This week in Infosec reminds us of how smart researchers name viruses Rant of the Week is a story about security through obscurity Billy Big Balls is a story that starts with oink oink Industry News brings us the latest and greatest security news stories from around the world And Tweet of the Week calls out Corporate social media accounts on their platitudes
This Week in InfoSec (08:22)
With content liberated from the “today in infosec” Twitter account and further afield
6th March 1992: The Michelangelo virus, so-named because it activates on March 6, the birthday of Michelangelo, begins infecting computers. The virus will also make news in 1993. It was one of the earliest viruses to receive widespread media attention and also one of the first to prompt widespread hysteria. The irony of the name of the virus was that nothing in the virus’ code referenced Michelangelo. It is possible the virus author, who was never identified, did not know March 6th was Michelangelo’s birthday!
9th March 1999: United States Vice President Al Gore gives an interview on CNN’s Late Edition in which he states, “During my service in the United States Congress, I took the initiative in creating the Internet. I took the initiative in moving forward a whole range of initiatives that have proven to be important to our country’s economic growth and environmental protection, improvements in our educational system.” This is the infamous statement which will be widely misquoted as “I invented the Internet.”
Rant of the Week (13:59)
Most Orgs Would Take Security Bugs Over Ethical Hacking Help
A new survey suggests that security is becoming more important for enterprises, but they’re still falling back on old “security by obscurity” ways.
Enterprises are putting greater stock in cybersecurity, but outdated “security by obscurity” is still prevailing as companies wrestle with security awareness and shy away from bug-bounty programs.
That’s according to new survey data from HackerOne, which found that a full 65 percent of organizations surveyed claimed that they “want to be seen as infallible.” However, just as many – 64 percent – said they practice a culture of security through obscurity, where secrecy is used as the primary method of protecting sensitive systems and assets.
Carole's Colossal Cahones (24:49)
When Pigs Cry: Tool decodes the Emotional Lives of Swine
https://www.nytimes.com/2022/03/09/science/pigs-oinks-grunts.html
Industry News (30:31)
Dirty Pipe Exploit Rings Alarm Bells in the Linux Community
Chinese APT41 Group Compromises Six US Government Networks
Prison for Man Who Scammed US Government to Buy Pokémon Card
UK Announces New Rules to Tackle Surging Online Scam Adverts
Over 90% of Exposed Russian Cloud Databases Compromised
AI Accountability Framework Created to Guide Use of AI in Security
Conti Group Spent $6m on Salaries, Tools and Services in a Year
Tweet of the Week (39:33)
https://twitter.com/achornback/status/1501677184515256321?s=12
