Jan 9, 2023 | Podcast
We’ve been seeing a lot of python related security issues of late, including the leaking of secrets. When python developer Tom Forbes of London heard that Infosys had leaked their AWS keys, he got intrigued. The key that was leaked was not just any AWS key, it...
Jan 6, 2023 | Podcast
Slack recently disclosed that it had a security incident involving unauthorised access to a subset of their code repository. They have observed suspicious activities on their GitHub code repository account, and upon investigation, discovered that a limited number of...
Jan 5, 2023 | Podcast
CircleCI recently announced that they are investigating a security incident. While they haven’t yet provided any details of the incident or their responses, they have requested two immediate actions to be taken by their customers. The first is to rotate any and all...
Jan 4, 2023 | Podcast
The Queensland University of Technology has disclosed that it had suffered a cyberattack. The University had to shut down their IT systems in response and they expect some of those systems to be disrupted for some weeks. Students who are currently enrolled will be...
Jan 3, 2023 | Podcast
Matt from down right niffy dot me recently released an article detailing how he discovered an interesting vulnerability in Google’s Home smart speaker. He discovered that you can link a google account to a smart speaker without any authentication. The vulnerability...
Jan 2, 2023 | Podcast
The popular python package, PyTorch, has been hit by a dependency confusion attack. Admins for the machine learning framework identified the attacks and determined that the window of attack is between December 25th to 30th 2022. Their recommendation for users who...
