This week’s podcast features Patrick and Adam talking about the week’s security news, including:
- Huawei staffer arrested for spying in Poland
- Conviction in DPRK SWIFT hack against Bangladesh central bank
- El Chapo used Flexispy to spy on mistresses and staff
- NSO group on charm offensive
- Iran hijacking DNS entries, conducting PITM with DV certs
- Kaspersky tipped NSA on Hal Martin
- US government certificates expire amid shutdown
- Idiot sentenced to 10 years prison for DDoSing children’s hospital
This week’s show is brought to you by Trail of Bits! Trail of Bits is a security engineering firm and consultancy based in New York. They aren’t a typical pen-testing firm, they build as well as break.
In this week’s sponsor interview JP Smith from Trail of Bits joins us to talk about the work he put in to CSAW. Not the Centre for Sustainable Architecture with Wood, which is a thing, but the Cyber Security Awareness Worldwide CTF.
JP is a sick man. He’s sick. You’ll hear about the mind-bending CTF challenges he put together for CSAW. Remarkably, some teams were actually able to solve his problems, some of which featured complex numbers mapped to a four dimensional unit sphere being used to drive the rotation of a virtual IBM Selectric typewriter golfball in Second Life. As I say, he’s a sick, sick man.