Talkin’ About Infosec News – 8/18/2022



ORIGINALLY AIRED ON AUGUST 15, 2022

Articles discussed in this episode:

00:00 – PreShow Banter™ — Sneaking Candy
03:32 – BHIS – Talkin’ Bout [infosec] News 2022-08-15
07:06 – Story # 1: Blackhat 2022 recap – Trends and highlights – https://sysdig.com/blog/blackhat-2022-recap/
09:52 – Story # 2: The Zoom installer let a researcher hack his way to root access on macOS – https://www.theverge.com/2022/8/12/23303411/zoom-defcon-root-access-privilege-escalation-hack-patrick-wardle
14:14 – Story # 3: Researchers Find Vulnerabilities in Software Underlying Discord, Microsoft Teams, and Other Apps – https://www.vice.com/en/article/m7gb7y/researchers-find-vulnerability-in-software-underlying-discord-microsoft-teams-and-other-apps
16:17 – Story # 4: Starlink Successfully Hacked Using $25 Modchip – https://threatpost.com/starlink-hack/180389/
21:46 – Story # 5: Anonymous poop gifting site hacked, customers exposed – https://www.bleepingcomputer.com/news/security/anonymous-poop-gifting-site-hacked-customers-exposed/
28:56 – Story # 6: Automotive supplier breached by 3 ransomware gangs in 2 weeks – https://www.bleepingcomputer.com/news/security/automotive-supplier-breached-by-3-ransomware-gangs-in-2-weeks/
33:47 – Story # 7: Man who built ISP instead of paying Comcast $50K expands to hundreds of homes – https://arstechnica.com/tech-policy/2022/08/man-who-built-isp-instead-of-paying-comcast-50k-expands-to-hundreds-of-homes/
38:07 – Story # 8: Slack leaked hashed passwords from its servers for years – https://www.theregister.com/2022/08/08/slack_passwords/
40:31 – Story # 9: Cisco Talos shares insights related to recent cyber attack on Cisco – https://blog.talosintelligence.com/2022/08/recent-cyber-attack.html
48:04 – Story # 10: Incident Report: Employee and Customer Account Compromise – https://www.twilio.com/blog/august-2022-social-engineering-attack
50:51 – Story # 11: Hackers Behind Twilio Breach Also Targeted Cloudflare Employees – https://thehackernews.com/2022/08/hackers-behind-twilio-breach-also_10.html



We are self-publishing free Infosec Zines called PROMPT#.

PROMPT# will contain: 

  • Infosec articles 
  • Challenging puzzles 
  • Comic book based on real-life hacking adventures 
  • Coloring contests 
  • Bonus Backdoors & Breaches Consultant Cards (print version only) 
  • Other stuffs 

You can check out current and upcoming issues here: https://www.blackhillsinfosec.com/prompt-zine/