Podcasts

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Claire Aird.

You can find the newsletter version of this podcast click here.

In this podcast Patrick Gray talks to Tom Uren about the recently released US National Cyber Security Strategy. Tom really likes it because it sets out how the US will “win” by reshaping who is liable when crapware hits the fan. It’s got other stuff in it too…

Tom and Pat also discuss the story of an MSS agent being busted when trying to steal intellectual property from the aviation industry. He used the same iphone for both his personal life and his spying and his iCloud backups were an intelligence bonanza. These backups not only had messages to potential recruits, they also had had audio of meetings he’d recorded where he was discussing his approach to espionage.

Finally, we talk about the security risks that arise from the use of Chinese ship-to-shore cranes at ports. Apparently these are chock full of sensors and could be spying on port logistics.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Kaitlyn Sawrey.

You can find the newsletter version of this podcast click here.

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including:

• Why the White House’s cybersecurity strategy is actually quite good
• The LastPass breach was probably DPRK
• UEFI bootkits are going downmarket, and this is bad
• GitHub will scan repos for secrets
• A look at some interesting DJI drone research
• Much, much more

This week’s show is brought to you by Airlock Digital. Two of Airlock’s founders – Daniel Schell and David Cottingham – are this week’s sponsor guests.

* NOTE: We now think LastPass was likely not DPRK. It’s complicated and we’ll explain why we think we got this wrong in next week’s show

In this edition of Between Two Nerds Tom Uren and The Grugq look at how cyber operations have been used in the war in Ukraine. They examine what we know given the “fog of cyber war” and what “cyber warfare” might look like in future.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Kaitlyn Sawrey.

You can find the newsletter version of this podcast click here.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Kaitlyn Sawrey.

You can find the newsletter version of this podcast click here.

In this podcast Patrick Gray talks to Tom Uren about Signal’s vow to pull out of the UK if the proposed Online Safety Bill requires it to weaken its encryption.

Tom and Patrick agree that end-to-end encryption isn’t at stake, but Signal could well be asked what steps it is taking to mitigate child exploitation and terrorist content. Patrick thinks there are useful steps Signal could take that would be helpful, but both Tom and Pat find it hard to imagine that Signal will actually make these choices.

They also discuss the US government floating the idea of shifting legal liability to technology manufacturers when they make terribly insecure products. Tom thinks this is an attractive idea, but the government would be better off doing much more to encourage transparency first.

A short podcast updating listeners on the security news of the last few days, as prepared by Catalin Cimpanu and read by Kaitlyn Sawrey.

You can find the newsletter version of this podcast click here.

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including:

• A look at LastPass’s intrusion post mortem
• A very stable genius decided to ransomware the US Marshals Service
• Why Signal’s complaints about UK’s Online Safety Act are bad faith
• Much, much more…

This week’s show is brought to you by Tines, the no-code automation platform. Its co-founder and CEO Eoin Hinchy joins the show in the sponsor slot, and you can check out a Tines demo we recorded with Eoin on YouTube.

Links to everything that we discussed are below and you can follow Patrick or Adam on Mastodon if that’s your thing.