Tag Archives: Chrome

Android Chrome 0day – Daily Security Byte EP. 176

Last week, a Chinese security research disclosed a new zero day Android vulnerability at PacSec’s Pwn2Own competition. Watch today’s video to learn a little more about this flaw, and what to do about it until it’s patched.

(Episode Runtime: 2:13)

Direct YouTube Link: https://www.youtube.com/watch?v=GzE9VpfhkaE

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

PWNed CIA, hacked Fitbit, and Fake Chrome- WSWiR Episode 167

Are you feeling overwhelmed by your normal IT job, but wish you had time to keep up with information security (infosec)? No worries! Let our weekly security video fill you in. Every Monday, I quickly summarize the biggest network and information security stories from the previous week, so you can keep up with the latest threats.

Today’s episode includes a story about a teenager hacking the CIA Director’s email, a new Fitbit hack, a malicious Chrome lookalike, and lots of patches. Press play to learn more, and check the references for other stories.

(Episode Runtime: 13:27)

Direct YouTube Link: https://www.youtube.com/watch?v=aqb7WIjuv94

EPISODE REFERENCES:

EXTRAS:

— Corey Nachreiner, CISSP (@SecAdept)

Malicious Chrome Look-alike – Daily Security Byte EP. 163

Have you installed free software lately. If so, there’s a chance you might think you’re surfing with Chrome, but in reality a look-alike browser is snooping on your web connections and forcing ads on you. In today’s video, I discuss eFast browser, a potentially unwanted program (PUP) shipping with certain free software installers.

Show note: I’m traveling tomorrow, and may not be able to post a daily video. If not, I’ll return Friday.

(Episode Runtime: 3:00)

Direct YouTube Link: https://www.youtube.com/watch?v=Ez1CwTwQwzI

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Political Trojans, WordPress 0day, and Tool Fails- WSWiR Episode 150

Another week, another flood of security news. Do you find yourself falling behind of the latest InfoSec news? Than this weekly video should help you catch up.

This week’s video covers the latest on the White House breach, a new security tool that got hacked a day later, and an old trojan that has received some politically-motivated updates. Press play to learn about all that and more; and don’t forget the references to other stories below.

As an aside, I’m experimenting with the timing of this weekly blog post. While I will continue to post the weekly video on Friday, I will schedule this blog post the Monday after. If you’d rather see the video on Friday, be sure to subscribe to the YouTube channel.

(Episode Runtime: 10:12)

Direct YouTube Link: https://www.youtube.com/watch?v=EmIr30YlLDA

EPISODE REFERENCES:

EXTRAS:

— Corey Nachreiner, CISSP (@SecAdept)

Password Alert Fail – Daily Security Byte EP.73

Yesterday, I recommended a free Google Chrome extension that could help spot phishing attacks, but today a security researcher has already figured out how to bypass it. Press play to learn what he did, and whether or not this extension is still worthwhile.

 

(Episode Runtime: 1:24)

Direct YouTube Link: https://www.youtube.com/watch?v=TdzYtcmLpao

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Prevent Phishing with Password Alert – Daily Security Byte EP.72

In today’s extra short daily vlog I recommend a free security tool rather than cover the InfoSec news. If you use Chrome, watch the video to learn how Password Alert can inform you of phishing attempts.

 

(Episode Runtime: 1:02)

Direct YouTube Link: https://www.youtube.com/watch?v=gYuJN8H6Dog

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Patches, Patches Everywhere – Daily Security Byte EP.66

I thought I’d only have to cover Microsoft Patch Day today, but Adobe, Oracle, and Google also came along for the ride. Patching is one of the easiest and most practical ways you can improve your network’s security. Watch today’s video to learn of all the products you should update.

 

(Episode Runtime: 2:18)

Direct YouTube Link: https://www.youtube.com/watch?v=8mWnk6OKDl0

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

#OpKKK – WSWiR Episode 130

Emergency Windows Patch, Malware Vs. Passwords, and #OpKKK

Nowadays, researchers, hackers, and the media bombard us with tons of information security (InfoSec) news each week. There’s so much, it’s hard to keep upespecially when it’s not your primary job. However, I believe everyone needs to be aware of the latest InfoSec threats. If you want to protect your network, follow our weekly video so I can quickly get you up to speed every Friday.

Today’s episode covers a critical out-of-cycle Microsoft patch, talks about the latest updates to a nasty piece of mobile malware, and explores the ethical issues surrounding a recent Anonymous attack campaign, Operation KKK. Press play for the details, and see the references below for more stories.

As an aside, after shooting this week’s video, I learned attackers may have stolen a bunch of passwords from many popular online services. It may be a hoax, but if you use Windows Live, PSN, or 2K Games, you should probably change you password… just to be safe. Have a great weekend!

(Episode Runtime: 10:44)

Direct YouTube Link: https://www.youtube.com/watch?v=XUsqxsHvVZc

EPISODE REFERENCES:

EXTRAS:

— Corey Nachreiner, CISSP (@SecAdept)

Java DDoS Botnet – WSWiR Episode 93

Cross-Platform Bots, Deceitful Ransomware, and Oracle Exploits

Ok… I know all your minds are already on this weekend’s upcoming Super Bowl, and if you’re anything like my Seattle-based office, you’ve got that Seahawk 12ᵗʰ man spirit going on. But, before running off to your tailgate party, why not take a few minutes to catch up on this week’s information security news with our weekly Infosec video?

On today’s episode, I talk about some deceitful new ransomware, share news of how hackers hijacked another Twitter handle, warn of a cross-platform Java-based botnet, and share details about some serious unpatched Oracle vulnerabilities. If you want to learn about all that and more, plus get some tips for protecting your organization, click on the white triangle play button below. Of course, if you hate staring at my ugly mug, you can also read about all these stories in the reference section instead. 

Have a great Super Bowl weekend and GO HAWKS!!

(Episode Runtime: 9:00)

Direct YouTube Link: http://www.youtube.com/watch?v=reKHxixBkDw

Episode References:

Extras:

— Corey Nachreiner, CISSP (@SecAdept)

Sniffin’ Android VPN – WSWiR Episode 92

Energetic Bear APTs, Bugged Browsers, and Trojaned Extension

Another week, another pile of scary sounding security stories. But don’t freak out… If you know how to protect yourself, you can easily avoid most of these vulnerabilities and issues. Enjoy another episode of WatchGuard Security Week in Review for a quick recap of the Infosec news from the week, and what to do about it.  .

Today’s show includes how shady advertisers are booby-trapping Chrome extensions, a speech recognition issue that might allow malicious websites to bug your browser, and news of a Russian APT campaign targeting the foreign energy sector. For all that and more, watch the video below, and don’t forget to peruse the Reference section for links to some extra security stories too!

Keep vigilant and have a great weekend!

(Episode Runtime: 9:31)

Direct YouTube Link: http://www.youtube.com/watch?v=c8N2c1q8TXc

Episode References:

Extras:

— Corey Nachreiner, CISSP (@SecAdept)

%d bloggers like this: