An AI that can determine sexual orientation, a store that takes personal info for purchases and the horrible no good very bad Equifax breach.
With Tom Merritt, Roger Chang, Shannon Morse and Len Peralta.
Using a Screen Reader? Click here
Multiple versions (ogg, video etc.) from Archive.org.
Please SUBSCRIBE HERE.
Follow us on Soundcloud.
A special thanks to all our supporters–without you, none of this would be possible.
If you are willing to support the show or give as little as 5 cents a day on Patreon. Thank you!
Big thanks to Dan Lueders for the headlines music and Martin Bell for the opening theme!
Big thanks to Mustafa A. from thepolarcat.com for the logo!
Thanks to our mods, Kylde, Jack_Shid, KAPT_Kipper, and scottierowland on the subreddit
Show Notes
To read the show notes in a separate page click here!
- News You Should Know
- (01:20) Equifax confirmed massive breach
- (01:40) FBI investigating Uber
- (01:55) Facebook willing to spend $1 Billion on original content
- (02:20) Google acquiring HTC
- More Top Stories
- (03:20) AT&T, Sprint, T-Mobile and Verizon form Mobile Authentication Taskforce
- (04:35) Kaspersky Lab trades photos for swag
- (07:15) Algorithm identifies gay/straight persons with facial images
- (11:25) Camera manufacturer RED teams up with Leia Inc
- (12:35) Google working with state of Florida for Irma traffic
- Discussion
- (13:35) Equifax data breach affects as many as 143 million
- Three Equifax Managers Sold Stock… | Bloomberg
- Why the Equifax breach is…possibly the worst… | Ars Technica
- TrustedID enrollment may waive rights
- Are you an Equifax breach victim?… | Ars Technica
- It’s time to build our own Equifax with blackjack and crypto | TechCrunch
- What happened to Equifax today | TechCrunch
- Equifax security breach leaks personal info… | Engadget
- Equifax execs dumped stock before the hack news went public | TechCrunch
- (13:35) Equifax data breach affects as many as 143 million
- Message of the Day
- (33:35) Jim Thatcher – Ohio broadband
Len Peralta’s “Credibility Score“
Watch Shannon Morse‘s TekThing on Hak5 and support it on Patreon
Hi Tom,
On two shows (most recently 3112) you have dismissed the allegations against Kaspersky Lab as red-hysteria… to paraphrase… since they are in Russia… they are being maligned in a swell of distrust against all things Russian… probably unfairly.
This may be true; however there is a detail you may have missed…in 2015 Eugene Kaspersky paid General Michael Flynn to lobby on his behalf. Flynn failed to disclose this payment to US officials.
Does that dirty the hands of Kaspersky or his company? Not exactly but for those playing seven-degrees-of-Kevin-Bacon- corruption-edition that makes Kaspersky’s allegiance — who learned cryptography at a KGB school — too ambiguous too trust.
If you recall, Huawei was barred by the US commerce department from buying Sprint back in 2010 on less of a concrete connection to bad actors.
Not saying it is right, or fair… but I am pointing out there is more than just speculation that Kaspersky Labs is a player in the Russian drama.
When Eugene says “As a private company, Kaspersky Lab has no ties to any government.” What he appears to be really saying is he has no DIRECT ties in either the US or Russia.
I have not dismissed allegations against Kaspersky labs as red-hysteria. I have said there is little evidence that Kaspersky products are compromised.
That’s fair.
No evidence the products are compromised, but MORE than mere speculation that Eugene Kaspersky is a political actor.
On the Tom Merritt trademarked spectrum of F.U.D. … where does this rate? Slightly above Huawei or below?
If I see code reviews or people like Schneier questioning use I’ll pay attention. The rest is politics.
Hi Tom,
So Tavis Ormandy apparently found a number of vulnerabilities in Kaspersky software back in 2015.
See https://googleprojectzero.blogspot.ca/2015/09/kaspersky-mo-unpackers-mo-problems.html
Now today the other shoe drops on why said software is no longer allowed on US government computers — allegedly the vulnerabilities were used to leverage an attack on the NSA.
It’s relevant of course to pointout the WSJ story on this subject is sourced anonymously.
Cheers.