Risky Business #304 -- Tech heavyweights target NSA

I guess corporations protect us from governments now. Weird.
15 Nov 2013 » Risky Business

In this week's show Adam Boileau and I take a look at the technology industry's latest response to the Snowden revelations. The pushback is definitely gaining momentum.

This week's show is brought to you by Tenable Network Security, big thanks to them. And this week's sponsor interview is with Tenable's very own Jack Daniel

We're chatting to him about the bad patches that have been dispatched from Redmond lately. It's been a long time since we've seen dud patches out of Microsoft, but lately, boy, there have been a few. Will you need to change your operating procedures over this? Stay tuned to find out.

Show notes

Google's Eric Schmidt calls NSA's spying 'outrageous' | Security & Privacy - CNET News
http://news.cnet.com/8301-1009_3-57610710-83/googles-eric-schmidt-calls-...

Microsoft may ramp up encryption of customer data post-Snowden - Applications - SC Magazine Australia - Secure Business Intelligence
http://www.scmagazine.com.au/News/363998,microsoft-may-ramp-up-encryptio...

HTTP/2 Supports only HTTPS URIs | Threatpost | The First Stop For Security News
http://threatpost.com/http2-chair-says-protocol-will-work-only-with-http...

NIST Reviews Crypto Standards Development | Threatpost | The First Stop For Security News
http://threatpost.com/nist-initiates-review-of-its-crypto-standards-deve...

Google: We're bombarded by gov't requests on user data | Security & Privacy - CNET News
http://news.cnet.com/8301-1009_3-57612322-83/google-were-bombarded-by-go...

Microsoft, Facebook unite for Internet Bug Bounty program | Security & Privacy - CNET News
http://news.cnet.com/8301-1009_3-57611325-83/microsoft-facebook-unite-fo...

Microsoft Changes Bug Bounty Program to Include Incident Responders, Forensics Specialists | Threatpost | The First Stop For Security News
http://threatpost.com/microsoft-changes-bug-bounty-program-to-include-in...

In Lavabit Appeal, U.S. Doubles Down on Access to Web Crypto Keys | Threat Level | Wired.com
http://www.wired.com/threatlevel/2013/11/lavabit-doj/

NSA workers reportedly shared their passwords with Snowden | Security & Privacy - CNET News
http://news.cnet.com/8301-1009_3-57611528-83/nsa-workers-reportedly-shar...

White House reportedly considers civilian NSA chief | Security & Privacy - CNET News
http://news.cnet.com/8301-1009_3-57611652-83/white-house-reportedly-cons...

British Spies Hacked Telecom Network by Feeding Engineers Fake LinkedIn Pages | Threat Level | Wired.com
http://www.wired.com/threatlevel/2013/11/british-spies-hacked-telecom/

Power Plants and Other Vital Systems Are Totally Exposed on the Internet | Threat Level | Wired.com
http://www.wired.com/threatlevel/2013/11/internet-exposed/

iOS, Samsung apps popped at Pwn2Own - Applications - SC Magazine Australia - Secure Business Intelligence
http://www.scmagazine.com.au/News/364113,ios-samsung-apps-popped-at-pwn2...

MacRumors Forums Hacked, Passwords Stolen | Threatpost | The First Stop For Security News
http://threatpost.com/macrumors-forums-hacker-says-passwords-wont-be-lea...

Vice.com hacked by Syrian Electronic Army - Applications - SC Magazine Australia - Secure Business Intelligence
http://www.scmagazine.com.au/News/364015,vicecom-hacked-by-syrian-electr...

millions stolen in Bitcoin heist | Threatpost | The First Stop For Security News
http://threatpost.com/attackers-lift-1-2m-from-bitcoin-wallet-service/10...

Bitcoin Selfish Miners | Threatpost | The First Stop For Security News
http://threatpost.com/selfish-miners-could-exploit-p2p-nature-of-bitcoin...

Pen test firms Securus Global, Hacklabs to merge - Applications - SC Magazine Australia - Secure Business Intelligence
http://www.scmagazine.com.au/News/363334,pen-test-firms-securus-global-h...

Microsoft Warns Customers Away From RC4, SHA-1 | Threatpost | The First Stop For Security News
http://threatpost.com/microsoft-warns-customers-away-from-sha-1-and-rc4/...

New zero-day bug targets IE users in drive-by attack | Security & Privacy - CNET News
http://news.cnet.com/8301-1009_3-57611691-83/new-zero-day-bug-targets-ie...

November 2013 Adobe Flash, ColdFusion security patches | Threatpost | The First Stop For Security News
http://threatpost.com/adobe-patches-flash-coldfusion-flaws-unrelated-to-...

New security holes found in D-Link router | Security & Privacy - CNET News
http://news.cnet.com/8301-1009_3-57611824-83/new-security-holes-found-in...

OpenSSH Fixes Memory Corruption Bug With Update | Threatpost | The First Stop For Security News
http://threatpost.com/openssh-fixes-memory-corruption-bug-with-update/10...

Windows XP End of Life a Security Milestone | Threatpost | The First Stop For Security News
http://threatpost.com/microsoft-xp-end-of-life-an-important-security-mil...

Super Micro IPMI zero-day vulnerabilities disclosed | Threatpost | The First Stop For Security News
http://threatpost.com/seven-ipmi-firmware-zero-days-disclosed/102848

Cisco Fixes Blank Admin Password Flaw in TelePresence Product | Threatpost | The First Stop For Security News
http://threatpost.com/cisco-fixes-blank-admin-password-flaw-in-teleprese...

ANZ Falcon 24 7 Credit Card Security - YouTube
http://www.youtube.com/watch?v=0dYhc4ciqEo

PILOTS - Artist - triple j Unearthed - free music | new Australian music | independent music
http://www.triplejunearthed.com/PILOTS

,

Yes, you are really back. That is the attitude we all want to have right there. - James Cullem