Episode 0x119 (Hebdo) 08 septembre 2019
Premier épisode de septembre 2019

Premier épisode de septembre 2019

Préambule

Shameless plug

• Prochaines activités
  • 26 septembre 2019 - QuebecSec - Sujet à déterminer
  • 7-9 octobre 2019 - ISACA-Quebec - Congrès international sur les opportunités et les défis des technologies émergentes
  • 1-2 novembre 2019 - Hackfest - Hackfest Upsidedown edition
  • 20 avril 2020 - Québec Numérique - SéQCure

Shownotes and Links

• How Twitter CEO Jack Dorsey’s Account Was Hacked
• Twitter disables SMS-to-tweet feature after its CEO got hacked last week
• Real-ID data surge raises real dangers
• DoD unveils new cybersecurity certification model for contractors
• Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations
• Cybersecurity Maturity Model Certification
• Ransomware Attacks Are Testing Resolve of Cities Across America
• While one Texas county shook off ransomware, small cities took full punch
• Texas Towns Recover, but Local Governments Have Little Hope for
• Contractors have questions about DOD’s cyber requirements
• When Ransomware Cripples a City, Who’s to Blame? This I.T. Chief Is
• Rockville Center School District pays $88,000 ransom
• Eurofins Scientific: Cyber-attack leads to backlog of 20,000 forensic samples
• UK Police Investigations Still Affected by Ransomware Attack
• Rash of ransomware continues with 13 new victims—most of them schools
• Ransomware ‘halts everything’ in Connecticut school district
• A very deep dive into iOS Exploit chains found in the wild
• A message about iOS security
• Android PDF app with just 100m downloads caught sneaking malware into mobes
• AWS to scan for misconfigurations
• Women in Security

• [Applying for Internships as a Woman in Tech

  Findings from a Survey of GWC-Affiliated Women](http://girlswhocode.com/wp-content/uploads/2019/08/GWC_Advocacy_InternshipApplicationExperiences_PDF_z6.pdf)

• For Young Female Coders, Internship Interviews Can be Toxic
• Patel v. Facebook: Federal Appeals Court Says Consumers Can Sue Facebook for Facial Recognition
• Proposal to Make HTPPS Certificate Expire Yearly Back on the Table
• Why the United States needs more cybersecurity experts — badly
• Why blockchain-based voting could threaten democracy
• New Weaknesses Found in WPA3
• An update on disabling VBScript in Internet Explorer 11
• Google Project Zero: 95.8% of all bug reports are fixed before deadline expires
• Newly stringent FAA tests spur a fundamental software redesign of Boeing’s 737 MAX flight controls
• Chances of destructive BlueKeep exploit rise with new explainer posted online
• What You Should Know About the Equifax Data Breach Settlement
• Ex-Equifax CIO Gets 4-Month Prison Term for Insider Trading
• Kazakhstan government is now intercepting all HTTPS traffic
• N.S.A. Contractor Who Hoarded Secrets at Home Is Sentenced to Nine Years in Prison
• The Road to Zero Trust (Security)
• Defense Innovation Board wants to help DOD understand zero trust

Crew

• Nicolas-Loïc Fortin

Crédits

• Montage audio par Intrasecure inc
• Music Twin Cobra “Blade Pitch” par Sir_NutS via OverClocked ReMix
• Locaux réels par Intrasecure inc