The topic of two-factor authentication or 2FA is a big one. We can really call this malware, as while it does bypass two-factor, there is some very tricky things it does.
We’ll talk about it as well as some other newsy things.
If you get the show notes via RSS, the newsy items aren’t in your feed because of the 4,000 character limit. Because of that, we tell people to go to the blog for the complete notes.
Don’t have RSS? Don’t worry! We’ve got the show linked for you below.
| Podcast number | Date of broadcast |
|---|---|
| podcast 186 (178.8mb) | April 10, 2024 |
Now, let’s give you the entire show notes below.
Hello folks, welcome to program 186 of the Security Box. We’l start this program with a things to ponder and a video about the AT&T issues which we blogged within the past week or two. We’ll also cover the news, the landscape, questions comments and concerns.
Some newsy things
Social Media
We spotted something very interesting in a two part toot that caught my attention dealing with BlueSky. Apparently, it isn’t accessible, and the developers said that they don’t honestly care.
XZ
The biggest news out of the week was a Linux thing called XZ. While I’m still behind, I found a current article about it, and most users may be OK. If you want a timeline, this blog post might have reasons for you to update if necessary. It may be a proof of concept that might be in limited distributions, but this is a supply chain issue at its finest. Read the attached post for complete details.
A nice team up
Hugging Face has a nice team up going for them.
I can’t believe this crap
Did you know that some airlines (14 of them) collect more information than they actually need? Some may be of value for specific things, but it goes beyond that. The research was only done on one of our favorite operating systems, Android, but it remains to be seen if IOS is affected.
Ivanti Again
Ivanti apparently has put out an open letter. Is it still time for you to leave the company?
Phishing As A service, Tycoon 2fa
If you haven’t been reading the blog, then you’ve heard and or read very little. This is the blog post about the subject. If you want the original article, its titled New MFA-bypassing phishing kit targets Microsoft 365, Gmail accounts so go, and read.
Supporting the podcast
If you’d like to support our efforts on what this podcast is doing, you can feel free to donate to the network, subscribing to the security box discussion list or sending us a note through contact information throughout the podcast. You can also find contact details on our blog page found here. Thanks so much for listening, reading and learning! We can’t do this alone.
Internet Radio affiliates airing our program
Our Internet Radio stations that carry us include Blue Streak Radio and International Friends Radio Network. The program is also carried live through the Independent Channel which is part of 98.6 the mix, KKMX, International. If you want to carry us, please use the Jared Rimer Network site to do that and let me know about your station. Please allow 3-4 hours for airplay, although we try to go 3 hours for this program. Thanks so much!
Coming up next week, we’ve got another doozy.
| Podcast number | Date of broadcast | Annotated Show notes |
|---|---|---|
| podcast 187 | April 17, 2024 | How safe is our critical drinking water? No, I’m not talking about whether we can drink it, I’m talking about the infrastructure of it. Seems as though the infrastructure is not that secure. We’ll talk about it. |
We hope you’ll join us next Wednesday for this topic. Thanks for having an interest in our program and we’ll see you soon!
Discover more from Jared's Technology podcast network
Subscribe to get the latest posts sent to your email.