- Shared Security Podcast
- Posts
- End of year email
End of year email
🎉 Top 10 Episodes of 2022!
Dear valued listeners,
As we come to the end of another year, I wanted to take a moment to thank you for your support of The Shared Security Show. Your continued listening and engagement with the podcast means the world to me, and I am grateful for the opportunity to share my thoughts and insights on the latest in cybersecurity and privacy with you.
As we look back on the past year, I wanted to share with you the top 10 episodes of the podcast that received the most attention and engagement. I hope you will enjoy revisiting these popular episodes, or maybe even discovering them for the first time!
Thank you again for your support and for being a part of The Shared Security Show community. I look forward to continuing to bring you valuable content in the new year.
Best regards and Happy New Year!
Tom Eston, Founder and Co-Host
Can I ask a favor? Can you leave us a rating and review?
Reviews help us reach a larger audience and we really appreciate your feedback! We're using a service called Rate This Podcast which makes it quick and easy to leave us a rating or review:
Top 10 Episodes of 2022
Google Android vs Apple iOSWhich is Better for Privacy and Cybersecurity?
This week we battle it out between the two mobile tech giants, Google Android vs Apple iOS, and discuss which one is better for your privacy and cybersecurity. Topics include: app stores and OS updates, ad tracking, and native text messaging. All this plus how Apple and Facebook fell for a massive email scam.
Listen to this episode on our website or subscribe on your favorite podcast app!
LAPSUS$ Hacks OktaBrowser-in-the Browser Phishing AttackPopular Software Package Updated to Wipe Russian Systems
The LAPSUS$ hacking group has claimed to have hacked both Microsoft and Okta, details about a novel phishing technique called a browser-in-the-browser (BitB) attack, and how a popular software package that has 1.1 million weekly downloads released a new tampered version to condemn Russia’s invasion of Ukraine by wiping arbitrary file contents.
Listen to this episode on our website or subscribe on your favorite podcast app!
Multi-Factor Authentication Fatigue AttackSignal Account Twilio HackFacebook and Instagram In-App Browser
A Cisco employee was compromised by a ransomware gang using a technique called multi-factor authentication fatigue, an attack on the Signal messenger app’s SMS service Twilio potentially disclosed the phone numbers of 1,900 users, and details on how Facebook and Instagram track what you click on including your web browsing history by using their in-app browser.
Listen to this episode on our
or
!
Russia Gets HackedMicrosoft 365 Credential StuffingMcDonald’s Ice Cream Machine Hackers
This week we discuss some of the more interesting hacks of Russian assets, technology, and more. Scott discusses recent credential stuffing attacks on Microsoft 365 accounts, and a fascinating story about ice cream machine “hackers” that are suing McDonald’s for $900 million dollars in damages.
Listen to this episode on our
or
!
Ukraine Invasion HacktivistsInsta360 ONE X2 VulnerabilitiesGoogle Location Tracking Lawsuits
Hacktivists have hacked a Belarus rail system in an attempt to stop Russian military buildup, someone disclosed a slew of vulnerabilities in the popular Insta360 ONE X2 camera, and Google gets accused of “deceptive” location tracking in multiple lawsuits.
Listen to this episode on our
or
!
DuckDuckGo Browser Allows Microsoft TrackersStolen Verizon Employee DatabaseAttacking Powered Off iPhones
The DuckDuckGo mobile browser allows Microsoft trackers due to an agreement in their syndicated search content contract, a database of contact details for hundreds of Verizon employees was compromised after an employee was social engineered to give the attacker remote access to their corporate computer, and details about new research that shows that even when an iPhone running iOS 15 is turned off, its really not off and certain wireless features allow the phone to be located and possibly attacked.
Listen to this episode on our
or
!
LastPass Master PasswordsNew Cars and Your PrivacyAmazon Alexa Lethal Challenge
LastPass users received emails about their master passwords being compromised, details about the privacy policies of new cars, and a story about an Amazon Echo that proposed a lethal challenge to a ten-year-old girl.
Listen to this episode on our
or
!
The State of Application Security with Tanya Janca
Tanya Janca, founder of the We Hack Purple Academy, Director of Developer Relations and Community at Bright, and author of “Alice & Bob Learn Application Security” joins us to discuss the current state and future of Application Security. In this episode we discuss what Tanya’s been up to, what’s changed in AppSec over the last several years, have organizations actually moved to DevSecOps, and what the next big thing in AppSec might be.
Listen to this episode on our
or
!
Hacking Ham Radio: Why It's Still Relevant and How to Get Started
This week we discuss hacking ham radio with special guests Caitlin Johanson, Rick Osgood, and Larry Pesce. In this episode you’ll learn what ham radio is, why its still relevant, why would attackers want to hack ham radio, all about packet radio and APRS (Automatic Packet Reporting System), and what equipment and licensing you need to get started in ham radio.
Listen to this episode on our
or
!
Thank You to Our Sponsors!
Visit slnt.com to check out SLNT’s amazing line of Faraday bags and other products built to protect your privacy. As a listener of this podcast you receive 10% off your order at checkout using discount code “sharedsecurity”
To find out how “gamification” of security awareness training can reduce cyber risks related to phishing and social engineering, and to get a free trial of Click Armor’s gamified awareness training platform, visit: https://clickarmor.ca/sharedsecurity
