Tag Archives: hacking

Oracle & Apple Patches – Daily Security Byte EP. 206

Another week, another pile of patches. If you use Apple or Oracle products, it’s time to download the latest updates to keep your computers and servers safe. Watch today’s video for a quick summary of the affected products and issue, and check the link below to learn more.

(Episode Runtime: 2:18)

Direct YouTube Link: https://www.youtube.com/watch?v=NT5OqG8VG9k

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

GateKeeper Bypassed Again – Daily Security Byte EP. 205

Many Apple fans think their Macs are immune to malware. Unfortunately, Apple’s computersthough less targetedare as susceptible to threats as any other computer. In fact, attackers can even evade OS X’s built-in anti-malware mechanism. Watch today’s video to learn why GateKeeper is vulnerable and how you can keep your Mac safe.

(Episode Runtime: 2:36)

Direct YouTube Link: https://www.youtube.com/watch?v=kPaMkmUDK0A

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

BB-8 Hacked – Daily Security Byte EP. 204

Today’s video covers an Internet of Things (IoT) hack for Star Wars geeks (like me). It’s not really dangerous, and probably won’t get exploited in the next “cyber war,” but its interesting nonetheless. Watch below to learn more.

(Episode Runtime: 2:42)

Direct YouTube Link: https://www.youtube.com/watch?v=3YREQah6PXQ

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

OpenSSH Client Flaws – Daily Security Byte EP. 203

Today, Qualys disclosed two new vulnerabilities in the popular secure shell application, OpenSSH. One of the flaws is pretty serious, but only affects the OpenSSH client. Watch today’s episode to learn more about these issues, and learn what other products might be affected.

(Episode Runtime: 2:31)

Direct YouTube Link: https://www.youtube.com/watch?v=EQlJLOXCNZ4

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Upgrade to IE11 or Edge No Matter What – Daily Security Byte EP. 202

Last month, I warned you that Microsoft planned to End-of-Life all version of Internet Explorer (IE) after January 12, except version 11. This means they will only release security updates for IE11 and the new Edge browser, so if you use Microsoft browsers you need to upgrade to stay safe. However, in today’s video I tell you why you need to upgrade to IE11 (or Edge) even if you don’t plan on using Microsoft’s browsers.

(Episode Runtime: 2:24)

Direct YouTube Link: https://www.youtube.com/watch?v=EkZeCHAXpww

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

New Year, New Microsoft Patches – Daily Security Byte EP. 201

Why not start your new year security plan right by staying current with patches? Tuesday was Microsoft and Adobe’s monthly patch day. Watch the video below to learn about the affected products, the severity of the issues, and how quickly to patch. Or at the very least skip to the reference section to find links to the proper patches.

(Episode Runtime: 2:51)

Direct YouTube Link: https://www.youtube.com/watch?v=4NGW6T3m36U

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Malicious WhatsApp Spam – Daily Security Byte EP. 200

Today, a few media outlets picked up on a new malicious spam campaign that masquerades  as a missed WhatsApp message to deliver malware. However, this isn’t the first time cyber criminals have tried this trick. Watch today’s episode to learn how to identify this malicious email and avoid it.

(Episode Runtime: 2:56)

Direct YouTube Link: https://www.youtube.com/watch?v=lMIvQhxRsfg

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

MassPoem4U – Daily Security Byte EP. 199

The term “hacking” has gotten a negative connotation in the press over the years. In most cases, the general public uses the term to describe digital criminal attacks. However, there are still plenty of folks that like to do playful, creative, and benign hacks. Watch today’s video to learn how some security conference attendees forced a fun poem into the logs of millions of web servers.

(Episode Runtime: 2:40)

Direct YouTube Link: https://www.youtube.com/watch?v=Zhxan31pYDw

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Firefox Certificate Security Breaks Vendor Security – Daily Security Byte EP. 198

Mozilla got serious about security early this new year by banning potentially weak certificates created using the SHA-1 hashing function. Unfortunately, many security vendors still use SHA-1, so this browser update broke some things. If you’ve been affected by the Firefox changes, or are concerned with our products stance on SHA-1 certificates, watch today’s video.

Show note: Please excuse the slight audio problems in today’s episode due to a technical glitch.

(Episode Runtime: 3:05)

Direct YouTube Link: https://www.youtube.com/watch?v=PNYfB738M0M

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

Hackers Leverage Let’s Encrypt – Daily Security Byte EP. 197

Let’s Encrypt is an organization that wants to help encrypt the web by offering CA validated SSL/TLS certificates for free. Unfortunately, attackers can also benefit from easy encryption. I support HTTPS everywhere, but you need to plan a way to secure your HTTPS traffic. Watch today’s episode to learn how malvertisers are exploiting easy encryption to hide, and how you can protect yourself.

(Episode Runtime: 3:30)

Direct YouTube Link: https://www.youtube.com/watch?v=9cWUGNbLXdc

EPISODE REFERENCES:

— Corey Nachreiner, CISSP (@SecAdept)

%d bloggers like this: