infosec – Page 20 – Stilgherrian

22 May 2014

Talking the eBay data breach on ABC Gold Coast

ABC logo Online marketplace eBay has suffered a massive data breach. Their official statement outlines what we know so far. This conversation on ABC Gold Coast from earlier this morning was the first of several media spots I’m doing today.

As I explained to presenter Nicole Dyer, if all 150 million or so user records were stolen, this makes it one of the Top 5 biggest data breaches by volume of all time.

eBay users should change their passwords immediately, and if they use the same password anywhere else, they should change the password there too — and invest in password management software so they can start using different random, complex passwords for every online service.

Podcast: Play in new window | Download (4.9MB)

Also worth listening to is Will Ockenden’s report on ABC Radio’s AM this morning. It features security researcher Graham Cluley.

12 May 2014

Weekly Wrap 205: Productivity reigns again, bringing joy

My week of Monday 5 to Sunday 11 May 2014 was another productive one again, which is a pleasant happenstance.

Articles

No invasion of privacy law under current government: Information Commissioner, ZDNet Australia, 8 May 2014.
Dropbox drops the security notification ball, again, ZDNet Australia, 8 May 2014.

Podcasts

The resurrection of The 9pm Edict has continued to be delayed by the continuing self-satire of the Australian government and my own busy schedule. Once it had overflowed its original allocated slot in my work plan, it’s had to wait until everything more time-critical is out of the way. We’ve nearly reached that point.

Media Appearances

On Monday I spoke about digital privacy on ABC 891 Adelaide.
Also on Monday, I spoke about internet security on 2SER’s “The Wire”.
On Tuesday I spoke about digital metadata on 3RRR’s “Spoke”.
Also on Tuesday, I spoke about mobile app privacy on radio 2MFM.
On Wednesday I spoke about online theft on 1395 FIVEaa Adelaide.

5at5

Only two this week. But why don’t you subscribe to 5at5, and then I don’t need to keep telling you about it.

5at5 number 46, 8 May 2013.
5at5 number 47, 9 May 2013.

Corporate Largesse

On Monday I covered the iappANZ Gilbert + Tobin Privacy Breakfast Debate, held at the offices of law firm Gilbert + Tobin. Breakfast was provided.
On Wednesday I went to the launch of new research on security and the Internet of Things by AVG Technologies. This was done over lunch at the Bentley Restaurant & Bar at Sydney’s Radisson Blu Hotel. I had the pork cheek with garlic and yoghurt purÃ©e, radicchio and jamon, and the Moreton Bay bugs and snapper in seafood broth plus a side of vegetables.
On Friday night I went to the Optus IT Journalism Awards (the “Lizzies”) at Luna Park, where there was of course food and much wine. The sponsors were Optus, Watterson Marketing Communication, Epson and NEC Australia.
On Saturday I began an expedition to the United States to cover NetSuite’s SuiteWorld conference in San Jose. They’re covering flights, transport, accommodation, and quite a bit of food and drink, as well as various extra-curricular activities. I’ll provide the full list in the next Weekly Wrap once it’s all over.

The Week Ahead

As I write this, it’s already Monday in Australia, but it’s still Sunday morning here in San Francisco. This afternoon NetSuite is taking us on a tour of the Sonoma Valley, visiting the Cline and Gloria Ferrer wineries, then returning to San Francisco for pre-dinner drinks and “a special surprise guest” at Cafe Tosca in North Beach and dinner at the Americano Restaurant.

On Monday we make the journey to San Jose, with a meet-and-and-greet cocktail party in the evening. SuiteWorld proper then runs Tuesday to Thursday, with the evening events including dinner at the Thomas Fogarty Winery on Tuesday and the conference party on Wednesday.

On Friday I plan to catch the Caltrain back to San Francisco, recording part of the next episode of The 9pm Edict en route. My schedule is then open through to Sunday night, when I catch a late evening flight back to Sydney.

[Photo: Touchdown San Francisco, the view from United Airlines flight UA870 as it was about to touch down at San Francisco International Airport (SFO) on Saturday 10 May 2014.]

12 May 2014

Talking online theft on 1395 FIVEaa Adelaide

Tweeting leads to media coverage once more. I wondered aloud why a $50,000 theft from a real estate agency in Broome, Western Australia, had gone unreported when that amount stolen from a physical shop or pub would have been major news.

Here’s part of how it was reported in Real Estate Business Online:

WA Consumer Protection has confirmed the hackers stole $50,000 from a Broome real estate agency after they hacked into the companyâ€™s online banking system in February.

Mandy Reed, general manager at Hutchinson Real Estate, told Real Estate Business the cyber fraudsters most likely accessed the company bank account after a compromised email allowed malicious software (or malware) to be installed.

My tweets caught the eye of Will Goodings at radio 1395 FIVEaa Adelaide, and we spoke about it live on Wednesday 7 May. Here’s the full conversation.

Podcast: Play in new window | Download (5.2MB)

10 May 2014

Talking internet security on 2SER’s “The Wire”

The Wire logo Last week I recorded an interview on the state of internet security with The Wire, the current affairs program for Australia’s community radio network produced by 2SER in Sydney. It went to air on Monday night, 5 May.

This year has seen some major internet security breaches — from Heartbleed to iOS. But between these headline grabbing flaws there are numerous smaller bugs that pop up every day. As our devices and services become ever more ubiquitous, and flaws continue to popping to, we take a look at internet security.

I spoke with journalist Josh Nicholas for maybe 15 minutes, so this 4-minute edit is very much a condensed version. However we did manage to cover such subtleties as Apple’s secretive approach to security vulnerabilities, Heartbleed, bug bounties, and calls for better disclosure of vulnerabilities — that last link being to a story I wrote this week.

Podcast: Play in new window | Download (2.7MB)

The audio is Â©2014 2SER-FM 107.3. It’s also available at The Wire program website — that’s exactly the same as what you can hear here, it’s just that the audio file here has my branding — and you can also listen to the entire episode.

08 May 201408 May 2014

Talking digital privacy on ABC 891 Adelaide

ABC logo This is Privacy Awareness Week in Australia, so most of the media I’ve been involved in making is focused on privacy — although of course that’s a common topic for me in any event.

First cab off the rank — or do these days we day “first Uber off the app”? — was ABC 891 Adelaide, a radio station I worked at 1985-91, and which I still have links to.

This quick interview with drive presenter Michael Smyth took place on Monday 5 May 2014.

Podcast: Play in new window | Download (2.3MB)

04 May 201405 May 2014

Weekly Wrap 204: Libertarian troll beach abortion, yeah?

My week of Monday 28 April to Sunday 4 May 2014 was yet another solid performer — which, to be honest, surprises me. But here we are. Praise be.

The entire week was spent at Wentworth Falls, apart from a day trip to Sydney — but despite the rapidly dropping temperatures as winter starts to bite, and despite Mistress Insomnia’s continuing persistent calls for attention, my mood holds up.

Articles

Enjoy your Ubergasm, but don’t expect respect in the morning, ZDNet Australia, 30 April 2014. Needless to say, this latest contribution to my battle against the mindless fandom of Silicon Valley’s libertarian arseholes met with a mixed reception.

Podcasts

The big chunky piece of joy for me this week was resurrecting The 9pm Edict. The first episode, “The 9pm Shire” should have been appearing tonight — and the photo at the head of this post was taken during the recording expedition — but for reasons already explained that’s been postponed until this coming Tuesday 6 May or thereabouts.

Media Appearances

On Tuesday I was interviewed by The Wire, the daily current affairs program of Australia’s community radio stations, about internet security — but that’s being held over to the coming week.

5at5

Four out of five this week. But why don’t you subscribe to 5at5, and then I don’t need to keep telling you about it.

5at5 number 42, 28 April 2013.
5at5 number 43, 30 April 2013.
5at5 number 44, 1 May 2013.
5at5 number 45, 2 May 2013.

Corporate Largesse

On Thursday I had coffee with someone from LivePerson, a company that provides technology for online customer service. Their PR company paid for the coffee.
Also on Thursday I went to Good Technology’s Sydney Mobile Summit, all about the state of the art of mobile security — or at least as framed by their products and PR messaging. It was held at the Sheraton on the park, and lunch and afternoon tea was provided.

The Week Ahead

Next week is already completely packed out, and it also sees me heading to the United States yet again.

On Monday I’ll be heading to Sydney to complete my recordings at Cronulla and deal with a few errands.

I’ll be staying in Sydney overnight, because on Tuesday I’m going to a breakfast briefing that starts at 0730 — this is how businesses treat their staff, apparently — as well as doing a couple of interviews. I’ll head back to the Blue Mountains on Tuesday night.

On Wednesday, it’s a day trip to Sydney for a lunchtime briefing by AVG Technologies on some research they’ve done into the security of the Internet of Things (IoT). “There isn’t any,” I assume to be the answer, but with additional wine.

Thursday is a writing day. Then on Friday it’s back to Sydney again for a bunch of errands and then the Optus IT Journalism Awards, in which I am a finalist. Then I stay in Sydney overnight before flying to San Francisco on Saturday.

On Sunday I’m visiting some wineries in the Sonoma region, thanks to NetSuite, who are also paying for that US trip. But I’ll write more about that in due course.

[Photo: Fisherman at North Cronulla Beach, photographed shortly before sunset on Saturday 3 May 2014.]