On this week's show we're chatting with Mandiant's Managing Director of Threat Intelligence, Dan McWhorter, about that company's report into Chinese cyber espionage activity.
Mandiant dropped the report last week and it's caused quite a stir, even eliciting a response from the Whitehouse and Chinese officials.
That's an interesting conversation and it's after the news.
This week's show is brought to you by Tenable Network Security, makers of fine vulnerability scanning and SIEM software. Tenable's product manager and all-round nice guy Jack Daniel will be along in this week's sponsor interview to discuss some other aspects of this APT1 issue.
Like, for example, how the attackers were using executable trojans embedded in zip files and still managed to own half the Western world's intellectual property. That's this week's sponsor interview -- an interesting blend of hilarious and depressing.
Show notes
Bradley Manning Takes "Full Responsibility" for Giving WikiLeaks Huge Government Data Trove | Threat Level | Wired.com
http://www.wired.com/threatlevel/2013/02/bradley-manning/
The Incredible Rise and Fall of a Hacker Who Found the Secrets of the Next Xbox and PlayStation-And Maybe More
http://kotaku.com/5986239/the-rise-and-fall-of-superdae-a-most-unusual-v...
Sentencing of LulzSec double agent postponed | Security & Privacy - CNET News
http://news.cnet.com/8301-1009_3-57570764-83/sentencing-of-lulzsec-doubl...
Stuxnet Missing Link Found, Resolves Some Mysteries Around the Cyberweapon | Threat Level | Wired.com
http://www.wired.com/threatlevel/2013/02/new-stuxnet-variant-found/
EXCLUSIVE: Hacked ABC website likely breached by crooks in 2011 | Risky Business
http://risky.biz/opwilders
MiniDuke Espionage Malware Hits Governments in Europe Using Adobe Exploits | threatpost
http://threatpost.com/en_us/blogs/miniduke-espionage-malware-hits-govern...
Adobe Patches Two Critical Flash Player Vulnerabilities | threatpost
http://threatpost.com/en_us/blogs/adobe-patches-two-critical-flash-playe...
Chrome 25 Fixes Nine High-Risk Vulnerabilities | threatpost
http://threatpost.com/en_us/blogs/chrome-25-fixes-nine-high-risk-vulnera...
Latest Kelihos Botnet Shut Down Live at RSA Conference 2013 | threatpost
http://threatpost.com/en_us/blogs/latest-kelihos-botnet-shut-down-live-r...
RSA Conference 2013: Experts Say It's Time to Prepare for a 'Post-Crypto' World | threatpost
http://threatpost.com/en_us/blogs/rsa-conference-2013-experts-say-its-ti...
Two More Java Zero Days Found by Polish Research Team | threatpost
http://threatpost.com/en_us/blogs/two-more-java-zero-days-found-polish-r...
Microsoft Azure Cloud Storage Suffers Major Outage Over Expired SSL Certificate | threatpost
http://threatpost.com/en_us/blogs/microsoft-azure-cloud-storage-suffers-...
Feds Used Aaron Swartz's Political Manifesto Against Him | Threat Level | Wired.com
http://www.wired.com/threatlevel/2013/02/aaron-swartz-manifesto/
Facebook Patches OAuth Authentication Vulnerability | threatpost
http://threatpost.com/en_us/blogs/facebook-patches-oauth-authentication-...
China blames U.S. for most cyberattacks against military Web sites | Security & Privacy - CNET News
http://news.cnet.com/8301-1009_3-57571811-83/china-blames-u.s-for-most-c...
Add Microsoft to list of hacked companies | Security & Privacy - CNET News
http://news.cnet.com/8301-1009_3-57570861-83/add-microsoft-to-list-of-ha...
ATO passwords stored in clear text - Web/client - SC Magazine Australia - Secure Business Intelligence
http://www.scmagazine.com.au/News/334921,ato-passwords-stored-in-clear-t...
Mandiant Intelligence Center Report | Mandiant\xae
http://intelreport.mandiant.com/
Tenable Network Security
http://www.tenable.com/
Das EFX - Straight Out The Sewer - YouTube
http://www.youtube.com/watch?v=xXSsLa3PlDc
Patrick Gray on ABC television, discussing ABC breach
http://www.abc.net.au/7.30/content/2013/s3699924.htm
Xbox and Playstation has its secret? Wow, this is a conspiracy theory in one way or another. - Mission Maids
