Matthew ran a little late this weekend, so apologies for being a day late deploying the latest security news into your earhole!
We talk Solarwinds and a lawsuit, then a little SEC action. Then we discuss the ever decreasing time frame to patch new vulnerabilities, and we lead off with a little conspiracy theory action about a government contractor that just might be using their privileged position for some man in the middle for the gov. I mean, what legitimate government contractor ISN'T run out of a UPS Store?
Article 1 - Mysterious company with government ties plays key internet role
Supporting Article:
Where does Firefox store cerificates and how to delete one?
Article 2 - Zero-day are exploited on a massive scale in increasingly shorter timeframes
Supporting Article:
Microsoft Digital Defense Report 2022
Intro to HDMoore’s Law
Article 3 - SolarWinds Faces Potential SEC Enforcement Act Over Orion Breach
Supporting Article:
CLASS ACTION COMPLAINT FOR VIOLATION OF THE FEDERAL SECURITIES LAWS
SOLARWINDS CORPORATION Form 8-K
If you found this interesting or useful, please follow us on Twitter @serengetisec and subscribe and review on your favorite podcast app!
In this episode we discuss two recent surveys, one on malicious bots that attack web sites, and one on cloud security and the struggles...
In this episode, we review a number of articles discussing the war in Ukraine, and why we haven't seen the Cyberwar we imagined would...
Title 1: Russian infosec boss gets nine years for $100M insider-trading caper using stolen dataSummary: Vladislav Klyushin, owner of Russian firm M-13, was sentenced...
