LastPass Data Breach, ETHERLED: Air-Gapped Systems Attack, Twitter Whistleblower Complaint
Popular password manager LastPass announced that some of their source code was stolen, but that no customer passwords were compromised in a recent data breach disclosure, an Israeli researcher has discovered a new method to exfiltrate data from air-gapped systems using the LED indicators on network cards, and details about the Twitter whistleblower Peiter “Mudge” Zatko and his claims about how Twitter had poor security practices, misled federal regulators about safety, and failed to properly estimate the number of bots on Twitter.
** Links mentioned on the show **
LastPass Says No Passwords Stolen in Data Breach
https://www.cnet.com/tech/services-and-software/lastpass-says-no-passwords-stolen-in-data-breach/
https://blog.lastpass.com/2022/08/notice-of-recent-security-incident/
ETHERLED: Air-gapped systems leak data via network card LEDs
https://www.bleepingcomputer.com/news/security/etherled-air-gapped-systems-leak-data-via-network-card-leds/
Twitter’s former security chief says company lied about bots and safety
https://www.theverge.com/2022/8/23/23317857/twitter-whistleblower-zatko-security-spam-safety
https://en.wikipedia.org/wiki/L0pht
https://en.wikipedia.org/wiki/Peiter_Zatko
** Watch this episode on YouTube **
** Thank you to our sponsors! **
SLNT
Visit slnt.com to check out SLNT’s amazing line of Faraday bags and other products built to protect your privacy. As a listener of this podcast you receive 10% off your order at checkout using discount code “sharedsecurity”.
Click Armor
To find out how “gamification” of security awareness training can reduce cyber risks related to phishing and social engineering, and to get a free trial of Click Armor’s gamified awareness training platform, visit: https://clickarmor.ca/sharedsecurity
** Subscribe and follow the show **
Join the Shared Security Community on Reddit: https://www.reddit.com/r/SharedSecurityShow/
Subscribe on YouTube: https://www.youtube.com/c/SharedSecurityPodcast
Follow us on Twitter: https://twitter.com/sharedsec
Website: https://sharedsecurity.net
Subscribe on your favorite podcast app: https://sharedsecurity.net/subscribe
Sign-up for our email newsletter to receive updates about the show, contest announcements, and special offers from our sponsors: http://eepurl.com/dwcc8D
Leave us a rating and review: https://ratethispodcast.com/sharedsecurity
Contact us: https://sharedsecurity.net/contact
The post LastPass Data Breach, ETHERLED: Air-Gapped Systems Attack, Twitter Whistleblower Complaint appeared first on The Shared Security Show.
*** This is a Security Bloggers Network syndicated blog from The Shared Security Show authored by Tom Eston. Read the original post at: https://sharedsecurity.net/2022/09/05/lastpass-data-breach-etherled-air-gapped-systems-attack-twitter-whistleblower-complaint/