Securit13 Podcast
Первый украинский подкаст об информационной безопасности

Intro / Outro Who Knows by sLow_starteR Ft: Tigoolio

Интервью с Владимиром Таратушкой (

HackIt Ukrain

Рекомендуемая книга Теодор Драйзер - Финансист

Direct download: 68_5.mp3
Category:Technology -- posted at: 10:46pm CEST

Intro / Outro Christophe Deremy - Fairy Tail

00:02:40 Patch your vBulletin forum – or get popped

Millions of Steam game keys stolen after hacker breaches gaming site

GTAGaming Hack Blamed on Old vBulletin Software

00:09:40 Hackers Can Use Smart Sockets to Shut Down Critical Systems

00:11:46 DiskFiltration: Data Exfiltration from Speakerless Air-Gapped Computers via Covert Hard Drive Noise

00:15:00 Bluetooth Hack Leaves Many Smart Locks, IoT Devices Vulnerable

00:16:12 Cisco Begins Patching Equation Group ASA Zero Da

00:17:20 Researchers announce Linux kernel “network snooping” bug

00:23:36 IPhone Users Urged to Update Software After Security Flaws Are Found  

00:26:22 This PC monitor hack can manipulate pixels for malicious effect

00:29:07 Gotta Spam ‘em All - Pokémon GO Spam

00:30:35 Кибеаполиция про PokemonGo

00:31:42 Сторінка Нацгвардії у TWITTER зламана

00:32:24 “Fileless” UAC Bypass Using eventvwr.exe and Registry Hijacking

Microsoft Windows UEFI Secure Boot — Insecure by Design?

00:34:52 Equation: The Death Star of Malware Galaxy

00:39:26 PoC Unsigned Code Execution on a Sony PS4 System with firmwares 3.15, 3.50 and 3.55 -

00:40:07 Fake Linus Torvalds' Key Found in the Wild, No More Short-IDs

00:41:10 Заява РНБО у зв’язку з ситуацією, що склалася навколо запуску системи електронного декларування

00:42:15 Власти РФ отказались вводить уголовную ответственность за оборот биткоинов

00:46:23 DDoSCoin: Cryptocurrency with a Malicious Proof-of-Work

00:47:53 Major Events and Hacktivism #OpOlympicHacking

00:47:59 Security fixes for Libgcrypt and GnuPG 1.4 [CVE-2016-6316]

00:49:18 Key Fob Hack Allows Attackers To Unlock Millions Of Cars

00:50:25 SQL Injection Vulnerability in Ninja Forms

00:51:14 Немного об интересной рассылке

00:53:22 Resource: List of Car hacking tools, Car security tools and Car security resources

00:54:09 WildfireDecryptor tool

Direct download: 68.mp3
Category:Technology -- posted at: 7:14am CEST

Intro / Outro Broken Remote (Channel Changer Mix) by Vidian

00:01:07 Кто ты, слушатель Securit13?

00:01:17 Интервью с Владимиром Гарбузом, организатором BSides Odessa про BSides Odessa 27.08.2016

00:17:49 Всеукраинская битва хакеров и форум по кибербезопасности HackIT

00:20:02 пара слов о DefCon

DEF CON Media Server


Direct download: 67.mp3
Category:Technology -- posted at: 9:03am CEST

Intro / Outro Police Academy Theme

Интервью с Алексеем Барановским об отборе в киберполицию

Рекоммендованные книги:

Гарри Гаррисон “Стальная крыса”

Gray Hat Hacking The Ethical Hacker's Handbook

Теоретичні основи моделювання та аналізу систем захисту інформації Антонюк А.О., Жора В.В.

Безпека інформаційно-комунікаційних систем Новиков О. М., Грайворонський M. B.

Direct download: 66.mp3
Category:Technology -- posted at: 9:16am CEST

Intro / Outro DZIDZIO - MARSIK

00:01:54 Стан професії 2016: дослідження Української групи інформаційної безпеки.

Кто ты, слушатель Securit13?

00:02:30 Добавляем произвольный телефон в личном кабинете оператора мобильной связи Киевстар (Украина)

00:06:35 Cisco gives you two nasty bugs to fix before the weekend

00:08:18 Crypto flaw made it easy for attackers to snoop on Juniper customers

00:09:00 Хакеры из Кабардино-Балкарии, укравшие 1 млн фунтов с английских счетов, сели в тюрьму

00:11:43 Стримить или не стримить, вот в чем вопрос...

00:12:35 Residents Are Pissed That Their Neighborhood Has Become A Pokémon Go Hot Spot

Pokemon Go: privacy and security concerns you should be aware of

Pokemon Go Away: Russians See CIA Plot, ‘Satanism’ In Viral App

Fake Pokemon GO Android App Locks Your Screen, Clicks on Ads in the Background

NY state: Don’t play Pokemon Go while driving or walking

00:19:08 Riffle: A new anonymity system to rival Tor

Riffle: MIT Creates New Anonymity Network Which Is More Secure Than TOR

How to stay anonymous online

00:24:21 Nmap Announce: Nmap 7.25BETA1 Released with our new Npcap driver, 6 new NSE scripts,  and more!

00:24:57 Чужими руками: кто защитит чиновников в интернете

00:29:19 How the NSA Converts Spoken Words Into Searchable Text

00:30:54 Microsoft wins email privacy battle against US government

00:31:12 Drupal issues major security fixes for flaw probably used in Panama Papers breach

00:33:34 McDonald's No Longer Offering Free Porn In The US

00:34:34 cuteRansomware Uses Google Docs as C&C Server

00:35:35 Ransomware makes its debut on the small screen: FLocker infects smart TVs

00:36:12 New HIPAA Guidance Tackles Ransomware Epidemic In Healthcare

00:36:39 New Delilah Trojan Used to Blackmail Employees, Recruit Insiders

00:38:29 BAE Systems partners with SWIFT to bolster hacker intel

00:39:49 С 1 августа платежная система Visa вводит в Украине принцип нулевой ответственности клиента за действия мошенников

00:42:32 20-year-old Windows bug lets printers install malware—patch now

00:42:43 Ubuntu Forums hack exposes 2 million users

NZ school servers hacked

Polish telecom suffers major data breach following hack

00:43:48 My Experience With the Great Firewall of China

00:44:56 Erdogan says his government is in control after bloody coup attempt in Turkey

Twitter, Facebook & YouTube blocked in #Turkey at 10:50PM after apparent military uprising in #Turkey

00:46:30 OpenSSH has user enumeration bug

Direct download: 65.mp3
Category:Technology -- posted at: 11:50pm CEST

Intro / Outro Wired (cdk Dub and Bass mix) by cdk (c)

00:02:51 Стан професії 2016: дослідження Української групи інформаційної безпеки.

00:03:46 Кто ты, слушатель Securit13?

00:04:11 «Пакет Яровой» принят. И это очень плохо

СБУ советует украинцам до 1 августа удалить свои аккаунты из российских соцсетей (список)

СБУ закликає українців видалитися з російських соцмереж (видео)

00:14:44 В Украине появился мобильный кошелек для покупки и продажи биткоинов за гривну

00:16:21 Ashley Madison gives infidelity a new look

00:18:17 Teenager admits Mumsnet password cyber attack charges

00:19:36 Here's how fake telephone tech support scams work

00:21:18 What does Brexit mean for data protection & privacy?

Will Brexit impact GDPR and data protection rules?

00:22:40 SCADA malware caught infecting European energy company

Word up: BlackEnergy SCADA hackers change tactics

00:24:37 Через сутки вознаграждение за блок Bitcoin упадет вдвое

00:27:42 BMW ConnectedDrive - (Update) VIN Session Vulnerability

BMW - (Token) Client Side Cross Site Scripting Vulnerability

00:29:27 sesto

00:30:12 Харьковчанин, обладающий патентом на создание автоматизированной системы такси, обвинил Uber в нарушении интеллектуальных прав

00:34:00 Taiwan banks suspend cash withdrawal at ATMs due to malware theft  

Direct download: 64.mp3
Category:Technology -- posted at: 11:34pm CEST

Intro / Outro Sooner or later by Urmymuse

00:02:03 Привет, Тарас!

00:04:00 Microsoft collaborates on software for the legal marijuana industry

Marijuana and Microsoft: Why This is Huge for Legalized Pot

00:05:11 Cyberspace is officially a war zone – NATO

00:08:28 Security Advisory for Adobe Flash Player

00:10:55 Ransomware, SCADA Access As a Service Emerging Threats For ICS Operators, Report Says

00:16:33 Gartner’s Top 10 Security Predictions 2016

00:26:21 Facebook Messenger был уязвим к атаке, требующей базовые знания HTML

00:27:32 Flaw in Juniper's JunOS router software could cause DDoS flood

Cisco Issues Hight Alert on IPv6 Vulnerability, Says It Affects Both Cisco and Other Products

00:28:18 Cisco Won’t Patch Critical RV Wireless Router Vulnerability Until Q3

00:30:08 North Korean Hackers Stole F-15 Wing Designs, Seoul Says

00:32:01 Hacker faces 25 years in prison for giving ISIS a US kill list

00:33:19 Ransomware, SCADA Access As a Service Emerging Threats For ICS Operators, Report Says

00:35:24 В Украине создали Национальный координационный центр кибербезопасности

00:37:28 Forget Game of Thrones as Android ransomware infects TVs

00:39:03 An IT Worker at the Panama Papers Law Firm Has Been Arrested

00:39:52 Twitter: Passwords Leaked for Millions of Accounts

00:40:35 uTorrent Forums Hacked, Passwords Compromised

00:41:14 Let's Encrypt lets 7,600 users... see each other's email addresses

00:42:03 The web attacks that refuse to die

00:42:55 Inferring Internet Security Posture by Country through Port Scanning (pdf)

00:43:31 Should multilingual websites use HTTPS by default | Million Dollar Blog (к моменту публикации, статья и все ссылки на нее были удалены)

00:44:58 FBI: Email Scams Take $3.1 Billion Toll on Businesses

00:46:03 How a college student tricked 17k coders into running his sketchy script

00:48:01 DAO теряет миллионы долларов в час из-за ошибки в своём коде и тянет Ethereum за собой

00:52:32 Telegram bug allows attackers to crash devices, jack up phone bills

00:53:28 BadTunnel Bug Hijacks Network Traffic, Affects All Windows Versions

00:55:03 Acer Ecommerce Site Spills Credit Card Information of Thousands

00:57:20 Никифоров: регулирование трафика в мессенджерах и соцсетях технически невозможно

00:58:29 Hacking the Mitsubishi Outlander PHEV hybrid

00:59:36 Help Make Open Source Secure

Direct download: 63.mp3
Category:Technology -- posted at: 8:01am CEST

Intro / Outro We are Connected (the Chemma Chi  Remix) by SackJo22

00:01:39 GCHQ joins Twitter

00:02:42 Интервью с Андреем Кузьменко. Связаться с Андреем можно в LinkedIn  или по почте

00:05:53 Your car can be held for ransom

Car hacking news: Ransomware threat could reach auto dealerships

Ransomware cyberattacker did not pretend to be employee

Visa USA | Visa Everywhere | Innovation | Connected Car

Ditch the Wallet and Pay With Your Car

00:10:38 Hospital pays ransom, ransomware demands more money

00:10:47 Observations and thoughts on the LinkedIn data breach

00:19:48 Heart surgery stalled for nearly 5 mins as anti-virus scan crashes computers

00:33:19 Pornhub said to be compromised, shell access available for $1,000

00:37:04 У Києві поліція затримала кіберзлодіїв, які обкрадали банкомати з допомогою вірусу

00:51:33 Symantec antivirus bug allows utter exploitation of memory

00:56:02 Книга от гостя On the Road by Jack Kerouac

00:58:05 CVE-2016-4117: Flash Zero-Day Exploited in the Wild

01:00:08 Взломан украинский реестр недвижимости

01:01:40 Ukrainian hacker pleads guilty to insider trading in US

01:02:16 Observations and thoughts on the LinkedIn data breach

01:04:06 SWIFT Warns of Second Bank Attack via PDF Malware

U.S. banks scrutinize SWIFT security after hacks: reports

Exclusive: UK banks ordered to review cyber security after SWIFT heist

01:05:23 Hacker fans give Mr. Robot website free security checkup

01:06:13 TeslaCrypt shuts down and Releases Master Decryption Key

01:06:54 You really shouldn't download 'WhatsApp Gold'

01:07:45 Google Set to Kill SSLv3, RC4 in SMTP, Gmail in June

Видео запись эпизода на нашем канале

Direct download: 61.mp3
Category:Technology -- posted at: 1:41am CEST

Intro / Outro Awaken by TheDICE

00:01:00 Вышел Phrack №69

00:02:50 Widely Popular ImageMagick Tool Vulnerable to Remote Code Execution

Server-jacking exploits for ImageMagick are so trivial, you'll scream  

Public Exploits Available for ImageMagick Vulnerabilities

00:08:48 Hacking Slack accounts: As easy as searching GitHub

00:14:32 Vulnerability disclosure for Pornhub

00:17:31 10-Year-Old Hacks Instagram; Wins $10K From Facebook

00:21:02 Student gets conditional 18-month sentence in CRA Heartbleed breach

00:23:28 Anonymous attack Greek central bank, warns others

00:24:53 Wi-Fi network named 'mobile detonation device' grounds plane

00:26:54 Car Hackers Could Face Life In Prison. That's Insane!

00:30:01 Adobe, Microsoft Push Critical Updates

00:30:59 How the Pwnedlist Got Pwned

00:31:58 Here's how many US surveillance requests were rejected in 2015

00:38:09 Twitter Bars Intelligence Agencies From Using Analytics Service

00:39:47 Apple Stole My Music. No, Seriously.

00:42:28 Walmart confirms police report, says card readers compromised in Virginia

00:44:30 The Bitcoin affair: Craig Wright promises extraordinary proof

00:45:36 Another Day, Another Hack: Tens of Millions of Neopets Accounts

Direct download: 60.mp3
Category:Technology -- posted at: 11:29am CEST

Intro / Outro Pentatonix - Daft Punk

00:02:56 Bangladesh Bank hackers compromised SWIFT software, warning issued

00:06:58 The Vigilante Who Hacked Hacking Team Explains How He Did It

00:13:00 Millions Of Naughty America Porn Accounts Can Be Yours For A Mere $300

00:17:30 Lip Kit Website Glitch Personal Customer Info Exposed

00:17:46 How a Hacker Found The Personal Information of All Mexican Voters

00:20:25 When a nation is hacked: Understanding the ginormous Philippines data breach

00:21:27 ‘Blackhole’ Exploit Kit Author Gets 7 Years

British Authorities Order Hacker Lauri Love to hand Over Encryption Keys

Creators of  SpyEye Virus Sentenced to 24 Years in Prison

Matthew Keys Sentenced to Two Years for Aiding Anonymous

00:24:23 Privacy tools - encryption against surveillance

00:25:14 2016 DBIR: Understand Your Cybersecurity Threats | Verizon Enterprise Solutions

00:28:32 How to decrypt Petya Ransomware for Free

Reversing the petya ransomware with constraint solvers

00:29:09 How cybercriminals earned $100,000 just by sending a DDoS threat email

00:30:02 Apple stops patching QuickTime for Windows despite 2 active vulnerabilities

Adobe warns that uninstalling vulnerable QuickTime for Windows can break Creative Cloud

00:31:11 В браузер Opera добавили бесплатный и безлимитный VPN-клиент

00:32:17 SMS phishing attackers continue to pursue Apple users

00:33:22 iOS 'date bug' can be exploited over Wi-Fi using NTP

00:34:21 Закрыт крупный ботнет из Linux-серверов

00:36:08 Almost half of dropped USB sticks will get plugged in

00:40:19 Printers at German Universities Mysteriously Churn Out Anti-Semitic Fliers

00:40:45 How I Hacked Facebook, and Found Someone's Backdoor Script

00:42:34 2015 Google Android Security Report

Direct download: 59.mp3
Category:Technology -- posted at: 5:52pm CEST