Follow up:
- US is elevating ransomware the same level of terrorism.
Topics:
- Apple Security WWDC
- Move beyond passwords ( iCloud Keychain WebAuthN keys )
- Discover account-driven User Enrollment
- Secure login with iCloud Keychain verification codes ( domain-binding apple-totp )
- Polkit PrivEsc
- Growing abuse of Kubernetes (it’s not containers)
Paul Rant:
- Apple Bug Report blackhole
Links:
- https://www.reuters.com/technology/exclusive-us-give-ransomware-hacks-similar-priority-terrorism-official-says-2021-06-03/
- https://threatpost.com/microsoft-cryptomining-kubeflow/166777/
- https://unit42.paloaltonetworks.com/hildegard-malware-teamtnt/
Hosts:
Paul Kehrer @reaperhulk
Robert Clark @hyakuhei
Matías Brutti @MrBrutti
Post-Production:
Matias Brutti @MrBrutti
Disclaimer: The opinions and security statements on this podcast are our own and do not represent that of our respective past, current or future employers.