Liquidmatrix Security Digest Podcast – Episode 2D

Episode 0x2D

Nobody loves us.

It’s all about us this week. Well, not really. It’s more about getting the world to get off the crazy train.

1. Upcoming this week…
2. Lots of News
3. Kittens
4. Breaches
5. SCADA / Cyber, cyber… etc.
6. finishing it off with DERPs/Mailbag and
7. There will NOT be a DEEP DIVE
8. And there are weekly Briefs – no arguing or discussion allowed

And if you’ve got commentary, please sent it to mailbag@liquidmatrix.org for us to check out.

DISCLAIMER: It’s not that explicit, but you may want to use headphones if you’re at work.

ADDITIONAL DISCLAIMER: In case it is unclear, this is the story of 5 opinionated infosec pros who have sufficient opinions of their own they don’t need to speak for anyone except themselves. Ok? Good.

In this episode:

• News and Commentary
1. The web is a bad bad place
2. SSL: Intercepted today, decrypted tomorrow (or why you need to use PFS)
   (but PFS TLS has a peformance impact)
3. The Future of Civil Disobedience Online
4. OECD complaint against finfisher
5. The personal side of taking on the NSA: emerging smears
• Breaches
1. Facebook exposes itself
2. Opera’s breach lady sings
3. 47k student teachers in Florida exposed
• SCADA / Cyber, cyber… etc
1. So you want to be a CIP consultant.
2. Australia decides not to be American
• DERP
1. South Korea misidentifies China as cyberattack origin
• Mailbag

1. Hi,

   Greetings!

   Would you be interested to reach out to your target market for your Marketing Initiatives like Email Marketing, Tele Marketing, Direct Mailing and Fax Campaigns?

   Our list comes with the following information such as: First Name, Last Name, Title, Email, Tele-phone Number, Mobile Number, Company, Current Address, Country State/Province, City, Zip Code, Employee size, Sales; SIC Code/Industry, NAICS and Web Address.

   If you are interested please send me your target audience and geographical area, so that I can get back to you with exact counts and list details.

   Best Regards,

   Linda

   Lead Generation

• Briefly — NO ARGUING OR DISCUSSION ALLOWED
1. Burp trips and tricks PDF
2. Cyanogen mod gets secure messaging
3. Running a Hackerspace
4. Raspberry Pi bot tracks hacker posts to vacuum up passwords and more
5. MITM via PPTP
6. Hacking monopoly
7. Pentagon’s failed flash drive ban policy: A lesson for every CIO
• Liquidmatrix Staff Projects
1. The Liquidmatrix Vegas Party- You’ve asked when and where – that’d be “We don’t know yet” and “The week of Blackhat/BSides/DEFCON”. You can beg your way onto the list by sending an email to vegas2013party@liquidmatrix.org.
2. The BSidesLV Ticket Give-away-

   Three tickets up for grabs:

   • best original piece of artwork incorporating a security rock star; bonus points for using a unicorn
   • best rap song about a major breach
   • best poem describing a vendor DERP

   Judging will be done by The Liquidmatrix Intern. Mocking will be done by us. I’d suggest you start buying a vote early. Email your submission to bsideslv2013@liquidmatrix.org

3. The Security Conference Library
4. Contribute to the Strategic Defense Execution Standard (#SDES) and you’ll be Doing Infosec Right in no time.
5. If you’re interested in helping out with openCERT.ca, drop a line to info@openCERT.ca
6. Upcoming Appearances: James Training (with Rich Mogull) and Matt Speaking at BHUSA. Dave now will be writing for CSO Online and will be attending Black Hat, DEF CON, Secure Asia in Manila and Security Congress 2013 in Chicago and Hackfest in Quebec City. Matt and Wil will be at Blackhat/DEF CON and James, Ben and Dave will be joined by Mike Rothman for SecTor 2013’s return of the (canadian) fail panel.
• In Closing
1. Word of the Week — Cyberlympics – I think it means CTF, but I’m not sure. Check it out here.
2. Movie Review — Firewall! Because you know that Harrison Ford can type 120 words per minute.
3. everyday is CTF! go set up a team
4. Hackfest registration is open
5. Signing up for a SANS course? Be sure to use the code “Liquidmatrix_150” and save $150 off the course fee! And Liquidmatrix_5 for 5% off a course
6. Use discount code liquidmatrix-2013 to receive 10% off the registration price. Can’t attend the full conference? Use code liquidmatrix-expo2013 to gain free access to the expo ($50 value).SecTor 2013
7. Seacrest Says: Good night Kitten

Download the MP3

Listen:

Subscribe to us using plain old

Also, we’re now available through

Creative Commons license: BY-NC-SA