Thom, Andy, and Javvad give you another amazing, insightful, and wonderfully put together show This week in InfoSec proves it is never DNS. Spoiler alert, it is always DNS. Rant of the Week tells us how the tables have turned. Billy Big Balls is Big Brother always watching you. Industry News is the latest and greatest security news stories from around the world And Tweet of the Week is a non infosec tip on staying in your family’s life forever.
8th July 2008: Several DNS vendors released patches to mitigate an attack method discovered by Dan Kaminsky which could be used to cause DNS cache poisoning. Kaminsky had discovered the vulnerability 6 months prior and reported it to vendors privately so they could address it. RIP, Dan.
https://x.com/todayininfosec/status/1942695691270193211
10th July 1999: Cult of the Dead Cow (cDc) member DilDog debuted the program Back Orifice 2000 (BO2k) at DEF CON 7. It was the successor to Back Orifice, released by cDc a year prior. DilDog proclaimed it "a remote administration tool for corporate America".
https://x.com/todayininfosec/status/1943440335608385876
Outsourced Trust: How Coinbase's $400M Problem Started in an Indian Call Center
The GPS Leak No One Talked About: Uffizio’s Silent Exposure
Hundreds of Malicious Domains Registered Ahead of Prime Day
M&S Chair Details Ransomware Attack, Declines to Confirm if Payment Was Made
Chinese State-Sponsored Hacker Charged Over COVID-19 Research Theft
Qantas Confirms 5.7 Million Customers Hit by Data Breach
Tribunal Ruling Brings ICO’s £12.7m TikTok Fine Closer
Four Arrested in Connection with April UK Retail Attacks
TikTok's Handling of EU User Data in China Comes Under Scrutiny Again
LLMs Fall Short in Vulnerability Discovery and Exploitation
MPs Warn of “Significant” Iranian Cyber-Threat to UK