Risky Business Podcast
July 16, 2015
Risky Business #374 -- Anti-Flash sentiment sweeps the globe
Presented by
CEO and Publisher
Technology Editor
On this week's show we'll be checking in with Richard Forno on the fallout from the OPM breach. Richard has been kicking around in DC infosec circles for a long time now and he let's us know what the mood is like inside the beltway.
In this week's sponsor interview we chat with Chris Gatford of HackLabs! HackLabs is an Australia-based pentesting and consulting firm and we're speaking to Chris about the changing nature of security consultancies.
Adam Boileau, as usual, joins the show to discuss the week's news, which has been dominated by calls for the axing of the Flash plugin and the continued fallout from the Hacking Team breach.
Don't forget you can now support the Risky Business page via our Patreon campaign.
Oh, and do add Patrick and Adam on Twitter if that's your thing.
Show notes
Flash. Must. Die. | WIRED
http://www.wired.com/2015/07/adobe-flash-player-die/
Microsoft nixes A-V updates for XP, exposes 180 MEEELLION luddites \u2022 The Register
http://www.theregister.co.uk/2015/07/15/xp_antimalware_support_axed/
Ubuntu PC maker System76 abandons Flash, says it's too dangerous | Ars Technica
http://arstechnica.com/information-technology/2015/07/ubuntu-pc-maker-sy...
Firefox blacklists Flash player due to unpatched 0-day vulnerabilities | Ars Technica
http://arstechnica.com/security/2015/07/firefox-blacklists-flash-player-...
Adobe: We REALLY are taking Flash security seriously - honest \u2022 The Register
http://www.theregister.co.uk/2015/07/14/adobe_response_to_security_holes/
Once again, Adobe releases emergency Flash patch for Hacking Team 0-days | Ars Technica
http://arstechnica.com/security/2015/07/once-again-adobe-releases-emerge...
Hacking Team's Flash 0-day: Potent enough to infect actual Chrome user | Ars Technica
http://arstechnica.com/security/2015/07/hacking-teams-flash-0day-potent-...
Hacking Team Used Spammer Tricks to Resurrect Spy Network - Krebs on Security
http://krebsonsecurity.com/2015/07/hacking-team-used-spammer-tricks-to-r...
Hacking Team spyware rootkit: Even a new HARD DRIVE wouldn't get rid of it \u2022 The Register
http://www.theregister.co.uk/2015/07/14/hacking_team_stealth_rootkit/
How a Russian hacker made $45,000 selling a 0-day Flash exploit to Hacking Team | Ars Technica
http://arstechnica.com/security/2015/07/how-a-russian-hacker-made-45000-...
Hacking Team's snoopware 'spied on anti-communist activists in Vietnam' \u2022 The Register
http://www.theregister.co.uk/2015/07/13/hacking_team_vietnam_apt/
Hacking Team touts new spyware suite, calls leaks now "obsolete" | Ars Technica
http://arstechnica.com/security/2015/07/hacking-team-remains-defiant-tou...
Critical OpenSSL bug allows attackers to impersonate any trusted server | Ars Technica
http://arstechnica.com/security/2015/07/critical-openssl-bug-allows-atta...
Dozens Nabbed in Takedown of Cybercrime Forum Darkode | WIRED
http://www.wired.com/2015/07/dozens-nabbed-takedown-cybercrime-forum-dar...
As Predicted, OPM Director Resigns in Wake of Epic Hack | WIRED
http://www.wired.com/2015/07/predicted-opm-director-katherine-archuleta-...
New Bill Would Grant Lifetime Credit Monitoring to OPM Victims | Threatpost | The first stop for security news
https://threatpost.com/new-bill-would-grant-lifetime-credit-monitoring-t...
A $200 privacy device has been killed, and no one knows why | Ars Technica
http://arstechnica.com/security/2015/07/a-200-privacy-device-has-been-ki...
ProxyGambit - anonymize net over GSM or PTP link
http://samy.pl/proxygambit/
Sixty-five THOUSAND Range Rovers recalled over DOOR software glitch \u2022 The Register
http://www.theregister.co.uk/2015/07/14/range_rover_recall/
Hackers sell 79,267 Cloudminr accounts for ONE Bitcoin \u2022 The Register
http://www.theregister.co.uk/2015/07/14/cloudminr_hack_80000_bitcoin_min...
DEA agent slugged a MEELLION dollars for Silk Road snipe \u2022 The Register
http://www.theregister.co.uk/2015/07/13/silkroad_dea_agent_outofpocket_b...
Papa don't breach: Wannabe singer jailed for hacking Madonna \u2022 The Register
http://www.theregister.co.uk/2015/07/10/madonna_hacker_sentencing/
Wow, another NSA leak: Network security code appears on GitHub \u2022 The Register
http://www.theregister.co.uk/2015/07/09/nsa_network_security_code_leaks_...
New RC4 Attack Dramatically Reduces Plaintext Recovery Time | Threatpost | The first stop for security news
https://threatpost.com/new-rc4-attack-dramatically-reduces-plaintext-rec...
Oracle Patches Java Zero Day | Threatpost | The first stop for security news
https://threatpost.com/oracle-patches-java-zero-day/113792
New PHP Releases Fix BACRONYM MySQL Flaw | Threatpost | The first stop for security news
https://threatpost.com/new-php-releases-fix-bacronym-mysql-flaw/113740
Firefox 39 Out With Patches for Four Critical Vulnerabilities | Threatpost | The first stop for security news
https://threatpost.com/firefox-39-out-with-patches-for-four-critical-vul...
MS kills critical IE 11 bug after exploit was shopped to Hacking Team | Ars Technica
http://arstechnica.com/security/2015/07/ms-kills-critical-ie-11-bug-afte...
Microsoft Security Bulletin MS15-058 - Important
https://technet.microsoft.com/en-us/library/security/MS15-058
Microsoft Security Bulletin MS15-068 - Critical
https://technet.microsoft.com/en-us/library/security/ms15-068.aspx
Microsoft Security Bulletin MS15-067 - Critical
https://technet.microsoft.com/en-us/library/security/ms15-067.aspx
Job search | Employment and jobs | Queensland Government
https://smartjobs.qld.gov.au/jobtools/jncustomsearch.viewFullSingle?in_o...
[ - infowarrior.org - ]
http://infowarrior.org/about.html
Penetration Testing & Web Application Security - HackLabs
http://www.hacklabs.com/
Screaming Headless Torsos (Live in New York -- Knitting Factory 1996) - YouTube
https://www.youtube.com/watch?v=FAKhafsFslE
Screaming Headless Torsos - 2 Bruce Wayne featuring Jimmy Valentine - YouTube
https://www.youtube.com/watch?v=Pzdd2mUiDF0