The boys are joined by the award winning podcaster Carole Theriault of Smashing Security and the wonderful Sticky Pickles podcast. We play our new game "Smut or Security?" and after wiping ourselves off we get on with the regular show. Smut or Security This Week in InfoSec Tweet of the Week Double Rant of the week Will we have a Little people today?
The fourth member of the Host Unknown trio, Carole Theriault, joins the podcast to bring an air of respectability to proceedings. Needless to say it was an uphill struggle.
This weeks show brings you, dear listener:
Smut or Security
Do you know the difference between your smut and your security?
This Week in InfoSec
(Liberated from the “today in infosec” twitter account):
30th October 2001: The author of the Nimda worm released a new variant that was functionally identical, but included a comment that it should be referred to as Concept Virus, not Nimda. It didn't happen - it got named Nimda.e. That’s right bitches.
https://twitter.com/todayininfosec/status/1322141461949927424?s=20
30th October 2013: Adobe revealed that a breach of 2.9 million customer accounts made public 3 weeks earlier actually affected 38 million users.
https://twitter.com/todayininfosec/status/1322306716114001920?s=20
31st October 2005: Winternals researcher Mark Russinovich posted to his blog a detailed description and technical analysis of F4I's XCP software that he ascertained had been recently installed on his computer by a Sony BMG music CD.
https://twitter.com/todayininfosec/status/1322629012540157952?s=20
2nd November 1988: The Morris worm spread like wildfire and was the first worm to get wide media attention.
After its author, Robert Tappan Morris, released his "experiment", it quickly spread and made many of the systems on the Internet unusable - an epoch for security...both good and bad.
It was one of the first computer worms distributed via the Internet, and the first to gain significant mainstream media attention. It also resulted in the first felony conviction in the US under the 1986 Computer Fraud and Abuse Act.
https://twitter.com/todayininfosec/status/1323248705164791814?s=20
Tweet of the Week
Flushing Away Preconceptions of Risk
https://twitter.com/StevenShorrock/status/1323335595465318401?s=20
https://www.independent.co.uk/news/uk/home-news/bacteria-toilets-flush-lid-closed-b1535481.html
Double Rant of the week #1
The Poilce in the US struck a deal with Amazon to violate peoples Rings
https://www.eff.org/deeplinks/2020/11/police-will-pilot-program-live-stream-amazon-ring-cameras
The police surveillance center in Jackson, Mississippi, will be conducting a 45-day pilot program to live stream the security cameras, including Amazon Ring cameras, of participating residents.
While people buy Ring cameras and put them on their front door to keep their packages safe, police use them to build comprehensive CCTV camera networks blanketing whole neighborhoods. says the EFF
Only a few months ago, Jackson stood up for its residents, becoming the first city in the southern United States to ban police use of face recognition technology. Clearly, this is a city that understands invasive surveillance technology when it sees it, and knows when police have overstepped their ability to invade privacy.
Industry News
Ping Identity Acquires Symphonic to Boost API and Data Security Offering
Florida Invests in Security Controls Ahead of #Election2020
NCSC Partners with Microsoft to Support Cyber Accelerator Program
Google Forms Used In Password-Stealing Spree: What You Need To Know
Double Rant of the week #2
Carole's Nasty Tweet (no screenshot, the nob deleted it.
The Little People
We were joined by Smashing Security's Terry Graham.