Podcasts in Thirty Minutes or Less
The feed for Security
The big topic of the week is that if you had a Western Digital MyBook from 2015, there was a bug/exploit that wiped all your data. We talk about the bug, and whose fault it is (WD). Then we finished up with their response, which was as good as can be given the circumstances.
https://arstechnica.com/gadgets/2021/06/hackers-exploited-0-day-not-2018-bug-to-mass-wipe-my-book-live-devices/
https://www.bleepingcomputer.com/news/security/wd-my-book-nas-devices-are-being-remotely-wiped-clean-worldwide/
We cover two recent stories on what we call “Good Police Work.” Without breaking encryption, the police find ways to catch criminals.
How the FBI Tricked Criminals into Using its Messaging App
https://www.justice.gov/opa/pr/department-justice-seizes-23-million-cryptocurrency-paid-ransomware-extortionists-darkside
TLDR: Give up on securing email. Its a trashfire and wasn’t design with security in mind. Everything about email from the protocol, to the clients, to the layers and layers of stuff built on top of it isn’t designed with security in mind.
Forbes put out an article on how Signal has some weaknesses using the after first unlock theory.
TL;DR – Yes, but not limited to signal. Power off your phone if you are worried.
There was more news from the WhatsApp privacy fallout that we decided to have another show.
As you know, we have moved to signal. If you want an invite, tweet the show, or find one of us.
TL;DR, if you are using whatsapp to send cat photos to your family, you are ok. If you are using whatsapp business, they are making changes.
https://gizmodo.com/this-was-whatsapps-plan-all-along-1846060382
