Security 172 – We Are TLS

    inThirty is now TLS (actually a real cert through godaddy) TCL Roku TV issue: https://www.consumerreports.org/televisions/samsung-roku-smart-tvs-vulnerable-to-hacking-consumer-reports-finds/ Kashmir Hill’s connected house exercise: https://gizmodo.com/the-house-that-spied-on-me-1822429852 Cryptomining in browsers (we may have spoken about this) Update wordpress Signal has an option to remove the invite banner http://media.blubrry.com/inthirty/p/dts.podtrac.com/redirect.mp3/inthirty.net/podcasts/Security-172-WeAreTLS.mp3

Security 170 – Slow News

  It has been a slow week. I think we just sit and talk about what happened in the last two weeks. Seriously, we were all consumed about Meltdown and Spectre. https://gizmodo.com/how-google-fights-password-thieves-1822174355 https://www.eff.org/702-spying https://arstechnica.com/tech-policy/2018/01/fcc-admits-mobile-cant-replace-home-internet-wont-lower-speed-standard/ https://www.eff.org/702-spying http://media.blubrry.com/inthirty/p/dts.podtrac.com/redirect.mp3/inthirty.net/podcasts/Security-170-SlowNews.mp3

Security 169 – Meltdown and Spectre

Tom is going to take us through these two 0 day vulnerabilities that affects literally everyone. Yes, you, go update now. https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html https://www.theregister.co.uk/2018/01/02/intel_cpu_design_flaw/ https://security.googleblog.com/2018/01/more-details-about-mitigations-for-cpu_4.html https://arstechnica.com/gadgets/2018/01/meltdown-and-spectre-every-modern-processor-has-unfixable-security-flaws/#p3 https://arstechnica.com/gadgets/2018/01/meltdown-and-spectre-every-modern-processor-has-unfixable-security-flaws/#p3 https://meltdownattack.com/ Intel Responds to Security Research Findings http://media.blubrry.com/inthirty/p/dts.podtrac.com/redirect.mp3/inthirty.net/podcasts/Security-169-Meltdown.mp3

Security 168 – New Year’s Tips

  [Edit: I didn’t record through the microphone. There is an annoying reverb/echo on my end.] So on deck: Stories of 2017: https://www.wired.com/story/2017-biggest-hacks-so-far/ AltCoins Net Neutrality End of Year cleanup Things to look forward to next year http://media.blubrry.com/inthirty/p/dts.podtrac.com/redirect.mp3/inthirty.net/podcasts/Security-168-NewYearTips.mp3