Cyber & Crypto Podcast – Episode 3

Today’s episode we will discuss the additional findings from the TimeHop breach, Business Email Compromise costs, and President Trump’s response to his DNC server that went missing.

In Crypto News, we’ll discuss recent market trends, Ethereum’s transaction spikes and my mining rig.

Cybersecurity article links:
http://links.ismgcorp.com/Y0dF880kI00Rf000pXZ0wIb
http://links.ismgcorp.com/A80W0FZX00kdbIR00p0s8fI
http://links.ismgcorp.com/iU8Z0kXbIqp00d008fR0I0F

Cryptocurrency article links:
https://www.trustnodes.com/2018/07/17/ethereums-transactions-return-700000-fees-fall-3-cent

Listen on Google Play Music

Cyber & Crypto Podcast – Episode 2

Ticketmaster Hack with widely used tools. RiskIQ says it has identified malicious code within a different third-party marketing and analytics service used by Ticketmaster. The service is developed by a company called SociaPlus.
“This supplier was also breached by the Magecart actors, and the scripts they served to customers were modified on subdomains specifically set up for Ticketmaster as a customer,” RiskIQ says. “We observed instances in December 2017 through January 2018 where the Magecart skimmer was added to one of the SociaPlus scripts and subsequently injected into multiple Ticketmaster websites.”
http://links.ismgcorp.com/I080GZf0pFIYkd0R0Z0XI08

Cryptocurrency Exchange Developer Bancor loses 23.5 Million. Based on the currently published details, it seems that the Bancor hack was enabled by permissioned backdoors that were put in the smart contracts by the team, and were presumably compromised by the attackers.
http://links.ismgcorp.com/CXI0020Kp0ZZ0kdf0R88I0F

Hospital diverts ambulances due to ransomware attack – Missouri county medical center. Happened on a Monday at 11am and that Wednesday they were only 70% restored.
http://links.ismgcorp.com/HZ0008R0kI3fZIF0p8X00Ld

Timehop breach – 21 million users are affected by a breach that exposed names, email addresses, access tokens and for some users, phone numbers. Someone obtained valid user credentials for an administrator account and then used those credentials to log into Timehop’s cloud services provider. The unauthorized user created a new administrator account and then began doing reconnaissance, Timehop says in a technical write-up.
“For the next two days, and on one day in March 2018 and one day in June 2018, the unauthorized user logged in again and continued to conduct reconnaissance,” the company says.
http://links.ismgcorp.com/n0ZI02f00Rkp0IX0f708dVF

Multi-factor Providers:
duo.com
okta.com

How-to articles for setting up 2-factor:
https://www.pcmag.com/feature/358289/two-factor-authentication-who-has-it-and-how-to-set-it-up/2
https://www.theverge.com/2017/6/17/15772142/how-to-set-up-two-factor-authentication

Follow me on Twitter @eenglish34

Listen on Google Play Music

Cyber & Crypto Podcast – Episode 1

I’m taking my 2 favorite topics and starting a podcast to discuss all things cybersecurity and cryptocurrency. This is a quick episode to get things off the ground so I can learn how to post these podcasts to the various podcast platforms. The intro episode includes my background and my passion for cyber and crypto topics. I hope you enjoy it.

Listen on Google Play Music