January 5, 2022
RadioPublic Podcasts
Join our community!!
Subscribe to the Insecurity Brief podcast now on every platform we can find
Follow us on Twitter
@HoneyBeez0x
@trip_elix
Links
Our Website:
Youtube:
iTunes:
Spotify:
Trip’s books
https://www.tripelix.com/merch
Honey’s books
https://beedefense.net
#Android #google #GiftHorse #Malware #Tojan #UEFI #Chrome
The expiration of a key digital encryption service on Thursday sent major tech companies nationwide scrambling to deal with internet outages that affected millions of online users.
https://news.yahoo.com/internet-goes-down-millions-tech-021400230.html
The main determining factor for whether a platform can validate Let’s Encrypt certificates is whether that platform trusts ISRG’s “ISRG Root X1” certificate. Prior to September 2021, some platforms could validate our certificates even though they don’t include ISRG Root X1, because they trusted IdenTrust’s “DST Root CA X3” certificate. From October 2021 onwards, only those platforms that trust ISRG Root X1 will validate Let’s Encrypt certificates (with the exception of Android).
Organizations using VMware’s vCenter Server that haven’t yet applied a patch for a recently disclosed arbitrary file upload vulnerability in the management utility (CVE-2021-22005) are at heightened risk of compromise.
Google Chrome has issued emergency updates for two zero-day flaws that attackers are exploiting, the second pair for the browser in a month.
Honey Beez is a retired computer hacker, chess addict, author, and mother. Honey is an American and a New Yorker. She has written several Children’s books and chess books as well as creating an American chess opening called The Bee Defense.
Trip Elix is an author, podcaster and video personality Over the last 30 years, he has worked as a security analyst and privately as a consultant, investigator, forensic technician and a skip tracer. He is the author of three books and gives talks on security and privacy.
Coyright