Cyber & Crypto Podcast – Episode 8

Today we discuss:

Cybersecurity:
Unsecured server exposes 157GB of highly sensitive data from Tesla and Toyota. A company called Level One Robotics
https://www.csoonline.com/article/3291328/security/unsecured-server-exposes-157-gb-of-highly-sensitive-data-from-tesla-toyota-and-more.html

Bluetooth Vulnerability
https://thehackernews.com/2018/07/bluetooth-hack-vulnerability.html

iPhone Hacking Campaign Using MDM Software is Broader than Previously Known
https://thehackernews.com/2018/07/mdm-software-hack-iphone.html

Cryptocurrency:

Head of Hacked Bitcoin Exchange Pleads Guilty to US Charges – BitFunder
http://links.ismgcorp.com/NX00GZRd000gIYI85kF0f0p

Tron Foundation Acquires BitTorrent and uTorrent
https://www.coindesk.com/tron-foundation-completes-acquisition-of-bittorrent/
https://thehackernews.com/2018/06/tron-cryptocurrency-bittorrent.html

Follow me on Twitter: @eenglish34

https://itunes.apple.com/us/podcast/cyber-security-cryptocurrency-podcast-with-eric-english/id1414720078?mt=2#

Listen on Google Play Music

Cyber & Crypto Podcast – Episode 7

Episode 7 we discuss:

Cybersecurity-
Circumventing 2-Factor for O365
https://www.proofpoint.com/us/corporate-blog/post/microsoft-office-365-attacks-circumvent-multi-factor-authentication-lead-account

The LabCorp attack was actually a Ransomware attack:
http://links.ismgcorp.com/P080k0dZpX0INF040fhIfR0

Singapore Healthcare hack leaked 1.5 million patient’s data
http://links.ismgcorp.com/Mk8I0R0fZ4Ffd00kp0IX0Q0

How Google stopped employee phishing:
https://krebsonsecurity.com/2018/07/google-security-keys-neutralized-employee-phishing/

Cryptocurrency-
The release of Ripple Lite:
ripplelite.net

Coinbase Acquisition?

Google, Facebook Ad Ban Reversal Fuels Coinbase Acquisition Rumors

ETH based game called FOMO
https://ambcrypto.com/ethereum-eth-based-game-fomo-3d-makes-a-splash-branded-bitconnect-2-0/

Another Blockchain based game
dragonglass.com

Follow me on Twitter: @eenglish34

https://itunes.apple.com/us/podcast/cyber-security-cryptocurrency-podcast-with-eric-english/id1414720078?mt=2#

Listen on Google Play Music

Cyber & Crypto Podcast – Episode 6

On Episode 6 we discuss:

Cybersecurity:
Singapore’s Largest Healthcare Group Hacked
https://thehackernews.com/2018/07/singapore-healthcare-breach.html

Russian hackers hacked 3 2018 Midterm Election Candidates
https://thehackernews.com/2018/07/russia-election-hacking.html

Cryptocurrency:
New ERC-20 Token taking over. ZIL
https://globalcoinreport.com/zilliqa-rises-as-ethereum-fails-to-answer/
cryptohopper.com

Follow me on Twitter: @eenglish34

https://itunes.apple.com/us/podcast/cyber-security-cryptocurrency-podcast-with-eric-english/id1414720078?mt=2#

Listen on Google Play Music

Cyber & Crypto Podcast – Episode 5

Episode 5 of the Cybersecurity & Cryptocurrency Podcast we discuss:

Cybersecurity:
LabCorp Cyber Attack:
http://links.ismgcorp.com/K00RFZX00p8I0edfI8dk0I0

Cryptocurrency:
Using Blockchain for Identity Management:
http://links.ismgcorp.com/R00pFfdXRd0000I0ZGI8ck8

Coinbase Trio Acquisition and potential new coins listing
https://globalcoinreport.com/regulators-approve-coinbase-acquisitions/
New coins are Stellar, Cardano, 0x, Basic Attention Token, and Zcash.
Acquisitions include Digital Wealth LLC, Venovate Marketplace Inc, and Keystone Capital Corp.

Follow me on Twitter: @eenglish34

https://itunes.apple.com/us/podcast/cyber-security-cryptocurrency-podcast-with-eric-english/id1414720078?mt=2#

Listen on Google Play Music

Cyber & Crypto Podcast – Episode 4

Episode 4

Cybersecurity-
We discuss a recent Business Email Compromise that happened at my job and the lessons I learned from it. We also discuss personal security when traveling, VPN services, and Password Managers.

Cryptocurrency-
We discuss SmartCash mining issues with Claymore, starting your own ERC-20 Token, and recent trends in cryptojacking malware.

Business Email Compromise Article:
http://links.ismgcorp.com/HZ0008R0kILf8IF0pcX00gd

Password managers:
www.dashlane.com
www.1password.com

Personal VPN Services:
www.privateinternetaccess.com
www.nordvpn.com

Making your own ERC-20 Token:
www.coinlaunch.market

My GitHub script for removing emails from Office 365:
https://github.com/eenglish34/O365-Powershell

Follow me on Twitter: @eenglish34

Listen on Google Play Music

Cyber & Crypto Podcast – Episode 3

Today’s episode we will discuss the additional findings from the TimeHop breach, Business Email Compromise costs, and President Trump’s response to his DNC server that went missing.

In Crypto News, we’ll discuss recent market trends, Ethereum’s transaction spikes and my mining rig.

Cybersecurity article links:
http://links.ismgcorp.com/Y0dF880kI00Rf000pXZ0wIb
http://links.ismgcorp.com/A80W0FZX00kdbIR00p0s8fI
http://links.ismgcorp.com/iU8Z0kXbIqp00d008fR0I0F

Cryptocurrency article links:
https://www.trustnodes.com/2018/07/17/ethereums-transactions-return-700000-fees-fall-3-cent

Listen on Google Play Music

Cyber & Crypto Podcast – Episode 2

Ticketmaster Hack with widely used tools. RiskIQ says it has identified malicious code within a different third-party marketing and analytics service used by Ticketmaster. The service is developed by a company called SociaPlus.
“This supplier was also breached by the Magecart actors, and the scripts they served to customers were modified on subdomains specifically set up for Ticketmaster as a customer,” RiskIQ says. “We observed instances in December 2017 through January 2018 where the Magecart skimmer was added to one of the SociaPlus scripts and subsequently injected into multiple Ticketmaster websites.”
http://links.ismgcorp.com/I080GZf0pFIYkd0R0Z0XI08

Cryptocurrency Exchange Developer Bancor loses 23.5 Million. Based on the currently published details, it seems that the Bancor hack was enabled by permissioned backdoors that were put in the smart contracts by the team, and were presumably compromised by the attackers.
http://links.ismgcorp.com/CXI0020Kp0ZZ0kdf0R88I0F

Hospital diverts ambulances due to ransomware attack – Missouri county medical center. Happened on a Monday at 11am and that Wednesday they were only 70% restored.
http://links.ismgcorp.com/HZ0008R0kI3fZIF0p8X00Ld

Timehop breach – 21 million users are affected by a breach that exposed names, email addresses, access tokens and for some users, phone numbers. Someone obtained valid user credentials for an administrator account and then used those credentials to log into Timehop’s cloud services provider. The unauthorized user created a new administrator account and then began doing reconnaissance, Timehop says in a technical write-up.
“For the next two days, and on one day in March 2018 and one day in June 2018, the unauthorized user logged in again and continued to conduct reconnaissance,” the company says.
http://links.ismgcorp.com/n0ZI02f00Rkp0IX0f708dVF

Multi-factor Providers:
duo.com
okta.com

How-to articles for setting up 2-factor:
https://www.pcmag.com/feature/358289/two-factor-authentication-who-has-it-and-how-to-set-it-up/2
https://www.theverge.com/2017/6/17/15772142/how-to-set-up-two-factor-authentication

Follow me on Twitter @eenglish34

Listen on Google Play Music

Cyber & Crypto Podcast – Episode 1

I’m taking my 2 favorite topics and starting a podcast to discuss all things cybersecurity and cryptocurrency. This is a quick episode to get things off the ground so I can learn how to post these podcasts to the various podcast platforms. The intro episode includes my background and my passion for cyber and crypto topics. I hope you enjoy it.

Listen on Google Play Music