Lock and Code S1Ep10: Pulling apart the Internet of Things with JP Taggart

Lock and Code S1Ep17: Journalism’s role in cybersecurity with Alfred Ng and Seth Rosenblatt

Most everything about cybersecurity—the threats, the vulnerabilities, the breaches and the blunders—doesn’t happen in a vacuum. And the public doesn’t learn about those things because threat actors advertise their exploits, or because companies trumpet their lackluster data security practices.

No, we often learn about cybersecurity issues because of reporting. And as the years have progressed, the stories have only become more intertwined into our everyday lives. We learn whether our products are safe to use, we read about how to safely browse online, and we try to understand why an app might suddenly disappear from the Apple App Store.

To help us better understand the role of journalism in cybersecurity—how the public’s attention has broadened over many years, how a cybersecurity threat is deemed newsworthy, and how to avoid advice that serves no one—we’re talking today to Alfred Ng, senior reporter for CNET, and Seth Rosenblatt, editor-in-chief for The Parallax. 

You can also find us on the Apple iTunes storeGoogle Play Music, and Spotify, plus whatever preferred podcast platform you use.

We cover our own research on:

  • A mobile network operator falls into the hands of Fullz House Magecart group.
  • A fileless APT attack abuses Windows Error Reporting service using a ‘your right to compensation’ lure.
  • The risky business stemming from the fact that a majority of people use work devices for personal use.
  • An update about the state of healthcare security instigated by a case in Germany where a woman died as a result of a ransomware attack.
  • More credit card skimmers, this time the target was a virtual conference platform.

Other cybersecurity news:

  • A new AI software tool to be developed for the U.S. Air Force and Special Operations Command may help to counter disinformation. (Source: Defense One)
  • Hackers have launched a sprawling, multifaceted cyber-attack against the state of Washington, according to two people familiar with the matter. (Source: Bloomberg)
  • The United States has seized 92 domain names that were unlawfully used by Iran’s Islamic Revolutionary Guard Corps (IRGC) to engage in a global disinformation campaign. (Source: US Department of Justice)
  • Sam’s Club has started sending automated password reset emails and security notifications to customers who were hacked in credential stuffing attacks. (Source: BleepingComputer)
  • The International Maritime Organization (IMO), a fully fledged United Nations entity, has become the latest high profile shipping victim of a cyber attack. (Source: Splash 247)

Stay safe, everyone!