Last week was a good one. Here’s some things I’ve found. I’m dumping them here for future reference.
Security Weekly has some great content on YouTube and on its own wiki. I’d highly recommend this as a source for information security professionals and anyone interested in computer security. The shows are generally hosted by Paul Asadoorian
Apple’s top secret iBoot firmware source code ended up on Github this week. According to The Register, “the source was swiftly taken down following a DMCA complaint by Apple, which means the code must be legit or else Cupertino would have no grounds to strip it from the website. However, at least one clone of the software blueprints has remerged on GitHub, meaning you can find it if you look hard enough.”
Consumer Reports found that millions of smart TVs are vulnerable to hacks via rudimentary security flaws. Consumer Reports “found that a relatively unsophisticated hacker could change channels, play offensive content, or crank up the volume, which might be deeply unsettling to someone who didn’t understand what was happening. This could be done over the web, from thousands of miles away. (These vulnerabilities would not allow a hacker to spy on the user or steal information.)”
Some of the easiest ways to protect yourself from Samsung TV vulnerabilities include:
- avoid using Samsung’s remote app
- completely disable the Wi-Fi in the TV and connect a separate streaming device
Michael Bazzell has some great content about Open Source Intelligence Techniques and in fact has authored a book by the same name. He also hosts Computer Crime Info website and hosts a variety of training materials related to cyber-security and online privacy.
Cert.org has some great material related to Cyber Risk and Resilience Management, Incident Management and Vulnerability Analysis just to name a few of the work areas.
ClamAV is an open source anti-virus application that runs from the command line. Wikipedia describes ClamAV as “a free, cross-platform and open-source antivirus software toolkit able to detect many types of malicious software, including viruses. One of its main uses is on mail servers as a server-side email virus scanner. The application was developed for Unix and has third party versions available for AIX, BSD, HP-UX, Linux, macOS, OpenVMS, OSF (Tru64) and Solaris. As of version 0.97.5, ClamAV builds and runs on Microsoft Windows. Both ClamAV and its updates are made available free of charge.”
For anyone that has problems related to smartphone and device addiction there may be a cure. Try browsing to the accessibility options for your device and turning off the colour. This has been reported by a number of people to improve their productivity and alleviate creative block. As a creative myself I find that removing colours when using devices enhances my experience in the “real world” AKA the world outside devices. In fact there’s a website dedicated to “going gray” here. I can definitely say that as a photographer, going gray has made a huge difference as I can now find more photo opportunities. I’m considering a focus on black and white photography exclusively as that was my main draw to enter the world of photography back in 1989.
And finally don’t forget Malwarebytes which also has a Mac version to protect your computer from vulnerabilities.