Matthew ran a little late this weekend, so apologies for being a day late deploying the latest security news into your earhole!
We talk Solarwinds and a lawsuit, then a little SEC action. Then we discuss the ever decreasing time frame to patch new vulnerabilities, and we lead off with a little conspiracy theory action about a government contractor that just might be using their privileged position for some man in the middle for the gov. I mean, what legitimate government contractor ISN'T run out of a UPS Store?
Article 1 - Mysterious company with government ties plays key internet role
Supporting Article:
Where does Firefox store cerificates and how to delete one?
Article 2 - Zero-day are exploited on a massive scale in increasingly shorter timeframes
Supporting Article:
Microsoft Digital Defense Report 2022
Intro to HDMoore’s Law
Article 3 - SolarWinds Faces Potential SEC Enforcement Act Over Orion Breach
Supporting Article:
CLASS ACTION COMPLAINT FOR VIOLATION OF THE FEDERAL SECURITIES LAWS
SOLARWINDS CORPORATION Form 8-K
If you found this interesting or useful, please follow us on Twitter @serengetisec and subscribe and review on your favorite podcast app!
In this episode we discuss the top ten mistakes that CISO's make when it comes to vulnerability management. I think that really could have...
It's all Uber all day today. First we discuss the implications of Uber CSO being charged for not reporting the 2016 incident to the...
In this episode, we deep dive into two articles, linked below:Half of Q1's malware traffic observed by Sophos was TLS encrypted, hiding inside legit...
