Just Andy and Joseph this week, but we hit some fairly hefty topics, particularly the breaches that seem to keep springing up every day lately.
First, Derek Newton has discovered a very interesting flaw in Dropbox’s host authentication.
http://dereknewton.com/2011/04/dropbox-authentication-static-host-ids/
Then, we discussed the breaches of the week: Barracuda, Hartford, and US Airways.
http://www.theregister.co.uk/2011/04/11/barracuda_networks_attack/
https://www.threatpost.com/en_us/blogs/hartford-hacked-040711
https://www.threatpost.com/en_us/blogs/insider-allegedly-leaked-data-belonging-3000-us-airways-pilots-041111
And in the “too close to home for comfort” category, we finished up with the Texas Comptroller breach:
http://www.statesman.com/blogs/content/shared-gen/blogs/austin/politics/entries/2011/04/11/comptroller_personal_id_inform.html
http://blogs.chron.com/texaspolitics/archives/2011/04/personal_inform.html
As always, you can find the podcast here: http://sfspodcast.libsyn.com/rss
And if you have any feedback, drop us a comment or find us at @SFSPodcast on twitter.
Hi Guys,
For the past two weeks I have listened to all of the pod casts that you recorded and I have really enjoyed them all. I am someone who is trying to break into the security field and I have found the podcasts to be very informative, humorous and a great way for me to pass the time at work and learn new things.