Stay ConnectedSecurity In 5 brings you security news, tips and opinions on information IT and general security in about five minutes. Straight and to the point information in a timeframe you can easily listen to in one sitting. Whether you are a security professional or someone that wants to keep personal data safe this podcast will cover everyone.
Be aware, be safe, welcome to Security In 5.
This is the final episode of the Security In Five podcast.
Archive of the 1,300+ shows can be found here - https://www.youtube.com/@SecurityInFive/videos
Be Aware, Be Safe... always.
Security In Five has been going strong for 5 years. Over 1,300 episodes I have come to the point where I am thinking of shutting this down and moving on.
This episode talks about this decision.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackieWhere you can find Security In Five - https://linktr.ee/binaryblogger
Wordpress has another plug-in with a high severity vulnerability. This episode talks about what happened and how fast hackers jumped on things when a POC for this exploit was made public.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Multi-factor authentication is the easiest and best way to exponentially improve your authentication security. There are several ways to implement MFA but Microsoft announced they are flipping the flow for the better. This episode talks about those methods and why this is a good move.
Source - https://www.darkreading.com/dr-tech/microsoft-authenticator-to-enforce-number-matching
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Google has had a feature for Google One subscribers that is now being rolled out to all Gmail users. Users will now be able to get dark web scanning reports to see if their gmail accounts have been seen on the dark web or if they have been part of recent breaches. This episode talks about the details.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
ChatGPT and other generative AI services are all the hype now. But there are serious privacy considerations you should be aware of. This episode talks about how and when to use these services and when you should not.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Bluetooth tracking devices are a convenient way to keep track of your purse, keys, laptop and other items that are easily misplaced. However, people can use them to track people unknowingly. Apple and Google released a joint statement to change the way these devices operate this episode gives the highlights of the proposal.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
ChatGPT is all the hype right now and hackers are using that to spread malware. This episode talks about how they are doing this, warning companies have issued and caution you should take trying out these new AI apps.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
This tools, tips and tricks episode talk about an app from NVIDIA called Broadcast. Specifically, the feature called Eye Contact. A unique use of AI and deepfake methods to make you look like a better streamer then you may be.
Source - https://youtu.be/nR-vP_7XFHE
Download - https://www.nvidia.com/en-us/geforce/broadcasting/broadcast-app/
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Today is World Password Day, May 4th. This episode talks about passwordless authentication and why this is the best direction to rid us of the standard password.
Source - https://securityinfive.com/the-future-with-passwordless-authentication/
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Samsung had a memo leak out that bans employees from using generative AI like ChatGPT. This episode talks about the ban and why you need to understand how everything works if you are deciding to limit AI tools in your organization.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Another day, another T-Mobile breach. For the second time in 2023 T-Mobile has announced another breach. Only 1,000 customers this time, this episode talks about this incident.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Facebook, Meta, settled a class action lawsuit for the Cambridge Analytica privacy leak to the tune of $725 million. Now you can claim your piece of the money. This episode talks about this and other class action settlements.
Claim yours here - https://facebookuserprivacysettlement.com/
Hurry, you have until Aug. 2023 to claim your stake.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Hackers and data miners go to lengths to get a target's data. One way to 'dumpster dive' their devices. An old method that still works is to buy used equipment, cheap and usually filled with ripe data. This episode talks about a recent study.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
A report from Bitdefender detailed a disturbing practice when it comes to breaches. A large number of IT professionals responded they were told to keep quiet about discovered breaches. This episode breaks it down and talks about the risks of this practice.
Download the report - https://businessresources.bitdefender.com/bitdefender-2023-cybersecurity-assessment
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Tesla is being sued by an owner from a Reuters report that employees have accesses images and video from Tesla cars and used them for entertainment purposes. This episode talks about the claims and what you need to think about when it comes to privacy around these devices.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Another school district was hit with a cyber attack that brought technology offline. This episode talks about what one school did to keep their teachings going and what they found out from a no-screen policy.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Microsoft has announced they are going to change the names of APTs in their security reports. With the goal of making things easier to understand, APTs will be referenced as weather events. This episode breaks it down on what these mean.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
After a brief, a month-long, hiatus from creating new podcast episodes the show is set to return. Sometime life happens and priorities shift, but I'm back and ready to keep talking security for the long haul.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
AT&T sent out a breach notification to customers informing them about a breach of a 3rd party vendor. This episode talks about what was leaked and how you can strengthen your account.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Palo Alto released their The State of Cloud-Native Security 2023 report and it revealed disturbing trends. This episode goes through the report and what the main challenges are.
Source - https://www.paloaltonetworks.com/state-of-cloud-native-security
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
OWASP board members are calling for change for the organization through an open letter. This episode talks about this and what it could mean for OWASP.
Source - https://owasp-change.github.io/
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
The Department of Health and Human Services (HHS) through the Office of Civil Rights (OCR) announced an expansion in the organizations. This episode talks about this expansion and what it means for the enforcement of HIPAA/HITECH going forward.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
A new report from CrowdStrike, 2023 Global Threat Report, details findings on hackers shifting techniques and their success rates. This episode talks about the changes over the years and how incident response teams need to take note.
Source - https://www.crowdstrike.com/global-threat-report/
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
LastPass announced they have suffered another breach. This time the hackers went after a single individual and their personal computer(s). This episode breaks it down and talk about the danger of allowing personal devices for corporate work.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Mozilla released a report analyzing the top applications in the Google App Store and looking at the Data Privacy Labels. This episode talks about what they found and what this means for consumers.
Source - https://foundation.mozilla.org/en/campaigns/googles-data-safety-labels/
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Dole Foods announced a ransomware attack has impacted their North America production and distributions. This episode talks about how ransomware can take down such a broad operation and things you can think about to prevent it if you get hit.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Application development in today's world is just as much about using open-source components as writing all your own code. This episode talks about findings from a recent study conducted by Synopsy and why you should take a close look at your open source management processes.
Source - Open Source Security and Risk Analysis Report
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Multi-factor authentication is a vital feature every user should have enabled everywhere they can. Twitter has made an announcement that they will be ending SMS text messaging options for free users and force users to more secure MFA options. This episode talks about the details and how this might make users less secure.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Your home networking devices, entertainment devices and others, in most cases, can be reset back to the factory defaults. This episode talks about when and why you would do a full reset and if it's something you should do regularly.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackieWhere you can find Security In Five - https://linktr.ee/binaryblogger
Are Apple devcices more secure than PCs or Androids? That is a complicated question with a complicated answer. This episode talks about this and why it's not as simple as a Yes or No.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackieWhere you can find Security In Five - https://linktr.ee/binaryblogger
Virtual Machines are a very powerful way to expand your computing capabilities. This episode talks about what a Virtual Machine is and how you can use it to strengthen your security posture.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackieWhere you can find Security In Five - https://linktr.ee/binaryblogger
Is online banking safe? That is a complicated question that this episode breakdown and gives you things to think about and so when you are banking online.
Be aware, be safe.
Support the show and get access to behind-the-scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackieWhere you can find Security In Five - https://linktr.ee/binaryblogger
Cellular bandwidth speeds have reach most home Internet Service Providers. Which one should you use at home? This episode explores if you should go with the cellular route or stick with your ISP.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackieWhere you can find Security In Five - https://linktr.ee/binaryblogger
1Password announced a huge new feature coming to their service. This summer they will change their vault authentication to passkey. This episode talks about what this means and why it's a big deal.
Source - https://blog.1password.com/unlock-1password-with-passkeys/
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
The era of commercialized artificial intelligence bots is here. Microsoft announced a new Edge browser version with an enhanced AI Bot powered by ChatGPT. This episode talks about it.
Source - https://blogs.microsoft.com/blog/2023/02/07/reinventing-search-with-a-new-ai-powered-microsoft-bing-and-edge-your-copilot-for-the-web/
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackieWhere you can find Security In Five - https://linktr.ee/binaryblogger
Cyberattacks impacts go beyond the technology, in many cases, there is a person behind all the data that can feel the impact as well. This episode talks about a hospital in Florida that had to cancel surgeries because of a cyberattack.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
If you have an Electric Vehicle (EV) you are familiar with remote charging stations. Like anything that is connected to the Internet, those stations could be vulnerable to hacking. This episode talks about the latest findings on how these stations work.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Twitter made an announcement recently that they will be ending free access to their API. This epsiode talks about this move and the damage it may cause to many apps and services.
Source - https://twitter.com/twitterdev/status/1621026986784337922
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Meta paid out a bug bounty for a vulnerability/design flaw in the multi-factor authentication process on Instagram/Facebook. This episode talks about what the bug was and why or how Meta missed this in their design.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Staying knowledgeable and up to date on the ever-changing web security space is difficult. There are classes, courses, and certifications you can achieve but those are to lay the foundation but it's up to us to keep it going. I found a site that provides so much insight and tools for security it had to be a podcast episode.
Source - Offsec.tools
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
GoTo, the parent company of LastPass, announced they they too have suffered a breach. Unknown threat agents accessed and took encrypted backups and other materials of customers. This episode talks about the breach and what you should think about if you are a customer of them.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Apple released iOS 16.3 and macOS 13.2 which included a new security feature for support of Security Keys. This episode talks about what this is, why it's a great security addition and how it works.
Source - Apple Support Page - https://support.apple.com/en-us/HT213154
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
In the past week there have been several stories of "breaches" that were caused by credential-stuffing attacks. This episode talks about what credential stuffing is and where the blame should be pointed.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
T-Mobile is back in the cybersecurity news and not for a good reason. Another breach has been announced to the tune of 37 million accounts. This episode talks about how it happened and the past breaches they have suffered since 2018.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
PayPal announced that some accounts were compromised through a crednetial stuffing attack. This episode talks about why this is not PayPal's fault and the blame needs to be put on the users.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
The term hacker is used and most people think of the bad guys. Did you know there are several different types of hackers? This episode talks about them and the differences between them.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Norton LifeLock notified some customers that their accounts may have been accessed by an unauthorized thrid party. Norton was not hacked directly nor was it a failure of Norton that this happened. This episode talks about how the hackers accessed these accounts and where the blame should be directed.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Microsoft Office365 is the subscription-based cloud offering for the Office productivity suite. Microsoft announced that a new Basic offering is coming for $2/mo. This episode talks about this.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Every Tuesday Microsoft releases patches for Windows. Patching is a chore but it's an important task you should not ignore. This episode reminds you to patch and goes through this month's Windows patches to help explain why.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Encryption is a vital security control that is underutilized and one of the most powerful practices you can have. However, it doesn't solve many security issues rather is one part of your security portfolio. This episode talks about the dangerous mentality that encryption will solve more than it does.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
GitHub continues to release security enablement features to developers. This episode talk about a new vulnerability scanning feature.
Source - https://github.blog/2023-01-09-default-setup-a-new-way-to-enable-github-code-scanning/
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
This episode talks about a story out of Canada and a hacking attack against the Hospital for Sick Kids (SickKids). The interesting part is the hacking group issued an apology and gave the decrypter tool for free to them. Listen to find out why.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Amazon devices has a feature called Amazon Sidewalk. This allows your devices to share a small portion of your home bandwidth for other IoT devices from other people in range to use through this IoT Mesh network. This episode talks about the expansion of this service and why you should consider disabling it.
Amazon Sidewalk - https://www.aboutamazon.com/news/devices/introducing-amazon-sidewalk
Original Podcast Episode - https://securityinfive.libsyn.com/episode-972-amazon-sidewalk-quietly-released-turn-it-off
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Cybersecurity breaches and data stolen doesn't always have to be public data or financial. Companie can have data they consider just as secret and sensitive as someone's financial information. This episode talks about a story of an internal employee breaking trust and leading to international espionage and prison.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
LastPass suffered a breach in August 2022 and maybe a second one after the fact where user's vaults were downloaded. This episode talks about the breach and why I moved off LastPass and you should seriously consider it.
Blog Post - https://securityinfive.com/the-last-straw-for-lastpass-why-i-dumped-it/
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
President Biden signed into law the Quantum Security Preparedness Act. This law pushes federal agencies to begin preparing for 'Q' Day. The day quantum technology will be able to easily crack current cryptographic protections. This episode talks about the milestones the agencies must meet and when and how this will impact everyone's 5 year roadmaps.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Phishing attacks create stories to fool people into acting foolishly. One of the defenses you can help learn and teach is how the real world works around these stories. This episode talks about a real-world tax cheat and how the government process works to help identify the fake phishing stories.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
This week is a Best of 2022 series. The top 5 episodes of 2022 based on total downloads.
Thank you for a great year.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
This week is a Best of 2022 series. The top 5 episodes of 2022 based on total downloads.
Thank you for a great year.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
This week is a Best of 2022 series. The top 5 episodes of 2022 based on total downloads.
Thank you for a great year.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
This week is a Best of 2022 series. The top 5 episodes of 2022 based on total downloads.
Thank you for a great year.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
This week is a Best of 2022 series. The top 5 episodes of 2022 based on total downloads.
Thank you for a great year.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
The last episode in your home hygiene series talks about your backups. Are you doing them? How are you doing them?
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
As this week's home hygiene series continues this week's episode talks about your accounts. Your credentials across the Internet are the gateways to your financial, healthcare and personal information. It's a good time to get control of those.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
As we continue with the home hygiene series this episode talks about your devices. This time consuming but important task will help you get visibility and understanding to what is connected in your home.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
The end of the year is a good time to focus on your home IT. The next few episodes will talk about some tips on what you can do with your home IT to help clean it up and make it more secure for the year to come. We'll start with the network.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
The podcast that was going on a break is no longer, unexpectedly. Plus Apple is adding end-to-end encryption to iCloud backups.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Security In Five will be on pause for new episodes through 2022. This episode talks about why.
Thank you to all and I will see you soon.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
This week's tools, tips and tricks discuss a great resourse to identify scams called Scam Buster. This episode talks about why this should be a website in your feeds.
Source - https://www.scam-detector.com/
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
FTX cryptocurrency exchange had an epic collapse recently of billions lost and now they have discovered up to $500 million may have been stolen. This episode talks about the blockchain and how it's not as anonymous and private as you think.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Amazon announced at their re:Invent conference their messaging service called Wickr is released for enterprise use. This end-to-end secure messaging platform will help organizations securely collaborate and give control to the data retention to the users. This episode goes though the features.
Source - https://www.youtube.com/watch?v=H3qzuvMTNnk
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Twitter is going through significant changes after Elon Musk purchased it earlier this year. One of the new additions confirmed to be coming is adding end-to-end encryption to direct messages. This episode talks about this and why this is a good things for users.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Netflix is cracking down on users that share passwords. It's been very easy to get a Netflix account and let anyone in your family, friends use one set of credentials across many devices. Next year Netflix will be cracking down on this practice and introducing paid subaccounts. This episode talks about this move.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
DraftKings is in the news for a credential stuffing attack that left some customers out of $300,000. This episode talks about what a credential stuffing attack is and why it's not necessarily DraftKings fault.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Ransomware gets the name from holding your data ransom. Pay a fee and free your data. The Australian government is looking to make paying ransoms illegal. This episode talks about this move and what it could mean.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
HIPAA, the Health Insurance Portability And Accountability Acy, is designed to protect personal health information. HIPAA violations happen all the time but rarely do you see criminal chargers from them. This episode talks about a story where 6 people are criminally charged for HIPAA violations.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Mitiga, a cloud incident response company, recently found hundreds of Amazon RDS Snapshots exposed publicly. This led to the leak of users' PII and other information. This episode talks about what RDS and the snapshots are and why you need to understand how the cloud works end to end.
Source - https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_CreateSnapshot.html
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
The holiday season approaches and that means an increase of mailing packages. Unfortunately, criminals know this and take advantage of the situation1 to steal. This episode talks about how to think twice about how you mail packages and where the most secure way to ship them is.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
The World Cup is being hosted in Qatar. In order to attend all visitors must install two apps. This episode talks about these apps and the security and privacy nightmare they bring to everyone.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Scammers will use current events in their attacks to increase the odds people will fall for them. This episode talks about the latest round of phishing attacks using the Twitter takeover.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
TikTok, one of the top social media platforms in the world, is one of the least private apps as well. China owned, TikTok has been denying that US and EU user's data is not accessed by Chinese employees. Recent comments have changed that. This episode talks about this and what it could mean for the future of the app.
TikTok New Privacy Terms - https://www.tiktok.com/legal/new-privacy-policy?lang=en
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Vulnerabilities that we scan for are all based on what the industry knows about. It's the unpublished ones that can and are being used with no one's knowledge except the hackers. This episode talks about a report from Microsoft that indicated China is hoarding zero-days for their use.
Source -Microsoft's 2022 Digital Defense Report https://query.prod.cms.rt.microsoft.com/cms/api/am/binary/RE5bUvv?culture=en-us&country=us
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
WIndows 11 has been out for a year, yet only 15% of the world's PC have installed it. This episode talks about what'ss different about Windows 11 and a possible reason why the install numbers are so low.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Cyberbullying and cyberstalking are serious crimes. This episode talks about a case where a college student is going to prison for his cyberstalking against other students.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
LinkedIn is one of the top impersonated brands in phishing campaigns and hacking events. Microsoft/LinkedIn have added new security features to help curb fake profiles and fraud attempts. This episode talks about them.
Source - https://www.infosecurity-magazine.com/news/linkedin-new-security-features/
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
This episode is an all-hands-on-deck warning to all IT. OpenSSL is issuing a patch for a yet-to-be-disclosed critical vulnerability. This one is not to be ignored.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
One thousand three hundred episodes over 5 years. This episode talks about this major milestone and a big thanks to all of you for making it happen.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Graphic cards are powerful PC components that allow millions to play the latest, ultra-high resolution video games. These devices are so powerful they are bing converted to be used for things other than playing video games. This episode talks about the latest graphic card models and how they can be used to attack security.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
The NSA, CISA and FBI released a cybersecurity report detailing the top vulnerabilities used by Chinese-based hacking groups. This episode goes through the high points of the report and the recommendations to help mitigate these threats.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
A new vulnerability was announced for a very popular Apache library called Common Text. Dubbed Text4Shell is rated 9.8 and this episode goes into the details to why you should take this one seriously.
Soource - https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
A genealogy site called FamilySearch notified their customers of a breach. The interesting part is the notice came out 7 months after they knew of the breach and their explanations are different.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Personal Health Information protected by HIPAA is protected for a reason. This episode talks about how criminals can use PHI illegally and profit from it.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Ransomware is an ongoing battle. Like any piece of software the ransomware groups are not perfect. This episode talk about how one police department found a flaw and used it against a ransomware group.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Toyota recently announced a potential data exposure of 300,000 customers. This episode talks about how this leak happened and how it can happen to you and the challenges to prevent it.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Email is close to being the primary mode of communication between an organization and its customers/users. However, you can create a data leak through email by making an innocent mistake. This episode talks about this mistake and why it's so easy to do.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Meta released a report that they have found over 400 apps in the Google and Apple stores that are stealing Facebook credentials. This episode talks about what these apps look like and the red flags to identify apps like these in the future.
Source - https://about.fb.com/news/2022/10/protecting-people-from-malicious-account-compromise-apps/
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Phishing is a huge problem and it's now easier than ever for hackers to get started. Phishing as a Service is not new but a recent shift in tools has made it easier than ever to get going.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
The former CISO from Uber has been convicted of two felonies around his handling of the 2016 Uber breach. This episode talks about what actions were done and if you should be worried about going to jail if you experience a breach.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Zero Day vulnerabilities mean that they are in the wild with no known fix. When alerts come out about zero day findings you should listen. This episode talk about a high severity zero day vulnerability that is active in the wild.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Privileged access management is an under appreciated security function that every organization needs. This episode talks about a real-world example where the lack of effective PAM led to an ex-employee sabotaging a network.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Security policies internally are not the only ones you should be focusing on. Depending on your industry there are laws and regulations that you must meet. This episode talks about why 16 financial firms got hit with a $1.6 Billion fine for failing to meet SEC requirements for chat messaging.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
The payment system, specifically with credit/debit cards, is inherently broken when it comes to security. This epsiode talks about a case out of Maryland where massive credit card fraud was carried out with a camera.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Hackers are resourceful groups with tools at their disposal. A recent survey of ethical hackers focused on how much time do they need to hack a company. The answer should surprise you and reflect on your response time. This episode breaks it down.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
TikTok actively tracks user's browsing activity across the Internet whether they have a TikTok account or not. This epsiode talks about how TikTok does this, and others, why and what you can do about it to prevent and slow this down.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
This week's tools, tips, and ticks talks about Firefox's Container Tabs. This feature not found in other mainstream browsers is an easy-to-use yet powerful trick to help your productivity and limit the tracking of your browsing activity.
Download Firefox - https://www.mozilla.org/en-US/firefox/new/
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Firefox is one of the best privacy-focused browsers and recent announcements keep them at the top of the list. In Jan. 2023 Google will release Manifest V3 and force browsers and extensions to block Manifest V2 shortly after. Firefox announced they will continue to support older APIs that will be limited/weakens in V3 which will lessen the effectiveness of some ad-blockers. This episode breaks it down.
Download Firefox - https://www.mozilla.org/en-US/firefox/new/
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
The future is here. Artificial Intelligence will now take over the voice of Darth Vader. This episode talks about the technological advancement that allowed this to happen and what it means for the future of security threats.
Be aware, be safe.
Support the show and get access to behind-the-scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
One of the world's largest IT services firms announced they fired hundreds of employees for having second jobs at competitors. This episode talks about this new growing trend in the work-at-home setup and how can employers identify and mitigate any risks from their employees.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Vulnerabilities exist everywhere; no matter their age, they can come back to haunt you. This episode talks about a vulnerability that was discovered 15 years ago in Python but was never patched. Now that bug has biting 350,000 repositories putting them at risk.
Vulnerability Detector - Creosote - https://github.com/advanced-threat-research/Creosote
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Internet of Things strikes again! This episode talks about some of the ridiculous items that have internet and app capabilities added to them that didn't need it and you shouldn't buy.
Source - https://www.reviewgeek.com/129521/the-10-most-pointless-smart-items-you-shouldnt-buy/
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Artificial Intelligence is becoming more widespread and easily accessible to build. This episode talks about an artist that created and trained an artificial intelligence app to find the exact location and moment that an Instagram photo was taken.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Rockstar had a bad security week as their network was compromised and videos and source code of their latest Grade Theft Auto game were taken and posted online. This episode talks about the details.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Uber had a bad security week when a hacker breached their networks and bragged about it online. Uber admitted to the compromise and this epsiode talks about the details.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
This week's tools, tips, and tricks episode talks about Bitwarden, the open-source password vault. This is a must listen to the episode if you are looking for a password vault or looking to switch.
Source - https://bitwarden.com/products/personal/
Be aware, be safe.
Support the show and get access to behind-the-scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
In 2016 Uber suffered a breach where 57 million records were taken by a pair of hackers. This week the ex-security chief that oversaw the breach response is now on trial with criminal chargers around his handling of the incident. This episode talks about this groundbreaking trial and what it could mean for future CISOs.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
ParrotOS released version 5.0 of its operating system and introduced a wide range of new offerings. This episode talks about those new versions and why you should consider working with ParrotOS and expand your coding and security knowledge.
Source - https://www.parrotsec.org/download/
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
The FBI has issued a warning to Decentralized Finance platforms (DeFi) and their investors after hackers have stolen over a billion dollars from them this year. This episode goes through the details and the recommendations the FBI has for them.
Source - https://www.ic3.gov/Media/Y2022/PSA220829
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
The IRS reported that approximately 120,000 taxpayers' records were inadvertently leaked through a tax exempt search website for non-profits. This episode talks about the breach and who was impacted by this.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
The European Union has some of the strongest privacy laws in the world. They are also one of the harshest when it comes to enforcing them. Irish regulators recently slapped Instagram with a $400 million fine for violating privacy laws. This episode talks about what happened and some things to think about for your kid's use of social media.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
A phishing-as-a-service called EvilProxy can compromise users' accounts that have multi-factor authentication enabled. This episode talks about how this works and how user's can avoid this attack.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
A recent rumor popped up that TikTok has been breached and 1 Billion records are exposed. Whether this is true or not stories like this should be a good reminder to proactively change your passwords and enable security controls like multi-factor.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
This week's tools, tips and tricks talk about VeraCrypt. This tools is a very powerful and useful tool for people to encrypt their drives and sensitive files.
Source - https://www.veracrypt.fr/en/Home.html
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
The Global Privacy Control is a group focused on putting more control of your online privacy in your hands. This episode talks about what the GPC is and how you can start using it to your advantage.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
A new blog post by security researcher Micheal Horowitz details how VPN apps on iOS are leaking data. HIs post goes into detail that no matter the VPN app the iOS leaks data outside the VLN tunnel. This episode talks about the research.
Source - https://www.michaelhorowitz.com/VPNs.on.iOS.are.scam.php
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Machine learning systems are a great advancement in the world of technology. However, real-world applications are beginning to be rolled out and some may not like the results. This is a story out of France how government officials are using AI to track down tax cheats.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
LastPass announced that their development environment was compromised and parts of their source code may have been leaked. This episode talks about the event and why protecting your development environments should be as strong as production.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
This tools, tips and tricks episode talks about how to use DuckDuckGo to create private burner email addresses for websites.
DuckDuckGo Email Protection Page - https://duckduckgo.com/email/
The Future Of Professional Education Podcast - https://anchor.fm/tfpe
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
A security researcher released a report that shows TikTok may be able to track your keystrokes and everything you do in their app's browser. This episode goes through the highlights and why you should be very wary of browsing the web and clicking links in the app.
Source - TL;DR Article - https://www.forbes.com/sites/richardnieva/2022/08/18/tiktok-in-app-browser-research/?sh=7844977f7c55
Test Link - HTTPS://InAppBrowser.com
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
The former security officer for Twitter sent a whistleblower report to the US Government claiming several security and privacy issues across the platform calling Twitter a risk to national security.
Source - The Redacted Report - https://www.documentcloud.org/documents/22186683-twitter-whistleblower-disclosure
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Microsoft's recent release of their Security Insider talks about Ransomware as a Service (RaaS) called Extortion Economics. This episode talks about the main data points from their study and gives a shocking insight to how ransomware gets into an organization and how long you have to stop the spread.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Google announced that back in June they detected and blocked the largest Distributed Denial of Service (DDoS) attack on record. This episode breaks it down and explains how threat groups can pull these off.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
This week's tools, tips and tricks talks about an app that can help you tweak your Wi-Fi network. Wi-Fi Analyzer can help you do that.
Source - https://apps.microsoft.com/store/detail/wifi-analyzer/9NBLGGH33N0N?hl=en-us&gl=US
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
The latest trends in social media are apps that transform your face for really interesting videos. This episode talks about a resent study on how these apps are taking far more than your photos.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
Application development has become very community driven and open source modules are commonplace to build fast powerful apps. However, there is a security risk when downloading others' code. This episode talks about a recent revelation of malicious packages in PyPI.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
We all know we should patch. Many times, not all the patch notes detail what things are being fixed. This epsiode talks about a MacOS vulnerability and attack, that has been patched by Apple, that could lead to a full takeover of your Mac... if you are not up top date with your patches.
Be aware, be safe.
Support the show and get access to behind the scenes content as a patron - https://www.patreon.com/SecurityInFive *** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
First a big thank you to the feedback from Episode 1249.
This episode talks about the recent Cisco breach and the MFA Fatigue method that let the hackers in their network.
Be aware, be safe.
Support the show and get access to behind-the-scenes content as a patron - https://www.patreon.com/SecurityInFive
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Mighty Mackenzie - https://www.facebook.com/mightymackie
Where you can find Security In Five - https://linktr.ee/binaryblogger
Email - bblogger@protonmail.com
This episode talks about the show and behind-the-scenes challenges coming up as well as looking for the next level for the show through supporters like you https://www.patreon.com/SecurityInFive
Mighty Mackenzie - https://www.facebook.com/mightymackie
Be aware, be safe.
Where you can find Security In Five - https://linktr.ee/binaryblogger
===========================
Support the show and get access to behind-the-scenes content as a patron - https://www.patreon.com/SecurityInFive
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Mighty Mackenzie - https://www.facebook.com/mightymackie
Email - bblogger@protonmail.com
DuckDuckGo was in some hot water recently for being exposed that they weren't blocking all of Microsoft ad trackers. Since then they have changed their approach and will start blocking all of them. This episode talks about this.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
or become a patron https://www.patreon.com/SecurityInFive
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
Twilio confirmed recently they were a victim of a SMS phishing attack. This attack led to customer data being accessed after a few employees were tricked into entering credentials into a hacker-controlled fake website. This epsiode talks about how it happened and the things you can do to slow down or prevent these types of attacks.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
or become a patron https://www.patreon.com/SecurityInFive
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
Google has been served a class action lawsuit for a bait and switch type move with Google Workspace early adopters. This episode talks about what the lawsuit it and rants about it because your host is one of the early adopters.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
or become a patron https://www.patreon.com/SecurityInFive
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
A recent study by a firm called ExtraHop revealed that over 60% of IT environments analyzed has SSH ports exposed. Additional research shows that many less than secure ports and protocols are left open, allowing more vectors for attackers to probe. This episode breaks down what those were and how you can get a handle on these in your environment.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
or become a patron https://www.patreon.com/SecurityInFive
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
The Cybersecurity and Infrastructure Security Agency (CISA) released a report of the top malware strains of 2021. This episode talks about what reports like this are valuable to your continuing education as a cybersecurity professional.
Source - https://www.cisa.gov/uscert/ncas/alerts/aa22-216a
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
or become a patron https://www.patreon.com/SecurityInFive
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
New research shows that almost 90% of ransomware delivery is done through office macros. This ties into the move by Microsoft to block all macros by default in their Office products. This episode breaks it down.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
or become a patron https://www.patreon.com/SecurityInFive
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
Security researchers have discovered thousands of mobile apps that are leaking API keys. This episode talks about how this is more of a problem than this shows and why it's happening.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
or become a patron https://www.patreon.com/SecurityInFive
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
Phishing campaigns and attacks are constantly changing. A new credential stealing phishing campaign has been spotted in the wild. This episode talks about what it is and how you can help protect against it.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
or become a patron https://www.patreon.com/SecurityInFive
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
This episode talks about some exciting news for the Security In Five and your host's new roles.
Cloud Security Alliance of MN - https://www.csamn.com/
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five or become a patron https://www.patreon.com/SecurityInFive
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
The HIPAA Security Rule is a supportive rule to HIPAA focused on more of the technical security aspects of the privacy rule. NIST released an updated draft of a guide to help people understand and implement controls for the security rule.
Source - https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-66r2.ipd.pdf
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
A Virtual Private Network (VPN) should be part of your personal security practice. This episode talks about the additional benefits you can get by regularly using one.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
One of the biggest lottery jackpots is drawn tonight. This episode talks about some of the things you should do to protect your privacy if you win.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
Phishing attacks use commonly known companies and brands to help trick you into falling for them. This episode talks about a study that reveals the most used brand of 2022 for phishing attacks.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
Microsoft announced that next week in Office app for Windows they will block office macros by default. This episode talks about what these macros are and why this move will help protect users.
Source - https://docs.microsoft.com/en-gb/DeployOffice/security/internet-macros-blocked
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
Apple has a very good online, and PDF download, Privacy User Guide for Apple Devices. This episode talks about what is covered in the guide and why you should read it.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
The cryptocurrency market crash has lost over 1 Trillion in value over the last year. This has caused ripples across the world and the cybercrime networks are feeling the impact like everyone else. This episode talks about how they are reacting and what researchers are seeing.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
Instagram announced that the platform will start receiving and displaying Amber Alerts to users. This episode talks about how users will get these alerts and the shift that social media is going through by making this type of move.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
Phishing comes in many forms and one style is growing in use. Callback phishing is exactly what the name states. The scammers want you to call them back in order to get you to trust them to download malware. This episode talks about this and how you can improve your security awareness programs to help educate to identify these attacks.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
The Oregon Trail was released in a remastered format in the Apple Arcade. Now there is a new companion app for the Apple Watch that will let you walk the trail. This episode talks about the immersive gaming with your activity.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
Owning media in a digital format saves space, is easy to buy, and easy to use. However, do you really own it? This episode talks about the dark side of digital media and how you can lose it; there's nothing you can do about it.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
A Florida was indicted by a grand jury for selling $1 Billion in counterfeit Cisco devices over 8 years. This episode talks about the crimes, how the devices were made and what you need to think about with your devices sitting in your datacenters.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
Apple announced a new significant security feature coming in iOS16 called Lockdown Mode. This episode talks about the details and who this feature is meant for.
Be aware, be safe.
Check out -> Uploading Podcast - https://podcasts.apple.com/us/podcast/uploading-podcast/id1600967731
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
A warning from the FBI states hackers are using deepfake technology to gain access to remote jobs and hack businesses. This episode talks about the details.
FBI Warning - https://www.ic3.gov/Media/Y2022/PSA220628
Uploading Podcast Show - https://podcasts.apple.com/us/podcast/uploading-podcast/id1600967731
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
Internet of Things Strikes Again! This time your hot tubs were exposed to data leaks and hackers taking control of your hot tubs. This episode talks about the details and why you need to be careful of the IoT craze.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
Phishing is always going to be a problem. A old but still popular form is making the rounds again. This episode talks about the 'you have a voicemail' phish and how to avoid it.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
CafePress suffered a breach in 2019 where 23 million users' records were leaked. The FTC has now fined them $500,000 for that breach. This episode talk about the breach and what security gaps were discovered in the company and what they were ordered to fix.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
I have a mystery and need the Internet's help to solve. This episode talks about my little bizarre experience this past weekend and what I found inside a lawn ornament.
Blog Post With The Photos - https://securityinfive.com/the-mystery-of-the-hidden-figure/
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
This week's tools, tips and tricks is a site to help you identify what kind of ransomware hit your files. ID Ransomware is a resource that may help you identify and maybe give you a path to decrypt your files if you get hit.
Source - https://id-ransomware.malwarehunterteam.com/
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
A hacker ran a campaign through Facebook Messenger that has duped over 10 million people and counting. This episode talks about how the scam worked and how it slipped through Facebook's security checks.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
The EU recently passed a law to get device makers to standardize on USB-C for their data and charging ports. The push in the US has begun and this episode talks about how this is a good move for everyone.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
Your Facebook account may be allowing Followers, intentional or not, you should know who they are. This episode goes through how to review who is following your Facebook account and reminds you that followers don't have to befriend you.
Source - https://www.howtogeek.com/805269/how-to-see-who-is-following-you-on-facebook/
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email - bblogger@protonmail.com
Firefox once again shows it is the king of browser privacy. Total Cookie Protection has been released to all users by default worldwide. This episode explains what this is and why you should be using Firefox for all your browsing needs.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Ransomware is nasty and can lock a business down for days. Victims have two options, pay the ransom to get their files back or not and try to recover. Data shows that companies that pay a ransom actually open the door to getting hit again. This episode goes into the details.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Free VPN services are not totally free. They may not cost you any money but somewhere you and others are paying for them. This episode talks about a data leak from a free VPN service and showing their privacy policy statement may not be aligned to their business practices.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Doctors are moving forward with technology to make their offices more efficient and productive. However, some of these apps might be looking at you closer than you like. This episode talks about these apps and what you can do about it.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Ransomware is a nasty piece of malware that attempts to encrypt all your files and hold them ransom to get them back. The key to the success is the encryption process remains secret. Recently a common ransomware has been reverse engineered and a decrypted has been released. This episode talks about how the decrypter was built.
Source - https://decoded.avast.io/threatresearch/decrypted-tarrak-ransomware/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
iOS16 is the next iteration of Apple's mobile OS. This episode talks about the security and privacy improvements coming in this release.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
ExpressVPN has recently announced they are pulling their servers from India. They are refusing to comply to a government mandate for data requests and rather than accepting it, they are not operating in the country. This episode talks about the details.
Source - https://www.expressvpn.com/blog/remove-india-vpn-servers/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Security And Exchange Commission helped create the Sarbanes-Oxley Act 20 years ago. SOX initial intention was to transform and bring financial expertise into the board rooms they are now looking to do the same with cybersecurity. This episode talks about their proposed changes.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Connecticut joins the state privacy law club. This episode talks about their version of consumer privacy act and what it means as a security professional.
CTPA Text - https://www.cga.ct.gov/2022/ACT/PA/PDF/2022PA-00015-R00SB-00006-PA.PDF
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Right To Repair is a legal fight to force device manufacturers to make their devices repairable by the owners. This is a growing problem and laws are trying to get put in place to open this up and give the power back to the owners. This episode rants about this.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
In the pandemic over a billion children were forced into distance learning driven by educational devices and applications. A recent report showed that 90% of the apps reviewed collected data on the children and gave them to ad companies. This episode talks about this finding.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
DuckDuckGo is a privacy centric company offering a search engine and browser that claims to protect your privacy from advertisers. Recently security researchers discovered their browser is not as private as you'd like. This episode talks about it.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
In today's work and career world people change jobs more often than in the past. This episode talks about the host's upcoming career shift and how you may look at your current position and where it can or cannot take you.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
An update on the podcast and what I have been up to this week.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A recent survey of security and IT executives from around the world asked them about their secure password practices. This episode talks about the results which are concerning to the effectiveness of training versus actual practices.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Adaptive Sheild along with the Cloud Security Alliance released their 2022 SaaS Security Survey Report. This is a report from over 300 CSA members asking them their concerns about cloud security posture in the industry. This episode goes over some key takeaways.
Source - https://www.adaptive-shield.com/2022-saas-security-survey-report
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Exposing services to the open Internet is a necessity if you have an Internet business. However, there are components of a service/server that you don't want open. This episode talks about how benign ports/protocols that are unused but open can lead to an attack.
Source - https://www.shadowserver.org/news/the-scannings-will-continue-until-the-internet-improves/
API Report - https://www.shadowserver.org/what-we-do/network-reporting/accessible-kubernetes-api-server-report/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Google announced at the annual Security Summit a new service to help secure open source software. Calles Assured Open Source Software, Google plans to manage, scan and monitor open source packages making it easier for enterprises to trust the software supply chain.
Source - https://cloudonair.withgoogle.com/events/summit-security-2022/resources#
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Patches are released frequently for many reasons. Patches are meant to be added to your software/systems but they are new changes and should be verified. This week Microsoft released a patch that caused an unintended bug with domain controllers, this episode talked about a trust but verify approach to your patch process.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Coinbase, one of the most popular cryptocurrency exchange, release a statement about the state of your holdings with them. This episode talks about the risks of using an exchange to manage your coins on your behalf and what they now means in the event of a bankruptcy or another impact to the company that has your wallets.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
GitHub, the most popular code-sharing site, will be making two-factor authentication mandatory for code supplies by the end of 2023. This episode talks about this and why would shouldn't wait until their deadlines to improve your accounts.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Passwordless authentication is the future of the industry and it's taken one step closer to being widespread. This episode talks about an announcement Apple, Microsoft, Google had in partnership with the FIDO Alliance.
Source - https://fidoalliance.org/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Today is World Password Day. A security 'holiday' observed the first Thursday of May since 2013. This episode talks about World Password Day and what Passwordless Authentication looks like and the challenges to integrate into a business.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Blockchain is the anonymous ledger driving the cryptocurrency revolution. This episode talks about the myth that blockchain is 100% anonymous.
Upcoming Book - Tracer In The Dark
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Google allows users to request to remove personal information from their search results. They are expanding that policy and allowing more personal information to be requested to be removed such as email addresses, phone numbers and so on. This episode talks about this expansion and what it means and what it doesn't mean for your data on the Internet.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowGoogle Removal Request - https://support.google.com/websearch/answer/9673730
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Microsoft Edge appears to be getting a built-in VPN. This episode talks about the new feature called Secure Network and the details around this and when you can expect it.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Twitter's acquisition by Elon Musk is definitely an interesting story from many directions. This episode talks about the technical and privacy changes Musk has stated he wants to make within Twitter.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The US Department of Justice and their Rewards for Justice program is offering a $10 million bounty to find 6 hackers. This episode talks about the details.
Rewards For Justice Page - https://rewardsforjustice.net/rewards/foreign-malicious-cyber-activity-against-u-s-critical-infrastructure/
Tor Site - he5dybnt7sr6cm32xt77pazmtm65flqy6irivtflruqfc5ep7eiodiad.onion
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Cloud environments are fast, efficient methods to get applications and services online. However, the cloud provider's security responsibility has a line and as a consumer, you need to be aware of where that is. This episode talks about the shared responsibility model and what it really means for customers' security within a cloud environment.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Malware attacks are always ongoing and groups are constantly changing their tactics. Recently reports are showing attackers are going after job seekers and recruiters in an attempt to deliver malware through job descriptions and resumes. This episode talks about the details and reminds you that every corner of your organization can be an attack vector.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Log4J vulnerability has been the most critical exploit that has been discovered in the last several years. So much so that AWS released a hotpatch to automatically patch Java process to protect against it. However, the patch itself has a flaw that needs to be patched. This episode goes into the details.
Source - AWS Bulletin - https://aws.amazon.com/security/security-bulletins/AWS-2022-006/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Social media accounts have changed the landscape of communication as well as technical complexities. Hackers and malicious agents try to use those accounts to spread their impact. However, accounts don't have to be hacked and taken over to use your account to spread spam for example. This episode talks about how this is done and how you can protect and prevent your account.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Lenovo announced recently three vulnerabilities in millions of laptop's BIOS firmware. This episode talks about the importance of making sure your BIOS and hardware is patched as regularly as your operating system and applications.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about the authoritative use of access and what constitutes business access and unauthorized access even though an employee can see everything. This happens more often than not and one employee's curiosity can lead to a breach notification for your business.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Breaches are expensive to recover from. A recently study shows that customers are increasing their litigation against companies that were breaches with healthcare seeing the most. This episode talks about the details.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Cloud environments are easy to setup and get you running very quickly. However, the security responsibility still is on you. This episode talks about a report that shows how bad Identity and Access Management is within our cloud environment and how it's making it a high target for threat groups.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about a recent notified breach from Cash App. 8 million customers' data was accessed by a former employee. How could this happen and how can you ensure you are protected from this yourself?
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This summer Microsoft is releasing a new feature for Windows Enterprise E3. Called Autopatch, this feature brings centralized patch management, testing and rollouts to the Enterprise. This episode talks about the details.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A study by Trellix and the Center for Strategic and International Studies shows what we already knew. The concern about nation-state hackers is on everyone's mind. This episode talks about the report and what makes nation-state hackers different than public cybercrime groups.
Source Report - https://www.trellix.com/en-us/assets/docs/trellix-csis-organizations-and-nation-state-cyber-threats-report.pdf
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Log4j, also known as Log4Shell, vulnerability was one of the most critical and highly publicized security news in the last few years. Now, we are six months later and the data is showing that hackers are using it as one of their primary attack vectors. This episode talks about the details.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The FBI has issued a public statement adding the LAPSUS$ group to their "Most Wanted" list. This episode talks about the group and why the FBI is after them so hard.
Source - https://www.fbi.gov/wanted/seeking-info/lapsus
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Insider threats are a major risk to most businesses and most do not focus enough on controlling them. This episode talks about the results from a study, Forrester Insider Threats Drive Data Protection Improvements.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A new ransomware has been found attacking JupyterWeb Notebooks. This episode talks about the detail and what you should do if you use or manage a JupyterWeb Notebook for Python development.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
WhatsApp, the popular communication app, has billions of users sending over 100 billion messages a day. A new insight shows that users are using voice messaging in increasing numbers. This episode talks about the volume of that and as security professionals why we need to pay attention to these kinds of trends.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The US Federal Communications Commission (FCC) has placed the cybersecurity company Kapersky on the list of companies that pose an "unacceptable risk to the national security" of the country. This episode talks about the details.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The US Cybersecurity and Infrastructure Security Agency has a publication called the Known Exploited Vulnerability Catalog. This is also known as the Must Patch list. This episode talks about the importance of this list and why you should follow it even though you may not be in the federal government.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Check Point Research has found over 2,000 mobile apps are using a cloud-based database incorrectly, leaking millions of people's data. This episode goes into the details and a reminder on your cloud responsibilities.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Application security practices is more than just the code to protect your appls and environment. This episode talks about a source code leak from Samsung and what was found that could bing significant security risks to their products and/or environments.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Managed service providers (MSP) are efficient services businesses can use to help manage and secure their IT. Because MSP manages multiple clients they are a high target for attacks. This episode talks about a recent report on MSP attacks.
Source - https://www.n-able.com/resources/state-of-the-market-the-new-threat-landscape
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
1Password has offered a $1 million bounty for a capture the flag event against their platform. This episode goes into the details on what bug bounties are for and why this one is a little different.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The reasons people commit fraud vary from desperate reasons to simple greed and materialistic motivations. This episode talks about a person who was caught for defrauding the government. The interesting twist is what he used the stolen money for.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Internet of Things strikes again. This episode talks about a report from university researchers that got Alexa to hack itself.
Source - PDF Download - https://arxiv.org/pdf/2202.08619.pdf
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A new ransomware was detected in Ukraine called the HermeticWiper. Now security researchers have identified a flaw that led to a tool to decrypt your files for free.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The US Senate unanimously passed the Strengthening American Cybersecurity Act of 2022. This bill strengthens the cybersecurity around critical infrastructure and manufacturing sectors as well as boost the government's internal organization when it comes to cybersecurity departments. Source - https://www.congress.gov/bill/117th-congress/senate-bill/3600/actions
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A recent alert from the Cybersecurity & Infrastructure Security Agency details new destructive malware found targeting Ukraine. This episode talks about the wiperware and why you should pay attention to these alerts and follow their recommendations.
Source - https://www.cisa.gov/uscert/ncas/alerts/aa22-057a
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Current events is focused on military conflicts around the world. There is also a slient, less visible war being waged in cyberspace. This is the time security professionals have all been training for and this episode talks about the war that could end up in your systems.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The International Association of Privacy Professionals released a great resource to help track all the existing and upcoming privacy legislation in the United States. Knowing and understanding the legal aspects of cybersecurity and privacy is a necessary component of every program. This episode talks about the resource and why you should add it to your lists.
Source - https://iapp.org/resources/article/us-state-privacy-legislation-tracker/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Current events brewing around the world are concerning and we hope and pray for a peaceful end. Beyond the physical conflicts, there is also a fight in the cyber world. This episode talks about the cyberwarfare that could wrap around the world and what you should do and why you need to take it seriously no matter who you are.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Identity data breaches/leaks on your personal data will happen. When it does there are things you can do that will make fraudulent financial activities harder but a recent survey most do not. This episode talks about the study's findings.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A future release of Windows 11 will prevent you from connecting to deprecated and highly insecure Wi-Fi networks. This episode talks about the details and why this is a good move.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Microsoft Teams has become widely used, mainly through remote work during the pandemic. It has become a popular target for hackers. This episode talks about what hackers are doing and how you can help prevent their actions in your environment.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
CrowdStrike released their 2022 Global Threat Report and they showed something interesting. This episode talks about how attackers are changing their tactics and using less-malware in their attacks but can still pose a huge risk to your organizations and systems.
Download the report - https://www.crowdstrike.com/global-threat-report/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Facebook Marketplace is intended to be a central forum for people to easily buy and sell goods. However, scammers lurk in the shadows and prey on everyone. This episode talks about a scam that I personally experienced but didn't fall for.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Apple pushed out an urgent update for iOS, iPadOS and MacOS. This episode talks about the security vulnerability this patch fixes and a reminder to keep an eye on your updates.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about a story where a single individual took revenge on North Korea and took down their Internet. Do not try this at home.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
SpaceX announced they lost the latest 40 satellites launched on Feb. 3rd due to a geomagnetic storm. This episode talks about the reality of how fragile our space infrastructure really is.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The IRS announced a few weeks ago that they were rolling out facial recognition requirements to file your taxes. The public caught wind of this and was greatly opposed to the idea. Now the IRS has backtracked on the idea. This episode talks about the switch and what the IRS had to say about it.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Office documents have been a goto method for attackers to get malware into an organization. There has been an uptick of these types of attacks and this
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Internet of Things strikes again. This episode talks about a new twist that IoT devices could bring to users. What would you do if your appliances refuse work work without updates?
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Another vulnerability with one of the highest criticality ratings in years has been announced. Samba 4.13.17 and lower, the open source component that allows Linux, Windows and Mac to share files between then has a severe flaw. This episode talks about this and why you should have a culture of immediate action rather than hiding behind your company's SLAs.
CVE-2021-44142
Source - https://www.samba.org/samba/security/CVE-2021-44142.html
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
F-Secure released a report from a study where they phished 80,000 people. This episode talks about the results and the surprising group that fell for the phishing email the most.
Download the Report - https://www.f-secure.com/content/dam/press/en/media-library/reports/to-click-or-not-to-click.pdf
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Internet has so much public data freely available that no one is free from total privacy. This episode talks about a college freshman's side project and how it crossed Elon Musk's radar.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Thie week's tools tips and tricks and talks about using your phone in your tax preparation. This episode highlights a big security and privacy gap you may have on your phone and don't realize.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Apple has released patches for iOS and MacOS that addresses dangerous security flaws that are actively being exploited in the wild. This episode talks about the reasons why you should always patch and you should put a focus on maintaining your software and devices regularly.
Be aware, be safe.Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A few months ago a security researcher revealed he could remotely access Tesla cars. It has been confirmed how this was done. This episode goes into the details.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A recent poll from security decision-makers around the world shows that over two-fifths of companies are still paying ransoms in ransomware attacks. This episode breaks it down and gives some time on how to use reports like these to help justify your cybersecurity investment requests.
Source - https://www.anomali.com/resources/whitepapers/anomali-cybersecurity-insights-report
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Cybersecurity and Infrastructure Security Agency is a recently new agency focused on the security of the nation's infrastructure. A new resource, the Known Exploited Vulnerability Catalog is updated with vulnerabilities that are seen to be actively exploited by hackers. This episode goes into the details.
Source - https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The IRS is going to force you to submit a selfie for facial recognition to access your taxes in the future. This epsiode breaks it down.
Source - https://ID.me
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Red Cross recently announced they were victim to a sophisticated cyber-attack that compromised over 500,000 records. The Red Cross has made a plea to the hackers to not release the date and destroy it. This episode explain why they are making this public push, don't forget the human elements behind the data.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Olypmics are around the corner and athletes were advised to not use their primary phones while in China. This episode talks about the warnings and why everyone traveling to Bejing should take this caution seriously.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Oracle released patches for their suite of products with close to 500 security fixes. This episode talks about the importance of patching and why it should not be underestimated to the importance or efforts with them.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tool's, tips and tricks discusses Facebook fads. These viral challenges to get people to share funny posts but most of the time they have darker social engineering components to them that most don't see. This episode talks about why you should not participate in them.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The attacks have begun. If you are dragging your feet on dealing with Log4j you may be out of time. This episode talks about the latest observations and what is being seen in the wild.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The FTC annouced they are going to be more proactive on going after and punishing companies that fail to take action on major vulnerabilities. This episode talks about this and why it's overdue.
Cybersecurity & Infrastructure Security Agency - https://www.cisa.gov/uscert/apache-log4j-vulnerability-guidance
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about a guest spot I will have this afternoon on CloudTalkShow.com. If you are free head over to their YouTube channel and check it out.
YouTube - https://www.youtube.com/channel/UCk1MSsd1Jk5Nd0LP50n5EoQ
Be aware, be safe.Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Apple AirTags are tracking devices to help you keep track of your stuff. Unfortunately, these devices are being used in negative ways to track you, your car, etc... This episode talks about these situations and what you can do.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Ransomware is the biggest problem facing organizations today. These attacks can cause severe IT disruptions but also bring huge financial challenges far beyond the ransom itself. This episode talks about the real costs of ransomware to an organization.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The IRS provides an identity protection ability to prevent fraudulent tax filings under your SSN/TIN. The Identity Protection PIN is like multi-factor authentication for your tax filings. This episode goes into the details.
The IRS IP PIN Site - https://www.irs.gov/identity-theft-fraud-scams/get-an-identity-protection-pin
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
LastPass users received alerts in the past few days that their accounts were accessed suspiciously. Many threw blame that LastPass was breached but the attack was credential stuffing. This episode talked about that and what you can do to prevent this from happening to you.
Happy New Year!
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode goes over 7 Cybersecurity Myths and Truths to wrap up the year. See you in 2022!
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about a situation at a health care company that started out as a theft investigation but ended as a non-issue. Listen to hear what happened and how you can reflect on your organization to see if you are making the same mistakes.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Microsoft has issued a warning to customers to apply the November 2021 Patch Tuesday updates. This episode talks about the Active Directory vulnerabilities and why this escalated to send out a warning.
Source - Guide To Help Organizations Detect This Vulnerability - https://techcommunity.microsoft.com/t5/security-compliance-and-identity/sam-name-impersonation/ba-p/3042699
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Log4j, Log4Shell as it's known, is one of the most severe vulnerabilities with the broadest impact I've seen. This episode breaks down why this is the case and why you should take this seriously and without delay.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks episode talks about a great website for reference and security scanning, SpeedGuide.net.
Source - https://www.speedguide.net/scan.php
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The vulnerability with Log4j that was announced last week is the biggest and worst vulnerability in the wild up to this point. The reason is how widespread Java is and how easy it is to exploit it makes it so dangerous. This episode goes into the details.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Apple released iOS 15.2 for iphones, ipads, watches and TV. This release enabled the Privacy Report and this episode talks about the information you can now see on what apps are accessing your data.
Be aware, be safe.
Source - https://www.macrumors.com/2021/12/13/apple-releases-ios-15-2/
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Amazon Web Services (AWS) had a significant outage recently. This episode talks about the impact this outage had on some IoT devices and why you should think hard about using IoT for your critical home systems.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about another case of identity theft but the reason will shock you. Identity theft can be used for many reasons but not all of them are financially motivated.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The ShowBecome A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks talks about a site that can help you determine if a website is legitimate or potentially malicious.
Source - https://www.scamvoid.net/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Vulnerability scanning is a critical security activity you should have in your organization at many levels. However, there is a critical aspect of this that the resources glaze over or don't talk about at all. This episode tells you what that missing component is.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode is a follow-up from episode 955 where I talked about a mother-daughter hacking incident. The pair, allegedly, hacked into the school's systems to rig the homecoming queen voting so the daughter would win. The story took a bizarre turn, listen to see where it sits.
Episode 955 - https://securityinfive.com/episode-955-mother-daughter-duo-arrested-for-hacking-homecoming-queen-votes/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Cross-site leaks are a type of browser side-channel attack that can allow a malicious website to potentially collect sensitive information about a user from another site. This episode talks about newly discovered attacks and how you can see if you are vulnerable.
Learn about XS-Leaks - https://xsleaks.dev/
Test your browser - https://xsinator.com/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A new set of vulnerabilities called Printing Shellz affects 150 HP multi-function printers. This episode talks about the critical nature of these findings and what you can do if you have these in your office locations during this remote workforce situation.
Source - https://gbhackers.com/printing-shellz/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks episode talks about a free wi-fi scanner you can use to help improve your network performance.
Download - Acrylic Wi-Fi Home Scanner - https://www.acrylicwifi.com/en/downloads-free-license-wifi-wireless-network-software-tools/download-wifi-scanner-windows/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Twitter announced a new policy where they will begin removing media that is deemed private. This episode goes into the details and some curious wording on what Twitter considers sensitive or not.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A school district in Texas is going to start scanning all the student's district-provided devices. They will be looking at all communications, use and email for flag that might be indicative of cyber-bullying and potential mental health issues. This episode talked about this and what piece is missing that could be done.
Source - https://www.gaggle.net/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Online shopping is on the increase this time of year and so are the scams. This episode goes through some of the red flags and cautions you should take when buying from online deals.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Internet Of Things Strikes Again. This episode talks about a big first step the UK is taking to address poor security in internet-enabled devices.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
In 2019 Facebook, now Meta, announced they are moving to enable end to end encryption on the messaging apps. It's 2021 and it's not completed and now they say it won't be until 2023 at the earlest. This episode talks about this.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Identity Theft Resource Center released a report that shows a disturbing trend. The survey showed that more than half of users involved in a breach take no action to strengthen their accounts. This episode breaks it down.
Source Report - https://www.idtheftcenter.org/data-breach-notice-research-by-the-identity-theft-resource-center-shows-consumers-dont-act-after-a-data-theft/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Millions of routers from Sky, a UK based broadband provider, were found to have security vulnerabilities that were left open for 18 months. This episode talks about this and what the security flaw was.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks talk about a Windows Customization Tool called Winaero Tweaker.
Download Winaero Tweaker - https://winaero.com/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Scammers go after users of services but they also go after new users. This episode talks about the tactic to trick people in signing up for services with great-sounding deals and how to look out for these types of attacks.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
It's that time of year when scammers increase the gift card scams. This episode talks about how to avoid these scams and what you can do to help others avoid them as well.
Source: https://www.consumer.ftc.gov/articles/gift-card-scams
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Apple continues improving security and privacy for uses with the next iOS update, 15.2. This episode talks about the main privacy featured you should be aware of and enable when the update is released.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
We all know about phishing and looking out for fake emails. What happens when the emails are coming from legitimate sources? This is what happened to the FBI last week. This episode talks about the FBI email hack and what happened.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks episode talks about your logs. Do you read them? Do you know how? This episode talks about why you should.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about a real-world example of why security experts are discouraging using text messaging for security.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Identity theft can happen to anyone, including our children. This episode talks about the 2021 Child Identity Fraud Report and some of the shocking findings from it.
Source - https://www.javelinstrategy.com/coverage-area/child-identity-theft-fraud
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Microsoft's new Insider Risk Management features are a great addition to the security protections for businesses. However, this episode talks about the extent of monitoring you can do at the individual level and what this could do to the company/employee relationship.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Department of Homeland Security is working on a "Hack-Back" Act. This act would allow, with government oversight, private entities from conducting cyber attacks against groups that cyber attacks them. This episode talks about the act and thoughts on the dnagers of allowing this.
Read the proposal - https://www.congress.gov/bill/117th-congress/senate-bill/2292/text
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about Microsoft PowerToys.
Source - https://docs.microsoft.com/en-us/windows/powertoys/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Microsoft announced a new security offering for small businesses. Microsoft Defender for Business is am enterprise grade solution meant for small businesses with 300 or less employees. This episode goes into the details.
Source -https://techcommunity.microsoft.com/t5/small-and-medium-business-blog/introducing-microsoft-defender-for-business/ba-p/2898701
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Facebook announced this week that they are removing the Facial Recognition feature and deleting billions of facial recognition templates on people. This episode talks about the details.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Tesla issued a recall for over 11,000 vehicles over a software bug that could cause the car to falsely initiate emergency braking. This episode talks about the bug and what cars this impacts.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Apple released a new privacy feature in iOS 14.5 called App Tracking Transparency that allows users to opt-in for apps to track them. This episode talks about a new report that details how the feature has impacted ad revenues across social media platforms.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks episode talks about the year-end IT hygiene steps you should take.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Microsoft issued an alert from their DART department about an increase of password spray attack over the last 12 months. This episode talks about what a password spray attack is and what you can do to protect your accounts from these types of attacks.
Microsoft Blog post - https://www.microsoft.com/security/blog/2021/10/26/protect-your-business-from-password-sprays-with-microsoft-dart-recommendations/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Tesla rolled back an update that had a serious bug. This episode talks about auto-drive cars and the risks of software and the bugs that come with them in our ever-growing automated world.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Millions of accounts from TikTok and Instagram were exposed by an insecure database used by a marketing firm. This data was collected through scraping. This episode goes into the details.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode is one of the most downloaded of 2021 this far, Get A Google Voice Number.
New shows will return Tuesday, Oct. 26th, 2021.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode is one of the most downloaded of 2021, Hunter.io.
New shows will return Tuesday, Oct. 26th, 2021.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode is one of the top downloaded of 2021 thus far, Dropbox Offering Their Password Vault For Free.
New shows will return Tuesday, Oct. 26th 2021.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode is one of the top downloaded episodes of 2021 thus far, Microsoft Is Now A Cybersecurity Monster.
New shows will return Tuesday, Oct. 26th, 2021.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode is one of the top downloaded episodes of 2021. Password Guidelines Per NIST.
New shows return Tuesday, Oct. 26th, 2021.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about a story out of Australia where a former employee accessed the former employer's systems. What was deleted could have cost people's lives but was caught before any damage was done.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Security In Five is now a Top Mentor on the new Widsom App. This episode talks about the new venture and how it will be providing different content than the podcast.
Wisdom App - https://www.joinwisdomapp.com/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The recent scandal in the NFL and past emails should be a reminder that the Internet is forever. This episode talks about how security awareness programs, companies and parents need to make that message more clear.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Mobile devices, Andriod and Apple specifically, have features to help everyone use their devices. Some of these features can be used by anyone but if use improperly can leave your phone wide open and bypass other security controls you have in place. This episode talks about some of these that are being made popular on social media.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Google announced they are enabling multi-factor authentication on 150 million Google users by the end of the year. This episode goes into the details and why multi-factor is here to stay.
Source: https://blog.google/technology/safety-security/a-simpler-and-safer-future-without-passwords/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Twitch had a breach that they have confirmed in the last few days. This breach is as bad as it can get for a company from the data that was exfiltrated. This episode goes into the details.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Windows 11 is here and this episode talks about how you can get your PC ready for it.
Check compatibility - https://www.microsoft.com/en-us/windows/windows-11
Secure Boot - https://support.microsoft.com/en-us/topic/windows-11-and-secure-boot-a8ff1202-c0d9-42f5-940f-843abef64fad
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Most of the websites and apps you use have you create an account. When you stop using that service or want to remove it deleting your account has always been complicated. This episode talks about a new move by Apple to force apps to make the process of deleting your account easier.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Google Chrome has recently announced a new zero-day vulnerability in the browser. This brings the total zero-day vulnerabilities in Chrome this year alone to twelve. This episode goes into the details and what you can do to keep your software safe.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
An article came through the rotation that I had to respond to. There are always pros and cons to anything but when security experts recommend something against the grain of best practices. This episode explains my disagreement to an article that claims personal VPNs are not necessary and increase security risks to users.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Amazon rolled out a few new IoT gadgets this week. One targeted at kids, a small drone to fly around your house, and a roaming surveillance robot. This episode covers them all.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks episode talks about simple home security tips to be aware of. You may be missing a small item that could give big access to criminals.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Android users have to pay a little more attention to applications that install. This episode talks about a recent piece of malware that can fleece users by tricking them to sign up for premium services.
Source (the app list) - https://threatpost.com/grifthorse-money-stealing-trojan-android/175130/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Employees' use of technology is to help get the job done. However, freedom to do whatever they want with that technology can cause great hardship to the business without you knowing it. This episode talks about how your technology can be used for massive illegal activities and why you should be monitoring all use.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Cloudlfare is celebrating its 11th anniversary this week and has announced new email security tools. This episode talks about the new tools and how it will help businesses tackle email threats.
Source: https://blog.cloudflare.com/introducing-email-routing/
https://blog.cloudflare.com/tackling-email-spoofing/
https://www.cloudflare.com/birthday-week/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks episode talks about learning new skills as an IT and cybersecurity professional.
GitHub - Squeege - The Windows Cleaner - https://github.com/securityinfive/Squeege-The-Windows-Cleaner
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about HIPAA (Health Insurance Portability and Accountability Act) and how it applies to your vaccination cards and status.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The United Nations, the UN, was breached in April of 2021. This episode talks about the breach and once again a simple security control that was not implemented would have stopped this. Listen to find out what they could have done.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Live Text is a new text scanning feature with iOS15 and the iPhone camera. This episode talks about the dark side of this new feature and why you need to be aware of how this could be used maliciously to steal data.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
New versions of iOS, iPad OS and MacOS all were released. This episode talks about the new privacy features in iOS15.
All the new features in iOS15 - https://www.apple.com/ios/ios-15/features/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about a feature built into Windows 10 to help control privacy and screen time for family members.
Source - Windows Family Settings - https://bit.ly/3Ekp4Kq
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Microsoft announced recently that users can now move to passwordless authentication on their accounts. This episode talks about what this is and why you should consider making this switch.
Source - https://bit.ly/2XpjKEt
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Common Weakness Enumeration Top 25 Software Weaknesses for 2021 has been released. This episode talks about what this list is, how it's put together and why you should make sure your developers are aware of it.
Source - https://cwe.mitre.org/top25/archive/2021/2021_cwe_top25.html
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Apple has released an emergency patch to close a major vulnerability that could allow spyware to get on your phone. This episode talks about this and a little rant on what Apple should do to get this news out better.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The OWASP Top 10 is the defacto starting point for web application security. This episode talks about the list and how's it changed over the years.
Source - https://owasp.org/Top10/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Schools back on and it's a good time to check your kid's technology hygiene. This episode talks about this simple things you can do to ensure your technology stack is protected and ready to go to.
Electronic Specifier Podcast - https://www.electronicspecifier.com/news/podcasts/
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
HP Wolf security released a report called Rebellions & Rejections. This report goes into what the global workers and IT teams see security during this pandemic work at home shift. This episode goes through the highlight stats.
Download the report - https://threatresearch.ext.hp.com/wp-content/uploads/2021/09/HP_Wolf_Security_Rebellions_and_Rejections_Report.pdf
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Microsoft and the Cybersecurity & Infrastructure Security Agency (CISA) have issued an advisory for a targeted attack on Office documents. This episode talks about the details and what you can do to help mitigate this vulnerability until a patch is released.
Advisory - https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-40444
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
ProtonMail, the end-to-end encryption email service, has received some criticism after turning over IP logs on users to the Swiss authorities. This episode talks about why they did this and how this impacts privacy across the internet.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Windows from time to time gets bogged down, performance issues and you may need to start over. This episode talks about a simpler way to resintall Windows without a full wipe of your PC.
Fresh Start - https://support.microsoft.com/en-us/windows/give-your-pc-a-fresh-start-0ef73740-b927-549b-b7c9-e6f2b48d275e
Windows Recovery Options - https://support.microsoft.com/en-us/windows/recovery-options-in-windows-31ce2444-7de3-818c-d626-e3b5a3024da5
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
It was only a matter of time before ID cards were digitized. With the upcoming release of iOS15 Apple is providing the path to get your State issued IDs into Apple Wallet. This episode talks about how it works and what states are on board first.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Hackers are businesses and will find new ways to make money. A new way that has popped up is banning social media accounts as a service. If you don't like someone you can hire a group to get that account banned. This episode talks about the details and some things you can do to help protect yourself.
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Windows 11 will be released starting October 5th. This epsiode goes through what this means for you and what you need to do before you upgrade.
New Features - https://www.msn.com/en-us/news/technology/the-most-important-new-features-in-windows-11/ar-AALpuhh
Windows 11 Health Check - https://www.microsoft.com/en-us/software-download/windowsinsiderpreviewpchealth
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode discusses the challenge of businesses to grant privileged access to employees that need it. Do you grant permissions to one account or do you create new accounts and new environments for the tasks at hand?
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about an added benefit for using a single sign on enabled password vault. This feature when properly used can help you detect fake websites.
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The FBI released a cybersecurity advisory about a ransomware group called OnePercent. This episode goes into this group's methods and what you can do to protect yourself from a ransomware attack.
Download the FBI Advistory - https://www.ic3.gov/Media/News/2021/210823.pdf
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
NIT Application Security released a report monthly on the state of application security. The report is called AppSec Stats Flash and this months showed a disturbing stat when it comes to high severity vulnerabilities getting patched by companies.
Source - https://www.whitehatsec.com/appsec-stats-flash/
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A recent report details a flaw with Microsoft Power Apps accidentally left 38 million records exposed. This episode talks about the mistake, which has been fixed, and what you need to remember when building out your development teams.
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Multi-factor authentication is the easiest and most effective improvement to your account security. GitHUb is once again encouraging all users to enable 2FA. This episode goes into the details.
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode is an interview with author A-Jay Orr to talk about his book The Art of War in Business Technology.
Get the book - https://amzn.to/3z5vWs7
Simple Plan IT - https://simpleplanit.com/
A-Jay On Twitter - https://twitter.com/ajayorr
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
T-Mobile once again is in the news for yet another data breach. This episode talks about the latest breach and how many customers are impacted.
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Internet of Things Strikes Again! This time millions of video camera devices are at risk due to a discovered vulnerability in the communication platform the devices use. This episode goes into the details.
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Text message scams or smishing has been on the increase during the pandemic lockdown. This episode talks about this and what is the most popular scam to look out for.
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Hackers go to great lengths to avoid detection and bypass security controls. Microsoft recently reported a new technique where hackers were using old Morse Code to obfuscate their routes. This episode talks about this and the easy things you can put in place to avoid this kind of phishing attack.
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Passwords are not going away any time soon and that means people still need to create passwords that are unique and hard to crack. This episode talks about a new suggestion on how to create a long complex password that is just as effective as any other method.
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A new report from Code42 details what security professionals already know, most insider breaches are not malicious. This episode talks about the report and why it's important to keep your focus on the data and not necessarily the causes of breaches.
Download the report - https://bit.ly/37vunrm
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A recent report explained how Apple will soon be scanning your personal photos looking for child abuse images. This episode talks about what this technology really is doing and why it's not what the mainstream narrative is telling you.
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Moving to the cloud is a common practice for many businesses now. However, going with one cloud or multiple can increase security risks. This episode talks about a recent study that shows having a multi-cloud strategy is actually riskier for the organization and security teams.
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The U.S. National Security Agency has issued a new report to help security teams and individuals protect wireless devices and provide best practices in telework situations. This episode goes through the report details and why it's important to remind users of these practices.
Source - https://media.defense.gov/2021/Jul/29/2002815141/-1/-1/0/CSI_SECURING_WIRELESS_DEVICES_IN_PUBLIC.PDF
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
EA, the video game company, was hacked recently and had hundreds of gigabytes of data stolen. This episode talks about what the hackers tried to do and how they hacked EA in the first place.
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Clubhouse is a new social audio app and Security In Five has joined the service. This episode was recorded while we were in a Clubhouse room and many more in the future will be streamed live as I record new epsiodes.
Source - https://www.clubhouse.com
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Security In Five is a huge proponent of multi-factor authentication and pushing people to enable it everywhere they can. A recent transparency report from Twitter shows that adoption is not going very well. This episode breaks it down.
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Using 3rd party components in application development is like second nature. However, using other people's code comes with some increased security risks. This episode talks about these risks and what GitLab has released to help discover and address vulnerabilities in 3rd code in your applications.
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Internet of Things devices with microphones in our homes has a risk with them. Who can listen to what and when? Google has recently admitted to government officials that they do listen to recordings that are not activated by the user. This episode goes into the details.
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Another new vulnerability has been published for Windows, this time imapcting the Print Spooler. This vulnerability is an elevated privilege one and needs to be dealt with now.
How to disable it
In Windows Search bar type - services.msc
Scroll to Print Spooler and double click.
Change Startup Type to Manual or Disabled, then hit Stop.
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Google is adding a security boost to the Chrome browser. The new feature is called HTTPS-first and this episode talks about what it does and how it will improve the user's security while browsing the web.
Be aware, be safe.
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about a great tool for converting documents from one format to another. Pandoc a universal document converter is one you should take a look at if you need to update docs into another format for distribution.
Be aware, be safe.
Source - The Markdown Guide - https://www.markdownguide.org
Don't forget to vote for Security In Five Podcast Awards - https://www.podcastawards.com/app/signup
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Hackers will be circling over the next few weeks targeting the tax credit payments being sent out. Where there's money flowing the sharks will be close behind. This episode goes through phishing tactics and tips on how to identify phony emails.
Be aware, be safe.
DON'T FORGET TO VOTE FOR THE PODCAST - https://www.podcastawards.com/app/signup
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Windows 11 features have beenb released and the security imrpovements are going to change Windows for the better. Unfortunately there are hardware requirements that might make your current PC unable to run WIndows 11. This epsiode talks about what those are.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Colorado passed and signed into law the Colorado Privacy Act (CPA). This is the latest state to help empower consumers to control what companies do with their personal data. This episode talks about the details and two aspects of the CPA that makes it stand out.
Source - https://leg.colorado.gov/bills/sb21-190
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This year Security In Five is honored to be in the running for the People's Choice Podcast Award for best Technology podcast. The reason is you, the listeners. Without you this show would not be and definitely would not be over 1,000 episodes.
Please show your support and vote for the show - https://www.podcastawards.com/app/signup
Sign-up and select Security In Five in the Technology category.
Thank you!
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Over the weekend the largest ransomware attack was carried out. This episode breaks down who is behind it, how it happened and the overall risks of certain IT services and supply chain reliance.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks goes over how to scan documents with an iPhone natively. Using the Notes app you can scan documents as a PDF. This episode talks about why you should consider doing this and how to do it.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The media and reports of security incidents need to start being aware of the language they use when describing events. A breach means one thing, a data leak means another. This episode talks about the difference between the two and why it's important and responsible to get it right.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The FBI Internet Crime Complaint Center (IC3) released their annual Elder Fraud Report. This episode goes through the data and talks about why the over-60 age group is so susceptible to online scammers.
Download the report - https://www.ic3.gov/Media/PDF/AnnualReport/2020_IC3ElderFraudReport.pdf
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A lawsuit against Six Flags rose up to the Illinois Supreme Court that rules Six Flag improperly collected biometric data on visitors. This episode goes into the details of the case and talks about the downside of using biometrics as an authenticator.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Cyberattacks against the video game industry are increasing. This episode talks about what you can do, and should do, to help protect your online gaming accounts.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
When you download files from website you may see the provider list a file has for that download. Why do they do this and how do you use this yourself? This episode talksd about what that is and why you should start checking it for your PC's safety.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
COPPA, Children's Online Privacy Protection Act, is meant to regulate applications and services directly targeted to children. This episode talks about the details of what COPPA states and a research report that showed 1 in 5 kid's apps in the Google Play store are not meeting COPPA requirements.
Source COPPA Text - https://bit.ly/2U0Tmz4
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
CVS is the next company with a misconfigured cloud service that resulted in 1.1 BILLION records exposed with no authentication. This episode goes into the details.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Security in Five has hit 1,000 published episodes. Wow. This episode talks about the process to get here and why I do the show.
Thank you to everyone that takes the time to listen.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Amazon Prime Day kicks off this week and where there is money the scammers are right behind. This epsiode talks about the things you can and should do if you are a Prime Day shopper.
Be aware, be safe.
Get ExpressVPN, Secure Your Privacy And Support The Show
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
ExpressVPN is one of the best VPN services available and it's the one this show uses. Now when you get ExpressVPN with the link below you can protect your privacy and support to the show. This epsiode goes talk about the details.
Get ExpressVPN and support the show at the same time - https://www.xvinlink.com/?a_fid=securityinfive
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Internet of Things strikes again. This epsiode talks about a vulnerability in the Paloton Bike+ and Treads. This also talks about the caution of entering personal credentials into untrusted connected devices.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Ransomware is rampant and only getting worse. This episode talks about why paying a ransom is a bad idea overall and what it could mean for your business.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
TikTok is a very popular social media platform but it is also a data collection machine. Recently they gave themselves permission to start collecting biometric data on users. This episode goes into the terms they set for themselves and what it means.
Source - TikTok Privacy Policy
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Managing access of users is a focal point of every organziation. Managing accounts with extensive privileges, llike admin accounts, has always been lacking in most organizations. This epsiode talks about about another case where a fired IT administrator used accounts he knew of to conduct cyber-sabotage.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
GitHub once again expands its security posture buy announcing GitHub secret scanner that looks for package registry credentials in code. This episode goes into the details of what this is and what the future of coding looks like.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Apple held its annual World Wide Developer Conference and once again announced several new security and privacy improvements. Thie episode goes through the top new features that are coming in iOS15 later this year.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Colonial Pipeline has was pulled off from one breached password. This episode talks about what happened and the steps that could have been in place to prevent this.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and ticks talks about one of the tools security researchers use for their analysis. Greaynoise.io is a search engine to show you what is scanning the internet and provides insight into why.
Be aware, be safe.
Source: https://greynoise.io/
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Data leaks can happen anywhere through any action on the Internet whether intentional or not. This epsiode talks about how highly sensitive nuclear secrets were discovered on popular flashcard services.
Source: https://techbeacon.com/security/flashcard-study-apps-expose-nuclear-secrets-all
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Wordpress is one of the fastest and easiest ways to get a blog or e-commerce website up and running. Wordpress is not hand-free though when it comes to maintenance. This episode talks about what you need to be aware of when running a Wordpress site.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Supply chain attacks is rampant and ongoing. If you cannot hit a target directly, hit their downstream partners. Supply chain attacks can cause ripples across industries and economies. This episode talks about the latest supply chain attack and why the world needs to wake up when it comes to their business' security posture.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's ktools, tips and tricks talks about Google Voice. Voice is a free service to get a second phone number to use on your phones. This epsiode talks about why this is a good idea to have and how to use it to add another layer of privacy to your communications.
Source: https://fitsmallbusiness.com/get-a-google-voice-number/
A dedicated listener to the podcast emailed this episode request in from a spear phishing attack he had. This episode breaks down what spear phishing is, how it works and why it's so hard to defend against.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Ransomware groups are run like corporations. Cybersecurity researchers have discovered they have their own court system to file claims against each other when deals aren't met. This episode talks about that system and why it should scare you.
Source: https://threatpost.com/darkside-hackers-court-paying-affiliates/166393/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The recent executive order that was discussed in Episode 979 creates a new Cybersecurity group modeled after the NTSB. This episode talks about how it's not fair to compare it to the current NTSB just yet.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about another new open-source security toolset from Microsoft. Called SimuLand, this is a simulator for cyber attacks in lab environments.
SimuLand - https://github.com/Azure/SimuLand
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks talks about Microsoft Safety Scanner. This easy-to-use, lightweight scanner will check your PC for viruses and malware.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The White House issued a new executive order that focuses on improving the cybersecurity of the federal government. This episode talks about the order and a few of the big advances this order will create.
Executive Order - https://www.whitehouse.gov/briefing-room/presidential-actions/2021/05/12/executive-order-on-improving-the-nations-cybersecurity/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
As the United States comes out of the pandemic lock down and millions getting their vaccines we are getting into a legal gray area. Can businesses ask you for you vaccination status? This episode talks about HIPAA and who falls under the control of those laws.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Patches and updates are released for a reason. Most are for bug fixes and performance improvements but they also contain security fixes. It's vital that you stay on top and current with your patching. This episode talks about a survey results to why this is the case.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
One of the most impacting ransomware attacks shut down fuel supply pipelines to the eastern U.S. This episode talks about how the Colonial Pipeline got back online and things you can do to help recover if you ever get hit with ransomware.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The group that has been identified as the one that carried out the cyberattack on the pipeline has said it was a mistake. This episode talks about this group and their motives and why they released a statement about this. Very odd.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The infrastructure of the United States is under constant attack. Power grids, water supplies traffic control systems, and now pipelines. This episode talks about the latest attack on a major oil supply pipeline.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Several months ago Facebook came under fire with a new privacy policy change for WhatsApp that would allow more data to be shared from the messaging app to Facebook. Initially, Facebook said if you don't accept they will delete your account. They have since backtracked and this episode talks about what the change is.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A few months ago I talked about Amazon Sidewalk and the privacy implications this could have. Amazon has quietly released this feature and it's enabled by default. This episode talks about what Sidewalk is and why you should consider turning it off.
Source: https://www.amazon.com/Amazon-Sidewalk/b?node=21328123011
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Data collection by social media platforms is not a secret. The types of data and how they are used is still hazy. This episode talks about what Signal did with their targeted ads and what Facebook did to their account in response.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Smart TVs are widespread and cheap. But there is a price you pay and the other price you pay, with your data. This episode talks about a data collection firm that got exposed for collecting more data than anyone had thought.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Misconfigurations and sloppy coding continue to be the cause of cloud breaches. This episode talks about a report that found 40 popular apps with over 100 million installs were leaking sensitive keys in their code.
Source: BeVigil - https://bevigil.com/about
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
When you grant an employee access to a database does not mean they have the authority to look at any data record at any time for their curiosity. This episode talks about a policy officer that did that and is now charged with privacy crimes.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about Bitdefender Home Scanner. This easy to use tool will scan for devices connected to your Wi-Fi and tell you if there are any known risks with them.
Download - https://www.bitdefender.com/solutions/home-scanner.html
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
QR Codes are a convenient and popular way to get people and customers driven to a website or app. A simple camera shot is all you need to do. However, can you trust where those codes take you every time? This episode talks about a case where someone created fake QR codes to spread misinformation.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
iOS 14.5 has finally been released and ushers in the biggest privacy improvement in the Internet's history. This episode talks about the new features and why it's such an important update.
Source - https://www.macrumors.com/guide/ios-14-5-features/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Tracking employees for productivity reasons may sound like a good idea. However, there are many legal considerations you need to be aware of. This episode talks about these 'tattleware' apps and a story out of Canada where a janitor was fired for not installing one her employer asked her to.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Linux Kernel Project is an open-source community but that doesn't mean it a free world, there still is oversight and control to what is contributed. The University of Minnesota was part of that project until they decided to conduct their own research that potentially could have but the Kernel Project at risk. This episode talks about that research and why they got banned.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks talks about a Windows 10 productivity trick. Did you know you can have multiple virtual desktops in Windows 10? Why fight with multiple applications on one screen when you can break them out into their own desktop. This episode tells you how.
Be aware, be safe.
Source - https://www.ceofix.net/2837/windows-10-task-view-shortcuts/
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Amazon is expanding their Amazon One palm scanning technology into Whole Foods. This episode talks about what this is and some concerns around this new biometric process.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Next week Apple is expected to release iOS 14.5. This update will be the biggest improvement to user privacy in the history of the internet. This episode goes into the details of why.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Geico is the next company to announce they had sensitive customer data leaked. This episode talks about the leak and what fraudsters could do with the data that could have ended up in their hands.
Be aware, be safe.
Source: Geico Breach Notice - https://www.documentcloud.org/documents/20618953-geico-data-breach-notice
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Instagram is one of the most popular social media apps. Young people especially are heavy users of this app and you should know how to secure it. This episode talks about the importance of multi-factor authentication and why you should turn it on your kid's phones now.
Instructions - https://securityinfive.com/you-should-enable-two-factor-on-your-kids-instagram-accounts-now/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks episode talks about a password vault. KeePass is a free, open-source password vault for your local PC. The time is now to stop using static text files or excel spreadsheets to track your accounts.
KeePass Website - https://keepass.info
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The cyber threat to our nation's infrastructure is real. This episode talks about another security incident with a local water supply and what could have happened if they didn't catch the guy.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
People hack all the time for many reasons. This story is unique because it's about a mother and daughter team but why they were hacking. This episode goes into how they did it and what happened to them.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Insider threats are just a big of a risk to your company as external threats when you look at the statistics. This episode talks about a case study where an internal employee stole $100 million worth of trade secrets and how it was done.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week another social media platform had a large amount of user data offered online. LinkedIn had 500 million users' information put up for sale. However, this data was not gathered through a breach but through scraping. This episode talks about the difference.
Be aware, be safe.
Check your email: https://cybernews.com/personal-data-leak-check/
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks talk about a new feature on HaveIBeenPwned.com. You can now search for your phone number. This episode talks about why this was added and why you should go search right now to see if you are a victim.
Source - https://haveibeenpwned.com/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Password vaults are the best solution to maintain and secure your account's credentials and other sensitive data. What do you do if you are unable to access your accounts due to illness or death? How do others get access? This episode talks about some options you can do to allow access to those accounts.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Last week the U.S. Strategic Command send out a cryptic tweet. This caused concern and conspiracies to fly wild on what it meant. This episode talks about this, what it was and how it happened. The reason is humorous.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Listenable is a resource full of a mirco-learning lessons on a wide range of topics. I have created a Cybersecurity course but I have also found many other lessons I found valuable. This episode talks about the site and what you can find on it.
Note - This is not a sponsored episode, just me talking about it.
10 Cybersecurity Tips - https://listenable.io/web/courses/375/10-cybersecurity-tips/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A collection of Facebook user information has been put up for sale. This is a huge leak, 533 million people are impacted. This episode talks about what kinds of data are in the leak and where you can go to see if you are impacted.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Security In Five took a little break. This bonus episode talks about where I was, what I was doing and when I'll be back with regular episodes.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
After 4 years I am going to take an extended vacation from the show. It's Spring Break time and this episode talks about things I have in the works for future episodes and what's to come in April.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Password practices is vital and the easiest improvement you can make with your security posture. Using a password vault is the best way to maintain that and Dropbox will soon offer theirs for free. This episode talks about the features this version will have and why you should try it out if you aren't using a vault today.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Microsoft has depreciated their Edge Legacy browser and now the clock is ticking. This episode talks about what you should do if you still use the old Edge and what will happen if you ignore the update.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Apple has updated their privacy label portal for all of Apple's apps. The privacy labels help you understand what Apple is collecting from each app, if they are trying it back to your identity and provides insight in to their privacy posture.
Source - https://www.apple.com/privacy/labels/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Apple will be releasing iOS 14.5 very soon. This update delivers a huge improvement to user's privacy by allowing users to directly restrict apps from collecting data on you and forcing apps to show you exactly what they are collecting. Facebook hates this. This episode talks about why and why you should update and block data collection the day it's released.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about a secure way to transfer files, Lockbin.com. As we get into tax time there will be a need to send highly sensitive files around, using regular email is not a valid secure option. This episode talks about Lockbin and how it's one of the easier solutions to transfer files securely.
Source: https://lockbin.com/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Password reuse is still a big problem and an analysis of breached data proves that statement. This episode talks about password resuse, how hackers thrive on it and why you should never, ever use the same password on two sites.
Source: https://spycloud.com/2021-annual-credential-exposure-report/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The National Cyber Security Alliance in conjunction with the IRS has released an easy-to-understand resource with tips on how to stay safe during tax time. This episode goes through some of the tips and reminds you the things you can do to maximize your privacy protection.
Stay Safe Online Website - https://staysafeonline.org/
Stay Safe During Tax Time Resource - https://staysafeonline.org/resource/tax-time-2021/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Cloud services have helped developers create applications faster and more efficiently. However, there still security responsibilities that fall on the developers and their teams. This episode talks about cloud storage and how it's still being overlooked and putting data at risk.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
As predicted phishing attacks using Coivd vaccine as the theme has risen greatly in the last three months. This episode goes into the details of the types of emails being seen and what you can do to help you and your employees avoid these pitfalls.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talk about a Windows Active Directory password auditing tool. Specops Password Auditor is a free analyzer to give you insight into your password policies and the security posture of your accounts.
Source: https://specopssoft.com/product/specops-password-auditor/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Open source has changed the way application are created. However, this episode talks about how open source can turn around and embarrass you.
Source - https://arstechnica.com/gadgets/2021/03/rookie-coding-mistake-prior-to-gab-hack-came-from-sites-cto/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
It's tax season and if you use a tax preparer to do your taxes you need to get your information to them. There are many ways to do this but this episode talks about why regular email shouldn't be one of them.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
There are thousands of articles published on the Internet every single day. Not everyone is accurate or provides good security advice. This episode talks about an article that was posted but gave outdated security advice.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
It's tax season and that means identity theft, phishing and fraud will be in the up swing. This episode talks about the things you can do if you are a victim or suspect you are a victim of tax fraud.
Sources:
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Thie week's tools, tips and tricks talks about a free scanner for your web browser. The Qualsys BrowserCheck will let you know if you are running an out of date browser, plugins need updates and checks security settings on your OS.
Source: https://www.qualys.com/free-tools-trials/browsercheck/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Experts have figured out how to tell what you are typing, with varying level of accuracy, just by watching you on a video call. This episode goes through how it works.
Source: https://thehackernews.com/2021/02/experts-find-way-to-learn-what-youre.html
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
With the moderate advances in credit card security, skimming is still a problem. This episode talks about skimming and the things you can do to help prevent your card from being skimmed and used fraudulently.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Healthcare breaches are not like other breaches. The data can not be changed like a credit card number. Most of it is forever and that's why hackers are increasing their attacks. This episode talks about Bitglass' Healthcare Breach Report and what it tells us.
Source: https://www.bitglass.com/press-releases/2020-healthcare-breach-report
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about a security testing website called AV-Test.org. This website is a fantastic source to help you choose your security endpoint protection solution for home and business.
Source - https://www.av-test.org/en/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Internet of Things Strikes Again. This episode talks about baby monitors and cameras accessible on the Internet. This actually applies to any IP based camera but specifically ones to monitor your family.
Source: https://www.safetydetectives.com/blog/babymonitor-exposed-report/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The SolarWinds Supply Chain Attack is one of the largest and most complicated hacks in history. This episode talks about the followup investigations on the attack and how it was built.
Source: https://gbhackers.com/microsoft-solarwinds-supply-chain-attack/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Hackers are about making money, most are, and they sell the data they steal. This episode talks about a recent dump of 3.2 billion accounts and how much they sell for to any hacker that wants it.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Recently the Fifth Circuit court overturned a HHS fine against a company for a HIPAA breach. This episode talks about why this could set a very bad precedent into the interpretation and setting an example for future HIPAA security rules.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Firefox continues to be my go-to browser for a number of reasons. The biggest is Mozilla's upfront focus on user privacy and the latest release, Firefox 85, continues to show that. This episode talks about Firefox's attack on supercookies, what they are and how they are making them useless.
Firefox Release notes - https://blog.mozilla.org/security/2021/01/26/supercookie-protections/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
When there is opportunity fraudsters take advantage. This episode talks about fraudsters selling fake COVID vaccination cards and how they are doing it.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A recent hack of a water treatment facility in Florida should scare every one of us. This episode talks about the hack and why it could have been lethal to thousands if not caught in time.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Threat Modeling is an underappreciated and underutilized security exercise. This episode talks about the recently released Threat Modeling Manifesto.
Source - https://www.threatmodelingmanifesto.org/
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks offers a tip of a show to watch on Netflix. The show is called Spycraft and I tell you that if you an IT and security geek like me you should watch this series.
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A blog post from the Federal Trade Commission (FTC) is warning people about a website claiming to offer refunds for people who fell for a scam. This episode goes through the details of the scam and how to identify the red flags.
FTC blog post - https://www.consumer.ftc.gov/blog/2021/01/scam-us-trading-commission-website-not-ftc
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Orca Security released their report on the State of Public Cloud Security. This episode goes through the key findings and talks about why it's important to understand that operating in the cloud does not absolve you from security responsibilities.
Download the report- https://orca.security/sp-2020-state-of-public-cloud-security-report/
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
At-home remote workers are a standard way of life now. You may have all the technical security controls in place but your at-home employees could still violate your privacy policies by doing their job. This episode talks about the one innocent job-related process that could create breach level problems.
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The battle between Apple and Facebook is heating up as we near the release of the much anticipated App Tracking Transparency feature of iOS14. This episode talks about what this feature means and why Facebook is so up in arms over it and why it's a huge win for you, the consumer.
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Microsoft's recent earnings call shows how serious they are in cybersecurity and their customers agree. This episode talks about the report and why it makes Microsoft a monster in cybersecurity.
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
If you are still looking for a private and secure communication app this episode talks about a feature that gives Signal another boost.
How to use Signal on your desktop - https://www.howtogeek.com/710253/how-to-use-signal-on-desktop/
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about a service offered by many called vCISO or Virtual Chief Information Security Officer. If you are a small business without a security team a vCISO is available solution to help you build that security foundation.
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about a situation at Telsa that led to a new employee's termination and Tesla suing them in court. Reflecting on lessons learned about onboarding, least privilege and use of personal services in a corporate environment.
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks covers Azure AD Investigator. FireEye Mandiant released this tool as open source in response to the SolarWinds hack to help businesses analyze their Microsoft 365 environments for security issues that may lead to an attack.
Azure AD Investigator GitHub - https://github.com/fireeye/Mandiant-Azure-AD-Investigator
WhitePaper Remediation and Hardening Strategies for Microsoft 365 to Defend Against UNC2452 - https://www.fireeye.com/content/dam/fireeye-www/blog/pdfs/wp-m-unc2452-2021-000343-01.pdf
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Last year, 2020, we saw an increase of Common Vulnerabilities and Exposures (CVEs) reported from 2019. What's interesting is the time of the year that most were reported. This episode talks about why that could have been.
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Eventually, you will be part of a breach. You will get a letter from your clinic or an email from a website you use that your credentials were compromised. This episode talks about what you shouldn't do if you get one of the see notices and why it could make things worse.
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Believe it or not businesses still use fax machines to transmit data. This episode talks about the security gaps you have to be aware of if you use fax machines.
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This podcast has a supporting blog at SecurityInFive.com. The blog is where you can find every single podcast episode as well as the content I have written over the years. This episode details how between now and June 30, 2021 I am opening the blog to guests posts at no cost to you.
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Ring is rolling out end-to-end encryption to their products. This episode talks about what this means and how it works.
Source: Technical Specs From Amazon
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Thinking like a hacker can help you protect yourself. This episode talks about the questions hackers ask before they attack a target.
Source: https://threatpost.com/6-questions-attackers-ask-exploit/162651/
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Security researchers reported they were able to clone Google's Titan Security Key. The Titan is a hardware device to greatly improve multi-factor authentication. This episode talks about how the researchers were able to clone it and why you shouldn't be too worried about this or stop using your Titan keys.
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A fired healthcare worker used a secret account to cause havoc after he left. This episode talks about the controls you can put in place to help detect behavior like this and how looking at data with proper business context can help you protect it better.
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talk about password generation per NIST recommendations and best practices.
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
WhatsApp used to be an application focused on user's privacy. Facebook bought them and all that was destined to change and the time is now. WhatsApp is updating their terms of service and if you don't agree to share more data with Facebook they will delete your account. This episode goes into the details.
Source: https://thehackernews.com/2021/01/whatsapp-will-delete-your-account-if.html
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Swatting attacks are a dangerous trend with malicious agents. Making hoax calls to send police to a residence under the impression there is an immediate threat to life. Now hackers are hijacking smart home devices to aid them in this cruel joke. This episode talks about how this is happening and what you can do to protect yourself.
Be aware, be safe.
Vurb - https://vurbl.com/station/6xrtr5zpaMB/
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
As security and IT professionals, we focus on what we have control over. However, there should also be awareness and an understanding of the underlying infrastructure that we rely on. This episode talks about the horrible act that occurred in Nashville on Christmas Day and why it exposed how fragile our infrastructure really is.
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
2021 is here and it's a perfect time to focus on your cyber-hygiene. This episode goes through some of the big items to help clean up your security and strengthen your posture.
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
What a year and I think we are glad it's finally over.
This is the last episode for the year. A big thank you to all of you and a discussion on how hackers can use personal information to scare you into paying them. Don't fall for it.
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about a new partnership going forward with a fantastic Application Security learning and community resource, We Hack Purple.
I have had the founder on the podcast before, the 2019 Hacker Woman of the Year, you can hear that episode here - https://securityinfive.com/podcast-interview-bio-for-shehackspurple-tanya-janca/
She will be returning again soon to talk about our new partnership with WeHackPurple.com
Be aware, be safe.
Primary Partner - WeHackPurple.com
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A Virtual Private Network should be something everyone uses in my opinion. This episode talks about the different reasons to use a VPN and whether a free or paid one is right for you.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
When we talk about breaches and data protection we naturally focus on the business data. User records, financial transactions, etc... security logs are easily forgotten about over time. The episode talks about a breach and why it's critical to protect your security logs as strongly as other sensitive data.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about how you can use agile mentality with collaborative cloud services to maintain and improve productivity in work at home models.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Scams come in many forms and you don't have to have a financial loss when it comes to identity theft. This episode talks about a scam that goes after your phone number and text messaging.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
From time to time we all need to take a breather. This week will be that for the podcast. I will be releasing Best Of episodes this week.
Have a safe and happy week, I'll see you again on the 28th.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Spotify recently announced a breach under the California Consumer Privacy Act. This episode talks about the breach and why password re-use is so dangerous.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A new report was released detailing D-Link routers have zero day vulnerabilities on them. This episode talks about the findings and what you can do and should do to help keep your routers up to date and secure.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks should be done by every single listener with an Amazon device. This episode talks about Amazon Sidewalk and why you should opt-out of it now.
Source: https://www.amazon.com/Amazon-Sidewalk/b?node=21328123011
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode reviews some simple tips to follow to help identify and avoid IRS check scams.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Cybersecurity posture is beginning to become front-facing for companies and industries. The legal industry in partnership with cybersecurity professionals have created their own security standard called The Data Steward Program. This episode talks about how security can and should be a competitive advantage for organizations.
Source: https://www.accdatasteward.com/why-the-data-steward-program/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Statistically speaking the inside threat is almost the same as the external threats. Don't forget about the inside. This episode talks about a story of a bank employee selling customer data.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Ransomware attacks are rising and this should not change any time soon. However, attackers are using new tactics to harass their victims into paying. This episode talks about this new approach.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Amazon AWS suffered a multi-hour outage that impacted many businesses. This episode talks about the things you can do when moving to the cloud and creating a plan to deal with outages like this that are out of your control.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A shocking report has been released detailing that over half of the 4 million containers on Docker Hub have at least one critical vulnerability. This episode goes into the details of this report and what you need to put in place when using 3rd party components.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Ransomware can cause damage beyond your files. This episode talks about a ransomware attack that has shutdown an entire school system.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
As the holiday season approaches that means the bad guys are stepping up their attacks. There is a new twist of phishing and Zoom bombing. This episode talks about what it is and how it works.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks comes in from a follower of my blogs and podcast. Finding a VPN can be difficult to wade through all the choices for something that is supposed to keep you secure. Someone created their own VPN guide and wanted to share it.
Source: https://Bestvpn.org
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The US Senate approves a bill that will help support the research into detecting deepfakes. Deepfake videos are getting easier to make and are becoming more realistic by the day.
Watch this one or the whole series, it's hilarious, by the makers of South Park - https://www.youtube.com/watch?v=_r-r6lFheKA
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
On Nov. 21, 2020 the US Senate unanimously passed the IoT Cybersecurity Improvement Act to send to the President to sign. This episode talks about what this bill will do and why it's an important step in addressing IoT security or lack thereof.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Researchers from COSIC the Computer Security and Industrial Cryptography have released a video showing them hacking and driving away with a Tesla Model X in minutes. This episode breaks down how the hack works and what equipment was needed to pull it off. Tesla has since patched the vulnerability.
Video of the hack - https://www.youtube.com/watch?v=clrNuBb3myE&feature=emb_logo
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Breaches often make you think of a malicious act from a hacker or disgruntled person with access. This is not the case. This episode talks about insider threats and all the things you should be considering with protecting your sensitive data.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
When most people hear about a breach they assume a computer was hacked or a digital file was copied. This episode talks about how a breach is simply the loss of data and you don't need a computer problem to have a breach.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about another breach for a misconfigured S3 bucket. However, the owner is no longer in business. What happens to systems and data when a company shuts down and everyone walks away?
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The North Face sent out a notice about an incident where an attacker used a credential stuffing technique to compromise accounts. North Face reset all account's passwords as a preventative measure. This epsiode talks about why this attack isn't North Face's fault but the users.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools tips and tricks talks about a solution that I use for distance learning at home. Leveraging Trello and applying Agile mentality to help organize and maintain school work and assignments.
Full details are here - https://binaryblogger.com/2020/11/13/managing-your-kids-distance-learning-with-trello/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Multi-factor authentication is one of the easier and most powerful security improvements you can make on your accounts. However, there are options that are more secure than others. This episode talks about why SMS or text message based MFA is being discouraged by big tech companies from being used.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Apple has been teasing us with pusing app developers to be more transparent with its data collection of users. Starting in December 2020 Apple will be putting privacy labels on apps telling users at the time of download how the app is collecting and using your data.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about another major breach from a misconfigured cloud storage bucket. Use these episodes as a reminder to review and audit your services regularly and don't forget cloud services do not absolve you from security responsibilities.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about the additional costs a data breach can bring to your organization. The Mayo Clinic suffered a breach at the hands of an internal employee. Now the victims of that breach are suing for damages. Tune in for the details.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
If you are going to sell or give old external storage devices to someone you want to ensure the data you had on there is not recoverable. Using the basic format method isn't good enough and your data is still recovereable. This epsiode talks about how to zero out your data using Windows.
Source - SecurityInFive.com
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
You may have old USB thumb drives or old external hard drives laying around you want to sell. This episode talks about the risks you could be making if you don't know what you are doing.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Rasnomware is the attack where your files are encrypted by a hostile actor and held for ransome to get them back. Many groups, including the FBI, recommend to never pay the ransom yet companies still do. This epsiode talks about more reasons that you should not pay the ransom.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Having good backups is a start but those can still be attacked by hackers. This epsiod talks about things you can do to protect your backups once you have them.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Health Information Portability and Accountability Act (HIPAA) is meant to protect the medical privacy of individuals. Over the years the penalties have gotten larger and enforcement has cracked down on breaches. This episode talks about one company that had a really bad six month stretch of preventable breach events.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks goes through a few quotes from experts over the years. It also shows how things really haven't changed with the goals of cybersecurity from 40 years ago to today.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A few episodes ago I talked about the increased use of business issued comptuers for personal reasons. This epsiode talks about this from the employee's point of view and why you should think twice about what you should and should not do on business owned devices.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode goes over the top breaches and their fines. This also talks about the average cost of a breach and if your company can handle the cost of being non-compliant.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Mimecast released a report from a study they conducted about remote worker's behavior at home. This epsiode talks about the findings and what you can do to make your education more engaging and proactive to curb these behaviors.
Source: https://www.mimecast.com/resources/ebooks/cybersecurity-awareness-company-issued-computers-survey/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about insider threats and a story out of New York on an employee hacking his former employer. Is your company and security controls sufficient to block these actions if an employee did this to you?
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about Microsoft Attack Surface Analyzer. This IT Admin took can help identify any security gaps as you build out or install new sofware on PCs.
Source - https://github.com/Microsoft/AttackSurfaceAnalyzer/tree/release/v2.2
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
North Carolina is the first in the country to open a hotline to report cybercrimes. This episode goes through the details of this hotline and what it could mean for the industry as a whole moving forward on the fight against cybercriminals.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
British Airways was hit with a huge fine from a breach that they had in 2018. The size of the fine was actually reduced but still significant from how the breach happened. This epsiode goes into the security failures that let the hackers walk away with credit card details.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about research from Check Point on the most impersonated brands used in phishing attacks. Know what the hackers are using most can help you add a little more caution when seeing emails and ads around these brands.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Internet of Things Strikes Again. This episode talks about a hacking group that is selling access and footage from home security cameras and what you can do if you have these in your home.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about checksum values. What they are, why download sites post them and how to check them.
Source: https://technastic.com/check-md5-checksum-hash/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Playstation released an update to their console operating system called update 8.00. This epsiode goes through the new security and provacy features and talks about a new revelation that the voice chats may be recorded.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The war on cybercrime is a silent one. Thie episode talks about a story from Microsoft how they teamed up with other tech companies to take down one of the biggest botnet infrastructures.
Be aware, be safe.
Source - https://www.securityweek.com/tech-companies-take-down-trickbot-malware-infrastructure
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Security and privacy are becoming more and more important for users. Signal has released new features that you should seriously consider if you are a heavy communicator. This episode goes over why Signal's security posture is the best available.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Amazon Prime Day is this week, along with other retailer's sales, and that means phishing will be on the rise. This episode talks about the things you can do to be aware of these attacks and how to avoid them.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks is for all the parents and guardians. Children are spending more time online for various reasons and not everything on the Internet is proper for a child's eyes. This episode goes over Safe Search Kids a filtered search engine for kids.
Safe Search Kids - https://www.safesearchkids.com/
Search Engine - https://www.kidzsearch.com/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Ring, which is owned by Amazon, is releasing a new product in their security line. This home security device is groundbreaking and very intriguing if it works. This episode talks about what it is and how it will work.
Source - https://www.cnet.com/news/amazon-ring-camera-drone-actually-flies-inside-your-home-always-home-cam/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Internet of Things strikes again! This time the adult toy industry has a problem that could put users in a seriously uncomfortable situaiton. This epsiode has all the details.
Source (with pic of the device) - https://techcrunch.com/2020/10/06/qiui-smart-chastity-sex-toy-security-flaw/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Last week Microsoft Azure cloud services had a significant issue with Azure AD and users unable to authenticate for a period of time. This episode goes through the problem and the explanation from Microsoft on what happened.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Google is getting tired of people thinking the Android software is not as secure as it could be. This episode talks about a new program intended to bring transparency and push 3rd party vendors who are releasing vulnerable devices to fix them faster.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about backup strategies for your devices.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A security researcher discovered a new, worm-like phishing attack that took over many accounts very quickly. This episode talks about how it worked and why as security professionals you can never stop learning about what the bad guys are doing to get around your controls.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The state of Minnesota inadvertently leaked patient information of Covid infected people to more than was intended. This episode talks about the leak and what happened.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
One of the largest ransomware attacks appears to be underway. This episode talks about the scope and damage this has already caused.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Ransomware is a growing problem for anyone on the Internet, it can happen at any time. This episode talks about a report showing how organized ransomware attackers are.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Thie week's tools, tips and tricks talks about Scam Bunkers. This website I found, after the fact, from my little scam incident I talked about in Episode 836.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about a scam website that I, unfortunately, fell for and made a purchase from. It can happen to anyone, even security professionals and experts.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Contact tracing apps have been developed to help health officials study the spread of the Covid pandemic. There are privacy concerns around the type of data, specifically location, that these apps participate in. Thie episode goes through the types of location collection methods.
I encourage to read the full article for all the details - https://binaryblogger.com/2020/09/21/does-your-contact-tracing-app-track-your-location/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
iOS14 is now available and if you haven't upgraded to it yet you should. This episode talks about the details of one of the new privacy features you should know about and how to control it when it comes to your camera and microphone.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A survey done by TrendMicro shows how employees are using personal devices to access business apps and data. This episode goes through the results and talks about how this new threat needs to be handled by security teams.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about a privacy control tool for Windows 10. O&O ShutUp10 is the most robust privacy control tool, 100% free, I have found and this episode goes through what it can do and why you should check it out.
Download - https://www.oo-software.com/en/shutup10
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Goole and Microsoft both use high resolution photos from the street level for their mapping services. However you may not want anyone to see detailed photos of your home. This episode talks about how you can request your personal home to be permanently blurred.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Today iOS14 is released. This is one upgrade you as a user do not want to delay installing. This puts privacy controls back into the user's hands. This episode goes through the new privacy features and why app developers hate it.
All New iOS14 Features - https://www.apple.com/ios/ios-14/features/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Misconfigurations of services is still a leading cause of breaches. This episode talks about another example of such an incident but also why it's important to use the right technology for the job and not because it's easier.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Zoom is continuing their security improvements this week by rolling out multi-factor authentication for all users. This option can greatly secure your account and this episode goes into the details.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks focuses on back to school. Kids are back school and their digital communication and use is their primary method going forward. This episode lays out tips you can do to help protect your network and your kid's on the Internet.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about a report from the Information Commissioner's Office (ICO) that shows whistleblower reports on data and security practices have gone up over 30% last year. This is a new threat and risk security programs need to be aware of. Anyone can trigger an investigation, you don't have to have a breach anymore.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A new malware is out in the wild for Android devices claiming to be TikTok Pro app. This episode talks about what the malware is and how malware actors try to spread their malicious software.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Office of Civil Rights (OCR) which overlooks HIPAA made a recommendation in their Summer Cybersecurity Newsletter that the industry has been recommending for years. This epsiode goes into the recommendation and talks about the disconnect between security recommendations based on industry.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks talks about your non-IT security controls, specifically your financial payment PIN codes.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks talks about your non-IT security controls, specifically your financial payment PIN codes.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
TikTok is being looked at for acquisition by a couple of large US-based companies. A new buyer emerged and who it is will surprise you. This episode talks about who it is and why it's a smart move.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
TLS certificates are used to secure web communications. Each certificate has a time to live which has been usually 2-3 years. As of September 1, 2020 TLS certificates will only be valid for 398 days. This episode talks about why this is good thing and how it will impact security departments going forward.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Facebook collects everything it can on you. One of the more disturbing items is your location. Where you are, have been, and even when you are moving around. There is a tool to help you review, disable, and delete all that data. This episode goes through how to use it and why you should purge it all.
Facebook Location Viewer - https://www.facebook.com/location_history/view
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
iOS 14 will be released in September, a few weeks away, and the new user-centric privacy features has Facebook scrambling. This episode talks about why this is good thing for you and your private information from being collected unknowingly by platforms like Facebook.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Best of Week -
Security awareness programs can be seen as important by company leaders but most do not realize how important a role they can play. Through a top-down communication approach to taking a more personal interest to avoid legal issues personally, this episode talks about the importance of leader involvement.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Best Of Week -
College students are returning to class after winter (summer) break and now is a good time to clean up and strengthen their security posture. This episode talks about some tips students can do to help keep their accounts, devices and identity protected.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks talks about a Raspberry Pi project I put in called Pi-Hole. This episode talks about what it does, how it was built and why you should consider building one for your home network.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Best Of Week - This episode discusses a different viewpoint I have from an article I read that stated cybersecurity is inaccessible to small businesses. I talk about how I feel this is not accurate and security can be obtained by anyone with or without extra help.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Best Of Week - Here is the very first episode of Security in Five!
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Security In Five has been going strong with new episodes each week for over 3 years. It's time to take a little break. This episode talks about the show and what next week's episodes will be.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Open source components are an easy way to help speed up time to market for development. However, there is a risk when using other people's code and hackers are exploiting this. This episode talks about a report stating open-source supply chain attacks are on the rise.
Sonatype report - https://www.sonatype.com/2020ssc
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Check Point conducted a survey of IT professionals about cloud security. This episode goes through the top results and discussed challenges and planning that a cloud migration should take into account.
Check Point Report - https://pages.checkpoint.com/2020-cloud-security-report.html
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Patches are released for a reason and you should be applying them as they are released. This episode talks about the August 2020 patches for Windows and the big security holes it fixes.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Hackers that are arrested and put on trial seem to be getting harsher sentences. This episode talks about a hacker that was caught, his crime, how he pulled it off and the price he and his partner received.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks episode talks about another great security tool from Mozilla. Observatory is a web page scanner to help you verify your security status of your web sites.
Mozilla Observatory - https://observatory.mozilla.org
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Internet of Things Strikes Again. This episode talks about a vulnerability found, and since patched, in the Tesla 3 web browser.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Apple is releasing iOS 14 next month and this will change the way users look at privacy. This episode talks about the big privacy advances iOS14 will bring and why it's a win for users and a loss for advertisers.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
China recently upgraded its Great Firewall to block and ban traffic using TLS 1.3. This episode talks about what TLS 1.3 provides and why China and others may want to block that.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Have I Been Pwned is a resource where you can find out if your email account has been involved in a public breach. This episode talks about a big announcement around the site and it's move to being an open-source project.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about Unroll.me. This service will help you identify all those subscription emails you have collected over the years and help you manage them and get rid of them.
Source - https://unroll.me
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
TikTok is the thorn in security professional's sides. This app is a data vacuum and is accused of collecting more data than they admit and potentially share it with government agencies you don't want to have it. This episode talks about the TikTok ban chatter going on right now and what you can do about it.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A health care company in New Jersey was hit by ransomware but they didn't pay and recovered from it. This episode talks about ransomware and the best practice to recover from it.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Another milestone reached; 800 episodes! This is a big thank you who tune in each day and I talk about how I started and keep doing to the podcast.
If you want to be a guest on the show, want to publish a blog article on my blogs or have an idea for a show get in touch.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Twitter was hacked and high profile accounts were used to steal money from unsuspecting users. This episode talks about the recent arrests of the alleged masterminds and you'll be surprised who they are and how they carried out the hack.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks talks about the communication app Signal. If you care about your privacy and security when you communicate on your device, Signal is a must-have.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
CyberArk released a new tool for AWS and Azure to help you find Shadow Admin accounts. This episode talks about how the tool works and why you should use it on your cloud environments regularly.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about the underlying security of Facebook Messenger and how the new privacy features don't necessarily make the app any more secure.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Garmin suffered a 5 day outage of their systems and services this week. This episode talks about the details of the outage and how this is a caution for your business going forward to protect yourself from a similar situation.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Facebook has rolled out a few new features in Messenger to help improve security and privacy. This episode goes through the new features and how to turn them on.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about a great planning tool called Milanote. This tool was given to me as a trial to check it out and I liked it so much it's now my goto planning tool for my blogs, podcast and other creative projects I work on.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about a newly discovered malware framework being used by a hacking group with ties to North Korea. This will shock you and give you more insight to what cybersecurity programs are up against defending against.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
IoT Strikes Again! The UK Government has proposed new laws to crack down on manufacturers that produce smart devices. This episode talks about what these security proposals are and why this is a very good thing for you.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A few weeks ago the US Cyber Command released an urgent alert on a vulnerability on F5 Big-IP devices. This vulnerability is so critical it was given a Level 10 on the CVSS scale, the highest. Two weeks later and only 500 of the 8,000 found have been patched. This episode talks about why this could be happening and it's not uncommon.
Vulnerability report - https://support.f5.com/csp/article/K52145254
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Last week Cloudflare, an Internet Service giant, suffered an outage caused by an internal change that went sideways. This episode talks about the outage, how it happened and how it shows the fragility of the Internet.
Cloudflare blog post - https://blog.cloudflare.com/cloudflare-outage-on-july-17-2020/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks episode talks about a utility you will find very useful to help you tune your wifi network. WiFi Scanner by Lizard Systems is a free, full-featured wifi scanner. This episode goes through how you can use it to improve your network.
Download - https://lizardsystems.com/wi-fi-scanner/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week Twitter suffered a hack of some of their top accounts. Celebrity, high profile politicians, corporation's accounts were compromised and posted a cryptocurrency scam tweet. A report came out that explained how this happened and the source is surprising. This episode breaks it down.
Be aware, be safe.
Source Article - https://www.vice.com/en_us/article/jgxd3d/twitter-insider-access-panel-account-hacks-biden-uber-bezos
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Mozilla, Apple, and Google are agreeing to limit TLC certificate lifespans through their browsers to 1 year, 398 days. This episode talks about why this is a security move but also why there is push back on this from IT teams.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Phishing attacks are evolving to find new, sneakier ways to compromise your accounts and get your data. This episode talks about the rise of OAuth, "sign-in with" attacks and how you can protect yourselves from them.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The US Secret Service announced a new task force aimed at financially motivated cybercrimes. This episode talks about this new task force and how you can reflect on its creation to your business.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks episode talks about backups. Backups are one of the most valuable routines you should have in your networks. This episode talks about why backups are so necessary and why you should be doing it regularly.
34 Best Free Backup Software Tools
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The United States is taking personal privacy very seriously. The Secretary of State has come out and remarked that the US is looking to ban TikTok. This episode goes into what this means and if others around the world feel the same way.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
HTTPS adoption for all web apps is a good thing. However, if it's easy for you to set up it's easy for cyber-criminals to do the same. This episode talks about the evolution of your security protections musty do to stay with security adoption.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The California CCPA was signed into law two years ago, went into effect Jan. 1, 2020 but on July 1, 2020, is now fully enforced. This episode talks about what this means and what we expect to see in the coming months.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Political candidates are using apps more than ever to reach supporters and potential voters. However, these apps are a direct line to your data. This episode goes into what these apps are used for and why you should think twice before installing them.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about a new Windows File Recovery tool. There are times that everyone hits the wrong key and deletes files they wish they hadn't. This episode talks about this new tool and how it could help you recover those deleted files.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
iOS 14 will put more privacy control into the hands of the users. This episode breaks down the top privacy features coming in the new iOS release.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
iOS 14 is coming this fall, 2020, but it's out in the wild in beta. Already the new privacy features are exposing apps bad behavior that until now was unknown to the users. This episode talks about what behavior TikTok was exposed to be doing.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A newly discovered malware dubbed Lucifer is raging havoc on Windows machines, primarily in the enterprise. This episode talks about what makes Lucifer so nasty and what you can do to protect your business against it.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Apple is one of the more transparent companies when it comes to security and privacy practices. However, that doesn't mean their products are collecting less data on your movements. This episode talks about a deep location function called Significant Services on your phone and how to access it.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Frauds and scams are running rampant right now but it's not enough to identify them and brush them aside. It's important to know how these work in order to get a better insight on where the criminals are getting their data from and how they are using it. This epsiode talks about that and why you should know the details.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Internet-enabled devices are commonplace and each one can be a new vector of attack and surveillance on your networks. This episode talks about a new report from Shadowserver Foundation on their new scan for exposed printers.
Shadowserver Report - https://www.shadowserver.org/news/open-ipp-report-exposed-printer-devices-on-the-internet/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Adobe Flash has had its day and the true End Of Life is growing closer. This episode talks about Flash and what Adobe is doing to ensure Flash is wiped off the Internet.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Zoom announced a few weeks ago they would not be offering end to end encryption for free users. This cause outrage and Zoom have changed their stance and said it will not offer it to all users but for free users, there's a catch. This episode talks about what you have to give up to get encryption.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about some tips on how to check your network from the Internet. It's important to look at your network as hackers would.
Get your external IP address here - https://www.whatsmyip.org/
Enter it here - https://www.shodan.io
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Multi-factor authentication should be enabled everywhere you can. However, if you use SMS text messages to get your codes that method is not as secure as it should be. This episode talks about Google changing the default method away from SMS and why.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Contact tracing apps are powerful tools for researchers to track where the virus is spreading. However, the apps that have been released haven't been very clear on their privacy terms or how they are using the data collected. This episode talks about a survey where the majority of Americans would reject using contact tracing apps and why.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Working at home has become the current normal but are you using vulnerable equipment? This episode talks about the importance of keeping up to date on patches but also how replacing equipment may be the only way to remove risks from your home network.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Hackers are not about stealing your data or money. Hackers can cause serious damage to your business just by taking control of one social media account. This episode talks about a story from a Houston business that hads that happen.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks episode I talk about a news aggregator for serious events called the Live Universal Awareness Map. This map pulls in news feeds and shows relevant events from crime, fire, natural disasters and other events impacting an area.
Live Universal Awareness Map - https://usa.liveuamap.com/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The FBI issued a warning that users of mobile banking apps are on the rise. This episode talks about the things you can do to help identify and protect your mobile app use.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode I welcome the president and founder of Design IT Soltuions to talk about the Darkweb. What is it? How your data ends up there and some tips to help you and your business.
https://www.designitsolutions.com
https://www.linkedin.com/company/designitsolutions
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Business Email Compromise Scams (BEC) are on the rise. This episode talks about how BEC scams work, a scammer that was caught, and what you can do to prevent becoming a victim to one.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Child Online Privacy Protection Act (COPPA) is a regulation aimed to keep children's data private and keep parents notified on an application's data use. This episode talks about what COPPA is for and the latest fine applied to an app developer that failed to comply.
COPPA Six-Step Compliance Plan For Your Business: https://www.ftc.gov/tips-advice/business-center/guidance/childrens-online-privacy-protection-rule-six-step-compliance
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks talks about Startpage.com. Back in episode 749, I had the CEO of Startpage on the podcast talking about the company and privacy-centric approach. This episode gives my overview of the search engine and why I use it.
CEO Interview - https://securityinfive.com/interview-with-the-ceos-of-vivaldi-and-startpage-com/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Apple warns looters it can track all stolen iPhones. This episode talks about this feature that has been rumored but now confirmed.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Zoom has announced that they are not 100% on board with your privacy, especially if you use the Free version of Zoom. This episode talks about what the Free version doesn't have and why Zoom chose to release it that way.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Apple paid out $100,000 to a security researcher for discovering a critical security defect with the Sign In With Apple feature. This has been fixed by Apple and this episode goes over what the bug was and why it deserved $100,000 prize.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
During the riots in Minneapolis the city websites were hit with a Denial of Service attack. This episode talks about what it did and how risk assessments will change in the future.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Last week I had the CEO of Vivaldi on the show and this week's tools, tips and tricks talks about the browser in more detail and with my opinion on it.
Download - https://vivaldi.com/download/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Trump's press secretary made an innocent mistake to prove a point but revealed sensitive banking information at the same time. She flashed a check that was a donation of Trump's salary to a government department. However, she showed the whole check that contained everything a hacker would want. This episode talks about this and what you should be cautious of so you don't make the same mistake.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A study of insider breaches revealed that the great insider threats are employees that are leaving the company soon or are deemed flight risks. This episode talks about this and things you can do as a security program leader to help identify these behaviors ahead of time.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode I welcome another special guest. The Chief Information Security Officer from Optiv. We discuss ransomware in this new remote work world we find ourselves in and the challenges for businesses and individuals working at home.
Optiv Website - https://www.optiv.com/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
LastPass released their Psychology of Passwords report. This episode goes through the highlights of the report and talks about what you can do to help improve your password hygiene and security posture.
Full Report - https://securityledger.com/2020/05/new-lastpass-report-finds-consumer-behavior-affects-the-workplace/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode welcomes two special guests the CEO and Co-Founder of Vivaldi and the CEO and Co-Founder of Startpage.com. Vivaldi is a privacy-focused web browser and Startpage.com is the world's most private search engine. We discuss the importance of privacy on the Internet and they share an announcement about their companies.
Announcement - https://vivaldi.com/blog/startpage-vivaldi-bring-more-privacy-to-search/
Download Vivalidi.
Search with Startpage.com
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Phishing is on the rise coming after all the remote workers. There is a new phishing campaign around Office 365 that can trick you to bypass your multi-factor auth and login credentials. This episode talks about the details of how this works and what you need to look out for.
Technical details on how this works - https://threatpost.com/phishing-campaign-allows-for-mfa-bypass-on-office-365/155864/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Ransomware is one of the most common attacks that cause the most disruptions to businesses. Now they are evolving their tactics to the next level. This episode talks about how ransomware attacks are changing and what that means for businesses.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks talk about a few home network hacks. Your equipment is good enough but there are things you can do to greatly improve your security controls, visibility into your device activity, and block useless traffic.
DD-WRT: https://dd-wrt.com/
YAMon: http://usage-monitoring.com/index.php
Pi-Hole: https://pi-hole.net/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A report came out that a popular WordPress plugin with over 1 million active installs has two very serious security flaws. This episode talks about those flaws and why it's vital to not forget to maintain your 3rd party components.
ThreatPost.com - https://threatpost.com/wordpress-page-builder-bugs-takeover/155659/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The US FBI and Department Homeland Security is expected to send out a warning about state-sponsored hacking groups going after vaccine researchers. This episode talks about what this means and the steps you can take to protect yourself and business from the style of attacks that have been seen. It's easier than you think.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Working at home, kids schooling at home chances are you are dealing with more paper with sensitive information on it. Hackers can get your data from your trash as well. This episode talks about securing your paper data and importance of a paper shredder in your home office.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Cloud adoption and moves to DevSecOps will continue to increase as the world comes out of this isolation. Businesses that have felt the pains of hosting their own IT with a restricted employee pool will help push a move to the cloud. Security requirements don't change and threat modeling can greatly improve your security posture. This episode talks about the importance and when you should do one.
Blog post - https://securityinfive.com/threat-modeling-why-its-more-important-than-ever/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks talks about a mind mapping tool, Gitmind.com. Mind mapping is an effective way to get your ideas into a visual representation, build relationships between your ideas, and help plan and organize your mind on projects. Gitmind.com is a free tool and this episode talks about it.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Internet of Things strikes again. This series of episodes talk about the flaws in our strive to make everything electronic device able to be on the Internet. This episode talks about Tesla cars and how their storage and removal of customer data off components are not as secure or private as you'd like.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Spear phishing is a targeted email scam against high-level executives. This episode talks about an organized group that has compromised the emails of 150+ companies, how they did it, and some ways you can protect against it.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Zoom has had a rough couple of months when it comes to their security and privacy issues. A database of 500,000 accounts was found on the dark web. This episode talks about how the hackers got those accounts and in defense of Zoom how it wasn't their fault.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Phishing attempts to prey on the fear and emotions of their victims. A new attack has popped up and it's the lowest form phishing I've seen. This episode talks about what it is and how it's based of an old-style but easy to identify once you know how it works.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Technology is saving us right now in this time of staying at home and distancing. This episode talks about what technology is allowing us to do but also why it's so important to get away from it, more now than ever before.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A Virtual Private Network should be something everyone uses in my opinion. This episode talks about the different reasons to use a VPN and whether a free or paid one is right for you.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Google Meet has made the video conferencing platform free for all consumers. All you need is a Google account. This episode talks about the features of the free version and why security and privacy can be a competitive advantage to your applications.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Zoom provided updates on their security improvement in their upcoming version 5.0 release. This episode talks about the updates and reminds you that security is not optional, users are paying attention and demand more from their software.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Nintendo has confirmed that they suffered a breach where Nintendo accounts were compromised. This episode talks about the breach and why and how it's so important to enable multi-factor authentication on all your accounts.
Blog post at SecurityInFive.com
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks episode talks about using Agile methods to help create more efficiency at home. From your kid's school work to normal every day home chores you can create your own HomeOps program.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Internet of Things Strikes Again! This episode talks about the IoT listening devices you may have in your home and tips to help keep your private and business work secure. The devices are listening and recording and you need to be aware of how to manage that.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The economic impact payments, or "Stimulus Checks" are going out and are prime targets for scammers. This episode lays out what red flags you need to look for to avoid these criminals trying to steal your money and identity.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Remote employees are prime targets for hackers and they are taking advantage of it. This episode talks about the increase of hacking attacks and what can be done to curtain these increased threats.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Microsoft owned GitHub has sent out a warning about a new sophisticated phishing campaign. These emails are very convincing and appear to be extremely coordinated. This episode talks about the details and what you can do to avoid them.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Thie week's tools, tip, and tricks was submitted by a loyal listener. This website allows you to check the strength of your passwords and suggest improvements to make them stronger. This episode also talks about several other valuable services the website provides.
Source: SafetyDetectives.com
Password Meter - https://www.safetydetectives.com/password-meter/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A survey of over 5,000 software professionals stated that 1 quarter of DevOps applications suffered a breach linked to 3rd party open source components. This episode talks about the importance of open source management in your security program and applications.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
There are many types of 'wares' out there. A new growing trend is something called Fleeceware. This episode talks about what it is and why you should be aware of it.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Hackers are using the Coronavirus situation in every type of attacks they conduct. This episode talks about other kinds of methods they use, other than phishing, to come after you.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Phishing attacks are successful when they get people to act on their emotions rather than logic. This episode talks about reports from Microsoft and Fireeye on what they are seeing in the phishing landscape.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Thie week's tools, tips and tricks episode talks about an app from AT&T that can help protect you from scam calls. Thie episode goes over AT&T Protect.
AT&T Protect Download - https://www.att.com/features/security-apps/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Scams are on the upswing and they are using any current events as their story. The new one is going after your potential stimulus checks. This episode talks about what this scam looks like and how to identify and avoid them.
Security In Five Blog Post - https://securityinfive.com/how-to-avoid-the-common-scams-while-social-distancing/
YouTube Video - https://www.youtube.com/watch?v=KAOYO_PMitc
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Zoom bombing is when someone gets into a Zoom conference uninvited and causes problems. They could post explicit materials to spreading hate speech. This episode talks about what the FBI says about Zoom Bombing.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Remote workers are challenging to manage and track from an IT and Security perspective. That's why you need to have good identity management metric to lessen the need to know where users are and rely more on the accounts and systems they are accessing. This episode talks about the important metrics you should be tracking.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Docker is a popular deployment method for cloud-based applications. Like other cloud services, you need to be aware of how to secure them. This episode talks about a malware campaign that is exploiting misconfigured Docker instances to spread cypto-mining malware.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Thie week's tools, tips and tricks talks about a website from the Institue of Health Metrics and Evaluation (http://www.healthdata.org/). They have a COVID projections site that shows the data in relation to resources available. This site gives a good visual representation of what we are trying to do, flattening the curve.
IHME - https://covid19.healthdata.org/projections
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Zoom has become very popular over the last month with an increase of users from 10 million to over 200 million. That put Zoom's privacy and security issues front and center. This episode talks about what Zoom is doing to address these issues.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Scams are going to increase for everyone and the best way to detect and avoid them, in my opinion, is to understand how the real world works. This episode goes through those rules and the scams associated with them.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Hackers and scammers are circling and starting to go after the millions of new, easy targets. You. Remote workers are prime for new attacks and tricks. This episode talks about how hackers are using communication software to get to you.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Distance Learning has started across the country and that means millions of kids are working online. Communicating, transferring files, emailing and interacting. This episode talks about the precautions parents and guardians should consider.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
While we are working at home and kids are home as well it's difficult to find things to do for them. This episode talks about a cybersecurity activity book for kids and how you could use it to spur conversations about your work and some safety tips as they are online.
Download the ebook here - https://www.balbix.com/resources/kids-cybersecurity-activity-book/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Biometrics is a unique identifier from the physical body of a user. It's unique but has a big downside if it's breached. This episode talks about a breach and the reasons biometric use needs to be thought out carefully.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Two new zero-day bugs in all live Windows versions are being attacked in the wild. This episode talks about this and steps you can put in place to prevent this attack until Microsoft releases a patch.
Prevention Steps - https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV200006
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
In the current situation of remote workers, Virtual Private Network use is on the rise. This episode talks about why you should use one and the benefits you get from them.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about challenging problem inside social media sites, reverse identity theft. This is where someone will create a profile claiming to work for or associated with your company when they are not.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks talk about a free endpoint security solution for your home PCs. Kaspersky Security Cloud Free.
Review - https://www.pcmag.com/picks/the-best-free-antivirus-protection
Download - https://usa.kaspersky.com/downloads/thank-you/free-antivirus-download
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
In the current situation of large scale remote workers, the use of cloud services the best security improvement you can make is enabling multi-factor authentication everywhere you can. It's now time to see the benefits and security improvements it brings.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
In today's current events your home network is being used more often and by more people than normal. With school devices, work devices, and your own personal devices it's important to make sure your core network component is secure.
Manual Library - https://www.manualslib.com/
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Department of Health and Human Services (HHS) was hit by a cyberattack. This episode talks about the attack and how this is just the beginning.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The What-If scenarios we have talked about and hoped would never come, are here. This episode talks about what this means for your security program and reminds you to keep security a top priority.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about how you can use agile mentality with collaborative cloud services to maintain and improve productivity in work at home models.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Episode 700, first a big thank you to all the listeners that kept motivating me to get to 700! This episode talks about the management and personal disciplines for working at home.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Work at home employees security should not be overlooked. Security for the business assets, data and employees are vital to be maintained in a work at home model. This episode talks about the high-level security considerations for work at home models.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Work From Home week, IT Considerations. Remote employees need equipment to work with. Do you allow them to you use their own personal equipment or provide it to them? How do they connect to your network? What can they do? These IT considerations are discussed in this episode for remote workers.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week will be dedicated to working at home. With the current situation in the world today perception is becoming reality as a part of that allowing employees to work remotely is something that needs to be addressed.
These episodes this week will discuss the IT, Security and Productivity issues to consider for working at home.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks episode talks about Accountkiller.com. A website with detailed instructions on how to delete your accounts off websites and services.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Firefox rolled out DNS over HTTPS. For users in the US it's on by default, however, you should double-check. This episode talks about what DNS over HTTPS is, why it's important and how to check and enable it.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Phishing campaigns are targeted and anyone can fall for them. A Shark Tank star's company was attacked and successfully phished. This episode talks about how it happened.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Walgreens announced that in Jan 2020 their mobile app leaked sensitive customer data. This episode talks about the data that was leaked and how the security failure happened.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The coronoavirus is a serious situation around the globe. Is your business and personnel ready to deal with disruptions? This episode talks about how you can use the current events to improve your security and disaster recovery plans.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Thie week's tools, tips and tricks episode talks about GitHub's status page. Githubstatus.com is a great dashboard for the current and past health of GitHub. This epsiode talks about the site and the best feature you should use from it if you depend on Github.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Developers and IT professionals are very well versed in their technical skills and expertise. However, there are other non-technical skills we should all work on. This episode talks about the soft-skills IT professionals should not forget through their career development.
JetCake article on Binaryblogger.com - https://binaryblogger.com/2020/02/18/what-soft-skills-do-developers-need-to-be-successful/
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
UPDATE - I made rare goof and said WhatsApp was bought by Microsoft, this is obviously not correct, I have updated the audio with the correct Facebook reference.
The EU announced that its staff is to use the messaging app Signal going forward for secure messaging. This episode talks about this move and why you should consider switching to Signal too.
Signal website - https://www.signal.org/
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
With so many security tools it's challenging to get them to talk to each other. The Open Cybersecurity Alliance (OCA) has released a new messaging framework OpenDXL Ontology as open source. This episode talks about what this could mean for security programs.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
HTTPS is becoming a huge push across the industry, which is good. Enabling HTTPS is not without its maintenance. Apple announced the Safari browser is going to pay closer attention to certificates expiration dates. This episode talks about what this means for users and developers.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talk about a security risk assessment tool called CRXcavator. This service specifically scans the Google Web Store and conducts risk assessments on Chrome Extensions. This episode goes into why this is an important tool to add to your bookmarks.
CRXcavator - https://crxcavator.io/
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Another day another breach to talk about. Today MGM resorts had 10 million records from a breach last year posted online. This episode talks about the breach and what you can do to protect yourself if you are part of it.
Have I Been Pwned - https://haveibeenpwned.com/
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
An investigation identified over 500 malicious Chrome extensions in the Google web store that were ultimately removed. This episode talks about what those extensions were doing and what you can do to protect yourself in the future.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Another day another large entity falls for a phishing campaign. This episode talks about how the government of Puerto Rico lost $2.6 million and how you can prevent attacks like this.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Ransomware infections can bring sudden and significant costs to your business. From IT hours to new systems, disruptions in profits to pay for credit protection. Recently a new cost is rising, defending against lawsuits. This episode talks about this trend where customers are suing ransomware victims, whether justified or not, it's not cheap to deal with them.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks episodes talk about The Twelve Factor App. A methodology to help developers build software as a service in the cloud.
The Twelve Factor App website.
Download Twelve Factor ePub book.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Phishing will always be out there and there is a new campaign going around feeding off the Coronoavirus fears. This episode talks about what these emails look like and why phishing is so prominent.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Google announced that back in November of 2019 there was a bug in Google Takeout that had user's videos in other user's feeds. This episode talks about this event and the risks of using the cloud.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Google Chrome, starting with the April 2020 release, will begin to roll out blocking downloads over HTTP. This episode goes into the details and what you should know as a user and developer.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The US Government has officially charged foud members of the Chinese military for the Equifax breach. This episode goes into the details and the amazing forensic work to not only identify the source of the breach but also the individuals behind it.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Thie week's tools, tips and tricks talks about Downdetector.com. This website comes in very handy when you are troubleshooting connection or service issues to see if its you or them.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Earlier this week Microsoft Teams suffered a big outage. This episode talks about the reason for the failure and goes to show you that stupid mistakes can happen to any security team, even Microsoft.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Open-source software can make developing software easier and faster but there is a downside to it. This episode talks about the danger and cautions from using open source software and some things you need to do to protect yourself.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Google announced that it will be making its OpenSK source code available to the public. This move is to help improve the project and increase the adoption of authentication security.
Source Code - https://github.com/google/OpenSK
3D Model - https://www.thingiverse.com/thing:4132768
FIDO Alliance - https://fidoalliance.org/
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Today kicks off the FTC's Tax Identity Theft Awareness Week. This episode talks about what it is and some things you can do to protect yourself.
FTC Awareness Website - https://www.consumer.ftc.gov/features/tax-identity-theft-awareness
Prevention Tips - https://www.us-cert.gov/ncas/tips/ST05-019
IRS Guide To Identity Theft - https://www.irs.gov/newsroom/taxpayer-guide-to-identity-theft
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Facebook collects tons of data about you and it's not all from Facebook. Other websites and applications send data about you to Facebook. You can now look at and start to manage that Off-Facebook Data collection. This episode talks about how to do it and why you should at least look at it.
Source - https://lifehacker.com/find-out-how-facebook-tracks-you-even-when-youre-not-us-1841306557
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Internet of Things is a thorn in my side and I have a running series whenever IoT stories come up I call IoT Strikes Again. This episode talks about a positive twist that is starting to happen that I have been begging to happen for years.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Twitter accounts of 16 NFL teams were compromised by the hacking group OurMine. Instead of spreading malicious activity they promoted security awareness. This episode goes through the hack and why it's unique.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Zoom is a popular conferencing platform that millions use every day. There was a serious security bug found that all users should be aware of. This episode breaks it down.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Scams come in many forms and you don't have to have a financial loss when it comes to identity theft. This episode talks about a scam that goes after your phone number and text messaging.
Thanks to Wizer (https://get-wizer.com) for the episode topic.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about a lightweight, fast storage analyzer called WizTree.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Proton Technologies, the maker of ProtonMail, is beginning to make all their client-facing platforms open source. This episode talks about this move and why it's good for users.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Cloud misconfigurations can happen to anyone. Microsoft recently had misconfigured databases that exposed 250 million records going back 14 years. This episode talks about what happened.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Mozilla, the maker of the Firefox browser, recently had layoffs. This episode talks about this move, why they did it and what the future means for Mozilla.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks talks about a Raspberry Pi project I put in called Pi-Hole. This episode talks about what it does, how it was built and why you should consider building one for your home network.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Microsoft rolled out its new Chromium based Edge browser starting this week. This episode talks about how they rolled it out and why they did it that way.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
You should always be updating your Windows OS each month. However, this month you need to make sure your system took the update. There is a serious vulnerability that was patched that the NSA found and told Microsoft about. Thie episode talks about that and why you should never skip patching.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
TikTok is one of the most popular apps in the world and one that has the most privacy issues. Now researchers have found serious security vulnerabilities with it. This episode, through a terrible head cold, goes into the details.
Demo of the attack - https://gbhackers.com/tiktok-vulnerabilities/
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
College students are returning to class after winter break and now is a good time to clean up and strengthen their security posture. This episode talks about some tips students can do to help keep their accounts, devices and identity protected.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks episode talks about tips to help make your Office 365 setup more secure and effective.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A class action lawsuit has been filed against Amazon and Ring over the recent doorbell hacks. This episode talks about this and what side I am supporting, the answer may surprise you.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Over the last two weeks, a couple of big celebrities had their Twitter accounts hacked. This episode talks about how you can use these stories as a reminder to review your account settings and why you should.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Mozilla announced that Firefox 72, releasing the week of 1/13/2020, will allow users to delete the telemetry data the browser collects. This episode talks about why they added this and what it means for you.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
We still hand-sign documents and date them. This episode talks about a unique but potential dangerous risk to your signatures that only will be a problem for the next 12 months.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks talk about a search engine for all the app developers out there. Searchcode.com is a search engine for source code. This episode talks about what it is and how it can help your development work.
Source: https://searchcode.com/
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The first episode of 2020 and I am going to give 5 predictions I think will happen in 2020. This is something I do every year over on my blog binaryblogger.com and then recap a year later to see who I did.
Source: https://binaryblogger.com/2020/01/01/binary-blogger-tech-predictions-for-2020/
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
After you receive your new gifts you need to dispose of the boxes they came in. It's easy to leave them out for your waste management service to get them but you may be exposing more than you want. This episode talks about how this could put you at risk.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This gift-giving season you may have given or received a new technology device. This episode talks about the importance of applying any and all new updates before you start using them.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks talk about a tip on software updates. This episode gives you details and why it's important to check over your update settings on your computers and devices.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Facebook suffered a loss of internal employee payroll data. The cause shows how they can suffer from the same internal breakdowns as you. This episode gives you the details.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This time of year phishing attacks increase. This episode talks about the most common types against businesses.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A news story was popular this past week about a Ring security camera in a girl's room getting hacked. However, this episode talks about where the blame on this should be and it's not where you think.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about two security topics to learn from one incident. The first is another case of misconfigured cloud services and the other is to not forget about your 3rd party compliance checks.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's Tools, Tips and Tricks is a tip for all of you. Spread your security knowledge during this time of gift-giving, new technology being brought into people's lives and help make those around you aware of the security responsibilities they are taking on.
Happy Holidays.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Passwords are a weakness in authentication when people are creating them. This episode talks about a survey and how bas individual password practices truly are.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Amazon AWS has announced a tool that will help detect and alert users if their S3 bucket is exposed to the public. This episode talks about the tool and everything it will provide.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Internet of Things Strikes Again! This time Jan. 14, 2020 will be a big problem date for health care IoT devices. This episode tells you why.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The year is coming to a close and it's a good time to think about your security hygiene. I will be making infographic type guides to provide tips and tricks you can do to strengthen your security posture.
The first one can be seen here - https://securityinfive.com/simple-steps-for-securing-your-digital-life/
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips, and tricks talk about a new free tool from Cloudflare called Flan Scan. Flan Scan is a lightweight security vulnerability scanner for your network.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Internet of Things strikes again! This time a kid's smartwatch was found to be leaking kid's personal data. This episode talks about this and the overall caution during the gift-giving season for devices with Internet-enabled capabilities.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Vulnerability management the process to scan and review for all vulnerabilities in an environment. This should be a continuous and repeated process. This episode talks about a recent example on why this is 100% accurate.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Amazon Ring doorbells are a very popular and cheap home security device. High-quality videos capturing whoever approaches your home. Now Amazon is looking to use AI and facial recognition to tell you when a suspicious person has been detected. This episode talks about the slippery slope of the privacy implications for everyone if they go forward with it.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Another unsecured database in a cloud service left wide open and exposed millions of people's data. This episode talks about this lack of security and how it puts users at risk but also the business itself from the data leak.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
In today's complex business systems it's hard to not have 3rd party components used within your environment. Whether it's an open source module or a leading vendor commercial product you need to ensure that those meet your security standards. This episode talks about how most businesses today do not manage 3rd party cyber risk efficiently and how this can be a big problem for you.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Browsing the Internet securely is very important. Making sure websites are using HTTPS yourself is not something anyone can do reliably. This episode talks about a new feature DuckDuckGo released to help users always use HTTPS when browsing.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Disney+ launched recently and shortly after news appeared that accounts were for sale. This was accurate however it wasn't because Disney+ was hacked and breached. This episode explains what happened.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The air travel season is upon us and this week's tools, tips, and tricks talks about why you should stop printing your boarding passes.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Video streaming services are popping up all over the place and that is becoming a security risk to your home network. This episode talks about why video streaming services will drive up torrenting and how that can bring risk into your home networks.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
It's another day and another story about a state government getting hit with ransomware. However, this time it's different, the Louisiana government offices were ready with a plan. This episode talks about what they did and why it's something you should think about doing.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Identity theft protection services are increasing their marketing about Dark web scanning. What is the Dark Web and how does this scanning really work? This episode talks about this and why you should understand how it protects you.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Your phone is the center of your digital and personal information world. It's the gateway to your social, financial and personal life. This episode talks about a story where a service employee abused access to a customer's phone.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools tips and tricks episode talks about free anti-malware tools from McAfee.
Tool Download Page - https://www.mcafee.com/enterprise/en-us/downloads/free-tools.html
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about a series of breaches from a medical center that ultimately led to a hefty fine.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about a report that found a correlation between breaches at hospitals and mortality rates of patients after a breach. The results are disturbing and bring in the human element to cybersecurity.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
BlueKeep was announced by Microsoft and a patch was made available shortly after. This vulnerability was deemed critical by Microsoft as the exploit could propagate like a "worm" infection. Now attackers are actively exploiting BlueKeep in the wild. This episode talks about this attack and what you can do if you haven't or can't patch your systems.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's Tools, Tips and Tricks talks about a big tip you should do if you have any shared storage on your home router. Too often I come across personal networks sharing their most critical files, tax docs, passwords from shared drives on misconfigured home routers.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode discusses a different viewpoint I have from an article I read that stated cybersecurity is inaccessible to small businesses. I talk about how I feel this is not accurate and security can be obtained by anyone with or without extra help.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about a report from ServiceNow on the reasons for the majority of breaches in 2019.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Most of us have routers in our homes that are several years old and are not maintained as well as they should be. This episode talks about why it's vital to keep up to date on your router's patches and what hackers are doing with when they find it.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Physical threats to your offices are often over-looked or do not have the attention that digital threats do. This episode talks about a story where a man infiltrated two companies and hacked their networks.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
I have been collecting cybersecurity horror stories from you. I have enough now to begin making episodes with them. If you have a horror story you wish to share, anonymously, reach out and I will turn your real-life story into a learning episode. This episode talks about the details.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Halloween night is a time when your kids are off on their own, going door to door in the dark. This episode goes over some safety tips you should review with your kids before they head out.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Senators have written a letter to the FTC to investigate Amazon for their part in the Capital One breach. This episode talks about this letter and why it's not exactly on track to what happened.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Q3 2019 Top-Clicked Phishing Tests Report from KnowBe4 details what phishing emails fool the most people. This episode goes through those and why phishing simulations are valuable to your company.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A new privacy bill called the Mind Your Own Business Act is trying to be GDPR-like, except this is calling for jail time for executives. This episode talks about this approach and what may happen from this type of fear legislation.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's Tools, Tips and Tricks is about ExpressVPN. I am asked often what I use and generally avoid pointing to one or another. With the recent news of a popular VPN service being hacked it may be time to switch services. This episode talks about why you should use a VPN, why I use ExpressVPN and a special offer for listeners.
ExpressVPN 3 Months FREE - http://tryexpressvpn.com/securityinfive
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Security awareness programs can be seen as important by company leaders but most do not realize how important a role they can play. Through a top-down communication approach to taking a more personal interest to avoid legal issues personally, this episode talks about the importance of leader involvement.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Security topics are all around us. This epsiode talks about an interesting take when police departments move to encrypted radios.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Security programs rely on every employee more than you realize. In order for the security program to be everywhere the employees need to be the eyes and ears when security cannot. This episode talks about how it's important that all employees know how to contact security.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Educating employees on security is worth the investment. This investment is not just financial but time, effort and participation from all employees. This episode talks about how this is a worthy investment and the benefits you will get from this.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Eventually your small business will grow and you will need a professional voice phone system. Grasshopper is a virtualized phone system that can get you up and running quickly from any device you have, not tied to a cellular or desk phone.
As a special offer to listeners you can get $50 off your order here - http://trygrasshopper.com/securityinfive
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
October is Security Awareness Month and this epsiode talks about your security program's best line of defense, your employees.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Microsoft and The US National Institute of Standards and Technology (NIST) are partnering together on a new guide for Enterprise Patching Practices. This epsiode talks about the guide and why this is a good and unique move.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
IoT Strikes again. This is a reminder that Google Home devices through Google Assistant will remember everything about you unless you review, purge or stop it altogether. This epsiode goes through the steps to do.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
IoT Strikes Again! This episode is about the risks of relying on vendors to do the right thing with their products. A serious vulnerability has been published around some older D-Link Home Internet routers, however D-Link is not going to patch it leaving your device open and vulnerable. Listen for the details and what you should do about other devices in your home.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Episode 600! WHOA!
Thie week's Tools, Tips and Tricks is around Internet of Things Strikes Again, only this site helps you know what devices are secure and what is not.
Source - https://Yourthings.info
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Cybersecurity awareness in your business is a critical component no matter your business side. This epsiode talk about how everyone is a target.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Security Awareness is the first, best defense againt email attacks like phishing, ransomware and account theft. Email attacks are the most prominent form currently and every person on a computer connected to email and the Internet is a target. Security Awareness for your organization should NOT be cost prohibitive. This epsiode talks about the importance and how you can get 100% free security awareness now and forever.
Sign Up Your And/Or Your Business For Free Training - https://wizer-training.com/partner/securityinfive
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The iteration of HTTP, version 3, is beginning to be rolled out by CloudFlare. Chrome and Firefox are also beginning to support it. This epsiode talks about what HTTP/3 is and why it's a good move for the overall Internet.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Internal employees with the access cannot be ignored when it comes to risk assessments. You may trust the individuals but not everyone is trustworthy all the time. This episode talks about this internal abuse of access at Yahoo.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about another great security tool from Mozilla in their Firefox browser. The Facebook Container is a must have extension, this episode tells you why.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Identity and access management can be considered the cornerstone of all security. If you build something, someone or something probably needs access to use it. This episode talks about access creep and why it's still a big problem and will continue to get worse.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Using a Virtual Private Network (VPN) is one of the best and easiest security protection you can do. This epsiode talks about the top VPNB services that have a strict no logging policy and why that's a critical feature.
Source: https://mashable.com/roundup/best-no-log-vpn-services/
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Microsoft continues to push security improvements down to the users. In the web version of Outlook (OWA) Microsoft added 38 more extensions that will be prevented from being downloaded. This episode talks about the details on this and why it's a good thing for users.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Most exploits on devices are software based, they can be fixed and patched by the manufacturer. Occasionally there are exploits that are hardware based, especially at the core processor that cannot be patched through software. This episode talks about a new exploit for all iPhones with the A5 and A11 chips. This is a big deal.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Security In Five was nominated for a People's Choice Podcast award in the Technology category. The award ceremony is this Sunday September 29th at 8pm EST and can be streamed online, link below. This epsiode goes through the details and a big thank you to all those that took the time to listen and nominate the show.
https://www.podcastawards.com/
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
iOS 13.1 added some great new features including more transparency on what your apps are doing and accessing. This episode talks about the Bluetooth alerts on apps that shouldn't be needing and it why it might be asking to access your Bluetooth radio.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Breaches happen all the time. Although they are incidents with other companies you as a security professional can learn from them. This epsiode talks about why it's important to look into the published breaches and relfect on your own programs from their lessons.
OCR Reports - https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Scammers are all over the Internet trying to rip you off, steal your data and destroy your life. This episode talks about what I do to learn these scams to help educate others about them.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Application developers are masters of their craft. Writing code also requires knowledge of security concepts and methods. This epsiode talks about the key security terms developers should be familair with.
Be aware, be safe.
Sign-Up For FREE security awareness training here.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Security Awareness training is an important aspect to a security program. Knowledge is everything and the worst thing to have is access to that be cost prohibive. Not today.
This episode talks about my new partership with Wizer Training and the offer for 100% FREE security awareness training for you.
No trick. No gimmick. No trial versions. 100% Free, Forever.
Just security awareness.
Sign Up for free security awareness here - https://wizer-training.com/partner/securityinfive
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode is a high urgent notice that if you use the LastPass browser plug-in to make sure it's updated. Listen for the details.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
What is hacking when it comes to collecting data? According to two court rulings if it's publicly avaialble it's free game. This epsiode talks about the court rulings and what it means to your privacy to the data you free post.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The CIS Top 20 is the defacto standard to build an effective security program. This epsiode talks about the controls you should implement first.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The new iPhones are coming out and trade-in deals are a big thing with dealers. This epsiodetalks about things you should do before you hand you old phone over to a dealer or buyer to protect your privacy and data.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's Tools, Tips and Tricks goes through several tips to help you secure your browser, no matter which one you use.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A large, prominent cybersecurity firm suffered a breach of their cloud services. This epsiode talks about the details of the breach and what you need to remember when using cloud services.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This is an episode that should be shared with young gamers and parents of gamers. I talk about a new and dangerous ransomware attack targeting Fortnite players, all 250 million of them.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Social engineering takes many forms. Now we have to worry about being tricked out by our voices. This epsiode talks about a new type of attack using the deefake methods.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Another small city government got hit with ransomware and had some of their systems encrypted. This epsiode talks about this story but what the city did instead of paying the ransom should be a good lesson for anyone on how to deal with this type of attack.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode is an interview with a cybersecurity professional, Tanya Janca, recent recipient of the Woman Hacker Of The Year award for 2019. We discuss her career, the award and her other activies in the cybersecurity industry.
Tanya Twitter : @shehackspurple
Full post on - SecurityInFive.com
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The CEO Of Twitter is not immune from getting hacked. The episode talks about how the CEO of Twitter had his Twitter account hacked.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Facebook rolled out a facial recognition feature to all users worldwide but tweaked it to not be enabled by default. This opt-out came from lawsuits and pressure from privacy groups around their recent failings. This episode talks about what the feature is and how to shut it off.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Firefox version 69 was releases and continues to put user's privacy first. This epsiode talks about the new features that are enabled by default and why you should upgrade or move to it.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Multi-factor authentication is the best, easiest and most widely avaialblesecurity improvement everyone can make. Microsoft now is being more public about using MFA and its impact it can have to improving your account security.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about a great browser plugin called 2FA Notifier. It's a fantastic addition to help you enable and identify where you can use multi-factor authentication across the web.
Source: https://2fanotifier.org/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
GitHub is the leading open repository for code, files, projects and this opens the door to risks of exposing more than you should. GitHub has been releasing security tools to help user's identify these risks and they keep on expanding their toolkit. This epsiode talks about their latest releases.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A survey from OutPost24 revealed that a third of businesses surveyed admitted to a security incident in their cloud service. This episode goes through the other data points in the curvey and talk about cloud security practices.
Source: https://www.infosecurity-magazine.com/news/over-third-firms-have-suffered/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
We hear the term PII quite a bit. Personally Identifiable Information is at the center of the privacy discussion but what is it? This epsiode talks about the challenges of defining what PII is.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This is an episode you will want to share with your non-techie friends and family. It's a longer episode but walks through a common telephone scam. I highlight the story, the hook and the scam and give context to how it works.
Link to the censored version - https://soundcloud.com/binaryblogger/ssn-scam-recorded-in-full-censored
The full uncensored version is available to my patrons.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about DevOps books your should read. Specificaly The Phoenix Project.
Source: https://dev.to/pluralsight/the-top-10-books-on-devops-you-need-to-read-45m2
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Local government entities in Texas were hit by a coordinated ransomware attack. This epsiode talks about the attacks and what local and state entities need to start thinking about as this trend will continue.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The first half of 2019 had 4.1 BILLION records exposed. This epsiode goes through the top 10 breaches thus far and highlights a surprise stat that stands out.
Source : https://threatpost.com/4b-records-exposed-breaches-2019/147446/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Google continues the push to ensure a more seucre Internet experience across the board. This epsiode talk about Chrome dropping support for FTP and why.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Artifical Intelligence isn't intelligent from the start. There has to be a human 'training' the machine to know how to identify and learn. The problem is platforms aren't clear on when and what a person is seeing vs. the machine. Facebook is the latest platform to get caught doing this with no one knowing, this episode goes through the details and thoughts on the matter.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This weeks tools, tips and tricks covers not one but over a thousand tools. These are tools dealing with GIT security in many different areas. This epsiode talks about the collection and why you should add this too your bookmarks.
Source: https://github.com/topics/security-tools
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Insider threats are just as a concern as external threats. The attack vectors inside widespread and this story shows a real problem. This epsiode talks about the case with AT&T employees being bribed to carry out malicios activities.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Internet of Things, IoT, is a wild fire of expansion and unfortunately security is not exactly efficient. This epsiode talks about the lack of security consistency and problems with IoT devices and the increasing risks to children they are creating.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Bug bountry programs are where companies offer people outside their organization money to report vulnerabilities found. Apple steps up the game and increased their bounty to $1 million. This epsiode talks about what this means and why it's a game changer.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Industry and legal regulations for security are out there to ensure applications are built securely. There is a micsonception that if regulations are followed they are protected. This is not necessarily the case. This episode talks about how regulations are bare minimum requirements, the low bar setting and why you should go above and beyond them.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
In technology, at some point, you will need something generated or randomized. Thie week's tools, tips and tricks talks about Random.org.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This epsiode talks about a recent Apple iOS patch that you should update to immediately. This episode talks about what the vulnerability is and what could happen if you are targeted.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
In July's newsletter I wrote about micro learning and it's growth. This epside goes a little deeper into the micro learning concepts.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Penetration tests are an important aspect of application security but they can be overwhelming. A report came out that claimed, and I agree, that most of identified problems are easily fixed. This episode talks about that.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The Equifax claims for $125 for each victim apparently wasn't that way it was advertised. This epsiode goes into the details to why and talks about the slimy nature of these deals and how the victims always lose out.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Scammers are everywhere. Calling you on the phone, trying to get you to click on fake pop up ads and through email. This episode talks about one of my favorite YouTubers, ScammerRevolts, and his website TechScammersUnited.com that is a public forum to talk about and call these scams out.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Anonymous browsing and app use is a hot topic. In reality your anonymity is far harder to acheive than you think. This epsiode goes through the backend data collectors and how you are identified on the internet.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The concept of micro-learning is gaining popularity in security awareness programs. This episode talks about what micro-learning it, how I am using it in my professional life and why you should look at adopting the practice.
Dont' forget to nominate Security In Five for a podcast award, https://www.podcastawards.com
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Another day and another breach that is bigger than the last. This time Capital One is on the block. This epsiodegoes over the breach details as they have been reported at the time of recording this and talks about how the breach happened.
Dont forget to nominate Security In Five for a People's Choice Podcast Award - https://www.podcastawards.com
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Thank you again to Alexandria Technical College and GenCyber for having me speak last week, I had a great time. This epsiode talks about how to claim your Equifax settlement money and why you should.
Claim Website - https://www.equifaxbreachsettlement.com/
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
I will be speaking at the GenCyber cybersecurity camp today. This episode talks about what the GenCyber camp is, why I fully support it and what I will be doing there.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode talks about the case of an employee that took action against a former employer and what happened. This also is a learning experience around privileged access management and how you can handle actions by employees abusing access.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Every year over on Binaryblogger.com I do tech and security predictions for the year. Usually I wait until the end of the year to review them but big news popped up and I had to talk about it. This epsiode goes over the prediction and what it means going forward.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Episode 542 - Apple iOS has a feature that allows you yo quickly send photos between phones called AirDrop. This epsiode talks about an incident where someoen abused AirDrop and caused an airplane to be evacuated. There are also steps to help you shut off this feature on your phone if you choose to.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Updates on the podcast growth and the spin-off of securityinfive.com from binaryblogger.com into their own independent blogs.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks goes over a wifi mapping site called Wigle. This site is very interesting and eye opening to what and how they are collecting their data.
Source: Wigle.net
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Apple disabled the walkie-talkie feature after they were notified of a security vulnerability. This epsiode talk about that act and why Apple's move is good for business... as well as poke a little fun at the walkie-talkie.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
In the wake of the 2011privacy investigation into Facebook, US regulators are recommending a $5 billion fine. The episode put context around that number and rants about how nothing will really change.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Cybersecurity is technical in nature but it's really a business problem to solve. This episode how aligning to the business will take your security program to the next level.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Most companies use Cloud Service Providers (CSP) when they move to Office365 for many reasons. However, most CSPs will retain high level access to your email and files and not every CSP has they same level of security practices. This epsiode talks about Microsoft's new mandatory rollout of multi-factor authentication on CSPs.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks covers the OSINT Framework. This episode goes over the website, what you can find on it and why you should add this to yout collection.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Mozilla was tagged by UK ISPs as 2019's Internet Villain. This epsiode talks about why, why Mozilla should be proud and you as a user should applaud this.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Amazon Echo devices record your voice and creates transcripts on what you said. After a letter from a US Senator more of the curtain is being pulled back on Amazon's privacy practices. This epsiode talks about what has been revealed about Amazon's retention practice and what this means for your privacy.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Millions of IoT devices from security cameras to baby monitors contain severe security vunlerabilities. Many vendors are not reponding to the reports, patches are not being creates and in some cases the devices cannot be fixed. This epsiode talks about a shared recommendation from researchers on what to do if you have these devices on your network.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
A report from Radware and Merrill Lynch details that the cost of a breach in 2019 is over $4.5 million. This episode talks about the report and the areas where the costs are felt the hardest.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The past few weeks two cities in Florida were hit by ransomware and they eventually paid the ransom. This episode talks about the danger of doing that and what you can do to help prevent damage from a ransomware attack.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
I wish you all a happy and safe 4th of July weekend.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Passwords managers can provide increased security and management capabilities around your accounts and passwords. This episode talks about a great article I came across about things to think about before using a password manager.
Source article by Stuart Schechter.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Here's another story about abuse of access. This epsiode talks about this case and what the State of Minnesota is doing to enable the citizens to protect their data stored on state systems.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This epsiode is asking for all the listener's help. Security In Five is in the running for an awards in the 14th Annual People's Choice Podcast Awards and I need your vote! This epsiode talks about the awards nomination process, how I started the show and how the listeners have been the sole reason for the 500+ episodes with no signs of stopping.
It's free to nominate. The two categories the show is considered for are the People's Choice and Technology Categories.
Podcast Awards Nomination Page - https://www.podcastawards.com/app/nominations
Podcast Awards Main Page - https://www.podcastawards.com
Thanks!
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Parent of young video gamers need to be aware of the threats on those games and how to protect their accounts and potentially your financial data from scams. This epsiode give those tips at a high level but I would ask you to shift and watch the video I created on this.
Tips For Parents Of Video Gamers Video - https://youtu.be/AQ8GOjCzDS4
Wizer-Training - www.wizer-training.com
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Vulnerability scanning and management is a vital aspect to a security program. However, too often I see the bigger picture missed based on the assumption that one kind of vulnerability scanning means you don't have to do others. The episode talks about vulnerability assessments across the entire stack.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Breachclarity.com is a website I came across that I found to be very useful in understanding the risks and victim impact's from breaches. This episode talks about what the site provides and how it works.
Source: Breachclarity.com
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
When we talk about breaches and data protection we naturally focus on the business data. User records, financial transactions, etc... security logs are easily forgotten about over time. The epsiode talks about a breach and why it's critical to protect your security logs as strongly as other sensitive data.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Breaches happen all the time unfortunately but the damages and fines are not related to the amount of data lost. This episode goes over a hospital breach and the results from one record accessed without authorization.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about Microsoft VSCode. Whether you are a developer or have played around writing scripts, in cybersecurity you will eventually need to work with code. This epsiodetalks about VSCode, where and when you would use it and why you should have it in your toolbox.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Mozilla continues it's push to be the best security and privacy centric internet company. News has come out that Mozilla is working on a premium version of the Firefox browser. This episode talks about the details and the game changer this could be.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Evite, the popular invitation social website, admitted to a breach recently. This episode goes through the details and give two takeways to learn from, one for the users and one for the business.
Be aware, be safe.
Become A Patron! Patreon Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Breaches are more devastating than you realize and the costs go beyond dollars and cents. This epsiode talks about a company that was the cause of the Quest Diagnostics breach and had to shut its doors.
Be aware, be safe.
Become A Patron! Pateron Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This episode camne from a listener question about infosec work life balance. I speak about my experience and the landscape of different avenues in cybersecurity and what is on-call, what is not and how to navigate it.
Be aware, be safe.
Become A Patron! Pateron Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
After two years Security In Five is ready to expand and grow into new expanding content and media to help spread the security awareness word. A patreonsite has been launched to help support this expansion. This episode talks about why it was created and goes through the different levels.
Be aware, be safe.
Become A Patron! Pateron Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
As you travel around you may come across free charging stations for your mobile devices, USB cables ready to go. This episode talks about why you should think twice about using them.
Be aware, be safe.
Become A Patron! Pateron Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Breaches happen all the time for all different kinds of reasons. This epsiode talk about a breach in Canada with the dumbest reason I have seen.
Be aware, be safe.
Become A Patron! Pateron Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Google Chrome is a good browser but you are paying for it with your data which in turn delivers ads. There are ad blockers that limit this annoyance but Google is looking to reduce the ad blocker's ability to block ads. This episode goes into the details.
Be aware, be safe.
Become A Patron! Pateron Page
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Two years ago I released Epsiode 1 of Security In Five. Here we are two years later and 500+ episodes recorded. This epsiodeis a big thank you to everyone that takes their time to listen and I talk about how I started this journey and a peek at things to come.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks talks about another new security offering from Mozilla, the maker of Firefox. The app is called Firefox Lockwise and is a password vault that syncs your Firefox saved passwords to your device. This epsiode goes into the details.
Firefox Lockwise FAQ And Download
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
When you talk about cybersecurity protections most will focus to the external threats, the Internet, the cyberattackers and malicious bots. What you also need to worry about are those on the inside. Roughly 30% of breaches happen from internal sources. A new report was released that showed what your internal employees will do if given the opportunity, the answers are shocking.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
There's a reason in the OWASP Top 10, the number 5 spot is Security Misconfigurations. This epsiode talks about breaches that have occurred due to impromper security configurations and leaving data wide open.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Every platform and applicaiton record the activity of the system, users and data access. We call these logs. Security logs are a subset that contain sensitive information about the backend details of the components, communications and accounts used. This episode talks about a very large breach that didn't steal user's data but security logs and why it's crticial to treat and protect them.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Amazon has come under fire for their practices on recording and potentially listening to your Echo devices recordings. Over the next few weeks you will be able to tell your Amazon devices to forget what it heard over the day. This episode goes into the details.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks epsiode are two tricks to help keep your Gmail spam, undercontrol.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
GitHub is continuing to expand their security offerings to help developers create the most secreapplications possible. This episode talks about the latest new security tools from GitHub.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Encryption is a powerful and effective solution to protecting your data and recources. However, it is a complicated implementation and a recent research report that most deploy it poorly. This epsiode talks about the challenges of encryption implementations.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
IoT Strikes Again and a recent report from Zscaler support it. The research shows that 90% of IoT devices communicate using unencrypted methods. This episode goes through the details of the report.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
THANK YOU! 500 epsiodes in the can! Wow!
This is a big thank you to all of you and I announce the next phase of Security In Five and what's coming soon.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Cloud services are the direction many companies and indivudals are taking for their applications and data. Recent breaches have highlighted that there are security concerns you as a user need to be aware of. This episode talks about cloud service security and as a user you still have responsibilities to take care of.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
VPN use provides additional security and privacy for your personal Internet use. This epsiode talks about other benefits you can get from using a VPN.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The cybersecurity profession requires a very technical set of skills. However technical skills are not the only ones employers are looking for. This epsiodetalks about the soft skills that are being sought after in today's workplace.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Email is still the number one communication method used today. People also use it primarily to send files and forth. Even though you may know and trust a source you should still be cautious on the file types being sent and the security controls to ensure those files are not inadvertently going to cause problems. This epsiode talk about those types.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks is about Mozilla Obersvatory. This is a web scanner meant to help developers and security professionals fix and make their web apps more secure.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This epsiode is a continuation on the death of the password. I talk about how forcing resets actually can make you less secure and what the future may bring for authenticaiton for everyone.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The latest ransom attacks are taking over Git repositories and holding source code hostage. This epsiode goes into the details on how this is happening and how you can preotect yourself from it.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
If it sounds too good to be true on the Internet, it is. Scammers are preying on the success of a major movie promising downloads but in reality they are collecting your data. This epsiode goes into the details.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Open source communities have made application development faster than ever before. However there is a downside when it comes to security, you need to stay on top of all your components. The episode talks about a research report that showed over 100 plug-ins for Jenkins that have vulnerabilties.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
If you are looking for your next CISO or the hard to find security engineer this episode will be for you. CSOOnline puslished a Security Recruiter Directory to help recruiters, security leaders and job seekers get connected.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Companies get breached all the time and the reasons are more simple than you think. This episode talks about the common reasons companies get breached and what you can do to avoid the same mistakes.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
If you decide to sell or even participate in a recycling program it's important to make sure you properly delete all your data first. This epsiode goes into the details on the proper way to erase your harddrives and show you the way you are doing it nowe isn't enough.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Application development has become more open and flexible through the use of open source components. However most aren't managing those components properly and are introducing security risks into the applicaitons. This episode talks about the importance and necessity for keeping an eye on your open source components.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
The word malware is used very broadly for any type of malicious software. This episode breaks down malware and talks about the different types you can come across.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
This week's tools, tips and tricks epsiode is about an extension from DuckDuckGo. I have talked about DuckDuckGo in previous episodes. This epsiode talks about the browser extension and how it will make your browsing activity more secure and private.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Microsoft announced that they are behind ditching a password practice the rest of the security world has been against for 10 years. This episode talks about what that practice is and why it can make your company less secure if you use this practice.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five Newsletter.
—————— Where you can find Security In Five ——————
Security In Five Reddit Channel r/SecurityInFive
Using a card for either debit or credit purposes is always risky. The nature of the cards make them insecure and there are those that deploy skimmers and readers to try and collect that card data for fraudulent purchases. This epsiode talks about the riskiest places to use your cards.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Cybersecurity is a broad industry with many sub-area of expertise. This epsiode talks about the skills that are in highest demand and potential growth areas for everyone.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Cybersecurity is all about knowledge. The real challenge is how to stay in the loop and on top of everything that's going on. This epsiode I talk about ways to keep your skills and knowledge fresh.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
This week's tools, tips and tricks talks about spring cleaning your Windows PC. The list comes from Taproot Security. This epsiodegoes through the high level items, the link below has the complete list.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Identity Theft is an awful experience to go through. This epsiode talks about the steps you should take if your identity and financial accounts are compromised.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
DevOps, or DevSecOps, is the latest buzzword driving businesses to try it. This episode talks about the reasons why a DevSecOps program doesn't get off the ground.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
A report came out that confirmed that Amazon employees have been listening to your Alexa recordings more frequently than recently admitted to. This episode goes into the details and gives some thoughts around these devices behaviors.
Source Article with lock down instructions from Wired.com.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
If you are working in or looking to develop applicaitons for the cloud you probably have heard about serverless and containter deployments. This epsiode talks about the similarities and differences for managing and securing them.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
This week's tools, tips and tricks talks about the threat modeling tool from OWASP called Threat Dragon.
OWASP Threat Dragon Project Page
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Building security into a DevSecOps program is not easy, but it is possible. This epsiodegoes over the things you need to do in order to call yourself a DevSecOps program.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
DevSecOps changes in an organization tends to focus on getting everyone adjusted to security. Security professional also have significant growth opportunities they should tackle if they want to be effective in a DevSecOps program. This epsiodetalks about what those changes are.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
DevSecOps has security built into it but you cannot acheive that with the traditional way of doing things, at the end. Security needs to move left in the process, earlier and as often as you can. This epsiode goes into the details on how and why this needs to be.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
DevSecOps is driven, usually, by an agile process. The user stories are what drives the development and in the current SAFE moethodology it's difficult to get non-functional requirements, espeicallysecurity related, written as user stories. This epsiode talks about how I go about creating user stories to slide them into the backlog so the security is met and the project team can understand them.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
This week's tools, tips and tricks talks about one of my favorite security sites grc.com. Specifically the ShieldsUp! service. This epsiode talks about the site and why it should definately be in your bookmark list.
Gibson Research Corporation Website
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
In information security you may have the term honeypot. They are important tools and technique in the defense of a network or application. This episode details what a honeypot is and how they are used.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
When you are talking about security scanning a network there are two words that you will hear. Passive and Active. This epsiode explains the two.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Facebook was discovered to be asking new users for the passwords to their personal email accounts for 'verification' purposes. Not only is this a ridiculous request it's dangerous for anyone to provide the account passwords to anything to anyone. This epsiode talks about this and what could be done to your account.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Faceboookis back in the news for data and privacy failures. This time a partner left a cloud bucket open to the internet exposing 540 million user records. Although this wasn't necessarily Facebook's fault, this exposes the fact that data Facebook has is all up for sale. This episode goes through the details.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
This week's tools, tips and tricks talks about FireEye's new Commando VM. The first Windows based penetration testing platform. This episode goes over the details to get it installed.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Part 3 of the 3 part mini-series talking about the differences between vulnerability, penetration and simulated attack testing. This episode talks about simulated attacks/red teams.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Part 2 of the 3 part mini-series talking about the differences between vulnerability, penetration and attack testing. This episode talks about penetration testing.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Part 1 of a 3 part mini-series talking about the difference between vulnerability scanning, pen testing and simulated attack. This epsiode starts with vulnerability scanning.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Office Depot and Support.com got hit with a $35 million dollar penatly. Why? They were tricking customers to get computer services from bogus security scans. This episode goes into the details.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
This week's tools, tips and tricks episode talks about AbuseIPDB. This website is a great lookup reference tool to identify and confirm rouge IP addresses and see if they are being used for malicious activity. This episode goes into the details and talk about the value.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
IoT strikes again, only this time it's a positive message. The US Congress proposed legislation to begin to define and require security standards for IoT devices used in the government. NIST will drive the effort and this epsiode goes into the detail of what the bill propses.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Moving to the cloud is a growing strategy for many businesses. It's important to undertstand that security is not full guaranteed by the cloud provider there are still responsibilities you need to be aware of. This epsiodegoes over some of those.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
A report from Recorded Future showed that in 2018 the top 10 most exploited vulnerabilties were from Microsoft. This episode talks about this report and why knowing what exploits the hackers are using more than others is an important component to a successful security program.
The top 10 exploited vulnerability report.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
MySpace, the once dominating social network on the Internet, confessed to a big goof. This epsiodetalks about what happened and why you shouldn't depend on online storage services.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Mozilla continues their push to provide services for user's security and privacy protections. Thie tools, tips and tricks episode talks about Firefox Send. An end-to-end encrypted file transfer service.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
A recent study of security apps from the Google App store showed many are worthless. This episode talks about the report and tips one which ones you should use.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
A password vault is one of the easiest tools to greatly improve your security and safety for your accounts and data. Not everyone can or wants to invest money in one. This episode talks about the best free offerings for password managers.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
OWASP is far more than the popular Top 10. This epsiode talks about the OWASP Application Security Verification Standard and a listener project that created a score card for your applications.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Artificial intellegence and machine learning isn't smart out of the box. Like any learning the more data it takes in the smarter it cam be. The internet has all the data any machine learning could want. However, creator of those machines can't just go around taking what they want. This episode talks about IBM doing just that.
Check to see if your photos were included.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
This week's tools, tips and tricks talk about the Microsoft Security Compliance Toolkit. If you are a Windows owner, sys admin or interested in learning to secure Windows 10 and Windows servers this toolkit is for you.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Recently it was reported that Citrix was hacked by a state sponsored cyber criminal group. This hack was pulled off through a method called password spraying. This epsiode talks about the breach and what password spraying is.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Facebook once again takes a dip into security but slides in serious privacy violations to do it. This time in their two factor authentication offering they are using your phone number against you. This epsiode talks about the details of what they did and what you can't do as a user to protect against this.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
The music sharing app TikTok, formerly Music.ly, got hit with a huge fine for children data privacy violations. This episode goes over wy they got fined and what you and others need to know about parenting around these child focused apps.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
If you use Google Chrome as your browser you need to update it immediately. This episode goes into the details and the urgency for this update.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
This week's tools, tips and tricks episode talks about the most popular network mapping tool, Nmap. Rather this introduces the GUI version of Nmap, Zenmap. This episode goes into details on what it is, what it can give you and why you should download it and run a scan against your own networks. You only know what you know.
Download Zenmap.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
In 2018 it was reported that 74% of breaches started with privileged account abuse. If you are any business you should use a vault for your administrator accounts. This episode goes into why this is a must do practice.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
The latest viral hoax is the Momo challenge. This episode is heavily opinionated to these ridiculous hoaxes but spins it on how you as a parent can use these as education for your kids.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Facebook announced that sometime this year they will roll out a 'Clear History' feature for users. This episode talks about what the feature will allows users to do and what impacts it will have to your Facebook experience.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Phishing is the most prevelant attack vector for hackers. This episode goes over the four main types of phishing attacks and talks about them in detail.
Source Infographic From Inspired eLearning
`
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
This week's tools, tips and tricks talks about one of my goto Windows utilities I have used for over 10 years, HiJackThis. This epsiodegoes through on why this is a must have utility in your Windows PC toolbox.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
The National Institute of Standards and Technology is celebrating the 5th anniversry of the Cybersecurity framework. This is one fo the best, free, guidelines for building a cybersecurity program.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
This episode is a hypothetical explanation on how the beginning stage of social engineering works. This is to highlight how easy it is to start gathering informaiton about anyone from a simple name and phone number overheard at a coffee shop.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
It's tax season and you can't have too many shows helping people avoide tax scams. This is another episode that does just that.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
IoT Strikes Again! Goolge and their Nest products are in a little bit of hot water recently. Apparently Google released new funtionality for their Nest product that turned on Google Assistant like functionality. The problem was that in no documentation or any release did Google note that the products had a microphone. This epsiode goes into the details of this and what it means.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
A common method to post URL links in emails and social sites is to shorten it using an URL shortener service. It's a conveinent way for the poster but dangerous for users as you don't know where those links actualyl go without clicking on them. This episode talk about CheckShortURL.com that allows you to see what the link does without clicking on it.
Source - CheckShortURL.com
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
In a mature security organization you will have a Red Team and Blue Team. This epsiode talks about the roles of the red and blue teams and also a new concept called the Purple Team. What is it and where does this team fit with the others?
Source - https://danielmiessler.com/study/purple-team/
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
We hear about personally identifiable information (PII) all the time in the security, but what is it? What makes data be considered personal and why is it important to protect it? This epsiode talks about what could make up PII and how cybercriminals gather PII and how it is used for malicious means.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
After the data dump known as Collection 1-5 I have been recommending to go and delete all your unused accounts. This can be a difficult task and every website does things a little different. I found a recource that can be helpful in your clean up called JustDeleteMe. This epside goes over the website and talks about the importance to get rid of those unused accounts.
Source: JustDeleteMe
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
security, infosec, information, podcast, internet, web, blog, twitter, facebook, privacy, google, apple, itA fresh Facebook phishing page is popping up and it's important that you are aware of it. This attack is one of the more convining looking pages that has been discovered. This episode talks about how to spot it and I urge you to watch the video below and see for yourself how the attack looks and how to detect it.
YouTube Video of the phishing page (no sound) - https://www.youtube.com/watch?v=nq1gnvYC144
Source: Myki
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Google released a quick and sleek phishing test web page. This shows you sample emails and you simply decide if it's real or a phishing fake. I highly recommend you go through this and send this to everyone you know to do the same.
Be aware, be safe.
Phishing Quiz Link - https://phishingquiz.withgoogle.com/
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
This epsiodecame in from a listener suggestion. The question was around the security risks and concerns with contactless credit and debit cards. This epsiode talks about how contactless and mobile device payments work and the risks associated with them.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Voluntarily sending your DNA to a company to be 'tested' is the one of the most unsettling privacy trends today. This episode talks about this ridiculous service and how to delete your data from these sites.
Reference article with instructions.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
The hack dump called Collection 1 contained over 700 million records. Now Collection 2-5 have been seen in the wild and have over 2.2 billion records. This episode talks about this situation and reminds you the importance of basic security practices you can be doing to keep you accounts safer.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
Facebook's goal is to collect every little bit of data on you no matter how they can. This episode talks about Facebook secretly paying users to install an app that does just that.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Binary Blogger Website
Security In Five Podcast Page - iTunes, TuneIn, iHeartRadio, Spotify,
This show covers some Security In Five podcast news and updates for things to come. From getting the heck out of Facebook to looking to expand Security In Five's offerings.
Check out the new Reddit channel r/SecurityInFive.
Thank you to all who listen.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Reddit Channel r/SecurityInFive
Email - contactme@binaryblogger.com
The current landscape of application development has fully embraced the open source community. It's speeds development, adds functionality instantly and add a complex security challenge with every 3rd party component you add. This episode talks about the growing importance and criticality of ensuring proper management and tracking of every 3rd party component used in any application.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Reddit Channel r/SecurityInFive
Email - contactme@binaryblogger.com
Facebook announced they are merging Messenger, Instagram and WhatAppchat under the veil of seasmless chat and 'security'. However Facebook's privacy and data hoarding practices should make you take a step back and question this. This epsiode talks about why it's time to seriously consider finding other non-Facebook chat mechanisms.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Reddit Channel r/SecurityInFive
Email - contactme@binaryblogger.com
Websites can be made to look like anything. Just because it's identical looking to your bank or health care privder doesn't necessarily mean it's the real thing. This epsiode talks about the basic things to review on highly sensitive sites to ensure you are really where you think you are.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Reddit Channel r/SecurityInFive
Email - contactme@binaryblogger.com
On the heels of Apple's fix for a Facetime bug this isn't the first or the last major bug we will see. This episodes goes over some tips and practices you can do with your mobile device software to avoid bugs like these.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
This week's Tools, Tips and Tricks is around the Collection #1 breach. HaveIBeenPwned has an option to sign up you email addresses for breach alerts. This episode talks about that and why you should sign up today.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
It's tax time and the ring of thieves increase going after identity theft and tax returns. This episode talks about some things you can to do help prevent this and what to do if this happens to you.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
Are you a slob? Is your desk a wild mess? Do you keep forgetting to pickup your print jobs? If you handle any sensitive data you are putting your business and yourself at risk. This epsiode talks about the non-technical aspects of a security program that is known as 'Clean Desk.'
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
Flash has been a thorn in the sides of securituy professionals for years. Now it's finally reaching the true end of life we need. Firefox is making sure that happens by not supporting Flash in the next major release. If you want Flash you will have to manually go through the steps to get it running. THis epsiode talks about Flash's history and why you need to just let it go.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
Recently news of a massive data beached shocked the Internet. 700 million accounts and passwords were discovered on the Dark Web. Although this Collection #1 breach, as it's called, appears to contain old data this is still shocking. This episode talks about the breach and the detail behind it.
HaveIBeenPwned.com verification site.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
This week's Tools, Tips and Tricks talks about the virtualization tool Virtual Box. If you are a developer, tester, hacker, IT engineer or have any curiosity on how other operating systems and networking works this tool is for you. This epsiode goes into the overview what it is, how I use it and why you should too.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
Google purged malicioius apps from the Goole Play store for pushing illegal, spam ads. This episode talks about this and reminds you not to install every cool app and be cautious.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
WordPress is one of the most popular blogging platforms and therefore one of the most targeted by hackers. The ease of getting WordPress running is both a blessing and curse as most users don't realize there is still administration and security practices that need to be done. This episode talks about the risks and offers some suggestions to help secure your WordPress installation.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
This epsiode is for anyone learning to be a programmer or thinking about pivoting in their career to be a devleoper. To often I have seen people focus on the language but miss out on much larger, important concepts to be a developer. I try to cover the main areas of conceptual knowledge every developer should have.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
GitHub is shfiting their services for the better to position itself to be the numnber one repository service on the Internet. Their latest change is huge if you a developer. GitHub now offers unlimited private repositories and they throw in a few other features. This epsiode talks about this move and why you should take advantage of this.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
This week's tools, tips and tricks episode is about an open source Security Information Event Management (SIEM) system. GrayLog can enable your home network or business to begin collecting and aggregating system logs fast and easier than any other SIEM I have used. Within a few hours I was up and collecting more data, alerting on events and getting visibility into behaviors of my systems. This episode goes into the details and talk about why every single business needs to have a SIEM in their network and GrayLog is a viable option... and it's free.
NXLog Community Edition Windows Log Collector.
Don't forget to check up in Binaryblogger.com on setting up GrayLog.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
Did you know Google offers public DNS servers you can use instead of your ISP? Why would you do this? Keep your ISP and others from snooping on what websites you visit. Now Google's DNS service offers DNS over TLS to fully encrypt your DNS requests. This episode goes into the details of this switch, what it means and why you should switch all your devices to use it.
Google's DNS servers: 8.8.8.8 and 8.8.4.4
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
A good email system and best practice is to use some kind of email filters. However, you shouldn't completely ignore all the messages filtered. This epsiode talks about a personal experience that happened when I reveiwed my spam folder and discovered something very serious happened to a service I had an account on.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
Your security program won't maintain the value and effectiveness unless you test and test regularly. A good test does more that just run through the steps on the paper but creates an exercise that build collaborative creativity and efforts to play out a scenario. This episode talks about an experience I had recently and an feedback that made the testing efforts worth while.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
In IT and security we get wrapped around the technical and process aspects that cuases a fog to blind us from what the data represents. We try to protect and defend but what are we protecting? This episode talks about the human element behind the security profession and brings some context to the true defense goals.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
This week'sTools, Tips and Tricks episode topic was submitted by a listener. I thought he had a valid security concern as a college student and turn it into an episode. This epsiode talks about the problem of file sharing between students and professors and how to keep malware and viruses at bay.
Link to the Online Scanner Article referenced in the episode.
Link to Episode 94 where I talk about VirusTotal in a TTT episode.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
Hackers carried out pranks as part of a viral YouTube subscriber challenge. Where most see silly pranks I see exploitation of user's home equipment that can easily be fixed. This episode goes over the lastest hack that was a prank today but could be far worse tomorrow.
ShieldsUp Tester - Click Proceed, Then look for GRC's Instant UPnP Exposure Test.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
Another day, another breach. This time it's Blur Password Manager bu Abine. Only this was a breach of their own making. This episode goes through how this breach happened and how you can make sure you don't make the same mistakes.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
This story comes from the home state of Minnesota. This one is a common story on where an employee takes data home, puts it on a personal computer to work on. That's a breach. This epsiode goes through why this is a breach and asks many questions that need to be answered around the government office's security program that allowed the multiple failures to happen.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
When the Internet turns things 'viral' it can get out of hand. This is what happened in a viral competetion between two YouTube stars fight for subscribers to claim the number 1 spot. A hacker took over 100,000 printers and although it was a gray hat prank this episode talks about the serious nature behind it and how it could be used in much worse ways.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
This week's TTT episode talks about a website that has the collection of 125 of the top network security tools availaible. Start your education and search for new tools here. This is a fantastic starting point to create your own list of your favorite tools.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
Over the holiday season you might have a new video game console or game in your home. It's important to make sure your kid's or any players using these games online, especially in a globat chat room siutaiton, understand the risks and predators out there for their account information.
YouTube is a poison of bad assumptions that you can get in-game content for 'free', this is false. This epsiode talks about the scams out there and what conversation you should have with your young players.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
Happy New Year from the first episode of 2019!
This epsiodegoes over my personal security and technology predictions for 2019. I do this every year for a little fun and more so if they come true over the next 12 months.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
With the mid-week holiday I am going to take a brief break myself from the podcast. But I am not going anywhere. This episode just talks about the quick break and what some of my plans are in 2019 for the podcast and contributions I will be continuing to make to the Information Security industry.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
If you are a developer or wanting to become a programmer then you should learn about Git. Thie week's tools, tips and tricks episode goes through five free oline courses to get started with Git and Github.
Course listing article from Dzone.com
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
Apple now allows US residents to download the data that Apple has collected on them. This episode goes through the process to do it and why you should download and read the contents.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
Equifax had one of the largest and most damaging breach to date. The amount of people who fell victim and the type of personal data lost will cause issues for years to come. The US House of Representatives released their report on the breach and came to the same conclusion everyone knew, the breach was preventable. This episode goes through the highlights of the report.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
Facebook had another data leak and this time your photos were at risk of being seen by unauthorized developers. This episode talks about how this happened and a page you can go to to see if your photos were taken.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
It's the end of the year and you should be resetting all your accounts' passwords. If you are not using an automated vault service that can make and store complex passwords for you there are things you need to be aware of when creating passwords. This episode talks about how passwords can be guessed by the bad guys and things you should avoid when manually creating new passwords.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
This week's Tools, Tips and Tricks episode I talk about a great Gmail trick to get you hundreds of unique email addresses from your one account and how to use it to protect your inbox and stay organized.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
Tis' the season for many things and one of those things should be improving your personal security posture. This episode talks about taking the time before the end of the year and patch all your systems.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
Tis' the season for many things and one of those things is improving your home and personal security posture. This episode talks about taking a home IT inventory, things to record and why you should consider doing it.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
Tis' the season for many things especially security tips around gift cards. There are risks and things you should look out for when purchasing and using gift cards. This episode goes over some tips you should hear.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
Tis' the season of many things and now is as good a time as any to clean up your personal security habits. One big, often overlooked, housekeeping task is emails. Through the year(s) we get on mailing lists and eventually get flooded with emails we don't read. This episode goes into why you should take the time and unsubscribe and get off the lists you don't care about.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
The holiday season is upon us and this episode gives tips around your online, retail and personal security you should consider during this time of increased financial transactions.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
Dell announced a security incident and as a precaution reset every user's password. This episode talks about this incident and how it ties to password practices for your online accounts.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
Phishing is still primary mechanism to deliver malware into an organization. There is an art to breakdown a phishing email. This episode talks about subject lines which is the first aspect you read in an email message that gets you to proceed with opening it.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
This episode talks about the Security In Five podcast and some changes and improvements I am making to the show. This is mainly around the social network and communication aspects. Listen to the episode, follow the new Facebook page, follow the Security In Five twitter account and send in any feedback you have to make the show better or an episode you want to hear about.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Security In Five Facebook Page
Email - contactme@binaryblogger.com
This episode is a new series that I will release as the topics make themselves available and that's on the listeners. I get feedback all the time from listeners and I decided to take these questions and turn them into a podcast episode because the topics relate to everyone.
This first Listener Q&A comes from a question I was asked, How Do You Deal With Security Anxiety? This episode, which is over 10 minutes, goes into my answer to that question.
If you have a question like you would like to hear as an episode contact me via email or Facebook and we'll go from there.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
If you use NMap then you are aware of the task to read through and present the results from a full scan. This week's Tools, Tips and Tricks episode talks about WebMap and how that can make your life much simpler.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
The FCC announced they will discuss cracking down on those annoying and in some cases illegal robocalls. This episode talks about their focus and why you should still be wary of any phone calls you get regardless of what the Caller-ID says.
Link to my recordings of scammers, additional recordings in the links at the end of the post.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
This is the year you start a new trend and be more responsible with your online accounts. This episode talks about how resetting your passwords on all your accounts is a good practice and why you should start with all the retailers you used this year.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
There has been a huge push and talk around getting websites to be more secure by enforcing HTTPS, the secure protocol. However, the messaging has a negative impact that may lull users into a false sense of security. This episode talks about why HTTPS doesn't necessarily mean the site is fully secure or can be trusted.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
This podcast talks about password practices to keep your accounts secure but not about the usernames. This episode goes over how you should think about your usernames that you create for accounts and how those can be used to track and socially engineer you.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
URL Shorteners are a why to take long, complicated URLs and make them easier to post, email and print. However they can be used to hide or obfuscate malicious sites. This tools, tips and tricks episode talks about GetLinkInfo.com that you can use to see what the URL truly is.
A shortened URL to test with, cut and paste it into GetLinkInfo.com - http://bit.ly/2EuZcMo (this goes to my blog, binaryblogger.com)
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
The Holiday Season is upon us and that means an increase of online and overall retail purchases. This episode goes over recommendations and tips to keep your activity safer and more secure.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
In 2015 the United States rolled out the EMV Chip and Pin security features on credit cards, after dragging feet for 10 years on it. The idea behind it was to reduce fraud. A new study showed it barely made a dent. This episode goes through the EMV failure and some of the reasons why it was dead on arrival.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Security is a collection of technology, policies, procedures but also it's a state of mind. Thinking about security through a veil of assumption or simplistic approaches can be dangerous. This episode goes through some of the mental pitfalls you should avoid.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Of all the breaches in the United States last year how many were in the heathcare industry. This episode goes into that number and why heathcare is such a ripe target for hackers.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
The Holiday Season is upon us and that means shopping and gift giving. It's safe to assume that tech gadgets, games, home automation devices will be huge this year. This episode goes over a fantastic website by Mozilla that will let you research the security and privacy posture of a device before you purchase it or upon receiving one as a gift.
Mozilla - Privacy Not Included Device Checker
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
This episode should be sent to every parent or home that has kids playing online video games. This episode talks about the risks and scams out there that could be impacting your children and put their financial stability in dander. This also give you tips on how you can make the online experience more secure.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
On the heels of the GDPR the United States is getting into the privacy legislation game. It was only a matter of time for the US to create it's own GDPR like laws and the first major Act was proposed. The Consumer Data Protection Act of 2018. This episode talks about the proposals and why it's needed.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
A breach is a devastating event for a business. If and when you experience a breach there are immediate costs that a business will have to come up with. There are also other costs that go far beyond the checks you write that you need to consider. This episode goes into what those costs are, some may lead you to bankruptcy.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
If you are using Windows 10 Pro or Enterprise and have BitLocker running you need to listen to this podcast episode. A security advisory released by Microsoft details a serious security flaw in hardware based encryption on Solid State Hard Drives.
Security Advisory - https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV180028
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
If you are working security in health care organization then you SHOULD be familiar with regular security risk assessments. If not you should because HIPAA requires regular assessments. One free tool to get you started is from the Office of Civil Rights (OCR) called the HIPAA Security Risk Assessment Tool (SRA). For years the tool has been stagnant but that changed this month when version 3 came out and it's a great update.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
A few weeks ago TLS 1.3 was announced as released and I did a focused podcast around it's importance. You can here that episode here. Often when new releases appear the old must be retired. This episode goes over a big announcement from the major web browsers and when they are going to discontinue supporting older TLS versions.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
You may have heard about Red and Blue team exercises when talking about IT and Info Sec. This episode goes over at a high level what a Red and Blue team are and what roles they play.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Microsoft's anti-virus solution called Windows Defender has released a capability that no other anti-virus solution does. This new feature great improves the security of the solution and other vendors will follow suit. This episode talks all about it and how to enable it.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
A few weeks ago Google came under fire for automatically logging users into Chrome when they signed in to Google services. This did not go over well with the privacy concerned people, I did an episode on it, and Google listened. This episode goes over their change and how to disable that feature in Chrome.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
This week's tools, tips and tricks episode talks about Weakpass.com. This web offers wordlists that can be used, for educational purposes only, to crack passwords, hashses, WPA2 connections, etc...
Source: https://weakpass.com
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Firefox keeps making itself my favorite browser. Their security and privacy focus has taken a front seat with them and they keep adding to it. This episode goes over a new ability in Firefox 63 that allows you to block tracking cookies.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Apple's phones may not be the top of the list for features and functionality, but they are tops when it comes to security and keeping your data private. This episode goes over a few security features in the iPhone you probably didn't know about.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Security policies are in place to protect the business, data and employees. From time to time those policies are broken. This episode tries to go through and explain why employees seem to keep breaking the policies. The answer is not as simple as you may think.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
The term 'Application Security' is used as a blanket over a much larger challenge. True application security goes beyond the code. This episode goes into the details and areas around application security and why it's such an important aspect.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
This week's tools, tips and tricks is about the privileged account management company Thycotic. They offer their vault solution called Secret Server for free. This is a $5,000 value. This episode goes over this tool and if you are any business without a privileged account solution why you should get this.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
There are somethings you can get for free and be OK. Security services shouldn't be one of them. This episode goes over why you should avoid using free VPN services and what you could be giving up if you do.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
In DevSecOps you will often hear the process summarized as CI/CD. This refers to the automation pipeline on getting from development to production. This episode goes over what CI/CD is, what the break down of each step is and what you will need in place to have an end to end CI/CD process.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
If you haven't heard Facebook had a breach that impacted an estimated 30 million accounts. Are you impacted by this? This episode goes through a site Facebook released that will tell you if you are or aren't and what you should do if you are.
Facebook Breach Verification Page.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Facebook and the apps within are 'free' as far as you aren't paying money for using those services. However, one of the most popular gimmick on Facebook are the stupid quizzes. Those aren't as free as you think and you are paying for them, this episode talks about how.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
This week's Tools, Tips and Tricks is about keeping your browsing activities private. I have talked about many tools that you can use to check to see what data your browser is leaking and what information can be found on you. This week's TTT episode talks about another that is the easiest and cleanest to use I have found. Browserleaks.com will show you all the data that can be see from your browser and how you can use it to verify your security and privacy controls you have in place are in fact working as they should.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Yesterday's episode talked about integrating security into your DevOps adoption from a business perspective. This episode talks about moving from DevOps to DevSecOps more technically and strategically.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
DevOps is the 'new hotness' a phrase managers and teams jump for joy when they start down the path. However, Security has been left behind in the DevOps movement and it's time to re-integrate it to where it needs to be. This episode talks about making sure security is integrated along with your DevOps adoption.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Google+ social site joins the club from a data leak. The size of this particular leak is small, relatively speaking compared to others, and this episode explains why this isn't really a traditional breach. It doesn't change the fact of unintended data access but the term breach means something specific.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Internet of Things strikes again. Instead of your webcams or kid's toys this episode talks about Internet enabled medical devices. The consequences are more severe when we are talking about these kinds of devices. This episode talks about an FDA report and a recall of a cardiac device that has a serious security flaw.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
This week's tools, tips and tricks episode talks about Firefox Monitor. Mozilla has partnered with Have I Been Pwned website and integrates that into Firefox Monitor. This episode goes into what it is and why you should sign up for it now.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
IoT Strikes Again! The rush to slap Internet access into every electronic device leaves the world open to great security risks. A recent report shows that the hackers are going after the weaknesses and gaps in IoT devices. This episode goes through the data.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Phishing is a common label assigned to any email message that is deemed malicious. There are many kinds of phishing attempts that are used right now. This episode goes through what phishing is and the main types that are seen in 2018.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Chances are you have a wireless router in your home and/or small business. Out of the box routers are not secure properly, default settings left alone are easy entry points for hackers. This episode goes though the ways to secure your wireless routers.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Facebook had a large breach. The extent of that breach is unknown but the initial reports are as many as 50 million to maybe 100 million accounts were breached. The biggest unknown at the time of this episode release it is unknown if any downstream accounts connected to your Facebook account was accessed. This episode talks about how you should rethink using Facebook to login to other websites and applications.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Facebook was breached from an exploited security vulnerability/bug and anywhere from 50-90 million accounts could have been compromised. This episode gives some tips you should do to help protect and prevent your account from being breached.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Chances are you use a Windows computer. Out of the box Windows is not as secure as it can be and you can make it less so through missing common security practices. This episode goes through common security practices and I ask you to see if you are doing these.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Passwords alone need to go. We all know it, we agree on it yet we don't know how to smoothly execute on it. Microsoft takes the password on through their Authenticator mobile app and new integration into Azure AD. This episode goes into this war on the password and why Microsoft could pull it off.
Microsoft Authenticator Blockchain details.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Cloud services are efficient and convenient but they still require security focus from the users. Don't assume that cloud services will have your security in their best interest. A researched discovered over 400,000 website where their GIT repos were wide open. This episode goes into how this could lead to serious problems from a security point.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Facebook wants to collect every piece of data that can on you. Now they are taking data provided by users to improve their security posture is being used to deliver unwanted ads. Facebook has set a dangerous path, improve your security with us at the expense of getting more ads to your phone. This episode goes through the details.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
This week's Tools, Tips and Tricks episode covers a multi-factor tool called Authy. I have moved to Authy a few months ago and haven't looked back. This episode goes into the difference between Authy and Google Authenticator and why I find it to be a better choice.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Everyone gets phishing emails on a regular basis. If your email is public it's only a matter of time until it gets on a bot's list and sends you an attempt to take your account information, deliver malware or wreck your systems. This episode goes through the steps you should take it you open, click on or download a phishing email or malicious attachment.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Losing your mobile device through your own actions or through theft can be a shocking and scary event. The loss of the hardware is one thing, but the amount of identity data, personal photos, contacts and other data we store on those devices can be more damaging to you in the wrong hands. This episode goes through how to track your Android phone.
Source: https://gbhackers.com/stolen-android-phones/
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Apple released iOS12 to the public and there are many security improvements you should know about. This episode goes over the security features you should enable and others that you will find useful.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
Small businesses have the biggest mountains to climb when it comes to security. The lack of proper financial investment, skill shortages and the balance between progressing the business and keeping it secure. This episode goes over the special challenges small businesses face when building a cybersecurity program.
Be aware, be safe.
Don't forget to subscribe to the Security In Five Newsletter.
Send in your Security Horror Stories - bblogger@protonmail.com
—————— Where you can find Binary Blogger ——————
Email - contactme@binaryblogger.com
This week's Tools, Tips and Tricks episode talks about one of my goto resources. The Open Reference Architecture For Security And Privacy is a wonderful resource for anything in the security architecture and privacy space.
Open Reference Architecture for Security and Privacy Website
Fun Fact: At the 6:20 mark in this episode you will hear rumbling in the background, that's thunder, very loud thunder, from a large severe storm that rolled in while I recorded it. I was on a roll and kept it in.
Don't forget to subscribe to the Security In Five Newsletter.
Be aware, be safe.
Don't forget to submit your Security Horror Stories.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
Thank you to the listeners of this podcast. Another milestone has been reached, 100,000 listens. A year ago I started this as an experiment, a hobby to see how a podcast could work and now I look forward each week to producing it.
As this podcast grows so will the extra offerings. My monthly newsletter will be starting this month, subscribe here.
I want to start another new, fun, interesting off shoot... I want your horror stories. This episode goes into what this means and also head over to BinaryBlogger.com for more details.
Don't forget to subscribe to the Security In Five Newsletter.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
Your security program should have security training as part of it. Security awareness training in some industries is required through regulations but overall it's a top best practice to train and make your employees aware of security and their role. This episode talks about Privacy and how it needs to be expanded in most training.
Don't forget to subscribe to the Security In Five Newsletter.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
A majority of businesses fail at the basic cybersecurity components, from patching to network monitoring. This episode goes through way you may be failing in your security program.
Source report - Tripwire State of Cyber Hygiene Report
Don't forget to subscribe to the Security In Five Newsletter.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
We have reached the end of the mini-series for the OWASP Top 10 Proactive Security Controls For Developers. The last item talks about handling all your app's errors and exceptions.
Don't forget to subscribe to the Security In Five Newsletter.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
This week's tools, tips and tricks talk about hard drive encryption using Windows BitLocker. Did you know your version of Windows has this built in? (Pro, Enterprise and Education versions only)
This episode goes into BitLocker, why you need it and what protections your get from it.
Don't forget to subscribe to the Security In Five Newsletter.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
Google has released their Titan Security Key to the public. What is it and do you need it? This episode goes in to the details of the key and whether you would need this for your business or home use.
Don't forget to subscribe to the Security In Five Newsletter.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
DevSecOps sounds technical. Technology driven automation and the skills required to put it altogether are technology heavy. However, there are many non-technical skills required if you want to be a more effective DevSecOps resource in your career. This episode goes through the main non-technical skills.
Don't forget to subscribe to the Security In Five Newsletter.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
Multi factor authentication is becoming more widespread. Now it's showing up in the video games you and your kids play. This episode talks about how game makers are introducing multi factor authentication incentives and Ubisoft is taking it a step further.
Don't forget to subscribe to the Security In Five Newsletter.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
The WhatsApp text app ensures end to end encryption to protect your communications. Soon WhatsApp will allow Android users to backup to their Google Drive without going against your space quotas. There is a big drawback if you use this. This episode gives you the warning if you enable this feature.
Don't forget to subscribe to the Security In Five Newsletter.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
This episode is for all the developers. How do you know if your code is secure if you don't run security scans against it? If you are a small business or individual you may not be able to afford a top-shelf security code analyzer. This is where Sonarqube comes in to help you make sure your code is as secure as possible. This episode goes over what Sonarqube is and why you should try it out if you write any code.
Don't forget to subscribe to the Security In Five Newsletter.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
Continuing with the OWASP Top 10 Proactive Security Control for Developers we are at number 9. This control talks about logging & auditing but for security purposes. Applications log but security logs require different data and are used for different purposes. This episode goes over the control.
Don't forget to subscribe to the Security In Five Newsletter.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
I told you so. Six months ago. I warned you about Facebook's data collecting VPN app and now it has been pulled from the iOS store by Apple. Facebook's VPN app collected data off your phone for marketing purposes and Apple caught in, it only took them 6 months to do it. This episode goes over the details.
Here's the episode from Feb. 21, 2018, Episode 179 that I first warned you about Facebook's VPN app.
Don't forget to subscribe to the Security In Five Newsletter.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
Through the papers, websites, conferences, sales pitches and everything else thrown at us security perception varies. This episode talks about the realities and truths about cybersecurity.
Don't forget to subscribe to the Security In Five Newsletter.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
As a security professional you need to continually grow and expand your skillsets. Whether it's new tools and technologies or trends in the industry, you always are learning. This episode talks about expanding certain skill sets I think all security professionals should have and grow to help them become a more rounded security pro.
Don't forget to subscribe to the Security In Five Newsletter.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
The security and IT world is all about knowledge. No one can remember it all and in order to be effective you have to have a good reference/catalog system in place. I started a list of Azure, AWS and Google Cloud Service offerings for my reference. There are other lists out on the Internet similar but not how I wanted it nor have all the services in one document. So I made one and now I'd like to share it with you. You may find it useful, you may not, but any knowledge that provides one more nugget of knowledge is beneficial.
Don't forget to subscribe to the Security In Five Newsletter.
Link to the blog post - https://binaryblogger.com/2018/08/23/a-comprehensive-cloud-comparison-azure-vs-aws-vs-google-cloud/
Download the PDF directly.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
Continuing with the mini-series OWASP Top 10 Proactive Security Controls For Developers we have hit number 8, Protect Data Everywhere. Data drives your apps, your business and is what the hackers are after. This episode goes through the details of this control and why it's important.
Don't forget to subscribe to the Security In Five Newsletter.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
The Security In Five podcast has been going strong for over a year at 300+ episodes. I am going to expand the messaging and commit to a monthly newsletter. A lighter, fun, short collection of stories and resources that didn't make it into the podcast rotation. This episode goes through how it will look.
Don't forget to subscribe to the Security In Five Newsletter.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
Multi-factor authentication is no longer a 'nice to have' it should be mandatory if you care at all about securing your accounts. Relying on a username and password only is risky. Multi-factor adds an exponential level of security improvement and it is not as cumbersome as you think. This episode talks about enabling multi-factor and shows you a website to help you get started.
Don't forget to subscribe to the Security In Five Newsletter.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
Social networks provide us to share out lives with great detail. Those services and account could also be used to share things you didn't intend or that could damage you if your accounts are compromised. This episode goes through some easy best practices to help secure your accounts.
Don't forget to subscribe to the Security In Five Newsletter.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
This week's tools, tips and tricks talks about a tool by Symantec that allows you to check your home router for the VPNFilter malware infection. Although I have spoken about this before more reports are coming out that this nasty malware is more prevalent and widespread that initially thought. This episode talks about why this is important to check and reiterates why you should check your router routinely.
VPNFilter Check Tool By Symantec - http://www.symantec.com/filtercheck/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
We continue with the mini-series, OWASP Top 10 Proactive Controls For Developers, with number 7. This control is about enforcing Access Controls. Like most of these controls not everything about this is handle in code. Security is a practice that is all around you and developed long before you decide what framework or language you will build the application with. This episode goes through the details of this control.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
TLS 1.3 has been released. This is very important news for the security of the Internet. This is going to be the protocol for secure communications for the next 10+ years. This episode explains why.
Resources -
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
Google sees you when you're sleeping, Google sees you when your awake, Google knows when you are bad or good so be good for goodness sake.... even if you turn off location sharing.
This episode talks about the latest Google flub in the privacy and surveillance areas.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
Let's Encrypt, the free security certificate authority, got a big boost of support as it is now trusted by all the major root programs now. This episode goes into why this is a good thing to help expand HTTPS everywhere and available to a wider range of users, for free.
The episode where I introduced Let's Encrypt:
Episode 231 - Tools, Tips and Tricks - Let's Encrypt
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
As an IT professional you will eventually have to work on a Linux machine at some point, it's inevitable. If you are a pure Windows person the switch to the Linux commands can be a learning curve. This episode talks about a great Linux Command Cheat sheet I use when I hop over to the other side.
Download The Linux Cheat Sheet PDF
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
In a business you may provide employees a laptop, mobile phone, uniforms and other equipment to performs their duties. Sometimes those can be thousands of dollars of expense for each person. Although you may educate employees that they need to take care and protect those assets are you holding them accountable if they aren't? This episode talks about employee accountability using their wallets as motivation if they do not.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
We continue with the mini-series, Top 10 OWASP Proactive Controls for Developers and we are at number 6. This one talk about Identity Management or Digital Identity. This one goes beyond just the code and into the security practice of ensuring unique users are identified and authorized properly within your applications.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Stitcher -
Disaster Recovery and High Availability are used interchangeably at times, incorrectly. This episode goes through what each one is and how they are two different aspects of your IT and business plans.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
The availability of home security systems, cameras, smart home controls doesn't mean your home is more secure. The security of your home still comes down to your other practices to keep your home secure. This episode goes over some non-technical practices you can do to keep your home and property secure.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's tools, tips and tricks episode goes over an overlooked feature within the Google Stack, Google Alerts. This episode goes into how Google Alerts work and how they can provide value to your security program and personal identity monitoring.
Google Alerts - https://www.google.com/alerts
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
In order to process data and carry out business responsibilities you need to grant access to users. However, because access is granted does not give the user's free reign to use that access anyway they choose. Authorized use based on business need comes into play. This episode goes through this challenge of granting access required but ensuring the scope of the use is maintained.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Continuing with the mini-series OWASP Top 10 Proactive Security Controls we are at number 5, Validate All Inputs. This control is a vital component of protecting against injection and cross site scripting attacks. This episode goes through the importance and challenges with this control.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
The terms junk, spam and phishing are used interchangeably when they are three different categorizations of mail. This episode goes through each one and breaks them down to help clarify security implications of each one.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Chances are you have a mobile phone, you may listening to this podcast on one right now. What if you set your phone down on the restaurant table for a second and when you look up it's gone. Stolen. This episode goes over the things you should do and not do if your phone is stolen.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's tools, tips and tricks episode talks about how to see if your external hard drives have been compromised from the Internet. If you have setup a large hard drive at home to store and share files might be accidentally exposed to the whole Internet. This is a common router misconfiguration. This episode gives you a few things to look out for on the hard drive to see if someone has accessed it.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Video games are here to stay and are becoming the new social platforms. Game today you can play with up to 100 people, strangers, and talk with them as you play. This episode is for every parent with video game playing children to help the parents talk to the kids about social engineering dangers in these chat rooms. There is also a reference story of a teenager who lost their account, credit card info and identity information through social engineering.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Threat detection and response is a critical aspect of any security program. You need to know when something malicious has been detected and react to fix it. However, more and more attacks are able to slip passed the detections. This is where Threat Hunting comes in. This episode talks about threat hunting and how it differs from incident response.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Employees are reviewed and rated on their job performance from time to time. Do you take into account security performance? Why or why not? Employees are relied upon to maintain some level of security best practices as part of their job. This episode talks about how you should consider security compliance into over all employee reviews.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Through your career you should be getting additional training and education. Application developers are no different. This episode talks about developers getting training in Ethical Hacking and why it would be a valuable knowledge set to have that will make them better developers.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's tools, tips and tricks talks about the website IPLeak.net. This website helps you identify if you have a WebRTC leak vulnerability in your browser. This episode explains what WebRTC is and if you use a VPN why you should use IPLeak.net.
Chrome WebRTC Prevent Extension - https://chrome.google.com/webstore/detail/webrtc-leak-prevent/eiadekoaikejlgdbkbdfeijglgfdalml
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Security programs are often talked about within an organization when something bad happens. This episode talks about why security professionals and programs should start bragging about the successes no one else sees.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Security programs rely on all employees to have a base level of security knowledge and awareness to the policies. Why doesn't every job description have a security requirement stated? This episode talks about why you should think about adding them to all job postings.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Identity Management, specifically the lifecycle, is not only about granting access but taking access away. Deprovisioning access and resources is a critical security step if you want to maintain 'need to have access' levels. This episode goes into why.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Firewalls are the first line of defense in a network. They have the rules of what on the network can talk to and what is blocked from being accessed. This episode talks about why those block rules should be monitored closely and what they can tell you about your network.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's tools, tips and tricks episode is about organization. The tool this episode goes over is Any.Do. A robust task organization app that brings your tasks and lists together.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
A former employee from Apple stole deep trade secrets and tried to flee the country with them. The FBI was contacted and the employee was arrested at the airport. This episode goes into how it happened, how it was detected and why you should not discount the threats from the inside.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
The latest company to announce a breach was Timehop. This case is another example on why end to end security is so important but Timehop's transparency to the breach is fantastic. This episode talks about the breach, how it happened and why Timehop's openness to the details will make this a textbook case study for years to come.
Timehop's Security Announcement
Timehop's Technical Details On The Breach
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Google is leading the way for a more secure Internet. They are pushing hard for the concept of HTTPS everywhere. The next update for Google Chrome will alert all users anytime they visit a HTTP only website. This episode talks about this and why it's a good thing.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
IoT security is abysmal. No standards, no controls and no requirements to make these devices secure. Unfortunately for people to pay attention it comes on the heels of breaches. Enough breaches have happened and the Federal Trade Commission (FTC) is stepping in to push for an IoT security standard. This episode talks about this movement and how it's not to similar to car safety.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
On my blog, https://www.binaryblogger.com, I write about security but also have side topics from time to time. One article I wrote last year was about a big problem I had with my Tivo/Pace DVR failing on an update. Risking losing hundreds of hours of recorded shows and schedules I took to the Internet and researched for hours looking for an answer. This episode talks about how a little research, looking beyond the first set of search result can save you tons of time, money and hassle for anything you do.
The Tivo/Pact DVR Post - https://binaryblogger.com/2017/11/01/solving-problems-tivopace-dvr-update-error/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
The recent breaches, Exactis being the latest one, has pushed California to create a GDPR style privacy law. This is the start of the war on Privacy in the United States. On the heels of the European GDPR privacy laws, it was only a matter of time until the US created their own laws. This episode talks about what California did and what it means.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
IoT Strikes again. Introducing an insecure Internet of Things device not only could compromise your privacy from the device but could be used as an access point to the rest of your home network. This episode goes into some best practices to lock down your home network and what things could be done if you don't.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
It's safe to assume we all have a mobile device or several, but do you keep it as secure as you should? This episode lays out a few best practices that should have in place on your mobile device(s) regardless of how safe you think you are.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
A company called Exactis, I never heard of them, leaked 340 million records in the latest huge breach. The amount of records is staggering but that's not what I focused on. It's the type of data they had and this episode goes into why does a company like this have so much data.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's Tools, Tips and Tricks is about Windows Updates. Every now and then one gets stuck and hangs. What do you do? What can you do? This episode talks about some things you can do when your Windows Updates get stuck.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Continuing with the mini-series OWASP Top 10 Proactive Controls for Developers we are at number 4. This one talk about encoding and escaping your data. This episode talks about the importance of this development practice and what types of attack it help to prevent.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
You have heard the term. I talk about them all the time. This episode tried to explain what a zero-day is, what it means and how you can react to one if it affects you.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Google is making moves to encourage people from stop using old, outdated operating systems. They announced that Chrome will no longer run on MacOS Mavericks. This episode goes into what this means and why we will see more vendors take this approach of forcibly disabling their products on old systems.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Wifi networks security uses a protocol called WPA2. This protocol is not without it's faults and weaknesses and today the next version is set for release. Thie episode goes over the new WPA3 protocol, what changed and why its important for you to move to it as soon as possible.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's Tools, Tips and Tricks talks about Microsoft Threat Modeling Tool. This tool is a vital component of security architecture and design. The Microsoft tool is free and very useful to identify security risks within an application or environment prior to development.
Download the Microsoft Threat Modeling Tool 2016.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Tesla announced that it was the victim of sabotage and data breach. The culprit of this activity was an employee that became disgruntled. This episode talks about real risks of insider threats and Tesla's security gaps that allowed one person to do so much damage.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Continuing with the mini-series OWASP Top 10 Proactive Controls For Developers we are at number 3. Secure Database Access is the next control developers need to be aware of. This episode goes into the components of secure data access and what considerations should be taken in a project.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Voice-enabled devices is slowly becoming the new Internet of Things. Now you are able to basic banking actions using home assistance devices. This episode talks about this movement and what needs to happen with the voice security in order to make me consider using it.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This episode topic came in from a listener's question. How can an IoT device get hacked behind my router? This episode and the complimenting blog post on my blog https://www.binaryblogger.com goes into how this is done.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's Tools, Tips and Tricks talks about the Microsoft Cybersecurity Reference Architecture. This episode goes through what it is and how it can be used. I highly recommend if you are a beginner or experienced cybersecurity professional to look at this.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Windows XP has been out of support for years yet there are many computers still running it. The gaming service Steam is taking a very aggressive approach to XP and Vista users. Starting in Jan. 2019 XP and Vista users will be blocked from using the service. This episode goes into the details on this and how it may be a precedent set for other services to follow suit under the banner of security.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Continuing with the mini-series on OWASP Pro Active Controls For Developers, we are at number two. This one talks about leveraging security frameworks and libraries. This episode breaks it down but also gives best practices to look out for when you use third-party frameworks in your development projects.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Voice assistants like Cortana, Siri and Alexa are becoming commonplace in our devices. This episode talks about the security risks those voice assistants can pose and one case specifically with Windows Cortana.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
One year ago I started the Security In Five podcast. I never would have guessed I'd have this much fun and get the feedback from it. Thank you. This episode give a big thanks to all of you and gives a little insight how I make the podcast.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's Tools, Tips and Tricks goes over the website Informationinbeautiful.net. This is a wonderful site that takes real world data and puts them into visually stunning graphs.
Worlds Biggest Data Breaches - http://informationisbeautiful.net/visualizations/worlds-biggest-data-breaches-hacks/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
OWASP released a new Top 10 report this year. 10 Proactive Security Controls For Developers. I loved this report and decided to do a mini-series around it. This episode covers the first one, Define Security Requirements.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
A report from Breach Level Index puts the numbers from the breaches in 2017 in proper context. Reports like this really show the reality of how big breaches are. This episode goes through the numbers from the report.
Link to the report - https://breachlevelindex.com/assets/Breach-Level-Index-Infographic-2017-Gemalto-1500.jpg
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Internet of Things STRIKES AGAIN! Another IoT device security failures exposes customers to privacy violations that go beyond data. This time a cheap wireless, internet enabled, baby monitor is the culprit. This episode goes into what the problem is and how to take extra precautions when you buy internet enabled devices.
DO NOT BUY THIS, Look at the comments to see others that have experienced breaches - https://www.amazon.com/FREDI-Wireless-Security-Infrared-Detection/dp/B075QC6TRY/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
EBay released the ability to enable two factor authentication on your account. This episode goes through how to do it, it's very easy, and why you should enable two factor everywhere you can.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's Tools, Tips and Tricks episode goes over a website to help troubleshoot internal connection problems as well as web site verification. IsItDownRightNow.com will check any website from an external source to see if it's down for just you or for everyone. This episode goes through the site and why I use this one over others like it.
IsItDownRightNow - http://www.isitdownrightnow.com/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
We have reached the last of the Top 10 Reasons To Pen Test you business mini-series. This last one talks about using pen tests and really any security exercise to help improve your employee's skillsets.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
In the security professions, you can't do whatever you want, especially when it comes to people. There are laws you need to be aware when it comes to the line between corporate security and personal privacy. This episode goes over the high level laws you need to know about.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's breach report comes from Coca-Cola. This episode goes into the details of the breach and shows why all breaches and threats don't necessarily come from external forces.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
A followup episode from last week's Episode 247, the FBI has released an alert that urges all home and small offices to reboot their routers. This is in response to the wide spread of the VPNFilter malware.
The article I referenced is from CSOOnline and has specific routers that are vulnerable but every router should be rebooted just to be safe.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's Tools, Tips and Tricks episode talks about VeraCrypt. If you care about protecting your very sensitive data, hard drives, USB drives then VeraCrypt is for you. The successor to the very popular and powerful TrueCrypt (now defunct), VeraCrypt offers the same powerful encryption capabilities for your use. This episode goes into the details on how it can be helpful for your personal IT security.
Download: https://www.veracrypt.fr/en/Home.html
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
On the heels of the GDPR companies are opening up on the data they collect on you. Apple is next to roll-out a feature to see the data they have on you. This episode goes into what data you can see and how to get at it. One thing to note, this is a very new feature so not everyone has this option yet. Over the next few months everyone will.
Apple Privacy: https://privacy.apple.com
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Chrome continues to expand it's browser to a more fully functional security center. The fact the Internet is the primary use for most computers it makes sense the browser you use protects you the best it can. This episode goes into a new Chrome malware scanner for the Windows version and why you should reconsider your browser of choice.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Continuing with the mini-series Top 10 Reasons To Pen Test we hit number nine. This one talks about using penetration tests to validate and prove your security controls are effective. You don't have to have successful penetrations to have a successful test, your controls stopping the test is just as good. This episode goes into how you can use pen tests to prove your controls are working.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
There is a reason to stay on top with your patches and pay attention to security alerts from the makers of your devices. Researchers have discovered a half million routers infected with a new powerful malware. Currently patches are getting rolled out but many will miss the alerts and never close the security gaps. This episode goes into this malware and what you can do about it.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's tools, tips and tricks episode talks about a tool that can help you securely delete files. Just hitting delete or putting a file in the Trash doesn't actually delete it. This episode goes into how deleting works and why a tool like Eraser can help you ensure your sensitive files are deleted permanently.
Eraser Download: https://eraser.heidi.ie/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Security is about people. Your program's effectiveness comes down to the ability of the people following the policies to behave in a secure way. This episode goes into a few tips on how to help an organization improve the security behaviors of the employees.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Security relies on people to make your controls effective. People are the weakest link in a security program and one bad click and ruin your network's day. As a security leader, you need to hold people accountable both from the successes and unwanted behaviors that increase risk. This episode goes into positively holding people accountable when mistakes are made.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Continuing in the mini series Top 10 Reasons To Pen test in your business we have reached number eight. This episode goes into number 8 and how penetration tests can help you measure the effectiveness of you policies and fine tune them.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Last year the government voted to remove 'Net Neutrality' which forced Internet providers to treat all Internet traffic equally, they couldn't speed up one service and slow down another. Recently the Senate voted to bring it back. This episode goes into what Net Neutrality is about and where it goes from here.
'
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's Tools, Tips and Tricks episode goes over a social engineering recon tool. Maltego CE, Community Edition, is the tool of choice for information gathering on websites, companies, people and more. The first step to a penetration test is recon, information gathering, identify all aspects of your target to profile them. The episode goes through Maltego CE and lets you know what you can do with it and why a tool like this is important.
NEW LINKS -
CE registration: https://www.maltego.com/ce-registration/
Downloads: https://www.maltego.com/downloads/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
The Internet is a wild and crazy place. A vast array of computers, networks, and data. There are also lots of misconceptions, misunderstandings, and myths around security. This episode goes through some of the biggest security myths on security when using the Internet.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Mozilla is making sure that Firefox is a valid option for full browser switching. The big gap with the top browsers, outside of Internet Explorer/Edge, is in the large Enterprise deployments and controlling the configurations on thousands of computers. The latest version of Firefox has changed that. This episode goes into the other benefits of this release and why Firefox is a valid choice to switch your regular browser.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Continuing with the mini series, Top 10 Reasons To Run Penetration Tests in Your Business, we are up to number 7. This one talks about how penetration tests and their results can help you prioritize your risks. This episode talks about how this happens and why penetration tests are important for risk prioritization.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
The PCI regulation is one of the more security demanding regulations and it is also carries the heaviest penalties. This episode goes into the high level challenges that you need to do to prepare and maintain your environment to comply to PCI.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Vulnerability scanning should be a regular security function for your environment. However, that requires some investment but there are open source alternatives. This week's tools, tips and tricks episode talks about OpenVAS, the open source vulnerability scanner.
OpenVas homepage - http://www.openvas.org/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
A report from Microsoft stated that the tech support scam calls are on the rise and will continue to rise. This episode goes into what these calls are and how to spot them.
A collection of scammers I recorded - https://binaryblogger.com/category/myposts/scams/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Patching your software and equipment is one of the most important functions in your environment and it's one of the most time consuming. Missing patches can expose great risk to your company and data, past breaches show this time and time again. This episode goes into how you can make your patch routine more effective.
NIST Risk Framework - https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-53r4.pdf
DOD Cybersecurity Discipline Plan - http://dodcio.defense.gov/Portals/0/Documents/Cyber/CyberDis-ImpPlan.pdf
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
A security professional is more than the technical and regulatory resource in your company. A security professional needs to know how the business works in order to ensure the security controls are effective but also does not hinder business operations in a negative way. That's the balancing act all security professionals must master. This episode goes into that balancing act and why you security professionals are more than just policy makers.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
If you have a Twitter account and you haven't already, change your password. There was a goof from in the inner workings of Twitter recently and to protect your account you should change your password. This episode goes into the details and talks about other security features you can do to protect yourself from future mistakes like this.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's tools, tips and tricks episode talks about Let's Encrypt. A free, automatic renewing certificate for your web sites.
Let's Encrypt - https://letsencrypt.org/
Internet Security Research Group - https://letsencrypt.org/isrg/
A special thank to the folks behind FileInfo.com (https://fileinfo.com/) for introducing me to Let's Encrypt.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Cryptomining is the new word seen more and more in reports and stories of upcoming risks to companies. What is it? Why do I care? This episode goes into what cryptomining is, how it works and why your business needs to be concerned and protect against it.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Continuing with the Mini-Series Top 10 Reasons To Pen Test we have reached number 6. This episode talks about how pen tests can help show the consequences of the test. Make the company feel actual pain of losing access to their data. Go past the academic discussion and show them directly.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Everyone has a Wifi router in their homes at this point. Unfortunately most do not change the settings or secure it properly when they take it out of the box from the store. This episode goes over a survey conducted and the results are expected but disappointing.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
If you are a Google Gmail user you may have received the new redesign, if you haven't you will soon. Gmail's recent redesign adds more features to help manage and respond to emails but this episode talks about the new security features it also adds. Gmail steps up the security and privacy centric approach to help you use and communicate more securely than ever before.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's tools, tips and tricks episode talks about a backup and restoration solution for Windows. There will come a time when your system fails or your harddrive is inaccessible. That's where Macrium Reflect can help. A free backup and restoration tool for your Windows machine.
Side note - All the tools in these episodes are my own opinion and not sponsored.
Download - https://www.macrium.com/reflectfree
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
The GDPR will open the eyes to all of us when it comes to what data is collected by companies, how it's used and who it's shared with. THis episode goes into the detail of the GDPR but also the PayPal example of how many companies they share your data with. The number is staggering.
PayPal List - https://www.paypal.com/ie/webapps/mpp/ua/third-parties-list
Visualization of PayPal sharing - https://rebecca-ricks.com/paypal-data/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Continuing with the mini series Top 10 Reason Why You Should Run Pen Tests we hit number 5. Number 5 is about using Pen tests to see if your security awareness programs are effective and if they need improvements. This episode goes into the details.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Socializing on the Internet means you talk about yourself. However, the details about your life and your past may be gateways to get your accounts compromised. This episode goes into how this could be done and why your accounts could be at risk.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
COPPA - The Child Online Privacy Protection Act is a federal law that had been in place since 2000 and most parents aren't aware of it. This episode goes into what COPPA is, what websites that cater to kids have to do and more importantly what powers the parents have under this law.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's tools, tips and tricks episode goes over Shodan.io. A website search engine for Internet connected devices. THis website is a powerful security research tools to help you find and understand how awful the security practice around Internet of Things devices is.
Shodan.io - https://www.shodan.io
I say it in the episode and I will say it here. Use this website for educational purposes only. Connecting to any device without authorization, secure or not, is illegal in most states. Look but don't touch.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Internet of Things (IoT) is a security nightmare. Millions of devices are out on the open Internet with 10 year old vulnerabilities that are being exploited. This episode goes into the problems of why IoT devices are so insecure and what this could mean in the future.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Mozilla has been stepping up their privacy centric approach for users. Earlier this week they released a feature in Firefox for Facebook isolation. Now they have released a feature in the iOS Firefox browser to have privacy protections turned on by default. Now the same privacy protections that were added in the Firefox desktop app and Firefox Focus browser are now standard and turned on for the iOS browser. This episode goes into the details on how it works and why you should switch.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Continuing with the mini series Top 10 Reasons To Run Penetration Tests. Number four talks about using the tests to not just check for the target apps failures but test the controls you have in place. This episode goes into the details.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Mozilla is not a fan of Facebook's privacy position. Recently they pulled all advertising off Facebook and now have released a plug-in for Firefox to isolate your Facebook identity. This will make it much harder for Facebook to track you outside of Facebook. This episode goes into how it works and why you should use it.
Download the Facebook Container - https://addons.mozilla.org/en-US/firefox/addon/facebook-container/
Get more technical details on the Firefox blog - https://blog.mozilla.org/firefox/facebook-container-extension/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's Tools, Tips and Tricks episode is the one you should use starting today. Cloudflare released a new, private and public DNS that anyone can use. In the growing concern around privacy and the rest of the Internet users waking up to how companies use their data this is a welcome addition. Stop your ISP from snooping on your traffic and start to regain control of your privacy.
Cloudflare DNS - https://1.1.1.1
Go to that website and follow the instructions.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
On average it takes a business 180 days to detect a breach. Six months of a hacker walking around your systems, stealing data, planting malware and anything else they can. There are things you can look out for, abnormalities in your environment's behavior, that can help identify someone who shouldn't be there.
This episode goes into the things you can look out for with the tools in your environment now as well as advance components you can invest in.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Ransomware attacks are an unfortunate reality in today's world. They can be far more disruptive and destructive than your typical malware. Ransomware can destroy your business and data. There are things you can do to protect your business. This episode goes into the steps you can take to help protect and reduce the impact of a ransomware attacks.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Continuing with the Top 10 Reasons What You Should Pentest mini-series we are at number 3. Penetration tests will help you justify business decisions for your security initiatives. Regardless of the problems you find decisions needs to be made to spend time, people and money to fix it.
This episode explains how penetration tests can help with those business decisions.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
If you shopped online with Panera Bread or did business through their catering arm chances are your data was compromised. Panera Bread's website had a gaping vulnerability that exposed millions of user's account information. The scary part is they were told about it back in Aug. 2017... and did nothing.
This episode goes into the details and hopefully make you realize to not be like Panera.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
If you browse the Internet you should always use HTTPS when visiting websites, especially those that support it. It can be a manual effort and every website doesn't apply HTTPS equally all the time. That's where the browser plugin HTTPS Everywhere comes in.
This episode breaks down what this plug-in does, where it came from, why it should be trusted and why you should go use it starting right now.
HTTPS Everywhere - https://www.eff.org/https-everywhere
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
The tax man is coming. The date to file your United States taxes is looming closer and that means the phishing attacks are increasing. This episode goes into the different types of phishing scams, phone call scams and how to avoid them if you get them.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
IoT, the Internet of Things, is the thorn in my security side. The unregulated, uncertified, unreasonable devices with minimal to no security flooding our homes and child's toy boxes. This episode talks about how easy it is to hack and find these things, mainly by using only Google.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Continuing with the mini series Top 10 Reasons To Conduct A Penetration Test we are at number 2. The second reason to test, because you need to find out the gaps. This episode breaks down things you can find only through pen tests you can't from other security reviews.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
With the inclusion of all these home automation, personal assistants into our lives we are adding more ears listening. Each one of the devices have microphones listening, some when you don't think they are, and your voices, conversations and lives are uploaded outside your home. Alexa is one of those devices doing just that.
This episode goes into how and why it's doing that but more importantly how to see what's being recorded and delete it from Amazon servers.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
If you have a Windows PC you probably have looked at your Task Manager and asked yourself, What Is That File? Is it dangerous? Why is it consuming so much memory? That is where ProcessLibrary comes in. This episode goes into what the ProcessLibrary.com is and how it can help you troubleshoot and learn about your PC.
Processlibrary.com - http://www.processlibrary.com/en/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
If you are done with the privacy practices of Facebook you can break away from it. The hard part is the social aspect of family members and friends that may not. But you go back to the old methods of socializing by direct texting or actually picking up the phone and talking to them... if you get crazy, actually see them in person from time to time.
This episode goes into how to break away from Facebook and delete your account.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Facebook has no concern about your privacy, that's a proven fact. They want to gather as much information about your private life the better because that allows higher prices to advertisers to better 'customize' ads you see.
If you aren't ready to dump Facebook because of your other personal contacts you can reduce your presence on Facebook and not give them what they want. This episode goes into the steps you can take to reduce your footprint in Facebook without deleting your account.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Facebook gathers more data about you than you realize. However, you can download almost everything from Facebook to review it. This episode goes into how to do it and why you should.
Take control of your data and privacy.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
After the week Facebook had I decided to commit a week's worth of episodes to talk about the various Facebook practices that are ultimately at your expense.
The first episode talks about Facebook's business and at the core it's all about your private data. Data that you freely grant them access to.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's Tools, Tips and Tricks talks about MXToolbox.com. A collection of network, email and web testing/monitoring tools. If you run a website or manage an infrastructure there are tools in the MXToolbox that you will find useful.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
The annual security report for the Department of Homeland Security was released and the results are shocking. The US Government agencies have the problems, same gaps and challenges as you do. The report is a great read and provides good insight to how they were assessed and from the recommendations given to them.
Link to the OIG DHS Security Report -
https://www.oig.dhs.gov/sites/default/files/assets/2018-03/OIG-18-56-Mar18.pdf
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
The General Data Protection Rule (GDPR) is the new privacy framework for the EU data starting in May, 2018. Many companies have been working toward compliance to these new laws but 50% won't make it. This episode talks about the five biggest challenges companies face trying to be compliant to the GDPR.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This is the first episode of a ten episode mini-series, Why You Should Be Pen-Testing your apps. The first episode talk about how pent-tests can help you meet security regulation requirements.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Facebook released, then pulled back, another security product through their Onavo arm that siphoned data from your phone. This is the second app released in a month by Facebook that turned out to be nothing more than a surveillance tool. This episode goes into why you should never use any Facebook security app.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's tools, tips and ticks talk about OWASP Zap. The security testing proxy for your web application testing needs. Whether you are a developer or host an application you have a use for OWASP Zap.
OWASP Zap - https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Insider threats is a common phrase and most people associate it to a single type of person. The malicious individual intent to do harm. This is not the case, inside threats have many faces. This episode goes through the different type of insider threats and the different risks they post to your business.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
When your personal devices breakdown you may take them to a local repair shop. Giving them your computer and most likely full admin access to repair it. This also opens the door that those technicians could look at, copy, manipulate your personal. Now, what if law enforcement secretly paid those technicians as informants when they look for and find illegal material. That's what the FBI did with Geek Squad.
This episode goes into the partnership, the problems with such an arrangement and possible constitutional gray areas.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
If you own an Oculus VR headset chances are it's a useless paperweight right now. The vendor failed to update a simple certificate which is required for the headset to function. This episode goes into the study of certificate management and the downside if you fail to stay on tp of your renewals.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
When you identity is stolen one of two things will happen. The thief will use your information or they will sell it. The Dark Web is the place where the nefarious actions take place but do you know how much you digital life is actually worth?
This episode breaks down the different types of accounts and the average sale price for each. The total cost to have a complete identity profile is shocking.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's tools, tips and tricks goes over a fantastic collection of IT Administration and Security tools, Spiceworks. Spiceworks is a full free suite of tools that covers everything from a full funcitonal IT discovery and Inventory management system, Help Desk, scanners and software tracking solutions. If you are an IT or Security admin without a budget to buy an off the shelf suite and don't like open source, Spiceworks might be for you.
Spiceworks - https://www.spiceworks.com
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This shouldn't be a shock but email stinks. It's one of the biggest security threats to your company. You may have filters on the messages but you have thousands of untrained people bringing in potential threats to the company. This episode goes into email and alternatives to help mitigate the social engineering risks.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
In the security world things happen, we call these incidents. Big and small all incidents need to be investigated, mitigated and worked to prevent them. That's where a CSIRT comes into the mix. Computer Security Incident Response Teams sole responsibility is incidents. Knowing about them, responding to them and helping the business avoid them. This episode breaks down CSIRT and if you need one in your company.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
If you are IT or near the security world you probably have heard the term SOC (pronounced SOCK). SOC stands for Security Operations Center. What is a SOC and how does it differ from your security team? This episode goes into what a SOC is for, responsibilities and how they are used.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
We heard the word breach all the time in the news, stories and reports. What is a breach? The answer is not as simple as you think, especially in the Healthcare world. This episode goes into the definitions and explains what a breach is for healthcare. In an upcoming episode I will go through what you need to do if you get breached.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Troy Hunt, creator of Have I Been Pwned, added a new feature to the website called Pwned Passwords. This is a collection of over 500 million passwords that were collected from all the breaches. The reason this was created is that NIST has suggested a change to how businesses deal with passwords and password policies. They recommended that any password involved in a past breach can not be used in the company. That means if you had a password of Dog76@#!4zzA and it was breached, no one should use that ever, anywhere again.
This episodes goes into how this new website works.
https://haveibeenpwned.com/Passwords
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Hackers want to remain undetected. The longer they slip under your radar the longer they can steal your data. This episode goes into a few ways you can identify signs that you have something malicious running on your machine that is going undetected by your security tools.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Is it time to create a National Cybersecurity Safety Board similar to the NTSB? This episode goes into the idea of this for post-breach investigations and recommendations after the fact.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Bitcoin or cryptocurrency mining is becoming the new thing websites and hackers are doing. Legitimate websites could be using your PC computing power to mine for bitcoin and you won't know it. This episode goes into the details on how to prevent your PC being used for mining.
Chrome Extensions -
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Google has a security research team called Project Zero that looks for security vulnerabilities in pretty much anything. There is an agreed rule that ethical security researchers notify vendors of any vulnerabilities found and allow the vendor 90 days to patch it. After that, they can publish it, fixed or not. Google found one in the Edge browser and Microsoft didn't patch it in time, so Google released it. This episode goes into the details and the practice of researchers.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
We all use of have used Google search at some point in our digital lives. I would be that most don't know how powerful it truly is. The Google Hacking Database website does two things - It teaches you about how to do deep searches and opens your eyes to how open some people's lives are by accident.. This episode goes through The Google Hacking Database.
The Google Hacking Database - https://www.exploit-db.com/google-hacking-database/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
There are threats everywhere looking to disrupt and try to break your security plans and projects. Most teams forget to look at themselves and realize that their own actions and inactions can do just as much damage to their security plans as something external. This episode goes through the big items that are often overlooked and underestimated internally.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
I am 100% pro-VPN for personal use. It protects you, your privacy, keeps your Internet use away from prying eyes. Facebook is getting on board and not offering a VPN for iOS users. DO NOT USE IT! PERIOD! RUN AWAY!!! This episode goes into why you should never click on the 'Protect' button in the Facebook app.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Google is slowly moving toward a complete secure web. Starting in June Chrome will begin to label all HTTP only websites as Not Secure. This episode goes into the details, what the difference is between HTTP and HTTPS and why this is a good move for everyone.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Malware is the big buzzword lately. Even though you may have endpoint protection and run scans malware can still sneak onto your computer and cause problems or steal your information. This episode goes over some signs and things to look out for that may indicate you have malware on your machine.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
If you work with Windows from an administrative position, have Windows on your PC at home or want to learn more about how Windows functions under the covers then this episode is for you. Windows Sysinternals has been the goto starting set of administration tools for Windows since the mid-90s. A powerful and robust collection to help you troubleshoot Windows.
Sysinternal Website - https://docs.microsoft.com/en-us/sysinternals/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Business email compromise emails or also known as the CEO email scams impact basically every organization. You are at risk of getting one and there is nothing you can do to prevent one from being delivered. This episode goes into what this scam is, why people fall for it and what you can do to not fall for it.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
When you have an incident in your business, from a virus infection or massive outage, do you and your business know how to react? Incident response plans are an important part of an effective security program. This episode lays out some simple steps to begin to create an incident response plan.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
The new threats to businesses is cryptomining. Instead of delivering ransomware or other damaging malware criminals are turning to secretly using your computer's processor power to mine for cryptocurrencies. This episode goes into why they are doing, how it works and why it's bad for your business.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This past week a new zero day vulnerability was announced for Adobe Flash. Just add it to the list of security holes Flash has. It's time to get rid of Flash from all your computers, this episode goes into why.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's tools, tips and tricks episode talks about bWapp, a very buggy web application. bWapp is a fully functional web application you can download and install locally for security research, penetration testing, education and remediation exercises. If you are interested in security aspects, bWapp is for you.
Source: http://itsecgames.com/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Scareware is software that is installed on your PC that will alert you to some dire event. Usually it deals with viruses detected and the end game is you have to pay to upgrade the software to clean it. Scareware is junk and Microsoft is taking an offensive action against it. This episode goes into what they are going to start doing and why it's a good thing.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Meltdown and Spectre are two nasty vulnerabilities that were announced a few weeks ago. What makes these so bad is they are on the processors, the brains, of the computers. Recently security researches are now seeing malware in the wild exploiting these. This episode talks about what you can do.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Today is Safer Internet Day! A day each year in February to help bring awareness for creating a safer Internet for children and young people.
The 2018 theme, "Create, connect and share respect: A better internet starts with you" is a call to action for every stakeholder to play their part in creating a better internet for everyone, in particular the youngest users out there. More than that, it is an invitation for everyone to join in and engage with others in a respectful way in order to ensure a better digital experience.
Source: https://www.saferinternetday.org/web/sid/home
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
It's that time of year for us all to do our taxes. It's also the time of year our most sensitive data is moving around to multiple locations, seen by several people, printed, stored, emailed, faxed and we want to keep them safe. This episode talks about some tips you can do to help mitigate the tax scams that will be coming.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's tools, tips and tricks is about secure communication. Privacy is becoming a huge issue and people are starting to come around to the need for it. That's where ProtonMail comes into play. This episode goes into the details of what ProtonMail is and why you should consider getting an account there if you are concerned about keeping your emails secure and private.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
I was sitting in my home office and the phone rang. A guy on the other end with a hard accent said his name was 'Mark' and said he detected viruses on my computer for several days. He goes on to try to scare me with computer terms and eventually pitches a $200 security cleaner.
This call, like many others, were a scam. There is no software, no viruses, no detections from random companies on the Internet only criminals.
This episode breaks down this scam and many like it and tell you simple steps to avoid them... hang up and forget about it.
Here is a collection of scam calls I recorded
https://binaryblogger.com/2016/09/09/binary-blogger-gets-fresh-irs-scam-recorded/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Reddit, the front page of the Internet, one of the largest and most popular websites on the web improve their security capabilities. Reddit rolled out two factor authentication to all their 250 million users. Currently two factor authentication is the best practice to improve all your accounts. This episodes talks about why this is an important step for Reddit and why you should take advantage of it.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
In businesses it's a common and bad practice for IT administrators to share accounts. The practice lowers the number of high privilege accounts in a company but by doing so removes the ability of proper accountability, tracking and control. Over the years the government ISC-CERT team as been putting organizational account practices higher on the risk lists.
• Lack of accountability and traceability for user actions if an account is compromised
• Increased difficulty in securing accounts as personnel leave the organization, especially sensitive for users with administrator access
This episode goes into the details and solution on how to get control of your privileged accounts.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Were you aware Google is recording your voice from your computers and mobile devices? They are. Did you know you can go into your account, listen to all the creepy recordings of you talking at random times but you can also delete and turn it off. This episode tells you how.
Google Activity Center - https://myactivity.google.com/myactivity
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
There are times when you come across a file and have no idea what it is, what it's for, if it's dangerous and if you can delete it. This is where a website like Fileinfo.com comes in. There are many resources like Fileinfo.com out there, this is just one that I use and recommend because it's easy. This episode goes into why you need resources like this and how to use it.
FileInfo.com - https://fileinfo.com
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Google recently announced a report that only 10% of Gmail accounts have two-factor authentication enabled. Although the feature has been available since 2011 mass adoption has not occurred. This episode goes into what two-factor authentication is and why it's such an important security improvement for any online account.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
The latest generation of home routers make it very easy to connect large USB hard drives for centralized file backups and sharing. The episode tells a story of how dangerous that is if you aren't looking out for certain things. You may be unknowingly allowing the entire internet access your whole life.
If you have a home USB backup connected to your router, you need to listen to this episode now and tell others to do the same.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Penalties from hacked companies are insufficient to curb security practices and properly cover victims. That is about to change. A new proposal by the Senate would significantly increate the penalties against credit agencies that were hacked. Equifax got off lucky from their 145.5 million record breach, under the new law they would have paid $1.5 billion with half going to the victims. This episode breaks down the details.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
A hospital in Indiana recently was the victim of a ransomware attack. The ransom was 4 Bitcoin, about $55,000 at the time, and the hospital was given 7 days to pay it. The hospital ultimately paid the ransom but even though they have backups to recover from. This episode goes into why and why this is a bad move.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Everyday we hear about a new vulnerability, a new flaw, a series of critical patches we need to apply. How do we keep it all straight? The Exploit Database is how. This episode goes into what the Exploit Database is and why you should have it in your bookmarks whether you are a security professional or a regular end user.
Exploit Database Website - https://www.exploit-db.com/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Phishing, emails made to look legitimate, is one of the main methods to deliver malware, steal credentials and conduct fraud. Security awareness training covers phishing but how do you really know if people can avoid them? Trust but verify and how you do that is to test them. This episode talks about why you should conduct phishing campaigns against your company and how you should make it a positive experience rather than a "Gotcha" moment.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This episode lays out five simple tips you can take to help protect yourself from hackers. These tips are applicable to an individual or to any business, big or small, to help protect and mitigate hacker's activities against your systems.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
VTech had a large data leak with one of their toys in 2015 and now they have been hit with a big fine. VTech collected personal information on millions of children and did not disclose this properly to the parents and did not have proper security control to protect it. This episode goes into the details and why this is a good thing for the IoT industry.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Creating a security program is the easy part, getting it integrated and accepted by the business and employees is the hard part. Security is more than the technology supporting it, security needs to be accepted by people to be effective. People have to choose to be secure and follow the policies or they will find ways around it. This episode talk about how to position a program in today's business work to help it be accepted and therefore more effective.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's tools, tips and tricks episode is a tip on gathering guidelines on building a cybersecurity program. The Federal Communication Commission has a website for Cybersecurity planning. There you can download great beginning resources, especially if you are a small business looking to strengthen your security posture.
FCC Cyberplanning website - https://www.fcc.gov/cyberplanner
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
A new security flaw has been announced that impacts almost every computer and mobile device built in the last 10 years. This shows the importance of patching regularly, especially when major vulnerabilities are announced like this. This episode goes over what the vulnerability is and how you can protect your devices from it.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Top 10 security tips for your network and we are at number 10 - Don't forget about mobile and BYOD. It may seem cheap, easy and flexible to allow employees to use their own personal devices to access company email and resources but you could be exposing yourself to a security risk. This episode goes into the details and some solutions to help handle these risks.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Personally Identifiable Information is the gateway to identity theft. We hear about companies losing control of PII but there are also things individuals can do to cause identity theft as well. This episode goes into the tips and pitfalls you could be doing today that will expose you to identity theft.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
If you use a browser you may have noticed that when you enter a username/password in a website the browser asks you to save it. Don't. It may seem convenient to save those for easy login next time but it's not as secure as you think. This episode goes into the dangers and what marketers and potentially hackers can do to easily see your account information.
Demo site to test your browser - https://senglehardt.com/demo/no_boundaries/loginmanager/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
This week's TTT episode talks about a website from Qualsys' SSL Labs. SSL Server Test is a fantastic website for a preliminary scan of any website you control. This will check all the SSL information, known SSL based vulnerabilities, check the domain with various browser types and more. This episode goes into the details of the report and why this is worthy to add to your bookmarks.
Qualsys SSL Server Test - https://www.ssllabs.com/ssltest/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Everyone takes notes for their job. Not everyone keeps a journal specifically around their career life. Journaling is a powerful tool, if done correctly, to help you grow as a person and shape your career by recording wins and losses. This episode goes into the benefits and difference between keeping a journal versus a notebook.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Continuing with mini-series Top 10 Tips to Secure Your Network we are at number nine. Define strong rules for your administrator accounts. These accounts are the keys to the kingdom, full access for your employees to the their jobs easily but also allows for full access if they are ever lost. You need to lay the rules and defined how these accounts are used and by whom. This episode breaks it down and gives tips on how to limit your exposure.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Your video games systems are powerful computers running operating systems similar to those driving your desktops. Requiring internet connectivity exposes these machines and your information exposed if not taken care of. This episode goes through each of the main video game consoles and gives tips to help make them a little more secure.
There is a detailed blog post on BinaryBlogger.com that steps it out as well.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
The last episode of the year! This episode goes over my security and IT predictions for 2018. The full blog post on the predictions can be found on Binaryblogger.com
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Each year on my blog, binaryblogger.com, I do security & IT predictions for the next year. As part of that, before I release my predictions I go back and look at the ones I made before and rate them. This episode goes over my predictions I made for 2017 back in Dec. 31, 2016.
You can see the original prediction post here - https://binaryblogger.com/2016/12/31/predictions-for-2017/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
As 2017 comes to a close we look back at the top security breaches of the year. This episode goes over the biggest breaches of 2017 and how each happened.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
When breaches are disclosed or discovered on the Internet and Dark Web, researches pull together the data an analyze it. Each year a group called SplashData puts together a list of the Top 25 passwords used. The results are pretty sad. This episode runs down the Top 10 most used passwords.
Link to the Top 100 Passwords PDF download. (LINK BROKEN)
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
The security business is a serious and frustrating world. Like many things in life you have to not take it too seriously from time to time. There is a website dedicated for Security Professionals to express their challenges and experiences through animated GIFs. Infosec Reactions is a place that just has a short statement and an accompanying GIF to help express the message. It's worth adding it to your lists and checking it out from time to time for a laugh.
Infosec Reactions Website - https://securityreactions.tumblr.com
The GIFS I have submitted to Infosec Reactions over the years - https://securityreactions.tumblr.com/search/binaryblogger
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
Continuing with the mini series Top 10 Security Tips For Your Network we are up to number 8. Conduct regular security audits. The only way you can be confident that your security controls are working is to audit them on a regular basis. This episode goes into the importance and what you should look at in your audits. Use the audits to help you improve your security and close any gaps found.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
As we increase our online shopping, email and social network use the scams increase as well. Only by knowing the scams that are out there and how they work can you know how to avoid them. This episode goes into the top online scams, how they work and give details on how to identify them to avoid them.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
The last item in the mini series OWASP Top 10. Number 10, Unvalidated Redirects and Forwards. This episode goes in to the details on what this is and how to avoid having them in your application.
OWASP Top 10 A10 - Unvalidated Redirects and Forwards
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast Page - http://securityinfive.libsyn.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio - Security In Five Channel
Spotify - Security In Five Podcast Page
Email - contactme@binaryblogger.com
As our Internet lives rely on the browser it's important to know how to use them in a secure way. You cannot assume your browser is setup in the most secure way possible. This episode goes through several best practices, tips and suggestions to ensure your browser security is put first.
Link from the episode - https://updatemybrowser.org/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
This week's TTT episode talks about a fantastic new service to help manage your family's home Internet use. It's called Circle and this is a network level filter and time management capability that sits on your home router.
No need to install anything on the devices or laptops. You can control what your kids can access, how much time per day they can use the Internet and even limit time on specific apps, like YouTube.
It's a wonderful, easy to use and functional service I use and highly recommend. This episode goes into the details.
Check to to see if your router is Circle compatible
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Number 7 in my Top 10 Security Tips for Your Network talks about protecting the external access into your network. Whether through applications, FTP, VPN, etc... your customers and employees at some point need to get to internal resources from outside the network. Every access method needs to be protected and monitored. This episodes talk about doing that.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
A major breach with a popular keyboard app showed that they were collecting far more data on their users than they should. This makes all of us think twice whenever an app asks for Full Access to your devices. In this case, they were taking every piece of data they could, including key strokes. This episode goes into the details.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
The OWASP Top 10 list is almost done. Number 9 talks about using components with known vulnerabilities. If you think this doesn't happen, look at Equifax. When vulnerabilities are published for a components hackers start to work on attacks for it. If you run these you are increasing you risk of an attack. This episode goes into the details.
This OWASP item is also another reminder that not everything in the OWASP is code related. This one is very much an operational process within an overall security program.
OWASP A9 - Using Components With Known Vulnerabilities
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
A recent increase of LinkedIn accounts being used for phishing campaigns is a cause for concern. These accounts are compromised and then used to send InMail messages to all contacts. Very convincing but also very preventable by turning on two factor authentication on the LinkedIn accounts. This episode goes into the details.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
This week's TTT episode talks about the cloud file, note and thought organizer Evernote. Over the years Evernote has solidified themselves as a robust, feature full online cloud and productivity tool. Use it to store receipts, manuals, web articles, thoughts, notes, project plans, and so on. Evernote has become the central location for my organization for projects, personal work and getting this podcast episodes done each week.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
This one seems like a common sense action but you'd be surprised the lack of end to end protection in environments. Viruses, malware and malicious code don't just infect one machine, they look to spread. If you have protections only on your workstations and neglect the servers deeper in the environment you are playing a risky game. This episode goes into protecting against viruses, malware and malicious code at all levels.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
We all hear about data breaches but do you know exactly all the costs that go into the recovery of them? It's far more complicated than you realized and for some businesses might be a bankruptcy level event. This episode goes into the details of the various costs that are involved.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
The OWASP Top 10 series continues on to number 8, Cross Site Script Forgery. This vulnerability is about how applications take input and requests and about how they could be forged to be sent elsewhere. Verify the calls or randomize the code to help avoid this hole. This episode breaks it down.
OWASP Number 8 - Cross Site Forgery Requests
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Apple released a new version/upgrade to their operating system called High Sierra. In addition to all the new features they accidentally removed the password from the 'root' account. Anyone could get full administrative rights to any Mac without entering a password. Whoopsie. This episode goes into the event and why we need to stay on top of updates and patches.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
The starting point for any malware scan is a tool called Malwarebytes. This episode goes into the reason why I always start with Malwarebytes on machines that are infected or start to behave oddly. It easy, it free, it works and that's why Malwarebytes is this week's TTT episode topic.
***
All my TTT episodes are not sponsored. These are 100% my opinion and in no way motivated because I am compensated or asked.
***
Malwarebytes website - https://www.malwarebytes.com/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
The Top 10 Security Tips For Your Network continues with number 5, Encrypt Your Data. Encryption is the knee jerk response to any security even by the public. Encryption is not the sole answer to everything and there are many aspects of it you need to be aware of before you deploy it. This episode goes into the pros and things to watch out for when you encrypt and why you should in most cases.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
The holiday season is upon us and that means more trips to the stores and more purchases online. This also means the bad guys are increasing their patrols to steal, defraud and get your data. This episode lays out tips that you can can to strengthen your security when you are out shopping in a store or online. How to avoid crimes of opportunity and keep your property safe.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
The OWASP Top 10 series continues and we're up to number 7. This one is called Missing Function Level Access Control and talk about protecting the inner functions of an application from being called by the approved users. Just because a user logged in doesn't mean they can call any function in the application they want. his episode breaks this control down.
OWASP A7 - Missing Function Level Access Control
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Uber was the recent hack that was made public. 57 million records of riders and drivers. The data stolen for the riders was name and email, no passwords, payment info or locations. The drivers had more sensitive data stolen that included their driver's license numbers.
Instead of notifying the proper authorities and public releases, they paid the hackers $100,000 to delete the data, allegedly, and keep it quiet. This is a scary approach. 57 million people's data was in the hands of a criminal and it was covered up. This episode goes into the dangerous slippery slope of handling breaches this way.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Hard drive space is becoming a problem again with the ever increasing mobile devices. Why? We need a place to back them up. All those photos, videos and app fit on your phone but on your PC space can be a problem.
WinDirStat for Windows and Disk Inventory X for Mac helps you get control of your hard drive space. You can easily see what is taking up the most space and help you quickly manage and delete unwanted files from PCs and external hard drives. You can also use it to manage your cloud drives like Dropbox, Box, OneDrive and so on if they are installed as folders on your PC.
Here is a blog post I wrote about these tools to help you step through the use - https://binaryblogger.com/2016/05/23/using-windirstat-manage-cloud-drive-space/
Download Links -
WinDirStat For Windows - https://windirstat.net/
Disk Inventory X For MacOS - http://www.derlien.com/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Continuing with the Top 10 Security Tips For Your Network mini-series we are up to number four. This tips talk about creating cyber rules for your employees. How you need to set the expectations of use and more importantly communicating the 'why' the rules and guidelines are in place. Awareness is power.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Continuing with the OWASP Top 10 mini-series we are up to number 6, Sensitive Data Exposure. This episode reviews the challenge of figuring out what data you deem sensitive and all the areas you need to worry about securing properly to prevent leaking any data.
OWASP Top 10 A6 Sensitive Data Exposure
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
The Internet of Things lack of security focus strikes again! This times it is a flaw in Bluetooth dubbed BlueBorne than impacts billions of mobiles devices and now your home devices too.
This episode goes into the flaw, how it can be exploited and what you can do to protect yourself.
Here are the the flaws that were found -
You can look up the CVE definitions here - http://www.cvedetails.com/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
One of the top websites to keep you informed of your security risks is Have I Been Pwned. This website allows you to search for your email account(s) to see if they have been part of any breaches. This website is critical to keep tabs on your privacy and security. It also shows you how dangerous poor password practices, like password re-use across sites can be and how important it is to use multi-factor authentication where possible.
If you have not run a check on your email account(s) I highly suggest you do so now.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Continuing with the mini-series, Top 10 Security Tips For Your Network, number 3 talks about physical security. You can spend thousands to millions on all the tools, devices and server to protect your business but if someone can walk away with the device the investment is worthless. This episode goes into the often glazed over physical security focus, especially in small businesses. Physical security needs to be a crucial part of your security program.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Most of us have home Wi-Fi. When friends, family and visitors come over they may expect to get on your Wi-Fi to get Internet access. There are various reasons why you should not be allowing them access to your primary Wi-Fi network but instead use the Guest network feature of your routers. This episode goes into why you should setup and leverage the guest network for your guests.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Halfway through the OWASP Top 10 mini-series we reached number 5, Security Misconfigurations. This item in the top 10 shows that the OWASP covers more than the code. Security Misconfigurations deals with the entire application stack and that means more than the developers need to be involved in the development cycle. This episode goes over the control and the partnership of developers and IT.
OWASP Top 10 - A5 - Security Misconfigurations
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
President Trump's Twitter account was deactivated for 11 minutes and the world went bonkers. It turns out that it wasn't a mistake but a rogue act by an employee's last day on the job. This episode takes this a step farther and talk about departing employee's and the trust you should or should not have.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
This week's TTT episode talks about the search engine DuckDuckGo. If you want to search without being tracked, recorded and followed then you should use DuckDuckGo. This episode goes into the details of how other search engines work and why DuckDuckGo is the right choice if you are concerned about your privacy.
See what Google knows about your browsing - https://myactivity.google.com/myactivity
DuckDuckGo - https://duckduckgo.com/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Continuing with the mini-series Top 10 Security Tips For Your Network number 2 is about patching. Equifax happened, ultimately, due to a lack of prompt patching. Updates to your network components and software fix bugs, improve performance but also close security gaps. This episode goes into the details and reasons why patching it so important.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
The best advice you can take is to look into getting a Password Manager. A vaulting, generator to help manage all your passwords for personal and business accounts. Bad password practices, using the same passwords on multiple sites is increasing your risk to having your accounts and identity compromised.
This episode goes into details of all the benefits for using a password manager.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
We continue with the OWASP Top 10 series and next up is number 4, Insecure Direct Object References. This episode gives a high overview of this control, how attackers exploit it and how you can work to prevent this from happening in your applications.
OWASP A4 - https://www.owasp.org/index.php/Top_10_2013-A4-Insecure_Direct_Object_References
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
This episode talks about Browser Canvas Fingerprinter, the less known 'super tracking cookie' of the Internet. Firefox announced that their next browser update will block Canvas Fingerprinting by default, built-in to the browser. So what? What is it and why should you know about it?
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
In this week's TTT episode I talk about a website called Mr. Whoer. This should be part of your bookmarks and used regularly. Mr. Whoer provides you with all the information about you and your system. It's handy for testing network connections, verifying your anonymizers are working properly and what people can see about your computer.
Mr. Whoer - https://whoer.net/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
A new mini-series, Top 10 Security Tips For Your Network. Instead of quickly listing off a top 10 list there will be one episode for each item. The first tip is about using strong authentication anywhere applicable to help strengthen your security and reduce your reliance on bad password practices by users.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Next in the OWASP Top 10 series is number 3, Cross Site Scripting (XSS). This vulnerability is the most common of the Top 10. It can open your application to user impersonation, session stealing to data dumps. This episode goes over what XSS is and some of the steps and resources you can use to help prevent them.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Email needs to go, it's a security nightmare, it's a pain to manage and it has become an inefficient method of communication. Look at your inbox, how much time do you spend 'cleaning it out', messages skipped over or skimmed, and time going back and forth with broken messages.
It's time for email to evolve and this episode goes into how it can do that.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
When I first started this podcast I never would have thought I'd be recording my 100th episode. It's all because of the listeners and feedback received.
Thank you and let's get to 200!
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
This week's TTT Episode covers a great malware scanner for your Windows computers. SpyBot - Search & Destroy is a tool I have been using for over 10 years. It's a deep, easy to use malware scanner to help identify unwanted installations and remove any malicious components. It's a great addition to any scanning toolbox.
Disclaimer - All tools and downloads in my TTT episodes are unsponsored and are 100% my personal opinion and recommendation. Meaning I am not paid to talk positively about them...
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Building a successful security program in any company is difficult. There's a way to help it become successful and a way to make it be rejected and ineffective. This episode goes into why you should work on a culture based approached to your security program.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
There is a balance between business use and personal on computers and systems businesses provide to employees. Personal use is inevitable, a personal email to your wife, saving off a photo and so on. If you do store personal files or use company email for personal messages you cannot expect those to remain private to you. This episode goes into what it means to use a company provided resources for personal purposes and why you cannot expect it to remain private.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Continuing with the OWASP Top 10 series we are on number 2, Broken Authentication and Session Management. What is it? How can be exploited? This episode breaks down what this covers and why it's number two in the Top 10.
OWAPS A2 - Broken Authentication And Session Management
OWASP Application Security Verification Standard Project
OWASP Session Management Cheat Sheet
OWAPS Authentication Cheat Sheet
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Last week a report was released showing how the WPA2 WiFi Encryption Protocol can be compromised. This is a serious security alert as it affects every WiFi device you own. Laptops, phones, game consoles, TVs, streaming devices and anything else that uses WPA2 for their WiFi connection. This episode breaks down what this means for you and how to protect yourself.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Going forward, each Friday I will do a TTT Episode. Tips, Tricks and Tools will highlight one of the many, many tools and tricks I use daily in my security profession. In security you can never have too many tools because there is no single tool that can do it all.
The first episode will cover a website called VirusTotal.
Tool - VirusTotal
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
LinkedIn is the social network for our professional persona. Our careers and business contacts kept separate form our personal social lives. On LinkedIn we tend to accept connections more freely than on our personal social sites. Even though we are out to increase our business contacts and reputation there are those that are out there that are up to no good. This episode goes into what you are exposing to a LinkedIn connection and how that can increase your security risks.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
There are three factors of authentication - What You Know, What Your Have and What You Are. A basic username/password combo is no longer sufficient to protect your accounts and data. This episode goes into what multi factor authentication is and why you should enable it on your accounts now.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
The first in a series of ten episodes going over each of the OWASP Top 10 items. A1 deals with Injection. This episode goes over the very high level description on what it is, how it's exploited and the damage that can be done.
Reference Links:
SQL Injection Prevention Cheat Sheet
Query Parameterization Cheat Sheet
OWASP SQL Injection Testing Guide
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Phishing is the technique to trick a victim to enter their account credentials into an app or website they think is legit. In reality it's a fake site and they send their account information to a criminal element. Apple iOS is not immune to these types of real looking tricks. This episode goes into tips on how you can help identify and avoid falling for this phishing attack.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
This episode I review the book Secure Enough? 20 Cybersecurity Questions For Business Owners and Executives by Bryce Austin.
TCE Strategy, Bryce's Website.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
I received one of those tech support scam phone calls today. I am usually more prepared for them but it took me a few minutes to get prepared to record it. This episode shows you what these tech scam calls sound like, what they say and have you do and ultimately how to avoid them.
This was unscripted and recorded on the fly. Enjoy.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Security and Risk Assessments are a critical components of a security program. You will see that regular assessments will be asked for more often by regulations, partners and departments. They are the reasons for any security initiatives and are also the proof of your effectiveness of decreasing risk for the company. This episode goes into why you need do assessments more frequently.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
So What? What does this mean to me? That's the question that you need to answer. Depending on who you talk to, the answer will be different. In Security you need to apply it to those questions, So What? It's the hardest question to answer, but if you don't your adoption of any security initiatives will be near impossible.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
OWASP is the Open Web Application Security Project. A global group set to provide developers and security professionals the tips and best practices in application development. There is more to the OWASP Top 10 than good coding practices. This is an introduction episode to a new mini-series that will go over each of the Top 10 items.
https://www.owasp.org/index.php/Main_Page
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Moving to the cloud has many pros and cons for a business. One growing misconception is the amount of security a cloud provider will provide. In most cases the perimeter is protected but you are still responsible for your application and data. Don't overlook this. This episode goes into the details.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
We conclude the Critical Security Control series with number twenty. Penetration tests. You have all the other controls in place, your teams running with synergy, and you are protected. Now you need to prove it through testing. Actively, and in a controlled manner, you need to test your controls. This episode talks about the last control and why Penetration Tests are the final step in a mature security program.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Wordpress is one of the top blogging platforms. It's freely available, easy to install and a prime target for hackers. Vulnerabilities in the Wordpress core and plugins are found every day. If you do not stay on top of your Wordpress installation you could lose your website or be hacked and used to host malicious files and webpages without your knowledge. This episode goes into why you need to monitor and update your Wordpress installations.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Continuing in the Critical Security Controls we are at number nineteen. Incident Response. Now that you have all the tools, policies and procedures in place what do you do with the alerts? How you respond to an incident is vital and makes your investments worthwhile. This episode goes over this control
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Verizon suffered another leak of sensitive data from an unsecured Amazon Web Bucket. This time it was an internal employee that used the bucket for business purposes but outside Verizon policies. This shows you how easy it is to have a major leak. Anyone with a credit card can open a web service and begin to use it without the knowledge of a business. This is Shadow IT, lurking in the shadows, keeping the business in the dark. This episode goes into this risk every business faces.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
The next control in the Critical Security Controls is number 18, Application Security. Even though 50% of all attacks are against the application less than 1% of all security spending is on application security. This episode goes into the details of this control and what it takes to address it.
End of line.
------------------------------------
Website - https://www.binaryblogger.com
Podcast RSS - http://securityinfive.libsyn.com/rss
;
Twitter @binaryblogger - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
In the wake of the Equifax breach, criminals will use this for new scams. Telephone calls claiming to help you fix your credit problems, emails stating you accounts will be closed from the breach, and so on. The only way to protect yourself and others from falling for these fraudulent scams is to be aware of them, be skeptical and understand how legitimate banks and government agencies work.
Don't trust email, always question phone calls and never, ever give out any account information over the phone. Hang up and call the banks directly, don't click on email links and if you are unsure stop and ask, email me and I can help. 99% of the time it will be fake.
It's better to hesitate and ask, than click and be wrong.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Next to social engineering the number one targets for hackers are the applications. Complex components, each with their own unique configurations and patches, all being poked for holes. Application's are the gateway to the data and yet as an industry application security is still far behind in the list of priorities.
This episode goes into application security, development cycles and continual scans and reviews of your critical applications. Deploy and forget is no longer an acceptable practice.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Breaches are unfortunate events but you need to look at them objectively and learn from them. The security profession works when you observe and learn from others missteps. The Equifax breach could be a catalyst for an overhaul the industry needs to better protect itself.
This episode talks about protecting the data. Putting more focus on how we store, process and move data around. Thinking about the data architecture differently to avoid mass amounts of data to be taken so easily.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
The Equifax breach will be looked at for years. What went wrong? How could this have happened? There will be many answers given, some will be right others will be wrong. As a security professional anything that spurs discussion and a review of your own environment is a positive thing. Improving your security program, even a little bit, is better than nothing.
This episode goes over vulnerability management and paying closer attention to the CVE Critical ratings. Prioritization is a skill as a security professional. There are times when you need to stop everything to address an issue and other times that can be scheduled into your routine.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
The Equifax breach is one of the largest and most dangerous breaches so far. The reason this breach could be damaging for years to come is the data that was stolen. Unlike credit cards that can be cancelled, your PII data doesn't change. How our financial systems are setup the data is all you need to do real financial damage.
This episode covers what you can do as an individual to protect your financial accounts, your identity and how to remain aware of the future threats that will come from this breach.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Using a personal VPN for your devices is something everyone should invest in. It keeps your data more secure, anonymous and another benefit is to keep the net neutral. Internet Service Providers are beginning to skirt the rules and throttle traffic, downgrade video quality and monitor where you go. This episode goes into how using a VPN can keep your Internet use fair and free from outside meddling.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
This episode talk about business authorization and use of access within a business. Just because your employees have access to do their job, that does not necessarily mean they can use that access whenever they want. There is a distinction between authorized use and abuse of use.
You can have a breach with someone that has legitimate access but abuses it. Listen to hear how this happens.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Continuing with the Critical Security Controls Top 20 we are at number seventeen. This control talks about Security Awareness and education efforts in your business. Security is only successful when others understand and can recognize threats and have the basic knowledge of security controls. There's a reason most major regulations require security awareness programs, this episode goes into why.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
The Equifax breach was the largest to date. As anyone in the security profession should do on a regular basis is learn from other's mistakes. As details emerge on all the components that lead to Equifax's failure, we can use those to improve our own programs. This episode goes into the importance of patching your systems and when you should.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
The Equifax breach is one of the largest thus far. Unlike other breaches this one could be far more damaging for people who had their data stolen. It comes down to the type of data that was lost. This episode covers why this could be dangerous for everyone for years to come.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Continuing in the Critical Security Controls Top 20 we are at number sixteen. This control covers Account Monitoring. This episode goes over the difference between a review and monitor process and what you can look out for to help you with this control.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Ransomware is a nasty piece of malware that can destroy all your data. There are a few things you can do that will greatly reduce the risk of you and your company getting infected by a ransomware attack. This episode goes through them.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Compliance audits are checkbox reviews of itemized lists of things you should be doing. If you pass a compliance audit, so what? Compliant to a list doesn't mean you are any more secure nor does it mean you can stop. Compliance audits are only checking the bare minimum requirements. This episode goes into more detail on why.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Continuing the Critical Security Control Top 20 we are at number fifteen. This one covers Wireless Access Control. Unlike your physical network, wireless access opens the vectors of access and attacks. There are controls you need to do above and beyond the LAN. This episode goes over that control.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
The Internet of Things strikes again. The security risks in the growing number of internet connected devices have reached a level where it's now life or death. Medical devices are now in the target of the criminals. How can manufacturers handle this? What are the risks to the patients? This episode talks about the new threat.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Passwords are the weakest link in your security. Especially if you try to manage them yourself. All the sites you access your passwords are less than optimal. Reusing passwords, weak passwords, easy to socially engineer them all can put your personal data at risk. This episode goes into why you should consider and use a password vault to manage all your digital accounts.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Next in the CSC CIS Top 20 is control fourteen. This is about Controlling Access Based On Need To Know. We all have seen a TV show or movie that has the saying 'That is on a need to know basis.' This control is exactly that. This episode goes into the details and what you need to look for in your business.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Another day, another celebrity social media account was hacked. This time it was Selina Gomez's Instagram account. Either they don't know or don't care but these celebrities can prevent this from happening. You can to. This episode tells you how.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Continuing the CIS CSC Top 20 series we reach control thirteen. This control talks about Data Protection. In this episode the control details are broken down and offer some tips on what you can do to start to address this.
You can read more about this control on BinaryBlogger.com - https://binaryblogger.com/2017/01/12/breaking-critical-security-controls-csc-13-data-protection/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Security and privacy are two different things. One is about protection and the other about use. How does it apply to your data and where you share it? This episode goes into the differences and ends with a creepy story that blurs the line between security, privacy and how businesses and social media sites are using your data.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
The next control in the Top 20 Critical Security Control series is number 12, Boundary Defense. Your perimeter is your wall. All data flows in and out of that and you need to be able to monitor, alert and react to it. Boundary Defense is like the walls of a castle, they aren't very useful if they are not built properly or maintained. This episode goes into the details.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Security teams are most often looked to after the fact. CISOs and security leaders need to be closer, if not involved, with the strategic planning for the business. If the security teams do not know how the business works or the direction it's going then it makes their jobs more difficult to build a security program for the business.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
The next control in the Top 20 Critical Security Controls is number 11, Network Device Configurations. Much like your workstations and servers you need to maintain and control configurations for the components that drive your network. This episode goes into the details.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Celebrities are high targets for hackers. Finances, reputation, and data that will always be popular are the reasons. In the recent celebrity hacking situation another series of highly personal photographs were leaked.
We can look at situations like this and learn from them to help us and others not be a victim. This episode goes through the simple steps that would have prevented this from happening.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
As the internet connected devices grow in our homes it is becoming more important to keep track of them. This episode goes into the need of keeping an inventory of all your home devices and why.
The partner episode that ties into this is episode 30 that goes over the importance of checking your homeWi-Fi regularly.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Continuing the CIS Top 20 series we have reached the half way point with number 10. Data recovery. Your business may have backups but CIS 10 goes into the necessity of testing and proving your recovery from those backups work. This episode goes into the details and why testing your recovery processes is so important.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Information security is more than than the technology components. The physical security around the technology is just as important. This episode goes into the importance of physical security and why most need could make it a little stronger.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Phishing is still a primary tool for criminals to use to spread malware, ransomware and steal identities. Why? How can this still be a successful method when everyone has heard of it? This episode goes into some of the reasons why this is still successful.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
Facebook is part of most people's lives and that makes it a prime target for scammers. There are several ways scammers try to rip you off. This episode covers the popular ways and offers tips on how to not fall for them.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
TuneIn Radio -
The Internet of Things strikes again! The unregulated, unchecked security practices with putting internet access capability on a device will continue to cause the world problems. This times it's getting closer to something more vital, the power grid. This episode details a new report on IoT devices on solar panels that could be hacked to cause major problems.
Horus Scenario Report - https://horusscenario.com/
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
TuneIn Radio - https://beta.tunein.com/radio/Security-In-Five-p1017373/
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
Email - contactme@binaryblogger.com
Music in this episode:
Children Of The Son (Instrumental Acoustic) by PC-ONE is licensed under a Attribution License.
A new search tool has come out that allows you to search your password to see if it's part of a breach. Why? Because NIST has stated that breached passwords should never be used again, by anyone. Listen to see how hackers can exploit this.
Email Breach Search - https://haveibeenpwned.com/
Password Breach Search - https://haveibeenpwned.com/Passwords
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
Email - contactme@binaryblogger.com
Music in this episode:
Children Of The Son (Instrumental Acoustic) by PC-ONE is licensed under a Attribution License.
Next up in the Critical Security Controls is number nine, Network Limits. Much like your users and computers the network should be in a Least Privilege mode. Listen to hear the details and reasons behind this control.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
Email - contactme@binaryblogger.com
Music in this episode:
Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.
Note, this episode is over the five minutes but it's an important topic. Healthcare data is the most sought after recored on the dark markets. Why? What can be done with it and why is it the top target? Listen to this episode to get the details.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
Email - contactme@binaryblogger.com
Music in this episode:
Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.
IoT manufacturers have shown that they are not the best security practitioners. The US government has taken notice and new legislation is being moved through to put those device manufacturers on the path of best security practices. What are does the legislation go after? Listen and learn.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
Email - contactme@binaryblogger.com
Music in this episode:
Children Of The Son (Instrumental Acoustic) by PC-ONE is licensed under a Attribution License.
Next item in the CSC Top 20 series is control number eight, Malware Defense. Why is it so important and how can you use it to protect yourself? Listen in and hear how.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
Email - contactme@binaryblogger.com
Music in this episode:
With all the technology at our disposal breaches are still occurring at an unprecedented rate. Why? It may be that our programs are focusing on complexity and overlooking the basics leaving the easy path for cybercriminals. Listen to this episode as it goes into details.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
Email - contactme@binaryblogger.com
Music in this episode:
Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.We are trained to search for the best deals when we purchase items. When it comes to computers and gadgets this could be a risk to your security and privacy. Listen to see what can happen when you buy from less than trusted sources.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
Email - contactme@binaryblogger.com
Music in this episode:
Children of the Sun Instrumental by Pc-one is licensed under a Attribution-ShareAlike License.
The FTC conducted an experiment to see how PII is used in the Dark Web. The results are eye opening and shocking. Listen to hear how long stolen PII sits out there until it's bought and used by the criminal elements.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
Email - contactme@binaryblogger.com
Music in this episode:
Children of the Sunn Instrumental by Pc-one is licensed under a Attribution-ShareAlike License.
Next up in the Critical Security Controls is number seven, email and browsers. This control talks about closing the ability of easy access through email and web browsers. The control leaves one aspect out of the discussion and this episode covers it.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
Email - contactme@binaryblogger.com
Music in this episode: Children Of The Son (Instrumental Acoustic) by PC-ONE is licensed under a Attribution License.
IoT Devices are everywhere and with little to no security and privacy control. Roomba, the little robot vacuum, maps your home to work properly. Now, they will be selling your home information to the highest bidder. What does that mean for our privacy and what else is spying on us? Listen to this episode to hear more.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
Email - contactme@binaryblogger.com
The next item in the Critical Security Controls is number 6, Audit Log. Logs are only as good as the data recorded and how often you look at them. Outside of that they are not providing any value. Listen to how you can help address the Audit Log control.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
Email - contactme@binaryblogger.com
In the first six months of 2017 a report showed there has been 6 BILLION records breached. This episode breaks down where these came from, how, and what you can do from reports like this.
Article - http://www.securityweek.com/2227-breaches-exposed-6-billion-records-first-half-2017-report
Report (PDF) - https://pages.riskbasedsecurity.com/hubfs/Reports/2017%20MidYear%20Data%20Breach%20QuickView%20Report.pdf
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
Email - contactme@binaryblogger.com
Music in this episode:
Every security program has a set of policies. How often are you actually reviewing them for their effectiveness and accuracy? The world is changing around us everyday and your policies should be reviewed to match that. Are you doing it? This episode talks about why your policies should more organic and fluid.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
Email - contactme@binaryblogger.com
Continuing the breakdown of the CIS Top 20 Critical Security Controls the next one on the list is number 5, Controlling Administrative Accounts. The admin accounts have all the access in your environment, if a hacker gets those keys they can go anywhere they wish. CIS 5 drives for controlling those keys in your environment. Listen how you can work toward making sure those are not lost or misused.
Be aware, be safe.
------------------------------------
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2
Podcast RSS - http://securityinfive.libsyn.com/rss
YouTube - https://www.youtube.com/binaryblogger
Email - contactme@binaryblogger.com
Music in this episode:
Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.
Risk Management has a purpose within a security program. One of those is not to be used as your excuse to not do something. Accepting risk because lack of funds or desire to move forward is unacceptable... and risky.
Be aware, be safe.
------------------------------------ Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2 Podcast RSS - http://securityinfive.libsyn.com/rss YouTube - https://www.youtube.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.Moving on in the CIS Top 20 the next up is number 4. Continuous Vulnerability Assessments. Monitoring your environment and systems for holes is a critical aspect of any security practice. The continuous part is the most challenging. This episode talks about why it's so high on the list.
Be aware, be safe.
Reference article - https://binaryblogger.com/2016/11/09/breaking-critical-security-controls-csc-4-continuous-vulnerability-assessments/ ------------------------------------ Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2 Podcast RSS - http://securityinfive.libsyn.com/rss YouTube - https://www.youtube.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.Internet of Things is a craze to get everything on the Internet. However the rush to build has left security practices behind. Time and time again it's shown that IoT poses a security risk for everyone. This episode talks about how a fish tank almost got a casino hacked.
Be aware, be safe.
------------------------------------ Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2 Podcast RSS - http://securityinfive.libsyn.com/rss YouTube - https://www.youtube.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.Cyber Security is a difficult practice to master. You may have components today but overlooking a few simple areas can come back and bite you in bad ways. This episode goes over some of those mistakes than can turn around and be bigger problems down the road.
Be aware, be safe.
------------------------------------ Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2 Podcast RSS - http://securityinfive.libsyn.com/rss YouTube - https://www.youtube.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Children of the Sun Instrumental by PC-ONE is licensed under a Attribution-ShareAlike License.Security programs rely on user adoption and many times security projects are pushed back on from the changes they introduce. HR on the other hand seems to be able to do whatever they want. Use that to your advantage in your Identity Management program, put HR in the driver's seat and see what happens. Listen to how this works.
Be aware, be safe.
------------------------------------ Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2 Podcast RSS - http://securityinfive.libsyn.com/rss YouTube - https://www.youtube.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.We all have a Wi-Fi router in our homes but not everyone checks them regularly. Listen to the things you should review and why it's an important security routine you should do.
Be aware, be safe.
------------------------------------ Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2 Podcast RSS - http://securityinfive.libsyn.com/rss YouTube - https://www.youtube.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Starchild by Mystery Mammal is licensed under a Attribution-ShareAlike License.Next up in the CSCX Top 20 is number three, Secure Configurations. After you get your hardware and software inventories you need to ensure they are configured properly and consistently. This episode breaks it down.
Be aware, be safe.
------------------------------------ Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2 Podcast RSS - http://securityinfive.libsyn.com/rss YouTube - https://www.youtube.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Starchild by Mystery Mammal is licensed under a Attribution-ShareAlike License.Breaches occur more often than you realize, but they all aren't publicized. A service I use called Matchlight scans your personal information in the Dark Web and notifies you if it finds any. This is another tool to use to keep tabs on your private data.
* This is not a sponsored episode. A personal recommendation.
Matchlight - https://terbiumlabs.com/matchlight.html
------------------------------------ Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2 Podcast RSS - http://securityinfive.libsyn.com/rss YouTube - https://www.youtube.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Starchild by Mystery Mammal is licensed under a Attribution-ShareAlike License.With all the breaches that occur it's hard to keep track of them all. There's a website from a security professional that allows you to search your email address and report if it's been involved in any known breaches. You owe it to yourself to check it out.
Have I Been Pwned - https://haveibeenpwned.com/
Be aware, be safe.
------------------------------------ Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2 Podcast RSS - http://securityinfive.libsyn.com/rss YouTube - https://www.youtube.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Starchild by Mystery Mammal is licensed under a Attribution-ShareAlike License.We all have accounts on websites that we have long forgotten. Each one of those is a potential security risk for you left untouched. How can you keep your security risks under control? What are the risks of those old stale accounts? Listen to this episode to find out.
Be aware, be safe.
------------------------------------ Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2 Podcast RSS - http://securityinfive.libsyn.com/rss YouTube - https://www.youtube.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Starchild by Mystery Mammal is licensed under a Attribution-ShareAlike License.The next Critical Security Control is number 2, Inventory of Software. What is it? How would you go about implementing this and what are they ways it could be exploited?
Be aware, be safe.
------------------------------------ Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2 Podcast RSS - http://securityinfive.libsyn.com/rss YouTube - https://www.youtube.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Opal by Mystery Mammal is licensed under a Attribution-ShareAlike LicenseWhen you travel you need a pass to get through security and to your seat. Those little slips of paper could be very dangerous to your private information. Don't be casual with them, treat them like you would your driver's license. This episode explains why.
Be aware, be safe.
------------------------------------ Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2 Podcast RSS - http://securityinfive.libsyn.com/rss YouTube - https://www.youtube.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Opal by Mystery Mammal is licensed under a Attribution-ShareAlike License.Insider threats are just a big a concern for security teams as the outside word. How do you reduce the insider threats? Why is a challenge? This episode I talk about how employee engagement can do just that.
Be aware, be safe.
------------------------------------ Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2 YouTube - http://www.youtube.com/binaryblogger Podcast RSS - http://securityinfive.libsyn.com/rss Email - contactme@binaryblogger.com Music in this episode: Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.We begin the CIS CSC Top 20 breakdown with control number one. Inventory of authorized and unauthorized devices. What does it mean? How do you approach it? How can hackers exploit this?
Be aware, be safe.
Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2 Podcast RSS - http://securityinfive.libsyn.com/rss Email - contactme@binaryblogger.com Music in this episode: Starchild by Mystery Mammal is licensed under a Attribution-ShareAlike License.The recent ransomeware attacks should open the conversation that security is everyone's problem. Attacks like this can impact everyone and we need to help each other understand the implications of all the technology we surround ourselves with.
Be aware, be safe.
Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2 Podcast RSS - http://securityinfive.libsyn.com/rss Email - contactme@binaryblogger.com Music in this episode: Starchild by Mystery Mammal is licensed under a Attribution-ShareAlike License.Security professionals don't make policies and rules for the fun of it. There's a method to their madness. The Center of Internet Security created a list of 20 Critical Security Controls to help companies be a baseline of best practices in cybersecurity. This is the intro episode to the CIS and the Top 20 controls.
Be aware, be safe.
Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2 Podcast RSS - http://securityinfive.libsyn.com/rss Email - contactme@binaryblogger.com Music in this episode: Starchild by Mystery Mammal is licensed under a Attribution-ShareAlike License.This episode give you a very simple security tip to help you react to personal security events. Everyone should be doing this with their personal items but most if not all do not.
Be aware, be safe.
Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Children Of The Son (Instrumental Acoustic) by PC-ONE is licensed under a Attribution License.There is another widespread ransomware attack going on around the globe. This episode covers where this ransomware came from, how it's spread and how you can avoid getting hit?
MS 17-010 Patch
https://technet.microsoft.com/en-us/library/security/ms17-010.aspx
Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Children Of The Son (Instrumental Acoustic) by PC-ONE is licensed under a Attribution License.There's a popular scam where criminal call you pretending to be the IRS and saying you owe money. If you don't pay they will issue an arrest warrant. Don't fall for it. This episode breaks the scam down and how to avoid it.
Be aware, be safe.
Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Children Of The Son (Instrumental Acoustic) by PC-ONE is licensed under a Attribution License.Who would have thought E-Cigs could also be bad for your IT Security health? They could be, listen to find out how.
Be aware, be safe.
Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.Phishing emails try to trick you to take the bait, click a link and enter data to a criminal site that looks legitimate. Here are some tips on how to identify the easy red flags to make you stop and think about it before you click and get it wrong.
Be aware, be safe.
Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.Phishing emails get more complex and clever each day. A new one has surfaced that tries to trick people to send in selfies holding credit cards and IDs. Listen to how it works and how to avoid it.
Be aware, be safe.
Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.In the increasing drive to collect and sell your Internet browsing data it's more important to protect your privacy. Using a Private VPN on your computers and mobile devices can help you protect your browsing and data from prying eyes.
Be aware, be safe.
Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.We all have smartphones but we all don't secure them the same way or properly. Today we talk about a few basic security steps you can take to make your phone far more secure.
Be aware, be safe.
Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.As the lines continue to blur between corporate to home to cloud employee's personal security posture can pose a new risk with corporate assets and data. Are you starting to think about extending your reach into other networks you don't own? Should you?
Be aware, be safe.
Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger Email - contactme@binaryblogger.com Music: Children Of The Son (Instrumental Acoustic) by PC-ONE is licensed under a Attribution License.There is one item, if used regularly in a security program, will cause your program to fail. What is this item? Tune in and hear what it is and why it's so dangerous and many security professionals refuse to use them.
Be aware, be safe.
Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger Email - contactme@binaryblogger.com Music: Children Of The Son (Instrumental Acoustic) by PC-ONE is licensed under a Attribution License.The most under appreciated process most people do not do regularly or at all. Backing up your files. Everyone will hit a moment when your tech will fail, malware hits or the device is lost/stolen and you will wish you backed up your files. Google is going to help people backup their computers easier.
Be aware, be safe.
Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Children Of The Son (Instrumental Acoustic) by PC-ONE is licensed under a Attribution License.Crimes of opportunity are quick, unplanned moments by criminals that see an easy opportunity to steal your items. Simple steps can help you avoid simple yet damaging crimes.
Be aware, be safe.
Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Children Of The Son (Instrumental Acoustic) by PC-ONE is licensed under a Attribution License.Hear about one email turned out to be worth $1.9 million dollars in a very bad way. The CEO Phishing scam strikes again!
Be aware, be safe.
Website - https://www.binaryblogger.com Twitter - https://www.twitter.com/binaryblogger Email - contactme@binaryblogger.com Music in this episode: Children Of The Son (Instrumental Acoustic) by PC-ONE is licensed under a Attribution License.When you hear the word breach most think about an external attack. This is not always the case, you can be breached and have no systems compromised.
Be aware, be safe.
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
Email - contactme@binaryblogger.com
Music in this episode:
Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.
NIST (The National Institute of Standards and Technology) have taken steps to eliminate the password for the next evolution of security. Out with passwords, in with Memorized Secret. What are they? How is it more secure? Will people be able to use them?
Be aware, be safe.
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
Email - contactme@binaryblogger.com
Music in this episode:
Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.
We don't know each other but I can guess you are making one or more of these security mistakes. The reality is that fixing these are easy and will greatly improve your personal security posture.
Be aware, be safe.
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
Email - contactme@binaryblogger.com
Music in this episode:
Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.
A former administrator almost takes down an entire company through his actions. What went wrong? What were the security gaps that allowed this to happen? What would have stopped it?
Be aware, be safe.
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
Email - contactme@binaryblogger.com
Music in this episode:
Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.
A 5 minute explanation of the core component of security, the CIA triad. Confidentiality, Integrity and Availability. Everything in security can be traced back to one of those three categories.
Be aware, be safe.
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
Email - contactme@binaryblogger.com
Music in this episode:
Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.
The first episode of Security In 5, the podcast talking about security issues, tips and opinions in about five minutes. In the introduction episode Drew The Binary Blogger goes into his security background and talks about what Security in 5 is going to be about and what the listeners should walk away with.
Be aware, be safe.
Website - https://www.binaryblogger.com
Twitter - https://www.twitter.com/binaryblogger
Email - contactme@binaryblogger.com
Music in this episode:
Greenhorn by Mystery Mammal is licensed under a Attribution-ShareAlike License.
Our TOPPODCAST Picks 
