2019-014-Tesla fails encryption, Albany and Sammamish ransomware attacks.
Published April 15, 2019
|
50 min
    Download
    Add to queue
    Copy URL
    Show notes

    Announcements:
    WorkshopCon Training with SpecterOps and Tim Tomes

    www.workshopcon.com

    redteam operations with SpecterOps

    PWAPT with Tim Tomes

     

    Source Boston: [Boston, MA 2019 (April 29 – May 3, 2019) (https://sourceconference.com/events/boston19/)Trainings: April 29 - April 30, 2019 | Conference: May 1 - 3, 2019

     

    Cybernauts CTF meetup in Austin Texas at Indeed offices, 23 April at 5pm Central time.



    https://nakedsecurity.sophos.com/2019/04/02/wrecked-teslas-hang-onto-your-unencrypted-data/

     

    My last car sync’ed the contact list.

    Video is a different story, but safety for the vehicle and owner, they’ll probably continue to store it.

    Telemetry data is for changing road conditions, navigation, etc

    Enable encryption at rest… or pop a fuse to scram the data when/if an accident is detected

        Level of difficulty, no fuse, requires hardware upgrade

        Encryption at rest, ensuring HTTPS on all incoming/outgoing.

     

    https://www.bleepingcomputer.com/news/software/major-browsers-to-prevent-disabling-of-click-tracking-privacy-risk/

        Annoying “do you want notifications from this site?”

        Like an annoying RSS feed… ‘Hey, we added a new banner ad!’


    https://www.phoronix.com/scan.php?page=news_item&px=Linux-Improve-CPU-Spec-Switches

        Why add the switches to allow vulnerabilities?

        Slippery slope  --disable-dirtycow?

     

    https://www.bleepingcomputer.com/ransomware/decryptor/planetary-ransomware-decryptor-gets-your-files-back-for-free/

     

    https://www.wamc.org/post/details-still-few-city-albany-s-ransomware-attack

    Threat intelligence and software detections…

    Got an email… *Story Time from Mr. Boettcher*

    Twitter: why do companies not allow copy/paste in password fields? Tesla

      15
      15
        0:00:00 / 0:00:00