Security 176 – More Facebook Fallout

We are talking part 2 of the Facebook mess We are also quickly talking about: https://stopsesta.org/#facts https://www.eff.org/deeplinks/2018/03/secure-messaging-more-secure-mess https://www.bleepingcomputer.com/news/security/drupal-fixes-drupalgeddon2-security-flaw-that-allows-hackers-to-take-over-sites/ . https://www.eff.org/deeplinks/2018/02/cloud-act-dangerous-expansion-police-snooping-cross-border-data https://en.wikipedia.org/wiki/Transport_Layer_Security#TLS_1.3 http://media.blubrry.com/inthirty/p/inthirty.net/podcasts/Security-176-MoreFacebook.mp3

Security 175 – Cambridge Analytica and Facebook

    We are discussing what Cambridge Analytica did in relationship to getting data from Facebook. We are not having a political discussion. https://www.cnn.com/2018/03/21/politics/trump-campaign-cambridge-analytica/index.html https://www.npr.org/sections/thetwo-way/2018/03/21/595470164/in-hidden-camera-expose-cambridge-analytica-executives-boast-of-role-in-trump-wi https://www.eff.org/deeplinks/2018/03/how-change-your-facebook-settings-opt-out-platform-api-sharing http://media.blubrry.com/inthirty/p/inthirty.net/podcasts/Security-175-CambridgeAnalytica.mp3

Security 174 – Work Email is for Work

In the situation where you have to keep things secret, like how to pay off someone that may talk to the media, we want you to do it right. Other Link: https://www.tunnelbear.com/blog/tunnelbear_joins_mcafee/ https://community.letsencrypt.org/t/acme-v2-and-wildcard-certificate-support-is-live/55579 http://media.blubrry.com/inthirty/p/inthirty.net/podcasts/Security-174-OpSec.mp3

Security 173 – Browser Cryptomining

We are going to start off with Chrome’s new Ad blocking feature. Links here: https://www.theverge.com/2018/2/14/17011266/google-chrome-ad-blocker-features We will then go into the pros and cons of crypto mining in the browser https://coinhive.com/ http://media.blubrry.com/inthirty/p/inthirty.net/podcasts/Security-173-BrowserCryptomining.mp3

Security 172 – We Are TLS

    inThirty is now TLS (actually a real cert through godaddy) TCL Roku TV issue: https://www.consumerreports.org/televisions/samsung-roku-smart-tvs-vulnerable-to-hacking-consumer-reports-finds/ Kashmir Hill’s connected house exercise: https://gizmodo.com/the-house-that-spied-on-me-1822429852 Cryptomining in browsers (we may have spoken about this) Update wordpress Signal has an option to remove the invite banner http://media.blubrry.com/inthirty/p/inthirty.net/podcasts/Security-172-WeAreTLS.mp3