The Jerich Show Podcast

In this episode our heroes discuss a simulated phishing attack that went a little too far and the dangers involved, plus they discuss how on unsuspecting person took out the internet in their village every morning at 7am... for a year and a half.

Stories:
Tribune Publishing apologizes for fake bonus offer in phishing-simulation email
https://blog.knowbe4.com/tribune-publishing-apologizes-for-fake-bonus-offer-in-phishing-simulation-email

Old TV caused village broadband outages for 18 months
https://www.bbc.com/news/uk-wales-54239180

On a side note, the Jerich Show is now auditioning for additional sponsors. We don't need a lot, perhaps a small personal jet and a modest facility on Miami Beach from which to record and live. If you know someone willing to provide these, let us know, otherwise you can help just by hitting Subscribe below

In this episode Erich and Javvad chat about the TikTok and Oracle merger/buyout/whatever thing that is happening, a case where ransomware kills and finally we discuss how people are being leveraged to help find endangered children or help hunt down child predators. 

Links from this episode:

Oracle and TikTok:
https://techcrunch.com/2020/09/13/oracle-wins-bid-to-buy-tiktok/

A Ransomware Attack Turns Deadly:
https://www.theverge.com/2020/9/17/21443851/death-ransomware-attack-hospital-germany-cybersecurity

Europol's Stop Child Abuse – Trace An Object:
https://www.europol.europa.eu/stopchildabuse

Innocent Lives Foundation:
https://www.innocentlivesfoundation.org/get-involved/

In this episode Javvad and Erich chat about some recent ransomware attacks that hit a school district here in the US and a power provider in Pakistan. We discuss the timing of the tactics being used by attackers and other somewhat interesting points.

This week Javvad and Erich were joined by Quentyn Taylor, where we discussed SIM swapping attacks and how Ring doorbells could ruin the suprise the police have planned for you. 

Check out Quentyn on Twitter at @QuentynBlog

Links to our stories: 
The SIM swapping attacks against phone carriers
https://www.vice.com/en_us/article/5dmbjx/how-hackers-are-breaking-into-att-tmobile-sprint-to-sim-swap-yeh

FBI worried that Ring doorbells are spying on police
https://www.bbc.com/news/technology-53985418

The Ring neighborhood app Erich mentioned
https://www.nytimes.com/wirecutter/blog/ring-neighbors-app-review/

Join Javvad and Erich as they discuss the interesting situation where a Russian criminal tried to get an employee to sabotage their organzation, offering a million dollars to do it.

They also discuss a quite simple and lucrative plan that was selling toothbruses to Amazon for $94 each.

In this episode, Once Javvad remembers who he is, has a discussion with Erich about the Carnival Cruise Lines ransomware attack/data breach, new legal filings against the past Uber CISO related to that breach, and the importance of transparency when the wheels fall off the wagon.

Carnival:
https://www.engadget.com/carnival-cruise-customer-data-at-risk-following-ransomware-attack-225029822.html

The Uber Issue
https://www.npr.org/2020/08/20/904113981/former-uber-executive-charged-with-paying-hush-money-to-conceal-massive-breach?t=1598007456273

In this episode Javvad and Erich tackle the rather interesting situation that happened last week when one vendor accused another one of some shady practices, then found out it wasn't them. Do fights over social media really help? They discuss it.

They also talk about people receiving legitimate emails that follow the script of the phishing emails to the point, you can't tell them apart.

This and more on this episode of the Jerich Show!

We're both back this week to bring you more low quality coverage of high quality topics. Javvad, spurred on by the threat of being permanently replaced by a rock, really adds some good insights to the topics this week.

We discuss the documents leaked from the Intel portal and the risks associated with the supply chain: https://www.zdnet.com/article/intel-investigating-breach-after-20gb-of-internal-documents-leak-online/

We then continue on to chat about the impact of leaked documents from the UK government: https://uk.reuters.com/article/uk-britain-russia-hack-exclusive/exclusive-papers-leaked-before-uk-election-in-suspected-russian-operation-were-hacked-from-ex-trade-minister-sources-idUKKBN24Z1UL

Finally, we discuss the unprotected Zoom hearing for the Twitter hacker, which allowed all participants to screen share, and how nobody could have possibly predicted that it might be impacted by shenanigans: https://www.itpro.co.uk/software/video-conferencing/356680/teenage-twitter-hackers-virtual-trial-is-zoom-bombed 

Don't forget to scubscribe so you can catch every episode of the Jerich Show

Today, with the help of a stand in for Javvad, we celebrate the 21st annual Sysadmin Day. 

Sysadmins have a rough life and it is only fitting that we stop being cruel to them at least 1 day of each year. This is that day, so go find a sysadmin, give them a big hug and softly whisper something nice in their ear*.  

*Seriously folks, DON'T do this. Maybe offer to buy them lunch or a frosty beverage after work instead. They really do deserve it.

Erich is on holiday, but the show must go on!

Stories covered:

Posti Phishing scam:

https://yle.fi/uutiset/osasto/news/helsinki_police_probe_200k_phishing_scam_in_postis_name/11438564

Meow Bot:

https://www.forbes.com/sites/daveywinder/2020/07/22/not-all-internet-cats-are-cute-meow-bot-is-a-database-destroyer/#13a2a8b30e24