineered to attack IIS servers"
  • http://www.theregister.co.uk/2015/04/16/http_sys_exploit_wild_ms15_034/
• JPMC algorithmn knowns you're an insider threat, before you do
  • Fascinating, applies to the financial world
  • Uses behavioral indicators
  • http://www

Have something to say? Let's hear it.

Support the show

>>> Please consider clicking the link above to support the show!
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
YouTube home: https://youtube.com/playlist?list=PLyo0dkKRvfVtWXjRxNISrhme1MgBj3C2U&si=scHDiTuLXSEQ9qHq
LinkedIn Page: https://www.linkedin.com/company/down-the-security-rabbithole-podcast/
X/Twitter: https://twitter.com/dtsr_podcast