This week in Infosec takes us back to an infosec rap artist who predates even Host Unknown and reminds us of just how recently responsible disclosure became a thing. Rant of the week talks about a McDonalds cold war. Industry News brings us the latest and greatest infosec news from around the globe Tweet of the Week is a simple reminder to take care of yourself Billy big Balls: Signal to Cellebrite - Bye Felicia! Sticky Pickle of the week is about students pushing the boundaries of ethics If the sky falls, tall people will be killed first. And that is something positive we have to say about Little People this week.
Thom’s l33t crypto coin investments
This week in Infosec
Liberated from the “today in infosec” twitter account:
18th April 1995: proff (Julian Assange) published "The Dan Farmer Rap", about SATAN author, Dan Farmer.
Yes, that Julian Assange.
Yes, the same one.
Yes.
https://seclists.org/bugtraq/1995/Apr/195
19th April 2010: The OWASP Top 10 for 2010 was officially released.
https://twitter.com/todayininfosec/status/1251895022598803457
19th April 2011: Microsoft published a policy requiring employees to follow specific procedures when reporting vulnerabilities in 3rd-party products.
https://twitter.com/todayininfosec/status/1252023386026340352
Rant of the Week
They Hacked McDonald’s Ice Cream Machines—and Started a Cold War
https://www.wired.com/story/they-hacked-mcdonalds-ice-cream-makers-started-cold-war/
Billy Big Balls
Cellebrite makes software to automate physically extracting and indexing data from mobile devices.
https://signal.org/blog/cellebrite-vulnerabilities/
ELI5: https://twitter.com/ErrataRob/status/1385020198697291777?s=20
Industry News
Google to Delay Publishing Bug Details for 30 Days
ICO Issued Over £42 Million in Fines Last Year
FIN7 Sysadmin Gets 10 Years Behind Bars
Google Trumpets New Mobile App Security Standard
MI5: 10,000+ Brits Approached by Spies on Social Site
Dating Service Suffers Data Breach
TikTok Sued Over Use of Minors’ Data
DoJ Launches Ransomware Taskforce as Apple Hit by Extortion Attempt
Stallone Classic a Password Favorite
Tweet of the Week
https://twitter.com/H3KTlC/status/1385232019387404296?s=20
Related:
Add another cause of mental health concern from the past year’s Pandemic-induced, work-from-home requirements. New research from Microsoft shows the potential downside of the virtual workplace, confirming that stress increases over the course of back-to-back virtual meetings.
Sticky Pickle of the Week
Hat-tip to Martin @maxsec Hepworth for bringing this story to our attention (and the reason Smashing Security missed it is because they record on Tuesday and spend a day and a half editing their show before releasing it):
“Linux kernel developers do not like being experimented on”
https://twitter.com/gregkh/status/1384785747874656257?s=20
https://lore.kernel.org/linux-nfs/YH%2FfM%2FTsbmcZzwnX@kroah.com/
