In this week’s episode:Carder ScamsZerodium and iOS 9 jailbreakSo Long, and Thanks for All the Fish!This episode marks the last SpiderLabs Radio podcast so I can focus on other Trustwave projects like our popular SpiderLabs blog. Thanks t
Two separate SpiderLabs vulnerabilities released:Assi Barak Discovers Magmi Zero DayAsaf Orpani Discovers Critical Joomla SQL injectionAlso A New IoT Vulnerability In Your Connected Tea KettleLinks mentioned in the show:Assi Barak - Zero
In this week’s episode:SpiderLab’s Rodel Mendrez dissects the Quaverse RATCurrent state of medical device security from DerbyCon 2015Links mentioned in the show:Rodel Mendrez - Quaverse RAT: Remote-Access-as-a-ServiceDerbyCon 2015 videos
In this week`s episode:Wordpress Zero DayBACKRONYM: SSL vulnerability in MySQLAngler EK and Bedep campaign used for political hacktivismLinks mentioned in the show:BACKRONYMBedep trojan malware spread by the Angler exploit kit gets politic
In this week’s episode it’s all things RSA Conference. I’ll be discussing two talks put on by Trustwave SpiderLabs researchers; one on PoS security and one on hacking SAP ASE databases. I’ll also talk about our password cracking rig and how it
In this week’s episode:Rootpipe finally fixed for someMicrosoft Patch TuesdayPunkey PoS MalwareLinks mentioned in the show:New POS Malware Emerges - Punkey
In this week’s episode:TrueCrypt auditSilk Road back in the news once more, againDDoS on GitHubSSLv3 and PCILinks mentioned in the show:Bring Out Your Dead: An Update on the PCI relevance of SSLv3
In this week’s episode:Root Certificate Used to Spoof TLSPOSeidon Point of Sale MalwareFlaw in Hotel WiFi Routers Allows Remote ControlBar-Mitzvah attack against RC4/SSL
In this week’s episode:Superfish and HTTPS MITM attacksSpiderLabs Honeypots and DDoS MalwareSpiderLabs teardown of the RIG EKLinks mentioned in this podcast:[Honeypot Alert] FHS Null Byte Attack (CVE-2014-6287) Attempts to Install DDoS Mal
In this week’s episode:2015 Changes to the Google Bug BountyCTB-Locker ransomwareYet Another Flash Zero DayLinks mentioned in this podcast:Kafiene’s Breakdown of CTB-LockerBen Hayak: A New Zero-Day of Adobe Flash CVE-2015-0313 Exploited in