Authentication Attacks, US Government Domains, and New Cyber Incident Disclosure Guidelines
Description
This week on Hacker And The Fed what authentication attacks might look like in a phishing resistant future, the SEC now requires companies to disclose cyber attacks, there are many more US government domains in the .com world than you might think, and other news stories from this week in cyber security.
Links from the episode:
What might authentication attacks look like in a phishing-resistant future?
https://blog.talosintelligence.com/what-might-authentication-attacks-look-like-in-a-phishing-resistant-future/
The Messaging Layer Security (MLS) Protocol
https://datatracker.ietf.org/doc/html/rfc9420
List of public government managed domains that exist outside of the top-level .gov and .mil domains
https://github.com/GSA/govt-urls/blob/main/1_govt_urls_full.csv
Top level domain operator wants out of the business
https://domainnamewire.com/2023/07/26/top-level-domain-operator-wants-out-of-the-business/
Network giants unite to fight security risks
https://www.networkworld.com/article/3703233/network-giants-unite-to-fight-security-risks.html
Cybersecurity Agencies Warn Against IDOR Bugs Exploited for Data Breaches
https://thehackernews.com/2023/07/cybersecurity-agencies-warn-against.html
Norwegian government IT systems hacked using zero-day flaw
https://www.bleepingcomputer.com/news/security/norwegian-government-it-systems-hacked-using-zero-day-flaw/
https://www.dss.dep.no/aktuelle-saker/departementer-utsatt-for-dataangrep/
https://www.wsj.com/articles/critical-infrastructure-companies-warned-to-watch-for-ongoing-cyberattack-76508d83
Satellites Are Rife With Basic Security Flaws
https://www.wired.com/story/satellites-basic-security-flaws/
Support our sponsors:
Go to hellofresh.com/50hatf code 50hatf for 50% off plus free shipping
Get your Hacker and the Fed merchandise at hackerandthefed.com
Get your Hacker and the Fed merchandise at hackerandthefed.com
On this episode of Hacker And The Fed we interview Special Agent Aron Mann with Homeland Security Investigations (HSI) Cyber Crime Center about their cyber role and career opportunities. We break down the Colonial Pipeline hack, how the dark web is intensifying the insider threat, and dig into...
Published 01/31/24
This week on Hacker And The Fed we interview Greg Van Houten of Haynes Boone and policyholderplaybook.com, a seasoned civil litigator who focuses on insurance recovery. We talk to Greg about the SEC's new cybersecurity disclosure rules, which went into effect this month. We also discuss a massive...
Published 12/21/23