Risky Business #698 -- Why LastPass was probably DPRK*

PLUS: A look at the White House cybersecurity strategy…
08 Mar 2023 » Risky Business

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including:

  • Why the White House’s cybersecurity strategy is actually quite good
  • The LastPass breach was probably DPRK
  • UEFI bootkits are going downmarket, and this is bad
  • GitHub will scan repos for secrets
  • A look at some interesting DJI drone research
  • Much, much more

This week’s show is brought to you by Airlock Digital. Two of Airlock’s founders – Daniel Schell and David Cottingham – are this week’s sponsor guests.

Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that’s your thing.

* NOTE: We now think LastPass was likely not DPRK. It’s complicated and we’ll explain why we think we got this wrong in next week’s show

Show notes