Transatlantic Cable Podcast

The 78th edition of the Kaspersky Lab Transatlantic Cable podcast comes from you live from Dubai. I am over here for a meeting with some of my team based in this corner of the world. Wait, the earth is round, let’s call it this spot on the globe (not sorry flat-earthers).

With time zones not being our friend, David has the week off and I sit down with Ahmed (Dubai), Mucahit (Istanbul) and Kseniya (Moscow) to take a look at a handful of stories and to also get a younger generation’s view on some of the technologies that Dave and I will often riff on.

We start the podcast discussing the recent news about compromised accounts at OK Cupid. There wasn’t a data breach, but this brings us to a conversation on data and concerns for our younger colleagues on data security. From there, we jump to Amazon’s recent acquisition of Eero and what this means for Smart Home devices. To wrap things up, we keep our focus on the IoT and look at industrial refrigerators and what their default passwords mean for users.

Direct download: tcp-78-final.mp3
Category:general -- posted at: 8:17am EDT

On this special episode of the Kaspersky Lab Transatlantic Cable podcast, we will continue to preview the upcoming Security Analyst Summit (#TheSAS2019). The conference will take place in Singapore on April 8-11.

Today, my guest on the show is Sergey Lozhkin. Sergey is a senior security researcher on the company’s Global Research and Analysis Team (GReAT). During the course of our chat, we discuss a wide range of topics from what he is currently working on to what he expects heading to Singapore for the first time, insecurity of hospitals and his talk at the conference. 

We also dive into his upcoming training at #TheSAS2019, entitled The God-Mode Practical Training in Static Analysis of APT Malware. This training session will cover most of the steps required to analyze a modern APT toolkit, from receiving the initial sample, all the way to producing a deep technical description with IOCs. The course material is based on many years of experience analyzing the most complex threats ever discovered in-the-wild, including: Equation, Red October, Sofacy, Turla, Duqu, Carbanak, ShadowPad, and many more. It’s time to set your static analysis game to God-Mode.

Direct download: tcp_Lozhkin_final.mp3
Category:technology -- posted at: 8:25am EDT

In the 77th edition of the Kaspersky Lab Transatlantic Cable podcast, Dave and I look at stories that impact consumers from their wrists to their pockets and inboxes. For the first story, we hit home for parents looking at a story on the insecurity and subsequent recall in the European Union of ENOX Safe-KID-One smartwatches. Then we stay on the insecurity bandwagon and discuss the lack of security in some webcam covers handed out at a conference from the NSA.

 

Afterwards, we look at an upcoming access change to the gyroscope in an upcoming iOS release. We keep on the big company bandwagon looking at a potential security issue with Gmail that can be exploited by scammers. To wrap up, we close with a post that looks at a recent takedown of DDoS for hire service in the UK as part of a global initiative by the good guys.

Direct download: tcp_77_final.mp3
Category:technology -- posted at: 10:03am EDT

The 2019 edition of the Kaspersky Lab Security Analyst Summit (#TheSAS2019), will take place in Singapore on April 8-11. As always, the conference will bring some of the brightest minds in infosec together to share knowledge at a high level.

This year marks the first year that the conference will come to Asia. To talk more about what Singapore and what people can expect while attending, we sat down with Vitaly Kamluk who leads the APAC arm of our Global Research and Analysis Team (GReAT) and resides in Singapore.

During our talk, Vitaly offers his insight into the sights that first-time visitors to Singapore should see as well as what the security scene looks like. Given his area of expertise, we couldn’t just talk travel tips. We also discuss his upcoming training at the conference, entitled Remote Forensics for the Modern Malware Hunter as well as the forensic tool that he created, Bitscout.

Direct download: kam-sas-final.mp3
Category:technology -- posted at: 9:12am EDT

The 76th edition of the Kaspersky Lab Transatlantic Cable Podcast, David and I cover a number of stories pertaining to privacy and, surprisingly browsers. To start things off, we look at the issue that Apple faced earlier in the week where a bug in FaceTime that was reported by a kid wound up in the public eye.

Following that tale, we jump into a stranger-than-fiction story about Facebook and their controversial tactic to have users install a VPN to share their data with Facebook – the kicker- is that the target audience included kids. Following Facebook, we stay on the privacy bandwagon and look at the work that Mozilla did to improve the latest version of Firefox.  We close out the podcast bidding happy trails to Internet Explorer 10.

Direct download: tcp_76_final.mp3
Category:technology -- posted at: 9:51am EDT

We kick off the podcast looking at how the Girl Scouts are rolling out a badge for Cyber Security and using eggs, not computers for their members. From there, we cover a report from California on how a family’s Nest camera sent out a warning that had North Korea firing intercontinental ballistic missiles at the USA – but was a hoax from a hacker and reused passwords.

We keep in the Google family by looking at a recent GDPR related fine levied on the search giant. The next story looks at the recently unsealed documents that were previously sealed in a Facebook lawsuit. Unfortunately, it looks like the social behemoth was profiting off of children.

Afterwards, we further discuss the fact that scams on Facebook and WhatsApp promising free airline tickets are just a scam – please do not fall for them. The podcast closes out with a new piece of mobile malware that tries to hide itself from security researchers.

Direct download: tcp-75-final-edits.mp3
Category:technology -- posted at: 9:59am EDT

Episode 74 of the Transatlantic Cable podcast sees David and Jeff being joined by a few of their colleagues from around the world as they talk about travel and cyber-security - can you keep your data and your life private whilst travelling?

Tune in!

Direct download: tcp-74-final.mp3
Category:technology -- posted at: 6:38am EDT

Happy New Year everyone and welcome to the first regular edition of Kaspersky Lab’s Transatlantic Cable Podcast. On this edition, Dave and I cover a lot of ground.

We kick off the podcast talking about CES, or more notably a pair of products that we question whether the internet is really needed – keys and a toilet. From there, we hop over to a program, Lenny, that turns the table on our favorite pains in the rear – robocalls and scammers. The next topic is a bit more serious as a hack happened to Australia’s Emergency Warning Network. If you are an online gamer and play The Town of Salem, you may want to change your password as they have suffered a data breach.

We close out the podcast looking at how data is used. This ranges from weather applications to the story of the week with how US Telcos are selling user data.

Direct download: tcp-73-final.mp3
Category:general -- posted at: 11:06am EDT

It is that time of year again, #TheSAS2019 will be here before we know it. This year’s location is in Singapore and as usual, there will be a lot of interesting research coming from the presenters. There will also be trainings where attendees can learn from our experts on GReAT across a wide variety of topics.

 In this podcast, I sit down with Brian Bartholomew who is giving a training, and to discuss what he envisions for this year’s edition of the Security Analyst Summit. His training entitled The Good and the GReAT— Stepping up your Threat Intelligence Game will be held with with Brian Candlish of Telstra Threat Labs and will focus on:

Concepts of threat intelligence

  • Intelligence life cycle
  • Defining intelligence requirements
  • Collecting and processing data
  • Maximizing data through automation
  • Open source / custom tools
  • Threat hunting in large security datasets
  • Intelligence reporting
  • Dealing with biases
  • Using estimative language
  • Each day will end with large hands-on labs

 

To sign up for Brian’s training or to buy tickets for #TheSAS2019, please click here.

Direct download: podcast02-1_mixdown.mp3
Category:general -- posted at: 9:47am EDT

For the 71st episode (and the first podcast of the new year) Dave and Jell talk New Year’s resolutions – no, not the usual lose weight and stop drinking alcohol (we all know we’ll give those up after three weeks of January blues), instead they look at cybersecurity resolutions that are easy for us all to stick to.

Whether it’s deleting old apps on your phone, or deciding to finally start using a password manager, Dave and Jeff walk through 11 practical tips that we can all stick to.

Direct download: tcp-new-year.mp3
Category:technology -- posted at: 6:00am EDT