{"type":"rich","version":"1.0","provider_name":"Transistor","provider_url":"https://transistor.fm","author_name":"Talkin' Bout [Infosec] News","title":"Talkin’ About Infosec News – 6/27/2022","html":"<iframe width=\"100%\" height=\"180\" frameborder=\"no\" scrolling=\"no\" seamless src=\"https://share.transistor.fm/e/5a1dfabe\"></iframe>","width":"100%","height":180,"duration":3558,"description":"ORIGINALLY AIRED ON JUNE 27, 2022\n\n\n\nArticles discussed in this episode:\n\n\n\n02:13 – Story # 1: The #1 Period Tracker on the App Store Will Hand Over Data Without a Warrant – https://www.vice.com/en/article/y3pgvg/the-1-period-tracker-on-the-app-store-will-hand-over-data-without-a-warrant \n\n\n\n20:56 – Story # 2: LockBit 3.0 introduces the first ransomware bug bounty program – https://www.bleepingcomputer.com/news/security/lockbit-30-introduces-the-first-ransomware-bug-bounty-program/ \n\n\n\n25:44 – Story # 3: Former AWS engineer convicted over hack that cost Capital One $270m – https://techmonitor.ai/technology/cybersecurity/capital-one-hack-aws-paige-thompson \n\n\n\n28:52 – Story # 4: CISA experts propose ‘311’ cybersecurity emergency call line for small businesses – https://therecord.media/cisa-experts-propose-311-cybersecurity-emergency-call-line-for-small-businesses/ \n\n\n\n38:25 – Story # 5: Clever phishing method bypasses MFA using Microsoft WebView2 apps – https://www.bleepingcomputer.com/news/security/clever-phishing-method-bypasses-mfa-using-microsoft-webview2-apps/ \n\n\n\n40:00 – Story # 5b: mrd0x/WebView2-Cookie-Stealer – https://github.com/mrd0x/WebView2-Cookie-Stealer \n\n\n\n43:28 – Story # 6: Game on! The 2022 Google CTF is here – https://security.googleblog.com/2022/06/game-on-2022-google-ctf-is-here.html \n\n\n\n46:07 – Story # 7: Critical PHP flaw exposes QNAP NAS devices to RCE attacks – https://www.bleepingcomputer.com/news/security/critical-php-flaw-exposes-qnap-nas-devices-to-rce-attacks/ \n\n\n\n50:03 – Story # 8: Japanese man loses USB stick with entire city’s personal details – https://www.bbc.com/news/world-asia-61921222 \n\n\n\n54:51 – Story # 9: A Microsoft 365 feature can ransom files on SharePoint and OneDriveCould – https://securityaffairs.co/wordpress/132353/hacking/microsoft-365-feature-ransomware.html\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\nWe are self-publishing free Infosec Zines called PROMPT#.","thumbnail_url":"https://img.transistorcdn.com/WPYM9pq_SRUcywHv9tdgpsGLyLx04W2rDmzktvAcD4Y/rs:fill:0:0:1/w:400/h:400/q:60/mb:500000/aHR0cHM6Ly9pbWct/dXBsb2FkLXByb2R1/Y3Rpb24udHJhbnNp/c3Rvci5mbS8xZTA1/ZWZhNDcxZGM4ZTFj/ZGJhMTMwNmYzMmJj/ZjBkNi5wbmc.webp","thumbnail_width":300,"thumbnail_height":300}