Paul's Security WeeklySubscribe
Vulnerability Management, Supply chain, IoT

Firmware, Mainframes, Security and Risk – PSW #806

Do people still use mainframes? IoT and firmware security, Apple Find my, Bluetooth is the gift that keeps on giving, to hackers that is, and more!

Full episode and show notes

Announcements

  • Follow Security Weekly Productions on LinkedIn for exclusive show clips, insights, and updates across our organization! Stay connected with our hosts and fellow community members, and join the conversation that's shaping the future of cybersecurity.

Hosts

Principal Security Researcher at Eclypsium
  1. 1. Disclaimer!
  2. 2. Software Complexity Bedevils Mainframe Security
  3. 3. Flash Programmer Shows Some Nifty Tricks
  4. 4. FujiFilm printer credentials encryption issue fixed
  5. 5. nneonneo/ghidra-rickroll: Get rickrolled, right in your favourite NSA reverse engineering tool
  6. 6. RCE exploit for Wyze Cam v3 publicly released, patch now
  7. 7. Only One Hacker At The Keyboard? Amateurs!
  8. 8. CVE-2023-46604
  9. 9. Hardware Hacking P2
  10. 10. Common Vulnerability Scoring System
  11. 11. Release EMBA v1.3.1 – Diff it · e-m-b-a/emba
  12. 12. Keylogger keyboard leaks passwords via Apple’s “Find My” location network
  13. 13. Looney Tunables Vulnerability Exploited by Kinsing
  14. 14. Kinsing Actors Exploiting Recent Linux Flaw to Breach Cloud Environments
Senior Vice President, Audience Content Strategy at CyberRisk Alliance
Executive Director at Guardedrisk
Product Security Research and Analysis Director at Finite State
  1. 1. North Korea’s BlueNoroff APT Debuts ‘Dumbed Down’ macOS Malware
  2. 2. Open Wounds: The last 5 years have left Bluetooth to bleed
  3. 3. Apple ‘Find My’ network can be abused to steal keylogged passwords
  4. 4. ‘Untouchable’: Associates React to Arrest of Drug Trafficker Turned ‘Encryption King’
  5. 5. Unveiling Socks5Systemz: The Rise of a New Proxy Service via PrivateLoader and Amadey
  6. 6. Bypassing Android 13 Restrictions with SecuriDropper
  7. 7. QNAP warns of critical command injection flaws in QTS OS, apps
  8. 8. Two Russians indicted for hacking JFK taxi dispatch system
  9. 9. Google Warns How Hackers Could Abuse Calendar Service as a Covert C2 Channel
Senior Cyber Advisor at Lawrence Livermore National Laboratory

Related

Fortinet, Palo Alto, VMWare – PSW #852

Fast cars kill people, Apple 0-Days, memory safety, poisoning the well, babble babble and malware that tries really hard to be stealthy, Palto Alto and Fortinet have some serious new vulnerabilities, open-source isn't free, but neither is commercial software, get on the TPM bus, find URLs with stealth, stealing credentials with more Palto Alto and ...