Mac users of the Zoom video conferencing app are warned their webcams could be hijacked, security firms warn of how scammers are deepfaking audio to steal from businesses, and our guest owns up to the role he played in an Iranian cyberattack against US organisations.
All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by cybersecurity veterans Graham Cluley and Carole Theriault, joined this week by Charl van der Walt.
Smashing Security #136: 'Oops, we created Iran's hacking exploit'
Listen on Apple Podcasts | Spotify | Pocket Casts | Other... | RSS
More episodes...
Hosts:
Graham Cluley:
Carole Theriault:
Guest:
Charl van der Walt – @charlvdwalt
Show notes:
- Zoom Zero Day: 4+ Million Webcams & maybe an RCE? Just get them to visit your website!
- Zoom Mac flaw allows webcams to be hijacked – because they wanted to save you a click — Graham Cluley.
- USCYBERCOM Malware Alert on Twitter.
- CISA Statement on Iranian Cybersecurity Threats — Department of Homeland Security.
- Patch for Microsoft Outlook security vulnerability.
- U.S. Military Warns Outlook Users To Update Immediately Over Hack Linked To Iran — Forbes.
- U.S. Cyber Command Shares Malware via VirusTotal — SecurityWeek.
- Steve Buscemi Swapped On Jennifer Lawrence — YouTube.
- Fake voices 'help cyber-crooks steal cash' — BBC News.
- New AI deepfake app creates nude images of women in seconds — The Verge.
- Horrifying DeepNude App Undresses a Photo of Any Woman With a Single Click — Motherboard.
- Learn how to spot deepfake videos — Slate.
- 507 Mechanical Movements.
- ‘Born a Crime,’ Trevor Noah’s Raw Account of Life Under Apartheid — The New York Times.
- The global tree restoration potential — Science.
- How to erase 100 years of carbon emissions? Plant trees—lots of them — National Geographic.
- Smashing Security merchandise (t-shirts, mugs, stickers and stuff)
- Support us on Patreon!
- Support us on Patreon!
LastPass Enterprise makes password security effortless for your organization.
LastPass Enterprise simplifies password management for companies of every size, with the right tools to secure your business with centralized control of employee passwords and apps.
But, LastPass isn’t just for enterprises, it’s an equally great solution for business teams, families and single users.
Go to lastpass.com/smashing to see why LastPass is the trusted enterprise password manager of over 33 thousand businesses.
For anyone who is baffled by threat intelligence, and the benefits that it can bring to your company, this is the book for you.
“The Threat Intelligence Handbook” is an easy-to-read guide will help you understand why threat intelligence is an essential part of every organisation’s defence against the latest cyber attacks.
Download it for free at www.smashingsecurity.com/intelligence now.
Follow the show:
Follow the show on Bluesky at @smashingsecurity.com, on the Smashing Security subreddit, or visit our website for more episodes.
Remember: Subscribe on Apple Podcasts, Spotify, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!
Warning: This podcast may contain nuts, adult themes, and rude language.
Great episode!
I was expecting Charl or Graham to mention how Apple uses deep fake technology in iOS 13 to redirect eyes to the camera when on FaceTime calls:
https://observer.com/2019/07/facetime-eye-contact-ios-13-update/