Shows
Security Noise7.19 - Hacker Culture: The Self Modifying CodeHack the planet! In this episode of Security Noise, Geoff and Skyler chat with TrustedSec CSO & VP of Consulting Martin Bos and Principal Security Consultant Mike Felch about the evolution of hacker culture. They talk about their early experiences with hacking, cyber tech, and movies as well as cultural shifts over the years and how it has impacted the conference experience. Join us for a trip down memory lane with some cybersecurity pros! About this podcast: Security Noise, a TrustedSec Podcast hosted by Geoff Walton and Producer/Contributor Skyler Tuter, features our cybersecurity experts in...2025-07-0146 min
Security Noise7.18 - Hacking with AIOn this episode of Security Noise, Geoff and Skyler chat with Security Consultant Shane Jones about how AI can accelerate workflows and the pros and cons of using automation in penetration testing. Skyler covers his experiences with voice cloning, which AI tools assisted his engagement, and how he was able to trick the IVR system. About this podcast: Security Noise, a TrustedSec Podcast hosted by Geoff Walton and Producer/Contributor Skyler Tuter, features our cybersecurity experts in conversation about the infosec topics that interest them the most. Hack the planet! Find more cybersecurity resources on...2025-06-1639 min
Security Noise7.17 - RE: Active DirectoryOn this episode of Security Noise, Geoff and Skyler chat with Identity Security Architect Sean Metcalf about securing Active Directory, Entra, DS, and that messy space in between. Sean also talks about his recent presentation at RSA, common challenges in the identity security space, frequently seen penetration test findings, and more! About this podcast: Security Noise, a TrustedSec Podcast hosted by Geoff Walton and Producer/Contributor Skyler Tuter, features our cybersecurity experts in conversation about the infosec topics that interest them the most. Hack the planet! Find more cybersecurity resources on our website at https://t...2025-06-0225 min
Security Noise7.16 - What the DIT?Who doesn't love a new tool? In this episode of Security Noise, Geoff and Skyler talk to Senior Research Analyst Alex Ball about his new open-source tool DIT Explorer. DIT Explorer opens a .dit file of your choosing (NTDS.dit is the file housing the data for Windows Active Directory), loads the directory schema, and presents the objects as a tree. Alex takes us through the tool's functions, why and how he created it, and upcoming updates. Learn more about DIT Explorer in Alex's blog: https://trustedsec.com/blog/exploring-ntds-dit-part-1-cracking-the-surface-with-dit-explorer About this podcast: Security...2025-05-1227 min
Security Noise7.15 - Trust Me, at Least This Week!Let's Encrypt now offers certificates with 6-day lifetimes but what does that mean for the commercial TLS trust anchor world? On this episode of Security Noise, Geoff and Skyler are joined by Principal Security Consultant Justin Bollinger to discuss new options for certificate lifetimes and the implications of the new maximum ages, good and bad. About this podcast: Security Noise, a TrustedSec Podcast hosted by Geoff Walton and Producer/Contributor Skyler Tuter, features our cybersecurity experts in conversation about the infosec topics that interest them the most. Hack the planet! Find more cybersecurity resources on o...2025-04-2838 min
Security Noise7.14 - SOC Market: Trends in Threat DetectionIn this episode of Security Noise, Geoff and Skyler talk with IR Practice Lead Carlos Perez and Security Consultant Zach Bevilacqua about the world of security operations. They discuss current trends, the role of AI, challenges with traditional SIEM tools, and the value of proper logging and monitoring configurations. How important are proactive measures and effective communication within SOC teams? Find out what our team has to say on this episode of Security Noise! About this podcast: Security Noise, a TrustedSec Podcast hosted by Geoff Walton and Producer/Contributor Skyler Tuter, features our cybersecurity experts i...2025-04-1443 min
Security Noise7.13 - Oops I Clicked It Again: Business Email Compromise ExplainedHow has email security evolved over the years? What challenges do organizations face in protecting against sophisticated phishing attacks? Find out on this episode of Security Noise! Business Email Compromise (BEC) attacks are becoming increasingly common and sophisticated. In this episode, Geoff and Skyler speak with Incident Response Security Consultant Olivia Cate and Director of Advisory Innovation Rocky Brockway about BEC and what you can do to prepare your organization. We discuss which types of organizations are most vulnerable, the increasing rate of BEC attacks, and the methods used by attackers. Find out more about our Incident Response services...2025-03-2430 min
Security Noise7.12 - CactusCon: A Succulent Security EventIn this episode, Geoff and Skyler talk with TrustedSec Security Consultants Whitney Phillips and Justin Bollinger about their recent presentations and experiences at CactusCon in Mesa, Arizona. Justin delves deep into the complexities surrounding the Common Vulnerabilities and Exposures (CVE) identification process and bug bounty programs, highlighting key challenges security researchers face. Whitney shares her expertise on crafting and delivering impactful conference presentations, offering valuable insights into preparation, audience engagement techniques, and managing presentation anxiety. Both consultants provide their unique perspectives on the conference highlights, including notable keynotes, networking opportunities, and emerging security trends discussed at this prominent Southwest...2025-03-0625 min
Security Noise7.11 - Time Is Running Out For TikTokIt's time to talk about TikTok! On this episode of Security Noise, Geoff and Skyler speak with Senior Security Consultants Kelsey Segrue and Travis Kaun about algorithms, data security, and how we got to where we are today with the popular Chinese-owned app. They also discuss other Chinese technologies and devices that you may want to keep an eye on if you have them on your network. About this podcast: Security Noise, a TrustedSec Podcast hosted by Geoff Walton and Producer/Contributor Skyler Tuter, features our cybersecurity experts in conversation about the infosec topics that interest them...2025-02-2135 min
Security Noise7.10 - Authentication in 2025In this episode of Security Noise, Geoff and Skyler are joined by two TrustedSec experts, Security Consultant Edwin David and Principal Security Consultant Justin Bollinger, to talk about the evolution of authentication and what it looks like in 2025. We discuss passwordless authentication, multi-factor authentication (MFA), and the implications of OAuth and identity providers. The crew also discusses the dangers of using antiquated methods like SMS for authentication. About this podcast: Security Noise, a TrustedSec Podcast hosted by Geoff Walton and Producer/Contributor Skyler Tuter, features our cybersecurity experts in conversation about the infosec topics that...2025-02-0437 min
Security Noise7.9 - User Enum CONversation w/ nyxgeekIn this episode, Geoff and Skyler are joined by TrustedSec's Force Cloud Security Practice Lead @nyxgeek to talk about his findings after 3 years of user enumeration in Azure! He also dives into techniques and the implications of "presence data" in Microsoft Teams. We get a preview of his conference talks at (the now past) Shmoocon and HackCon, which he will be delivering in Norway on February 2, 2025. What is in the future of authentication and identity management? Listen now to hear nyxgeek's predictions for 2025. About this podcast: Security Noise, a TrustedSec Podcast hosted by Geoff Walton and Producer/C...2025-01-1727 min
Security Noise7.8 - Farewell 2024Find out what's in Security Noise 2024 Wrapped in this special year-end episode! Is AI being used to shape public perceptions and military strategies? Are we living in a simulation or is this all one big PsyOp? Geoff and Skyler are joined by IR Practice Lead and Director of Security Intelligence Carlos Perez to discuss how cybersecurity has evolved in 2024, the effectiveness of AI tools in coding, and the accountability of vendors for vulnerabilities. Cut through all the noise from this past year and learn what stands out! About this podcast: Security Noise, a TrustedSec Podcast...2024-12-2047 min
Security Noise7.7 - Amazing Stories in InfoSecAre all IT admins cave-dwelling gnomes? In this episode of Security Noise, Geoff and Skyler swap hard-to-believe, humorous, and sometimes scary InfoSec stories with members of the TrustedSec team: Senior Security Consultant Joe Sullivan and Principal Security Consultants Drew Kirkpatrick and Adam Compton. Listen as they share insights on network security, proactive measures, and a few mishaps along the way. Join us for some great discussion and stories from the battle field! About this podcast: Security Noise, a TrustedSec Podcast hosted by Geoff Walton and Producer/Contributor Skyler Tuter, features our cybersecurity experts in conversation about the...2024-12-0629 min
Security Noise7.6 - Ghost in The Machine: Hardware Hacking w/ Rob SimonIn this episode, Geoff and Skyler dive deep into hardware hacking with Rob Simon! Rob is the Mobile and Hardware Security Practice Lead at TrustedSec and shares the deets on hardware security assessments. The importance of hardware fundamentals in security, especially when it comes to IoT devices, is one of the key takeaways this week. Rob answers questions like: Who needs hardware assessments? What tools and techniques are used? And what potential vulnerabilities are associated with IoT devices? Join us for great discussion, stay for the lolz, and clutch your Flipper Zeros tight! ...2024-11-1427 min
Security Noise7.5 - The Rootin’ Tootin’ Best of Wild West Hackin’ FestYeehaw 🤠 This week, Skyler is reporting from the ground in Deadwood, South Dakota at Wild West Hackin' Fest and sits down for an interview with Senior Security Consultant Travis Kaun about the talk he gave there. Our guest Senior Security Consultant Kelsey Segrue, who attended the conference for the first time, chats with Geoff and Skyler about her most memorable moments from her native voyage to Deadwood. About this podcast: Security Noise, a TrustedSec Podcast hosted by Geoff Walton and Producer/Contributor Skyler Tuter, features our cybersecurity experts in conversation about the security topics that intere...2024-11-0121 min
Security Noise7.4 - Who's On My Network?Let's talk about Threat Hunting! On this episode of Security Noise, Geoff and Skyler are joined by Principal Security Consultants Shane Hartman and Justin Vaicaro to discuss the essential components of a successful Threat Hunting program. But where do you start and how do you access the best resources? Listen as they share insights on building an effective program, operationalizing practices, and the importance of a proactive mindset. About this podcast: Security Noise, a TrustedSec Podcast hosted by Geoff Walton and Producer/Contributor Skyler Tuter, features our cybersecurity experts in conversation about the security topics t...2024-10-1831 min
Security Noise7.3 - Security Outlook: CloudyIn this episode of Security Noise, we focus on Cloud Security Testing. Our guest , Security Consultant Edwin David, discusses current objectives for securing the cloud, tools for cloud testing, and the challenges of multi-cloud and hybrid environments. Key takeaways include: -The importance of MFA and conditional access -The need for strong password protection -The lack of a unified toolset for cloud testing -The complexities and security implications of multi-cloud and hybrid environments. About this podcast: Security Noise, a TrustedSec Podcast hosted by Geoff Walton and Producer/Contributor...2024-10-0435 min
Security Noise7.2 - What I Did at Hacker Summer CampThis week on Security Noise, we talk about "Hacker Summer Camp" also known as DEF CON and BlackHat in Las Vegas. We chat with Senior Security Consultants Luke Bremer and Aaron James, who both attended for the first time, about initial impressions and takeaways from the cons and Vegas itself. About this podcast: Security Noise, a TrustedSec Podcast hosted by Geoff Walton and Producer/Contributor Skyler Tuter, features our cybersecurity experts in conversation about the security topics that interest them the most. Listen and subscribe wherever you get your podcasts!2024-09-1936 min
Security Noise7.1 - CrowdStrike After ActionOn this episode of Security Noise, we discuss the recent CrowdStrike incident with our guests: Director of Advisory Innovation Rockie Brockway and Managing Director of Remediation Services Paul Sems. The incident occurred on July 19, 2024, when a CrowdStrike security platform update caused a large number of Windows platforms to fail to boot, resulting in the largest IT outage in history. We also touch on patch management and the balance between speed and risk. What is the potential for future attacks targeting kernel-level drivers? What can you expect from similar attacks in the future? Listen now as we cover all this...2024-09-0346 min
Security Noise6.23 - InfoSec Leaders of the FutureIn this episode, Geoff and Skyler are joined by special guests Keith Koehne and Matt Miller from Paradigm Cyber Ventures to discuss their mission to integrate cybersecurity into high school industrial tech education. Through this program, teachers at high schools around the U.S. are trained to deliver an in-depth cybersecurity curriculum to their students which introduces them to the field, giving them practical training and readying them for industry exams. The program prepares and empowers students to join the cybersecurity workforce, attend college, or both. About this podcast: Security Noise, a TrustedSec Podcast hosted b...2024-06-2834 min
Security Noise6.22 - VPNs: Can You Keep a Secret?On this episode of Security Noise, we talk to some veteran network guys to discuss CVE-2024–3661 and other thoughts about VPN security. Geoff and Skyler are joined by Security Consultant Philip DuBois and Principal Security Consultant Justin Bollinger to get their perspective on current issues. About this podcast: Security Noise, a TrustedSec Podcast hosted by Geoff Walton and Producer/Contributor Skyler Tuter, features our cybersecurity experts in conversation about the security topics that interest them the most. Listen and subscribe wherever you get your podcasts!2024-06-0745 min
Security Noise6.21 - JS-Tap Mk II: A Powerful Tool for Web Application Monitoring and AttackOn this episode, Skyler talks to Principal Security Consultant Drew Kirkpatrick who recently gave a talk at CackalackyCon where he demonstrated new features of his tool, JS-Tap. The tool allows red teams to monitor and attack web applications by rewriting code in the user's browser. Drew introduced a new feature called Mimic, which automates the process of generating custom JavaScript payloads for performing actions as the user in the application. The payloads can be integrated with a Command and Control (C2) system to execute tasks in the user's browser. Drew provided a demo of the tool using a vulnerable...2024-05-2435 min
Security Noise6.19 - InfoSec: Cybersecurity Education at Bedford HighJoin us as we continue our series on developing careers in InfoSec. In this episode, we talk about a unique opportunity for students at Bedford High School in Ohio, a school that is near and dear to TrustedSec Founder and CEO David Kennedy. We chat with Dave about the cybersecurity education program that was launched recently with help from long-time Bedford teacher Darren Pocek and others. Listen to learn how this program was created and how it helps prepare students for careers in cybersecurity. 2024-04-2631 min
Security Noise6.18 - Careers in InfoSec: Where do you want to go today?Security Noise starts a multi episode look at how to start or grow a career in infoSec. We begin by talking with Senior Security Consultant Kelsey Segrue and Security Consultant Olivia Cate who took what might be considered the traditional route. They share their stories and offer some insights into how to maximize the advantage of similar opportunities. About this podcast Security Noise, a TrustedSec Podcast, features our cybersecurity experts in conversation about the security topics that interest them the most. Hosted by Geoff Walton and Producer/Contributor Skyler Tuter. Listen and subscribe wherever you...2024-04-1142 min
Security Noise6.16 - Leak Week: Plumbing the Depths of Privacy PitfallsIt's Leak Week for this episode of Security Noise! Geoff and Skyler chat with Security Consultant Whitney Phillips and Senior Security Consultant Kurt Muhl about a number of recent privacy pitfalls including destructive ransomware groups such as LockBit, leaked government emails, and other data and privacy mishaps. References: https://krebsonsecurity.com/2024/02/u-s-internet-leaked-years-of-internal-customer-emails/ https://krebsonsecurity.com/2024/02/feds-seize-lockbit-ransomware-websites-offer-decryption-tools-troll-affiliates/ Security Noise, a TrustedSec podcast, is hosted by Geoff Walton and Producer/Contributor Skyler Tuter in conversation with cybersecurity experts discussing the security topics that interest them the most.2024-03-0841 min
Security Noise6.12 - Yule Time Tool TimeIn this very special year-end episode, we're cranking up the heat as we explore some of our favorite InfoSec tools of 2023. Guest Lineup: Drew Kirkpatrick - JS-Tap Unleashed Drew Kirkpatrick is the maestro behind "JS-Tap." He dropped this pentesting bombshell at Wild West Hackin' Fest this year with his talk, "JS-Tap: Weaponizing JavaScript for Red Teams." Skyler snagged an exclusive interview with Drew at the conference and we'll get to hear that discussion on this episode. Luke Bremer - Hackvertor Luke Bremer graces our podcast to dive into his...2023-12-0840 min
Security Noise6.11 - The Road Ahead: Red Teaming and Targeted OpsIn this episode, we wrap up our 4-part series, "The Road Ahead," with TrustedSec CTO Justin Elze and Targeted Operations Lead Jason Lang as they provide insight into how the targeted operations landscape has evolved for everyone, from client to consultant. We discuss what groups are doing red teaming and what the practice looks like today. Our guests also discuss the impacts of SSO, third-party IDP solutions, and assumed breach strategies. Get ready to be offensive on this episode of Security Noise! This episode concludes a short series called "The Road Ahead." Each episode highlights a...2023-11-1037 min
The Cyber Security Recruiter PodcastThe Cyber Security Recruiter talks to Justin Elze, CTO, TrustedSecWhat will YOU learn as a listener from this weeks show:✅ - You’ll hear about just how tough this weeks guest found it to break into the cyber security space. Clearly as CTO of TrustedSec Justin is literally ‘Killing it’ now but it hasn’t always been this way. How did Justin break in? How did he cope during the tough times? Massive learnings to be had around this conversation for everyone!✅ - As part of the research team Justin is researching the latest APT threats ‘in the wild’ within TrustedSec’s ERD labs. It’s fascinating t...2023-10-1656 min
Security Noise6.9 - The Road Ahead: Evolution of AppSec Blue TeamGeoff and Skyler discuss how the defense and vulnerability side of application development and deployment has evolved over the years. They are joined on the panel by two other members of the TrustedSec team, Paul Sems and Mitch Parish, who were there to help and lead organizations through those transitions in their current and prior roles. This episode is Part 2 of 4 in a short series called "The Road Ahead." Each episode will highlight an area of Information Security and feature guests who are experts in those areas. Come along as we explore the history and f...2023-10-0641 min
Security Noise6.8 - The Road Ahead: AppSecOn this episode of Security Noise, Geoff and Skyler speak with members of the TrustedSec Software Security team to discuss the past, present, and future of AppSec. Security Consultants Joe Sullivan and Philip DuBois and Director of Software Security Scott White weigh in on the evolution of security tools, how engagements have changed, and where AppSec is heading. This episode is Part 1 of 4 in a short series called "The Road Ahead." Each episode will highlight an area of Information Security and feature guests who are experts in those areas. Come along as we explore the...2023-09-1545 min
Security Noise6.6 - Episode VI: Farewell Mr. MitnickOn this episode of Security Noise, we remember the man who changed InfoSec forever—Kevin Mitnick, who recently passed away after a battle with cancer. TrustedSec CEO Dave Kennedy joins in to share some of our favorite stories and memories of Kevin. Security Noise is hosted by Geoff Walton and Producer/Contributor Skyler Tuter.2023-08-0429 min
Security Noise6.5 - Episode V: GreyHats Strike BackThis week on Security Noise, we discuss DOs and DON'Ts of Grey-hat work with the practice lead for research at TrustedSEc, Carlos Perez! Security Noise is hosted by Geoff Walton and Producer/Contributor Skyler Tuter.2023-07-2136 min
Security Noise6.4 - Episode IV: More Scary StoriesAre you afraid of the dark web? In this week's episode, several folks from TrustedSec's consulting team tell infosec campfire stories. Scott White, Kurt Mhul, Philip Dubois, Skyler Tuter, and Geoff Walton share tales of disaster, near disaster, spooky or straight-up funny stories, and discuss how those experiences changed their perspectives on infosec.2023-06-3030 min
Security Noise6.3 - Episode III: The Search For Terrestrial Artificial IntelligenceArtificial intelligence is progressing at a quick (and some say alarming) rate. Security Noise returns with a look at Large Language Models (LLMs) as well as AI audio and image generation, exploring emerging possibilities commercial, curious, and malicious. Listen in on the conversation with TrustedSec team members Carlos Perez and Rob Simon as they discuss current topics with host Geoff Walton and Producer/Contributor Skyler Tuter.2023-06-0234 min
Security Noise6.2 - Episode II Attacks on the Mobile ClientsHow much of your life is tied up on your phone? This week, Security Noise looks at the client side of mobile security. In this episode, we explore some current topics surrounding mobiles and how you should treat them. Joining us are several folks from the Mobile Security team at TrustedSec: Drew Kirkpatrick, Rob Simon, and Whitney Phillips. Security Noise is hosted by Geoff Walton with Producer/Contributor Skyler Tuter.2023-05-1245 min
Security Noise6.1 - Head in the CloudsSecurity Noise kicks off its inaugural episode with host Geoff Walton and Producer/Contributor Skyler Tuter! This week, we discuss cloud transitioning topics with our expert guest panel: Paul Sems, Edwin David, and Phil Rowland. Our guests have a range of perspectives and backgrounds in design, defense, and offensive security. In this episode, we explore the changing roles of IT personnel, where identities live, hybrid environments, DOs and DONTs, and share some stories. 2023-04-2038 min
Security Noise5.21 - Turn 21Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Justin Elze, Justin Bollinger, and David Boyd. Get ahead of the new PCI requirements PCI 4.0 is coming! Find out how the new requirements will affect your organization’s goals and prepare now, with a PCI DSS assessment from TrustedSec. Penetration testing the cloud isn’t the same as your network Go to TrustedSec.com to get our guide on how to get the most o...2023-03-2433 minSecurity Noise5.20 - Chatting with Code in the CloudWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Edwin David, Kelsey Segrue, and Alex Hamerstone. Get ahead of the new PCI requirements PCI 4.0 is coming! Find out how the new requirements will affect your organization’s goals and prepare now, with a PCI DSS assessment from TrustedSec. Penetration testing the cloud isn’t the same as your network Go to TrustedSec.com to get our guide on how to get the most o...2023-03-1726 minSecurity Noise5.19 - The Coffeemaker Needs a VLANWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Edwin David, David Boyd and Skyler Tuter. Get ahead of the new PCI requirements PCI 4.0 is coming! Find out how the new requirements will affect your organization’s goals and prepare now, with a PCI DSS assessment from TrustedSec. Penetration testing the cloud isn’t the same as your network Go to TrustedSec.com to get our guide on how to get the most o...2023-03-0339 minSecurity Noise5.18 - Looking Inside the ThingsWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Alex Hamerstone, Whitney Phillips, Skyler Tuter. Get ahead of the new PCI requirements PCI 4.0 is coming! Find out how the new requirements will affect your organization’s goals and prepare now, with a PCI DSS assessment from TrustedSec. Penetration testing the cloud isn’t the same as your network Go to TrustedSec.com to get our guide on how to get the most out of...2023-02-1030 minSecurity Noise5.17 - C++ On the No-Fly ListWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Alex Hamerstone, Whitney Phillips, Steven Erwin, and Mitch Parish. Announcements Join the TrustedSec Discord Community TrustedSec is on Discord! Join our server to interact with the security community and the TrustedSec team. Go to discord.gg/trustedsec to join. Stories Title: A call to action: Think seriously about “safety”; then do something sensible about it URL: https://www.open-std.org/jt...2023-01-2727 minSecurity Noise5.16 - LastPass the Last Time Honest (Well Maybe)Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Justin Bollinger, Scott White, and Scott Nusbaum Announcements Join the TrustedSec Discord Community TrustedSec is on Discord! Join our server to interact with the security community and the TrustedSec team. Go to discord.gg/trustedsec to join. Stories Title: Lastpass: Hackers stole customer vault data in cloud storage breach URL: https://www.bl...2023-01-0631 minSecurity Noise5.15 - Quantum Malware and Your Passwords (again)Welcome to the TrustedSec Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Justin Bollinger, Alex Hamerstone, and Skyler Tuter. Announcements Join the TrustedSec Discord Community TrustedSec is on Discord! Join our server to interact with the security community and the TrustedSec team. Go to discord.gg/trustedsec to join. Stories Title: FBI, CISA say Cuba ransomware gang extorted $60M from victims this year URL: https://techc...2022-12-0922 minSecurity Noise5.14 - Nothing to See Here, Move AlongWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Kurt Muhl, Justin Bollinger, and David Boyd Title: A simple Android lock screen bypass bug landed a researcher $70,000 URL: https://techcrunch.com/2022/11/14/android-lock-screen-bypass-google-pixel/ Author: Zack Whittaker Title: NSA Releases Guidance on How to Protect Against Software Memory Safety Issues URL: https://www.nsa.gov/Press-Room/News-Highlights/Article/Article/3215760/nsa-releases-guidance-on-how-to-protect-against-software-memory-safety-issues/ Author: NSA Title: Flight R...2022-11-2120 minSecurity Noise5.13 - A Dastardly End for Windows 7Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Alex Hamerstone, Joe Sullivan, and Whitney Phillips. Announcements Join the TrustedSec Discord Community TrustedSec is on Discord! Join our server to interact with the security community and the TrustedSec team. Go to discord.gg/trustedsec to join. Stories Title: Security certification body (ISC)² defends ‘undemocratic’ bylaw changes URL: https://portswigger.net/daily-swig/security-certification-body-isc-defends-undemocratic-bylaw-changes Author: Emma Woollaco...2022-11-0719 minSecurity Noise5.12 - BYO-Driver and GrrConWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Justin Bollinger, Luke Bremer, and Whitney Phillips. Stories Title: No fix in sight for mile-wide loophole plaguing a key Windows defense for years URL: https://arstechnica.com/information-technology/2022/10/no-fix-in-sight-for-mile-wide-loophole-plaguing-a-key-windows-defense-for-years/ Author: Dan Goodin Title: Intel's Alder Lake BIOS Source Code Reportedly Leaked Online URL: https://www.tomshardware.com/news/intels-alder-lake-bios-source-code-reportedly-leaked-online Author...2022-10-1721 minSecurity Noise5.11 - Word Clouds, Password CloudsWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Scott White, Justin Bollinger, and Patrick Mayo. Stories URL: https://www.bleepingcomputer.com/news/security/lastpass-says-hackers-had-internal-access-for-four-days/?mibextid=d3iphx Author: Sergiu Gatlan Title: Microsoft Edge and Google Chrome enhanced spellcheck feature exposes passwords URL: https://www.neowin.net/news/microsoft-edge-and-google-chrome-enhanced-spellcheck-feature-exposes-passwords/ Author: Steve Bennett Title: AttachMe: critical OCI vulnerability allows unauth...2022-09-2727 minSecurity Noise5.10 - Uber ResponsibilityWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Skyler Tuter, Alex Hamerstone, and David Boyd. Stories Title: Google Chrome Emergency Update Fixes New Zero-Day Used in Attacks URL: https://www.bleepingcomputer.com/news/security/google-chrome-emergency-update-fixes-new-zero-day-used-in-attacks/ Author: Sergiu Gatlan Title: IRS says it exposed some confidential taxpayer data on website URL: https://www.marketwatch.com/story/irs-says-it-exposed-some-confidential-taxpayer-data-on-website-11662148381 Author: Richard Rubin2022-09-2733 minSecurity Noise5.9 - Pre-Shared (Private) KeysSHOW NOTES Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Steve Erwin, Alex Hamerstone, and Melvin Langvik. Stories Title: PayPal Phishing Scam Uses Invoices Sent Via Paypal URL: https://krebsonsecurity.com/2022/08/paypal-phishing-scam-uses-invoices-sent-via-paypal/ Author: Brian Krebs Title: Hyundai Uses Example Keys for Encryption System URL: https://www.theregister.com/2022/08/17/software_developer_cracks_hyundai_encryption/ Author: Thomas Claburn 2022-08-2923 minSecurity Noise5.8 - Who is Reading Your Gmail?Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Steve Erwin, Justin Bollinger, and Skyler Tuter. Stories Title: New Gmail Attack Bypasses Passwords And 2FA To Read All Email URL: https://www.forbes.com/sites/daveywinder/2022/08/02/gmail-warning-as-new-attack-bypasses-passwords--2fa-to-read-all-email/?sh=711642763a12 Author: Davey Winder Title: Post-quantum encryption contender is taken out by single-core PC and 1 hour URL: https://arstechnica.com/information-technology/2022/08/sike-once-a-post-quantum-encryption-contender-is-koed-in-nist-smackdown/ Author: Dan...2022-08-0527 minSecurity Noise5.7 - Privacy ScreenWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Justin Bollinger, Alex Hamerstone, and Edwin David. Stories Title: Your Phone's Lock Screen Is Getting a Big Revamp URL: https://www.cnet.com/tech/mobile/your-phone-lock-screen-is-getting-a-big-revamp/ Author: Lisa Eadicicco Title: Facebook has started to encrypt links to counter privacy-improving URL Stripping URL: https://www.ghacks.net/2022/07/17/facebook-has-started-to-encrypt-links-to-counter-privacy-improving-url-stripping/ Author: Martin Brinkmann Tool Time...2022-07-2220 minSecurity Noise5.6 - A Nice Relaxing Dip into PowershellWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Justin Bollinger, Skyler Tuter, and Costa Petros. Stories Title: Mega says it can’t decrypt your files. New POC exploit shows otherwise URL: https://arstechnica.com/information-technology/2022/06/mega-says-it-cant-decrypt-your-files-new-poc-exploit-shows-otherwise/ Author: Dan Goodin Title: NSA shares tips on securing Windows devices with PowerShell URL: https://www.bleepingcomputer.com/news/security/nsa-shares-tips-on-securing-windows-devices-with-powershell/ Author: Ionut Ilascu Link...2022-07-0523 minSecurity Noise5.5 - Outspending the Ransomware GangsWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Justin Bollinger, Travis Kaun, and David Boyd. Stories Title: Most Security Product Byers Aren’t Getting Promised Results URL: https://www.esecurityplanet.com/trends/most-security-product-buyers-arent-getting-promised-results/ Author: Paul Shread Title: NSA: Ransomware Gangs Are Getting Rich Enough to Buy Zero-Day Exploits URL: https://www.pcmag.com/news/nsa-ransomware-gangs-are-getting-rich-enough-to-buy-zero-day-exploits Author: Michael Kan Inter...2022-06-1723 minSecurity Noise5.4 - Free SushiSHOW NOTES Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Justin Bolinger, Alex Hamerstone, and David Boyd. Announcements Join the TrustedSec Discord Community TrustedSec is on Discord! Join our server to interact with the security community and the TrustedSec team. Go to discord.gg/trustedsec to join. Enrollment is open Enrollment is open for the next online training course, PowerShell for Offen...2022-06-0325 minSecurity Noise5.3 - Intergalactic Security OutpostWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Skyler Tuter, Edwin David, and Alex Hamerstone. Announcements Join the TrustedSec Discord Community TrustedSec is on Discord! Join our server to interact with the security community and the TrustedSec team. Go to discord.gg/trustedsec to join. Stories Title: Your Phone May Soon Replace Many of Your Passwords URL: https://krebsonsecurity.com/2022/05/your-phone-may-soon-replace-many-of-your-passwords/ ...2022-05-1325 min
Security Noise5.2 - Hope I Never Lose My Crypto-WalletWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Justin Bollinger, David Boyd, and Alex Hamerstone. Stories Title: Cybercriminals do their homework for latest banking scam URL: https://www.theregister.com/2022/04/15/the_latest_scam_pay_yourself/ Author: Brandon Vigliarolo Title: Breach of Internal Tools at Mailchimp Used To Deliver Phishing Attacks Targeted at Crypto Wallets URL: https://www.cpomagazine.com/cyber-security/breach-of-internal-tools-at-mailchimp-used-to-deliver-phishing-attacks-targeted-at-crypto-wallets/ Author: Scott Ike...2022-04-2527 min
Security Noise5.1 - Hi, I am Officer FriendlyWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rick Yocum, Rob Simon, and David Boyd. Announcements Join the TrustedSec Discord Community TrustedSec is on Discord! Join our server to interact with the security community and the TrustedSec team. Go to discord.gg/trustedsec to join. Stories Title: Hackers Gaining Power of Subpoena Via Fake “Emergency Data Requests” URL: https://krebsonsecurity.com/2022/03/hackers-gaining-power-of-subpoena-via-fake-emergency-data-requests/ Author...2022-04-1135 min
Lay of The Land#67: David Kennedy (Binary Defense and TrustedSec)Our guest today is Dave Kennedy (@HackingDave), a cybersecurity authority whose mission is to drive the industry forward and make the world a more secure place. In addition to founding two large-scale cybersecurity firms — TrustedSec and Binary defense — Dave has testified before Congress on issues of national security and has appeared as a subject matter expert on hundreds of national news and TV shows.Dave started his career serving in the United States Marine Corps focusing on cyber warfare and forensic analytics, including two tours to Iraq. All experience he was able to leverage to become Chie...2022-03-3152 minSecurity Noise5.0 - Report All The ThingsWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Alex Hamerstone, Justin Bollinger, and Drew Kirkpatrick. Announcements Join the TrustedSec Discord Community TrustedSec is on Discord! Join our server to interact with the security community and the TrustedSec team. Go to discord.gg/trustedsec to join. Stories Title: Hacked US companies to face new reporting requirements URL: https://apnews.com/article/russia-ukraine-technology-business-congress-gary-peters-c46e063220568b2beb56220ac60f60412022-03-1827 minSecurity Noise5.0preAlpha1 - Shocking RevelationsSHOW NOTES This episode features the following members: Adam Compton, David Boyd, and Justin Bollinger. Stories Title: Vulnerable U.S. electric grid facing threats from Russia and domestic terrorists URL: https://www.cbsnews.com/news/america-electric-grid-60-minutes-2022-02-27/ Author: Bill Whitaker Title: BitConnect’s Indicted Founder Kumbhani Vanished, SEC Says URL: https://www.bloomberg.com/news/articles/2022-03-01/bitconnect-s-indicted-founder-kumbhani-has-disappeared-sec-says Author: David Voreacos Tool Time Title: bkcrack Link: https://github.com/kimci86/bkcra...2022-03-0431 minSecurity Noise4.27 - Macro VisionWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Edwin, David, David Boyd, and Justin Elze. Stories Title: Website fined by German court for leaking visitor's IP address via Google Fonts URL: https://www.theregister.com/2022/01/31/website_fine_google_fonts_gdpr Author: Thomas Claburn Title: Helping users stay safe: Blocking internet macros by default in Office URL: https://techcommunity.microsoft.com/t5/microsoft-365-blog/helping-users-stay-safe-blocking-internet-macros-by-default-in/ba-p/3071805 2022-02-1132 min
Security Noise4.26 - Calling all Malware Authors Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Justin Bollinger, Alex Hamerstone, and Melvin Langvik. Stories Title: Linux malware is on the rise. Here are three top threats right now URL: https://www.zdnet.com/article/linux-malware-is-on-the-rise-here-are-three-top-threats-right-now/ Author: Liam Tung Title: Intel CEO Urges Lawmakers to ‘Not Waste This Crisis’ in Chip Push URL: https://www.bloomberg.com/news/articles/2022-01-19/intel-urges-lawmakers-to-not-waste-this-crisis-with-chip-push Au...2022-01-2823 minSecurity Noise4.25 - Dependency HellWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, David Boyd and Justin Bollinger. Stories Title: Dev corrupts NPM libs 'colors' and 'faker' breaking thousands of apps URL: https://www.bleepingcomputer.com/news/security/dev-corrupts-npm-libs-colors-and-faker-breaking-thousands-of-apps/ Author: Ax Sharma Title: FTC warns legal action against companies who fail to mitigate Log4Shell URL: https://therecord.media/ftc-warns-legal-action-against-companies-who-fail-to-mitigate-log4shell/ Author: Catalin Cimpanu 2022-01-1429 min
Security Noise4.24 - Sealing Wax and Other Fancy Stuff Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Alex Hamerstone, David Boyd, and Dave Kennedy! Announcements Join the TrustedSec Discord Community TrustedSec is on Discord! Join our server to interact with the security community and the TrustedSec team. Go to discord.gg/trustedsec to join. Stories Title: FBI document shows what data can be obtained from encrypted messaging apps URL: https://therecord.media/fbi...2021-12-1029 min
Security Noise4.23 - Don't Sideload This Podcast Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Justin Bollinger, Melvin Langvik, and Edwin David. Announcements Join the TrustedSec Discord Community TrustedSec is on Discord! Join our server to interact with the security community and the TrustedSec team. Go to discord.gg/trustedsec to join. Stories Title: Microsoft to Kill OneDrive for Windows 7, 8, 8.1 in Early 2022 URL: https://www.thurrott.com/cloud/microsoft-consumer-services/onedrive/259004/micr...2021-11-1527 minSecurity Noise4.22 - That is a Lot Mobile Data You Have There Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Justin Bollinger, Stefano Ratto, and David Boyd. Announcements Join the TrustedSec Discord Community TrustedSec is on Discord! Join our server to interact with the security community and the TrustedSec team. Go to discord.gg/trustedsec to join. Stories of Interest Title: FBI Raids Chinese Point-of-Sale Giant PAX Technology URL: https://krebsonsecurity.com/2021/10/fbi-raids-chinese-point-of-sale-giant-pax-technology/ Auth...2021-10-2924 min
Security Noise4.21 - A Route to Failure Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Justin Bollinnger, Carlos Perez, and David Boyd. Announcements Join the TrustedSec Discord Community TrustedSec is on Discord! Join our server to interact with the security community and the TrustedSec team. Go to discord.gg/trustedsec to join. PentesterLab Giveaway To enter visit https://www.trustedsec.com/podcastgiveaway please submit on or before October 22, 2021 to be eligible. St...2021-10-0832 min
Security Noise4.20 - How the Sausage is a MadeWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Scott White, Alex Hamerstone, and David Boyd. Announcements Join the TrustedSec Discord Community TrustedSec is on Discord! Join our server to interact with the security community and the TrustedSec team. Go to discord.gg/trustedsec to join. PentesterLab Giveaway To enter visit https://www.trustedsec.com/podcastgiveaway please submit on or before October 22, 2021 to be eligible. St...2021-09-2430 minSecurity Noise4.19 - Where Do Want to Work Today?Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, Carlos Perez, and Justin Bollinger . Stories Title: You can post LinkedIn jobs as almost ANY employer URL: https://www.bleepingcomputer.com/news/security/you-can-post-linkedin-jobs-as-almost-any-employer-so-can-attackers/ Author: Ax Sharma Title: ChaosDB: How we hacked thousands of Azure customers’ databases URL: https://www.wiz.io/blog/chaosdb-how-we-hacked-thousands-of-azure-customers-databases Authors: Nir Ohfeld and Sagi Tzadik Tool...2021-09-0332 min
Security Noise4.18 - Hacker to Hacker - Petit Potam Welcome to the Trusted Security Podcast – In this hacker to hacker talk Justin gets Geoff up to speed on some newer ADS relay attacks. The episode features the following members: Geoff Walton and Justin Bollinger. Links https://github.com/sensepost/assless-chaps https://us-cert.cisa.gov/ncas/current-activity/2021/07/27/microsoft-releases-guidance-mitigating-petitpotam-ntlm-relay https://us-cert.cisa.gov/ncas/current-activity/2021/07/27/microsoft-releases-guidance-mitigating-petitpotam-ntlm-relay2021-08-0621 minSecurity Noise4.17 - It's Zero-day in the Mobile Phone WorldWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Justin Bollinger, Alex Hamerstone and David Boyd. Stories Title: New Law Will Help Chinese Government Stockpile Zero-Days URL: https://www.securityweek.com/new-law-will-help-chinese-government-stockpile-zero-days Author: Kevin Townsend Title: Huge data leak shatters the lie that the innocent need not fear surveillance URL: https://www.theguardian.com/news/2021/jul/18/huge-data-leak-shatters-lie-innocent-need-not-fear-surveillance Author: Paul Lewis Titl...2021-07-2327 min
Security Noise4.16 - What Do Printer Techs Make These Days?Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rick Yocum, Alex Hamerstone, and David Boyd. Announcements Black Hat Training Join the TrustedSec Black Hat virtual training course: Actionable Defense - Understanding Adversary Tactics, taking place virtually July 31st - August 3rd. Go to blackhat.com/us-21 for more information. Join the TrustedSec Discord Community TrustedSec is on Discord! Join our server to interact with the security community and...2021-07-0234 min
Security Noise4.15 - A Breach is a Breach No Matter How SmallWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Justin Bollinger, Alex Hamerstone, and Rockie Brockway. Announcements Black Hat Training Join the TrustedSec Black Hat virtual training course: Actionable Defense - Understanding Adversary Tactics, taking place virtually July 31st - August 3rd. Go to blackhat.com/us-21 for more information. Join the TrustedSec Discord Community TrustedSec is on Discord! Join our server to interact with the secu...2021-06-1823 min
Security Noise4.14 - Because 4.13 Could Never Have Brought Us LuckWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Scott Nusbaum, and Paul Sems. Announcements Black Hat Training Join the TrustedSec Black Hat virtual training course: Actionable Defense - Understanding Adversary Tactics, taking place virtually July 31st - August 3rd. Go to blackhat.com/us-21 for more information. Carlos Mimikatz Training Enroll in our next online training course: Mimikatz: Everything You Need to Know. Taking place on June 10- J...2021-05-2827 minSecurity Noise4.12 - Got Gas?Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Kelsey Segrue, Alex Hamerstone and David Boyd . Stories Title: Absolute stupidity': Cybersecurity experts condemn White House for breaking with FBI and suggesting private companies could pay ransomware demands URL: https://www.dailymail.co.uk/news/article-9566489/Cybersecurity-experts-condemn-White-House-suggesting-companies-canpay-ransomware-demands.html Author: Rob Crilly Title: Thousands of Tor exit nodes attacked cryptocurrency users over the past year URL: http...2021-05-1425 min
Security Noise4.11 - A Bountiful Harvest of Exploits SHOW NOTES Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Kelsey Segrue, Justin Bollinger, and David Boyd. Stories Title: Deere John: Researcher Warns Ag Giant’s Site Provides a Map to Customers, Equipment URL: https://securityledger.com/2021/04/deere-john-researcher-warns-ag-giants-site-provides-a-map-to-customers-equipment/ Author: Paul Roberts Title: D.C. Police Department Victim Of Apparent Ransomware Attack URL: https://www.npr.org/2021/04/27/991116344/d-c-police-department-victim-of-apparent-ransomware-attack Author: Jaclyn Diaz2021-04-3033 minSecurity Noise4.10.1998 - You Have Only Yourself to BlameWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon and David Boyd . Stories Title: NAME:WRECK vulnerabilities impact millions of smart and industrial devices URL: https://therecord.media/namewreck-vulnerabilities-impact-millions-of-smart-and-industrial-devices/ Author: Catalin Cimpanu Original Research Link: https://www.forescout.com/company/resources/namewreck-breaking-and-fixing-dns-implementations/ Title: PHP's Git server hacked to add backdoors to PHP source code URL: https://www.bleepingcomputer.com/news/security/phps-git-server-hacked-to-add-backdoors-to-php-source-code/...2021-04-1631 min
Security Noise4.9 - Message Me that Review SHOW NOTES Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, Justin Bollinger and David Boyd . Stories Title: A Security App’s Fake Reviews Give Us a Window Into ‘App Store Optimization’ URL: https://www.vice.com/en/article/n7vxgd/a-security-apps-fake-reviews-give-us-a-window-into-app-store-optimization Author: Lorenzo Franceschi-Bicchierai Title: Can We Stop Pretending SMS is Secure Now URL: https://krebsonsecurity.com/2021/03/can-we-stop-pretending-sms-is-secure-now/ Author...2021-03-2626 min
Security Noise4.8 - Go Watch Exchange SHOW NOTES Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rick Yocum, Logan Sampson, and David Boyd . Stories Title: Finding Evil Go Packages URL: https://michenriksen.com/blog/finding-evil-go-packages/ Author: Michael Henriksen Title: Hackers Breach Thousands of Security Cameras, Exposing Tesla, Jails, Hospitals URL: https://www.bloomberg.com/news/articles/2021-03-09/hackers-expose-tesla-jails-in-breach-of-150-000-security-cams Author: William Turton 2021-03-1233 minSecurity Noise4.7 - Flash and Malware Sharing One Last Headline?Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Scott White, Adam Compton, and David Boyd. Title: New Windows 10 update permanently removes Adobe Flash URL: https://www.zdnet.com/article/new-windows-10-update-permanently-removes-adobe-flash Author: Liam Tung Title: M1 Malware Has Arrived URL: https://gizmodo.com/m1-malware-has-arrived-1846286255 Author: Victoria Song Title: The Long Hack: How China Exploited a U.S. Tec...2021-02-2631 min
Security Noise4.6 - Let’s Pour Cold Water on Your F A V I C O N S!Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, Justin Bollinger. Stories of Interest Title: Tales of F A V I C O N S and Caches: Persistent Tracking in Modern Browsers URL: https://www.cs.uic.edu/~polakis/papers/solomos-ndss21.pdf ALT URL: https://www.vice.com/en/article/n7v5y7/browser-favicons-can-be-used-as-undeletable-supercookies-to-track-you-online Authors: Konstantinos Solomos, John Kristoff, Chris Kanich, Jason Polakis Ti...2021-02-1230 minSecurity Noise4.5 - Hello Fellow 0-day Researchers!Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, David Boyd, Alex Hamerstone, and Justin Bollinger. Title: New campaign targeting security researchers URL: https://blog.google/threat-analysis-group/new-campaign-targeting-security-researchers/ Author: Adam Weidemann Title: After disabling Adobe Flash trains in Dalian, China could hardly open URL: https://verietyinfo.com/taiwaneng/after-disabling-adobe-flash-trains-in-dalian-china-could-hardly-open-technews-%E7%A7%91%E6%8A%80-%E6%96%B0-%E6%8A%A5/ ALT URL: https://arstechnica.com/tech-policy/2021/01/deactivation-of-flash-cripples-chinese-railroad-for-a-day/ 2021-01-2928 min
TestGuild Security Testing PodcastTrustedSec Sysmon Community Guide with Carlos PerezAre you struggling to find information on how to use Sysmon for your security efforts? In this episode, Carlos Perez, a Research Team lead at TrustedSec, shares all about the TrustedSec Sysmon Community Guide. Discover why Carlos created this guide and how it helps empower defenders with the information they need to leverage this great tool. Also, listen in to hear about Carlos’s extensive knowledge gained in working to detect attackers.2021-01-2829 min
Security Noise4.4 - Opsec is HardWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Carlos Perez, Adam Compton, Kelsey Segrue. [Stories of Interest] Title: All Aboard the Pequod! URL: https://krebsonsecurity.com/2021/01/all-aboard-the-pequod/ Author: Brian Krebs Title: Kazuar: Multiplatform Espionage Backdoor with API Access URL: https://unit42.paloaltonetworks.com/unit42-kazuar-multiplatform-espionage-backdoor-api-access/ Author: Brandon Levene, Robert Falcone and Tyler Halfpop Title: Security researchers claims downl...2021-01-1536 minSecurity Noise4.3 - Security Dumpster FireWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rick Yocum, Alex, and David Boyd. Title: GE puts default password in radiology devices, leaving healthcare networks exposed URL: https://arstechnica.com/information-technology/2020/12/default-password-in-radiology-devices-leaves-healthcare-networks-open-to-attack/ Author: Dan Goodin Title: FireEye, a Top Cybersecurity Firm, Says It Was Hacked by a Nation-State URL: https://www.nytimes.com/2020/12/08/technology/fireeye-hacked-russians.html Author: David E. Sanger and Nicol...2020-12-1436 min
Security Noise4.2 - Can you Trust Criminal Types with your IPs?Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Alex Hamerstone, Justin Bollinger, and Rob Simon. [Stories] Title: Apple search bot leaked internal IPs via proxy configuration URL: https://www.bleepingcomputer.com/news/security/apple-search-bot-leaked-internal-ips-via-proxy-configuration/ Author: Ax Sharma Title: Woman accused of impersonating prosecutor, dropping criminal charges against herself URL: https://www.unionleader.com/news/courts/woman-accused-of-impersonating-prosecutor-dropping-criminal-charges-against-herself/article_1fdb1551-147d-53dd-ad45-6680bfc556fa.ht...2020-11-1626 min
Security Noise4.1 - A Preview of Things to ComeWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rick Yocum, and David Boyd. Stories Title: Link Previews: How a Simple Feature Can Have Privacy and Security Risks URL: https://www.mysk.blog/2020/10/25/link-previews/ Author: Talal Haj Bakry and Tommy Mysk Title: Hackers behind life-threatening attack on chemical-maker are sanctioned URL: https://arstechnica.com/information-technology/2020/10/us-sanctions-russian-hackers-who-hit-chemical-maker-with-dangerous-malware/ Author: Dan Goodin Tit...2020-10-3034 minSecurity Noise4.0 - Shameless Version Bump!Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Costa Petros, and David Boyd. Stories Title: POLICE departments across the country Monday night reported their 911 systems nonoperational URL: https://www.the-sun.com/news/1548945/911-lines-go-down-across-us/ Author: Catherina Gioino Title: Looks Like the Windows XP Source Code Just Leaked on 4chan URL: https://www.gizmodo.com.au/2020/09/looks-like-the-windows-xp-source-code-just-leaked-on-4chan/ Author: Cam Wilson Title...2020-10-0231 minSecurity Noise3.36 - Download My Tesla ThemeWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Aaron James, Alex Hamerstone, and David Boyd. Stories Title: Windows 10 themes can be abused to steal Windows passwords URL: https://www.bleepingcomputer.com/news/microsoft/windows-10-themes-can-be-abused-to-steal-windows-passwords/ Author: Lawrence Abrams Title: The Big Tesla Hack: A hacker gained control over the entire fleet, but fortunately he’s a good guy URL: https://electrek.co/2020/08/27/tesla-hack-control-over-entire-fleet/ Author...2020-09-1126 min
Security Noise3.35 - PubWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rick Yocum, Logan Sampson, and Justin Bollinger. Stories Title: Former Uber Executive Charged With Paying 'Hush Money' To Conceal Massive Breach URL: https://www.npr.org/2020/08/20/904113981/former-uber-executive-charged-with-paying-hush-money-to-conceal-massive-breach Author: Shannon Bond Title: Report: AI Company Leaks Over 2.5M Medical Records URL: https://www.pcmag.com/news/report-ai-company-leaks-over-25m-medical-records Author: Matthew Humphries Titl...2020-08-2834 minSecurity Noise3.34 - Taken your Pulse Lately?Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rick Yocum, David Boyd, and Aaron James. Stories: Title: Hacker leaks passwords for 900+ enterprise VPN servers URL: https://www.zdnet.com/article/hacker-leaks-passwords-for-900-enterprise-vpn-servers/ Author Catalin Cimpanu Title: Three Charged in July 15 Twitter Compromise URL: https://krebsonsecurity.com/2020/07/three-charged-in-july-15-twitter-compromise/ Author: Brian Krebs Title: Web Cache Entanglement: Novel...2020-08-0736 min
Security Noise3.33 - Too Many, Too Old, or Too Familiar SHOW NOTES Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Scott White, Rob Simon, and Alex Hamerstone. Title: The more cybersecurity tools an enterprise deploys, the less effective their defense is URL: https://www.zdnet.com/article/the-more-cybersecurity-tools-an-enterprise-deploys-the- less-effective-their-defense-is/ Author: Charlie Osborne Title: Home Router Security Report 2020 URL:https://www.fkie.fraunhofer.de/content/dam/fkie/de/documents/HomeRouter/HomeRouter Security_2020_Beri...2020-07-1734 min
Security Noise3.32 - Happy Fourth! SHOW NOTES Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rick Yocum, David Boyd, and Scott Nusbaum Stories Title: A hacker gang is wiping Lenovo NAS devices and asking for ransoms URL: https://www.zdnet.com/article/a-hacker-gang-is-wiping-lenovo-nas-devices-and-asking-for-ransoms/ Author: Catalin Cimpanu Title: FCC formally declare Huawei, ZTE ‘national security threats’ URL: https://techcrunch.com/2020/06/30/fcc-huawei-zte-national-security/ Author: Zack Whittaker, Devin Coldewey...2020-07-0223 minSecurity Noise3.31 - See the World They SaidWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, Drew Kirkpatrick, and David Boyd. Title: Career Choice Tip: Cybercrime is Mostly Boring URL: https://krebsonsecurity.com/2020/05/career-choice-tip-cybercrime-is-mostly-boring/ Author: Brian Krebs Title: Ripple 20 URL: https://www.jsof-tech.com/ripple20/\ Authors: Moshe Kol, Ariel Schon, Shlomi Oberman, Andrey Zagrebin, Yuli Shapiro Title: Dating Apps Exposed 845 GB of Explicit Photos, Chats, and More URL: https://www.wired.com/stor...2020-06-1931 min
Layer 8 PodcastEpisode 27: TrustedSec Social Engineers Ask Me AnythingFor this episode, we have another Ask Me Anything treat for you. Today’s guests are four social engineers from TrustedSec. We’ll hear from David Boyd, Paul Koblitz, Scot Berner and Jason Lang. Let's talk about their favorite engagements, some times when things went well, and some engagements that didn’t go so well and how they handle the situation when an engagement goes upside down. We’ll hear of one time when a medical procedure almost went too far and plus some resources on how to get started in social engineering.2020-05-2556 min
Security Noise3.30 - Print Me Some Monero TendiesWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Justin Bollinger, Paul Sems, and David Boyd [Stories] Title: PrintDemon: Print Spooler Privilege Escalation, Persistence & Stealth (CVE-2020-1048 & more) URL: https://windows-internals.com/printdemon-cve-2020-1048/ Author: Yarden Shafir & Alex Ionescu Title: Supercomputers hacked across Europe to mine cryptocurrency URL: https://www.zdnet.com/article/supercomputers-hacked-across-europe-to-mine-cryptocurrency/ Author: Catalin Cimpanu [To...2020-05-2231 minSecurity Noise3.29 - The Past Is Our FutureWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Alex Hamerstone, Logan Sampson, and David Boyd Stories of Interest Title: Cisco spotlights new IT roles you've never heard of URL: https://www.networkworld.com/article/3541363/cisco-spotlights-new-it-roles-youve-never-heard-of.html Author: Michael Cooney Title: The three early, maddening viruses that shook the world—and Microsoft URL: https://www.fastcompany.com/90500378/iloveyou-virus-microsoft-steven-sinofsky-book Author: Steveen Sinofsky2020-05-0828 min
Security Noise3.28 - Enterprise GradeWelcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Alex Hamerstone, Rick Yocum, and David Boyd Stories of Interest Title: Ransomware scumbags leak Boeing, Lockheed Martin, SpaceX documents after contractor refuses to pay URL: https://www.theregister.co.uk/2020/04/10/lockheed_martin_spacex_ransomware_leak/ Author: Shaun Nichols and Gareth Corfield Title: DHS CISA: Companies are getting hacked even after patching Pulse Secure VPNs URL: http...2020-04-2433 min
Low Voltage Nation Podcast6.0 Dave Kennedy Founder of Binary Defense and TrustedSec Fireside ChatBlake Urmos interviews Dave Kennedy, founder of TrustedSec, Binary Defense, and DerbyCon. We dive into Dave's service as a United States Marine, working for Diebold as Chief Security Officer, and how he left his dream job to create some of the best information security companies in the world.2020-01-1348 min
Business Security Weekly (Video)Dave Kennedy, TrustedSec - Business Security Weekly #116We welcome David Kennedy, founder and CEO, at TrustedSec to discuss "Investing in the right technology and resources"! To learn more about TrustedSec, visit: https://www.securityweekly.com/trustedsec Full Show Notes: https://wiki.securityweekly.com/BSWEpisode1162019-02-0437 min