Securit13 Podcast
Первый украинский подкаст об информационной безопасности

Intro / Outro Insecurity (Treatment) by fourstones Ft: Ms. Vybe

http://dig.ccmixter.org/files/victor/8194  

00:02:19 ISIS using encrypted apps for communications; former intel officials blame Snowden https://goo.gl/ujfnWQ

Encrypted Messaging Apps Face New Scrutiny Over Possible Role in Paris Attacks https://goo.gl/58455L

Encrypted messages: Does the government need a way in? https://goo.gl/wFLskc

Telegram Messenger Blocks 78 Islamic State-Related Channels https://goo.gl/8vBPgY

Russian bill requires encryption backdoors in all messenger apps https://goo.gl/2wWcHH

France calls for worldwide help to fight messaging encryption https://goo.gl/KXP1iW

Encryption under fire in Europe as France and Germany call for decrypt law https://goo.gl/DulsCG

France, Germany Call for European Decryption Law https://goo.gl/yL8LKG

German Intelligence Plans 12% Budget Increase for Communications Monitoring https://goo.gl/OQi2gx

Telegram app complicates job of French anti-terror police https://goo.gl/pJmY95

Terror investigators grapple with Telegram app https://goo.gl/9kVIun

00:38:57 СМИ узнали о возможном запрете на иностранное шифрование для банков https://goo.gl/oQPFgr

00:42:21 Bellingcat vs Fancy Bear: how hackers tried to halt the MH17 investigation https://goo.gl/3cndtZ

00:47:05 Critical DoS Flaw found in OpenSSL — How It Works https://goo.gl/uGYF9C

00:47:36 FBI probes hacks targeting phones of Democratic Party officials -sources https://goo.gl/yBng7w

00:47:58 How Russia Wants to Undermine the U.S. Election https://goo.gl/FXE2cR

00:48:30 ISIL-Linked Hacker Sentenced to 20 Years in Prison https://goo.gl/p9uQWi

00:49:09 Xiaomi Can Silently Install Any App On Your Android Phone Using A Backdoor https://goo.gl/f2RIyi

00:50:14 KrebsOnSecurity Hit With Record DDoS https://goo.gl/7KDoxb

00:52:17 US elections and the hacking of e-voting machines https://goo.gl/08EwJG

00:52:44 Apple Weakened iOS 10 Backup Encryption; Now It can be cracked 2,500 times faster https://goo.gl/wqRP4t

00:53:43 Car Hacking Research: Remote Attack Tesla Motors by Keen Security Lab https://goo.gl/CqwEYJ

00:56:50 Oh, It's On Sale! USB Kill to Destroy any Computer within Seconds https://goo.gl/aKvV3S

00:57:56 ФАС просит доработать правила регулирования мессенджеров https://goo.gl/0ZM75s

00:59:43 The FBI recommends you cover your laptop's webcam, for good reason https://goo.gl/h9ELsC

01:02:45 "Газпром" запретил своим сотрудникам ловить покемонов на работе http://www.interfax.ru/russia/527351

Direct download: 69.mp3
Category:Technology -- posted at: 7:19pm CEST
Comments[0]

Intro / Outro Who Knows by sLow_starteR Ft: Tigoolio http://dig.ccmixter.org/files/sLow_starteR/38883

Интервью с Владимиром Таратушкой (vladimir@hackit-ukraine.com)

HackIt Ukrain http://hackit-ukraine.com

Рекомендуемая книга Теодор Драйзер - Финансист https://www.booklya.ua/book/finansist-116954/

Direct download: 68_5.mp3
Category:Technology -- posted at: 10:46pm CEST
Comments[0]

Intro / Outro Christophe Deremy - Fairy Tail https://www.youtube.com/watch?v=X1Z9ODzO_zQ

00:02:40 Patch your vBulletin forum – or get popped goo.gl/14hvEC

Millions of Steam game keys stolen after hacker breaches gaming site https://goo.gl/TT8Ftz

GTAGaming Hack Blamed on Old vBulletin Software https://goo.gl/9LHbRS

00:09:40 Hackers Can Use Smart Sockets to Shut Down Critical Systems https://goo.gl/P7MxPV

00:11:46 DiskFiltration: Data Exfiltration from Speakerless Air-Gapped Computers via Covert Hard Drive Noise https://arxiv.org/abs/1608.03431

00:15:00 Bluetooth Hack Leaves Many Smart Locks, IoT Devices Vulnerable https://goo.gl/jvZRCt

00:16:12 Cisco Begins Patching Equation Group ASA Zero Da https://goo.gl/ZAzguD

00:17:20 Researchers announce Linux kernel “network snooping” bug https://goo.gl/XQRN2h

00:23:36 IPhone Users Urged to Update Software After Security Flaws Are Found https://t.co/8mWfs6aril  

00:26:22 This PC monitor hack can manipulate pixels for malicious effect https://goo.gl/9OT0Y4

00:29:07 Gotta Spam ‘em All - Pokémon GO Spam https://goo.gl/yc4vfF

00:30:35 Кибеаполиция про PokemonGo https://goo.gl/LyXQJO

00:31:42 Сторінка Нацгвардії у TWITTER зламана https://goo.gl/EhEfPg

00:32:24 “Fileless” UAC Bypass Using eventvwr.exe and Registry Hijacking https://goo.gl/GPNNYW

Microsoft Windows UEFI Secure Boot — Insecure by Design? https://goo.gl/4q18oi

https://rol.im/securegoldenkeyboot/

00:34:52 Equation: The Death Star of Malware Galaxy https://goo.gl/deMaf3

00:39:26 PoC Unsigned Code Execution on a Sony PS4 System with firmwares 3.15, 3.50 and 3.55 - https://github.com/Fire30/PS4-3.55-Code-Execution-PoC

00:40:07 Fake Linus Torvalds' Key Found in the Wild, No More Short-IDs https://lkml.org/lkml/2016/8/15/445

00:41:10 Заява РНБО у зв’язку з ситуацією, що склалася навколо запуску системи електронного декларування https://goo.gl/5Q7FNv

00:42:15 Власти РФ отказались вводить уголовную ответственность за оборот биткоинов http://www.interfax.ru/business/523262

00:46:23 DDoSCoin: Cryptocurrency with a Malicious Proof-of-Work https://goo.gl/Qo5XX6

00:47:53 Major Events and Hacktivism #OpOlympicHacking https://goo.gl/nrhxoy

00:47:59 Security fixes for Libgcrypt and GnuPG 1.4 [CVE-2016-6316] https://goo.gl/zuN6LX

00:49:18 Key Fob Hack Allows Attackers To Unlock Millions Of Cars https://goo.gl/4VdOQ4

00:50:25 SQL Injection Vulnerability in Ninja Forms https://goo.gl/McUkFh

00:51:14 Немного об интересной рассылке

00:53:22 Resource: List of Car hacking tools, Car security tools and Car security resources https://goo.gl/ySXapK

00:54:09 WildfireDecryptor tool https://goo.gl/jFgr4V

Direct download: 68.mp3
Category:Technology -- posted at: 7:14am CEST
Comments[0]

Intro / Outro Broken Remote (Channel Changer Mix) by Vidian http://dig.ccmixter.org/files/Vidian/7613

00:01:07 Кто ты, слушатель Securit13? http://goo.gl/forms/9h2AI5CA9HmYO7q32

00:01:17 Интервью с Владимиром Гарбузом, организатором BSides Odessa про BSides Odessa 27.08.2016 https://www.securitybsides.org.ua/

00:17:49 Всеукраинская битва хакеров и форум по кибербезопасности HackIT http://hackit-ukraine.com/

00:20:02 пара слов о DefCon

DEF CON Media Server https://goo.gl/ywymlX

Shellphish https://github.com/shellphish

Direct download: 67.mp3
Category:Technology -- posted at: 9:03am CEST
Comments[0]

Intro / Outro Police Academy Theme https://www.youtube.com/watch?v=wA-NRyWoYII

Интервью с Алексеем Барановским об отборе в киберполицию

Рекоммендованные книги:

Гарри Гаррисон “Стальная крыса” https://goo.gl/DzYuo9

Gray Hat Hacking The Ethical Hacker's Handbook https://goo.gl/zmJecK

Теоретичні основи моделювання та аналізу систем захисту інформації Антонюк А.О., Жора В.В. http://goo.gl/Pf664T

Безпека інформаційно-комунікаційних систем Новиков О. М., Грайворонський M. B. http://goo.gl/HKKYQw

Direct download: 66.mp3
Category:Technology -- posted at: 9:16am CEST
Comments[0]

Intro / Outro DZIDZIO - MARSIK https://www.youtube.com/watch?v=oOaVy5hClc0

00:01:54 Стан професії 2016: дослідження Української групи інформаційної безпеки. https://www.surveymonkey.com/r/ZCLPWBJ

Кто ты, слушатель Securit13? http://goo.gl/forms/9h2AI5CA9HmYO7q32

00:02:30 Добавляем произвольный телефон в личном кабинете оператора мобильной связи Киевстар (Украина) https://t.co/JvI10SWw05

00:06:35 Cisco gives you two nasty bugs to fix before the weekend http://goo.gl/E4db1c

00:08:18 Crypto flaw made it easy for attackers to snoop on Juniper customers http://goo.gl/hJgbES

00:09:00 Хакеры из Кабардино-Балкарии, укравшие 1 млн фунтов с английских счетов, сели в тюрьму http://goo.gl/JSLpVe

00:11:43 Стримить или не стримить, вот в чем вопрос...

00:12:35 Residents Are Pissed That Their Neighborhood Has Become A Pokémon Go Hot Spot https://goo.gl/BrNcJb

Pokemon Go: privacy and security concerns you should be aware of https://goo.gl/lP4e9V

Pokemon Go Away: Russians See CIA Plot, ‘Satanism’ In Viral App http://goo.gl/77GkIL

Fake Pokemon GO Android App Locks Your Screen, Clicks on Ads in the Background http://goo.gl/wlPbCH

NY state: Don’t play Pokemon Go while driving or walking http://goo.gl/2M0PH6

00:19:08 Riffle: A new anonymity system to rival Tor https://goo.gl/LiFZfS

Riffle: MIT Creates New Anonymity Network Which Is More Secure Than TOR http://goo.gl/chDdEs

How to stay anonymous online http://goo.gl/t8nQej

00:24:21 Nmap Announce: Nmap 7.25BETA1 Released with our new Npcap driver, 6 new NSE scripts,  and more! http://seclists.org/nmap-announce/2016/3

00:24:57 Чужими руками: кто защитит чиновников в интернете http://goo.gl/Fwqq5a

00:29:19 How the NSA Converts Spoken Words Into Searchable Text https://goo.gl/96wzjA

00:30:54 Microsoft wins email privacy battle against US government https://goo.gl/pb0k06

00:31:12 Drupal issues major security fixes for flaw probably used in Panama Papers breach http://goo.gl/vd7sl1

00:33:34 McDonald's No Longer Offering Free Porn In The US http://goo.gl/HC1rEW

00:34:34 cuteRansomware Uses Google Docs as C&C Server http://goo.gl/X7b0Nj

00:35:35 Ransomware makes its debut on the small screen: FLocker infects smart TVs http://goo.gl/J836Iv

00:36:12 New HIPAA Guidance Tackles Ransomware Epidemic In Healthcare http://goo.gl/krSrsB

http://www.hhs.gov/sites/default/files/RansomwareFactSheet.pdf

00:36:39 New Delilah Trojan Used to Blackmail Employees, Recruit Insiders http://goo.gl/itqnwG

00:38:29 BAE Systems partners with SWIFT to bolster hacker intel http://goo.gl/N3SQsC

00:39:49 С 1 августа платежная система Visa вводит в Украине принцип нулевой ответственности клиента за действия мошенников http://goo.gl/lm8b0B

00:42:32 20-year-old Windows bug lets printers install malware—patch now http://goo.gl/OZXUhN

00:42:43 Ubuntu Forums hack exposes 2 million users http://goo.gl/sJk9oP

NZ school servers hacked http://goo.gl/jGuOEz

Polish telecom suffers major data breach following hack http://goo.gl/8zcFhz

00:43:48 My Experience With the Great Firewall of China http://goo.gl/1EzqRu

00:44:56 Erdogan says his government is in control after bloody coup attempt in Turkey https://goo.gl/Zh34VB

Twitter, Facebook & YouTube blocked in #Turkey at 10:50PM after apparent military uprising in #Turkey https://goo.gl/R5Gdsu

00:46:30 OpenSSH has user enumeration bug http://goo.gl/HU2bNA

Direct download: 65.mp3
Category:Technology -- posted at: 11:50pm CEST
Comments[0]

Intro / Outro Wired (cdk Dub and Bass mix) by cdk (c) http://dig.ccmixter.org/files/cdk/34152

00:02:51 Стан професії 2016: дослідження Української групи інформаційної безпеки. https://www.surveymonkey.com/r/ZCLPWBJ

00:03:46 Кто ты, слушатель Securit13? http://goo.gl/forms/9h2AI5CA9HmYO7q32

00:04:11 «Пакет Яровой» принят. И это очень плохо https://goo.gl/fDPjE2

СБУ советует украинцам до 1 августа удалить свои аккаунты из российских соцсетей (список) http://goo.gl/76Qyuh

СБУ закликає українців видалитися з російських соцмереж (видео) https://goo.gl/K4xZXz

00:14:44 В Украине появился мобильный кошелек для покупки и продажи биткоинов за гривну http://ain.ua/2016/06/30/657198

00:16:21 Ashley Madison gives infidelity a new look https://t.co/tg7uaHLey5

00:18:17 Teenager admits Mumsnet password cyber attack charges  https://t.co/2eMXutNxr7

00:19:36 Here's how fake telephone tech support scams work http://goo.gl/SzzkKs

00:21:18 What does Brexit mean for data protection & privacy? https://goo.gl/CmYbvJ

Will Brexit impact GDPR and data protection rules? http://goo.gl/vXjBmy

00:22:40 SCADA malware caught infecting European energy company http://goo.gl/VDgw7W

Word up: BlackEnergy SCADA hackers change tactics http://goo.gl/Is5G4u

00:24:37 Через сутки вознаграждение за блок Bitcoin упадет вдвое https://geektimes.ru/post/278228/

00:27:42 BMW ConnectedDrive - (Update) VIN Session Vulnerability http://goo.gl/ugyQ5b

BMW - (Token) Client Side Cross Site Scripting Vulnerability http://goo.gl/60xDAT

00:29:27 sesto https://github.com/cossacklabs/sesto

00:30:12 Харьковчанин, обладающий патентом на создание автоматизированной системы такси, обвинил Uber в нарушении интеллектуальных прав http://goo.gl/Awr0Oe

00:34:00 Taiwan banks suspend cash withdrawal at ATMs due to malware theft http://goo.gl/3H8bxb  

Direct download: 64.mp3
Category:Technology -- posted at: 11:34pm CEST
Comments[0]

Intro / Outro Sooner or later by Urmymuse http://dig.ccmixter.org/files/urmymuse/45496

00:02:03 Привет, Тарас!

00:04:00 Microsoft collaborates on software for the legal marijuana industry http://goo.gl/ZnOmYF

Marijuana and Microsoft: Why This is Huge for Legalized Pot http://goo.gl/5kj8rr

00:05:11 Cyberspace is officially a war zone – NATO http://goo.gl/mgnBWk

00:08:28 Security Advisory for Adobe Flash Player https://goo.gl/CwGnZ5

00:10:55 Ransomware, SCADA Access As a Service Emerging Threats For ICS Operators, Report Says http://goo.gl/3JjKCZ

00:16:33 Gartner’s Top 10 Security Predictions 2016 http://goo.gl/pmCFDx

00:26:21 Facebook Messenger был уязвим к атаке, требующей базовые знания HTML https://goo.gl/EwxvT1

00:27:32 Flaw in Juniper's JunOS router software could cause DDoS flood http://goo.gl/FLFwMj

Cisco Issues Hight Alert on IPv6 Vulnerability, Says It Affects Both Cisco and Other Products http://goo.gl/3MHzyN

00:28:18 Cisco Won’t Patch Critical RV Wireless Router Vulnerability Until Q3 https://goo.gl/IF9Dup

00:30:08 North Korean Hackers Stole F-15 Wing Designs, Seoul Says http://goo.gl/NUWWB0

00:32:01 Hacker faces 25 years in prison for giving ISIS a US kill list https://t.co/Zr9xs8VG99

00:33:19 Ransomware, SCADA Access As a Service Emerging Threats For ICS Operators, Report Says http://goo.gl/XfA0fj

00:35:24 В Украине создали Национальный координационный центр кибербезопасности http://goo.gl/lTGh0m

00:37:28 Forget Game of Thrones as Android ransomware infects TVs http://goo.gl/FRohuK

00:39:03 An IT Worker at the Panama Papers Law Firm Has Been Arrested https://goo.gl/WjDiS1

00:39:52 Twitter: Passwords Leaked for Millions of Accounts http://goo.gl/LucP4h

00:40:35 uTorrent Forums Hacked, Passwords Compromised https://goo.gl/t5mMb3

00:41:14 Let's Encrypt lets 7,600 users... see each other's email addresses http://goo.gl/Jli9xZ

00:42:03 The web attacks that refuse to die https://t.co/EOEVPCr3QG

00:42:55 Inferring Internet Security Posture by Country through Port Scanning (pdf) https://goo.gl/4mZucp

00:43:31 Should multilingual websites use HTTPS by default | Million Dollar Blog (к моменту публикации, статья и все ссылки на нее были удалены)

00:44:58 FBI: Email Scams Take $3.1 Billion Toll on Businesses https://goo.gl/mjaTm7

00:46:03 How a college student tricked 17k coders into running his sketchy script http://goo.gl/Zr74XV

00:48:01 DAO теряет миллионы долларов в час из-за ошибки в своём коде и тянет Ethereum за собой https://goo.gl/a0arWL

00:52:32 Telegram bug allows attackers to crash devices, jack up phone bills https://goo.gl/YhgEDl

00:53:28 BadTunnel Bug Hijacks Network Traffic, Affects All Windows Versions http://goo.gl/OhBV7T

00:55:03 Acer Ecommerce Site Spills Credit Card Information of Thousands https://goo.gl/rpiKhp

00:57:20 Никифоров: регулирование трафика в мессенджерах и соцсетях технически невозможно http://tass.ru/pmef-2016/article/3368668

00:58:29 Hacking the Mitsubishi Outlander PHEV hybrid https://goo.gl/Yqm7Zm

00:59:36 Help Make Open Source Secure https://goo.gl/DwZkHw

Direct download: 63.mp3
Category:Technology -- posted at: 8:01am CEST
Comments[0]

Intro / Outro We are Connected (the Chemma Chi  Remix) by SackJo22 http://dig.ccmixter.org/files/SackJo22/48168

00:01:39 GCHQ joins Twitter https://twitter.com/GCHQ

00:02:42 Интервью с Андреем Кузьменко. Связаться с Андреем можно в LinkedIn https://goo.gl/nYXCwT  или по почте andrii.kuzmenko@ua.ibm.com

00:05:53 Your car can be held for ransom http://goo.gl/k3CPOE

Car hacking news: Ransomware threat could reach auto dealerships http://goo.gl/Hwr3Ep

Ransomware cyberattacker did not pretend to be Car-Part.com employee http://goo.gl/yDWS21

Visa USA | Visa Everywhere | Innovation | Connected Car https://goo.gl/dPqFfw

Ditch the Wallet and Pay With Your Car http://goo.gl/yrvQgw

https://security.love/Pastejacking/

00:10:38 Hospital pays ransom, ransomware demands more money http://goo.gl/MIfeas

00:10:47 Observations and thoughts on the LinkedIn data breach https://goo.gl/BlUfgW

00:19:48 Heart surgery stalled for nearly 5 mins as anti-virus scan crashes computers https://goo.gl/duIz16

00:33:19 Pornhub said to be compromised, shell access available for $1,000 http://goo.gl/X2jbUz

00:37:04 У Києві поліція затримала кіберзлодіїв, які обкрадали банкомати з допомогою вірусу http://goo.gl/It8mYn

00:51:33 Symantec antivirus bug allows utter exploitation of memory http://goo.gl/yAehKc

00:56:02 Книга от гостя On the Road by Jack Kerouac http://goo.gl/HSO7fs

00:58:05 CVE-2016-4117: Flash Zero-Day Exploited in the Wild https://goo.gl/QMhPHS

01:00:08 Взломан украинский реестр недвижимости http://goo.gl/SHFyEB

01:01:40 Ukrainian hacker pleads guilty to insider trading in US http://goo.gl/dtf8jy

01:02:16 Observations and thoughts on the LinkedIn data breach https://goo.gl/BlUfgW

01:04:06 SWIFT Warns of Second Bank Attack via PDF Malware https://goo.gl/2x9DFX

U.S. banks scrutinize SWIFT security after hacks: reports http://goo.gl/iCuJZS

Exclusive: UK banks ordered to review cyber security after SWIFT heist http://goo.gl/EVkOvU

01:05:23 Hacker fans give Mr. Robot website free security checkup http://goo.gl/pgMRmI

01:06:13 TeslaCrypt shuts down and Releases Master Decryption Key http://goo.gl/mvdBF1

01:06:54 You really shouldn't download 'WhatsApp Gold' http://goo.gl/Ku3Buc

01:07:45 Google Set to Kill SSLv3, RC4 in SMTP, Gmail in June https://goo.gl/7JcYAY

Видео запись эпизода на нашем канале https://www.youtube.com/channel/UCGYHYOm_J3zpyE5jCNzAHJg

Direct download: 61.mp3
Category:Technology -- posted at: 1:41am CEST
Comments[4]

Intro / Outro Awaken by TheDICE http://dig.ccmixter.org/files/TheDICE/48157

00:01:00 Вышел Phrack №69 http://phrack.org/issues/69/1.html

00:02:50 Widely Popular ImageMagick Tool Vulnerable to Remote Code Execution http://goo.gl/7aEobb

Server-jacking exploits for ImageMagick are so trivial, you'll scream http://goo.gl/5AMmiM  

Public Exploits Available for ImageMagick Vulnerabilities https://goo.gl/nlyEJL

00:08:48 Hacking Slack accounts: As easy as searching GitHub http://goo.gl/8bVCce

00:14:32 Vulnerability disclosure for Pornhub https://hackerone.com/pornhub

00:17:31 10-Year-Old Hacks Instagram; Wins $10K From Facebook http://goo.gl/icLLlO

00:21:02 Student gets conditional 18-month sentence in CRA Heartbleed breach http://goo.gl/AAXyGi

00:23:28 Anonymous attack Greek central bank, warns others http://goo.gl/tsdAlD

00:24:53 Wi-Fi network named 'mobile detonation device' grounds plane http://goo.gl/fyDhDY

00:26:54 Car Hackers Could Face Life In Prison. That's Insane! http://goo.gl/Cozzpo

00:30:01 Adobe, Microsoft Push Critical Updates http://goo.gl/cSskJK

00:30:59 How the Pwnedlist Got Pwned http://goo.gl/M2Ds4s

00:31:58 Here's how many US surveillance requests were rejected in 2015 http://goo.gl/FXrYIt

00:38:09 Twitter Bars Intelligence Agencies From Using Analytics Service http://goo.gl/3iFn15

00:39:47 Apple Stole My Music. No, Seriously. https://goo.gl/DKhcRT

00:42:28 Walmart confirms police report, says card readers compromised in Virginia http://goo.gl/4r0Dya

00:44:30 The Bitcoin affair: Craig Wright promises extraordinary proof http://www.bbc.com/news/technology-36193006

00:45:36 Another Day, Another Hack: Tens of Millions of Neopets Accounts http://goo.gl/gFK6oR

Direct download: 60.mp3
Category:Technology -- posted at: 11:29am CEST
Comments[0]