Risky Business #414 - Trading on OSINT for fun and profit

Nik Cubrilovic, Marco Slaviero join the show...
03 Jun 2016 » Risky Business

On this week's show we're chatting with Australian security researcher Nik Cubrilovic. He's been doing some fascinating research into using OSINT techniques to obtain market-sensitive information. It's OSINT for fun and profit! That's this week's feature.

In this week's sponsor interview we chat with Marco Slaviero, lead researcher from Thinkst Applied Research. Thinkst is, of course, the company behind Canary.tools, and Marco is along this week to talk about some free services and tools Thinkst has developed. You may have heard Haroon Meer talking about honey tokens on a previous episode. Well, the team at Thinkst have created some new honeytokens that use Microsoft's cryptoAPI to do all sorts of really funky stuff.

Adam Boileau, as always, stops by to discuss the week's news headlines.

Oh, and do add Patrick and Adam on Twitter if that's your thing.

Show notes

A Controversial Surveillance Firm Was Granted a Powerful Encryption Certificate | Motherboard
Don't panic, says Blue Coat, we're not using CA cert to snoop on you | The Register
Armed FBI agents raid home of researcher who found unsecured patient data | Ars Technica
How the Top 5 PC Makers Open Your Laptop to Hackers | WIRED
SWIFT finally pushes two-factor auth in banks - it only took several multimillion-dollar thefts | The Register
12 more banks now being investigated over Bangladeshi SWIFT heist | Ars Technica
Cluster of 'megabreaches' compromises a whopping 642 million passwords | Ars Technica
Dedupe, dedupe, dedupe dedupe dedupe... Who snuck in to attack Microsoft Edge? | The Register
This 'Demonically Clever' Backdoor Hides In a Tiny Slice of a Computer Chip | WIRED
P0rnHub revamps bug bounty, back pays cash, hires staff, after criticism | The Register
Police are filing warrants for Android's vast store of location data | The Verge
Hackers Find Bugs, Extort Ransom and Call it a Public Service | Threatpost | The first stop for security news
Eric Holder now says Edward Snowden performed 'public service' | CNNPolitics.com
This Map Tracks Where Governments Hack Activists and Reporters | WIRED
The UK Is Using Bulk Interception to Catch Criminals - And Not Telling Them | Motherboard
German Cops Bust Dude Who Bought Weed on Silk Road Years Ago | Motherboard
Got $90,000? A Windows 0-Day Could Be Yours | Krebs on Security
SandJacking Attack Puts iOS Devices At Risk to Rogue Apps | Threatpost | The first stop for security news
North Korea made a Facebook clone and it was immediately hacked
How an Aussie hacker used information leakage to trade stocks - Security - iTnews
Craig Wright is not Satoshi Nakamoto | New Web Order
Canary - know when it matters
thinkst Thoughts...: Certified Canarytokens: Alerts from signed Windows binaries and Office documents