Hot Topics
Data Security Identity & Access Security Bloggers Network Threats & Breaches 
SBN

LastPass Data Breach, ETHERLED: Air-Gapped Systems Attack, Twitter Whistleblower Complaint

by Tom Eston on September 5, 2022

Popular password manager LastPass announced that some of their source code was stolen, but that no customer passwords were compromised in a recent data breach disclosure, an Israeli researcher has discovered a new method to exfiltrate data from air-gapped systems using the LED indicators on network cards, and details about the Twitter whistleblower Peiter “Mudge” Zatko and his claims about how Twitter had poor security practices, misled federal regulators about safety, and failed to properly estimate the number of bots on Twitter.

** Links mentioned on the show **

LastPass Says No Passwords Stolen in Data Breach
https://www.cnet.com/tech/services-and-software/lastpass-says-no-passwords-stolen-in-data-breach/
https://blog.lastpass.com/2022/08/notice-of-recent-security-incident/

ETHERLED: Air-gapped systems leak data via network card LEDs
https://www.bleepingcomputer.com/news/security/etherled-air-gapped-systems-leak-data-via-network-card-leds/

Twitter’s former security chief says company lied about bots and safety
https://www.theverge.com/2022/8/23/23317857/twitter-whistleblower-zatko-security-spam-safety
https://en.wikipedia.org/wiki/L0pht
https://en.wikipedia.org/wiki/Peiter_Zatko

** Watch this episode on YouTube **

** Thank you to our sponsors! **

SLNT

Visit slnt.com to check out SLNT’s amazing line of Faraday bags and other products built to protect your privacy. As a listener of this podcast you receive 10% off your order at checkout using discount code “sharedsecurity”.

Click Armor

To find out how “gamification” of security awareness training can reduce cyber risks related to phishing and social engineering, and to get a free trial of Click Armor’s gamified awareness training platform, visit: https://clickarmor.ca/sharedsecurity

** Subscribe and follow the show **

Join the Shared Security Community on Reddit: https://www.reddit.com/r/SharedSecurityShow/

Subscribe on YouTube: https://www.youtube.com/c/SharedSecurityPodcast

Follow us on Twitter: https://twitter.com/sharedsec

Website: https://sharedsecurity.net

Subscribe on your favorite podcast app: https://sharedsecurity.net/subscribe

Sign-up for our email newsletter to receive updates about the show, contest announcements, and special offers from our sponsors: http://eepurl.com/dwcc8D

Leave us a rating and review: https://ratethispodcast.com/sharedsecurity

Contact us: https://sharedsecurity.net/contact

The post LastPass Data Breach, ETHERLED: Air-Gapped Systems Attack, Twitter Whistleblower Complaint appeared first on The Shared Security Show.

*** This is a Security Bloggers Network syndicated blog from The Shared Security Show authored by Tom Eston. Read the original post at: https://sharedsecurity.net/2022/09/05/lastpass-data-breach-etherled-air-gapped-systems-attack-twitter-whistleblower-complaint/

Tom Eston , , , , , , , , , , , , , , , , , , , , , , ,

Secure Guardrails