Grey Hats Podcast
By Jay
Grey Hats PodcastSep 28, 2020
Episode 5 part 1
00:00:00 - 00:01:15 - Intro
00:01:15 - 00:05:25 - Cinnamon Lockscreen Bypass
00:05:25 - 00:13:15 - Sudo vuln (CVE-2021-3156)
00:13:15 - 00:23:28 - Water Treatment plant hacked
00:23:28 - 00:45:30 - Android App selling data
00:45:30 - 00:55:20 - CD Projeckt Red Hacked
00:55:20 - 01:00:50 - North Korea hackers accused of being associated with APT 38
01:00:50 - 01:07:51 - Malware on M1 Processor
01:07:51 - 01:10:50 - Unauthenticated RCE vuln in vmware esxi (CVE-2021-21972)
Episode 4 Part 2 - SolarWinds Hack
In part 2 of Episode 4 (recorded January 22 Jan 2021) we talk about the SolarWinds breach and speculate the future implications of a breach this size.
Check out Colin Hardy's video on reversing some of the malware: https://www.youtube.com/watch?v=JoMwrkijTZ8
Episode 4 Part 1 - WhatsApp and a bumbling POTUS signal a flash mob on the Capitol
As we didn't record an epsiode in December, this one went on a little longer than expected! Rather than posting one giant episode, we split it into two with part 2 to be released in a fortnight.
Join Jay, Saskia, Jose, March and Harriet as we talk about selling laptops to Russians, privacy concerns in whatsapp and say goodbye to flash (that discusion got a little heated!). We also spoke about the Pwnie award winners (including best privesc bug) and let March fanboy over M$ again.
00:00 - 03:00 - Intro
03:00 - 12:00 - Computers stolen during Capitol breach
12:00 - 19:50 - Parler data dump
19:50 - 25:00 - Catfishing Republicans on Bumble
25:00 - 40:00 - WhatsApp privacy concerns
40:00 - 44:55 - Vulnerabilites in messaging apps
44:55 - 56:30 - Flash is now end of life
56:30 - 1:10:45 - Pwnie awards and Pwnie winners
1:10:45 - 1:16:58 - Ransomware on penis cage
1:16:58 - 1:19:59 - YouTube private video leak
Intro music by Greg Linares (https://www.youtube.com/channel/UCSnN... https://twitter.com/Laughing_Mantis)
Episode 3 - Election Fraud, the Pwnie Awards and Roombas Work no More
Join Jay, Saskia, Jose, March and Harriet as we discuss electronic voting (very topical) as well as November's cyber security news including some interesting Pwnie award nominations, updates to Kali, sponsored open source software and some 1337 hacks to Police Cyber Alarm and Mobile Iron.
Oh, and we find out March looooove IBM.
Links mentioned:
Pwnie Awards
https://pwnies.com/nominations/
CrackMapExec Partnership
https://porchetta.industries/2020/11/17/And-Now-For-Something-Completely-Diffrent/
MobileIron vuln writeup
https://blog.orange.tw/2020/09/how-i-hacked-facebook-again-mobileiron-mdm-rce.html
Chealsea Manning Twitch
https://www.twitch.tv/xychelsea87
Episode 2 - Trump hacked, junk trapped, and a source code dump impacts React!
Episode 2 of the Grey Hats podcast with Jahmel AKA Jay, Saskia, Jose, Ali AKA March and Harriet AKA Chipie where we discuss the last month in cyber security news and give our thoughts on the Windows source code leak.
Links referenced:
https://medium.com/@elongl/assaultcube-rce-technical-analysis-e12dedf680e5
https://labs.f-secure.com/blog/samsung-s20-rce-via-samsung-galaxy-store-app/
https://cloudsecdocs.com/
https://www.shodan.io/search?query=windows+xp
Timestamps
0:00-1:50 - Intro
1:50-9:50 - Trump has his twitter password leaked
9:50-14:25 - US Election Privacy issues
14:25-17:50 - Github introduce free code scanning to public repos
17:50-23:00 - Smart male chastity device hacked
23:00-24:05 - CloudSecDocs released
24:05-26:50 - RCE in AssaultCube
26:50-27:50 - F-secure samsung s20 hack writeup
27:50-34:30 - Facebook bug bounty changes
34:30-37:20 - Chrome changes to URL bar
37:20-1:09:40 - Windows source code leak
1:09:40-end - Outro
Episode 1 - Ethics, Giggle and March's Goblet
This is the 1st episode of the Grey Hats podcast! Grey Hats is an infosec community based in Manchester UK. Follow us on twitter.
In this episode, we talk about handles, tiktok, and the ethics of cyber security with Jay, Saskia, Jose, Harriet (AKA Chipie), and Ali (AKA March). We hope you enjoy it and feedback can be sent to us on twitter, the Grey Hats slack or jay@manchestergreyhats.co.uk.
Thanks so much to Laughing Mantis for the theme song. The full version can be heard here