Tuesday, March 19, 2019
Purple Squad Security

Episode 51 – Fireside Chat with Chris Foulon

Chris Foulon stops by for a fireside chat to talk about breaking into Infosec.  For those unfamiliar with the fireside chat series, this is where we come in with a topic but no other real agenda.  It’s a casual...
Purple Squad Security

Episode 50 – Tabletop D&D with Tim De Block, Ed Rojas, Daniel Ebbutt, and Kyle Andrus

It’s that time again!  Yes, another Tabletop D&D episode is upon us!  This time I asked Timothy de Block from the Exploring Information Security podcast to join me, along with a few interesting characters.  Let’s just say this particular...
Purple Squad Security

Episode 49 – The Red Team Life with Curtis Brazzell

Magecart – a web-based credit card skimming kit used by various groups to grab ahold of online shoppers credit cards.  Interesting?  You bet!  On this episode of the Purple Squad Security podcast I have Yonathan Klijnsma, Head Researcher at RiskIQ, joining...
Purple Squad Security

Episode 48 – All About Magecart with Yonathan Klijnsma

Magecart – a web-based credit card skimming kit used by various groups to grab ahold of online shoppers credit cards.  Interesting?  You bet!  On this episode of the Purple Squad Security podcast I have Yonathan Klijnsma, Head Researcher at RiskIQ, joining...
Purple Squad Security

Episode 47 – Happy New Year! Show Updates and Other News

Welcome to 2019!  John goes solo in this episode and talks about his personal goals for 2019, plus some updates for the show that should make things a bit more structured and hopefully more interesting for the listeners. Some links...
Purple Squad Security

Episode 46 – Holiday Special – Storytime with Jayson E. Street

Continuing our storytime theme for the holidays, on this week’s show we have a special guest, Jayson E. Street!  For those who follow Jayson online, his hacker adventures bring him to all sorts of interesting places.  Jayson shares a...
Purple Squad Security

Episode 45.1 – Holiday Special – Storytime with Tinker – NO MUSIC!!!

Hey everyone, this is a re-release of episode 45 with Tinker, but this one is WITHOUT the background music.  I hope this makes up for the snafu in an otherwise great interview! Happy December everyone!  Whatever holiday you may be...
Purple Squad Security

Episode 45 – Holiday Special – Storytime with Tinker

Happy December everyone!  Whatever holiday you may be celebrating this season, may it be enjoyable.  I’ve decided for the month of December to treat myself, by having a bunch of people I hold in high regard to join me...
Purple Squad Security

Episode 44 – SANS Holiday Hack Challenge with Ed Skoudis

So, a very popular season is coming up shortly.  I’m not talking about Thanksgiving (for my US listeners) and I’m not talking about Christmas for my Christian listeners.  No, I’m talking about the season that all good little hackers...
Purple Squad Security

Episode 43 – Not all vulnerabilities are created equal with Tanya Janca

Vulnerability disclosure is one of those things that either brings a smile or a scowl to your face, depending on what end of the disclosure you’re on.  For some, it’s a thing of pride, and hopefully a monetary reward! ...
Purple Squad Security

Episode 42 – CyberZoology with Patrick Kelley

Defending is hard.  The adage of “an attacker only has to be right once” is a bit played out, but it does have a hint of truth in that trying to defend everything is a monumental task.  Defenders are...
Purple Squad Security

Episode 41 – Cyber Security Awareness Month with Tracy Maleeff

October is Cyber Security Awareness Month, and with that who better to help share some ideas on how to give back to the community than our own InfoSecSherpa!  Tracy Maleeff joins me to talk about Cyber Security Awareness Month,...
Purple Squad Security

Episode 40 – Tabletop D&D With Rally Security

It’s that time again!  With milestone episode 40, we have another Tabletop D&D episode for you to enjoy!  This time around we are joined by a few members of the Rally Security podcast to face some scenarios and see...
Purple Squad Security

Episode 39 – John’s OSCP Journey

Over the past few months, John has been working on obtaining his OSCP certification.  Recently he attempted and successfully passed the exam!  In this episode he goes over his journey, what he learned as well as a...
Purple Squad Security

Episode 38 – Discussing the Cyber Kill Chain with Amanda Berlin

The cyber kill chain.  For some, it’s a nice framework to help build your defenses and help during an incident.  For others, it is an over hyped and rigid list that no real attacker follows anymore.  However you view the cyber...
SC Magazine

Norwegian aluminum producer Norsk Hydro hit by an unspecified cyberattack

Norwegian aluminum producer Norsk Hydro was hit by a cyber attack which began Monday evening and escalated into the night. The Norwegian National Security Authority (NSM) declined to comment on what type of attack it was but said the extent...
SC Magazine

Glitch exposes Sprint customer data to other users

A bug has allowed some Sprint customers to see the personal data of other customers from their online accounts. The information visible includes names, cell phone numbers as well as calls made by other users and, and a Tech Crunch report cited...

6 Ways Mature DevOps Teams Are Killing It in Security

New survey shows where "elite" DevOps organizations are better able to incorporate security into application security.
The Register

Ransomware drops the Lillehammer on Norsk Hydro: Aluminium giant forced into manual mode after systems scrambled

Norway the power and metals wrangler could have seen this one coming Norwegian power and metals giant Norsk Hydro is battling an extensive ransomware infection on its computers.…

Old Tech Spills Digital Dirt on Past Owners

Researcher buys old computers, flash drives, phones and hard drives and finds only two properly wiped devices out of 85 examined.