Episode Details
Back to Episodes
DtSR Episode 187 - NewsCast for March 29th, 2016
Published 9 years, 11 months ago
Description
In this episode...
- BadLock bug (which now has a website, a graphic, and more hype than Bieber) is out there
- Is the bug really worth all this hype?
- Is this anything more than a PR stunt, and a big marketing opportunity?
- Everyone has an opinion, but one thing is for certain, this bug is making big waves
- http://www.wired.com/2016/03/hype-around-mysterious-badlock-bug-raises-criticism/
- Your wireless mouse is probably a security risk... seriously.
- RF-based mice typically don't use encryption or mutual authentication
- Some do (all of my Microsoft & Logitech mice tell me they mutually authenticate & encrypt... I think)
- How far up, or down, your risk register is this one; and how much should it matter to enterprise?
- http://www.thefiscaltimes.com/2016/03/23/Your-Wireless-Mouse-May-Be-Exposing-You-Cyber-Hackers
- Your Node.js package manager could be an entry point for worms?
- Now that everything has functionality over our endpoints...
- Dependencies seem to be (at least partially) to blame here (who's surprised?)
- http://news.softpedia.com/news/node-js-package-manager-vulnerable-to-malicious-worm-packages-502216.shtml
- Ransomware is getting nastier (and more effective)
- Remember it's just a business model, so they actually are pretty good at unlocking, support, etc once you pay up
- What happens when a hospital system gets locked/encrypted -- real lives are at stake here!
- Enterprise advice? Backup, test, and take it all offline regularly so you can recover
- This is only going to get worse. Much, much worse.
- http://www.itsecurityplanet.com/experts-corner/hospital-hit-with-ransomware-contagion-declares-internal-emergency
- http://www.healthitoutcomes.com/doc/backup-recovery-system-control-ransomware-attack-0001
- http://www.healthcareitnews.com/news/ransomware-wreak-havoc-2016-icit-study-says
Have something to say? Let's hear it.
>>> Please consider clicking the link above to support the show!
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
YouTube home: https://youtube.com/playlist?list=PLyo0dkKRvfVtWXjRxNISrhme1MgBj3C2U&si=scHDiTuLXSEQ9qHq
LinkedIn Page: https://www.linkedin.com/company/down-the-security-rabbithole-podcast/
X/Twitter: https://twitter.com/dtsr_podcast