It's a storage showdown as Jim and Wes bust some performance myths about RAID and ZFS.
\n\nPlus our favorite features from Fedora 32, and why Wes loves DNF.
Links:
Jim and Wes take the latest release of the Caddy web server for a spin, investigate Intel's Comet Lake desktop CPUs, and explore the fight over 5G between the US Military and the FCC.
Links:
We dive deep into the world of RAID, and discuss how to choose the right topology to optimize performance and resilience.
\n\nPlus Cloudflare steps up its campaign to secure BGP, and why you might want to trade in cron for systemd timers.
Links:
Jim finally gets his hands on an AMD Ryzen 9 laptop, some great news about Wi-Fi 6e, and our take on FreeBSD on the desktop.
\n\nPlus Intel's surprisingly overclockable laptop CPU, why you shouldn't freak out about 5G, and the incredible creativity of the Demoscene.
Links:
We take a look at Cloudflare's impressive Linux disk encryption speed-ups, and explore how zoned storage tools like dm-zoned and zonefs might help mitigate the downsides of Shingled Magnetic Recording.
\n\nPlus we celebrate WireGuard's inclusion in the Linux 5.6 kernel, and fight some exFAT FUD.
Links:
We take a look at AMD's upcoming line of Ryzen 4000 mobile CPUs, and share our first impressions of Ubuntu 20.04's approach to ZFS on root.
\n\nPlus Let's Encrypt's certificate validation mix-up, Intel's questionable new power supply design, and more.
Links:
Cloudflare recently embarked on an epic quest to choose a CPU for its next-generation server build, so we explore the importance of requests per watt, the benefits of full memory encryption, and why AMD won.
\n\nPlus Mozilla's rollout of DNS over HTTPS has begun, a big milestone for Let's Encrypt, and more.
Links:
We explore the potential of heat-assisted magnetic recording and get excited about a possibly persistent L2ARC.
\n\nPlus Jim's journeys with Clear Linux, and why Ubuntu 18.04.4 is a maintenance release worth talking about.
Links:
We take a look at a few exciting features coming to Linux kernel 5.6, including the first steps to multipath TCP.
\n\nPlus the latest Intel speculative execution vulnerability, and Microsoft's troubled history with certificate renewal.
Links:
We explore the latest round of Windows vulnerabilities and Jim shares his journey adding OPNsense to his firewall family.
\n\nPlus a look back at Apollo-era audio that's still relevant today with the surprising story of the Quindar tones.
Links:
Compiling the Linux kernel with Clang has never been easier, so we explore this alternative compiler and what it brings to the ecosystem.
\n\nPlus Debian's continued init system debate, and our frustrations over 5G reporting.
Links:
From classifying cats to colorizing old photos we share our top tips and tools for starting your machine learning journey. Plus, learn why Nebula is our favorite new VPN technology, and how it can help simplify and secure your network.
Links:
As the rollout of 5G finally arrives, we take some time to explain the fundamentals of the next generation of wireless technology.
\n\nPlus the surprising performance of eero's mesh Wi-Fi, some great news for WireGuard, and an update on the Librem 5.
Links:
We explore the rapid adoption of machine learning, its impact on computer architecture, and how to avoid AI snake oil.
\n\nPlus so-so SSD security, and a new wireless protocol that works best where the Wi-Fi sucks.
Links:
Ubiquiti's troublesome new telemetry, Jim's take on the modern Microsoft, and why Project Silica just might be the future of long term storage.
Links:
We share our simple approach to disk benchmarking and explain why you should always test your pain points.
\n\nPlus the basics of solid state disks and how to evaluate which model is right for you.
Links:
We dive into Ubuntu 19.10's experimental ZFS installer and share our tips for making the most of ZFS on root.
\n\nPlus why you may want to skip Nest Wifi, and our latest explorations of long range wireless protocols.
Links:
We peer into the future with a quick look at quantum supremacy, debate the latest DNS over HTTPS drama, and jump through the hoops of HTTP/3.
\n\nPlus when to use WARP, the secrets of Startpage, and the latest Ryzen release.
Links:
It's TechSNAP story time as we head out into the field with Jim and put Sure-Fi technology to the test.
\n\nPlus an update on Wifi 6, an enlightening Chromebook bug, and some not-quite-quantum key distribution.
Links:
We take a look at a few recent zero-day vulnerabilities for iOS and Android and find targeted attacks, bad assumptions, and changing markets.
\n\nPlus what to expect from USB4 and an upcoming Linux scheduler speed-up for AMD's Epyc CPUs.
Links:
It's CPU release season and we get excited about AMD's new line of server chips. Plus our take on AMD's approach to memory encryption, and our struggle to make sense of Intel's Comet Lake line.
\n\nAlso, a few Windows worms you should know about, the end of the road for EV certs, and an embarrassing new Bluetooth attack.
Links:
We examine why it's so difficult to protect your privacy online and discuss browser fingerprinting, when to use a VPN, and the limits of private browsing.
\n\nPlus Apple's blaring bluetooth beacons and Facebook's worrying plans for WhatsApp.
Links:
We take a look at the amazing abilities of the Apollo Guidance Computer and Jim breaks down everything you need to know about the ZFS ARC.
\n\nPlus an update on ZoL SIMD acceleration, your feedback, and an interesting new neuromorphic system from Intel.
Links:
Jim shares his Nagios tips and Wes chimes in with some modern tools as we chat monitoring in the wake of some high-profile outages.
\n\nPlus we turn our eye to hardware and get excited about the latest Ryzen line from AMD.
Links:
A new vulnerability may be the next 'Ping of Death'; we explore the details of SACK Panic and break down what you need to know.
\n\nPlus Firefox zero days targeting Coinbase, the latest update on Rowhammer, and a few more reasons it's a great time to be a ZFS user.
Links:
We explore the risky world of exposed RDP, from the brute force GoldBrute botnet to the dangerously worm-able BlueKeep vulnerability.
\n\nPlus the importance of automatic updates, and Jim's new backup box.
Links:
We turn our eye to web server best practices, from the basics of CDNs to the importance of choosing the right multi-processing module.
\n\nPlus the right way to setup PHP, the trouble with benchmarking, and when to choose NGiNX.
Links:
We’re back from LinuxFest Northwest with an update on all things WireGuard, some VLAN myth busting, and the trade-offs of highly available systems.
Links:
We continue our take on ZFS as Jim and Wes dive in to snapshots, replication, and the magic on copy on write.
\n\nPlus some handy tools to manage your snapshots, rsync war stories, and more!
Links:
Jim and Wes sit down to bust some ZFS myths and share their tips and tricks for getting the most out of the ultimate filesystem.
\n\nPlus when not to use ZFS, the surprising way your disks are lying to you, and more!
Links:
We break down the ASUS Live Update backdoor and explore why these kinds of supply chain attacks are on the rise.
\n\nPlus an update from the linux vendor firmware service, your feedback, and more!
Links:
Machine learning promises to change many industries, but with these changes come dangerous new risks. Join Jim and Wes as they explore some of the surprising ways bias can creep in and the serious consequences of ignoring these problems.
Links:
We reveal the shady password practices that are all too common at many utility providers, and hash out why salts are essential to proper password storage.
\n\nPlus the benefits of passphrases, and what you can do to keep your local providers on the up and up.
Links:
Join Jim and Wes as they battle bufferbloat, latency spikes, and network hogs with some of their favorite tools for traffic shaping, firewalling, and QoS.
\n\nPlus the importance of sane defaults and why netdata belongs on every system.
Links:
Jim and Wes are joined by OpenZFS developer Richard Yao to explain why the recent drama over Linux kernel 5.0 is no big deal, and how his fix for the underlying issue might actually make things faster.
\n\nPlus the nitty-gritty details of vectorized optimizations and kernel preemption, and our thoughts on the future of the relationship between ZFS and Linux.
Special Guest: Richard Yao.
Links:
We welcome Jim to the show, and he and Wes dive deep into all things Let’s Encrypt.
\n\nThe history, the clients, and the from-the-field details you'll want to know.
Links:
Wes is joined by a special guest to take a look back on the growth and development of Azure in 2018 and discuss some of its unique strengths.
Special Guest: Chad M. Crowell.
Links:
In a special new year’s episode we take a moment to reflect on the show’s past, its future, and say goodbye to an old friend.
Links:
A security vulnerability in Kubernetes causes a big stir, but we’ll break it all down and explain what went wrong.
\n\nPlus the biggest stories out of Kubecon, and serverless gets serious.
Links:
We break down Firecracker Amazon’s new open source kvm powered, virtual machine monitor, and explore what makes it different from the options on the market now.
\n\nPlus some good news for OpenBGP and the wider internet community, and a handy tool for inspecting docker images.
Links:
WireGuard has a lot of buzz around it and for many good reasons. We’ll explain what WireGuard is specifically, what it can do, and maybe more importantly, what it can’t.
Special Guest: Jim Salter.
Links:
Wes is joined by special guest Jim Salter to discuss Google's recent BGP outage and the future of HTTP.
\n\nPlus the latest router botnet, why you should never go full UPnP, and the benefits of building your own home router.
Special Guest: Jim Salter.
Links:
We explain what eBPF is, how it works, and its proud BSD production legacy.
\n\neBPF is a technology that you’re going to be hearing more and more about. It powers low-overhead custom analysis tools, handles network security in a containerized world, and powers tools you use every day.
Links:
We bring in Amy Marrich to break down the building blocks of OpenStack. There are nearly an overwhelming number of ways to manage your infrastructure, and we learn about one of the original tools.
\n\nPlus a few warm up stories, a war story, and more.
Special Guest: Amy Marrich.
Links:
We bring on our Google Cloud expert and explore the fundamentals, demystify some of the magic, and ask what makes Google Cloud different.
\n\nPlus how Google hopes Roughtime will solve one of the web’s biggest problems, some great emails, and more!
Special Guest: Matt Ulasien.
Links:
Kubernetes expert Will Boyd joins us to explain the top 3 things to know about Kubernetes, when it’s the right tool for the job, and building highly available production grade clusters.
\n\nPlus the privacy improvements that could be coming to HTTPS, and a new SSH auditing tool hits the open source scene.
Special Guest: Will Boyd.
Links:
Jon the Nice Guy joins Wes to discuss all things IPFS. We'll explore what it does, how it works, and why it might be the best hope for a decentralized internet.
\n\nPlus, Magecart strikes again, Alpine has package problems, and why you shouldn't trust Western Digital's MyCloud.
Special Guest: Jon Spriggs.
Links:
TechSNAP progenitor and special guest Allan Jude joins us to talk mobile security, hand out some SSH tips and tricks, and discuss why security shaming works so well.
\n\nPlus, how Mozilla is protecting their GitHub repos, a check-in on Equifax, and some great picks.
Special Guest: Allan Jude.
Links:
We’re joined by a special guest to discuss the failures of campaign security, the disastrous consequences of a mismanaged firewall, and the suspicious case of Speck.
\n\nPlus the latest vulnerabilities in Wireshark and OpenSSH, the new forensic hotness from Netflix, and some great introductions to cryptography.
Special Guest: Martin Wimpress.
Links:
To make DNS more secure, we must move it to the cloud! At least that’s what Mozilla and Google suggest. We breakdown DNS-over-HTTPS, why it requires a “cloud” component, and the advantages it has over traditional DNS.
\n\nPlus new active attacks against Apache Struts, and a Windows 10 zero-day exposed on Twitter.
Sponsored By:
Links:
Microsoft’s making radical changes to Windows 10, and a new type of speculative execution attack on Intel’s processors is targeting cloud providers.
Sponsored By:
Links:
Take down a Linux or FreeBSD box with just 2kpps of traffic, own Homebrew in 30 minutes, and infiltrate an entire network via the Inkjet printers.
\n\nIt’s a busy TechSNAP week.
Sponsored By:
Links:
Reddit’s Two Factor procedures fail, while Google’s prevents years of attacks. We’ll look at the different approaches, and discuss the fundamental weakness of Reddit’s approach.
\n\nPlus a Spectre attack over the network, BGP issues take out Telegram, and more!
Sponsored By:
Links:
Some new tools will give you better insights into your system under extreme load, and we flash back to the days of AOL and discuss the new way social hackers are spreading malware.
\n\nPlus the death of a TLD, the return of SamSam, and more!
Sponsored By:
Links:
Google and Amazon recently shutdown Domain Fronting. Their abrupt change has created a building backlash.
\n\nWe’ll explain what Domain Fronting is, how activists can use it to avoid censorship, and why large organizations are compelled to disable it.
\n\nPlus how road navigation systems can be spoofed with $223 in hardware, and another bad Bluetooth bug.
Sponsored By:
Links:
Google's Cloud Platform suffers an outage, and iPhones in India get owned after a very specific attack.
\n\nPlus how a malware author built a massive 18,000 strong Botnet in one day, and Cisco finds more "undocumented" root passwords.
Sponsored By:
Links:
Good progress is being made on post-quantum resilient computing. We’ll explain how they’re achieving it, the risks facing traditional cryptography.
\n\nPlus how bad defaults led to the theft of military Drone docs, new attacks against LTE networks, more!
Sponsored By:
Links:
Allan Jude and Wes sit-down for a special live edition of the TechSNAP program.
\n\nJoined by Jed and Jeff they have a wide ranging organic conversation.
Special Guest: Allan Jude.
Sponsored By:
Netflix has learned the hard way how to utilize all the logs, we cover their lessons in their journey to build a fully observable system.
\n\nPlus the Lazy State FPU bug that cropped up this week, backdoored Docker images, your questions, and more!
Sponsored By:
Links:
Microsoft puts a data center under the ocean, and they might be onto something. The Zip Slip vulnerability sneaks into your software, and VPNFilter turns out to be more complicated than first known.
\n\nPlus the mass exploit of Drupalgeddon2 continues, we break down why, a batch of questions, and more.
Sponsored By:
Links:
We explain how the much hyped VPNFilter malware actually works, and its rather surprising sophistication.
\n\nPlus a clear break down of the recent Kubernetes news, how a 40 year old tel-co protocol is being abused today, and a Git vulnerability you should know about.
Sponsored By:
Links:
We’ll explain how Speculative Store Bypass works, and the new mitigation techniques that are inbound.
\n\nPlus this week’s security news has a bit of a theme, and we share some great war stories sent into the show.
Sponsored By:
Links:
The EFail hype-train has hit hypersonic speed, we’ll tap the breaks and explain who disclosed it, what it is, what it’s not, our recommendations, and early reactions.
\n\nPlus things to consider when deciding on-premises vs a cloud deployment, and the all business gadget from 1971 that kicked off the consumer electronics revolution.
Links:
Our FreeNAS build is complete and Allan’s back to cover the final details. Plus the new GPU attack against Android phones, and a perfect example of poor IoT security.
Sponsored By:
Links:
We catch up with Allan Jude and he shares stories of hunting network bottlenecks, memories of old firewalls, and some classic ZFS updates.
\n\nPlus the vulnerabilities found in Volkswagen cars, and the lengths a security research went to create the ultimate honeypot laptop.
Special Guest: Allan Jude.
Sponsored By:
Links:
Hardware flaws that can’t be solved, human errors at the physical layer, and spoofing cellular networks with a $5 dongle.
Sponsored By:
Links:
We cover all the bases this week in our TechSNAP introduction to server monitoring.
\n\nWhy you should monitor, what you should monitor, the basics of Nagios, the biggest drawbacks of Nagios, its alternatives, and our lessons learned from the trenches.
Sponsored By:
Links:
Getting started or getting ahead in IT is a moving target, so we’ve crowd sourced some of the best tips and advice to help.
\n\nPlus a tricky use of zero-width characters to catch a leaker, a breakdown of the new BranchScope attack, and a full post-mortem of the recent Travis CI outage.
Sponsored By:
Links:
It’s a TechSNAP introduction to Terraform, a tool for building, changing, and versioning infrastructure safely and efficiently.
\n\nPlus a recent spat of data leaks suggest a common theme, Microsoft’s self inflicted Total Meltdown flaw, and playing around with DNS Rebinding attacks for fun.
Sponsored By:
Links:
Embarrassing flaws get exposed when the logs get reviewed, Atlanta city government gets shut down by Ransomware, and the cleverest little Android malware you’ll ever meet.
\n\nPlus we go from a hacked client to a Zero-day discovery, answer some questions, ask a few, and more!
Sponsored By:
Links:
We cut through the noise and explain in clear terms what’s really been discovered. The botched disclosure of flaws in AMD products has overshadowed the technical details of the vulnerabilities, and we aim to fix that..
\n\nPlus another DNS Rebinding attack is in the wild and stealing Ethereum, Microsoft opens up a new bug bounty program, Expedia gets hacked, and we perform a TechSNAP checkup.
Sponsored By:
Links:
Netflix has a few tricks we can learn from, and the story of clever malware that was operating undetected since 2012.
\n\nPlus we discuss Let's Encrypt’s Wildcard support and explain what ACME v2 is.
\n\nThen we detail the bad position Samba 4 admins are in, and the real cause of these recent 1.7Tbps DDoS attacks.
Sponsored By:
Links:
The term serverless gets thrown around a lot, but what does it really mean? What are the benefits and the drawbacks? It’s a TechSNAP introduction to Serverless Architecture.
\n\nPlus new research with ideas to dramatically improve private web browsing, the growing problem of tracking security vulnerabilities with CVE’s, and much more!
Sponsored By:
Links:
New variants, bad patches, busted microcode and devastated performance. It’s a TechSNAP Meltdown and Spectre check up.
\n\nPlus Tesla gets hit by Monero Cryptojacking, and a dating site that matches people based on their bad passwords…. So we gave it a go!
Sponsored By:
Links:
The problems containers can’t solve, nasty security flaws in Skype and Telegram, and Cisco discovers they have a bigger issue on their hands then first realized.
\n\nAnd the latest jaw-dropping techniques to extract data from air-gapped systems.
Sponsored By:
Links:
We save our FreeNAS Mini from the edge, and perform an emergency migration to much larger hardware.
\n\nPlus 12 tips for secure authentication, the future of network security where there is no LAN, a botnet exploiting Android ADB, and your questions.
Sponsored By:
Links:
AutoSploit has the security industry in a panic, so we give it a go. To our surprise we discover systems at the DOD, Amazon, and other places vulnerable to this automated attack. We’ll tell you all about it, and what these 400 lines of Python known as AutoSploit really do.
\n\nPlus injecting arbitrary waveforms into Alexa and Google Assistant commands, making WordPress bulletproof, and how to detect and prevent excessive port scan attacks.
Sponsored By:
Links:
We introduce you to Kubernetes, what problems it solves, why everyone is talking about it, and where it came from. Also who shouldn’t be using Kubernetes, and the problems you can run into when scaling it.
\n\nPlus how you can store files in others DNS resolver cache, Project Zero finds a new BitTorrent client flaw, and more.
Sponsored By:
Links:
And start using configuration management. Embrace reproducibility of systems, and streamlined management with TechSNAP’s introduction to Configuration Management.
\n\nPlus the news of the week that could impact your systems, feedback, and more.
Sponsored By:
Links:
The types of workloads that will see the largest performance impacts from Meltdown, tools to test yourself, and the outlook for 2018.
\n\nPlus a concise breakdown of Meltdown, Spectre, and side-channel attacks like only TechSNAP can.
\n\nThen we run through the timeline of events, and the scuttlebutt of so called coordinated disclosure. We also discuss yet another security issue in macOS High Sierra, a backdoor in popular storage appliances, your questions, and more!
Sponsored By:
Links:
The trials and tribulations of the long journey to TLS 1.3, and the “middleware” that’s keeping us from having nice things. Plus a pack of Leaky S3 bucket stories and the data that was exposed.
\n\nThen we do a deep dive into some SMB fundamentals and practical tips to stay on top of suspicious network traffic.
Sponsored By:
Links:
Network Namespaces have been around for a while, but there may be be some very practical ways to use them that you’ve never considered. Wes does a deep dive into a very flexible tool.
\n\nPlus what might be the world’s most important killswitch, the real dollar values for stolen credentials and the 19 year old attack that’s back.
Sponsored By:
Links:
Authors of one of the most infamous botnets of all time get busted, researchers discover keyloggers built into HP Laptops, the major HomeKit flaw no one is talking about, and the new version of FreeNAS packs a lot of features for a point release.
\n\nPlus an update on the show and what to expect, and we attempt something TechSNAP could never do as a video production, a live double FreeNAS upgrade!
Sponsored By:
Links:
We say farewell to Dan, but don't despair, we've still got a ton of great topics to cover as we say goodbye. We compare the handling of recent data breaches at imgur & DJI, share some in-depth guides on beefing up your security posture & see Dan off with some of your finest feedback and the world's tastiest roundup.
We get depressed over some new stats confirming our worst fears about the huge number of outdated and unpatched android systems. But, in some good news, Github wants to help you, and your open source projects, stay secure with their new Security Alerts feature. We discuss the details and what it needs to be relevant.
\n\nPlus some handy tips for getting out of a sticky situation in git, a net neutrality PSA, and some big news from Dan.
We can't contain our excitement as we dive deep into the world of jails, zones & so-called linux containers. Dan shares his years of experience using the time-tested original bad boy of containers, FreeBSD jails. Wes breaks down cgroups, namespaces & explains how they come together to create a container. Plus we discuss similarities, differences, workflows & more!
\n\nAnd of course your fantastic feedback, a record setting round-up & so much more!
You may think that’s a secure password field, but don’t be fooled! We’ve got the disturbing tale of some negligent websites & their fraudulent fonts. Then, some top tips to evaluate the security of your banking institutions & best practices for verbal passwords. Plus, a controversial discussion of opsec, obfuscation, security & you!
We've got some top tips to turn you from ssh-novice to port-forwarding master. Plus the latest on the confusing story of Kaspersky, the NSA & a bone-headed contractor. Then, our backup sense is tingling, with the story of $30,000 lost to a forgotten pin.
\n\nAnd of course your fantastic feedback, a record setting round-up & so much more on this week's episode of TechSNAP!
We air Microsoft's dirty laundry as news leaks about their less than stellar handling of a security database breach, plus a fascinating story of deceit, white lies, and tacos; all par for the course in the world of social engineering, and we find out that so-called-smart cards might not be so smart, after it is revealed that millions are vulnerable to a crippling cryptographic attack & more!
We've got bad news for Wifi-lovers as the KRACK hack takes the world by storm; We have the details & some places to watch to make sure you stay patched. Plus, some distressing revelations about third party access to your personal information through some US mobile carriers. Then we cover the ongoing debate over HAMR, MAMR, and the future of hard drive technology & take a mini deep dive into the world of elliptic curve cryptography.
We try our hand at spycraft with a set of espionage themed stories covering everything from the latest troubles at Kaspersky to the strategic implications of responsible disclosure at the NSA. Plus, a few more reasons to be careful with what you post on social media & a fascinating discussion of the ethics of running a data breach search service.
We cover the problematic implications of SESTA, the latest internet regulations proposed in the US, plus some PR troubles for CBS's Showtime after cryptocoin mining software was found embedded in their webpage & Dan gets excited as we discuss why tape-powered backups are still important for many large organizations.
\n\nAnd of course your feedback, a fantastic round-up & so much more on this week's episode of TechSNAP!
Distrustful US allies further delay the NSA’s new crypto, Viacom’s leaky buckets almost expose its entire IT infrastructure, plus a few more Equifax mishaps & a government spyware tool that might just be masquerading as your favorite app.
\n\nAnd of course your feedback, a fantastic round-up & so much more on this week's episode of techsnap!
That Equifax hack? So last week! This weeks vulnerability is BlueBorne, a new attack on just about every bluetooth capable device. We've got the details, and what you need to know to get patched. Plus some of our favorite overlooked shell commands & a breakdown of the ACLUs recent lawsuit to protect your rights at the border.
Equifax got hacked, some top tips for staying safe & a debate over just who's to blame for vulnerable open source software. Then Google's breaking up with Symantec & we take a little time for Sysadmin 101, this time, ticketing systems.
We're extending your filesystems usefulness with extended attributes! We learn what they are & how they might be useful. Plus, we take a look behind the scenes of a major spambot operation & check in with Bruce Schneier on the state of internet privacy.
We discuss, and struggle to pronounce, the difficulties in deploying HTTP public key pinning & some possible alternatives you should consider. Then we get excited for (n+1)sec, a new protocol for distributed multiparty chat encryption & explore the nuances of setting up home VPN gateway!
We take a trip to the ends of the earth and hear some stories of tech support in Antarctica, cover a surprisingly reasonable new suggested standard for responsible disclosure & discuss Kreb's latest adventures in the world of deep-insert credit card skimmers.
\n\nAnd of course your feedback, a fantastic round-up & so much more!
With some clever new card skimmer tech we’ve got one more reason to watch your wallet at the gas pump, plus a few handy recommendations for postgres migrations & Dan dives deep into his quest for the ultimate boot and nuke experience.
\n\nPlus your feedback, a fantastic round-up & so much more!
We discuss just how hard, or not, responsible disclosure really is, share some sad news about the status of BTRFS on RHEL, a few more reasons to use ZFS.
\n\nThen, we find out if our passwords have been cracked, reveal Dan’s password hashes live on air & more!
Dan does some sleuthing & finds that the story of a major data leak isn't quite what it seems, then a new Talos report that shows a large number of unpatched & unprotected memcached servers. We discuss just how bad that might be. Plus, between some excellent feedback & Dan's recent adventures, we've got a itty bitty ZFS deep dive.
\n\nAnd of course your feedback, a fantastic round-up & so much more on this week's episode of TechSNAP.
We've got the latest on some mysterious mac malware that's been lurking for years, a handy new tool to help you monitor, backup and generally work with your DNS infrastructure & possibly more problems for Symantec, the certificate authority who just can't seem to get things right.
The recent ‘Devil’s Ivy’ vulnerability has caused quite a rash in the security journalism community. Is it as bad as poison ivy or just a bunch of hyperbole? We discuss. Plus you’ve heard of public key encryption, but what lies beyond? We cover some possible alternatives and the problem of identity.
\n\nThen Dan’s got the latest on his Let’s encrypt setup including a brand new open source tool you too can use!
GNUPG has just released a fix for a dangerous side-channel attack that could expose your private key, a leak of NASDAQ test data was picked up by real news organizations and caused a bit of a panic & the fascinating story of a security researched who managed to take over all .io domains with a little sleuthing and a few domain registrations.
\n\nPlus Dan's got so much new stuff it has its own segment, and of course your feedback, a fantastic round-up & so much more!
A new satellite broadband ISP has approval to serve the US, are their low-latency claims too good to be true? UK Law enforcement claims that visiting the dark web is a potential sign of terrorism, watch out tor users! Then we follow a Krebs’ deep dive into the wild world of robocalls.
\n
\n
Plus Dan’s latest Let’s Encrypt updates, your fantastic feedback, a robust roundup & so much more!
We go to air just as a massive cyberattack strikes Europe, Google stops reading your email, well sorta maybe & we discuss the latest debate over US government access to overseas data.
\n\nPlus some fantastic feedback, a robust roundup & so much more!
We’ve got the latest on the ‘Stack Crash’ vulnerability affecting a UNIX OS near you. Plus thanks to a recent RNC data leak we’ve got your name, address, birthday & a lot more personal information!
\n\nThen Dan does a deep dive on his DNS infrastructure, some recent improvements & his integration with Let’s Encrypt.
\n
\n
Plus some fantastic feedback, a robust roundup & so much more!
Dan's back from BSDCAN with peanut butter, taps, and a new library that's the source of all truth. Then we've got the story of Britney Spears latest career move: controlling botnets through Instagram comments & Dan teaches us about steganography and how it helped catch an NSA leaker.
\n
\n
Plus some fantastic feedback, a robust roundup & so much more!
We discuss who really controls the internet & just how centralized and potentially vulnerable it has become. Plus the latest security letdowns from Windows 10, the story of a questionably ethical hacker & Zomato's data breach.
\n
\n
Plus some fantastic feedback, a robust roundup & so much more!
Not only is the UK leaving the Eurozone, they are starting their own internet, this time with more surveillance! Then we’ve got some top tips on getting recruited by the Israeli NSA & the details of some new WannaCry wannabes that may be infecting a windows server near you.
\n
\n
Plus some fantastic feedback, a robust roundup & so much more!
We've got another round of WannaCry analysis, the latest on the FCCs battle over Net neutrality. Then IPv6 Tunnels & you, a 2017 check-in.
\n\nPlus some fantastic feedback, a robust roundup & so much more!
The WannaCry Worm has brought the world to tears. We've got the latest details, conspiracy theories, fallout & some tissues.
\n\nPlus a keylogger that may be hiding in your audio driver, some great hardware recommendations from the audience, your great feedback, a hard hitting round up & so much more!
Turns out you've been doing passwords wrong, but don't worry, we've got the latest and greatest guidance from NIST. Plus the latest numbers from BackBlaze with some interesting conclusions about enterprise drives.
\n\nThen the details about that google docs worm everyone's talking about, some top tips to stay safe & so much more!
Intel's patched a remote execution exploit that’s been lurking in their chips for the past nine years, we’ve got the details & some handy tips to check if you’re affected. Then Dan does a deep dive into friend of the show Tarsnap: what it is, how to use it & why it’s so awesome. Plus we discuss when we use external services versus building ourselves & a few tips for lightweight backup solutions that might work for you.
\n\nThen your fantastic feedback, a riotous roundup & so much more!
The squirrels have gotten in the mailbag as the guys discuss an unfortunate new vulnerability in Squirrelmail. Plus an interesting new entrant to the anonymous domain name space from some of the internet’s most famous rabble rousers. Then Dan & Wes get just a bit jealous of Canada’s new take on net neutrality & more!
We’ve got the latest gossip on Apple’s brand new filesystem & why you should care! Plus Dan dives deep into the wonderful world of ZFS and FreeBSD jails & shows us how he is putting them to use in his latest server build.
\n\nPlus it’s your fantastic feedback, a riotous roundup & so much more!
We cover some fascinating new research that can steal your phone’s PIN using just the on-board sensors. Then we cover how computer security is broken from top to bottom and Dan does another deep dive, this time on everyone’s favorite database, PostgresSQL.
\n\nPlus it’s your feedback, a huge roundup & so much more!
Your Wifi Stack is under attack! But dont worry, Apple’s got the patch & we’ve got the story. Then the latest ATM hacking tips that will only cost you $15 & Dan does a deep dive into Let’s Encrypt!
\n\nPlus it’s your feedback, a huge roundup & so much more!
This week, we sell your private browsing history to the highest bidder! Oh wait, that’s your ISP! We cover the latest rollback of internet privacy regulations in the US, plus the surprisingly uplifting story of script kiddies getting their day in court, Dan does a not-so-deep dive into ZFS & explains why you should already be using it.
\n\nPlus it’s your feedback, a huge roundup & so much more!
The guys break with the usual format & turn things over to Dan for a deep deep dive on Bacula! Then it’s the latest Yahoo hack news & a few more reasons you should already be using ZFS.
\n\nPlus it’s your feedback, a huge roundup & so much more!
We crack open Vault 7 & are a little let down by what's inside, give you one more reason you should already be using ZFS & just when you thought you could trust your phone again, we’ve got the story of preinstalled Android malware. Then it’s your feedback, a huge roundup & so much more!
We’ve got the sad story of cloud-enabled toys leading to, you guessed it, leaking customer’s personal information! Plus a case of backups gone bad, but this time, it’s a good thing!
\n\nThen it’s your feedback, a huge roundup, and so much more!
Google heard you like hashes so they broke SHA1, we've got the details.
\n\nPlus we dive in to Cloudflare's data disaster, Dan shows us his rack, your feedback, a huge roundup & so much more!
The details on the latest WordPress vulnerability, then the surprising, or perhaps not so surprising takeover of a cybersecurity firms website & watch out, hacker's may be using your microphone to steal your data!
\n\nPlus a packed roundup, your feedback & so much more!
The latest on just who has access to your private email, Dan dives deep on the GitLab Postmortem & did you know that Transport for London has been tracking your wifi? We’ve got the details.
\n\nPlus a packed roundup, your feedback & so much more!
We’ve got the latest on GitLabs data disaster, a clever new method to cheat at the slots & a new Netgear exploit thats coming for your network!
\n\nPlus your feedback, a giant roundup & much, much more!
The guys cover Dropbox bugs that could be holding on to your deleted files, explain what the heck ATM ‘shimmers’ are & talk about how to keep your secret identity secret.
\n\nPlus your feedback, a packed roundup & much more!
A remote vulnerability in Ansible has been patched, the latest updates on the Mirai botnet, our first TechSNAP challenge, your feedback, a gigantic roundup & so much more!
The Github enterprise SQL scare, malware that lives in your browser, Dan’s mail server war story, your feedback, a righteous roundup & more!
\n\nNote: This is a shorter episode because the hosts are new and the first recording was also a double episode recording, expect them to get longer as the guys get more comfortable!
Malware that evades blocking systems and getting into BSD for the first time.
\n\nPlus a fresh round up, your questions & much, much more!
How the hack of DigiNotar changed the infrastructure of the Internet forever, changing the way we think about security & how to hide malware in a PNG.
\n\nPlus a packed round up, great emails & more in a packed 300th episode!
PHPMailer puts almost every PHP CMS at risk, the Fancy Bear Android Malware that has a complicated past & the new botnet that likes brag.
\n\nPlus great questions, a packed round up & much, much more!
We've given the Jupiter Broadcasting staff the holidays off, so lets take this moment to have a look back at some of the best moments of TechSNAP in 2016!
The Malvertising campaign that targets routers, script kiddies get a talking to & the Avalanche crime ringleader is on the run.
\n\nPlus your questions, a packed round up & more!
Project Zero breaks the chain, we share stories from our mischievous past & malware as a service gets busted.
\n\nPlus your great questions, a packed round up & much, much more!
A researcher accidentally roots Microsoft Azure’s Red Hat Update Infrastructure, newly discovered router flaw in-the-wild & hacking Windows 10 by holding down the shift key.
\n\nPlus your questions, our answers & a great round up!
The Debian packaging flaw that exposes your server, we go over the state of the Internet... report that is & hacking 27% of the web.
\n\nPlus some great questions, a fantastic round up & much, much more!
Get a root shell by holding down enter, comprising a Linux desktop using an NES & PoisonTap, the impressive little hacking tool.
\n\nPlus your great questions, a poppin’ round up & much, much more!
It’s a trifecta of Unix vulnerabilities, our concerns with LessPass & a very valuable vulnerability.
\n\nPlus your questions, our answers, a spicy round up & much, much more!
We go deep into sophisticated modular malware & meet the manufacturer who vows to recall their IoT devices used in recent attacks.
\n\nPlus home server questions, a fun round-up & more!
A large managed DNS provider was taken down by a DDoS, we'll tell you all about Dyn’s big outage.
\n\nThen we beat the dead dirty CoW, answer your questions, a breaking news round up & more!
Spreading the DDoS Disease & selling the cure, we have the audit results of TrueCrypt’s replacement & a comprehensive history of the most important events that shaped the SSL ecosystem.
\n\nPlus your great questions, our answers & much... Much MORE!
The Internet of Things is the Internet of Terrible, we’ll round up the week’s stories & submit the TechSNAP solution to you the audience. Plus the security cost of Android fragmentation, great questions & a packed round up!
The Source code for a historic botnet has been released, the tale of a DNS packet & four ways to hack ATMs.
\n\nPlus your hard questions, our answers, a rockin' roundup & more!
Krebs is hit with DDoS attack & then gets kicked off of Akamai. We’ll tell you about the record breaking details, Firefox puts it foot down, picking NFS or Samba…
\n\nYour questions, our answers, a packed Round Up & much more!
The FBI arrests the script kiddies that hacked the CIA director, how Dropbox hacks your Mac & the guys behind a DDoS for hire service get busted.
\n\nPlus great questions, our answers, a rockin roundup & more!
Massive drive failures after a datacenter gas attack. A critical MySQL vulnerability you should know about & is Cisco responsible for the death of an MMO?
\n\nPlus great questions, our answers & much more!
How a modified USB ethernet adapter can steal credentials, a new compression algorithm from Facebook that might be legit & the terrible terrible security of a consumer NAS.
\n\nPlus great questions, our answers, a fun roundup & much, much more!
The ShadowBrokers release a batch of the NSA’s tools & we dive in. A Google login issue allows for credential theft & researchers map the Netflix content delivery network!
\n\nPlus great feedback, follow up, a rockin' roundup & much, much more!
iOS targeted malware in the wild, the simple approach to hacking electronic safes & how digital forensics prove a journalist was framed.
\n\nPlus your great questions, a packed round up & much more!
Microsoft leaks their golden key, allowing attackers to unlock secure boot systems, a security breach at Oracle exposes hundreds of companies & Linux has an embarrassing networking stack bug.
\n\nPlus your questions, our answers & a packed round up!
Why the Internet needs it’s own version of cancer researchers, bypassing chip and pin protections & the 2016 Pwnie Awards from Blackhat!
\n\nPlus your questions, our answers & much, much more!
How to get an SSL certificate for other people's domains, how to decrypt HTTPS traffic with some javascript & the latest storage reliability report.
\n\nPlus great questions & a rocking round up!
We’re in the middle of an epic battle for power in cyberspace & Bruce Schneier breaks it down. PHP gets broken, PornHub gets hacked & the disgruntled employee who wiped the router configs on his way out the door.
\n\nPlus great emails, a packed round up & more!
A new vulnerability in many websites, Oracle's Outside In Technology, Turned Inside-Out & the value of a hacked company.
\n\nPlus your questions, our answers, a really great round up & much more!
A potential solution to Ransomware, the 15 year bug that cost CitiGroup $7 Million dollars, Dropbox’s new middle out compression & another flaw that affects all versions of Windows.
\n\nPlus your questions, our answers, a packed roundup & more!
On this weeks episode we cover a UEFI firmware bug that is affecting computers including ThinkPads, tell you how your windows box can be totally pwned even if it's fully encrypted & talk about the shortcomings of the MD5 checksum. Plus the feedback, the roundup & more!
Project Zero lays into Symantec's enterprise products, the botnet you’ll never find & the poor security of HTML5 video ads.
\n\nPlus your questions, our answers & much more!
What’s got Windows admins in a Panic? Total chaos my friends, we’ll tell you why. Extensive coverage of Apple’s new filesystem, Ransomware that might just impress you…
\n\nYour great questions, our answers, a packed round up & much, much more!
Why didn’t Apple choose ZFS for its new filesystem? We journey through the long history of ZFS at Apple. Plus how the BadTunnel bug can hijack traffic from all versions of Windows & should we worry about Intel’s management tech?
\n\nPlus great questions, a huge round up & much more!
The bloatware shipping on those new computers is way, way worse than you probably thought, Internet exposed printers & the thrilling story of reverse engineering an ATM skimmer. Yes that’s really a thing.
\n\nPlus great questions, our answers & more!
Windows exploits for sale at a great price, how the Internet works, yes, seriously & it's awesome!
\n\nPlus we solve some of your problems, a great roundup & more!
Is the “Dark Cloud” hype, or a real technology? Using DNS tunneling for remote command and control & the big problem with 1-Day exploits.
\n\nPlus your great question, our answers, a breaking news roundup & more!
A typo stops a billion dollar bank hack, a vulnerability in 7zip that might surprise you & the best solutions for secure remote network access.
\n\nYour great questions, our answers, a packed round up & more!
Zero-day exploits striking over 100 systems, if you think copying links to bash scripts from the internet is okay, maybe you shouldn't be root & the day Google automated itself off the internet.
\n\nPlus your questions, our answers, a huge round up & more!
A critical flaw in that bit of software tucked far far away that you never think about… Until now, we explain why ImageTragick is a pain. More OpenSSL flaws & fraudsters stealing tax data from the motherload.
\n\nPlus great questions, our answers, a packed Round up & more!
This week, Chris & allan are both out of town at different shenanigans, but they recorded a sneaky episode for you in which they recap the Target breach, from when the news broke to the lessons learned and everything in between!
This week, the FBI says APT6 has pawned the government for the last 5 years, Unaoil: a company that's bribing the world & Researchers find a flaw in the visa database.
\n\nAll that plus a packed feedback, roundup & more!
Find out why everyone's just a little disappointed in Badlock, the bad security that could be connected to the Panama Papers leak & the story of a simple delete command that took out an entire hosting provider.
\n\nPlus your batch of networking questions, our answers & a packed round up!
Find out about another hospital that accidentally took advantage of free encryption, researchers turn up a DDoS on the root DNS servers & the password test you never want to take.
\n\nPlus your batch of networking questions, our answers & a packed round up!
New Ransomware locks your bootloader & makes you pay to boot. Malware with built in DRM? We’ll share the story of this clever hack.
\n\nPlus some great questions, our answers, a packed round up & more!
Verizon Enterprise gets breached & the irony is strong with this one, details on the NPM fiasco & why the SAMSAM is holding up the doctor.
\n\nPlus some great questions, a packed round up & much, much more!
The theoretical Android flaw becomes reality, a simple phishing scam hits some major companies & why your PIN has already been leaked.
\n\nPlus great questions, our answers, a rocking round up & much, much more!
We’ll tell you about the real world pirates that hacked a shipping company, the open source libraries from Mars Rover found being used in malware & Microsoft’s solution for that after-hack hangover.
\n\nPlus great questions, a packed round up & much more!
OpenSSL issues a major security advisory, we break down the important details, then go in depth on the real world impact of these flaws.
\n\nPlus some great storage and networking question, a packed round up & much, much more!
What’s taking the states so long to catch up to the rest of the civilized world and dip the chip? Turns out it's really complicated, we explain. Plus keeping a Hospital secure is much more than following HIPAA, and an analysis of Keybase malware.
\n\nPlus great questions, our answers, and much much more!
A common vulnerability is impacting Firefox, LibreOffice, and others, the 7 problems with ATM security, and the Enterprise grade protection defeated with a batch script.
\n\nPlus some great questions, our answers, a rockin roundup, and much much more!
Cisco has a wormable vulnerability in its Firewall appliances, crimeware that allows unlimited ATM withdrawals & the big problem with the Java installer.
\n\nPlus great questions, a rocking round up & much, much more!
A new openSSL exploit, cyber security firm Norse implodes & the Windows Hot Potato flaw that’s been around for over a decade.
\n\nPlus great questions, our answers, a rockin round up & much, much more!
Since Allan is off being fancy at FOSDEM, we decided that now would be a good time to celebrate the audience & feature some of the best feedback we've had over the years!
The bizarre saga of Juniper maybe finally be coming to a conclusion, details about SLOTH, the latest SSL vulnerability that also affects IPSec and SSH & the attack on the Ukrainian power grid made possible by malware.
\n\nPlus your questions with a special theme, a rockin roundup & much more!
A Critical OpenSSH flaw can expose your private keys, a new WiFi spec for IoT devices, that has all the classic issues & Intel’s SkyLake bug.
\n\nPlus your feedback, our answers, a rockin’ round up & so much more!
We break down the Bicycle attack against SSL, the story of Brian Krebs’s PayPal account getting backed & the scoop on the Juniper Saga.
\n\nPlus some great questions, our answers, a news breaking round up & much more!
We take a look back at some of the big stories of 2015, at least, as we see it.
\n\nPlus the round up & more!
It’s a collection of Allan’s favorite moments from TechSNAP past. Plus the week’s new stories in the roundup & much more!
Meet BOOTTRASH the Malware that executes before your OS does, the hard questions you need to ask when buying a security appliance, Project Zero finds flaws in Fireeye hardware.
\n\nPlus some great audience questions, a big round up & much, much more!
Bitcoin’s creator has been found again, we’ll cover what the media thinks they’ve figured out & what we really know.
\n\nThen, 'In Patches We Trust: Why Security Updates have to get better', a great batch of questions, a huge round up & much more!
The US Government is offering free penetration tests, with a catch, we break down the VTech Breakin & the only sure way to protect your credit online.
\n\nPlus great questions, a big round up with breaking news & much more!
A research team finds various ways to attack LastPass, how to use a cocktail of current Android exploits to own a device & hacking a point of sale system using poisoned barcodes!
\n\nPlus some great questions, our answers, a rockin roundup & much, much more!
Encryption & privacy took quite a beating this week in the wake of the Paris attacks. We come to its defense. Your ISP heard you like backdoors, so they put a backdoor in your backdoor, the story of the social RAT & more!
The first remote administration trojan that targets Android, Linux, Mac and Windows. Joomla and vBulletin have major flaws & tips for protecting your online privacy from some very motivated public figures.
\n\nPlus some great questions, a rockin' roundup & much, much more!
CISA provides no solutions, just new excuses. The new Australian smartcard system is a total disaster & why Google’s URLs are so crazy.
\n\nPlus some great questions, our answers, a rockin' round up & much, much more!
TalkTalk gets compromised, Hackers make cars safer & Google plays hardball with Symantec.
\n\nPlus a great batch of your questions, a rocking round up & much, much more!
The OpenZFS summit just wrapped up and Allan shares the exciting new features coming to the file system, researchers warn about flaws in NTP & of course we've got some critical patches.
\n\nPlus a great batch of questions, a rockin' round up & much, much more!
How the NSA might be breaking Crypto, fresh zero day exploit against Flash with a twist & Keylogging before computers.
\n\nPlus a great batch of your questions, a rocking round-up & much more!
Debug mode exposes sensitive data, Cisco’s Talos group exposes the Angler exploit kit & how a Microsoft exposed Conficker with an egg hunt.
\n\nPlus some great feedback, a huge round up & much, much more!
D-Link publishes its private code signing keys, exploiting Windows Symbolic Links & why encryption is not sufficient protection.
\n\nPlus some great questions, our answers, a rockin roundup & much, much more!
Let’s Encrypt hits a major milestone, F-Secure publishes their investigation into “The Dukes” & we dig into Tarsnap’s email confirmation bypass.
\n\nPlus a great batch of your questions, a rocking round up & much, much more!
How Groupon made the switch to FreeBSD & why. Researches extract keys from a hardware module & Intel’s new CPU backed malware protection.
\n\nPlus your questions, a great roundup & more!
Red Hat highlights how leaky many open source RSA implementations are, Netflix releases Sleepy Puppy & the Mac is definitely under attack.
\n\nPlus some quick feedback, a rockin' roundup & much, much more!
Rooting your Android device might be more dangerous than you realize, why the insurance industry will take over InfoSec & the NSA prepares for Quantum encryption.
\n\nPlus some great questions, a fantastic roundup & more!
The real fallout from the Ashley Madison hack gets personal. The Android StageFright patch that doesn’t cover all of the holes, and turning a KVM into a spying appliance.
\n\nPlus a great batch of questions, our answers, and a rocking round up.
\n\nAll that and a heck of a lot more on this week’s TechSNAP!
Lenovo & HP are caught injecting malware even after you format the drive, Ubiquiti Networks is socially engineered out of 46 million & are we entering the era of Security Research Prohibition? We debate.
\n\nPlus a great batch of your questions, our answers, a rocking round up & much much more!
Oracle really doesn’t want you to reverse engineer their products but they may have just released the Kraken, we’ll explain.
\n\nA massive drop of 35 fixes in one day, great feedback and follow up, a rockin roundup & much, much more!
Adobe is making changes to Flash to mitigate 0day exploits, with help from Google. Chrysler recalls 1.4M vehicles due to a software flaw, we go inside the “Business Club” cyber crime gang.
\n\nPlus a great batch of questions, the roundup & more!
SourceForge sees downtime, and we examine their infrastructure, a new pervasive hackgroup has been exposed and their track record is fascinating.
\n\nPlus a Hacking Team Round up, a wide variety of audience questions, our answers & much, much more!
The Backronym vulnerability hits MySQL right in the SSL protection, we’ll share the details. The hacker Group that hit Apple & Microsoft intensifies their attacks & a survey shows many core Linux tools are at risk.
\n\nPlus some great questions, a rockin' roundup & much much more!
The Hacking Team fallout continues with more zero day patches you need to install, a new attack against RC4 might finally kill it & how to save yourself from a DDoS attack.
\n\nPlus a great batch of your questions, our answers & much, much more!
From hacking to hacked, hacking team gets owned & what gets leaked is the best part, we’ll share the details.
\n\nPlus, a new OpenSSL vulnerability revealed, Apple tweaks their two factor authentication.. Your questions, our answers & much much more!
Amazon has a new TLS implementation & the details look great, we’ll share them with you. The technology that powers the NSA’s XKEYSCORE you could have deployed yourself.
\n\nSome fantastic questions, a big round up & much, much more!
Google’s datacenter secrets are finally being revealed & we’ll share the best bits. Why The US Government is in no position to teach anyone about Cyber Security, how you can still get hacked offline, A batch of great questions, a huge round up & much, much more!
Kaspersky labs has been hacked, we’ll tell you why it looks like a nation state was the attacker, why OPM data is too valuable sell & the real situation with LastPass.
\n\nPlus some great questions, our answers & a rocking round up.
\n\nAll that and much, much more on this week’s TechSNAP!
This week, how hard lessons learned in 1982 could be apply to 2015’s security breaches, hacking for hire goes big & a savage sentient car that needs better programming.
\n\nPlus some fantastic questions, a rocking round-up & much more!
The sad state of SMTP encryption, a new huge round of flaws has been found in consumer routers & the reviews of Intel’s new Broadwell desktop processors are in!
\n\nPlus some great questions, a huge round-up & much, much more!
Spyware creator mSpy hacked, find out why this breach is particularly egregious, what’s wrong with pcap & why RSA’s death has been greatly exaggerated.
\n\nPlus a great batch of questions, a rocking round up & much, much more!
Researches have uncovered a weakness in almost all Internet encryption. We’ll explain what LogJam is, how to protect yourself & what the cause is.
\n\nLinux gets bit by a filesystem corruption bug, passport id thieves, a great batch of questions & much, much more!
We explain the Venom vulnerability, what the impact is & the steps major providers are taking to protect themselves.
\n\nPlus strategies to mitigate Cyber Intrusions, a truly genius spammer, great questions, a huge round up & more!
Why a stolen healthcare record is harder to track than you might think, Security pros name their must have tools & blame as a service, the new Cybersecurity hot product.
\n\nPlus great questions, a huge Round Up & much, much more!
The man who broke the music business, the major downsides to the container culture & yes, they really are trying to sell you Security Snake Oil.
\n\nPlus your great questions, our answers & much, much more!
What’s really the key to detecting a breach before its become much too late? We’ll share some key insights, plus a technical breakdown of China’s great cannon & the new New French Surveillance Law that should be a warning to us all.
\n\nPlus a great round up, fantastic questions, our answers & much, much more!
Researches find an 18 year old bug in Windows thats rather nasty, we’ve got the details. A new perspective on the bug bounty arms race & the security impact of Wifi on a plane.
\n\nPlus great feedback, a bursting round up & much much more!
Is it possible to make a truly private phone call anymore? The answer might surprise you. Cisco and Level 3 battle a huge SSH botnet & how to Build a successful Information Security career.
\n\nPlus a great batch of your questions, a rocking round up, and much, much more!
Why boring technology might be the better choice, Google revokes & China chokes, why you want to create an account at irs.gov before crooks do it for you.
\n\nPlus your great IT questions, a rocking round up & much, much more!
Reverse Engineering Incentives to Improve Security. New Jersey school district computers held for ransom & the flash bug that lives on from 2011 with a twist!
\n\nPlus some great networking questions, drone powered Internet & more!
Microsoft takes 4 years to fix a nasty bug, how to bypass 2 factor authentication in the popular ‘Authy’ app.
\n\nHijacking a domain with photoshop, hardware vs software RAID revisited, tons of great questions, our answers & much much more!
Using encryption is a good thing, but its just the start, we’ll explain. Plus how one developer totally owned the Uber app.
\n\nThen it’s a great batch of your questions & our answers!
We’ll break down the technical baggage that led to the new FREAK SSL flaw & the security ramifications of top executives using personal email accounts…
\n\nPlus why just need to stop hiding file extensions. Plus some great feedback & much, much more!
Lenovo & Google are victims of DNS hijacking, we’ll share the details, Everyone wants you to secure your data, just not from them & how Turbotax profits from Cyber tax fraud!
\n\nPlus a great batch of your questions, a fantastic round up & much, much more!
Lenovo PCs ship with man-in-the-middle adware that breaks HTTPS connections, we’ll break down how this is possible, the danger that still exists & more.
\n\nPlus the story of a billion dollar cyber heist anyone could pull off, the Equation group, your questions, our answers & much much more!
A 20 year old design flaw in Windows has just been patched & it requires some major re-working of the software. Attackers compromise Forbes.com & why Facebook’s new ThreatExchange platform could be a great idea.
\n\nPlus a great batch of feedback, our answers & much much more!
A new major security breach at a large health insurance firm could expose 10s of millions, a phone phishing scam anyone could fall for & we celebrate our 200th episode with your TechSNAP stories.
\n\nThen its a storage spectacular Q&A & much, much more!
The internet of dangerous things is arriving but what about taking care of the devices we already have? We’ll discuss!
\n\nPlus details on critical updates from Adobe, the surprising number of Gas Stations vulnerable to exploitation via the internet, your questions, our answers & much, much more!
Adobe has a bad week, with exploits in the wild & no patch. We’ll share the details. Had your credit card stolen? We’ll tell you how.
\n\nPlus the harsh reality for IT departments, a great batch of questions, our answers & much much more!
Been putting off that patch? This week we’ll cover how an out of date Joomla install led to a massive breach, Microsoft and Google spar over patch disclosures & picking the right security question...
\n\nPlus a great batch of your feedback, a rocking round up & much, much more!
We reflect on the lessons learned from the Sony Hack & discuss some of the tools used to own their network.
\n\nPlus a overview of what makes up a filesystem, a run down of the Bacula backup system & much more!
We go inside the epic takedown of SpamHaus, then we break down why CloudFlare’s Flexible SSL is the opposite of security.
\n\nFollowed by a great batch of questions, our answers & much much more!
We look back at this year in TechSNAP. Allan shares his war stories, TrueCrypt shuts down, Heartbleed happens & more!
More and more data breaches are leading to blackmail but the stats don’t tell the whole story. We’ll explain.
\n\nPlus the latest in the Sony hack, and the wider reaction. Plus a great batch of emails & much, much more!
If we could rebuild the Internet from scratch, what would we change? It’s more than just a thought experiment. We’ll share the details about real world research being done today!
\n\nPlus we dig through the Sony hack, answer a ton of great question & a rocking roundup!
2014 has been the year of the celebrity bugs, we take a look at the new trend of giving security vulnerabilities names & logos & ask who it truly benefits.
\n\nPlus practical way to protect yourself from ATM Skimmers, how they work & much more!