Liquidmatrix Security Digest Podcast

Episode 0x79

We have no idea what's going on either...

But we're going to keep doing this as long as we can manage to schedule the appointment in our calendars and also show up...

Upcoming this week...

1. Lots of News
2. Breaches
3. SCADA / Cyber, cyber... etc.
4. finishing it off with DERPs/Mailbag (or Deep Dive)
5. And there are weekly Briefs - no arguing or discussion allowed

And if you've got commentary, please sent it to [email protected] for us to check out.

DISCLAIMER: It's not that explicit, but you may want to use headphones if you're at work.

ADDITIONAL DISCLAIMER: In case it is unclear, this is the story of 5 opinionated infosec pros who have sufficient opinions of their own they don't need to speak for anyone except themselves. Ok? Good.

In this episode:

• News and Commentary

1. Apple's AI Announcements - Private Cloud Compute
2. But is it ok that there's no money going back and forth... so we are the product?
3. Snowflake to Close Hacking Probe Into Attack Targeting Clients

1. Chinese hackers breached 20,000 FortiGate systems worldwide

1. Major Data Breach

1. PLG motion with Enterprise Customers and pushing your AI Feature Set - I'm tired of getting the requests to turn it on and it comes with vague pricing issues. Seriously... so tired. If you want to sell to your Enterprise Customers, how about you have a conversation with the person who signs the OF instead of the people who can't. ARGH.

1. Bambu Lab Second Anniversary Sale - join us in the melty plastic revolution!
2. Medical-Targeted Ransomware Is Breaking Records After Change Healthcare’s $22M Payout
3. China state hackers infected 20,000 Fortinet VPNs, Dutch spy service says

1. Dave: - In will be speaking at the CIO Summit in Toronto
2. James: - Still the forest. I need a break so bad, July can't get here soon enough.
3. Matt: - Europe - I'M ON A BREAK -- then Vegas...

1. Seacrest Says: Have you made your plans for the Solstice? Go long or go short - depends on your latitude.

Creative Commons license: BY-NC-SA

Episode 0x76

Ready for a surprise thing? Yup. We found spare time and did a thing. Here's the thing. You get to spend a whole lot of time listen to security old farts.

Upcoming this week...

1. Lots of News
2. Breaches
3. SCADA / Cyber, cyber... etc.
4. finishing it off with DERPs/Mailbag (or Deep Dive)
5. And there are weekly Briefs - no arguing or discussion allowed

And if you've got commentary, please sent it to [email protected] for us to check out.

DISCLAIMER: It's not that explicit, but you may want to use headphones if you're at work.

ADDITIONAL DISCLAIMER: In case it is unclear, this is the story of 5 opinionated infosec pros who have sufficient opinions of their own they don't need to speak for anyone except themselves. Ok? Good.

In this episode:

• News and Commentary
• 1. Rogers Outage - the CRTC letter and An analysis on the BGP route withdrawal
  2. Why Bug Bounty Programs are Failing
  3. CISA Warns of Atlassian Confluence Hard-Coded Credential Bug Exploited in Attacks
• Breaches
• 1. Yeah. You've been Shanghai'd - maybe?
• SCADA / Cyber, cyber... etc
• 1. SCADA market to reach 13+ Billion in 4 years - will any of it be secure?
  2. Uber won't get prosecuted for their 2016 breach, but...
• DERP
• 1. Oldie but goodie - Elon's plane being tracked is a security issue... and Drake tries to make it better and fails so miserably... derp.
• Mailbag
• 1. You guys are not good at segways... or segues https://www.merriam-webster.com/dictionary/segue
• Briefly -- NO ARGUING OR DISCUSSION ALLOWED
• 1. Awesome Security (tools and stuff)
  2. Samsung has a thing that sounds like a backdoor but actually isn't
  3. As Microsoft blocks Office macros, hackers find new attack vectors
• Closing Thoughts
• 1. Seacrest Says: Seacrest says see you at band camp

Creative Commons license: BY-NC-SA

Episode 0x77

I'm not cool and neither are you.

Ok, so it's been a long time - but we're good :) August 1st 2022 was our last show. The next one is scheduled now for sometime in 2026.

Upcoming this week...

1. Lots of News
2. Breaches
3. finishing it off with DERPs/Mailbag (or Deep Dive)
4. And there are weekly Briefs - no arguing or discussion allowed

And if you've got commentary, please sent it to [email protected] for us to check out.

DISCLAIMER: It's not that explicit, but you may want to use headphones if you're at work.

ADDITIONAL DISCLAIMER: In case it is unclear, this is the story of 5 opinionated infosec pros who have sufficient opinions of their own they don't need to speak for anyone except themselves. Ok? Good.

In this episode:

• News and Commentary

1. ICQ will Shut Down SOOOOON
2. Hackers are using AI to find software bugs - but there is a downside

1. Your Mom.

1. Salesforce / Slack AI situation and how it's been handled

1. So... Y'all going to actually keep this up? For real this time? ~a concerned patron

1. Dave: I haz a new job! (a word about hiring market)
2. Jamie: Hey, me too but at the same company. Working my way through the collision of responsibilities.

1. Dave: - Gartner DC
2. James: - You just missed me at Open Source Data Infrastructure Toronto Meetup. I'm trying to avoid doing anything like actual work for the next little while.

1. Seacrest Says: Be Vulnerable - it's good for U

Creative Commons license: BY-NC-SA

Episode 0x7C

Yup, this is a habit now.

It's all fun and games until somehow you find yourself actually planning and not doing that whole "maybe we will, maybe we won't" thing. It's happening. We're back and making a habit of this!

Upcoming this week...

1. Lots of News
2. Breaches
3. SCADA / Cyber, cyber... etc.
4. finishing it off with DERPs/Mailbag (or Deep Dive)
5. And there are weekly Briefs - no arguing or discussion allowed

And if you've got commentary, please sent it to [email protected] for us to check out.

DISCLAIMER: It's not that explicit, but you may want to use headphones if you're at work.

ADDITIONAL DISCLAIMER: In case it is unclear, this is the story of (approximately) 5 opinionated infosec pros who have sufficient opinions of their own they don't need to speak for anyone except themselves. Ok? Good.

In this episode:

• News and Commentary

1. Russia forces Apple to remove dozens of VPN apps from App Store Dark Money tied to war on Apple's encryption
2. OpenAI had an oopsie and forgot to mention it... But they're also just plain making mistakes at the basics too
3. Hackers reverse-engineer Ticketmaster’s barcode system to unlock resales on other platforms

1. The human cost of breaches at Hospitals - this one is awful
2. Sightline Security for non-profits

1. A really good assessment of the great Rogers outage of 2022

1. DON'T LIE ABOUT YOUR BREACHES DAMMIT

1. Dear Liquidmatrixes, What's the deal with The Cloud? I really like hugging my servers and I give them special names, how do you hug a cloud? Even better, how do I secure it? Thanks all y'all. Legacy Folk. Just sign up for CloudSLAW

1. Ollama - run some great LLMs on your laptop
2. Microsoft Midnight Blizzard Saga Continues
3. Eight Nations Issue Warning About Speed Of Chinese Hackers’ Operations

1. Dave: - Global News talking about Ticketmaster yesterday
2. Matt: - SnooSec NYC
3. Jamie: - Starlink terminal connection end point... SOMEWHERE.

1. Vulnerable U - Mattjay's other news. Sign up or else.

• Seacrest Says: I'm Europe now, very fine. Not worry about my doing well.

Creative Commons license: BY-NC-SA

Episode 0x73

Surprise! Happy Holidays

Are you having a happy holiday? Listen to us and you'll have a happy holiday.

Upcoming this week...

1. Lots of News
2. Breaches
3. SCADA / Cyber, cyber... etc.
4. finishing it off with DERPs/Mailbag (or Deep Dive)
5. And there are weekly Briefs - no arguing or discussion allowed

And if you've got commentary, please sent it to [email protected] for us to check out.

DISCLAIMER: It's not that explicit, but you may want to use headphones if you're at work.

ADDITIONAL DISCLAIMER: In case it is unclear, this is the story of 5 opinionated infosec pros who have sufficient opinions of their own they don't need to speak for anyone except themselves. Ok? Good.

In this episode:

• News and Commentary
• 1. Comparison of DNS resolvers Stylish Norton Core Router
  2. Russian wessels messing with underwater internets Submarine Cable Map
  3. Keeper Security learns about The Striesand Effect
  4. Russian hackers targeted more than 200 journalists globally
• Breaches
• 1. Internet Hijacking
  2. Free Credit Monitoring from Nissan Finance Canada!
• SCADA / Cyber, cyber... etc
• 1. VMWare has bugs. Who knew?
• DERP
• 1. The person that thought we our recent fail panel was unprofessional
  2. Screenshot kernel patch
• Mailbag
• 1. So... what about actually doing this podcast a little more often? Signed: The Internet
• Briefly -- NO ARGUING OR DISCUSSION ALLOWED
• 1. Enpass
  2. Pineapple Fund
  3. Die Hard at the Theatre
  4. Magic Leap is real... ish
  5. Has no link.
• Closing Thoughts
• 1. Seacrest Says: Where the fuck is Matt? Has anyone seen Matt?

Creative Commons license: BY-NC-SA