• 3SB-2: BlockChain Tuna

  • 2021/05/11
  • 再生時間: 1 時間 6 分
  • ポッドキャスト

  • サマリー

  • Episode 1 follow up:

    • Signal continues to make the news. This time hacking Privacy 


    Topics:

    • CocoaPods Trunk: Remote Code Execution found 
    • Cosign - container image signing. 
    • TBONE hacking Tesla from a drone with zero clicks. 
    • SAML XML Injections 
    • Tinker Twitter threat on: real & physical occupational hazard for infosec.
    • 1Password Secrets Automation 
    • Google mandatory MFA


    Paul’s rant:

    • -blockchain tuna tracking 


    Links:

    • https://signal.org/blog/the-instagram-ads-you-will-never-see/
    • https://blog.cocoapods.org/CocoaPods-Trunk-RCE/ 
    • https://justi.cz/security/2021/04/20/cocoapods-rce.html
    • https://blog.1password.com/introducing-secrets-automation/
    • https://kunnamon.io/tbone/
    • https://research.nccgroup.com/2021/03/29/saml-xml-injection/
    • https://security.googleblog.com/2021/05/making-internet-more-secure-one-signed.html 
    • https://twitter.com/TinkerSec/status/1388107620574171140
    • https://blog.google/technology/safety-security/a-simpler-and-safer-future-without-passwords/


    Hosts:

    Paul Kehrer @reaperhulk

    Robert Clark @hyakuhei

    Matías Brutti @MrBrutti


    Post-Production:

    Matias Brutti @MrBrutti


    Disclaimer:  The opinions and security statements on this podcast are our own and do not represent that of our respective past, current or future employers. 

    続きを読む 一部表示
activate_samplebutton_t1

あらすじ・解説

Episode 1 follow up:

  • Signal continues to make the news. This time hacking Privacy 


Topics:

  • CocoaPods Trunk: Remote Code Execution found 
  • Cosign - container image signing. 
  • TBONE hacking Tesla from a drone with zero clicks. 
  • SAML XML Injections 
  • Tinker Twitter threat on: real & physical occupational hazard for infosec.
  • 1Password Secrets Automation 
  • Google mandatory MFA


Paul’s rant:

  • -blockchain tuna tracking 


Links:

  • https://signal.org/blog/the-instagram-ads-you-will-never-see/
  • https://blog.cocoapods.org/CocoaPods-Trunk-RCE/ 
  • https://justi.cz/security/2021/04/20/cocoapods-rce.html
  • https://blog.1password.com/introducing-secrets-automation/
  • https://kunnamon.io/tbone/
  • https://research.nccgroup.com/2021/03/29/saml-xml-injection/
  • https://security.googleblog.com/2021/05/making-internet-more-secure-one-signed.html 
  • https://twitter.com/TinkerSec/status/1388107620574171140
  • https://blog.google/technology/safety-security/a-simpler-and-safer-future-without-passwords/


Hosts:

Paul Kehrer @reaperhulk

Robert Clark @hyakuhei

Matías Brutti @MrBrutti


Post-Production:

Matias Brutti @MrBrutti


Disclaimer:  The opinions and security statements on this podcast are our own and do not represent that of our respective past, current or future employers. 

3SB-2: BlockChain Tunaに寄せられたリスナーの声

カスタマーレビュー:以下のタブを選択することで、他のサイトのレビューをご覧になれます。