go to sections menu

The Security box, podcast 23 is now available from blog The Technology blog and podcast

This is for the technology blog and podcast Commentary, articles, and podcasts

header picture for Ingegno theme

You are here: podcast announcements > The Security box, podcast 23 is now available

Go to Homepage, contents or to navigation menu



The Security box, podcast 23 is now available

Hello folks, I present you the security box, podcast 23. Below, please find notes and things, the show notes, and a direct download link as usual.


Welcome to podcast 23 of the security box. The full show notes follow, noting that the rss has the first portion. I hope that you enjoy the program.

Note, that this is the last live program until the first Wednesday of January 2021. The JRN will continue to give you Security Box episodes covering the year in review, 2020 from both the tech podcast and Security Box platforms.

Here are the show notes.


Welcome to podcast 23 of the security box. Picking up where we leave off, we continue with Shaken/Stir and its discussion from podcast 21.

Besides that, we’ll go ahead and talk about a company which doesn’t really care about the security of its customers. The name has been mentioned in passing, but now its time to talk about some very serious stuff on a podcast.

We’ll have news, notes, and more.

Topic:

Shaken/Stir was discussed on podcast 21 of the podcast, and podcast 23 will finish it off. Here are the links, taken from podcast 21’s notations.

News Notes

Government:

  • Oh boy, the government is really in trouble. Multiple articles within the last 24 hours indicate that the Comerce Department are in some serious trouble and maybe more are on the way. Cyberscoop and Krebs on Security are two sources, and there may be more from these sources. The government has had a lot of trouble with their security, now this? The cyberscoop article in question says in part:

    Hackers breached the Commerce Department, and reportedly have infiltrated the Treasury Department and other U.S. agencies, in incidents that government
    security officials said on Sunday that they were fighting to contain.

    There were signs that the impact could stretch far and wide in not only the government, but also the private sector. SolarWinds, an IT provider to many
    government agencies and Fortune 500 companies, said it was working with law enforcement, the intelligence community and others to investigate a vulnerability
    apparently implanted into its supply chain by a nation state.

    “We can confirm there has been a breach in one of our bureaus,” a Commerce Department spokesperson said. The spokesperson added that Commerce has asked
    the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency “and the FBI to investigate, and we cannot comment further at this
    time.”

    This blog post from Monday goes in to a little bit more, including showing who this company Solar Wind has as customers. We’re definitely going to learn more about this one.

  • The UScert now has something on the solar wind issue which I’m going to put in the show notes. It was released well after I broke the story Monday morning on the blog. Active Exploitation of SolarWinds Software may end up getting updated, and the USCert is an arm of the government.

You get caught, get time, and don’t try to get an appeal: some good news!

Open forum:

  • Why do we have to hand out our social security numbers as identifiers for everything we do? I understand places like Social Security, the Department of Motor Vehicles, and places that require that. Job applications require it, its known as a bad identifier as it can be taken and that is it for you. What do you think about that? Sound off.

Want to download today’s program? Don’t worry! Use this link to download the 193.60mb file and enjoy!

I’ll post another blog post after podcast 25 with the links to the entire archive to date like I did for the first 13 episodes. Thanks so much for listening to the program and feel free to participate any time!


Informazioni sull'articolo

The Security box, podcast 23 is now available was released on December 16, 2020 at 6:00 pm by tech in podcast announcements.
Last modified: December 16, 2020.


Comments (0)

No comments yet.

Leave a comment

You must be logged in to post a comment.

go to sections menu


navigation menu

go to sections menu