DtSR Episode 143 - NewsCast for May 18th, 2015 from Down the Security Rabbithole Podcast (DtSR)

Down the Security Rabbithole Podcast (DtSR)

Rafal (Wh1t3Rabbit) Los

Support podcast

DtSR Episode 143 - NewsCast for May 18th, 2015

47 minutes Posted May 17, 2015 at 10:07 pm.

0:00

47:51

Download MP3

Share at current time

Show notes

In this episode...

Netflix launched FIDO (not that one, or that one, no the other one)
- Focused on automating incident response practices
- FIDO is an orchestration layer that automates the incident response process by evaluating, assessing and responding to malware and other detected threats.
- If you don't use it, at least they provide a structured framework for response and IR workflow
- http://techblog.netflix.com/2015/05/introducing-fido-automated-security.html
IT Chief leaves sensitive data in car- spoiler: it gets stolen
- Something smells like a fish market in the July heat on this story
- Maybe it's time to check in on YOUR off-site handling procedures?
- http://www.thestarpress.com/story/news/local/2015/05/10/chief-left-hard-drives-car/27083031/
Crowdstrike discovers, names "Venom"
- Massive security vulnerability within the floppy disk emulator in virtual machine hypervisors
- Even if you disable floppy disk emulation, separate bug lets you enable it
- This has a graphic and everything!
- http://www.csoonline.com/article/2921589/application-security/significant-virtual-machine-vulnerability-has-been-hiding-in-floppy-disk-code-for-11-years.html
United Airlines launches bug bounty
- Does this have anything to do with the now infamous (alleged) airplane hacker?
- Seems like some contradictory statements in the description
- (see below on United's response to our inquiry)
- http://www.united.com/web/en-US/content/contact/bugbounty.aspx

Note back from United Bug Bounty Team:

Posted with permission--

"Rafal:

Thank you for the question. We want researchers to be able to notify of potential issues they find while still protecting customers who are not participating in the program. If a researcher launched a brute force attack and locked the accounts of 10,000 customers through already existing security measures this would negatively affect our customers and the program.

If any researchers believe they may have found a brute force condition, they can feel free to submit it to us without testing. We will check on our end and if we confirm a bug exists we will gladly reward them for their effort. Does that make sense?

Best,

United Bug Bounty Team"

Support the show

>>> If you're reading this, consider clicking the link above to support the show!
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
YouTube home: https://youtube.com/playlist?list=PLyo0dkKRvfVtWXjRxNISrhme1MgBj3C2U&si=scHDiTuLXSEQ9qHq
LinkedIn Page: https://www.linkedin.com/company/down-the-security-rabbithole-podcast/
X/Twitter: https://twitter.com/dtsr_podcast

← See all 635 episodes of Down the Security Rabbithole Podcast (DtSR)