We're sunsetting PodQuest on 2025-07-28. Thank you for your support!
Export Podcast Subscriptions
cover of episode SN 1002: Disconnected Experiences - "Nearest Neighbor" Attack, Repo Swatting, the Return of Recall

SN 1002: Disconnected Experiences - "Nearest Neighbor" Attack, Repo Swatting, the Return of Recall

2024/11/27
logo of podcast Security Now (Audio)

Security Now (Audio)
AI Deep Dive AI Chapters Transcript
People
S
Steve Gibson
网络安全专家和企业家,创立了多个影响深远的安全工具和播客。
Topics
Steve Gibson 和 Leo Laporte 讨论了中国制造的集装箱港口起重机可能存在的安全风险,包括潜在的后门。他们还分析了最近邻攻击,这种攻击利用附近建筑物中的 WiFi 网络来入侵目标组织。此外,他们还讨论了微软的“连接体验”功能,该功能会收集用户数据,并建议用户谨慎使用并考虑关闭。他们还讨论了其他安全事件,例如 D-Link VPN 路由器的严重漏洞、巴基斯坦封禁 BlueSky 社交媒体平台以及 Windows Recall 功能的回归。 Leo Laporte 主要负责与 Steve Gibson 共同主持节目,并就讨论的各个安全事件提出问题和评论。他与 Steve Gibson 一起分析了这些事件的潜在影响和应对措施。

Deep Dive

Chapters
The 'nearest neighbor' attack involves advanced persistent threat actors compromising nearby networks to gain access to a target's enterprise Wi-Fi network. The importance of logging everything to aid forensic investigations is emphasized.
  • APTs like APT28 use password spray attacks to gain credentials.
  • Attackers compromise nearby organizations to pivot to the target's network.
  • Logging everything is crucial for forensic investigations.

Shownotes Transcript

  • What's the new "nearest neighbor" attack and how do you defend against it?

  • Let's Encrypt just turned 10. What changes has it wrought?

  • Now the Coast Guard is worried about Chinese built ship-to-shore cranes.

  • Pakistan becomes the first country to block Bluesky.

  • There's a new way to get Git repos "swatted" and removed.

  • Who's to blame for Palo Alto Networks' serious new 0-day vulnerabilities?

  • If you have any of these six D-Link VPN routers, unplug them immediately!

  • It turns out that VPN apps are against Shariah Law. Who knew?

  • The Return of Windows Recall. What are we learning now?

  • How many of today's systems remain vulnerable to last year's most popular exploits?

  • We share and respond to a bunch of terrific feedback from our listeners.

  • What are Microsoft's "Connected Experience" and why might you choose to disconnect from them?

Show Notes - https://www.grc.com/sn/SN-1002-Notes.pdf)

Hosts: Steve Gibson) and Leo Laporte)

Download or subscribe to Security Now at https://twit.tv/shows/security-now).

Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit)

You can submit a question to Security Now at the GRC Feedback Page).

For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com), also the home of the best disk maintenance and recovery utility ever written Spinrite 6).

Sponsors: