Oct 2019

1 hr 8 min

In this episode Bill and Gavin talk about dismantling hotel lamps for fun and profit, multiple router Vulnerabilities and keeping track of private information in repositories. Bill is also joined by Ryan and Scott from the research team to discuss a couple of major zero days affecting Exim and vBulletin.Keeping track of all your assets is hardhttps://github.com/eth0izzle/shhgit/https://www-vice-com.cdn.ampproject.org/c/s/www.vice.com/amp/en_us/article/ywanev/thousands-of-cloud-computing-servers-could-be-owned-with-very-simple-attack-researchers-sayCisco has lots of things needing patchinghttps://www.theregister.co.uk/2019/10/04/cisco_patches/tieing it

to this d-link vulnerability https://www.zdnet.com/article/d-link-routers-contain-remote-code-execution-vulnerability/Do you know the game - “never have I ever”?https://www.verdict.co.uk/wework-data-security-ipo/Are people thinking about BYOD anymorehttps://arstechnica.com/information-technology/2019/10/attackers-exploit-0day-vulnerability-that-gives-full-control-of-android-phones/Is it me, or could this have been the plan along, too good be true is often…https://threatpost.com/bug-in-nsas-ghidra/148787/With all that is going on - could this be a thing that makes you go hmmmhttps://www.darkreading.com/vulnerabilities---threats/facebook-patches-critical-whatsapp-security-flaw/d/d-id/1335993 and signal had a nasty bug as well https://thenextweb.com/security/2019/10/07/signal-patches-android-bug-that-allowed-hackers-to-answer-calls-on-your-behalf/Here take my charger, pleasehttps://www.vice.com/en_us/article/3kx5nk/fake-apple-lightning-cable-hacks-your-computer-omg-cable-mass-produced-soldTenable researchhttps://www.tenable.com/blog/cve-2019-16928-critical-buffer-overflow-flaw-in-exim-is-remotely-exploitablehttps://www.tenable.com/blog/critical-zero-day-pre-authentication-remote-code-execution-exploit-published-for-5-x-versions

Podcast Episode