Threat Wire

Oct 06 2020 9 mins 2.8k

Threat Wire by Hak5 is a weekly short format video show by Shannon Morse of Hak5 that covers the biggest news stories about what's threatening our privacy, security, and internet freedom. Stay up to date with #ThreatWire, every Tuesday.





Pay a Ransom for Ransomware? Pay a Penalty Too. - ThreatWire
Oct 06 2020 11 mins  
Wanna pay that ransom? You might end up paying a penalty too. Medical services are being targeted by criminals, and phishing is getting smarter! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch Directly! - https://snubsie.com/shop Shop ThreatWire Merch on Teespring! - https://teespring.com/stores/shannons-store-24 Join now for access to extra perks and to support ThreatWire! https://www.patreon.com/threatwire Watch this video on youtube: https://youtu.be/AdxgaV1SNZI Links:https://home.treasury.gov/system/files/126/ofac_ransomware_advisory_10012020_1.pdfhttps://arstechnica.com/tech-policy/2020/10/paying-ransomware-demands-could-land-you-in-hot-water-with-the-feds/https://krebsonsecurity.com/2020/10/ransomware-victims-that-pay-up-could-incur-steep-fines-from-uncle-sam/https://www.zdnet.com/article/ransomware-is-the-biggest-problem-on-the-web-this-big-change-could-be-the-answer/https://www.cyberscoop.com/ransomware-payments-treasury-ofac-notice/https://www.zdnet.com/article/us-treasury-says-some-ransomware-payments-may-need-its-express-approval/ https://www.cnet.com/news/universal-health-services-slammed-by-massive-cyberattack/https://www.uhsinc.com/statement-from-universal-health-services/https://www.zdnet.com/article/uhs-hospital-network-hit-by-ransomware-attack/https://www.cyberscoop.com/uhs-cybersecurity-health-care-incident/https://www.cyberscoop.com/ohio-medical-hack-ransomware/https://www.zdnet.com/article/911-services-down-in-multiple-us-states/ https://www.zdnet.com/article/this-worm-phishing-campaign-is-a-game-changer-in-password-theft-account-takeovers/https://medium.com/swlh/phishing-with-worms-the-greatest-password-theft-ive-ever-seen-26d6ad4658f9 Photo credit:https://live.staticflickr.com/65535/17123251389_80282733ce_b.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


How Attackers Hacked the Feds with VPN Vulnerabilities - ThreatWire
Sep 29 2020 10 mins  
An active directory flaw is being actively exploited, coffee makers can be hacked (which, are we surprised?), and a VPN vulnerability was used to hack the feds! All that coming up now on ThreatWire. #threatwire #hak5 Links:Watch on youtube: https://youtu.be/kxlgrj8snaM Subscribe for more giveaways! https://youtube.com/shannonmorse Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch Directly! - https://snubsie.com/shop Shop ThreatWire Merch on Teespring! - https://teespring.com/stores/shannons-store-24 Join now for access to extra perks and to support ThreatWire! https://www.patreon.com/threatwire Links:ZeroLogon:https://thehackernews.com/2020/09/detecting-and-preventing-critical.htmlhttps://krebsonsecurity.com/2020/09/microsoft-attackers-exploiting-zerologon-windows-flaw/https://www.zdnet.com/article/microsoft-says-it-detected-active-attacks-leveraging-zerologon-vulnerability/https://www.secura.com/blog/zero-logonhttps://arstechnica.com/information-technology/2020/09/one-of-this-years-most-severe-windows-bugs-is-now-under-active-exploit/https://arstechnica.com/information-technology/2020/09/feds-issue-emergency-order-for-agencies-to-patch-critical-windows-flaw/https://us-cert.cisa.gov/ncas/current-activity/2020/09/21/samba-releases-security-update-cve-2020-1472 Coffee Maker Vulnerability:https://www.pentestpartners.com/security-blog/hacking-kettles-extracting-plain-text-wpa-psks-yes-really/https://www.evilsocket.net/2016/10/09/IoCOFFEE-Reversing-the-Smarter-Coffee-IoT-machine-protocol-to-make-coffee-using-terminal/index.htmlhttps://arstechnica.com/information-technology/2020/09/how-a-hacker-turned-a-250-coffee-maker-into-ransom-machine/https://decoded.avast.io/martinhron/the-fresh-smell-of-ransomed-coffee/https://www.youtube.com/watch?v=bJrIh94RSiI VPN Vuln Attack Hits Feds:https://us-cert.cisa.gov/ncas/analysis-reports/ar20-268ahttps://threatpost.com/feds-cyberattack-data-stolen/159541/https://www.zdnet.com/article/cisa-says-a-hacker-breached-a-federal-agency/ Photo credit:https://cdn.pixabay.com/photo/2020/06/06/15/08/washington-monument-5266903_1280.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆



Ransomware Causes a Death, Mozilla Sends Off FireFox Send - ThreatWire
Sep 22 2020 7 mins  
A person has died after ransomware hit a hospital, Twitter is requiring new security efforts for high profile political users, and Mozilla shuts down firefox send! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch Directly! - https://snubsie.com/shop Shop ThreatWire Merch on Teespring! - https://teespring.com/stores/shannons-store-24 https://youtu.be/Tt1rh45g1rM - Subscribe and comment for a chance to win a Wifi Pineapple Mark VII! Ends 9/23/20 Join now for access to extra perks and to support ThreatWire! https://www.patreon.com/threatwire Links:Hospital Ransomware:https://arstechnica.com/information-technology/2020/09/patient-dies-after-ransomware-attack-reroutes-her-to-remote-hospital/https://twitter.com/UniklinikDUS/status/1306523366090776576https://twitter.com/certbund/status/1306138925824651264https://www.bsi.bund.de/DE/Presse/Pressemitteilungen/Presse2020/Citrix_Schwachstelle_160120.htmlhttps://support.citrix.com/article/CTX267027https://www.zdnet.com/article/first-death-reported-following-a-ransomware-attack-on-a-german-hospital/https://wgem.com/2020/09/17/german-hospital-hacked-patient-taken-to-another-city-dies/https://www.zdnet.com/article/ransomware-warning-hackers-are-launching-fresh-attacks-against-universities/ Twitter Security:https://blog.twitter.com/en_us/topics/company/2020/Improved-Account-Security-2020-US-Election.htmlhttps://help.twitter.com/en/safety-and-security/account-security-tipshttps://www.cnet.com/news/twitter-ramps-up-efforts-to-safeguard-high-profile-accounts-ahead-of-the-us-election/https://www.zdnet.com/article/twitter-plans-to-protect-high-profile-us-political-accounts-ahead-of-the-2020-election/https://www.cyberscoop.com/2020-election-twitter-security-politics/ Firefox Send:https://www.zdnet.com/article/mozilla-suspends-firefox-send-service-while-it-addresses-malware-abuse/https://www.cnet.com/news/mozilla-shuts-down-firefox-send-file-transfer-service-after-malware-abuse/https://www.zdnet.com/article/mozilla-shuts-down-firefox-send-and-firefox-notes-services/https://blog.mozilla.org/blog/2020/09/17/update-on-firefox-send-and-firefox-notes/ Photo credit:https://upload.wikimedia.org/wikipedia/commons/9/97/Ambulance_Germany.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


USPS Used Vulnerable Systems; Voatz vs. Ethical Hackers - ThreatWire
Sep 15 2020 10 mins  
New bluetooth flaws have been found, the USPS used vulnerable systems for years, and voatz wants to make it harder for you to do your job! All that coming up now on ThreatWire. #threatwire #hak5 Links:Wifi Pineapple Mk VII Unboxing and GIVEAWAY!: https://www.youtube.com/watch?v=Tt1rh45g1rM&t Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch Directly! - https://snubsie.com/shop Shop ThreatWire Merch on Teespring! - https://teespring.com/stores/shannons-store-24 http://www.youtube.com/ShannonMorse?sub_confirmation=1 -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! Sign up now for ACTION ALERTS! Help me reach our next ThreatWire goal to unlock merch tiers and an audio podcast! https://www.patreon.com/threatwire Links:New Bluetooth Vulnerability:https://www.bluetooth.com/learn-about-bluetooth/bluetooth-technology/bluetooth-security/blurtooth/https://thehackernews.com/2020/09/new-bluetooth-vulnerability.htmlhttps://threatpost.com/bluetooth-bug-mitm-attacks/159124/ USPS using outdated vulnerable systems:https://www.uspsoig.gov/sites/default/files/document-library-files/2020/20-251-R20.pdfhttps://www.vice.com/en_us/article/akzpd5/postal-service-used-apps-that-had-catastrophic-vulnerabilities-for-yearshttps://www.businessinsider.com/us-postal-service-used-outdated-systems-2020-9 Voatz voting company wants to make security research harder:https://www.supremecourt.gov/DocketPDF/19/19-783/153062/20200903122434600_Voatz%20Amicus%20Brief.pdfhttps://www.cnet.com/news/online-voting-company-pushes-to-make-it-harder-for-researchers-to-find-security-flaws/https://www.cnet.com/news/security-flaws-mar-mobile-voting-app-researchers-say/https://www.cyberscoop.com/voatz-cfaa-supreme-court-mobile-security-voting/ Photo credit:https://upload.wikimedia.org/wikipedia/commons/6/6d/USPS_mailboxes.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Bypassing PINs on Contactless VISA Cards; Tesla Targeted Cyberattack Fail - ThreatWire
Sep 01 2020 10 mins  
Tesla was targeted in a failed cyberattack, an Autodesk Exploit was Used In The Wild, and Bypassing PINs on contactless VISA Cards! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch Directly! - https://snubsie.com/shop Shop ThreatWire Merch on Teespring! - https://teespring.com/stores/shannons-store-24 http://www.youtube.com/ShannonMorse?sub_confirmation=1 -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! Sign up now for ACTION ALERTS! Help me reach our next ThreatWire goal to unlock merch tiers and an audio podcast! https://www.patreon.com/threatwire Links:Tesla targeted in cyberattackhttps://www.cnet.com/roadshow/news/tesla-cyberattack-elon-musk/https://www.justice.gov/opa/press-release/file/1308766/downloadhttps://www.teslarati.com/tesla-employee-fbi-thwarts-russian-cybersecurity-attackhttps://threatpost.com/elon-musk-confirms-tesla-factory-a-target-of-foiled-cyberattack/158762/https://www.cyberscoop.com/tesla-ransomware-attempt-elon-musk-russia/ Autodesk vulnerability targeted in industrial espionage campaignhttps://www.bitdefender.com/files/News/CaseStudies/study/365/Bitdefender-PR-Whitepaper-APTHackers-creat4740-en-EN-GenericUse.pdfhttps://threatpost.com/hackers-exploit-autodesk-flaw-in-recent-cyberespionage-attack/158669/https://www.autodesk.com/trust/security-advisories/adsk-sa-2020-0005https://thehackernews.com/2020/08/autodesk-malware-attack.htmlhttps://www.cyberscoop.com/autodesk-plugin-bitdefender-real-estate-hack/ Bypassing PINs for Visa Contactless Paymentshttps://www.zdnet.com/article/academics-bypass-pins-for-visa-contactless-payments/https://arxiv.org/pdf/2006.08249.pdfhttps://www.youtube.com/watch?v=JyUsMLxCCt8 Photo credit:https://upload.wikimedia.org/wikipedia/commons/8/8d/Tesla_Gigafactory_1_-_December_2019.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


New Botnet Hits SSH Servers; Bernie Calls For Nationwide Biometric Privacy - ThreatWire
Aug 25 2020 10 mins  
FritzFrog Attacks SSH Servers Worldwide, Weather Channel App Data Privacy Settlement, Nationwide Biometric Data Privacy?! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch Directly! - https://snubsie.com/shop Shop ThreatWire Merch on Teespring! - https://teespring.com/stores/shannons-store-24 http://www.youtube.com/ShannonMorse?sub_confirmation=1 -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! Sign up now for ACTION ALERTS! Help me reach our next ThreatWire goal to unlock merch tiers and an audio podcast! https://www.patreon.com/threatwire Links: Via Joel:P2P Botnet Malware Targets SSH Servers:https://www.guardicore.com/2020/08/fritzfrog-p2p-botnet-infects-ssh-servers/https://arstechnica.com/information-technology/2020/08/new-p2p-botnet-infects-ssh-servers-all-over-the-world/https://thehackernews.com/2020/08/p2p-botnet-malware.htmlhttps://threatpost.com/fritzfrog-botnet-millions-ssh-servers/158489/https://www.bleepingcomputer.com/news/security/fritzfrog-malware-attacks-linux-servers-over-ssh-to-mine-monero/https://github.com/guardicore/labs_campaigns/tree/master/FritzFrog Weather Channel App Data Privacy settlement:https://threatpost.com/lawsuit-weather-channel-location-data/140579/https://int.nyt.com/data/documenthelper/554-l-a-weather-app-location/8980fd9af72915412e31/optimized/full.pdfhttps://filedn.com/lOJqn8isbUNJvUBnJTlV5OS/Weather%20Channel%20App%20Aug%202020.pdfhttps://threatpost.com/ibm-settles-lawsuit-over-weather-channel-app-data-privacy/158529/https://www.cnet.com/news/weather-channels-location-data-settlement-doesnt-mean-much-for-your-privacy/ New Senate Bill could expand facial recog. Restrictions nationwide:https://www.merkley.senate.gov/imo/media/doc/20.08.04%20National%20Biometric%20Information%20Privacy%20Act.pdfhttps://threatpost.com/senate-bill-expand-facial-recognition-restrictions-nationwide/158509/https://www.merkley.senate.gov/news/in-the-news/a-new-senate-bill-would-ban-corporations-from-using-facial-recognition-without-peoples-explicit-consent Photo credit:https://www.maxpixel.net/static/photo/1x/Exotic-Blue-Zoo-Close-Up-Nature-Terrarium-Frog-1335022.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Amazon Alexa Can Be Hacked, Instagram Retains Delete Data, Linux Malware Found By NSA & FBI - ThreatWire
Aug 18 2020 9 mins  
Amazon’s ALEXA gets pwned, Instagram has been conducting illegal activities (allegedly), and new russian malware attacks linux! All that coming up now on ThreatWire. #threatwire #hak5 Links: Youtube video: https://youtu.be/PZti9Lmw7pg Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch Directly! - https://snubsie.com/shop Shop ThreatWire Merch on Teespring! - https://teespring.com/stores/shannons-store-24 http://www.youtube.com/ShannonMorse?sub_confirmation=1 -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! Sign up now for ACTION ALERTS! Help me reach our next ThreatWire goal to unlock merch tiers and an audio podcast! https://www.patreon.com/threatwire Links:Amazon:https://threatpost.com/amazon-alexa-one-click-attack-can-divulge-personal-data/158297/https://www.cnet.com/news/alexa-vulnerability-is-a-reminder-to-delete-your-voice-history/https://www.zdnet.com/article/in-one-click-amazon-alexa-could-be-exploited-for-theft-of-voice-history-pii-skill-tampering/https://thehackernews.com/2020/08/amazon-alexa-hacking-skills.htmlhttps://www.youtube.com/watch?v=xfqGYic4hj8&feature=emb_title Instagram:https://www.bloomberg.com/news/articles/2020-08-12/facebook-s-instagram-targeted-in-new-lawsuit-over-biometricshttps://threatpost.com/instagram-retained-deleted-user-data-despite-gdpr-rules/158366/https://techcrunch.com/2020/08/13/instagram-delete-photos-messages-servers/https://www.theverge.com/2020/8/14/21368602/instagram-kept-deleted-photos-messages-on-servers-year-bug-fixed Linux malware:https://media.defense.gov/2020/Aug/13/2002476465/-1/-1/0/CSA_DROVORUB_RUSSIAN_GRU_MALWARE_AUG_2020.PDFhttps://www.zdnet.com/article/fbi-and-nsa-expose-new-linux-malware-drovorub-used-by-russian-state-hackers/https://threatpost.com/nsa-fbi-warn-of-linux-malware-used-in-espionage-attacks/158351/https://www.cyberscoop.com/russian-military-intelligence-gru-hacking-drovorub-malware-fbi-nsa/https://arstechnica.com/information-technology/2020/08/nsa-and-fbi-warn-that-new-linux-malware-threatens-national-security/ Photo credit:https://www.pexels.com/photo/art-abstract-technology-blur-4790274/ -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Satellite Comms Can Be Hacked; Intel Source Code Leaks - ThreatWire
Aug 11 2020 12 mins  
Intel Source Code is Leaked, I’ve got news from Black Hat and DEF CON, and the NSA Warns of Location Data Exposure! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch Directly! - https://snubsie.com/shop Shop ThreatWire Merch on Teespring! - https://teespring.com/stores/shannons-store-24 http://www.youtube.com/ShannonMorse?sub_confirmation=1 -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! Sign up now for ACTION ALERTS! Help me reach our next ThreatWire goal to unlock merch tiers and an audio podcast! https://www.patreon.com/threatwire Links:Intel leak:https://arstechnica.com/information-technology/2020/08/intel-is-investigating-the-leak-of-20gb-of-its-source-code-and-private-data/https://threatpost.com/hackers-dump-20gb-of-intels-confidential-data-online/158178/https://www.zdnet.com/article/intel-investigating-breach-after-20gb-of-internal-documents-leak-online/https://www.cyberscoop.com/intel-data-leak-20-gb-exconfidential-lake/ BlackHat / DEF CON RoundUp!Satellite comms can be hacked:https://www.youtube.com/watch?v=ku0Q_Wey4K0https://threatpost.com/black-hat-satellite-comms-eavesdropping-hack/158146/https://www.zdnet.com/article/how-hackers-could-spy-on-satellite-internet-traffic-with-just-300-of-home-tv-equipment/https://www3.waldenu.edu/-/media/Walden/files/about-walden/comt/school-of-information-systems-and-technology/vsat-signals-vulnerable-to-low-cost-device-exploitation.pdf?la=enVoting machines:https://2l9u8tyqi4-flywheel.netdna-ssl.com/wp-content/uploads/2020/08/ESS_vulnerability_disclosure_policy.pdfhttps://threatpost.com/black-hat-voting-machine-vendor-embraces-hackers/158085/https://www.cyberscoop.com/ess-election-security-vulnerability-disclosure-black-hat/ NSA warns of data leaks from phones:https://media.defense.gov/2020/Aug/04/2002469874/-1/-1/0/CSI_LIMITING_LOCATION_DATA_EXPOSURE_FINAL.PDFhttps://arstechnica.com/tech-policy/2020/08/beware-of-find-my-phone-wi-fi-and-bluetooth-nsa-tells-mobile-users/https://threatpost.com/nsa-warns-smartphones-leak-location-data/158040/https://www.cyberscoop.com/nsa-cellphone-location-data-guidance/ Photo credit:DEF CON 2020 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Rite Aid Used Facial Recognition Cameras; BootHole Hits GRUB2 - ThreatWire
Aug 04 2020 12 mins  
Three have been arrested for the twitter hack, the BootHole vulnerability creates bigger problems, and Rite Aid used facial recognition technology in hundreds of stores! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch Directly! - https://snubsie.com/shop Shop ThreatWire Merch on Teespring! - https://teespring.com/stores/shannons-store-24 http://www.youtube.com/ShannonMorse?sub_confirmation=1 -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! Sign up now for ACTION ALERTS! Help me reach our next ThreatWire goal to unlock merch tiers and an audio podcast! https://www.patreon.com/threatwire Links:Twitter Hack:https://www.theverge.com/2020/7/30/21348974/twitter-spear-phishing-attack-bitcoin-scamhttps://arstechnica.com/information-technology/2020/07/twitter-hackers-used-phone-spear-phishing-in-mass-account-takeover/https://threatpost.com/twitter-hack-mobile-spearphishing-scam/157896/https://www.theverge.com/2020/7/31/21349920/twitter-hack-arrest-florida-teen-fbi-irs-secret-servicehttps://www.justice.gov/usao-ndca/pr/three-individuals-charged-alleged-roles-twitter-hackhttps://thehackernews.com/2020/07/twitter-hacker-arrested.htmlhttps://arstechnica.com/tech-policy/2020/07/florida-teen-arrested-charged-with-being-mastermind-of-twitter-hack/ BootHole:https://thehackernews.com/2020/07/grub2-bootloader-vulnerability.htmlhttps://threatpost.com/billions-of-devices-impacted-secure-boot-bypass/157843/https://securityledger.com/2020/07/boothole-bootloader-flaw-breaks-security-on-most-linux-windows-devices/https://eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/https://www.zdnet.com/article/boothole-attack-impacts-windows-and-linux-systems-using-grub2-and-secure-boot/https://www.zdnet.com/article/linux-distros-fix-new-boothole-bug/https://arstechnica.com/gadgets/2020/07/red-hat-and-centos-systems-arent-booting-due-to-boothole-patches/https://www.zdnet.com/article/boothole-fixes-causing-boot-problems-across-multiple-linux-distros/ Face masks are thwarting surveillance / Rite Aid used facial recognition tech in stores:https://www.reuters.com/investigates/special-report/usa-riteaid-software/https://www.reuters.com/investigates/special-report/usa-riteaid-software/#riteaid-methodologyhttps://arstechnica.com/tech-policy/2020/07/rite-aid-deployed-facial-recognition-in-hundreds-of-stores-report-finds/https://threatpost.com/facial-recognition-flop-face-masks-thwart-virus-stump-security-systems/157821/https://www.cnet.com/news/face-masks-are-thwarting-even-the-best-facial-recognition-algorithms-study-finds/ Photo credit:Eclypsium -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


DJI’s Android App: Ripe for a Hack or Legitimate Usage? - ThreatWire
Jul 28 2020 10 mins  
Does DJI’s Android app have a vulnerability? Or is it nothing to worry about?, Twitter shares more info about the hack, and Garmin is hit with ransomware! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch Directly! - https://snubsie.com/shop Shop ThreatWire Merch on Teespring! - https://teespring.com/stores/shannons-store-24 http://www.youtube.com/ShannonMorse?sub_confirmation=1 -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! Sign up now for ACTION ALERTS! Help me reach our next ThreatWire goal to unlock merch tiers and an audio podcast! https://www.patreon.com/threatwire Links:DJI:https://www.synacktiv.com/en/publications/dji-android-go-4-application-security-analysis.htmlhttps://blog.grimm-co.com/2020/07/dji-privacy-analysis-validation.htmlhttps://thehackernews.com/2020/07/dji-drone-hacking_24.htmlhttps://arstechnica.com/information-technology/2020/07/chinese-made-drone-app-in-google-play-spooks-security-researchers/https://www.dji.com/newsroom/news/dji-statement-on-recent-reports-from-security-researchershttps://www.cyberscoop.com/dji-drones-china-android-application/ Twitter:https://www.reuters.com/article/us-twitter-cyber-access-exclusive/exclusive-more-than-1000-people-at-twitter-had-ability-to-aid-hack-of-accounts-idUSKCN24O34E?utm_source=reddit.comhttps://twitter.com/TwitterSupport/status/1286088135525318656https://www.vice.com/en_us/article/xg84ja/twitter-hack-email-to-accounts-that-were-hacked Garmin:https://twitter.com/GarminFitness/status/1286273537699983363https://www.cyberscoop.com/garmin-outage-ransomware-wastedlocker/https://www.zdnet.com/article/garmin-services-and-production-go-down-after-ransomware-attack/https://www.garmin.com/en-US/outage/https://connect.garmin.com/status/https://www.zdnet.com/article/garmins-outage-ransomware-attack-response-lacking-as-earnings-loom/ Photo credit:https://upload.wikimedia.org/wikipedia/commons/7/7d/DJI_Mavic_Pro_%2832613533582%29.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆



The Importance of the Twitter Hack, Explained - ThreatWire
Jul 21 2020 13 mins  
The twitter hack, fully explained. Who is hacking vaccine researchers? And zoom fixes a vanity URL vulnerability! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch Directly! - https://snubsie.com/shop Shop ThreatWire Merch on Teespring! - https://teespring.com/stores/shannons-store-24 http://www.youtube.com/ShannonMorse?sub_confirmation=1 -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! Sign up now for ACTION ALERTS! https://www.patreon.com/threatwire Links:Twitterhttps://thehackernews.com/2020/07/verified-twitter-hacked.htmlhttps://arstechnica.com/information-technology/2020/07/musk-obama-biden-bezos-gates-bitcoin-scam-hits-twitter-in-coordinated-blitz/https://www.blockchain.com/btc/address/bc1qxy2kgdygjrsqtzq2n0yrf2493p83kkfjhx0wlhhttps://twitter.com/sniko_/status/1283485972286656517https://twitter.com/TwitterSupport/status/1283562446196596737https://www.theverge.com/2020/7/15/21326372/twitter-hack-bitcoin-scam-new-tweets-shut-off-verified-accountshttps://www.theverge.com/2020/7/15/21326656/twitter-hack-explanation-bitcoin-accounts-employee-toolshttps://www.cnet.com/news/twitter-says-hackers-downloaded-data-from-up-to-8-accounts/https://www.vice.com/en_us/article/jgxd3d/twitter-insider-access-panel-account-hacks-biden-uber-bezoshttps://blog.twitter.com/en_us/topics/company/2020/an-update-on-our-security-incident.htmlhttps://www.theverge.com/2020/7/16/21327701/fbi-twitter-hack-attack-investigation-national-security-risk-cybersecurityhttps://www.vice.com/en_us/article/jgxdwy/twitter-encrypted-direct-messages-dms-ron-wydenhttps://www.theverge.com/2020/7/16/21327249/twitter-bitcoin-scam-congress-action-ed-markey-josh-hawleyhttps://www.hawley.senate.gov/hawley-sends-letter-jack-dorsey-massive-twitter-hack-asks-cooperation-federal-law-enforcementhttps://techcrunch.com/2020/07/15/twitter-hacker-admin-scam/https://www.theverge.com/2020/7/17/21329147/twitter-hack-attack-bitcoin-scam-how-it-happened-new-york-times-go-read-thishttps://krebsonsecurity.com/2020/07/whos-behind-wednesdays-epic-twitter-hack/https://arstechnica.com/information-technology/2020/07/twitter-lost-control-of-its-internal-systems-to-bitcoin-scamming-hackers/ COVID Vaccinehttps://www.ncsc.gov.uk/news/uk-and-allies-expose-russian-attacks-on-coronavirus-vaccine-developmenthttps://arstechnica.com/information-technology/2020/07/russia-linked-hackers-accused-of-targeting-covid-19-vaccine-developers/https://media.defense.gov/2020/Jul/16/2002457639/-1/-1/0/NCSC_APT29_ADVISORY-QUAD-OFFICIAL-20200709-1810.PDFhttps://www.cnet.com/news/russian-hackers-allegedly-behind-cyberattacks-to-steal-covid-19-vaccine/ Zoomhttps://threatpost.com/zoom-vanity-url-zero-day/157510/https://thehackernews.com/2020/07/zoom-vanity-url-vulnerability.html Photo credit:https://live.staticflickr.com/4145/5042764163_15405340fe_b.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


DataMinr Used To Track Protests - ThreatWire
Jul 14 2020 8 mins  
DataMinr is Used To Track Protests, a Zoom Zero Day is Patched, and the BlueLeaks Server was Seized by police! All that coming up now on ThreatWire. #threatwire #hak5 Links:Register here to watch my keynote for #GRIMMcon 0x2! https://www.grimm-co.com/grimmcon-0x2 Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch Directly! - https://snubsie.com/shop Shop ThreatWire Merch on Teespring! - https://teespring.com/stores/shannons-store-24 http://www.youtube.com/ShannonMorse?sub_confirmation=1 -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:https://theintercept.com/2020/07/09/twitter-dataminr-police-spy-surveillance-black-lives-matter-protests/http://allthingsd.com/20111005/meet-dataminr-one-of-twitters-favorite-ecosystem-start-ups/http://www.aclunc.org/docs/20161212_twitter_letter_to_aclu.pdfhttps://blog.twitter.com/developer/en_us/topics/community/2016/developer-policies-to-protect-peoples-voices-on-twitter.html https://blog.0patch.com/2020/07/remote-code-execution-vulnerability-in.htmlhttps://thehackernews.com/2020/07/zoom-windows-security.htmlhttps://threatpost.com/unpatched-zoom-bug-rce/157317/https://www.zdnet.com/article/zoom-working-on-patching-zero-day-disclosed-in-its-windows-client/ https://threatpost.com/blueleaks-server-seized-by-german-police-report/157288/https://www.cyberscoop.com/blueleaks-german-police-seize-server/https://twitter.com/DDoSecretshttps://www.pcmag.com/news/germany-seizes-server-hosting-blueleaks-data-dump-on-us-police-practices Photo credit:https://p0.pxfuel.com/preview/752/874/531/network-earth-block-chain-globe.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


EncroChat Encrypted Broken by Law Enforcement, Hundreds Arrested - ThreatWire
Jul 07 2020 8 mins  
Hundreds are Arrested In an EU Encryption Bust, the EARN IT act Advances To the Floor, and Devs Had Access to Expired Facebook Data! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch Directly! - https://snubsie.com/shop Shop ThreatWire Merch on Teespring! - https://teespring.com/stores/shannons-store-24 http://www.youtube.com/ShannonMorse?sub_confirmation=1 -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:Police Arrest Hundreds after infiltrating encrypted chat app EncroChat:https://www.nationalcrimeagency.gov.uk/news/operation-venetichttps://thehackernews.com/2020/07/encrochat-encrypted-phone.htmlhttps://threatpost.com/eu-authorities-crack-encryption-murder-network/157146/https://www.vice.com/en_us/article/3aza95/how-police-took-over-encrochat-hackedhttps://www.cyberscoop.com/encrochat-encryption-drug-bust/ EARN IT Act Updatehttps://www.cnet.com/news/why-your-privacy-could-be-threatened-by-a-bill-to-protect-children/https://www.vice.com/en_us/article/y3z3z7/republican-encryption-bill-privacy-signalhttps://www.cyberscoop.com/earn-it-act-child-exploitation-weaken-encryption/https://www.theverge.com/2020/7/2/21311464/earn-it-act-section-230-child-abuse-imagery-facebook-youtube-lindsey-grahamhttps://the-parallax.com/2020/07/03/earn-it-laed-encryption/ Facebook shared user data with 5000 app devs even after access should have expiredhttps://about.fb.com/news/2020/07/improving-data-limits-simplifying-terms/https://www.cnet.com/news/facebook-shared-user-data-with-developers-after-access-should-have-expired/https://threatpost.com/facebook-privacy-glitch-5k-developers/157118/https://www.zdnet.com/article/facebook-says-5000-app-developers-got-user-data-after-cutoff-date/https://www.zdnet.com/article/sixteen-facebook-apps-caught-secretly-sharing-data-with-third-parties/ Photo credit:https://c1.wallpaperflare.com/preview/865/141/121/computer-cyber-investigation-cybercrime.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Nvidia Patches Vulnerable Drivers and vGPUs; TikTok Caught! - ThreatWire
Jun 30 2020 8 mins  
TikTok To Stop Scraping Clipboard Data, a Nationwide Bill could Ban Facial Recognition, and Nvidia Discloses Multiple Vulnerabilities! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch Directly! - https://snubsie.com/shop Shop ThreatWire Merch on Teespring! - https://teespring.com/stores/shannons-store-24 http://www.youtube.com/ShannonMorse?sub_confirmation=1 -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:TikTokhttps://threatpost.com/apple-takes-heat-over-vulnerable-data/153171/https://www.mysk.blog/2020/03/10/popular-iphone-and-ipad-apps-snooping-on-the-pasteboard/#commentshttps://www.forbes.com/sites/zakdoffman/2020/06/26/warning-apple-suddenly-catches-tiktok-secretly-spying-on-millions-of-iphone-users/amp/https://threatpost.com/tiktok-to-stop-clipboard-snooping-after-apple-privacy-feature-exposes-behavior/156945/https://9to5mac.com/2020/06/25/tiktok-to-stop-reading-user-clipboards-after-being-exposed-by-ios-14-privacy-feature/https://www.theverge.com/2020/6/26/21304228/tiktok-security-ios-clipboard-access-ios14-beta-feature Facial recognition ban:https://drive.google.com/file/d/1gkTcjFtieMQdsQ01dmDa49B6HY9ZyKr8/viewhttps://threatpost.com/nationwide-facial-recognition-ban-proposed-by-lawmakers/156928/https://www.theverge.com/2020/6/25/21303355/facial-recognition-ed-markey-ayanna-pressley-ban-federal-agencies-fed-law-enforcement Nvidia:https://threatpost.com/nvidia-windows-gamers-graphics-driver-bugs/156911/https://nvidia.custhelp.com/app/answers/detail/a_id/5031https://www.zdnet.com/article/nvidia-squashes-display-driver-code-execution-information-leak-bugs/ Photo credit:https://cdn.pixabay.com/photo/2020/06/06/01/03/nvidia-5264914_960_720.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Law Enforcement Data Leaked in BlueLeaks - ThreatWire
Jun 24 2020 8 mins  
BlueLeaks law enforcement data is exposed, AMD patches 3 major flaws, and Zoom adds E2EE for free users! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop Shop ThreatWire Merch on Teespring! - https://teespring.com/stores/shannons-store-24 Anti-Surveillance Tips From A Hacker - How To Protect Your Phone Data and Not Be Tracked - https://www.youtube.com/watch?v=g1D3fdyU9ZE http://www.youtube.com/ShannonMorse?sub_confirmation=1 -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:Via Nome: Leaked Data:https://thehackernews.com/2020/06/law-enforcement-data-breach.htmlhttps://krebsonsecurity.com/2020/06/blueleaks-exposes-files-from-hundreds-of-police-departments/https://twitter.com/DDoSecrets/status/1274086005461716992https://www.businessinsider.com/blueleaks-hackers-publish-sensitive-files-from-200-police-departments-2020-6https://www.vice.com/en_us/article/akz3qg/blueleaks-group-releases-270gb-of-sensitive-police-documents AMD:https://threatpost.com/amd-fixes-for-high-severity-smm-callout-flaws-upcoming/156787/https://www.amd.com/en/corporate/product-securityhttps://medium.com/@dannyodler/attacking-the-golden-ring-on-amd-mini-pc-b7bfb217b437https://www.zdnet.com/article/amd-says-it-will-fix-new-cpu-bug-by-the-end-of-june-2020/ Zoom:https://blog.zoom.us/end-to-end-encryption-update/https://arstechnica.com/information-technology/2020/06/amid-pressure-zoom-will-end-to-end-encrypt-all-calls-free-or-paid/https://www.cnet.com/news/zoom-will-offer-full-encryption-to-free-users-after-all/ Photo credit:https://upload.wikimedia.org/wikipedia/commons/thumb/f/f0/Police_in_riot_gear_at_Ferguson_protests.jpg/1024px-Police_in_riot_gear_at_Ferguson_protests.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Facial Recognition Bans are Trending - ThreatWire
Jun 16 2020 9 mins  
Lamphone Can “See” Your Conversations, Facial Recognition Bans are Trending, and Honda was Hit With Ransomware! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop Anti-Surveillance Tips From A Hacker - How To Protect Your Phone Data and Not Be Tracked - https://www.youtube.com/watch?v=g1D3fdyU9ZE http://www.youtube.com/ShannonMorse?sub_confirmation=1 -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:Lamphone:https://ad447342-c927-414a-bbae-d287bde39ced.filesusr.com/ugd/a53494_443addc922e048d89a664c2423bf43fd.pdfhttps://www.nassiben.com/lamphonehttps://thehackernews.com/2020/06/lamphone-light-bulb-spy.htmlhttps://www.zdnet.com/article/lamphone-attack-lets-threat-actors-recover-conversations-from-your-light-bulb/https://www.wired.com/story/lamphone-light-bulb-vibration-spying/ Facial Recognition Bans:https://www.cnet.com/news/ibm-to-withdraw-from-the-facial-recognition-market/https://www.ibm.com/blogs/policy/facial-recognition-susset-racial-justice-reforms/https://blog.aboutamazon.com/policy/we-are-implementing-a-one-year-moratorium-on-police-use-of-rekognitionhttps://threatpost.com/microsoft-joins-ban-on-sale-of-facial-recognition-tech-to-police/156521/https://www.cnet.com/news/clearview-ai-still-backs-facial-recognition-despite-competitors-concerns/https://assets.publishing.service.gov.uk/government/uploads/system/uploads/attachment_data/file/786392/AFR_police_guidance_of_PoFA_V1_March_2019.pdf Honda:https://www.bloomberg.com/news/articles/2020-06-09/honda-suspends-vehicle-shipments-after-suspected-cyberattackhttps://arstechnica.com/information-technology/2020/06/honda-halts-production-at-some-plants-after-being-hit-by-a-cyberattack/https://twitter.com/milkr3am/status/1269932348860030979https://threatpost.com/snake-ransomware-honda-energy/156462/https://www.cnet.com/roadshow/news/honda-production-plants-cyber-attack/ Photo credit:https://cdn.pixabay.com/photo/2018/03/23/08/09/flat-3252983_960_720.png -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Signal Responds To Protest Surveillance With New Blur Tool - ThreatWire
Jun 09 2020 8 mins  
Anti-Surveillance Tips From A Hacker - How To Protect Your Phone Data and Not Be Tracked - https://www.youtube.com/watch?v=g1D3fdyU9ZE Want Zoom E2E Encryption? Pay Up. Signal Responds To Protest Surveillance, and Google Faces a $5 Billion Fine! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop http://www.youtube.com/ShannonMorse?sub_confirmation=1 -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:Zoom Encryption / Updates:https://thehackernews.com/2020/06/zoom-video-software-hacking.htmlhttps://www.cyberscoop.com/zoom-flaws-cisco-talos-encryption/https://www.theverge.com/2020/6/3/21279355/zoom-end-encryption-calls-fbi-police-free-usershttps://www.cnet.com/news/zoom-wont-add-encryption-to-free-calls-so-it-can-work-with-law-enforcement/https://arstechnica.com/information-technology/2020/06/zoom-defenders-say-there-are-legit-reasons-to-not-encrypt-free-calls/https://twitter.com/alexstamos/status/1268061793273868288 Signal:https://www.vice.com/en_us/article/jgxm3g/crossbow-imsi-catcher-new-stingrayhttps://www.cnet.com/news/dea-reportedly-authorized-to-conduct-covert-surveillance-of-george-floyd-protests/https://www.cnet.com/news/geofence-warrants-how-police-can-use-protesters-phones-against-them/https://signal.org/blog/blur-tools/https://www.cnet.com/news/popular-encrypted-messaging-app-signal-adds-facial-recognition-protection-for-protesters/https://www.youtube.com/watch?v=g1D3fdyU9ZE Google:https://threatpost.com/google-faces-privacy-lawsuit-over-tracking-users-in-incognito-mode/156269/https://www.reuters.com/article/us-alphabet-google-privacy-lawsuit/google-faces-5-billion-lawsuit-in-u-s-for-tracking-private-internet-use-idUSKBN23933Hhttps://security.googleblog.com/2020/06/the-advanced-protection-program-comes.htmlhttps://www.zdnet.com/article/google-opens-up-advanced-protection-program-to-nest-devices/ Photo credit:https://signal.org/blog/blur-tools/ -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


New iPhone Jailbreak for iOS 13 Released! - ThreatWire
Jun 02 2020 7 mins  
StrandHogg 2.0 Can Hijack Androids, an iPhone Jailbreak for iOS 13.5 is Released, and a Critical Vulnerability Hits Cisco Services! All that coming up now on ThreatWire. #threatwire #hak5 Links:Watch on youtube: https://youtu.be/PZBP9vbhG3g Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop http://www.youtube.com/ShannonMorse?sub_confirmation=1 -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:Strandhogg 2.0https://promon.co/strandhogg-2-0/https://arstechnica.com/information-technology/2020/05/new-android-flaw-could-let-malicious-apps-hijack-trusted-apps-icons/https://threatpost.com/strandhogg-2-critical-bug-android-app-hijacking/156058/https://source.android.com/security/bulletin/2020-05-01 iOS jailbreak:https://unc0ver.dev/https://www.theverge.com/2020/5/24/21268945/apple-hackers-jailbreak-iphones-ios-13-5https://arstechnica.com/information-technology/2020/05/for-a-limited-time-a-new-jailbreak-gives-full-root-access-to-any-iphone/https://threatpost.com/new-ios-jailbreak-tool-works-on-iphone-models-ios-11-to-ios-13-5/156045/ Cisco Security Breach:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-salt-2vx545AGhttps://www.zdnet.com/article/cisco-discloses-security-breach-that-impacted-virl-pe-infrastructure/https://arstechnica.com/information-technology/2020/05/cisco-security-breach-hits-corporate-servers-that-ran-unpatched-software/https://threatpost.com/hackers-compromise-cisco-servers-saltstack/156091/ Photo credit:https://c1.wallpaperflare.com/preview/302/429/165/technology-laptop-iphone-keyboard.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆



Who’s Trying To Hack COVID-19 Vaccine Orgs? - ThreatWire
May 19 2020 8 mins  
https://www.youtube.com/watch?v=pBFTKuqqF1Q Ramsay Targets Air-Gapped Machines, The Encryption Battle Continues, and China is Accused of Attacks Against COVID-19 Research Orgs! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop https://www.youtube.com/shannonmorse -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:Air Gapped Malware:https://www.welivesecurity.com/2020/05/13/ramsay-cyberespionage-toolkit-airgapped-networks/https://thehackernews.com/2020/05/airgap-network-malware.htmlhttps://threatpost.com/ramsay-malware-air-gapped-networks/155695/ iPhone encryption:https://www.vice.com/en_us/article/dyzzdj/senator-wyden-congress-investigate-local-police-hacking-tools-nso-grouphttps://www.cnet.com/news/fbi-slams-apple-problem-as-it-unlocks-pensacola-shooters-iphone/https://www.vice.com/en_us/article/8899nz/nso-group-pitched-phone-hacking-tech-american-police China accused of hacks:https://www.cisa.gov/sites/default/files/publications/Joint_FBI-CISA_PSA_PRC_Targeting_of_COVID-19_Research_Organizations_S508C.pdfhttps://www.cnet.com/health/us-accuses-china-of-trying-to-hack-coronavirus-vaccine-research/https://www.cyberscoop.com/coronavirus-vaccine-china-hacking-dhs-fbi/https://www.theverge.com/2020/5/13/21257341/us-government-coronavirus-vaccine-china-theft-spy-accuses-fbi-cisa Photo credit:https://live.staticflickr.com/8513/8436618446_9018b04ca1_b.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


DEF CON Enters Safe Mode, Thunderspy Attack Hits Thunderbolt - ThreatWire
May 12 2020 9 mins  
The DEF CON is Canceled Meme Comes True, a Thunderbolt Flaw Hits Pre-2019 PCs, and Zoom Acquires Keybase! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop https://www.youtube.com/shannonmorse -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Check out my new video about the last active Morse Code Radio Station in the US - https://www.youtube.com/watch?v=UPTzvciqgJ0 Links:https://www.defcon.org/html/defcon-safemode/dc-safemode-index.htmlhttps://forum.defcon.org/node/232005https://www.wired.com/story/defcon-is-canceled/https://www.zdnet.com/article/black-hat-and-def-con-security-conferences-to-take-place-in-a-virtual-format/ Via Joel:https://thunderspy.io/https://www.youtube.com/watch?v=7uvSZA1F9os&feature=emb_titlehttps://www.theverge.com/2020/5/11/21254290/thunderbolt-security-vulnerability-thunderspy-encryption-access-intel-laptopshttps://blogs.intel.com/technology/2020/05/more-information-on-thunderspy/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+IntelTechnology+%28Technology%40Intel%29#gs.5ql50ohttps://thehackernews.com/2020/05/thunderbolt-vulnerabilities.htmlhttps://www.wired.com/story/thunderspy-thunderbolt-evil-maid-hacking/https://www.cnet.com/news/thunderbolt-flaws-may-leave-pcs-vulnerable-to-physical-hacks/ https://www.cnet.com/news/zoom-acquires-secure-messaging-platform-keybase-to-help-bolster-security/https://blog.zoom.us/wordpress/2020/05/07/zoom-acquires-keybase-and-announces-goal-of-developing-the-most-broadly-used-enterprise-end-to-end-encryption-offering/https://techcrunch.com/2020/05/07/zoom-acquires-keybase-to-get-end-to-end-encryption-expertise/https://keybase.io/blog/keybase-joins-zoomhttps://arstechnica.com/information-technology/2019/12/keybase-moves-to-deal-with-crypto-chat-spam-as-users-face-scammer-onslaught/ Photo credit:https://upload.wikimedia.org/wikipedia/commons/thumb/6/6f/Thunderbolt_3_Cable_connected_to_OWC_Thunderbolt_3_Dock.jpg/931px-Thunderbolt_3_Cable_connected_to_OWC_Thunderbolt_3_Dock.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Stealing Data from Air-Gapped PCs using PSUs as Speakers - ThreatWire
May 05 2020 7 mins  
Attackers are Accessing Data Centers Using a Salt Bug, Turning PSUs Into Speakers To Steal Data, and the new lockbit ransomware starts gaining traction! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop https://www.youtube.com/shannonmorse -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Check out my new video about the last active Morse Code Radio Station in the US - https://www.youtube.com/watch?v=UPTzvciqgJ0 Links:https://threatpost.com/salt-bugs-full-rce-root-cloud-servers/155383/https://labs.f-secure.com/advisories/saltstack-authorization-bypasshttps://www.zdnet.com/article/saltstack-salt-critical-bugs-allow-data-center-cloud-server-hijacking-as-root/https://thehackernews.com/2020/05/saltstack-rce-exploit.htmlhttps://www.zdnet.com/article/ghost-blogging-platform-servers-hacked-and-infected-with-crypto-miner/ https://arxiv.org/abs/2005.00395https://thehackernews.com/2020/05/air-gap-malware-power-speaker.htmlhttps://www.zdnet.com/article/academics-turn-pc-power-unit-into-a-speaker-to-leak-secrets-from-air-gapped-systems/ https://arstechnica.com/information-technology/2020/05/lockbit-the-new-ransomware-for-hire-a-sad-and-cautionary-tale/https://news.sophos.com/en-us/2020/04/24/lockbit-ransomware-borrows-tricks-to-keep-up-with-revil-and-maze/https://www.wired.com/story/lockbit-is-the-new-ransomware-for-hire/https://www.mcafee.com/blogs/other-blogs/mcafee-labs/tales-from-the-trenches-a-lockbit-ransomware-story/ Photo credit:https://upload.wikimedia.org/wikipedia/commons/2/24/OCZ_600W_power_supply_unit.JPG -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Using GIFs to Hack Microsoft Teams Accounts, Unlink Your NNID NOW - ThreatWire
Apr 28 2020 11 mins  
Update your Nintendo account security NOW, researchers use gifs to hack microsoft teams, and a Critical Apple iOS Mail Bug is Patched! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop https://www.youtube.com/shannonmorse -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Check out my new video about the last active Morse Code Radio Station in the US - https://www.youtube.com/watch?v=UPTzvciqgJ0 Links:https://www.cnet.com/news/nintendo-confirms-up-to-160000-peoples-accounts-were-hacked/https://www.nintendo.co.jp/support/information/2020/0424.htmlhttps://www.zdnet.com/article/nintendo-says-160000-users-impacted-in-recent-account-hacks/https://www.zdnet.com/article/nintendo-says-160000-users-impacted-in-recent-account-hacks/https://arstechnica.com/gaming/2020/04/nintendo-isnt-saying-so-heres-how-to-fend-off-the-account-hijacking-spree/https://en-americas-support.nintendo.com/app/answers/detail/a_id/15990#DT:t1-q1a2EP:t1-q1a2-c https://www.cyberark.com/threat-research-blog/beware-of-the-gif-account-takeover-vulnerability-in-microsoft-teams/https://thehackernews.com/2020/04/microsoft-teams-vulnerability.htmlhttps://threatpost.com/single-malicious-gif-opened-microsoft-teams-to-nasty-attack/155155/https://www.zdnet.com/article/this-is-how-viewing-a-gif-in-microsoft-teams-triggers-account-hijacking-bug/https://www.cyberscoop.com/microsoft-teams-security-flaw-cyberark-gif/ https://blog.zecops.com/vulnerabilities/youve-got-0-click-mail/https://arstechnica.com/information-technology/2020/04/a-critical-iphone-and-ipad-bug-that-lurked-for-8-years-is-under-active-attack/https://threatpost.com/apple-patches-two-ios-zero-days-abused-for-years/155042/https://www.theverge.com/2020/4/24/21234163/apple-ios-ipados-mail-app-security-flaw-statement-no-evidence-exploithttps://arstechnica.com/information-technology/2020/04/apple-disputes-report-of-non-click-ios-0day-under-exploit-for-two-years/ Photo credit:https://c0.wallpaperflare.com/preview/49/314/574/nintendo-switch-switch-nintendo-console.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Jailbreaking CPAP Machines To Be Ventilators - ThreatWire
Apr 21 2020 9 mins  
Stealing data from air gapped PCs using fan vibrations, jailbreaking CPAP machines to turn them into ventilators, and Pastebin removes their API scraping! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop https://www.youtube.com/shannonmorse -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:Stealing data from airgapped pcs using fan vibrations:https://www.zdnet.com/article/academics-steal-data-from-air-gapped-systems-using-pc-fan-vibrations/https://arxiv.org/pdf/2004.06195v1.pdfhttps://www.popularmechanics.com/technology/security/a31228645/vibration-smartphone-attack/ Jailbreaking medical devices to help with shortage of ventilators:https://airbreak.dev/https://www.resmed.com/en-us/sleep-apnea/cpap-parts-support/sleep-apnea-full-products-list/cpap-machines/airsense-10/https://www.fda.gov/media/136702/downloadhttps://arstechnica.com/information-technology/2020/04/firmware-jailbreak-lets-low-cost-medical-devices-act-like-ventilators/https://www.wired.com/story/a-vital-hack-could-turn-medical-devices-into-ventilators/ Pastebin makes it harder for security researchers to scrape data:https://www.cyberscoop.com/pastebin-research-cybercrime-osint-scraping/https://www.vice.com/en_us/article/y3m83v/pastebin-made-it-harder-to-scrape-its-site-and-researchers-are-pissed-offhttps://twitter.com/i/status/1250455916517851137https://twitter.com/pastebin/status/1250847990131986432 Photo credit:https://upload.wikimedia.org/wikipedia/commons/7/7e/Coronavirus_patients_at_the_Imam_Khomeini_Hospital_in_Tehran%2C_Iran_--_%D8%A8%D8%AE%D8%B4_%D9%88%DB%8C%DA%98%D9%87_%D8%A8%DB%8C%D9%85%D8%A7%D8%B1%D8%A7%D9%86_%DA%A9%D8%B1%D9%88%D9%86%D8%A7_%D8%AF%D8%B1_%D8%A8%DB%8C%D9%85%D8%A7%D8%B1%D8%B3%D8%AA%D8%A7%D9%86_%D8%A7%D9%85%D8%A7%D9%85_%D8%AE%D9%85%DB%8C%D9%86%DB%8C_%D8%AA%D9%87%D8%B1%D8%A7%D9%86_--_March_1%2C_2020.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


COVID-19 Contact-Tracing Using Bluetooth and Smartphones - ThreatWire
Apr 14 2020 11 mins  
Apple and Google want to track the virus using Bluetooth low energy, what is the EARN IT Act?, and the dark nexus botnet continues to grow! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop https://www.youtube.com/shannonmorse -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:Google / Apple tracking:https://arstechnica.com/information-technology/2020/04/apple-and-google-detail-bold-and-ambitious-plan-to-track-covid-19-at-scale/https://blog.google/documents/57/Overview_of_COVID-19_Contact_Tracing_Using_BLE.pdfhttps://threatpost.com/apple-google-coronavirus-tracking-privacy-fears/154689/https://www.apple.com/newsroom/2020/04/apple-and-google-partner-on-covid-19-contact-tracing-technology/https://www.apple.com/covid19/contacttracing/https://www.theverge.com/interface/2020/4/11/21216652/apple-google-contact-tracing-covid-19-coronavirus-api-public-health-app-challengeshttps://www.theverge.com/2020/4/10/21216715/apple-google-coronavirus-covid-19-contact-tracing-app-details-usehttps://covid19-static.cdn-apple.com/applications/covid19/current/static/contact-tracing/pdf/ContactTracing-CryptographySpecification.pdf EARN IT:https://www.eff.org/deeplinks/2020/03/graham-blumenthal-bill-attack-online-speech-and-securityhttps://www.eff.org/document/section-230-not-brokenhttps://www.eff.org/document/eff-earn-it-act-first-amendment-letter-sjchttps://www.eff.org/document/earn-it-act-introducedhttps://signal.org/blog/earn-it/https://arstechnica.com/tech-policy/2020/04/senator-backing-anti-crypto-bill-calls-out-zooms-lack-of-end-to-end-crypto/ Dark Nexus:https://www.bitdefender.com/files/News/CaseStudies/study/319/Bitdefender-PR-Whitepaper-DarkNexus-creat4349-en-EN-interactive.pdfhttps://threatpost.com/dark_nexus-botnet-asus-dlink-routers/154571/https://thehackernews.com/2020/04/darknexus-iot-ddos-botnet.htmlhttps://arstechnica.com/information-technology/2020/04/meet-dark_nexus-quite-possibly-the-most-potent-iot-botnet-ever/ Photo credit:https://icdn2.digitaltrends.com/image/digitaltrends/man-checking-phone-with-mask-getty.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Wiping MBRs with COVID-19 Malware - ThreatWire
Apr 07 2020 13 mins  
Zoom had a bad week, Wiping MBRs with COVID-19 Malware, and Google Pauses a Chrome Security Update! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop https://www.youtube.com/shannonmorse -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:Zoom:https://www.fbi.gov/contact-us/field-offices/boston/news/press-releases/fbi-warns-of-teleconferencing-and-online-classroom-hijacking-during-covid-19-pandemic/layout_viewhttps://www.bloomberg.com/news/articles/2020-03-31/zoom-sued-for-allegedly-illegally-disclosing-personal-datahttps://blog.zoom.us/wordpress/2020/04/01/a-message-to-our-users/https://www.vice.com/en_us/article/k7e95m/zoom-leaking-email-addresses-photoshttps://www.zdnet.com/article/windows-10-alert-zoom-client-can-leak-your-network-login-credentials/https://www.cyberscoop.com/zoom-zero-day-webcam-privlege-escalation/https://krebsonsecurity.com/2020/04/war-dialing-tool-exposes-zooms-password-problems/https://threatpost.com/zoom-removes-data-mining-linkedin-feature/154404/https://www.washingtonpost.com/technology/2020/04/03/thousands-zoom-video-calls-left-exposed-open-web/https://theintercept.com/2020/04/03/zooms-encryption-is-not-suited-for-secrets-and-has-surprising-links-to-china-researchers-discover/https://www.zdnet.com/article/zoom-concedes-custom-encryption-is-sub-standard-as-citizen-lab-pokes-holes-in-it/ Covid-19 malware wipes PC and MBRhttps://www.zdnet.com/article/theres-now-covid-19-malware-that-will-wipe-your-pc-and-rewrite-your-mbr/https://securitynews.sonicwall.com/xmlpost/coronavirus-trojan-overwriting-the-mbr/https://twitter.com/malwrhunterteam/status/1242189645552783360https://www.bleepingcomputer.com/news/security/new-coronavirus-ransomware-acts-as-cover-for-kpot-infostealer/https://twitter.com/malwrhunterteam/status/1245386335298433027https://twitter.com/malwrhunterteam/status/1227204126016200704 Google Rolling Back Privacy Feature:https://blog.chromium.org/2020/04/temporarily-rolling-back-samesite.htmlhttps://www.theverge.com/2020/4/3/21207248/chrome-samesite-cookie-roll-back-update-privacy-settings Photo credit:https://upload.wikimedia.org/wikipedia/commons/3/38/Seagate_ST33232A_hard_disk_inner_view.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


How Hackers Are Helping Fight Coronavirus - ThreatWire
Mar 31 2020 11 mins  
A new android trojan bypasses 2fa codes, Hackers have started and joined initiatives to fight COVID-19, and you can too! And zoom has privacy issues! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop https://www.youtube.com/shannonmorse -- subscribe to my tech channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:Trickbot:https://securityintelligence.com/posts/trickbot-pushing-a-2fa-bypass-app-to-bank-customers-in-germany/https://thehackernews.com/2020/03/trickbot-two-factor-mobile-malware.htmlhttps://www.zdnet.com/article/trickbot-now-pushes-android-app-for-bypassing-2fa-on-banking-accounts/ Hackers Volunteer:https://www.reuters.com/article/us-coronavirus-cyber/cybersecurity-experts-come-together-to-fight-coronavirus-related-hacking-idUSKBN21D049https://www.darkreading.com/attacks-breaches/cyber-version-of-justice-league-launches-to-fight-covid-19-related-hacks-/d/d-id/1337424https://cti-league.com/https://www.zdnet.com/article/world-health-organization-facebook-microsoft-team-up-in-covid-19-hackathon/https://www.facebook.com/zuck/posts/10111707674548151https://covid-global-hackathon.devpost.com/?fbclid=IwAR1jXyb2o0EseAbtufMqLGGhT3CvhFuyRD1go4ceOLXwHS2vPALu45uKkkchttps://www.cnet.com/news/your-laptop-can-help-fight-covid-19-with-foldingathome-project/https://foldingathome.org/https://masksfordocs.com/https://www.vice.com/en_us/article/n7jm8d/motorcyclists-like-me-are-delivering-protective-gear-to-er-doctorshttps://www.fastcompany.com/90482710/makers-are-rushing-to-fight-coronavirus-with-3d-printed-face-shields-and-test-swabshttps://www.forbes.com/sites/tjmccue/2020/03/24/calling-all-makers-with-3d-printers-join-critical-mission-to-make-face-masks-and-shields-for-2020-healthcare-workers/#f81386575006https://twitter.com/BadassBowden/status/1240641788249063424 Zoombombing:https://threatpost.com/as-zoom-booms-incidents-of-zoombombing-become-a-growing-nuisance/154187/https://www.cnet.com/news/using-zoom-while-working-from-home-here-are-the-privacy-risks-to-watch-out-for/https://www.vice.com/en_us/article/k7e599/zoom-ios-app-sends-data-to-facebook-even-if-you-dont-have-a-facebook-accounthttps://blog.zoom.us/wordpress/2020/03/27/zoom-use-of-facebook-sdk-in-ios-client/ Photo credit:https://upload.wikimedia.org/wikipedia/commons/4/4d/3D-printed_visor-Heliox_Lab-02.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆



Tracking Covid-19 With Government Mandated Location Surveillance - ThreatWire
Mar 24 2020 11 mins  
Attacks using covid-19 themes are continuing to be dropped, government location surveillance is becoming the norm, and Windows alerts of a zero day! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:https://www.wired.com/story/coronavirus-cyberattacks-ransomware-phishing/https://www.zdnet.com/article/who-chief-emails-claiming-to-offer-coronavirus-drug-advice-plant-keyloggers-on-your-pc/https://threatpost.com/revamped-hawkeye-keylogger-coronavirus-fears/154013/https://exchange.xforce.ibmcloud.com/collection/2f9a23ad901ad94a8668731932ab5826https://www.zdnet.com/article/thousands-of-covid-19-scam-and-malware-sites-are-being-created-on-a-daily-basis/https://thehackernews.com/2020/03/covid-19-coronavirus-hacker-malware.htmlhttps://threatpost.com/fake-coronavirus-vaccine-website-busted-in-doj-takedown/154031/https://www.cyberscoop.com/coronavirus-scams-doj-memo-william-barr/http://www.documentcloud.org/documents/6811684-Bill-Barr-DOJ-Priorities-Coronavirus-Scams.htmlhttps://www.bleepingcomputer.com/news/security/ransomware-gangs-to-stop-attacking-health-orgs-during-pandemic/https://www.cyberscoop.com/covid-19-cybersecurity-volunteer-groups-h-isac/ https://www.theverge.com/2020/3/23/21190700/eu-mobile-carriers-customer-data-coronavirus-south-korea-taiwan-privacyhttps://www.reuters.com/article/us-health-coronavirus-europe-telecoms/european-mobile-operators-share-data-for-coronavirus-fight-idUSKBN2152C2https://www.zdnet.com/article/us-israel-south-korea-and-china-look-at-intrusive-surveillance-solutions-for-tracking-covid-19/https://www.businessinsider.com/countries-tracking-citizens-phones-coronavirus-2020-3#poland-is-making-people-send-selfies-to-prove-theyre-quarantining-correctly-7https://arstechnica.com/tech-policy/2020/03/how-china-built-facial-recognition-for-people-wearing-masks/https://www.businessinsider.com/poland-app-coronavirus-patients-mandaotory-selfie-2020-3https://threatpost.com/covid-19-spurs-facial-recognition-tracking-privacy-fears/153953/https://www.reuters.com/article/us-health-coronavirus-taiwan-surveillanc/taiwans-new-electronic-fence-for-quarantines-leads-wave-of-virus-monitoring-idUSKBN2170SKhttps://www.nytimes.com/2020/03/23/technology/coronavirus-surveillance-tracking-privacy.html https://www.zdnet.com/article/microsoft-warns-of-windows-zero-day-exploited-in-the-wild/https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/adv200006https://threatpost.com/microsoft-warns-of-critical-windows-zero-day-flaws/154040/https://thehackernews.com/2020/03/windows-adobe-font-vulnerability.html Photo credit:https://images.pexels.com/photos/3962218/pexels-photo-3962218.jpeg?auto=compress&cs=tinysrgb&dpr=2&h=650&w=940 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Coronavirus Themed Phishing, Malware, and Ransomware on the Rise - ThreatWire
Mar 17 2020 9 mins  
Government agencies are experiencing COVID19 related attacks, phishing and malware scams ramp up as coronavirus becomes a pandemic, and Microsoft fixes an SMB flaw! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:https://www.bloomberg.com/news/articles/2020-03-16/u-s-health-agency-suffers-cyber-attack-during-covid-19-responsehttps://www.cnet.com/news/hackers-target-us-health-agency-during-coronavirus-crisis/https://www.zdnet.com/article/hhs-targeted-by-hackers-as-it-responds-to-novel-coronavirus-covid-19-pandemic/https://www.cyberscoop.com/hhs-cyberattack-coronavirus-ddos/ https://thehackernews.com/2020/03/coronavirus-maps-covid-19.htmlhttps://krebsonsecurity.com/2020/03/live-coronavirus-map-used-to-spread-malware/https://www.wired.com/story/coronavirus-phishing-ad-fraud-clearview-security-news/https://www.cnet.com/how-to/online-coronavirus-scams-are-here-watch-out-for-these-red-flags/https://threatpost.com/coronavirus-apt-attack-malware/153697/https://www.businessinsider.com/coronavirus-fake-app-ransomware-malware-bitcoin-android-demands-ransom-domaintools-2020-3https://www.zdnet.com/article/coronavirus-themed-phishing-attacks-and-hacking-campaigns-are-on-the-rise/https://www.zdnet.com/article/state-sponsored-hackers-are-now-using-coronavirus-lures-to-infect-their-targets/ https://thehackernews.com/2020/03/patch-wormable-smb-vulnerability.htmlhttps://thehackernews.com/2020/03/smbv3-wormable-vulnerability.htmlhttps://arstechnica.com/information-technology/2020/03/microsoft-delivers-emergency-patch-to-fix-wormable-windows-10-flaw/https://arstechnica.com/information-technology/2020/03/windows-has-a-new-wormable-vulnerability-and-theres-no-patch-in-sight/https://www.zdnet.com/article/microsoft-patches-smbv3-wormable-bug-that-leaked-earlier-this-week/ Photo credit:https://www.state.gov/wp-content/uploads/2020/03/2871-2560x852.png -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Clearview AI Privacy Fails - ThreatWire
Mar 03 2020 12 mins  
Billions of Wi-Fi Devices Flawed, Secretly Controlling Voice Assistants, and Clearview AI is basically a privacy dumpster fire! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop USE CODE “MOVING2020” for 25% OFF ANYTHING IN THE STORE! GOOD TIL 3/4/2020 https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:https://www.welivesecurity.com/2020/02/26/krook-serious-vulnerability-affected-encryption-billion-wifi-devices/https://vulmon.com/vulnerabilitydetails?qid=CVE-2019-15126https://thehackernews.com/2020/02/kr00k-wifi-encryption-flaw.htmlhttps://the-parallax.com/2020/02/27/kr00k-wi-fi-billion-devices-iphone-echo-kindle/https://www.cyberscoop.com/wifi-vulnerability-eset/https://threatpost.com/billions-of-devices-wifi-encryption-hack/153267/https://arstechnica.com/information-technology/2020/02/flaw-in-billions-of-wi-fi-devices-left-communications-open-to-eavesdroppng/ https://thehackernews.com/2020/03/voice-assistants-ultrasonic-waves.htmlhttps://www.vice.com/en_us/article/bvg5dv/ultrasonic-waves-can-make-siri-share-your-secretshttps://surfingattack.github.io/papers/NDSS-surfingattack.pdfhttps://source.wustl.edu/2020/02/surfing-attack-hacks-siri-google-with-ultrasonic-waves/ https://clearview.ai/https://www.nytimes.com/2020/01/18/technology/clearview-privacy-facial-recognition.htmlhttps://www.cnet.com/news/clearview-ai-facial-recognition-customers-reportedly-include-ice-justice-department-fbi-macys/https://www.cnet.com/news/apple-blocks-clearview-ai-facial-recognition-on-iphones-after-developer-violation/https://www.zdnet.com/article/data-breach-exposes-clearview-ai-client-list/https://www.vice.com/en_us/article/bvgyqa/clearview-ai-customer-list-data-breach-hackedhttps://gizmodo.com/we-found-clearview-ais-shady-face-recognition-app-1841961772?rev=1582861547126https://www.vice.com/en_us/article/5dmkyq/heres-the-file-clearview-ai-has-been-keeping-on-me-and-probably-on-you-too Photo credit:https://upload.wikimedia.org/wikipedia/commons/2/2c/Face_Recognition_3252983.png -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Jailbreaking Teslas - ThreatWire
Feb 25 2020 11 mins  
Ring Increases App Security, Rental cars and Teslas are being hacked, and MGM Resorts was hacked! All that coming up now on ThreatWire. #threatwire #hak5 Links: Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop USE CODE “MOVING2020” for 25% OFF ANYTHING IN THE STORE! GOOD TIL 3/4/2020 https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links: Ring Makes 2FA Mandatory: https://blog.ring.com/2020/02/18/extra-layers-of-security-and-control/ https://thehackernews.com/2020/02/ring-cameras-cybersecurity.html https://www.zdnet.com/article/ring-to-enable-2fa-for-all-user-accounts-after-recent-hacks/ https://www.blog.google/products/google-nest/security-nest-accounts-safer-internet-day/ https://www.theverge.com/2020/2/11/21133264/google-nest-2fa-force-two-factor-authentication https://www.cnet.com/news/amazons-ring-to-tighten-privacy-after-accusations-it-shares-data-with-facebook/ Car Hacking: https://owner.ford.com/fordpass.html https://arstechnica.com/information-technology/2020/02/rental-car-agency-continues-to-give-remote-control-long-after-cars-are-returned/ https://krebsonsecurity.com/2020/02/when-your-used-car-is-a-little-too-mobile/ https://www.vice.com/en_us/article/y3mb3w/people-are-jailbreaking-used-teslas-to-get-the-features-they-expect https://jalopnik.com/tesla-remotely-removes-autopilot-features-from-customer-1841472617 https://www.scribd.com/document/425591536/TN-18-00-001-Unsupported-Vehicle-Policy MGM Grand Breach https://threatpost.com/mgm-grand-breach-leaked-details-of-10-6-million-guests-last-summer/153054/ https://www.zdnet.com/article/exclusive-details-of-10-6-million-of-mgm-hotel-guests-posted-on-a-hacking-forum/ Photo credit: https://st.motortrend.com/uploads/sites/5/2017/07/Tesla-Model-3-lead-.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Our Site → https://www.hak5.org Shop → https://www.hakshop.com Subscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1 Support → https://www.patreon.com/threatwire Contact Us → http://www.twitter.com/hak5 Threat Wire RSS → https://shannonmorse.podbean.com/feed/ Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubs Host: Darren Kitchen → https://www.twitter.com/hak5darren Host: Mubix → http://www.twitter.com/mubix -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Hacking Philips Hue Lights To Hack Whole Networks - ThreatWire
Feb 12 2020 8 mins  
Four hackers have been charged for the equifax data breach, Philips Hues could be used to hack your network, and changing screen brightness to steal data! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop USE CODE MOVING2020 FOR 25% OFF ALL ORDERS! VALID 2-11-20 THROUGH 3-4-2020 https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:https://www.justice.gov/opa/press-release/file/1246891/downloadhttps://www.theverge.com/2020/2/10/21131362/doj-justice-barr-china-equifax-breachhttps://www.cyberscoop.com/equifax-hack-china-pla-department-of-justice/https://www.vice.com/en_us/article/dygdpy/doj-charges-china-with-hacking-equifax-thats-no-reason-to-forgive-equifax https://blog.checkpoint.com/2020/02/05/the-dark-side-of-smart-lighting-check-point-research-shows-how-business-and-home-networks-can-be-hacked-from-a-lightbulb/https://www.theverge.com/2020/2/5/21123491/philips-hue-bulb-hack-hub-firmware-patch-updatehttps://thehackernews.com/2020/02/philips-smart-light-bulb-hacking.htmlhttps://www.theverge.com/2020/2/5/21124023/philips-hue-firmware-how-to-check-updates-network-vulnerability https://thehackernews.com/2020/02/hacking-air-gapped-computers.htmlhttps://cyber.bgu.ac.il/advanced-cyber/airgaphttps://arxiv.org/pdf/2002.01078.pdf Photo credit:https://static.bhphoto.com/images/images2500x2500/1545213052_1446192.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Ring Android App Shares Data With Facebook - ThreatWire
Feb 04 2020 10 mins  
The Wawa Breach Affects 30 Million, Avast Caught Selling User Data, Ring App Shares Data With Facebook ! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:https://thehackernews.com/2019/12/wawa-store-hacking.htmlhttps://www.wawa.com/alerts/data-securityhttps://thehackernews.com/2020/01/wawa-credit-card-breach.htmlhttps://s3.amazonaws.com/wawa-kentico-prod/wawa/media/misc/jan-28-2020-wawa-press-release-update-to-dec-19-data-security-announcement.pdfhttps://threatpost.com/wawa-breach-30-million-customers/152328/https://www.zdnet.com/article/wawa-card-breach-may-rank-as-one-of-the-biggest-of-all-times/https://www.cisomag.com/wawa-faces-class-action-lawsuit-after-reporting-data-breach/ https://www.pcmag.com/news/mozilla-removes-avast-and-avg-firefox-extensionshttps://www.pcmag.com/news/the-cost-of-avasts-free-antivirus-companies-can-spy-on-your-clickshttps://www.vice.com/en_us/article/qjdkq7/avast-antivirus-sells-user-browsing-data-investigationhttps://www.theverge.com/2020/1/27/21083809/avast-avg-jumpshot-antivirus-data-tracking-all-clickshttps://twitter.com/RonWyden/status/1204494997560680450 https://blog.avast.com/a-message-from-ceo-ondrej-vlcek https://www.pcmag.com/news/avast-to-end-browser-data-harvesting-terminates-jumpshot https://www.eff.org/deeplinks/2020/01/ring-doorbell-app-packed-third-party-trackershttps://threatpost.com/ring-sharing-user-data-facebook-data-miners/152300/https://www.zdnet.com/article/ring-app-for-android-full-to-the-brim-with-third-party-trackers-report/ Photo credit:https://cdn.pocket-lint.com/r/s/1200x630/assets/images/142320-smart-home-review-ring-video-doorbell-2-image1-uar8mu7stn.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Honeypot ICS Network Tricks CyberCriminals - ThreatWire
Jan 28 2020 10 mins  
Microsoft has a security blunder, a honeypot network tricks cybercriminals, and Jeff Bezos’ phone was hacked! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links: Microsoft’s Security Blunder via Joel:https://msrc-blog.microsoft.com/2020/01/22/access-misconfiguration-for-customer-support-database/https://www.engadget.com/2020/01/22/microsoft-database-exposure/https://www.zdnet.com/article/microsoft-discloses-security-breach-of-customer-support-database/https://www.cnet.com/news/microsoft-fixes-error-that-exposed-customer-database/https://thehackernews.com/2020/01/microsoft-customer-support.html Mock ICS:https://documents.trendmicro.com/assets/white_papers/wp-caught-in-the-act-running-a-realistic-factory-honeypot-to-capture-real-threats.pdfhttps://www.cyberscoop.com/trend-micro-honeypot-ransomware-factory-s4/https://www.zdnet.com/article/ransomware-snooping-and-attempted-shutdowns-the-state-of-this-honeypot-shows-what-hackers-do-to-systems-left-unprotected-online/https://threatpost.com/fake-smart-factory-honeypot-highlights-new-attack-threats/152170/ Bezos:https://www.theguardian.com/technology/2020/jan/21/amazon-boss-jeff-bezoss-phone-hacked-by-saudi-crown-princehttps://arstechnica.com/information-technology/2020/01/report-bezos-phone-uploaded-gbs-of-personal-data-after-getting-saudi-princes-whatsapp-message/https://www.theverge.com/2020/1/21/21075968/amazon-jeff-bezos-hacked-saudi-arabia-crown-prince-whatsapp-messagehttps://www.cnet.com/news/in-bezos-phone-hack-un-wants-answers-on-saudi-princes-alleged-role/https://www.wyden.senate.gov/imo/media/doc/012220%20Wyden%20Jeff%20Bezos%20Saudi%20Hacking%20Letter.pdfhttps://www.vice.com/en_us/article/v74v34/saudi-arabia-hacked-jeff-bezos-phone-technical-reporthttps://assets.documentcloud.org/documents/6668313/FTI-Report-into-Jeff-Bezos-Phone-Hack.pdfhttps://www.cyberscoop.com/jeff-bezos-mbs-hack-fti-report-questions/ Photo credit:https://pxhere.com/en/photo/186658 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Citrix Patches Major Vulnerability; Windows Patches NSA Reported Bug - ThreatWire
Jan 21 2020 9 mins  
A critical flaw in Citrix is finally patched, the NSA reports a major windows bug, and half a million usernames and passwords were leaked! All that coming up now on ThreatWire. #threatwire #hak5 I'm Moving!! https://twitter.com/Snubs/status/1218286909966909445 Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:Citrix:https://www.cyberscoop.com/citrix-adc-vulnerability-positive-technologies/https://support.citrix.com/article/CTX267027https://www.cyberscoop.com/citrix-vulnerability-patch-exploit/https://thehackernews.com/2020/01/citrix-adc-gateway-exploit.htmlhttps://github.com/trustedsec/cve-2019-19781https://github.com/projectzeroindia/CVE-2019-19781https://arstechnica.com/information-technology/2020/01/unpatched-citrix-vulnerability-now-exploited-patch-weeks-away/https://www.us-cert.gov/ncas/current-activity/2020/01/13/cisa-releases-test-citrix-adc-and-gateway-vulnerabilityhttps://www.zdnet.com/article/a-hacker-is-patching-citrix-servers-to-maintain-exclusive-access/https://www.fireeye.com/blog/threat-research/2020/01/vigilante-deploying-mitigation-for-citrix-netscaler-vulnerability-while-maintaining-backdoor.htmlhttps://support.citrix.com/article/CTX267027 NSA Windows:https://media.defense.gov/2020/Jan/14/2002234275/-1/-1/0/CSA-WINDOWS-10-CRYPT-LIB-20190114.PDFhttps://thehackernews.com/2020/01/warning-quickly-patch-new-critical.htmlhttps://www.cnet.com/news/major-windows-10-security-flaw-reported-nsa-same-day-windows-7-support-ended/https://www.cyberscoop.com/windows-10-vulnerability-nsa-public-disclosure/https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0601https://arstechnica.com/information-technology/2020/01/researcher-develops-working-exploit-for-critical-windows-10-vulnerability/https://github.com/ollypwn/cve-2020-0601https://threatpost.com/poc-exploits-published-for-microsoft-crypto-bug/151931/https://threatpost.com/microsoft-patches-crypto-bug/151842/ Via EmeryLeePW Leak:https://www.zdnet.com/article/hacker-leaks-passwords-for-more-than-500000-servers-routers-and-iot-devices/ Photo credit:https://live.staticflickr.com/3894/15207079997_ce6972329a_b.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆



SHA-1 Is Terrible, Cable Modems Haunted By Flaw, SIM Swapping Gets Worse - ThreatWire
Jan 14 2020 10 mins  
A major vulnerability affects modems, SIM swapping is still a huge threat, and SHA1 Still Sucks! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support Shop ThreatWire Merch! - https://snubsie.com/shop https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:Cable Haunt:https://threatpost.com/cable-haunt-remote-code-execution/151756/https://www.zdnet.com/article/hundreds-of-millions-of-cable-modems-are-vulnerable-to-new-cable-haunt-vulnerability/https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19494https://cablehaunt.com/https://github.com/Lyrebirds/sagemcom-fast-3890-exploit SIM Swapping:https://www.zdnet.com/article/academic-research-finds-five-us-telcos-vulnerable-to-sim-swapping-attacks/https://www.issms2fasecure.com/assets/sim_swaps-01-10-2020.pdfhttps://www.issms2fasecure.com/datasethttps://www.vice.com/en_us/article/5dmbjx/how-hackers-are-breaking-into-att-tmobile-sprint-to-sim-swap-yehhttps://www.vice.com/en_us/article/k7e8xx/sim-swapping-indictments-pile-up-as-congress-begs-the-fcc-to-do-more SHA1:https://en.wikipedia.org/wiki/SHA-1https://arstechnica.com/information-technology/2020/01/pgp-keys-software-security-and-much-more-threatened-by-new-sha1-exploit/https://eprint.iacr.org/2020/014.pdf -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


The Biggest Hacks of the Decade - 2010 to 2019 - ThreatWire
Dec 31 2019 10 mins  
The biggest hacks of this decade! Coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Shop ThreatWire Merch!https://snubsie.com/shop Links:Target: https://www.nbcnews.com/business/business-news/target-settles-2013-hacked-customer-data-breach-18-5-million-n764031 Ebay: https://www.washingtonpost.com/news/the-switch/wp/2014/05/21/ebay-asks-145-million-users-to-change-passwords-after-data-breach/ Marriott: https://www.cnn.com/2018/11/30/tech/marriott-hotels-hacked/index.html Prism: https://www.theverge.com/2013/7/17/4517480/nsa-spying-prism-surveillance-cheat-sheet Facebook: https://www.cnn.com/2019/04/03/tech/facebook-records-exposed-amazon/index.html and https://www.businessinsider.com/facebook-ftc-record-penalty-mark-zuckerberg-2019-5 Capital One: https://www.nytimes.com/2019/07/29/business/capital-one-data-breach-hacked.html AdultFriendFinder: https://www.csoonline.com/article/3139311/412-million-friendfinder-accounts-exposed-by-hackers.html Equifax: https://money.cnn.com/2017/09/07/technology/business/equifax-data-breach/index.html?iid=EL First American Financial Corp: https://krebsonsecurity.com/2019/05/first-american-financial-corp-leaked-hundreds-of-millions-of-title-insurance-records/ Yahoo!: https://money.cnn.com/2017/10/03/technology/business/yahoo-breach-3-billion-accounts/index.html Photo credit:https://storage.needpix.com/rsynced_images/happy-new-year-1063797_1280.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


10 Biggest Hacks of 2019 - ThreatWire
Dec 24 2019 9 mins  
The top 10 biggest hacks of 2019! Coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Shop ThreatWire Merch!https://snubsie.com/shop Links:https://www.zdnet.com/article/adobe-left-7-5-million-creative-cloud-user-records-exposed-online/https://techcrunch.com/2019/08/31/china-google-iphone-uyghur/ https://www.zdnet.com/article/australian-tech-unicorn-canva-suffers-security-breach/ https://www.bloomberg.com/news/articles/2019-06-17/american-medical-collection-agency-parent-files-for-bankruptcy https://www.upguard.com/breaches/facebook-user-data-leak https://www.dailymail.co.uk/sciencetech/article-6864029/Biggest-breach-recorded-982-MILLION-peoples-personal-information-exposed.html https://www.troyhunt.com/the-773-million-record-collection-1-data-reach/ https://www.theregister.co.uk/2019/02/11/620_million_hacked_accounts_dark_web/ https://www.nytimes.com/2019/07/29/business/capital-one-data-breach-hacked.html https://krebsonsecurity.com/2019/05/first-american-financial-corp-leaked-hundreds-of-millions-of-title-insurance-records/ Photo credit:https://storage.needpix.com/rsynced_images/fireworks-1924627_1280.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Intel CPUs Attacked by Plundervolt - ThreatWire
Dec 17 2019 9 mins  
Hackers are targeting fuel pump card processors, Plundervolt charges towards Intel CPUs, and Amazon security cameras come with security woes! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire NEW!!! Shop ThreatWire Merch!https://snubsie.com/shop Links:FIN8 Fuel Pumps:https://threatpost.com/fin8-targets-card-data-fuel-pumps/151105/https://www.zdnet.com/article/visa-warns-of-pos-malware-incidents-at-gas-pumps-across-north-america/https://www.documentcloud.org/documents/6575126-Visa-Security-Alert-CYBERCRIME-GROUPS-TARGETING.html PlunderVolt:https://plundervolt.com/https://threatpost.com/intel-cpus-plundervolt-attack/151006/https://arstechnica.com/information-technology/2019/12/scientists-pluck-crypto-keys-from-intels-sgx-by-tweaking-cpu-voltage/https://www.zdnet.com/article/new-plundervolt-attack-impacts-intel-cpus/https://github.com/KitMurdock/plundervolt Amazon Cameras:https://www.cnet.com/news/set-up-two-factor-authentication-to-keep-your-ring-camera-from-getting-hacked/https://www.vice.com/en_us/article/3a88k5/how-hackers-are-breaking-into-ring-camerashttps://www.vice.com/en_us/article/z3bbq4/podcast-livestreams-hacked-ring-cameras-nulledcasthttps://threatpost.com/amazon-blink-smart-camera-flaws/150962/https://www.cyberscoop.com/blink-amazon-camera-tenable-iot-flaws/ Photo credit:https://cdn.pixabay.com/photo/2017/08/09/15/03/pirate-flag-2614801_960_720.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Hijacking VPNs on Linux Distros - ThreatWire
Dec 11 2019 10 mins  
Apple iphones need location data for file sharing, VPN hijacking on Linux distros could be a thing, and new mac malware is suspected of stealing cryptocurrency! All that coming up now on ThreatWire. #threatwire #hak5 Links: Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Shop ThreatWire Merch!https://snubsie.com/shop Special Thanks to Mr. Twinkle Twinkie for designing the ThreatWire Totem Board! https://twitter.com/mrtwinkletwink Links:https://krebsonsecurity.com/2019/12/the-iphone-11-pros-location-data-puzzler/https://www.cnet.com/news/iphone-11-pro-discovered-to-still-seek-user-location-data-despite-settings/https://www.cnet.com/news/apple-iphone-feature-needs-your-location-even-when-you-dont-share-it/https://discussions.apple.com/thread/250665845https://krebsonsecurity.com/2019/12/apple-explains-mysterious-iphone-11-location-requests/https://techcrunch.com/2019/12/05/apple-ultra-wideband-newer-iphones-location/https://www.theverge.com/2019/12/5/20997338/apple-ultra-wideband-u1-chip-iphone-11-pro-location-data-request-privacy-issue https://seclists.org/oss-sec/2019/q4/122https://www.zdnet.com/article/new-vulnerability-lets-attackers-sniff-or-hijack-vpn-connections/https://threatpost.com/linux-bug-vpns-hijacking/150891/https://thehackernews.com/2019/12/linux-vpn-hacking.html https://objective-see.com/blog/blog_0x51.htmlhttps://arstechnica.com/information-technology/2019/12/north-koreas-lazarus-hackers-up-their-game-with-fileless-mac-malware/ Photo credit:https://www.firstcomputerspatna.com/wp-content/uploads/2018/09/unix.jpg-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


StrandHogg Gets an Android StrongHold - ThreatWire
Dec 03 2019 11 mins  
MixCloud got hacked, a bulk SMS messaging service got hacked, and Androids are vulnerable to a new flaw! All that coming up now on ThreatWire. #threatwire #hak5 Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Shop ThreatWire Merch!https://snubsie.com/shop Special Thanks to Mr. Twinkle Twinkie for designing the ThreatWire Totem Board! https://twitter.com/mrtwinkletwink Links:Mixcloud data breach:https://www.vice.com/en_us/article/7x5g4q/mixcloud-investigating-data-breach-allegedly-impacting-21-million-usershttps://www.zdnet.com/article/data-of-21-million-mixcloud-users-put-up-for-sale-on-the-dark-web/https://blog.mixcloud.com/2019/11/30/mixcloud-security-notice/ Android vuln:https://thehackernews.com/2019/12/strandhogg-android-vulnerability.htmlhttps://www.zdnet.com/article/android-new-strandhogg-vulnerability-is-being-exploited-in-the-wild/https://promon.co/security-news/strandhogg/https://www.androidcookbook.info/android-1-6-sdk/the-allowtaskreparenting-attribute.html TrueDialog Database:https://threatpost.com/insecure-database-exposes-millions-of-private-sms-messages/150706/https://www.vpnmentor.com/blog/report-truedialog-leak/?=truedialog-exposed-data Photo credit:StrandHogg-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Android Pixel, Samsung Cameras Vulnerable to Hijacking! - ThreatWire
Nov 26 2019 9 mins  
T-Mobile and OnePlus both suffer data breaches, and android cameras can be hijacked! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:https://www.oneplus.com/uk/support/faq22119102https://forums.oneplus.com/threads/security-notification.1144088/https://www.cyberscoop.com/oneplus-breach-phone-hack/https://www.zdnet.com/article/smartphone-maker-oneplus-discloses-data-breach/https://www.zdnet.com/article/oneplus-confirms-hack-exposed-credit-cards-of-phone-buyers/https://thehackernews.com/2019/11/oneplus-store-data-breach.html https://www.checkmarx.com/blog/how-attackers-could-hijack-your-android-camerahttps://www.cyberscoop.com/voice-assistant-flaws-checkmarx-google-assistant-samsung-bixby/https://www.zdnet.com/article/android-vulnerability-lets-rogue-apps-take-photos-record-video-even-if-your-phone-is-locked/https://threatpost.com/google-android-camera-hijack-hack/150409/https://arstechnica.com/information-technology/2019/11/google-samsung-fix-android-spying-flaw-other-makers-may-still-be-vulnerable/https://thehackernews.com/2019/11/android-camera-hacking.html https://www.t-mobile.com/customers/6305378822https://thehackernews.com/2019/11/t-mobile-prepaid-data-breach.htmlhttps://www.zdnet.com/article/t-mobile-discloses-security-breach-impacting-prepaid-customers/https://techcrunch.com/2019/11/22/more-than-1-million-t-mobile-customers-exposed-by-breach/https://www.cnet.com/news/t-mobile-customers-personal-information-exposed-in-hack/ Photo credit:https://live.staticflickr.com/5617/30120254046_2fa846e859_b.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Google Gets Access to Medical Data - ThreatWire
Nov 19 2019 10 mins  
Border searches are deemed unconstitutional, Microsoft promises privacy under a new California law, Google sweeps up tons of medical data! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:https://www.zdnet.com/article/thousands-of-hacked-disney-accounts-are-already-for-sale-on-hacking-forums/https://twitter.com/Snubs/status/1196525111794225152https://www.zdnet.com/article/attackers-using-whatsapp-vulnerability-triggered-by-video-files-can-remotely-execute-code/ Border Searches Deemed Unconstitutionalhttps://www.eff.org/document/alasaad-v-nielsen-summary-judgment-orderhttps://www.eff.org/press/releases/federal-court-rules-suspicionless-searches-travelers-phones-and-laptopshttps://www.cnet.com/news/us-border-search-of-suspicionless-travelers-devices-is-unconstitutional-court-finds/https://www.zdnet.com/article/clampdown-on-us-border-device-searches-not-such-a-big-deal/https://www.zdnet.com/article/us-court-rules-travellers-phones-and-laptops-cannot-be-searched-without-reasonable-suspicion/https://www.theverge.com/2019/11/12/20961727/border-officials-court-ruling-aclu-laptop-phone-searches CA Law Sweeps Across UShttps://threatpost.com/ccpas-domino-effect-us-privacy-regulation/150246/https://blogs.microsoft.com/on-the-issues/2019/11/11/microsoft-california-privacy-rights/https://www.theverge.com/2019/11/11/20960113/microsoft-ccpa-privacy-law-california-congress-regulationhttps://www.cnet.com/news/microsoft-to-employ-californias-digital-privacy-law-nationwide/https://www.cyberscoop.com/microsoft-ccpa-california-privacy/ Google + medical:https://www.wsj.com/articles/google-s-secret-project-nightingale-gathers-personal-health-data-on-millions-of-americans-11573496790?shareToken=st98ed7303aedb45d281bc0bda02eb90b4https://arstechnica.com/science/2019/11/would-you-trust-google-with-your-medical-records-it-might-already-have-them/https://threatpost.com/googles-plan-to-crunch-health-data-on-millions-of-patients-draws-fire/150172/https://arstechnica.com/tech-policy/2019/11/google-you-can-trust-us-with-the-medical-data-you-didnt-know-we-already-had/https://cloud.google.com/blog/topics/inside-google-cloud/our-partnership-with-ascensionhttps://www.zdnet.com/article/googles-plan-to-collect-health-data-on-millions-of-americans-faces-federal-inquiry/https://www.wsj.com/articles/behind-googles-project-nightingale-a-health-data-gold-mine-of-50-million-patients-11573571867 Photo credit:https://cdn.pixabay.com/photo/2018/03/21/11/34/eye-3246419_960_720.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆



Hacking Smart Speakers With Lasers - ThreatWire
Nov 13 2019 9 mins  
Ring doorbells were leaking customer wifi credentials, Apple has a plaintext email problem, and hacking IoT devices with lasers! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:Ring doorbell:https://www.bitdefender.com/files/News/CaseStudies/study/294/Bitdefender-WhitePaper-RDoor-CREA3949-en-EN-GenericUse.pdfhttps://thehackernews.com/2019/11/ring-doorbell-wifi-password.htmlhttps://arstechnica.com/information-technology/2019/11/ring-patches-total-lack-of-password-security-during-setup/https://threatpost.com/amazon-fixes-ring-video-doorbell-flaw-that-leaked-wi-fi-credentials/150029/https://www.zdnet.com/article/amazon-fixes-ring-video-doorbell-wi-fi-security-vulnerability/https://www.cyberscoop.com/ring-doorbell-wi-fi-flaw/ MacOS Email:https://medium.com/@boberito/apple-mail-stores-encrypted-emails-in-plain-text-database-fix-included-3c2369ce26d4https://threatpost.com/encrypted-emails-on-macos-found-stored-in-unprotected-way/150065/https://www.zdnet.com/article/apple-mail-on-macos-leaves-parts-of-encrypted-emails-in-plaintext/https://www.cyberscoop.com/apple-mail-vulnerability-encryption-macos/https://www.theverge.com/2019/11/8/20954130/apple-mail-encrypted-unencrypted-email-macos-siri-text Lasers:https://lightcommands.com/20191104-Light-Commands.pdfhttps://www.cnet.com/news/lasers-can-seemingly-hack-alexa-google-home-and-siri/https://thehackernews.com/2019/11/hacking-voice-assistant-laser.htmlhttps://www.vice.com/en_us/article/3kxwvy/alexa-siri-and-google-assistant-can-be-hacked-remotely-with-lasers Photo credit:https://i.imgur.com/a164sdY.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


BlueKeep Attacks Surfacing; Persistent Malware on Android - ThreatWire
Nov 05 2019 9 mins  
A hacking group was actively stealing SMS messages, BlueKeep updates, and persistent malware hits android users! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:Hacking Telecomhttps://thehackernews.com/2019/10/sms-spying-malware.htmlhttps://arstechnica.com/information-technology/2019/10/researchers-unearth-malware-that-siphoned-sms-texts-out-of-telcos-network/https://threatpost.com/china-hackers-spy-texts-messagetap-malware/149761/https://www.zdnet.com/article/chinese-hackers-developed-malware-to-steal-sms-messages-from-telcos-network/https://www.cyberscoop.com/chinese-hacking-group-breached-telecom-monitor-targets-texts-phone-metadata/https://content.fireeye.com/apt-41/rpt-apt41/ BlueKeephttps://www.wired.com/story/microsoft-bluekeep-patched-too-slow/https://threatpost.com/bluekeep-attacks-have-arrived-are-initially-underwhelming/149829/https://www.zdnet.com/article/bluekeep-attacks-are-happening-but-its-not-a-worm/https://thehackernews.com/2019/11/bluekeep-rdp-vulnerability.htmlhttps://www.wired.com/story/bluekeep-hacking-cryptocurrency-mining/ Patreon choice: 45k Androids infected w/ malwarehttps://www.symantec.com/blogs/threat-intelligence/xhelper-android-malware https://blog.malwarebytes.com/android/2019/08/mobile-menace-monday-android-trojan-raises-xhelper/https://thehackernews.com/2019/10/remove-xhelper-android-malware.htmlhttps://threatpost.com/android-malware-45k-devices-mystery/149654/ Photo credit:https://130e178e8f8ba617604b-8aedd782b7d22cfe0d1146da69a52436.ssl.cf1.rackcdn.com/weaponized-bluekeep-exploit-released-showcase_image-1-a-13051.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Adobe Creative Cloud Exposes Data for 7 Million+ Users - ThreatWire
Oct 29 2019 6 mins  
Should Amazon be blamed for the capital one data breach? Adobe Creative Cloud Users Data was Exposed, And a remote code execution attack is being used in the wild! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:Chosen by patrons AWS Capital One Breach:https://www.cyberscoop.com/warren-wyden-aws-capital-one-breach/https://www.cnet.com/news/warren-and-wyden-call-for-ftc-investigation-on-amazon-over-capital-one-breach/ Adobe:https://www.comparitech.com/blog/information-security/7-million-adobe-creative-cloud-accounts-exposed-to-the-public/https://theblog.adobe.com/security-update/https://threatpost.com/adobe-creative-cloud-users-exposed-hackers/149563/https://thehackernews.com/2019/10/adobe-database-leaked.html PHP Flaw:https://thehackernews.com/2019/10/nginx-php-fpm-hacking.htmlhttps://github.com/neex/phuip-fpizdamhttps://www.zdnet.com/article/nasty-php7-remote-code-execution-bug-exploited-in-the-wild/ Photo credit:https://blogs.adobe.com/creativecloud/files/2012/05/CC-image.jpeg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


NordVPN Was Hacked, Google Pixel 4 Face Unlock to Receive Update - ThreatWire
Oct 22 2019 9 mins  
Smartphone biometrics have flaws, Wyden wants tech companies to mind their own business, and NordVPN had a data breach! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:https://news.samsung.com/global/statement-on-fingerprint-recognition-issuehttps://www.thesun.co.uk/tech/10127908/samsung-galaxy-s10-screen-protector-ebay/https://www.vice.com/en_us/article/59nqdb/samsung-galaxy-s10-vault-like-security-beaten-by-a-dollar3-screen-protectorhttps://www.reuters.com/article/us-samsung-elec-smartphone/samsung-to-patch-galaxy-s10-fingerprint-problem-idUSKBN1WW0Q5https://www.cnet.com/news/samsung-promises-to-fix-galaxy-s10-fingerprint-unlock-bug/https://www.zdnet.com/article/google-pixel-4s-face-unlock-works-even-if-you-have-your-eyes-closed/https://www.cnet.com/news/pixel-4-face-unlock-works-even-when-your-eyes-are-closed-unconscious-dead-google-patch-months-away/https://www.zdnet.com/article/facial-recognition-doesnt-work-as-intended-on-42-of-110-tested-smartphones/https://www.zdnet.com/article/google-to-roll-out-update-in-the-coming-months-to-fix-pixel-4-face-unlock-bypass/https://www.theverge.com/2019/10/20/20924143/google-pixel-4-face-unlock-eyes-security-update-coming-monthshttps://www.cyberscoop.com/samsung-fingerprint-flaw-google-pixel-biometric-security/ https://www.theverge.com/2019/10/17/20917988/ron-wyden-facebook-privacy-data-regulation-do-not-trackhttps://www.zdnet.com/article/us-senator-introduces-privacy-bill-that-would-jail-ceos-for-user-privacy-violations/https://threatpost.com/execs-jail-time-privacy-violations/149334/https://www.cnet.com/news/senator-proposes-data-privacy-bill-with-serious-punishments/ https://nordvpn.com/blog/official-response-datacenter-breach/https://www.zdnet.com/article/nordvpn-confirms-data-center-breach/https://techcrunch.com/2019/10/21/nordvpn-confirms-it-was-hacked/https://www.cnet.com/news/popular-vpn-service-nordvpn-confirms-datacenter-breach/ Photo credit:Google -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Android Zero Day Actively Exploited In the Wild! - ThreatWire
Oct 08 2019 10 mins  
Governments want Facebook to delay further encryption, Signal fixes a snooping exploit, and An Android Zero Day is being used in the wild! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:https://www.buzzfeednews.com/article/ryanmac/bill-barr-facebook-letter-halt-encryptionhttps://www.facebook.com/notes/mark-zuckerberg/a-privacy-focused-vision-for-social-networking/10156700570096634/https://www.cnet.com/news/the-uss-renewed-calls-for-backdoor-access-to-encryption-has-all-the-same-flaws/https://www.cyberscoop.com/facebook-encryption-william-barr-letter/https://threatpost.com/ag-barr-facebook-dont-encrypt-messaging/148913/https://www.cnet.com/news/governments-call-on-facebook-to-pause-encryption-efforts/ https://www.zdnet.com/article/signal-fixes-facetime-like-eavesdropping-bug/https://bugs.chromium.org/p/project-zero/issues/detail?id=1943https://www.vice.com/en_us/article/3kx7n8/signal-bug-could-have-let-hackers-listen-to-android-users-via-microphonehttps://thehackernews.com/2019/10/signal-messenger-bug.html https://bugs.chromium.org/p/project-zero/issues/detail?id=1942https://www.zdnet.com/article/google-finds-android-zero-day-impacting-pixel-samsung-huawei-xiaomi-devices/https://thehackernews.com/2019/10/android-kernel-vulnerability.htmlhttps://threatpost.com/google-warns-of-zero-day/148924/https://www.cnet.com/news/android-exploit-leaves-some-pixel-galaxy-phones-vulnerable-to-hacks/https://arstechnica.com/information-technology/2019/10/attackers-exploit-0day-vulnerability-that-gives-full-control-of-android-phones/ Photo credit:https://i.gadgets360cdn.com/large/google_android_reuters_1557489952979.JPG?output-quality=80 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Jailbreak Your iPhone! DoorDash Gets Hacked, and an Update to SIM Jacker - ThreatWire
Oct 01 2019 8 mins  
DoorDash is hacked, you can now permanently jailbreak your iphone, and an update on SIM Card vulnerabilities (yes, there’s more than one!)! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support *** FREE Texas Cyber Summit Ticket! *** https://twitter.com/Snubs/status/1175559698772185088 https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links: DoorDash: https://blog.doordash.com/important-security-notice-about-your-doordash-account-ddd90ddf5996https://www.zdnet.com/article/personal-info-on-nearly-5m-doordash-users-merchants-drivers-exposed/https://www.vice.com/en_us/article/pa97g7/xnore-copy9-stalkerware-data-breach-thousands-victimshttps://arstechnica.com/information-technology/2019/09/doordash-hack-spills-loads-of-data-for-4-9-million-people/https://www.businessinsider.com/doordash-data-breach-hack-how-to-check-if-youre-affected-2019-9 iPhone Jailbreak: https://twitter.com/axi0mX/status/1177542201670168576https://arstechnica.com/information-technology/2019/09/unpatchable-bug-in-millions-of-ios-devices-exploited-developer-claims/https://threatpost.com/ios-exploit-checkm8-could-allow-permanent-iphone-jailbreaks/148762/https://www.wired.com/story/ios-exploit-jailbreak-iphone-ipad/https://github.com/axi0mX/ipwndfu Simjacker: https://www.vice.com/en_us/article/qvgzqw/researchers-think-they-know-how-many-phones-are-vulnerable-to-simjacker-attackshttps://srlabs.de/bites/sim_attacks_demystified/https://thehackernews.com/2019/09/dynamic-sim-toolkit-vulnerability.htmlhttps://www.zdnet.com/article/new-sim-card-attack-disclosed-similar-to-simjacker/ Photo credit:https://www.phonedog.com/sites/phonedog.com/files/styles/blog_entry/public/iphonexhandsonangle_1.jpg?itok=m2qX9CbA -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


“Hey, Google!” Gets Increased Privacy Amid Backlash - ThreatWire
Sep 24 2019 9 mins  
Google Assistant gets new audio privacy updates, cookie stuffing ad blockers get caught, and Click2Gov is hacked… again! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:Google Assistant Privacy updateshttps://www.blog.google/products/assistant/doing-more-protect-your-privacy-assistant/https://www.wired.com/story/google-assistant-human-transcription-privacy/https://www.theverge.com/2019/9/23/20878710/google-assistant-audio-recording-policy-hotword-human-reviewhttps://threatpost.com/google-assistant-audio-privacy-controls-updated-after-outcry/148563/https://www.zdnet.com/article/google-revamps-privacy-policy-to-give-users-more-control-over-assistant-voice-recordings/ AdBlockers Caught in Ad Fraud Schemehttps://www.zdnet.com/article/google-removes-two-chrome-ad-blocker-extensions-caught-cookie-stuffing/https://chrome.google.com/webstore/detail/ublock-origin/cjpalhdlnbpafiamejdnhcphjbkeiagmhttps://chrome.google.com/webstore/search/adblockhttps://thehackernews.com/2019/09/browser-chrome-extension-adblock.htmlhttps://adguard.com/en/blog/fake-ad-blockers-part-2.htmlhttps://www.eff.org/deeplinks/2019/07/googles-plans-chrome-extensions-wont-really-help-security Click2Gov hackedhttps://arstechnica.com/information-technology/2019/09/payment-card-thieves-hack-click2gov-bill-paying-portals-in-8-cities/https://geminiadvisory.io/second-wave-of-click2gov-breaches-hits-united-states/https://threatpost.com/payment-card-breach-hits-8-cities-using-vulnerable-bill-portal/148521/https://www.zdnet.com/article/two-years-later-hackers-are-still-breaching-local-government-payment-portals/https://www.databreaches.net/eight-cities-impacted-in-second-wave-of-click2gov-breaches-gemini-advisory/ Photo credit:https://www.pexels.com/photo/round-grey-speaker-on-brown-board-1072851/ -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


SIM Jacking Can Steal Device Data - ThreatWire
Sep 17 2019 9 mins  
A vpn for firefox users, SIM Jacking can steal device data, and DNS over HTTPS will go live in October! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links: https://blog.mozilla.org/blog/2019/09/03/todays-firefox-blocks-third-party-tracking-cookies-and-cryptomining-by-default/https://www.theverge.com/2019/9/3/20848629/firefox-69-block-third-party-tracker-default-enhanced-tracking-protection-android-windows-mac-oshttps://private-network.firefox.comhttps://thehackernews.com/2019/09/firefox-privacy-vpn-service.htmlhttps://www.cnet.com/news/mozilla-tests-firefox-vpn-service-to-help-protect-your-privacy/https://www.theverge.com/2019/9/11/20861381/firefox-testing-vpn-mozilla-private-network-test-pilot-program https://simjacker.comhttps://thehackernews.com/2019/09/simjacker-mobile-hacking.htmlhttps://threatpost.com/1b-mobile-users-vulnerable-to-ongoing-simjacker-surveillance-attack/148277/https://www.zdnet.com/article/new-simjacker-attack-exploited-in-the-wild-to-track-users-for-at-least-two-years/https://www.cyberscoop.com/simjacker-mobile-phone-vulnerability/ https://blog.chromium.org/2019/09/experimenting-with-same-provider-dns.htmlhttps://www.chromium.org/developers/dns-over-httpshttps://thehackernews.com/2019/09/chrome-dns-over-https.htmlhttps://www.zdnet.com/article/google-to-run-dns-over-https-doh-experiment-in-chrome/ Photo credit:https://zdnet1.cbsistatic.com/hub/i/r/2019/09/12/729cfdfd-7784-460e-a37e-054d376095a0/resize/1200x675/999c5c4ca4cbb71f31e78bf628943f67/simjacker-attack.png -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆



Website Visitors Pwned for Years; Google Expands Bug Bounty - ThreatWire
Sep 03 2019 9 mins  
Ransomware targets dental data backups, malicious websites were hacking iphones for years, and Google expands their android app bug bounty program! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links: Dental ransomware:https://thehackernews.com/2019/08/dds-safe-dental-ransomware-attack.htmlhttps://www.dentalrecord.com/assets/images/UpdateDDSSafe7.pdfhttps://www.facebook.com/pg/percsoft/posts/?ref=page_internalhttps://krebsonsecurity.com/2019/08/ransomware-bites-dental-data-backup-firm/https://www.zdnet.com/article/ransomware-hits-hundreds-of-dentist-offices-in-the-us/ Huge iPhone hack:https://googleprojectzero.blogspot.com/2019/08/a-very-deep-dive-into-ios-exploit.htmlhttps://www.forbes.com/sites/thomasbrewster/2019/09/01/iphone-hackers-caught-by-google-also-targeted-android-and-microsoft-windows-say-sources/#59e834c64adfhttps://www.vice.com/en_us/article/bjwne5/malicious-websites-hacked-iphones-for-yearshttps://www.cyberscoop.com/iphone-hack-google-project-zero/https://www.cnet.com/news/google-says-iphone-security-flaws-let-websites-hack-them-for-years/https://support.apple.com/en-us/HT209520https://techcrunch.com/2019/08/31/china-google-iphone-uyghur/https://www.businessinsider.com/china-may-have-used-hacked-websites-to-target-uighur-muslims-2019-9https://threatpost.com/iphone-zero-days-watering-hole-attacks/147891/ Google expands bug bounty to apps:https://security.googleblog.com/2019/08/expanding-bug-bounties-on-google-play.htmlhttps://threatpost.com/google-targets-data-abusing-apps-bug-bounty/147825/https://thehackernews.com/2019/08/google-data-abuse-bug-bounty.htmlhttps://www.zdnet.com/article/google-adds-all-android-apps-with-100m-installs-to-its-bug-bounty-program/https://hackerone.com/ddp_reward_programhttps://www.zdnet.com/article/google-launches-bounty-program-to-spot-misuses-of-google-api-chrome-and-android-user-data/ Photo credit:https://live.staticflickr.com/3956/15707819731_fc5c9b4118_b.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Valve Apologizes to Banned Security Researcher - ThreatWire
Aug 27 2019 8 mins  
A hacker is ordered to pay about 1 million pounds to his victims, Valve says it’s Sorry, and what is homomorphic encryption! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:Hacker must pay back 1 million euros:https://www.theguardian.com/technology/2019/aug/23/bitcoin-seized-hacker-grant-west-uk-compensate-victimshttps://thehackernews.com/2019/08/hacker-phishing-bitcoin.htmlhttps://www.zdnet.com/article/police-to-sell-hackers-1-1-million-bitcoin-stash-to-compensate-victims/http://news.met.police.uk/news/more-than-900000-pounds-confiscated-from-from-cyber-hacker-379015?hootPostID=11032480c2ac425d16457361a6932540 Valve:https://threatpost.com/gamers-zero-day-steam-client-affects-windows/147225/https://hackerone.com/valvehttps://amonitoring.ru/article/onemore_steam_eop_0day/https://threatpost.com/researcher-discloses-second-steam-zero-day-after-valve-bug-bounty-ban/147593/https://www.zdnet.com/article/researcher-publishes-second-steam-zero-day-after-getting-banned-on-valves-bug-bounty-program/https://twitter.com/enigma0x3/status/1160961861560479744https://arstechnica.com/information-technology/2019/08/valve-says-turning-away-researcher-reporting-steam-vulnerability-was-a-mistake/https://www.zdnet.com/article/valve-patches-recent-steam-zero-days-calls-turning-away-researcher-a-mistake/ Homomorphic encryption:https://www.cyberscoop.com/homomorphic-encryption-nsa-silicon-valley-commercial/https://www.microsoft.com/en-us/research/blog/the-microsoft-simple-encrypted-arithmetic-library-goes-open-source/https://www.intel.ai/he-transformer-for-ngraph-enabling-deep-learning-on-encrypted-data/#gs.yi2ofihttps://www.theregister.co.uk/2018/03/08/ibm_faster_homomorphic_encryption/https://www.cyberscoop.com/homomorphic-encryption-standards-intel-microsoft-google/http://homomorphicencryption.org/aug-17-2019-homomorphicencryption-org-standards-meeting/# Photo credit:https://live.staticflickr.com/4907/46871748401_7cf44c81e0_b.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Bluetooth Is Vulnerable to the KNOB Attack - ThreatWire
Aug 20 2019 9 mins  
All about warshipping, spying on bluetooth with the knob attack, and capital one wasn’t the only company hit! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links: Warshipping:https://arstechnica.com/information-technology/2019/08/hack-in-the-box-hacking-into-companies-with-warshipping/https://securityintelligence.com/posts/package-delivery-cybercriminals-at-your-doorstep/ Bluetooth KNOB attack:https://www.bleepingcomputer.com/news/security/new-bluetooth-knob-attack-lets-attackers-manipulate-traffic/https://thehackernews.com/2019/08/bluetooth-knob-vulnerability.htmlhttps://www.usenix.org/system/files/sec19-antonioli.pdfhttps://www.bluetooth.com/security/statement-key-negotiation-of-bluetooth/ Capital One updates: https://arstechnica.com/tech-policy/2019/08/woman-accused-of-capital-one-hack-had-stolen-data-from-30-companies-authorities-say/https://www.cyberscoop.com/paige-thompson-capital-one-30-companies/https://www.scribd.com/document/421860692/Thompson-New-Memorandumhttps://www.cnet.com/news/capital-one-hacking-suspect-hit-dozens-more-companies-prosecutors-say/https://www.cyberscoop.com/capital-one-aws-companies-wyden-letter/https://www.wyden.senate.gov/imo/media/doc/081319%20Amazon%20Letter%20to%20Sen%20Wyden%20RE%20Consumer%20Data.pdf Photo credit:https://cdn.pixabay.com/photo/2017/06/02/14/38/package-2366468_960_720.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


DEF CON 2019: How To Hack A Canon Camera - ThreatWire
Aug 14 2019 8 mins  
A steam zero day was found, Hackers hack a canon camera during defcon, and Passwordless Logins Coming to Google! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:Via Justin and Dan188 on Patreon Steam Vulnerability:https://www.bleepingcomputer.com/news/security/steam-zero-day-vulnerability-affects-over-100-million-users/https://threatpost.com/gamers-zero-day-steam-client-affects-windows/147225/https://amonitoring.ru/article/steamclient-0day/https://twitter.com/enigma0x3/status/1159103239729471488 Canon DSLR Hacking:https://thehackernews.com/2019/08/dslr-camera-hacking.htmlhttps://asia.canon/en/support/security-advisory-ptp-communication-and-firmware-functions/noticehttps://research.checkpoint.com/say-cheese-ransomware-ing-a-dslr-camera/https://threatpost.com/hack-of-a-canon-eos-80d-dslr/147214/ Fingerprint on Android:https://thehackernews.com/2019/08/android-local-user-verification.htmlhttps://security.googleblog.com/2019/08/making-authentication-even-easier-with_12.htmlhttps://arstechnica.com/information-technology/2019/08/google-lets-android-users-skip-the-password-when-logging-in/https://www.cnet.com/news/google-now-offers-no-password-login-if-you-have-android-phone/ -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Photo credit:DEF CON duh


WPA3 Passwords Still Vulnerable To Hacks, Capital One Hack Breakdown - ThreatWire
Aug 06 2019 11 mins  
Everything we know about the Capital One breach, WPA3 is still vulnerable to hacks, and US utility companies are targeted in attacks! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links: Capital Onehttps://www.cyberscoop.com/capital-one-cybersecurity-data-breach-what-went-wrong/https://www.prnewswire.com/news-releases/capital-one-announces-data-security-incident-300892738.htmlhttps://krebsonsecurity.com/2019/08/what-we-can-learn-from-the-capital-one-hack/https://www.capitalone.com/applications/responsible-disclosure/https://www.justice.gov/usao-wdwa/press-release/file/1188626/downloadhttps://techcrunch.com/2019/07/31/capital-one-breach-vodafone-ford-researchers/https://www.scribd.com/document/420587413/GitHub-CapitalOne-Complainthttps://www.cyberscoop.com/capital-one-data-breach-credit-freeze-credit-cards/ WPA3 Hackinghttps://www.zdnet.com/article/dragonblood-vulnerabilities-disclosed-in-wifi-wpa3-standard/https://www.zdnet.com/article/new-dragonblood-vulnerabilities-found-in-wifi-wpa3-standard/https://thehackernews.com/2019/08/hack-wpa3-wifi-password.htmlhttps://wpa3.mathyvanhoef.com/#newhttps://eprint.iacr.org/2019/383.pdf US Utilities targeted in hackhttps://www.proofpoint.com/us/threat-insight/post/lookback-malware-targets-united-states-utilities-sector-phishing-attackshttps://arstechnica.com/information-technology/2019/08/new-advanced-malware-possibly-nation-sponsored-is-targeting-us-utilities/https://www.zdnet.com/article/suspected-state-sponsored-hacking-group-tried-to-break-into-us-utilities/https://www.cyberscoop.com/apt-10-utilities-phishing-proofpoint/ -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Photo credit:https://upload.wikimedia.org/wikipedia/commons/0/03/Sympetrum_flaveolum_-_side_%28aka%29.jpg


Equifax Owes You Money! MalwareTech Goes Free & BlueKeep Is For Sale - ThreatWire (7-30 REUPLOAD)
Jul 30 2019 11 mins  
Equifax likely owes you money, MalwareTech is finally free, and a BlueKeep exploit goes on sale! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Equifaxhttps://www.ftc.gov/news-events/press-releases/2019/07/equifax-pay-575-million-part-settlement-ftc-cfpb-states-relatedhttps://thehackernews.com/2019/07/equifax-data-breach-fine.htmlhttps://www.businessinsider.com/equifax-data-breach-settlement-how-to-claim-money-from-lawsuit-2019-7https://www.ftc.gov/enforcement/cases-proceedings/refunds/equifax-data-breach-settlementhttps://eligibility.equifaxbreachsettlement.com/en/eligibilityhttps://www.equifaxbreachsettlement.com/ No jail time for malwaretechhttps://thehackernews.com/2019/07/marcus-hutchins-sentenced.htmlhttps://www.vice.com/en_us/article/9kxewv/malwaretech-wannacry-ransomware-sentencinghttps://www.cyberscoop.com/marcus-hutchins-sentenced-kronos-wannacry/https://twitter.com/emptywheel/status/1154789624843329536https://twitter.com/MalwareTechBlog/status/1154787474486517762https://www.cyberscoop.com/teenage-hackers-police-britain-netherlands/https://www.politie.nl/themas/hack_right.html?sid=8f4296ab-ea98-4a08-ab28-81ef1fcf8b7c Bluekeephttps://thehackernews.com/2019/05/bluekeep-rdp-vulnerability.htmlhttps://www.intezer.com/blog-watching-the-watchbog-new-bluekeep-scanner-and-linux-exploits/https://thehackernews.com/2019/07/linux-malware-windows-bluekeep.htmlhttps://www.vice.com/en_us/article/wjvvvb/cybersecurity-firm-drops-code-for-the-incredibly-dangerous-windows-bluekeep-vulnerabilityhttps://twitter.com/Immunityinc/status/1153752470130221057https://www.immunityinc.com/products/canvas/index.htmlhttps://www.zdnet.com/article/us-company-selling-weaponized-bluekeep-exploit/ -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Google Chrome Incognito Mode - Now With More Incognito! + FaceApp Scrutiny - ThreatWire
Jul 23 2019 8 mins  
FaceApp answers questions about privacy concerns, Google blocks incognito mode detection, and Oakland bans facial recognition technology ! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links: Incognito Mode:https://www.blog.google/outreach-initiatives/google-news-initiative/protecting-private-browsing-chrome/https://arstechnica.com/information-technology/2019/07/chrome-76-prevents-nyt-and-other-news-sites-from-detecting-incognito-mode/https://www.zdnet.com/article/google-to-clamp-down-on-incognito-mode-detection/ FaceApp:https://www.cnet.com/news/faceapp-says-its-not-uploading-all-your-photos/https://www.cyberscoop.com/faceapp-privacy-russia-amazon-servers/https://techcrunch.com/2019/07/17/faceapp-responds-to-privacy-concerns/https://www.theverge.com/2019/7/17/20698393/faceapp-aging-russia-security-privacy-concerns-dnc-democrats-warning-campaign-electionhttps://twitter.com/frankthorp/status/1151619130983964672https://arstechnica.com/tech-policy/2019/07/as-russian-faceapp-gobbles-up-user-photos-schumer-asks-fbi-to-investigate/ Facial Recognition Banshttps://www.cnet.com/news/facial-recognition-banned-in-another-city/https://www.vice.com/en_us/article/zmpaex/oakland-becomes-third-us-city-to-ban-facial-recognition-xzhttps://sanfrancisco.cbslocal.com/2019/07/16/oakland-officials-take-step-towards-banning-city-use-of-facial-recognition-tech/https://www.banfacialrecognition.com/map/ -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Photo credit: https://farm3.staticflickr.com/2809/33535666103_5438b71892_b.jpg


Big Problems for OpenPGP - ThreatWire
Jul 09 2019 9 mins  
Border agents in china are installing malware on phones, GnuPG has a serious problem, and Amazon saves your voice recordings indefinitely! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! ThreatWire is only possible because of our Patreon patrons! https://www.patreon.com/threatwire Links:https://www.nytimes.com/2019/07/02/technology/china-xinjiang-app.htmlhttps://www.vice.com/en_us/article/7xgame/at-chinese-border-tourists-forced-to-install-a-text-stealing-piece-of-malwarehttps://github.com/motherboardgithub/bxaqhttps://www.cnet.com/news/china-is-reportedly-scanning-tourists-phones-with-malware/ https://threatpost.com/pgp-ecosystem-targeted-in-poisoning-attacks/146240/https://www.vice.com/en_us/article/8xzj45/someone-is-spamming-and-breaking-a-core-component-of-pgps-ecosystemhttps://gist.github.com/rjhansen/67ab921ffb4084c865b3618d6955275fhttps://dkg.fifthhorseman.net/blog/openpgp-certificate-flooding.html https://www.cnet.com/news/alexa-privacy-concerns-prompt-senator-to-seek-answers-from-amazon-ceo-jeff-bezos/https://www.cnet.com/news/amazon-alexa-keeps-your-data-with-no-expiration-date-and-shares-it-too/https://www.theverge.com/2019/7/3/20681423/amazon-alexa-echo-chris-coons-data-transcripts-recording-privacyhttps://www.cnet.com/how-to/you-can-finally-delete-most-of-your-amazon-echo-transcripts-heres-how/ -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆



Cities Pay Up After Ransomware Attacks - ThreatWire
Jul 02 2019 9 mins  
Ransomware-ridden Florida cities are paying up, insulin pumps are vulnerable to potentially deadly wireless hacks, and Chronicle joins Google cloud! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! Florida Ransomware:https://www.cyberscoop.com/ransomware-lake-city-florida-payment/https://www.cnet.com/news/another-florida-city-pays-hackers-over-ransomware-attack/https://arstechnica.com/information-technology/2019/06/is-there-something-in-the-water-third-florida-city-hit-by-ransomware/https://threatpost.com/second-florida-city-pays-hackers-500k-post-ransomware-attack/146018/https://go.forrester.com/blogs/unconventional-wisdom-explore-paying-the-ransom-in-parallel-with-other-recovery-options/https://www.zdnet.com/article/why-and-when-it-makes-sense-to-pay-the-ransom-in-ransomware-attacks/ Chronicle, Alphabet’s Security arm, joins Google Cloud:https://cloud.google.com/blog/topics/inside-google-cloud/the-security-moonshot-joins-google-cloudhttps://chronicle.security/https://www.cyberscoop.com/alphabets-chronicle-uses-big-data-launch-threat-intel-platform/https://www.businessinsider.com/alphabet-cybersecurity-company-chronicle-joins-google-cloud-2019-6https://www.cyberscoop.com/chronicle-alphabets-push-into-security-will-join-google-cloud/ Insulin Pumps Flaw:https://www.fda.gov/news-events/press-announcements/fda-warns-patients-and-health-care-providers-about-potential-cybersecurity-concerns-certainhttps://threatpost.com/fda-warns-of-potentially-fatal-flaws-in-medtronic-insulin-pumps/146109/https://www.medtronicdiabetes.com/customer-support/product-and-service-updates/notice11-letterhttps://www.cyberscoop.com/fda-urges-patients-ditch-vulnerable-insulin-pumps-built-medtronic/https://www.us-cert.gov/ics/advisories/icsma-19-178-01https://info.medtronicdiabetes.com/legacyexchange Photo credit:https://media.defense.gov/2017/May/15/2001746883/-1/-1/0/170519-A-PO640-007.JPG -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Amazon Surveillance Delivery Drones; Patch Linux! - ThreatWire
Jun 25 2019 8 mins  
Firefox, Linux, FreeBSD Vulnerabilities? Patch, now! And Amazon wants to make surveillance delivery drones! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse -- subscribe to my new channel! -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Firefox Zero Day:https://www.zdnet.com/article/mozilla-patches-firefox-zero-day-abused-in-the-wild/https://www.mozilla.org/en-US/security/advisories/mfsa2019-18/https://www.zdnet.com/article/mozilla-fixes-second-firefox-zero-day-exploited-in-the-wild/https://www.mozilla.org/en-US/security/advisories/mfsa2019-19/https://www.zdnet.com/article/firefox-zero-day-was-used-in-attack-against-coinbase-employees-not-its-users/https://twitter.com/SecurityGuyPhil/status/1141466335592869888https://threatpost.com/mozilla-patches-firefox-critical-flaw-under-active-attack/145814/ Amazon Drones:https://www.cnet.com/news/amazon-granted-patent-for-surveillance-drones-service/https://www.zdnet.com/article/amazon-patent-suggests-surveillance-as-a-service-could-be-future-offering/https://www.businessinsider.com/amazon-wins-patent-for-surveillance-drones-2019-6 Linux Vulns:https://arstechnica.com/information-technology/2019/06/new-vulnerabilities-may-let-hackers-remotely-sack-linux-and-freebsd-systems/https://threatpost.com/linux-kernel-bug-pcs-iot-offline/145797/https://www.zdnet.com/article/netflix-to-linux-users-patch-sack-panic-kernel-bug-now-to-stop-remote-attacks/https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-001.md


RAMBleed Steals Crypto Keys; Yubikeys Recalled - ThreatWire
Jun 18 2019 10 mins  
US Infrastructure is Targeted by attackers, RAMBleed can steal cryptokeys, and Yubikeys get recalled! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support https://www.youtube.com/shannonmorse?sub_confirmation=1 -- subscribe to my new channel! Hacking Power Grids:https://dragos.com/blog/industry-news/threat-proliferation-in-ics-cybersecurity-xenotime-now-targeting-electric-sector-in-addition-to-oil-and-gas/https://dragos.com/wp-content/uploads/TRISIS-01.pdfhttps://www.zdnet.com/article/this-most-dangerous-hacking-group-is-now-probing-power-grids/https://www.cyberscoop.com/trisis-xenotime-us-electric-sector/https://www.wired.com/story/triton-hackers-scan-us-power-grid/https://arstechnica.com/information-technology/2019/06/hackers-behind-dangerous-oil-and-gas-intrusions-are-probing-us-power-grids/ Yubikeys Vulnerable:https://www.yubico.com/support/security-advisories/ysa-2019-02/https://www.zdnet.com/article/yubico-to-replace-vulnerable-yubikey-fips-security-keys/https://www.yubico.com/replaceorder/ RAMBleed, shoutout to CypherDragon:https://access.redhat.com/articles/1377393https://rambleed.com/https://rambleed.com/docs/20190603-rambleed-web.pdfhttps://arstechnica.com/information-technology/2019/06/researchers-use-rowhammer-bitflips-to-steal-2048-bit-crypto-key/https://threatpost.com/rambleed-side-channel-privileged-memory/145629/https://thehackernews.com/2019/06/rambleed-dram-attack.html Photo credit: https://live.staticflickr.com/6179/6173837649_2d77becc9b_b.jpg -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆


Ring Doorbells Create a Surveillance State - ThreatWire
Jun 11 2019 9 mins  
A windows exploit bypasses a recent patch, Ring Doorbells are a surveillance state network?, and malicious adware was found in hundreds of Google Play apps! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Windows Zero Day ByeBear Posted to Bypass Windows Patchhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0841https://krbtgt.pw/dacl-permissions-overwrite-privilege-escalation-cve-2019-0841/https://threatpost.com/sandboxescaper-byebear-windows-bypass/145470/https://www.zdnet.com/article/windows-10-zero-day-details-published-on-github/ https://www.microsoft.com/en-us/msrc/bountyAmazon Ring Doorbell used by police for surveillance networkhttps://blog.ring.com/2019/02/14/how-rings-neighbors-creates-safer-more-connected-communities/https://www.theinformation.com/go/b7668a689ahttps://www.cnet.com/features/amazons-helping-police-build-a-surveillance-network-with-ring-doorbells/https://www.vice.com/en_us/article/evkgpw/smart-doorbell-company-ring-is-working-with-cops-to-report-suspicious-people-and-activitieshttps://www.businessinsider.com/amazon-ring-video-doorbell-footage-used-by-police-report-2019-6https://www.cnet.com/news/these-laws-make-police-get-public-buy-in-on-surveillance-tools/https://www.cnet.com/news/amazons-ring-takes-heat-for-considering-facial-recognition-for-its-video-doorbells/https://www.vice.com/en_us/article/pajm5z/amazon-home-surveillance-company-ring-law-enforcement-advertisements 238 Google Play apps found with malicious codehttps://arstechnica.com/information-technology/2019/06/238-google-play-apps-with-440-million-installs-made-phones-nearly-unusable/https://threatpost.com/android-completely-obnoxious-pop-ups/145390/https://blog.lookout.com/beitaplugin-adwarehttps://www.zdnet.com/article/440-million-android-users-installed-apps-with-an-aggressive-advertising-plugin/ Photo credit:https://cdn.pocket-lint.com/r/s/1200x/assets/images/142320-smart-home-review-ring-video-doorbell-2-image1-uar8mu7stn.jpg


Apple Adds Privacy Updates to iOS 13 at WWDC - ThreatWire
Jun 04 2019 8 mins  
Over 1 million PCs could be vulnerable to a windows worm, , 12 million patients were hit in the quest diagnostics data breach, and Apple is bringing Security at WWDC! All that coming up now on ThreatWire. #threatwire #hak5 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Links:Support me on alternative platforms! https://snubsie.com/support https://blogs.technet.microsoft.com/msrc/2019/05/14/prevent-a-worm-by-updating-remote-desktop-services-cve-2019-0708/https://arstechnica.com/information-technology/2019/05/microsoft-warns-wormable-windows-bug-could-lead-to-another-wannacry/https://thehackernews.com/2019/05/bluekeep-rdp-vulnerability.htmlhttps://blogs.technet.microsoft.com/msrc/2019/05/30/a-reminder-to-update-your-systems-to-prevent-a-worm/https://arstechnica.com/information-technology/2019/05/microsoft-says-its-confident-an-exploit-exists-for-wormable-bluekeep-flaw/https://blog.erratasec.com/2019/05/almost-one-million-vulnerable-to.htmlhttps://arstechnica.com/information-technology/2019/05/why-a-windows-flaw-patched-nine-days-ago-is-still-spooking-the-internet/https://securityledger.com/2019/05/microsoft-bluekeep-flaw-threatens-medical-devices-iot/ http://newsroom.questdiagnostics.com/AMCADataSecurityIncidenthttps://www.huffpost.com/entry/quest-diagnostics-data-breach_n_5cf54eaae4b0e346ce8267f7?ncid=tweetlnkushpmg00000067https://techcrunch.com/2019/06/03/quest-diagnostics-breach/https://www.chicagotribune.com/business/ct-quest-data-hack-1214-biz-20161213-story.htmlhttps://www.bloomberg.com/news/articles/2019-06-03/quest-says-millions-of-patient-records-exposed-in-billing-hack?utm_medium=social&cmpid=socialflow-twitter-business&utm_content=business&utm_source=twitter&utm_campaign=socialflow-organic https://www.zdnet.com/article/wwdc-2019-apple-debuts-new-privacy-features-in-ios-13/https://9to5mac.com/2019/06/03/apple-launches-sign-in-with-apple-button-for-apps-no-tracking-login/https://www.zdnet.com/article/wwdc-2019-apple-announces-sign-in-with-apple-feature/https://threatpost.com/wwdc-2019-apple-facebook-privacy/145290/ Photo credit:Apple


Google Bluetooth Security Key Flawed; Intel CPU Insecure! - ThreatWire
May 21 2019 10 mins  
Bluetooth Security Keys? Bad Idea. Planes could be crashed, Zombie’s are after your CPUs! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Titan Security Key Hacked:https://security.googleblog.com/2019/05/titan-keys-update.htmlhttps://arstechnica.com/information-technology/2019/05/google-warns-bluetooth-titan-security-keys-can-be-hijacked-by-nearby-hackers/https://www.cnet.com/news/google-warns-titan-security-key-has-bluetooth-bug-that-leaves-it-vulnerable/https://www.cyberscoop.com/google-replace-titan-keys-free-uncovering-bluetooth-flaw/https://www.zdnet.com/article/google-to-replace-faulty-titan-security-keys/https://www.wired.com/story/bluetooth-complex-security-risk/ Radio aircraft navigation landing system hacked:https://aanjhan.com/assets/ils_usenix2019.pdfhttps://arstechnica.com/information-technology/2019/05/the-radio-navigation-planes-use-to-land-safely-is-insecure-and-can-be-hacked/https://securityledger.com/2019/05/researchers-hack-aircraft-landing-system-with-600-radios/ RIDL In Intel (Zombieland):https://www.cyberscoop.com/intel-chip-flaws-zombieland-ridl-fallout/https://arstechnica.com/gadgets/2019/05/new-speculative-execution-bug-leaks-data-from-intel-chips-internal-buffers/https://thehackernews.com/2019/05/intel-processor-vulnerabilities.htmlhttps://www.zdnet.com/article/patch-status-for-the-new-mds-attacks-against-intel-cpus/https://zombieloadattack.com/zombieload.pdfhttps://zombieloadattack.com/https://www.zdnet.com/article/intel-cpus-impacted-by-new-zombieload-side-channel-attack/https://www.zdnet.com/article/how-to-test-mds-zombieload-patch-status-on-windows-systems/ Additional resources:https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00233.htmlhttps://www.intel.com/content/dam/www/public/us/en/documents/corporate-information/SA00233-microcode-update-guidance_05132019.pdf Photo credit:https://www.flickr.com/photos/grmisiti/8149613310


SIM Swapping Criminals Charged, ‘Unhackable’ USB Gets Hacked - ThreatWire
May 14 2019 8 mins  
SIM Swapping Criminals Charged, over a hundred sites were found running malicious code, and an unhackable usb drive gets hacked! All that coming up now on ThreatWire. #threatwire #hak5 Support me on alternative platforms! https://snubsie.com/support -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ SIM Swapping Hacks:https://krebsonsecurity.com/2019/05/nine-charged-in-alleged-sim-swapping-ring/https://thehackernews.com/2019/05/sim-swapping-hacking.htmlhttps://www.justice.gov/usao-edmi/pr/nine-individuals-connected-hacking-group-charged-online-identity-theft-and-otherhttps://krebsonsecurity.com/wp-content/uploads/2019/05/ninesimswap.pdfhttps://krebsonsecurity.com/wp-content/uploads/2019/05/josephwhitejack.pdf 100 Sites Hacked:https://blog.netlab.360.com/ongoing-credit-card-data-leak/https://urlscan.io/search/#domain%3Amagento-analytics.comhttps://thehackernews.com/2019/05/magento-credit-card-hacking.htmlhttps://arstechnica.com/information-technology/2019/05/more-than-100-commerce-sites-infected-with-code-that-steals-payment-card-data/https://arstechnica.com/information-technology/2019/03/a-new-rash-of-highly-covert-card-skimming-malware-infects-ecommerce-sites/ Unhackable USB Key Gets Hacked:https://www.kickstarter.com/projects/eyedisk/eyedisk-unhackable-usb-flash-drive/descriptionhttps://www.pentestpartners.com/security-blog/eyedisk-hacking-the-unhackable-again/https://threatpost.com/unhackable-biometric-usb-passwords/144576/https://www.zdnet.com/article/unhackable-biometric-drive-exposed-passwords-in-clear-text/ Photo credit:https://www.publicdomainpictures.net/pictures/30000/nahled/various-sim-cards.jpg


Right To Repair? Consumers Will Hurt Themselves! - ThreatWire
May 07 2019 8 mins  
Dell laptops can be hijacked, #RightToRepair dies due to lobbying, and Google turns on Auto-Delete! All that coming up now on ThreatWire. #threatwire #hak5 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Links:Support me on alternative platforms! https://snubsie.com/support Dell:https://thehackernews.com/2019/05/dell-computer-hacking.htmlhttps://threatpost.com/dell-flaws-security-support-tool/144295/ https://www.zdnet.com/article/dell-laptops-and-computers-vulnerable-to-remote-hijacks/ Right to repair killedhttps://www.vice.com/en_us/article/gyawqy/right-to-repair-legislation-is-officially-being-considered-in-ontario-canadahttps://motherboard.vice.com/en_us/article/9kxayy/right-to-repair-bill-killed-after-big-tech-lobbying-in-ontariohttps://motherboard.vice.com/en_us/article/wjvdb4/apple-is-telling-lawmakers-people-will-hurt-themselves-if-they-try-to-fix-iphones Googlehttps://www.blog.google/technology/safety-security/automatically-delete-data/https://thehackernews.com/2019/05/google-web-location-history.htmlhttps://www.apnews.com/828aefab64d4411bac257a07c1af0ecbhttps://www.nytimes.com/interactive/2019/04/13/us/google-location-tracking-police.htmlhttps://arstechnica.com/tech-policy/2019/05/google-unveils-auto-delete-for-location-web-activity-and-app-usage-data/ Photo credit:https://upload.wikimedia.org/wikipedia/commons/4/43/Cell_Phone_Repair.jpg



Baby Monitors and GPS Tracker Apps - Hacked! - ThreatWire
Apr 30 2019 9 mins  
GPS tracker apps get hacked, 2 million IoT devices are vulnerable to hacks, and we’ve got more Amazon Echo privacy concerns! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Millions of IoT Devices Exposed:https://krebsonsecurity.com/2019/04/p2p-weakness-exposes-millions-of-iot-devices/https://www.zdnet.com/article/over-two-million-iot-devices-vulnerable-because-of-p2p-component-flaws/https://hacked.camera/ Amazon:https://threatpost.com/amazon-employees-personal-alexa/144119/https://www.cnet.com/how-to/how-to-use-an-alexa-smart-speaker-and-keep-your-privacy/https://www.cnet.com/news/amazon-alexa-audio-reviewers-might-know-where-you-live/https://www.bloomberg.com/news/articles/2019-04-24/amazon-s-alexa-reviewers-can-access-customers-home-addresses Remotely killing cars with GPS apps:https://motherboard.vice.com/en_us/article/zmpx4x/hacker-monitor-cars-kill-engine-gps-tracking-appshttp://www.protrack365.com/http://www.itrack.top/ Photo credit:https://www.flickr.com/photos/yourbestdigs/42463389831


Security Flaws Found in WPA3! Julian Assange of Wikileaks Arrested - ThreatWire
Apr 16 2019 12 mins  
Julian Assange gets arrested, WPA3 has serious security holes, and amazon employees are listening to audio clips from echos! All that coming up now on ThreatWire. #threatwire #hak5 Links:Support me on alternative platforms! https://snubsie.com/support -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Julian Assange Arrestedhttps://thehackernews.com/2019/04/wikileaks-julian-assange-arrested.htmlhttps://www.zdnet.com/article/julian-assange-arrested-by-uk-police/https://twitter.com/wikileaks/status/1113919962995884033https://www.cnet.com/news/julian-assanges-defense-against-hacking-charges-and-where-it-falls-short/https://motherboard.vice.com/en_us/article/mb8qyn/julian-assange-charged-with-hacking-conspiracy-not-publishinghttps://www.cyberscoop.com/julian-assange-arrested-indictment/https://gizmodo.com/chelsea-mannings-fbi-files-are-central-to-ongoing-crimi-1833897041 WPA3 Flaw:https://papers.mathyvanhoef.com/dragonblood.pdfhttps://thehackernews.com/2019/04/wpa3-hack-wifi-password.htmlhttps://wpa3.mathyvanhoef.com/https://arstechnica.com/information-technology/2019/04/serious-flaws-leave-wpa3-vulnerable-to-hacks-that-steal-wi-fi-passwords/https://www.zdnet.com/article/dragonblood-vulnerabilities-disclosed-in-wifi-wpa3-standard/https://www.wi-fi.org/news-events/newsroom/wi-fi-alliance-security-update-april-2019https://www.wi-fi.org/security-update-april-2019 Amazon Echo:https://www.bloomberg.com/technologyhttps://www.zdnet.com/article/amazon-employees-are-listening-in-to-your-conversations-with-alexa/https://www.cnet.com/news/amazon-workers-eavesdrop-on-your-talks-with-alexa/https://threatpost.com/amazon-auditors-listen-to-echo-recordings-report-says/143696/https://motherboard.vice.com/en_us/article/ywyzm5/big-tech-lobbying-gutted-a-bill-that-would-ban-recording-you-without-consenthttp://www.ilga.gov/legislation/101/SB/PDF/10100SB1719lv.pdf Photo credit:https://upload.wikimedia.org/wikipedia/commons/6/68/Damselfly_October_2007_Osaka_Japan.jpg


AirBnB Hidden Cameras, Facebook Still Horrible For Privacy - ThreatWire
Apr 09 2019 8 mins  
Over half a Million Facebook user data Records were Exposed, how to scan wifi to find a hidden camera in an AirBnB, and facebook was asking for your email password! All that coming up now on ThreatWire. #threatwire #hak5 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Links:Support me on alternative platforms! https://snubsie.com/support Facebook data leak:https://www.upguard.com/breaches/facebook-user-data-leakhttps://www.cyberscoop.com/facebook-apps-3rd-party-data-exposures-upguard/https://thehackernews.com/2019/04/facebook-app-database.htmlhttps://threatpost.com/facebook-data-of-millions-exposed-in-leaky-datasets/143412/https://www.bloomberg.com/news/articles/2019-04-03/millions-of-facebook-records-found-on-amazon-cloud-servers Facebook Email Passwords:https://www.thedailybeast.com/beyond-sketchy-facebook-demanding-some-new-users-email-passwordshttps://twitter.com/originalesushi/status/1112496649891430401https://krebsonsecurity.com/2019/03/facebook-stored-hundreds-of-millions-of-user-passwords-in-plain-text-for-years/https://arstechnica.com/information-technology/2019/04/facebook-asked-some-users-for-their-email-passwords-because-why-not/ AirBnB Hidden Cameras:https://arstechnica.com/information-technology/2019/04/airbnb-guest-found-hidden-surveillance-camera-by-scanning-wi-fi-network/https://sixfortwelve.wordpress.com/2019/04/06/how-to-increase-your-chances-of-finding-a-hidden-camera/?fbclid=IwAR3dZpL-qQTcbA-VL9oTIiP3z4JGNWo04z9TXx89vOz3YIQD9i2bHUQ87swhttps://www.cnn.com/2019/04/05/europe/ireland-airbnb-hidden-camera-scli-intl/index.htmlhttps://www.facebook.com/photo.php?fbid=10156325018207239&set=a.440220892238&type=3&theaterhttps://www.airbnb.com/help/article/887/what-are-airbnb-s-rules-about-electronic-surveillance-devices-in-listings Photo credit:https://cdn.pixabay.com/photo/2018/05/14/12/18/airbnb-3399753_960_720.jpg


2 Million+ Credit Cards Stolen, Buca di Beppo Hacked - ThreatWire
Apr 02 2019 11 mins  
A new supply chain attack hits ASUS - here’s everything you need to know! Plus, Buca di Beppo was hacked, and we’ve got some new right to repair advocates! All that coming up now on ThreatWire. #threatwire #hak5 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Links:Support me on alternative platforms! https://snubsie.com/support ASUS, from David on Patreon:https://securelist.com/operation-shadowhammer/89992/https://motherboard.vice.com/en_us/article/pan9wn/hackers-hijacked-asus-software-updates-to-install-backdoors-on-thousands-of-computershttps://arstechnica.com/information-technology/2019/03/hijacked-asus-software-updates-installed-backdoor-on-at-least-0-5-million-pcs/https://www.zdnet.com/article/supply-chain-attack-installs-backdoors-through-hijacked-asus-live-update-software/https://thehackernews.com/2019/03/asus-hack-mac-addresses.htmlhttps://www.zdnet.com/article/researchers-publish-list-of-mac-addresses-targeted-in-asus-hack/https://shadowhammer.kaspersky.com/https://www.asus.com/News/hqfgVUyZ6uyAyJe1https://threatpost.com/asus-patches-live-update-bug-that-allowed-apt-to-infect-thousands-of-pcs/143169/https://www.cyberscoop.com/asus-patch-shadowhammer-kaspersky/ Right to repair:https://www.wired.com/story/right-to-repair-elizabeth-warren-farmers/https://motherboard.vice.com/en_us/article/d3mb5k/elizabeth-warren-calls-for-a-national-right-to-repair-lawhttps://medium.com/@teamwarren/leveling-the-playing-field-for-americas-family-farmers-823d1994f067https://motherboard.vice.com/en_us/article/d3mqna/internal-documents-show-apple-is-capable-of-implementing-right-to-repair-legislationhttps://motherboard.vice.com/en_us/article/eveezj/a-cell-phone-carrier-breaks-with-big-telecom-announces-support-for-right-to-repair-legislationhttps://ting.com/blog/epicphonefail/ Buca di Beppo:http://www.earlenterprise.com/incident/#potentially-affected-locationshttps://www.earlenterprise.com/https://www.zdnet.com/article/card-breach-reported-at-buca-di-beppo-planet-hollywood-and-other-restaurants/https://www.cnet.com/news/malware-may-have-stolen-2-million-us-restaurant-diners-credit-card-details/https://krebsonsecurity.com/2019/03/a-month-after-2-million-customer-cards-sold-online-buca-di-beppo-parent-admits-breach/ Photo credit:https://farm6.staticflickr.com/5158/5875367625_c68e8f2968_b.jpg


Beto O’Rourke Was a Hacker - ThreatWire
Mar 19 2019 12 mins  
Regulating facial recognition in businesses, ecommerce websites and point of sales are hit with malware campaigns, and Presidential candidate Beto O’Rourke was a hacker! All that coming up now on ThreatWire. #threatwire #hak5 Support me on alternative platforms! https://snubsie.com/support -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Facial recognition bill:https://www.cnet.com/news/senators-introduce-facial-recognition-bill-to-stop-businesses-from-tracking-you/ https://www.blunt.senate.gov/news/press-releases/blunt-schatz-introduce-bipartisan-commercial-facial-recognition-privacy-acthttps://www.scribd.com/document/401927683/Facial-Recognition-Act-Proposal Card skimming malware and POS hacks:https://www.cyberscoop.com/dmsniff-glitchpos-malware-cybercrime-flashpoint-talos/https://arstechnica.com/information-technology/2019/03/a-new-rash-of-highly-covert-card-skimming-malware-infects-ecommerce-sites/https://www.group-ib.com/media/js-sniffer/https://www.flashpoint-intel.com/blog/dmsniff-pos-malware-actively-leveraged-target-medium-sized-businesses/https://threatpost.com/glitchpos-malware-credit-card/142804/https://blog.talosintelligence.com/2019/03/glitchpos-new-pos-malware-for-sale.html Beto O’Rourke was a hacker:https://www.reuters.com/investigates/special-report/usa-politics-beto-orourke/https://www.cnet.com/news/beto-orourke-has-serious-hacker-credentials/http://textfiles.com/groups/CDC/visions.crusadehttps://arstechnica.com/information-technology/2019/03/it-turns-out-beto-orourke-stole-phone-service-pirated-software-as-a-kid/ Photo credit:https://farm7.staticflickr.com/6206/6130484874_fb768d828d_b.jpg


NSA’s Ghidra is Here! - ThreatWire
Mar 12 2019 8 mins  
Chrome and Windows 7 zero days are being actively exploited, The NSA releases Ghidra into the wild for free, and Democrats Want to Restore Net Neutrality! All that coming up now on ThreatWire. #threatwire #hak5 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Links:Chrome Zero Days:https://chromereleases.googleblog.com/2019/03/stable-channel-update-for-desktop.htmlhttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5786https://www.zdnet.com/article/google-chrome-zero-day-was-used-together-with-a-windows-7-zero-day/https://security.googleblog.com/2019/03/disclosing-vulnerabilities-to-protect.htmlhttps://www.wired.com/story/turn-on-auto-updates-everywhere/ Ghidra:https://motherboard.vice.com/en_us/article/panvm7/nsa-releases-ghidra-for-free-game-changerhttps://www.zdnet.com/article/nsa-release-ghidra-a-free-software-reverse-engineering-toolkit/https://ghidra-sre.org/https://github.com/nationalsecurityagencyhttps://www.cyberscoop.com/ghidra-nsa-tool-public/https://www.wired.com/story/nsa-ghidra-open-source-tool/ New Bill to restore net neutrality:https://motherboard.vice.com/en_us/article/d3mk5w/democrats-unveil-new-bill-to-fully-restore-net-neutralityhttps://energycommerce.house.gov/sites/democrats.energycommerce.house.gov/files/documents/Save%20the%20Internet%20Act%20Legislative%20Text.pdfhttps://arstechnica.com/tech-policy/2019/01/net-neutrality-advocates-confident-about-beating-fcc-as-case-heads-to-court/ Photo credit:The NSA, lol.


Sign-In Kiosks Vulnerable, Android is FIDO2 Certified! - ThreatWire
Mar 05 2019 7 mins  
Google adds more security to android devices with FIDO2 certification, sign in kiosks are vulnerable to all sorts of hacks, and Facebook Uses 2FA Numbers For Search! All that coming up now on ThreatWire. #threatwire #hak5 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Links:https://android-developers.googleblog.com/2019/02/android-security-improvement-update.htmlhttps://www.cnet.com/news/android-security-program-has-helped-fix-over-1m-apps-in-google-play/https://fidoalliance.org/android-now-fido2-certified-accelerating-global-migration-beyond-passwords/https://thehackernews.com/2019/02/android-fido2-password-security.htmlhttps://www.cnet.com/news/goodbye-passwords-webauthn-is-now-an-official-web-standard/https://www.cnet.com/news/google-looks-to-leave-passwords-behind-for-a-billion-android-devices/https://www.yubico.com/2018/08/10-things-youve-been-wondering-about-fido2-webauthn-and-a-passwordless-world/ https://securityintelligence.com/stranger-danger-x-force-red-finds-19-vulnerabilities-in-visitor-management-systems/https://www.zdnet.com/article/19-vulnerabilities-exposed-in-visitor-management-systems/https://www.cyberscoop.com/ibm-interns-find-19-vulnerabilities-corporate-check-systems/ https://www.techradar.com/news/facebook-no-longer-lets-you-search-for-friends-by-phone-numbershttps://techcrunch.com/2019/03/03/facebook-phone-number-look-up/https://www.cnet.com/news/facebooks-two-factor-authentication-with-phone-numbers-puts-security-and-privacy-at-odds/https://twitter.com/jeremyburge/status/1101402001907372032?ref_src=twsrc%5Egoogle%7Ctwcamp%5Enews%7Ctwgr%5Etweethttps://motherboard.vice.com/en_us/article/kzdxjx/facebook-phone-number-two-factor-authentication Photo credit:https://www.saimgs.com/imglib/other_pages/visitor-management/sine-vms-kiosk.png


Password Managers Flawed; WinRAR Vulnerable for 2 Decades! - ThreatWire
Feb 26 2019 12 mins  
Password Managers have vulnerabilities, companies want us to chill out over their embedded recording devices in hardware, and WinRAR had a 19 year old bug! All that coming up now on ThreatWire. #threatwire #hak5 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Links:Password Managers:https://www.securityevaluators.com/casestudies/password-manager-hacking/https://www.zdnet.com/article/critical-vulnerabilities-uncovered-in-popular-password-managers/https://keepass.info/help/base/security.html#secmemprothttps://lastpass.com/misc_download2.phphttps://threatpost.com/1password-dashlane-keepass-and-lastpass/142037/https://www.cyberscoop.com/bugcrowd-adrian-bednarek-lastpass/ Embedded Recording Devices:https://twitter.com/vkamluk/status/1097008518685573120https://www.cnet.com/news/airplane-seat-cameras-could-be-your-new-spy-in-the-sky/https://www.buzzfeednews.com/article/nicolenguyen/american-airlines-planes-entertainment-system-camerashttps://thehackernews.com/2016/12/hacking-in-flight-system.htmlhttps://www.cnet.com/news/google-calls-nests-hidden-microphone-an-error/https://www.zdnet.com/article/google-says-secret-microphones-in-nest-home-products-an-error/ WinRAR Vulnerability:https://research.checkpoint.com/extracting-code-execution-from-winrar/https://arstechnica.com/information-technology/2019/02/nasty-code-execution-bug-in-winrar-threatened-millions-of-users-for-14-years/https://threatpost.com/winrar-flaw-500-million-users/142080/https://www.zdnet.com/article/winrar-versions-released-in-the-last-19-years-impacted-by-severe-security-flaw/https://thehackernews.com/2019/02/winrar-malware-exploit.html Photo credit:https://www.flickr.com/photos/bitsfrombytes/29731017407



Scooter Hacks! Is Tor on Android Broken?! - ThreatWire
Feb 19 2019 10 mins  
Scooters are being hacked! Make sure you’re resetting your ad ID, but does it do anything? And Australia’s parliament has some hacks to deal with! All that coming up now on ThreatWire. #threatwire #hak5 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Links:Scooter:https://blog.zimperium.com/dont-give-me-a-brake-xiaomi-scooter-hack-enables-dangerous-accelerations-and-stops-for-unsuspecting-riders/https://www.cyberscoop.com/scooter-hack-zimperium-bluetooth-bird-spin/https://thehackernews.com/2019/02/xiaomi-electric-scooter-hack.html Android:https://arxiv.org/pdf/1901.04434.pdfhttps://www.zdnet.com/article/tor-traffic-from-individual-android-apps-detected-with-97-percent-accuracy/https://support.google.com/googleplay/android-developer/answer/6048248?hl=enhttps://blog.appcensus.mobi/2019/02/14/ad-ids-behaving-badly/https://www.cnet.com/news/these-android-apps-have-been-tracking-you-even-when-you-say-stop/https://www.zdnet.com/article/thousands-of-apps-bypass-android-privacy-protections-to-permanently-record-your-activities/ Australia:https://www.smh.com.au/politics/federal/australia-s-major-political-parties-hacked-in-sophisticated-attack-ahead-of-election-20190218-p50yi1.htmlhttps://www.zdnet.com/article/australian-political-parties-also-hit-by-state-actor-in-parliamentary-network-attack-pm/https://www.zdnet.com/article/australian-government-computing-network-reset-following-security-incident/https://www.cnet.com/news/australia-blames-sophisticated-state-actor-for-massive-government-hack/https://arstechnica.com/information-technology/2019/02/australian-political-parties-hacked-by-nation-state-attacker/https://www.abc.net.au/news/2019-02-18/someone-tried-to-hack-parliament-are-our-politicians-vulnerable/10822072 Photo credit:https://c1.staticflickr.com/7/6179/6180104944_56c7ce7e91_b.jpg


Airlines Don’t Encrypt Your Passenger Data for E-Tickets - ThreatWire
Feb 12 2019 9 mins  
Apple Fixes their FaceTime Bug, and Finds More Issues in the process, airlines are found not encrypting your passenger data, and detailed and accurate GPS data was being sold off! All that coming up now on ThreatWire. #threatwire #hak5 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Links:Apple Facetime Update:https://arstechnica.com/information-technology/2019/02/apple-pushes-fix-for-facepalm-possibly-its-creepiest-vulnerability-ever/https://support.apple.com/en-us/HT209520https://support.apple.com/en-us/HT209521https://www.zdnet.com/article/ios-12-1-4-fixes-iphone-facetime-spying-bug/https://www.businessinsider.com/apple-security-audit-on-group-facetime-bug-discovers-second-flaw-2019-2https://twitter.com/benhawkes/status/1093581737924259840https://techcrunch.com/2019/02/06/iphone-session-replay-screenshots/https://techcrunch.com/2019/02/07/apple-glassbox-apps/ Airline Systems:https://www.wandera.com/mobile-security/airline-check-in-risk/ https://threatpost.com/flaw-in-multiple-airline-systems-exposes-passenger-data/141596/https://www.cyberscoop.com/airlines-ticketing-email-hackers-wandera-southwest/ Cell Carriers:https://motherboard.vice.com/en_us/article/j575dg/what-a-gps-data-is-and-why-wireless-carriers-most-definitely-shouldnt-be-selling-ithttps://motherboard.vice.com/en_us/article/a3b3dg/big-telecom-sold-customer-gps-data-911-callshttps://motherboard.vice.com/en_us/article/43z3dn/hundreds-bounty-hunters-att-tmobile-sprint-customer-location-data-years Photo credit:https://upload.wikimedia.org/wikipedia/commons/d/d5/N731SW_Southwest.jpg


5G Network Security Flaw Discovered! FaceTime Disabled - ThreatWire
Feb 05 2019 8 mins  
A new 5G security flaw hits the news, surveillance through facetime, and facebook stops at nothing to get at your data! All that coming up now on ThreatWire. #threatwire #hak5 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.org Shop → https://www.hakshop.com Subscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1 Support → https://www.patreon.com/threatwire Contact Us → http://www.twitter.com/hak5 Threat Wire RSS → https://shannonmorse.podbean.com/feed/ Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubs Host: Darren Kitchen → https://www.twitter.com/hak5darren Host: Mubix → http://www.twitter.com/mubix -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Links:https://www.zdnet.com/article/new-security-flaw-impacts-5g-4g-and-3g-telephony-protocols/https://eprint.iacr.org/2018/1175.pdfhttps://www.cnet.com/news/security-flaw-allows-for-spying-over-5g-researchers-find/ https://9to5mac.com/2019/01/28/facetime-bug-hear-audio/https://www.buzzfeednews.com/article/nicolenguyen/facetime-bug-iphonehttps://www.cnet.com/news/apples-facetime-bug-was-discovered-by-a-teen-playing-fortnite/https://twitter.com/MGT7500/status/1087171594756083713https://twitter.com/MGT7500/status/1090079031666438144https://twitter.com/BEASTMODE/status/1090298850764644352https://www.cyberscoop.com/facetime-bug-group-chat-disabled-apple-ios-macos/https://www.apple.com/support/systemstatus/https://www.zdnet.com/article/iphone-facetime-bug-now-apple-sued-over-eavesdrop-on-lawyers-client-phone-call/https://www.cnet.com/news/apple-facetime-bug-prompts-investigation-from-ny-attorney-general/https://www.zdnet.com/article/ios-12-1-4-is-coming-to-fix-the-worst-iphone-and-ipad-bug-to-date/ https://www.cnet.com/news/facebook-shuts-down-ios-research-app-it-used-to-access-user-data/https://www.cnet.com/news/apple-restores-facebooks-ability-to-run-internal-apps/https://www.cnet.com/news/googles-data-gathering-app-may-have-also-violated-apples-policies/https://threatpost.com/google-pulls-data-chugging-app-from-ios-devices/141358/ Photo credit:https://pixabay.com/p-387026/?no_redirect


DNS Hijacking Worldwide; Cell Carriers Stop Selling Data - ThreatWire
Jan 15 2019 8 mins  
A systemd vulnerability creates concern, DNS Hijacking goes worldwide, and major telcos are still selling location data for their users! All that coming up now on ThreatWire. #threatwire #hak5 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.org Shop → https://www.hakshop.com Subscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1 Support → https://www.patreon.com/threatwire Contact Us → http://www.twitter.com/hak5 Threat Wire RSS → https://shannonmorse.podbean.com/feed/ Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubs Host: Darren Kitchen → https://www.twitter.com/hak5darren Host: Mubix → http://www.twitter.com/mubix -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Links:https://www.qualys.com/2019/01/09/system-down/system-down.txthttps://www.zdnet.com/article/new-linux-systemd-security-holes-uncovered/https://thehackernews.com/2019/01/linux-systemd-exploit.html https://www.fireeye.com/blog/threat-research/2019/01/global-dns-hijacking-campaign-dns-record-manipulation-at-scale.htmlhttps://www.us-cert.gov/ncas/current-activity/2019/01/10/DNS-Infrastructure-Hijacking-Campaignhttps://www.wired.com/story/iran-dns-hijacking/https://arstechnica.com/information-technology/2019/01/a-dns-hijacking-wave-is-targeting-companies-at-an-almost-unprecedented-scale/https://www.cyberscoop.com/fireeye-dns-hijacking-record-manipulation-iran/ https://motherboard.vice.com/en_us/article/nepxbz/i-gave-a-bounty-hunter-300-dollars-located-phone-microbilt-zumigo-tmobilehttps://www.wired.com/story/carriers-sell-location-data-third-parties-privacy/https://arstechnica.com/tech-policy/2019/01/after-broken-promise-att-says-itll-stop-selling-phone-location-data/https://motherboard.vice.com/en_us/article/d3bnyv/google-demanded-tmobile-sprint-to-not-sell-google-fi-customers-location-datahttps://motherboard.vice.com/en_us/article/j5z74d/senators-harris-warner-wyden-fcc-investigate-att-sprint-tmobile-bounty-huntershttps://www.cnet.com/news/congress-asks-fcc-for-emergency-briefing-on-ending-location-data-sales/https://energycommerce.house.gov/sites/democrats.energycommerce.house.gov/files/documents/FCC.2019.1.11.%20Letter%20to%20the%20FCC%20re%20unauthorized%20disclosures%20of%20consumer%20data.CAT_.pdf Photo credit:https://cdn.pixabay.com/photo/2017/04/03/14/42/smartphone-2198559_960_720.jpg


The 5 Biggest & Worst Hacks of 2018 - ThreatWire
Jan 02 2019 7 mins  
It’s the 5 biggest and worst hacks of 2018! All that coming up now on ThreatWire. #threatwire #hak5 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.org Shop → https://www.hakshop.com Subscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1 Support → https://www.patreon.com/threatwire Contact Us → http://www.twitter.com/hak5 Threat Wire RSS → https://shannonmorse.podbean.com/feed/ Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubs Host: Darren Kitchen → https://www.twitter.com/hak5darren Host: Mubix → http://www.twitter.com/mubix -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ MyHeritage and 23andMe:https://blog.myheritage.com/2018/06/myheritage-statement-about-a-cybersecurity-incident/#https://blog.23andme.com/news/a-note-on-23andmes-new-collaboration-with-gsk/ Exactis:https://www.wired.com/story/exactis-database-leak-340-million-records/ Facebook: https://www.recode.net/2018/3/17/17134072/facebook-cambridge-analytica-trump-explained-user-datahttps://www.nytimes.com/interactive/2018/06/03/technology/facebook-device-partners-users-friends-data.htmlhttps://newsroom.fb.com/news/2018/09/security-update/https://developers.facebook.com/blog/post/2018/12/14/notifying-our-developer-ecosystem-about-a-photo-api-bug/ Marriott:http://news.marriott.com/2018/11/marriott-announces-starwood-guest-reservation-database-security-incident/ Aadharhttps://www.zdnet.com/article/another-data-leak-hits-india-aadhaar-biometric-database/ Photo credit:https://pixabay.com/p-3010443/?no_redirect


Facebook Exposes Private Photos For Millions of Users - ThreatWire
Dec 18 2018 9 mins  
Shamoon malware is back, Facebook exposes private photos for millions of users, and SuperMicro did an audit to prove their innocence! All that coming up now on ThreatWire. #threatwire #hak5 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.org Shop → https://www.hakshop.com Subscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1 Support → https://www.patreon.com/threatwire Contact Us → http://www.twitter.com/hak5 Threat Wire RSS → https://shannonmorse.podbean.com/feed/ Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubs Host: Darren Kitchen → https://www.twitter.com/hak5darren Host: Mubix → http://www.twitter.com/mubix -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Links: Shamoon: https://www.cyberscoop.com/shamoon-saipem-palo-alto-networks/ https://thehackernews.com/2018/12/shamoon-malware-attack.html http://www.saipem.com/en_IT/static/documents/PR%20Saipem%2010_1_2018.pdf http://www.saipem.com/sites/SAIPEM_en_IT/con-side-dx/Press%20releases/2018/Cyber%20attack%20update.page https://threatpost.com/shamoon-new-wiper-attack/139881/ https://www.zdnet.com/article/shamoon-malware-destroys-data-at-italian-oil-and-gas-company/ Facebook: https://developers.facebook.com/blog/post/2018/12/14/notifying-our-developer-ecosystem-about-a-photo-api-bug/ https://techcrunch.com/2018/12/14/facebook-photo-bug/ https://threatpost.com/facebook-photos-exposed/139940/ https://www.zdnet.com/article/facebook-bug-exposed-private-photos-of-6-8-million-users/ https://www.facebook.com/help/200632800873098?ref=photonotice SuperMicro update: https://www.bloomberg.com/news/features/2018-10-04/the-big-hack-how-china-used-a-tiny-chip-to-infiltrate-america-s-top-companies https://www.supermicro.com/en/news/CEO-3rdPartySecurity-Update https://arstechnica.com/information-technology/2018/12/supermicro-refutes-report-of-malicious-implants-with-audit/ https://www.supermicro.com/en/news/CEO-3rdPartySecurity-Update Photo credit: https://imagesvc.timeincapp.com/v3/mm/image?url=https%3A%2F%2Ffortunedotcom.files.wordpress.com%2F2018%2F04%2Ffacebook-screen.jpg&w=1000&q=85


Australia’s Anti-Encryption Bill Passes - ThreatWire
Dec 11 2018 11 mins  
Australia’s Anti-Encryption Bill Passes, Banks Get Hit With Old School Social Engineering and new school tech, and Huawei gets banned in multiple countries! All that coming up now on ThreatWire. #threatwire #hak5 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Links:Australia’s new Anti-encryption bill:https://www.aph.gov.au/Parliamentary_Business/Bills_Legislation/Bills_Search_Results/Result?bId=r6195https://thehackernews.com/2018/12/australia-anti-encryption-bill.htmlhttps://www.zdnet.com/article/australia-now-has-encryption-busting-laws-as-labor-capitulates/https://www.zdnet.com/article/shorten-defends-process-of-passing-encryption-laws-and-reviewing-later/https://www.cnet.com/news/australia-passes-encryption-assistance-access-laws-facebook-google-twitter-apple-amazon/https://www.cyberscoop.com/australia-encryption-backdoors-law-passes/https://threatpost.com/australia-anti-encryption-law-triggers-sweeping-backlash/139697/ Banks hacked:https://www.kaspersky.com/blog/dark-vishnya-attack/24867/https://securelist.com/darkvishnya/89169/https://www.hak5.org/gear/bash-bunnyhttps://www.zdnet.com/article/eastern-european-banks-lose-tens-of-millions-of-dollars-in-hollywood-style-hacks/https://www.cyberscoop.com/darkvishnya-kaspersky-physical-devices-banks/ Huawei:https://www.businessinsider.com/huawei-meng-wanzhou-trump-china-trade-war-2018-12https://www.nytimes.com/2018/12/07/technology/huawei-meng-wanzhou-fraud.htmlhttps://www.zdnet.com/article/trudeau-denies-involvement-in-huawei-arrest/https://www.zdnet.com/article/japan-looking-at-banning-huawei-and-zte-from-government-deals/https://www.zdnet.com/article/bt-avoids-huawei-for-5g-after-stripping-tech-from-ee-mobile-network/ Photo credit:https://upload.wikimedia.org/wikipedia/commons/7/7a/Aus_Flag.jpg


Marriott’s Starwood Database Stolen - 500 Million Guests Exposed - ThreatWire
Dec 04 2018 10 mins  
Dunkin Donuts Got Hacked?! Not Necessarily, 500M Customers are Affected in a Huge Breach, and Thousands of Routers are infected with an NSA exploit! All that coming up now on ThreatWire. #threatwire #hak5 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Links:Marriott Breach: via Joelhttp://news.marriott.com/2018/11/marriott-announces-starwood-guest-reservation-database-security-incident/https://answers.kroll.com/https://www.cyberscoop.com/marriott-data-breach-starwood-hotels-gdpr/https://www.zdnet.com/article/starwood-hotels-fall-prey-to-point-of-sale-malware/https://www.zdnet.com/article/20-top-us-hotels-hit-by-fresh-malware-attacks/https://arstechnica.com/information-technology/2018/11/marriott-breach-leaves-500-million-exposed-with-passport-card-numbers-stolen/https://threatpost.com/2014-marriott-data-breach-exposed-500m-guests-impacted/139507/https://twitter.com/NewYorkStateAG/status/1068510072396029952https://www.zdnet.com/article/marriott-faces-massive-data-breach-expenses-even-with-cybersecurity-insurance/https://www.wired.com/story/marriott-hack-protect-yourself/ Dunkin Donuts Breached:https://www.dunkindonuts.com/content/dam/dd/pdf/Security_Update.pdfhttps://www.cyberscoop.com/dunkin-donuts-struck-in-latest-credential-stuffing-attack/https://www.bostonglobe.com/business/2018/11/29/your-dunkin-donuts-account-may-have-been-hacked/8WWXZJzX3ZwAhKit2xavwL/story.htmlhttps://motherboard.vice.com/en_us/article/59v5d8/dunkin-donuts-loyalty-points-accounts-dark-web-buy-sell-cheap NSA Malware Makes Its Way Onto Consumer Routers:https://blogs.akamai.com/sitr/2018/11/upnproxy-eternalsilence.htmlhttps://www.akamai.com/cn/zh/multimedia/documents/white-paper/upnproxy-blackhat-proxies-via-nat-injections-white-paper.pdfhttps://arstechnica.com/information-technology/2018/11/mass-router-hack-exposes-millions-of-devices-to-potent-nsa-exploit/ Photo credit:https://upload.wikimedia.org/wikipedia/commons/7/7e/Hotel_Marriott_Vienna.jpg



USPS Exposes 60 Million; Amazon Ignores Infosec Incident Questions - ThreatWire
Nov 27 2018 8 mins  
Amazon quietly discloses a security incident, USPS finally fixes a vulnerability they knew about a year ago, and rowhammer is back with a vengeance ! All that coming up now on ThreatWire. #threatwire #hak5 -----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆Our Site → https://www.hak5.orgShop → https://www.hakshop.comSubscribe → https://www.youtube.com/user/Hak5Darren?sub_confirmation=1Support → https://www.patreon.com/threatwireContact Us → http://www.twitter.com/hak5Threat Wire RSS → https://shannonmorse.podbean.com/feed/Threat Wire iTunes → https://itunes.apple.com/us/podcast/threat-wire/id1197048999 Host: Shannon Morse → https://www.twitter.com/snubsHost: Darren Kitchen → https://www.twitter.com/hak5darrenHost: Mubix → http://www.twitter.com/mubix-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆ Links:Amazonhttps://www.cyberscoop.com/amazon-keeps-tight-lipped-pre-black-friday-security-incident/https://www.zdnet.com/article/amazon-leaks-users-email-addresses-due-to-technical-error/https://arstechnica.com/information-technology/2018/11/amazon-customers-names-and-email-addresses-disclosed-by-website-error/https://betanews.com/2018/11/21/amazon-discloses-names-and-addreses/ USPShttps://www.zdnet.com/article/usps-finally-fixes-website-flaw-that-exposed-60-million-users-data/https://krebsonsecurity.com/2018/11/usps-site-exposed-data-on-60-million-users/https://www.cnet.com/news/usps-reportedly-fixes-website-bug-that-exposed-data-of-60m-users/https://thehackernews.com/2018/11/usps-data-breach.htmlhttps://www.uspsoig.gov/sites/default/files/document-library-files/2018/IT-AR-19-001.pdf Rowhammerhttps://www.zdnet.com/article/rowhammer-attacks-can-now-bypass-ecc-memory-protections/https://arstechnica.com/information-technology/2018/11/potentially-disastrous-rowhammer-bitflips-can-bypass-ecc-protections/https://www.wired.com/story/rowhammer-ecc-memory-data-hack/ https://www.vusec.net/projects/eccploit/ Photo credit:https://upload.wikimedia.org/wikipedia/commons/0/02/USPS-Mail-Truck.jpg


No review available yet...