UNSECURITY: Information Security Podcast

This week, Oscar and Brad sit down to discuss used network equipment resale, the risks posed to organizations, and how you can protect yourself.

Give this episode a listen and send any questions, comments, or feedback to [email protected].

This week, Oscar and Brad sit down with the creators of Hack Space Con to discuss the mission behind the conference, the unique venue, how the event came to be, and more!

Links:
https://www.hackspacecon.com/

Send any questions, comments, or feedback to [email protected]. Don't forget to like and subscribe!

Episode 198 of the Unsecurity Podcast is now live!

This week, Oscar and Brad discuss a new APT compromise strategy, a 3-year-old vulnerability exploited by multiple threat actors, and more.

Links:
3-Year-Old Vulnerability Exploited by Multiple Hacking Groups
https://thehackernews.com/2023/03/multiple-hacker-groups-exploit-3-year.html

Adobe ColdFusion Bug
https://gbhackers.com/adobe-coldfusion-bug/

Don't forget: The show is now available in audio form wherever you get your podcasts!

Send any questions, comments, or feedback to [email protected].

Episode 197 of the Unsecurity Podcast is now live! This week, Oscar and Brad discuss vendor risk management, incident response practices, and the recent Facebook vulnerability.

Links:

KillNet DDoS Blocklist
https://github.com/securityscorecard/SSC-Threat-Intel-IoCs/blob/master/KillNet-DDoS-Blocklist/proxylist.txt

Give this episode a listen and send any questions, comments, or feedback to [email protected]. Don't forget to like and subscribe!

Episode 196 of the Unsecurity Podcast is now live! This week, Oscar is joined by FRSecure's Eric Hanson and Seth Bowling to discuss red teaming and R&D.

Give this episode a listen or watch and send any questions, comments, or feedback to [email protected]. Don't forget to like and subscribe!

This week, Oscar and Brad discuss some ideas for new year's resolutions you can apply to your security program.

Give this episode a listen and send any questions, comments, or feedback to [email protected]. Don't forget to like and subscribe!

Episode 194 of the Unsecurity Podcast is now live! This week, Oscar and Brad discuss a CISA alert regarding Veeam backup and replication vulnerabilities being exploited, FBI seizing 48 domains linked to DDoS services, hackers using .svg files to install QBot malware on windows systems, and more.

Links:

CISA Alert: Veeam Backup and Replication Vulnerabilities Being Exploited in Attacks https://thehackernews.com/2022/12/cisa-alert-veeam-backup-and-replication.html

FBI Seized 48 Domains Linked to World’s Leading DDoS-for-Hire Services https://gbhackers.com/fbi-seized-48-domains/

Citrix ADC and Citrix Gateway Security Bulletin for CVE-2022-27518 https://support.citrix.com/article/CTX474995/citrix-adc-and-citrix-gateway-security-bulletin-for-cve202227518

Hackers Use SVG Images to Install QBot Malware on Windows Systems https://gbhackers.com/hackers-use-svg-images/

Give episode 194 a listen and send any questions, comments, or feedback to [email protected] Don't forget to like and subscribe!

Episode 193 of the Unsecurity Podcast is now live! This week, Oscar and Brad discuss the new CISA reporting rule and what it means for organizations in the critical infrastructure sector.

Links:
Critical Infrastructure Sectors
https://www.cisa.gov/critical-infrastructure-sectors

CISA - Reporting Rule
https://thehackernews.com/2022/12/what-cisa-reporting-rule-means-for-your.html
https://www.congress.gov/bill/117th-congress/house-bill/5440/text?format=txt
https://www.federalregister.gov/documents/2022/09/12/2022-19551/request-for-information-on-the-cyber-incident-reporting-for-critical-infrastructure-act-of-2022
https://www.cisa.gov/report
https://www.cisa.gov/sites/default/files/publications/Sharing_Cyber_Event_Information_Fact_Sheet_FINAL_v4.pdf

Give episode 193 a listen or watch and send any questions, comments, or feedback to [email protected].

Episode 192 of the Unsecurity Podcast is now live! This week, Oscar and Brad discuss holiday precautions, vendor risk management, a few new vulnerabilities on the scene, and more.

Give episode 192 a listen or watch and send any questions, comments, or feedback to [email protected]. Don't forget to like and subscribe!

Episode 191 of the Unsecurity Podcast is now live! This week, Oscar and Brad discuss some recent vulnerabilities, cybersecurity awareness month, Hacks and Hops 2022, and more!

Links:

Fortinet Authentication Bypass
https://projecthyphae.com/threat/fortinet-authentication-bypass-critical/

ZeroDay: ProxyShell 2 (or 3?)
https://projecthyphae.com/threat/zeroday-proxyshell-2-or-3-even-proxier/

Cybersecurity Awareness Month
https://www.cisa.gov/cybersecurity-awareness-month

Give episode 191 a listen or watch and send any questions, comments, or feedback to [email protected]. Don't forget to like and subscribe!