-
Listen Now
EPISODE 368
Broadcast Date:
March 13, 20249 minutes
Podcast Mar 13, 2024Root Causes 368: CRYSTALS-Kyber Is Now ML-KEM
CRYSTALS-Kyber now has the new official name of Module Lattice-based Key Encryption Module, or ML-KEM. We give an update on the NIST round 3 winners.
-
Listen Now
EPISODE 367
Broadcast Date:
March 7, 20248 minutes
Podcast Mar 07, 2024Root Causes 367: Did an IoT Toothbrush Botnet Perform DDoS Attacks?
A story circulated earlier this year about a botnet composed of millions of IoT toothbrushes, which later was debunked. We tell you the whole tale.
-
Listen Now
EPISODE 366
Broadcast Date:
March 4, 202427 minutes
Podcast Mar 04, 2024Root Causes 366: What Is eIDAS?
eIDAS 2.0 has been making headlines recently with its proposed expansion to the European digital identity ecosystem. What is eIDAS, and why does it exist?
-
Listen Now
EPISODE 365
Broadcast Date:
February 26, 202414 minutes
Podcast Feb 26, 2024Root Causes 365: What Is Subdomain Hijacking?
In this episode we explain subdomain hijacking, including dangling subdomains and how they can constitute vulnerabilities.
-
Listen Now
EPISODE 364
Broadcast Date:
February 22, 20249 minutes
Podcast Feb 22, 2024Root Causes 364: Video Conference Deepfake Enables $25 Million Theft
Deepfakes continue to show themselves as part of the criminal toolkit. A recent deepfake spear phish enabled a $25 million Business Email Compromise (BEC).
-
Listen Now
EPISODE 363
Broadcast Date:
February 19, 20248 minutes
Podcast Feb 19, 2024Root Causes 363: Defending Yourself Against Use of Stolen Priveleges
We discuss the steps enterprises can take to protect themselves against malicious use of stolen access credentials.
-
Listen Now
EPISODE 362
Broadcast Date:
February 13, 202410 minutes
Podcast Feb 13, 2024Root Causes 362: When You're Attacked by a State Actor
In this episode we share the details of a recent nation state actor attack on Microsoft and some of the lessons learned.
-
Listen Now
EPISODE 361
Broadcast Date:
February 9, 202437 minutes
Podcast Feb 09, 2024Root Causes 361: The Premise of on Premise
Do on-premise systems give system administrators greater levels of control and is that better for security or other reasons?
-
Listen Now
EPISODE 360
Broadcast Date:
February 6, 202412 minutes
Podcast Feb 06, 2024Root Causes 360: Joe Biden Deepfake Plays in New Hampshire Primary
A deepfake of Joe Biden's voice made an appearance in robocalls leading up to the New Hampshire primary. We discuss this development and its implications.
-
Listen Now
EPISODE 359
Broadcast Date:
February 2, 202416 minutes
Podcast Feb 02, 2024Root Causes 359: 90-day SSL Won't Affect Organization Validation
With 90-day maximum term is coming for SSL certificates, we explain why we do not expect a reduction in the reuse period for organization validation.
-
Listen Now
EPISODE 358
Broadcast Date:
January 30, 202433 minutes
Podcast Jan 30, 2024Root Causes 358: Security Questionnaire Sins
We present a catalog of "security questionnaire sins," avoidable problems and errors that occur in the security questionnaires enterprises send to vendors.
-
Listen Now
EPISODE 357
Broadcast Date:
January 26, 202411 minutes
Podcast Jan 26, 2024Root Causes 357: Signed Digital Photographs
Three major camera manufacturers have joined to create a standard for signed digital images from their cameras.