June 11th, 2019 | 30 mins 47 secs
automatic updates, backups, bluekeep, brute force, devops, firewalls, goldbrute, hard drive, industrial control systems, internet worm, microsoft, nas, network security, nsa, out of support, password security, patching, patching policies, rdp, remote desktop, remote desktop protocol, rosewill, security, ssd, storage, supermicro, techsnap, terminal services, updates, vulnerabilities, wannacry, windows, windows update, windows xp, worm
We explore the risky world of exposed RDP, from the brute force GoldBrute botnet to the dangerously worm-able BlueKeep vulnerability.
February 28th, 2019 | 31 mins 23 secs
1password, bcrypt, brute force, burp intruder, compliance, cracking, cryptographic hash, cryptography, devops, encryption, entropy, ethics, hashing algorithms, keepass, lastpass, offline encryption, owasp, password manager, password salt, passwords, pbkdf2, pci-dss, pivot, plaintext, power company, rainbow tables, scrypt, security, security research, sedc, software development, standards, sysadmin podcast, techsnap, utility
We reveal the shady password practices that are all too common at many utility providers, and hash out why salts are essential to proper password storage.