SSCC 84 - Cookie-gate, laptop security advice, Stratfor malicious emails and Facebook hacker advice

Filed Under: Apple, Apple Safari, Data loss, Featured, Google, Law & order, Malware, Podcast, Privacy

Chet Chat logoThis week's Chet Chat features Paul Ducklin in the Chet Chat studio in Vancouver. Paul was kind enough to stop off for a visit en route to the RSA Conference 2012 in San Francisco.

Not only was Paul in studio, but he decided to pull a switch-a-roo and interview *me* about the week's security news.

We started out discussing a topic that I have been quite passionate about, the "cookie-gate" incident involving Google and other advertising companies placing cookies on people's computers who surf the web using Safari by exploiting a security flaw in Safari's privacy settings.

We also talked a bit about the recent guidance issued to the US House Intelligence Committee on how to keep information secure when traveling abroad. While the advice given was specifically for members of the committee who are traveling to China and Russia, it is solid advice for travelers in both the public and private sector.

There were reports this week that people who had their email addresses disclosed in the Stratfor breach around the new year were sent emails containing malicious email attachments. Paul pointed out that this goes to show that no mater what type of data loss incident results in your private information being leaked, it always puts you at a greater risk of being compromised.

We also discussed the bizarre comment made by the judge who sentenced the supposedly ethical Facebook hacker in the UK earlier this week. Why hacking Facebook is somehow a greater crime than any breaking into any other server on the internet is beyond me.

(23 February 2012, duration 15:33 minutes, size 11.2 MBytes)

You can also download this podcast directly in MP3 format: Sophos Security Chet Chat 84, subscribe on iTunes or our RSS feed. You can see all of the Sophos Podcasts by visiting our archive.

, , , , , , , , ,

You might like

One Response to SSCC 84 - Cookie-gate, laptop security advice, Stratfor malicious emails and Facebook hacker advice

  1. Clim · 904 days ago

    >>Why hacking Facebook is somehow a greater crime than any
    >>breaking into any other server on the internet
    The point is a harm that act does. Crime is crime, that is true. But if you hack Facebook that exposes much more users than if you hack a site with 300 visitors/month audience. Here in Russia for example if you exceed speed limit not over 10 km/h - there is no punishment, hence, it's almost not a crime at all, people think, but if over 60 km/h, it's a serious violation and you can lose you drive license. Violation is the same. I think, it's ok for judge to say that "What were you thinking about hacking facebook?! This is FACEBOOK! Not a scrubby site. Have you been thinking of consequences? How many people involved here!"

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

About the author

Chester Wisniewski is a Senior Security Advisor at Sophos Canada. He provides advice and insight into the latest threats for security and IT professionals with the goal of providing clear guidance on complex topics. You can follow Chester on Twitter as @chetwisniewski, on App.net as Chester, Chester Wisniewski on Google Plus or send him an email at chesterw@sophos.com.