OwlTail

Cover image of TrustedSec Security Podcast

TrustedSec Security Podcast

A podcast dedicated to bringing the latest news on information security and the industry - from those that work in the industry.Get the details on the latest hacks, cybersecurity news, breaches, and security faux paus from our panel of consultants.

Popular episodes

All episodes

The best episodes ranked using user listens.

Podcast cover

2.5 – Krebs on Mirai, Rudy Cyber head, ransomware, and more!

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Dave Kennedy, Justin Elze, Geoff Walton, Scott White, Paul Burkeland, Ben Ten, Alex Hamerstone, and Sarah Norris. Show links: https://krebsonsecurity.com/2017/01/who-is-anna-senpai-the-mirai-worm-author/ http://www.welivesecurity.com/2017/01/20/ransomware-attack-hits-st-louis-public-library/ http://www.theregister.co.uk/2017/01/13/giuliani_joomla_outdated_site/ https://www.bleepingcomputer.com/news/security/chrome-users-targeted-with-malware-via-new-font-wasnt-found-technique/ Tool Time Notes: https://github.com/danielbohannon/Invoke-Obfuscation

52mins

20 Jan 2017

Rank #1

Podcast cover

3.0 - Why it matters where you put your luggage in Vegas

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, Justin Bollinger, Ben Mauch, and David Boyd. TS Podcast 3.0 SHOW NOTES Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, Justin Bollinger, Ben Mauch, and David Boyd Title: Vegas - Where Thugs Come Into Your Room And Search Your Stuff URL: https://www.secjuice.com/defcon-hotel-security-fiasco/amp/?__twitter_impression=true Author: Infosec Scribe Title: An 11-Year-Old Hacked Into a U.S. Voting System Replica in 10 Minutes This Weekend URL: http://time.com/5366171/11-year-old-hacked-into-us-voting-system-10-minutes/ Author: Alix Langone Title: Putting Stickers On Your Laptop Is Probably a Bad Security Idea URL https://motherboard.vice.com/en_us/article/pawvnk/stickers-on-laptop-operational-security-bad-idea Author: Joseph Cox Title: Practical Web Cache Poisoning Url: https://portswigger.net/blog/practical-web-cache-poisoning Author: James Kettle

41mins

17 Aug 2018

Rank #2

Similar Podcasts

Podcast cover

2.6 – Special Guest Jayson E. Street, Shadow Brokers, Google OAuth, and more!

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Dave Kennedy, Scott White, Justin Bollinger, Costa Petros, Ben Ten, Chris Prewitt, Jayson E. Street Show links: https://www.bloomberg.com/news/articles/2017-05-04/seriously-beware-the-shadow-brokers https://www.cnet.com/how-to/why-the-google-docs-scam-was-a-different-kind-of-phishing/ http://www.theregister.co.uk/2017/01/13/giuliani_joomla_outdated_site/ http://www.darkreading.com/attacks-breaches/verizon-dbir-shows-attack-patterns-vary-widely-by-industry/d/d-id/1328757 Tool Time Notes: https://github.com/trustedsec/unicorn

1hr 18mins

5 May 2017

Rank #3

Podcast cover

2.15 – FTP is still a thing – DNS and Settings Content Files!

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, Justin Bollinger, and Scott White. Show links: https://www.recordedfuture.com/reaper-drone-documents-leaked/ https://www.bleepingcomputer.com/news/security/malware-found-in-arch-linux-aur-package-repository/ https://blog.netspi.com/exploiting-adidns/ https://arstechnica.com/information-technology/2018/07/stolen-certificates-from-d-link-used-to-sign-password-stealing-malware/ https://posts.specterops.io/the-tale-of-settingcontent-ms-files-f1ea253e4d39 Tool Time Notes: https://github.com/trustedsec/unicorn

57mins

16 Jul 2018

Rank #4

Most Popular Podcasts

Podcast cover

3.23 - Merry Christmas

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, David Kennedy, and David Boyd. Title: Ransomware Gangs Now Outing Victim Businesses That Don’t Pay Up URL: https://krebsonsecurity.com/2019/12/ransomware-gangs-now-outing-victim-businesses-that-dont-pay-up/ Author: Brian Krebs Title: Chrome now warns you when your password has been stolen URL: https://www.theverge.com/2019/12/10/21004434/google-chrome-79-password-protections-security-stolen-password-data-features Author: Tom Warren Title: Breaking the Rules: A Tough Outlook for Home Page Attacks URL: https://www.fireeye.com/blog/threat-research/2019/12/breaking-the-rules-tough-outlook-for-home-page-attacks.html Authors: Matthew McWhirt, Nick Carr, Douglas Bienstock

23mins

20 Dec 2019

Rank #5

Podcast cover

3.1 - Another Epic? Struts Exploit and PHP

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, Justin Bollinger, and introducing Logan Sampson Title: Experts Urge Rapid Patching of Struts Bug URL: https://krebsonsecurity.com/2018/08/experts-urge-rapid-patching-of-struts-bug/ Author: Brian Krebs Title: Epic Games First Fortnite Installer allowed hackers to download and install silently URL: https://www.androidcentral.com/epic-games-first-fortnite-installer-allowed-hackers-download-install-silently Author: Andrew Martonik Title: The Ticking PHP Time Bomb URL https://www.linkedin.com/pulse/ticking-php-time-bomb-martin-wheatley/ Author: Martin Wheatley Title: Crowdsourcing the hunt for software bugs is a booming business—and a risky one Url: https://www.technologyreview.com/s/611892/crowdsourcing-the-hunt-for-software-bugs-is-a-booming-businessand-a-risky-one/ Author: Martin Giles

35mins

31 Aug 2018

Rank #6

Podcast cover

3.22 - Process, Process, Process

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, David Boyd, Rob Simon, and Steve Maxwell! Stories Title: A bug in Microsoft’s login system put users at risk of account hijacks URL: https://techcrunch.com/2019/12/02/microsoft-login-flaw-account-hijack/ Author: Zack Whittaker Title: It’s Way Too Easy to Get a .gov Domain Name URL: https://krebsonsecurity.com/2019/11/its-way-too-easy-to-get-a-gov-domain-name/ Author: Brian Krebs Title: Two malicious Python libraries caught stealing SSH and GPG keys URL: https://www.zdnet.com/article/two-malicious-python-libraries-removed-from-pypi/ Author: Catalin Cimpanu

29mins

6 Dec 2019

Rank #7

Podcast cover

3.21 - DoH! Robinhood Strikes Again, Nord

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Alex Hamerstone, Rob Simon, and David Boyd!  Stories Title: NordVPN users’ passwords exposed in mass credential-stuffing attacks  URL: https://arstechnica.com/information-technology/2019/11/nordvpn-users-passwords-exposed-in-mass-credential-stuffing-attacks/ Author: Dan Goodin Title: ISPs lied to Congress to spread confusion about encrypted DNS, Mozilla says  URL: https://arstechnica.com/tech-policy/2019/11/isps-lied-to-congress-to-spread-confusion-about-encrypted-dns-mozilla-says/ Author: Jon Brodkin Title: Robinhood Traders Discovered a Glitch That Gave Them ‘Infinite Leverage’  URL: https://www.bloomberg.com/news/articles/2019-11-05/robinhood-has-a-glitch-that-gives-traders-infinite-leverage Author: Brandon Kochkodin

30mins

8 Nov 2019

Rank #8

Podcast cover

2.8 – NSA and Exploit Tools, Petya, Russia, and Ransomware, systemd, Deathstar, and Office persistence methods

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Dave Kennedy, Ben Tenjamin, Geoff Walton, Chris Prewitt, Justin Bollinger Show links: http://www.nbcnews.com/news/us-news/can-cia-nsa-be-trusted-cyber-hacking-tools-n778731 https://www.theverge.com/2017/7/2/15910826/nato-response-petya-attack-state-actor-russia-ukraine https://www.reuters.com/article/us-usa-cyber-energy-idUSKBN19L2Z9 https://www.bleepingcomputer.com/news/security/systemd-bug-lets-attackers-hack-linux-boxes-via-malicious-dns-packets/ http://hosted.ap.org/dynamic/stories/E/EU_RUSSIA_KASPERSKY?SITE=KVUE&SECTION=HOME&TEMPLATE=DEFAULT https://www.binarydefense.com/petya-ransomware-without-fluff/ Tool Time Notes: https://github.com/byt3bl33d3r/DeathStar https://labs.mwrinfosecurity.com/blog/add-in-opportunities-for-office-persistence/

1hr 14mins

3 Jul 2017

Rank #9

Podcast cover

3.9 - Turn off the Internet, The Containers are Leaking, and Why are my genitals in the Enquirer

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, Alex Hamerstone, David Boyd and Jessica Ryan Title: Russia to disconnect from the internet as part of a planned test URL https://www.zdnet.com/article/russia-to-disconnect-from-the-internet-as-part-of-a-planned-test/ Author: Catalin Cimpanu Title: Doomsday Docker security hole uncovered URL: https://www.zdnet.com/article/doomsday-docker-security-hole-uncovered/ Author: Steven J. Vaughan-Nichols Title: How Bezo's dick pics might've been exposed URL: https://blog.erratasec.com/2019/02/how-bezos-dick-pics-mightve-been-exposed.html?m=1 Author: Errata Security Additional Links: https://www.keepassx.org/ https://haveibeenpwned.com/ https://www.spokeo.com/ https://pipl.com/

31mins

15 Feb 2019

Rank #10

Podcast cover

3.10 - Thunder, Flash, and Run BMC!

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, Justin Bollinger, and Jessica Ryan Title: Thunderbolt vulnerabilities leave computers wide-open  URL: https://www.itnews.com.au/news/thunderbolt-vulnerabilities-leave-computers-wide-open-519855 Author: Juha Saarinen Title: Microsoft Edge lets Facebook run Flash code behind users' backs  URL: https://www.zdnet.com/article/microsoft-edge-lets-facebook-run-flash-code-behind-users-backs/ Author: Catalin Cimpanu Title: Supermicro hardware weaknesses let researchers backdoor an IBM cloud server  URL: https://arstechnica.com/information-technology/2019/02/supermicro-hardware-weaknesses-let-researchers-backdoor-an-ibm-cloud-server/ Author: Dan Goodin Tool Time Tool: Monitor.App URL: https://www.fireeye.com/services/freeware/monitor.html Author: FIREEYE

31mins

1 Mar 2019

Rank #11

Podcast cover

3.14 - Pi

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Scott White, Justin Bollinger, and David Boyd! Stories   Title: Exposing lockbox rental scam URL: https://www.cbs46.com/investigations/better_call_harry/better-call-harry-exposing-lockbox-rental-scam/article_d9a7242a-6ae4-11e9-bad4-b3ba30648147.html Author: Harry Samler (CBS46 Atlanta) Title: In a first, Israel responds to Hamas hackers with an air strike URL: https://www.zdnet.com/article/in-a-first-israel-responds-to-hamas-hackers-with-an-air-strike/#ftag=RSSbaffb68 Author: Catalin Cimpanu Title: Uber apologizes after racist tweet URL: https://mashable.com/article/uber-racist-tweet Author: Jake Morse

36mins

10 May 2019

Rank #12

Podcast cover

3.20 - So Much is Broken

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, David Boyd, Justin Bollinger, and Alex Hamerstone!  Stories Title: Hacker Releases 'Unpatchable' Jailbreak For All iOS Devices, iPhone 4s to iPhone X URL: https://thehackernews.com/2019/09/bootrom-jailbreak-ios-exploit.html?m=1 Author: Mohit Kumar Title: Researchers uncover 125 vulnerabilities across 13 routers and NAS devices URL: https://www.helpnetsecurity.com/2019/09/17/vulnerabilities-iot-devices/ Title: Mozilla Won't Turn on DoH as Default in the UK Like It's Planning to Do in the US URL: https://www.gizmodo.co.uk/2019/09/mozilla-doh-not-default-in-uk/ Author: Shabana Arif Letters We have good success using the historical DNS data available at https://securitytrails.com to locate the origin servers. This facilitates bypassing filtering to attack web applications.

25mins

4 Oct 2019

Rank #13

Podcast cover

3.2 - Airlines: E-mail and Intel

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Hans Lakhan, Justin Bollinger, and introducing Logan Sampson Title: British Airways breach caused by the same group that hit Ticketmaster URL: https://www.zdnet.com/article/british-airways-breach-caused-by-the-same-group-that-hit-ticketmaster/ Author: Catalin Cimpanu Title: Microsoft to offer paid Windows 7 Extended Security Updates URL: https://www.zdnet.com/article/microsoft-to-offer-paid-windows-7-extended-security-updates/ Author: Mary Jo Foley Title: An Approach to Bypassing Mail Filters URL https://silentbreaksecurity.com/bypassing-mail-filters/ Author: Will Pearce Title: Five-Eyes Intelligence Services Choose Surveillance Over Security Url: https://www.schneier.com/blog/archives/2018/09/five-eyes_intel.html Author: Bruce Schneier

33mins

14 Sep 2018

Rank #14

Podcast cover

3.15 - Let us Diagnose Your Information Security Failings

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Justin Bollinger, and Steve Maxwell! Stories Title: Quest Diagnostics Says Up to 12 Million Patients May Have Had Financial, Medical, Personal Information Breached  URL: https://www.nbcnewyork.com/news/local/Quest-Diagnostics-12-Million-People-Data-Breach-510754611.html Author: NBC New York Title: Google disables Baltimore's Gmail accounts used during ransomware recovery  URL: https://www.baltimoresun.com/maryland/baltimore-city/bs-md-ci-gmail-accounts-20190523-story.html Author: Ian Duncan Title: Microsoft warns of major WannaCry-like Windows security exploit, releases XP patches  URL: https://www.theverge.com/2019/5/14/18623565/microsoft-windows-xp-remote-desktop-services-worm-security-patches Author: Tom Warren

35mins

7 Jun 2019

Rank #15

Podcast cover

3.13 - The Law, Passwords, 5G and GRC

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, Justin Bollinger, and David Boyd! Stories Title: The Feds Are Dropping Child Porn Cases Instead of Revealing Info on Their Surveillance Systems URL: https://reason.com/2019/04/24/the-feds-are-dropping-child-porn-cases-instead-of-revealing-info-on-their-surveillance-systems/ Author: Elizabeth Nolan Brown Title: Microsoft admits expiring-password rules are useless URL: https://www.cnet.com/news/microsoft-admits-expiring-password-rules-are-useless/ Author: Ian Sherr Title: Huawei row: UK to let Chinese firm help build 5G network URL: https://www.bbc.com/news/uk-48032286 Author: BBC

36mins

26 Apr 2019

Rank #16

Podcast cover

3.17 - The End of End to End

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, David Boyd, and Alex Hamerstone. Title: Kazakhstan's HTTPS Interception URL: https://censoredplanet.org/kazakhstan Author: Ram Sundara Raman1, Leonid Evdokimov, Eric Wustrow2, Alex Halderman1, Roya Ensafi Title: DMARC's abysmal adoption explains why email spoofing is still a thing URL: https://www.zdnet.com/article/dmarcs-abysmal-adoption-explains-why-email-spoofing-is-still-a-thing/ Author: Catalin Cimpanu Title: My browser, the spy: How extensions slurped up browsing histories from 4M users URL: https://arstechnica.com/information-technology/2019/07/dataspii-inside-the-debacle-that-dished-private-data-from-apple-tesla-blue-origin-and-4m-people/ Author: Dan Goodin

26mins

2 Aug 2019

Rank #17

Podcast cover

3.7 - Intelligence and an End to USB Espionage?

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, Scott White, David Kennedy, and Alex Hamerstone Title: NSA to release a free reverse engineering tool  URL https://www.zdnet.com/article/nsa-to-release-a-free-reverse-engineering-tool/ Author: Catalin Cimpanu Title: USB Type-C Authentication Program launched to protect your devices  URL https://newatlas.com/usb-c-authentication-program/57844/ Author: Paul Ridden Title: The 6 reasons why Huawei gives the US and its allies security nightmares URL: https:// www.technologyreview.com/s/612556/the-6-reasons-why-huawei-gives-the-us-and-its-allies-security-nightmares/ Author: Martin Giles and Elizabeth Woyke Tool Time: Tool by: GitHub user ecthros URL: https://github.com/ecthros/uncaptcha2

30mins

11 Jan 2019

Rank #18

Podcast cover

3.6 - Facebook and China China China

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, David Boyd, Justin Bollinger, and Alex Hamerstone Title: facebook reaveals bug exposed 6.8 million users’ photos URL https://www.cnn.com/2018/12/14/tech/facebook-private-photos-exposed-bug/index.html Author: Donie O’Sullivan Title: As Facebook Raised a Privacy Wall, It Carved an Opening for Tech Giants URL https://www.nytimes.com/2018/12/18/technology/facebook-privacy.htmlAuthor: Donie O’Sullivan Author: Gabriel Dance Title: Hackers swipe card numbers from local government payment portals URL: https://www.zdnet.com/article/hackers-swipe-card-numbers-from-local-government-payment-portals/ Author: Catalin Cimpanu Title: Chinese spies reportedly behind massive Marriott hack URL: https://www.cnet.com/news/chinese-spies-reportedly-behind-massive-marriott-hack/ Author: Steven Musil

32mins

21 Dec 2018

Rank #19

Podcast cover

3.8 - Updating Your Reputable Plugins

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, Scott White, and Jessica Ryan Title: How Web Apps Can Turn Browser Extensions Into Backdoors URL: https://threatpost.com/web-apps-browser-extensions-backdoors/141061/ Author: Tom Spring Title: How Web Apps Can Turn Browser Extensions Into Backdoors URL: https://threatpost.com/web-apps-browser-extensions-backdoors/141061/ Author: Tom Spring             Link to original research: http://www-sop.inria.fr/members/Doliere.Some/papers/empoweb.pdf Title: Most out of date applications exposed: Shockwave, VLC and Skype top the list URL: https://www.helpnetsecurity.com/2019/01/23/most-out-of-date-applications/ / Author: Unspecified

28mins

28 Jan 2019

Rank #20