411: Mobile Security Mistakes
September 6th, 2019
We take a look at a few recent zero-day vulnerabilities for iOS and Android and find targeted attacks, bad assumptions, and changing markets.
410: Epyc Encryption
August 23rd, 2019
It's CPU release season and we get excited about AMD's new line of server chips. Plus our take on AMD's approach to memory encryption, and our struggle to make sense of Intel's Comet Lake line.
Also, a few Windows …
409: Privacy Perspectives
August 9th, 2019
We examine why it's so difficult to protect your privacy online and discuss browser fingerprinting, when to use a VPN, and the limits of private …
408: Apollo's ARC
July 26th, 2019
We take a look at the amazing abilities of the Apollo Guidance Computer and Jim breaks down everything you need to know about the ZFS ARC.
Plus an …
407: Old School Outages
July 11th, 2019
Jim shares his Nagios tips and Wes chimes in with some modern tools as we chat monitoring in the wake of some high-profile outages.
Plus we turn our …
406: SACK Attack
June 24th, 2019
A new vulnerability may be the next 'Ping of Death'; we explore the details of SACK Panic and break down what you need to know.
Plus Firefox zero …
405: Update Uncertainty
June 12th, 2019
We explore the risky world of exposed RDP, from the brute force GoldBrute botnet to the dangerously worm-able BlueKeep vulnerability.
Plus the …
404: Prefork Pitfalls
May 26th, 2019
We turn our eye to web server best practices, from the basics of CDNs to the importance of choosing the right multi-processing module.
Plus the …
403: Keeping Systems Simple
May 11th, 2019
We’re back from LinuxFest Northwest with an update on all things WireGuard, some VLAN myth busting, and the trade-offs of highly available systems.
402: Snapshot Sanity
April 25th, 2019
We continue our take on ZFS as Jim and Wes dive in to snapshots, replication, and the magic on copy on write.
Plus some handy tools to manage your …
401: Everyday ZFS
April 12th, 2019
Jim and Wes sit down to bust some ZFS myths and share their tips and tricks for getting the most out of the ultimate filesystem.
Plus when not to …
400: Supply Chain Attacks
March 29th, 2019
We break down the ASUS Live Update backdoor and explore why these kinds of supply chain attacks are on the rise.
Plus an update from the linux …
399: Ethics in AI
March 16th, 2019
Machine learning promises to change many industries, but with these changes come dangerous new risks. Join Jim and Wes as they explore some of the surprising ways bias can creep in and the serious consequences of …
398: Proper Password Procedures
March 1st, 2019
We reveal the shady password practices that are all too common at many utility providers, and hash out why salts are essential to proper password storage.
Plus the benefits of passphrases, and what you can do to keep …
397: Quality Tools
February 15th, 2019
Join Jim and Wes as they battle bufferbloat, latency spikes, and network hogs with some of their favorite tools for traffic shaping, firewalling, and …
396: Floating Point Problems
February 1st, 2019
Jim and Wes are joined by OpenZFS developer Richard Yao to explain why the recent drama over Linux kernel 5.0 is no big deal, and how his fix for the underlying issue might actually make things faster.
Plus the …
395: The ACME Era
January 21st, 2019
We welcome Jim to the show, and he and Wes dive deep into all things Let’s Encrypt.
The history, the clients, and the from-the-field details you'll …
394: All About Azure
January 10th, 2019
Wes is joined by a special guest to take a look back on the growth and development of Azure in 2018 and discuss some of its unique strengths.
393: Back to our /roots
January 3rd, 2019
In a special new year’s episode we take a moment to reflect on the show’s past, its future, and say goodbye to an old friend.
392: Keeping up with Kubernetes
December 13th, 2018
A security vulnerability in Kubernetes causes a big stir, but we’ll break it all down and explain what went wrong.
Plus the biggest stories out of …
Episode 391: Firecracker Fundamentals
November 29th, 2018
We break down Firecracker Amazon’s new open source kvm powered, virtual machine monitor, and explore what makes it different from the options on the market now.
Plus some good news for OpenBGP and the wider internet …
Episode 390: What’s Up with WireGuard
November 22nd, 2018
WireGuard has a lot of buzz around it and for many good reasons. We’ll explain what WireGuard is specifically, what it can do, and maybe more …
Episode 389: The Future of HTTP
November 15th, 2018
Wes is joined by special guest Jim Salter to discuss Google's recent BGP outage and the future of HTTP.
Plus the latest router botnet, why you …
Episode 388: The One About eBPF
October 25th, 2018
We explain what eBPF is, how it works, and its proud BSD production legacy.
eBPF is a technology that you’re going to be hearing more and more …
Episode 387: Private Cloud Building Blocks
October 12th, 2018
We bring in Amy Marrich to break down the building blocks of OpenStack. There are nearly an overwhelming number of ways to manage your …
Episode 386: What Makes Google Cloud Different
October 4th, 2018
We bring on our Google Cloud expert and explore the fundamentals, demystify some of the magic, and ask what makes Google Cloud different.
Plus how …
Episode 385: 3 Things to Know About Kubernetes
September 27th, 2018
Kubernetes expert Will Boyd joins us to explain the top 3 things to know about Kubernetes, when it’s the right tool for the job, and building highly …
Episode 384: Interplanetary Peers
September 21st, 2018
Jon the Nice Guy joins Wes to discuss all things IPFS. We'll explore what it does, how it works, and why it might be the best hope for a decentralized internet.
Plus, Magecart strikes again, Alpine has package …
Episode 383: The Power of Shame
September 14th, 2018
TechSNAP progenitor and special guest Allan Jude joins us to talk mobile security, hand out some SSH tips and tricks, and discuss why security shaming works so well.
Plus, how Mozilla is protecting their GitHub repos, …
Episode 382: Domestic Disappointments
September 7th, 2018
We’re joined by a special guest to discuss the failures of campaign security, the disastrous consequences of a mismanaged firewall, and the …
Episode 381: Here Comes Cloud DNS
August 29th, 2018
To make DNS more secure, we must move it to the cloud! At least that’s what Mozilla and Google suggest. We breakdown DNS-over-HTTPS, why it requires a “cloud” component, and the advantages it has over traditional DNS.
Episode 380: Terminal Fault
August 16th, 2018
Microsoft’s making radical changes to Windows 10, and a new type of speculative execution attack on Intel’s processors is targeting cloud providers.
Episode 379: SegmentSmack is Whack
August 10th, 2018
Take down a Linux or FreeBSD box with just 2kpps of traffic, own Homebrew in 30 minutes, and infiltrate an entire network via the Inkjet printers.
Episode 378: Two-Factor Fraud
August 3rd, 2018
Reddit’s Two Factor procedures fail, while Google’s prevents years of attacks. We’ll look at the different approaches, and discuss the fundamental weakness of Reddit’s approach.
Plus a Spectre attack over the network, …
Episode 377: Linux Under Pressure
August 1st, 2018
Some new tools will give you better insights into your system under extreme load, and we flash back to the days of AOL and discuss the new way social …
Episode 376: Google Don’t Front
July 26th, 2018
Google and Amazon recently shutdown Domain Fronting. Their abrupt change has created a building backlash.
We’ll explain what Domain Fronting is, how activists can use it to avoid censorship, and why large …
Episode 375: Surprise Root Access
July 20th, 2018
Google's Cloud Platform suffers an outage, and iPhones in India get owned after a very specific attack.
Plus how a malware author built a massive 18,000 strong Botnet in one day, and Cisco finds more "undocumented" …
Episode 374: Quantum Resistant Encryption
July 13th, 2018
Good progress is being made on post-quantum resilient computing. We’ll explain how they’re achieving it, the risks facing traditional cryptography.
Episode 373: FreeBSD Already Does That
July 5th, 2018
Allan Jude and Wes sit-down for a special live edition of the TechSNAP program.
Joined by Jed and Jeff they have a wide ranging organic …
Episode 372: Logs and Metrics and Traces, Oh My!
June 14th, 2018
Netflix has learned the hard way how to utilize all the logs, we cover their lessons in their journey to build a fully observable system.
Plus the …
Episode 371: They Never Learn
June 7th, 2018
Microsoft puts a data center under the ocean, and they might be onto something. The Zip Slip vulnerability sneaks into your software, and VPNFilter …
Episode 370: Hidden in Plain Sight
June 1st, 2018
We explain how the much hyped VPNFilter malware actually works, and its rather surprising sophistication.
Plus a clear break down of the recent …
Episode 369: Another Pass at Bypass
May 23rd, 2018
We’ll explain how Speculative Store Bypass works, and the new mitigation techniques that are inbound.
Plus this week’s security news has a bit of a …
Episode 368: EFail Explained
May 15th, 2018
The EFail hype-train has hit hypersonic speed, we’ll tap the breaks and explain who disclosed it, what it is, what it’s not, our recommendations, and early reactions.
Plus things to consider when deciding on-premises …
Episode 367: FreeNAS Uber Build
May 9th, 2018
Our FreeNAS build is complete and Allan’s back to cover the final details. Plus the new GPU attack against Android phones, and a perfect example of …
Episode 366: Catching up with Allan
May 2nd, 2018
We catch up with Allan Jude and he shares stories of hunting network bottlenecks, memories of old firewalls, and some classic ZFS updates.
Plus the …
Episode 365: The Unfixable Exploit
April 25th, 2018
Hardware flaws that can’t be solved, human errors at the physical layer, and spoofing cellular networks with a $5 dongle.
Episode 364: The Case for Monitoring
April 18th, 2018
We cover all the bases this week in our TechSNAP introduction to server monitoring.
Why you should monitor, what you should monitor, the basics of …
Episode 363: Tips from the Top
April 12th, 2018
Getting started or getting ahead in IT is a moving target, so we’ve crowd sourced some of the best tips and advice to help.
Plus a tricky use of zero-width characters to catch a leaker, a breakdown of the new …
Episode 362: Rebuilding it Better
April 5th, 2018
It’s a TechSNAP introduction to Terraform, a tool for building, changing, and versioning infrastructure safely and efficiently.
Plus a recent spat …
Episode 361: It's All in the Log
March 29th, 2018
Embarrassing flaws get exposed when the logs get reviewed, Atlanta city government gets shut down by Ransomware, and the cleverest little Android malware you’ll ever meet.
Plus we go from a hacked client to a Zero-day …
Episode 360: AMD Flaws Explained
March 22nd, 2018
We cut through the noise and explain in clear terms what’s really been discovered. The botched disclosure of flaws in AMD products has overshadowed …
Episode 359: Netflix’s Dark Capacity
March 16th, 2018
Netflix has a few tricks we can learn from, and the story of clever malware that was operating undetected since 2012.
Plus we discuss Let's Encrypt’s Wildcard support and explain what ACME v2 is.
Then we detail the …
Episode 358: A Future Without Servers
March 1st, 2018
The term serverless gets thrown around a lot, but what does it really mean? What are the benefits and the drawbacks? It’s a TechSNAP introduction to Serverless Architecture.
Plus new research with ideas to …
Episode 357: The Return of Spectre
February 22nd, 2018
New variants, bad patches, busted microcode and devastated performance. It’s a TechSNAP Meltdown and Spectre check up.
Plus Tesla gets hit by Monero Cryptojacking, and a dating site that matches people based on their …
Episode 356: The Concern with Containers
February 15th, 2018
The problems containers can’t solve, nasty security flaws in Skype and Telegram, and Cisco discovers they have a bigger issue on their hands then …
Episode 355: Operation FreeNAS Rescue
February 8th, 2018
We save our FreeNAS Mini from the edge, and perform an emergency migration to much larger hardware.
Plus 12 tips for secure authentication, the future of network security where there is no LAN, a botnet exploiting …
Episode 354: Here Come the Script Kiddies
February 2nd, 2018
AutoSploit has the security industry in a panic, so we give it a go. To our surprise we discover systems at the DOD, Amazon, and other places …
Episode 353: Too Many Containers
January 26th, 2018
We introduce you to Kubernetes, what problems it solves, why everyone is talking about it, and where it came from. Also who shouldn’t be using …
Episode 352: Stop Using apt-get
January 23rd, 2018
And start using configuration management. Embrace reproducibility of systems, and streamlined management with TechSNAP’s introduction to …
Episode 351: Performance Meltdown
January 12th, 2018
The types of workloads that will see the largest performance impacts from Meltdown, tools to test yourself, and the outlook for 2018.
Plus a concise …
Episode 350: Trials of TLS
December 29th, 2017
The trials and tribulations of the long journey to TLS 1.3, and the “middleware” that’s keeping us from having nice things. Plus a pack of Leaky S3 …
Episode 349: All Natural Namespaces
December 22nd, 2017
Network Namespaces have been around for a while, but there may be be some very practical ways to use them that you’ve never considered. Wes does a …
Episode 348: Server Neglect
December 14th, 2017
Authors of one of the most infamous botnets of all time get busted, researchers discover keyloggers built into HP Laptops, the major HomeKit flaw no one is talking about, and the new version of FreeNAS packs a lot of …
Episode 347: A Farewell to Dan | TechSNAP 347
November 30th, 2017
We say farewell to Dan, but don't despair, we've still got a ton of great topics to cover as we say goodbye. We compare the handling of recent data breaches at imgur & DJI, share some in-depth guides on beefing up …
Episode 346: Neutral Nets | TechSNAP 346
November 21st, 2017
We get depressed over some new stats confirming our worst fears about the huge number of outdated and unpatched android systems. But, in some good news, Github wants to help you, and your open source projects, stay …
Episode 345: Namespaces GOTO Jail | TechSNAP 345
November 18th, 2017
We can't contain our excitement as we dive deep into the world of jails, zones & so-called linux containers. Dan shares his years of experience using the time-tested original bad boy of containers, FreeBSD jails. …
Episode 344: SSL Strippers | TechSNAP 344
November 8th, 2017
You may think that’s a secure password field, but don’t be fooled! We’ve got the disturbing tale of some negligent websites & their fraudulent …
Episode 343: Low Security Pillow Storage | TechSNAP 343
November 1st, 2017
We've got some top tips to turn you from ssh-novice to port-forwarding master. Plus the latest on the confusing story of Kaspersky, the NSA & a bone-headed contractor. Then, our backup sense is tingling, with the …
Episode 342: Cloudy with a chance of ABI | TechSNAP 342
October 25th, 2017
We air Microsoft's dirty laundry as news leaks about their less than stellar handling of a security database breach, plus a fascinating story of deceit, white lies, and tacos; all par for the course in the world of …
Episode 341: HAMR Time | TechSNAP 341
October 18th, 2017
We've got bad news for Wifi-lovers as the KRACK hack takes the world by storm; We have the details & some places to watch to make sure you stay patched. Plus, some distressing revelations about third party access to …
Episode 340: Spy Tapes | TechSNAP 340
October 13th, 2017
We try our hand at spycraft with a set of espionage themed stories covering everything from the latest troubles at Kaspersky to the strategic implications of responsible disclosure at the NSA. Plus, a few more reasons …
Episode 339: Laying Internet Pipe | TechSNAP 339
October 5th, 2017
We cover the problematic implications of SESTA, the latest internet regulations proposed in the US, plus some PR troubles for CBS's Showtime after …
Episode 338: Patch Your S3it | TechSNAP 338
September 27th, 2017
Distrustful US allies further delay the NSA’s new crypto, Viacom’s leaky buckets almost expose its entire IT infrastructure, plus a few more Equifax …
Episode 337: FCC’s Free Offsite Storage | TechSNAP 337
September 20th, 2017
That Equifax hack? So last week! This weeks vulnerability is BlueBorne, a new attack on just about every bluetooth capable device. We've got the …
Episode 336: Equihax | TechSNAP 336
September 13th, 2017
Equifax got hacked, some top tips for staying safe & a debate over just who's to blame for vulnerable open source software. Then Google's …
Episode 335: Extended Usefulness | TechSNAP 335
September 6th, 2017
We're extending your filesystems usefulness with extended attributes! We learn what they are & how they might be useful. Plus, we take a look …
Episode 334: HPKP: Hard to Say, Hard to Use | TechSNAP 334
August 30th, 2017
We discuss, and struggle to pronounce, the difficulties in deploying HTTP public key pinning & some possible alternatives you should consider. …
Episode 333: Rsync On Ice | TechSNAP 333
August 25th, 2017
We take a trip to the ends of the earth and hear some stories of tech support in Antarctica, cover a surprisingly reasonable new suggested standard for responsible disclosure & discuss Kreb's latest adventures in …
Episode 332: Leaky Pumps | TechSNAP 332
August 16th, 2017
With some clever new card skimmer tech we’ve got one more reason to watch your wallet at the gas pump, plus a few handy recommendations for postgres …
Episode 331: BTRFS is Toast | TechSNAP 331
August 9th, 2017
We discuss just how hard, or not, responsible disclosure really is, share some sad news about the status of BTRFS on RHEL, a few more reasons to use ZFS.
Then, we find out if our passwords have been cracked, reveal …
Episode 330: Netflix Lab Rats | TechSNAP 330
August 2nd, 2017
Dan does some sleuthing & finds that the story of a major data leak isn't quite what it seems, then a new Talos report that shows a large number of unpatched & unprotected memcached servers. We discuss just how …
Episode 329: Teeny Weeny DNS Server | TechSNAP 329
July 26th, 2017
We've got the latest on some mysterious mac malware that's been lurking for years, a handy new tool to help you monitor, backup and generally work …
Episode 328: LetsEncrypt is a SNAP | TechSNAP 328
July 19th, 2017
The recent ‘Devil’s Ivy’ vulnerability has caused quite a rash in the security journalism community. Is it as bad as poison ivy or just a bunch of …
Episode 327: Unsecured IO | TechSNAP 327
July 12th, 2017
GNUPG has just released a fix for a dangerous side-channel attack that could expose your private key, a leak of NASDAQ test data was picked up by …
Episode 326: Broadband from Space | TechSNAP 326
July 5th, 2017
A new satellite broadband ISP has approval to serve the US, are their low-latency claims too good to be true? UK Law enforcement claims that visiting the dark web is a potential sign of terrorism, watch out tor users! …
Episode 325: Google Reads Your Email | TechSNAP 325
June 28th, 2017
We go to air just as a massive cyberattack strikes Europe, Google stops reading your email, well sorta maybe & we discuss the latest debate over US government access to overseas data.
Plus some fantastic feedback, …
Episode 324: DNS Mastery | TechSNAP 324
June 21st, 2017
We’ve got the latest on the ‘Stack Crash’ vulnerability affecting a UNIX OS near you. Plus thanks to a recent RNC data leak we’ve got your name, …
Episode 323: Comment & Control | TechSNAP 323
June 14th, 2017
Dan's back from BSDCAN with peanut butter, taps, and a new library that's the source of all truth. Then we've got the story of Britney Spears latest …
Episode 322: #NotMyInternet | TechSNAP 322
June 7th, 2017
We discuss who really controls the internet & just how centralized and potentially vulnerable it has become. Plus the latest security letdowns …
Episode 321: A Burrito Stole My Money | TechSNAP 321
May 31st, 2017
Not only is the UK leaving the Eurozone, they are starting their own internet, this time with more surveillance! Then we’ve got some top tips on getting recruited by the Israeli NSA & the details of some new …
Episode 320: Kill Switch Engage | TechSNAP 320
May 24th, 2017
We've got another round of WannaCry analysis, the latest on the FCCs battle over Net neutrality. Then IPv6 Tunnels & you, a 2017 check-in.
Plus some fantastic feedback, a robust roundup & so much more!
Episode 319: When IT Security Cries | TechSNAP 319
May 17th, 2017
The WannaCry Worm has brought the world to tears. We've got the latest details, conspiracy theories, fallout & some tissues.
Plus a keylogger that may be hiding in your audio driver, some great hardware …
Episode 318: All Drives Die | TechSNAP 318
May 10th, 2017
Turns out you've been doing passwords wrong, but don't worry, we've got the latest and greatest guidance from NIST. Plus the latest numbers from BackBlaze with some interesting conclusions about enterprise drives.
Episode 316: PHP Steals Your Nuts | TechSNAP 316
April 26th, 2017
The squirrels have gotten in the mailbag as the guys discuss an unfortunate new vulnerability in Squirrelmail. Plus an interesting new entrant to the …
Episode 315: Tales of FileSystems | TechSNAP 315
April 19th, 2017
We’ve got the latest gossip on Apple’s brand new filesystem & why you should care! Plus Dan dives deep into the wonderful world of ZFS and …
Episode 314: Cyber Liability | TechSNAP 314
April 12th, 2017
We cover some fascinating new research that can steal your phone’s PIN using just the on-board sensors. Then we cover how computer security is broken from top to bottom and Dan does another deep dive, this time on …
Episode 313: Wifi Stack Overfloweth | TechSNAP 313
April 5th, 2017
Your Wifi Stack is under attack! But dont worry, Apple’s got the patch & we’ve got the story. Then the latest ATM hacking tips that will only cost you $15 & Dan does a deep dive into Let’s Encrypt!
Plus it’s …
Episode 312: Privacy is Dead | TechSNAP 312
March 29th, 2017
This week, we sell your private browsing history to the highest bidder! Oh wait, that’s your ISP! We cover the latest rollback of internet privacy …
Episode 311: Check Yo Checksum | TechSNAP 311
March 22nd, 2017
The guys break with the usual format & turn things over to Dan for a deep deep dive on Bacula! Then it’s the latest Yahoo hack news & a few …
Episode 310: Don’t Panic & P your S | TechSNAP 310
March 15th, 2017
We crack open Vault 7 & are a little let down by what's inside, give you one more reason you should already be using ZFS & just when you …
Episode 309: Bad Boy Backups | TechSNAP 309
March 8th, 2017
We’ve got the sad story of cloud-enabled toys leading to, you guessed it, leaking customer’s personal information! Plus a case of backups gone bad, but this time, it’s a good thing!
Then it’s your feedback, a huge …
Episode 308: Cloudy with a Chance of Leaks | TechSNAP 308
March 1st, 2017
Google heard you like hashes so they broke SHA1, we've got the details.
Plus we dive in to Cloudflare's data disaster, Dan shows us his rack, your feedback, a huge roundup & so much more!
Episode 307: State Sponsored Audiophiles | TechSNAP 307
February 22nd, 2017
The details on the latest WordPress vulnerability, then the surprising, or perhaps not so surprising takeover of a cybersecurity firms website & …
Episode 306: Metadata Matters | TechSNAP 306
February 15th, 2017
The latest on just who has access to your private email, Dan dives deep on the GitLab Postmortem & did you know that Transport for London has been tracking your wifi? We’ve got the details.
Plus a packed roundup, …
Episode 305: Gambling with Code | TechSNAP 305
February 8th, 2017
We’ve got the latest on GitLabs data disaster, a clever new method to cheat at the slots & a new Netgear exploit thats coming for your network!
Plus your feedback, a giant roundup & much, much more!
Episode 304: Three C's to Tweet By | TechSNAP 304
February 1st, 2017
The guys cover Dropbox bugs that could be holding on to your deleted files, explain what the heck ATM ‘shimmers’ are & talk about how to keep …
Episode 303: DDos Mafia | TechSNAP 303
January 25th, 2017
A remote vulnerability in Ansible has been patched, the latest updates on the Mirai botnet, our first TechSNAP challenge, your feedback, a gigantic …
Episode 302: Internet of Voice Triggers | TechSNAP 302
January 17th, 2017
The Github enterprise SQL scare, malware that lives in your browser, Dan’s mail server war story, your feedback, a righteous roundup & more!
Note: This is a shorter episode because the hosts are new and the first …
Episode 301: The Next Generation | TechSNAP 301
January 11th, 2017
Malware that evades blocking systems and getting into BSD for the first time.
Plus a fresh round up, your questions & much, much more!
Episode 300: 2089 Days Uptime | TechSNAP 300
January 6th, 2017
How the hack of DigiNotar changed the infrastructure of the Internet forever, changing the way we think about security & how to hide malware in a PNG.
Plus a packed round up, great emails & more in a packed …
Episode 299: Fancy Bear Misfire.apk | TechSNAP 299
December 30th, 2016
PHPMailer puts almost every PHP CMS at risk, the Fancy Bear Android Malware that has a complicated past & the new botnet that likes brag.
Plus great questions, a packed round up & much, much more!
Episode 298: Best of 2016 | TechSNAP 298
December 22nd, 2016
We've given the Jupiter Broadcasting staff the holidays off, so lets take this moment to have a look back at some of the best moments of TechSNAP in …
Episode 297: The Bourne Avalanche | TechSNAP 297
December 16th, 2016
The Malvertising campaign that targets routers, script kiddies get a talking to & the Avalanche crime ringleader is on the run.
Plus your questions, a packed round up & more!
Episode 296: Schoolhouse Exploits | TechSNAP 296
December 9th, 2016
Project Zero breaks the chain, we share stories from our mischievous past & malware as a service gets busted.
Plus your great questions, a packed round up & much, much more!
Episode 295: Shift+F10 and Done | TechSNAP 295
December 2nd, 2016
A researcher accidentally roots Microsoft Azure’s Red Hat Update Infrastructure, newly discovered router flaw in-the-wild & hacking Windows 10 by …
Episode 294: Turkey.deb | TechSNAP 294
November 25th, 2016
The Debian packaging flaw that exposes your server, we go over the state of the Internet... report that is & hacking 27% of the web.
Plus some great questions, a fantastic round up & much, much more!
Episode 293: Root in 70 Seconds | TechSNAP 293
November 18th, 2016
Get a root shell by holding down enter, comprising a Linux desktop using an NES & PoisonTap, the impressive little hacking tool.
Plus your great …
Episode 292: Unix Security Trifecta | TechSNAP 292
November 10th, 2016
It’s a trifecta of Unix vulnerabilities, our concerns with LessPass & a very valuable vulnerability.
Plus your questions, our answers, a spicy …
Episode 291: Nuclear IoT Toaster | TechSNAP 291
November 3rd, 2016
We go deep into sophisticated modular malware & meet the manufacturer who vows to recall their IoT devices used in recent attacks.
Plus home …
Episode 290: Internet Snow Day | TechSNAP 290
October 28th, 2016
A large managed DNS provider was taken down by a DDoS, we'll tell you all about Dyn’s big outage.
Then we beat the dead dirty CoW, answer your questions, a breaking news round up & more!
Episode 289: Long Broken SSL History | TechSNAP 289
October 21st, 2016
Spreading the DDoS Disease & selling the cure, we have the audit results of TrueCrypt’s replacement & a comprehensive history of the most …
Episode 288: Internet of Default Passwords | TechSNAP 288
October 14th, 2016
The Internet of Things is the Internet of Terrible, we’ll round up the week’s stories & submit the TechSNAP solution to you the audience. Plus …
Episode 287: Open Source Botnet | TechSNAP 287
October 7th, 2016
The Source code for a historic botnet has been released, the tale of a DNS packet & four ways to hack ATMs.
Plus your hard questions, our answers, a rockin' roundup & more!
Episode 286: Botnet of Things | TechSNAP 286
September 30th, 2016
Krebs is hit with DDoS attack & then gets kicked off of Akamai. We’ll tell you about the record breaking details, Firefox puts it foot down, picking NFS or Samba…
Episode 285: OpSec for Script Kiddies | TechSNAP 285
September 22nd, 2016
The FBI arrests the script kiddies that hacked the CIA director, how Dropbox hacks your Mac & the guys behind a DDoS for hire service get busted.
Plus great questions, our answers, a rockin roundup & more!
Episode 284: Buffalo Overflow | TechSNAP 284
September 16th, 2016
Massive drive failures after a datacenter gas attack. A critical MySQL vulnerability you should know about & is Cisco responsible for the death …
Episode 283: I Can't Believe It's Not Ethernet | TechSNAP 283
September 9th, 2016
How a modified USB ethernet adapter can steal credentials, a new compression algorithm from Facebook that might be legit & the terrible terrible security of a consumer NAS.
Plus great questions, our answers, a fun …
Episode 282: The Shadow Knows | TechSNAP 282
September 2nd, 2016
The ShadowBrokers release a batch of the NSA’s tools & we dive in. A Google login issue allows for credential theft & researchers map the …
Episode 281: iPhishing Expedition | TechSNAP 281
August 26th, 2016
iOS targeted malware in the wild, the simple approach to hacking electronic safes & how digital forensics prove a journalist was framed.
Plus your great questions, a packed round up & much more!
Episode 280: Microsoft’s Golden Ticket | TechSNAP 280
August 18th, 2016
Microsoft leaks their golden key, allowing attackers to unlock secure boot systems, a security breach at Oracle exposes hundreds of companies & …
Episode 279: The Internet is Dying | TechSNAP 279
August 11th, 2016
Why the Internet needs it’s own version of cancer researchers, bypassing chip and pin protections & the 2016 Pwnie Awards from Blackhat!
Plus your questions, our answers & much, much more!
Episode 278: Dangerous Dangling Quotes | TechSNAP 278
August 5th, 2016
Plus great questions & a rocking round up!
Episode 277: Internet Power Struggle | TechSNAP 277
July 29th, 2016
We’re in the middle of an epic battle for power in cyberspace & Bruce Schneier breaks it down. PHP gets broken, PornHub gets hacked & the disgruntled employee who wiped the router configs on his way out the door.
Episode 276: Bitmap Pox | TechSNAP 276
July 22nd, 2016
A new vulnerability in many websites, Oracle's Outside In Technology, Turned Inside-Out & the value of a hacked company.
Plus your questions, …
Episode 275: Ending Ransomware | TechSNAP 275
July 15th, 2016
A potential solution to Ransomware, the 15 year bug that cost CitiGroup $7 Million dollars, Dropbox’s new middle out compression & another flaw …
Episode 274: Windows Exploit Edition | TechSNAP 274
July 8th, 2016
On this weeks episode we cover a UEFI firmware bug that is affecting computers including ThinkPads, tell you how your windows box can be totally …
Episode 273: Make Ads GIF Again | TechSNAP 273
July 1st, 2016
Project Zero lays into Symantec's enterprise products, the botnet you’ll never find & the poor security of HTML5 video ads.
Plus your questions, our answers & much more!
Episode 272: Game of File Systems | TechSNAP 272
June 24th, 2016
What’s got Windows admins in a Panic? Total chaos my friends, we’ll tell you why. Extensive coverage of Apple’s new filesystem, Ransomware that might just impress you…
Episode 271: Apple Pretend Filesystem | TechSNAP 271
June 17th, 2016
Why didn’t Apple choose ZFS for its new filesystem? We journey through the long history of ZFS at Apple. Plus how the BadTunnel bug can hijack …
Episode 270: Signature Bloatware Updates | TechSNAP 270
June 9th, 2016
The bloatware shipping on those new computers is way, way worse than you probably thought, Internet exposed printers & the thrilling story of reverse engineering an ATM skimmer. Yes that’s really a thing.
Episode 269: 10,000 Cables Under the Sea | TechSNAP 269
June 3rd, 2016
Windows exploits for sale at a great price, how the Internet works, yes, seriously & it's awesome!
Plus we solve some of your problems, a great …
Episode 268: PIS Poor DNS | TechSNAP 268
May 27th, 2016
Is the “Dark Cloud” hype, or a real technology? Using DNS tunneling for remote command and control & the big problem with 1-Day exploits.
Episode 267: My Kingdom for a VLAN | TechSNAP 267
May 20th, 2016
A typo stops a billion dollar bank hack, a vulnerability in 7zip that might surprise you & the best solutions for secure remote network access.
Episode 266: Curl Sleeper Agent | TechSNAP 266
May 13th, 2016
Zero-day exploits striking over 100 systems, if you think copying links to bash scripts from the internet is okay, maybe you shouldn't be root & …
Episode 265: Insecure Socket Layer | TechSNAP 265
May 6th, 2016
A critical flaw in that bit of software tucked far far away that you never think about… Until now, we explain why ImageTragick is a pain. More OpenSSL flaws & fraudsters stealing tax data from the motherload.
Episode 264: On Target | TechSNAP 264
April 28th, 2016
This week, Chris & allan are both out of town at different shenanigans, but they recorded a sneaky episode for you in which they recap the Target breach, from when the news broke to the lessons learned and …
Episode 263: One Key to Rule Them All | TechSNAP 263
April 21st, 2016
This week, the FBI says APT6 has pawned the government for the last 5 years, Unaoil: a company that's bribing the world & Researchers find a flaw in the visa database.
All that plus a packed feedback, roundup & …
Episode 262: rm -rf $ALLTHETHINGS/ | TechSNAP 262
April 15th, 2016
Find out why everyone's just a little disappointed in Badlock, the bad security that could be connected to the Panama Papers leak & the story of …
Episode 261: Holding Hospitals Hostage | TechSNAP 261
April 7th, 2016
Find out about another hospital that accidentally took advantage of free encryption, researchers turn up a DDoS on the root DNS servers & the password test you never want to take.
Plus your batch of networking …
Episode 260: Pay to Boot | TechSNAP 260
March 31st, 2016
New Ransomware locks your bootloader & makes you pay to boot. Malware with built in DRM? We’ll share the story of this clever hack.
Plus some great questions, our answers, a packed round up & more!
Episode 259: Can You Hack Me Now? | TechSNAP 259
March 25th, 2016
Verizon Enterprise gets breached & the irony is strong with this one, details on the NPM fiasco & why the SAMSAM is holding up the doctor.
Episode 258: Metaphorically Exploited | TechSNAP 258
March 18th, 2016
The theoretical Android flaw becomes reality, a simple phishing scam hits some major companies & why your PIN has already been leaked.
Plus great questions, our answers, a rocking round up & much, much more!
Episode 257: Fixing the Barn Door | TechSNAP 257
March 10th, 2016
We’ll tell you about the real world pirates that hacked a shipping company, the open source libraries from Mars Rover found being used in malware …
Episode 256: Open Server Sadness Layer | TechSNAP 256
March 4th, 2016
OpenSSL issues a major security advisory, we break down the important details, then go in depth on the real world impact of these flaws.
Plus some great storage and networking question, a packed round up & much, …
Episode 255: Dip the Chip | TechSNAP 255
February 26th, 2016
What’s taking the states so long to catch up to the rest of the civilized world and dip the chip? Turns out it's really complicated, we explain. Plus …
Episode 254: Weaponized Comic Sans | TechSNAP 254
February 19th, 2016
A common vulnerability is impacting Firefox, LibreOffice, and others, the 7 problems with ATM security, and the Enterprise grade protection defeated …
Episode 253: Cisco's Perfect 10 | TechSNAP 253
February 12th, 2016
Cisco has a wormable vulnerability in its Firewall appliances, crimeware that allows unlimited ATM withdrawals & the big problem with the Java …
Episode 252: Hot Norse Potato | TechSNAP 252
February 5th, 2016
A new openSSL exploit, cyber security firm Norse implodes & the Windows Hot Potato flaw that’s been around for over a decade.
Plus great questions, our answers, a rockin round up & much, much more!
Episode 251: A Look Back On Feedback | TechSNAP 251
January 28th, 2016
Since Allan is off being fancy at FOSDEM, we decided that now would be a good time to celebrate the audience & feature some of the best feedback …
Episode 250: Lights out Management | TechSNAP 250
January 21st, 2016
The bizarre saga of Juniper maybe finally be coming to a conclusion, details about SLOTH, the latest SSL vulnerability that also affects IPSec and …
Episode 249: Internet of Threats | TechSNAP 249
January 15th, 2016
A Critical OpenSSH flaw can expose your private keys, a new WiFi spec for IoT devices, that has all the classic issues & Intel’s SkyLake bug.
Plus your feedback, our answers, a rockin’ round up & so much more!
Episode 248: Virtual Private Surveillance | TechSNAP 248
January 8th, 2016
We break down the Bicycle attack against SSL, the story of Brian Krebs’s PayPal account getting backed & the scoop on the Juniper Saga.
Plus some great questions, our answers, a news breaking round up & much …
Episode 247: Snappy New Year! | TechSNAP 247
December 31st, 2015
We take a look back at some of the big stories of 2015, at least, as we see it.
Plus the round up & more!
Episode 246: Allan's Favorite Things | TechSNAP 246
December 24th, 2015
It’s a collection of Allan’s favorite moments from TechSNAP past. Plus the week’s new stories in the roundup & much more!
Episode 245: Insecurity Appliance | TechSNAP 245
December 18th, 2015
Meet BOOTTRASH the Malware that executes before your OS does, the hard questions you need to ask when buying a security appliance, Project Zero finds flaws in Fireeye hardware.
Plus some great audience questions, a big …
Episode 244: Finding Nakamoto | TechSNAP 244
December 11th, 2015
Bitcoin’s creator has been found again, we’ll cover what the media thinks they’ve figured out & what we really know.
Then, 'In Patches We Trust: Why Security Updates have to get better', a great batch of questions, …
Episode 243: SpyFi Barbie | TechSNAP 243
December 4th, 2015
The US Government is offering free penetration tests, with a catch, we break down the VTech Breakin & the only sure way to protect your credit online.
Plus great questions, a big round up with breaking news & …
Episode 242: A Keyboard Walks into a Barcode | TechSNAP 242
November 26th, 2015
A research team finds various ways to attack LastPass, how to use a cocktail of current Android exploits to own a device & hacking a point of sale system using poisoned barcodes!
Plus some great questions, our …
Episode 241: Double ROT-13 | TechSNAP 241
November 20th, 2015
Encryption & privacy took quite a beating this week in the wake of the Paris attacks. We come to its defense. Your ISP heard you like backdoors, so they put a backdoor in your backdoor, the story of the social RAT …
Episode 240: Zero-Days Of Our Lives | TechSNAP 240
November 12th, 2015
The first remote administration trojan that targets Android, Linux, Mac and Windows. Joomla and vBulletin have major flaws & tips for protecting …
Episode 239: PLAID Falls Out of Fashion | TechSNAP 239
November 5th, 2015
CISA provides no solutions, just new excuses. The new Australian smartcard system is a total disaster & why Google’s URLs are so crazy.
Episode 238: Certifiable Authority | TechSNAP 238
October 29th, 2015
TalkTalk gets compromised, Hackers make cars safer & Google plays hardball with Symantec.
Plus a great batch of your questions, a rocking round up & much, much more!
Episode 237: A Rip in NTP | TechSNAP 237
October 23rd, 2015
The OpenZFS summit just wrapped up and Allan shares the exciting new features coming to the file system, researchers warn about flaws in NTP & of course we've got some critical patches.
Plus a great batch of …
Episode 236: National Security Breaking Agency | TechSNAP 236
October 16th, 2015
How the NSA might be breaking Crypto, fresh zero day exploit against Flash with a twist & Keylogging before computers.
Plus a great batch of your questions, a rocking round-up & much more!
Episode 235: Catching the Angler | TechSNAP 235
October 9th, 2015
Debug mode exposes sensitive data, Cisco’s Talos group exposes the Angler exploit kit & how a Microsoft exposed Conficker with an egg hunt.
Plus some great feedback, a huge round up & much, much more!
Episode 234: Key Flaw With GPL | TechSNAP 234
October 1st, 2015
D-Link publishes its private code signing keys, exploiting Windows Symbolic Links & why encryption is not sufficient protection.
Plus some great …
Episode 233: Dukes of Cyber Hazard | TechSNAP 233
September 24th, 2015
Let’s Encrypt hits a major milestone, F-Secure publishes their investigation into “The Dukes” & we dig into Tarsnap’s email confirmation bypass.
Plus a great batch of your questions, a rocking round up & much, …
Episode 232: Hardware Insecurity Module | TechSNAP 232
September 17th, 2015
How Groupon made the switch to FreeBSD & why. Researches extract keys from a hardware module & Intel’s new CPU backed malware protection.
Episode 231: Leaky RSA Keys | TechSNAP 231
September 10th, 2015
Red Hat highlights how leaky many open source RSA implementations are, Netflix releases Sleepy Puppy & the Mac is definitely under attack.
Plus some quick feedback, a rockin' roundup & much, much more!
Episode 230: Trojan Family Ties | TechSNAP 230
September 3rd, 2015
Rooting your Android device might be more dangerous than you realize, why the insurance industry will take over InfoSec & the NSA prepares for Quantum encryption.
Plus some great questions, a fantastic roundup …
Episode 229: Extortion Startups | TechSNAP 229
August 28th, 2015
The real fallout from the Ashley Madison hack gets personal. The Android StageFright patch that doesn’t cover all of the holes, and turning a KVM …
Episode 228: Export Grade Vulnerabilities | TechSNAP 228
August 20th, 2015
Lenovo & HP are caught injecting malware even after you format the drive, Ubiquiti Networks is socially engineered out of 46 million & are we entering the era of Security Research Prohibition? We debate.
Plus a …
Episode 227: Oracle's EULAgy #oraclefanfic | TechSNAP 227
August 13th, 2015
Oracle really doesn’t want you to reverse engineer their products but they may have just released the Kraken, we’ll explain.
A massive drop of 35 …
Episode 226: Solving the Flash Plague | TechSNAP 226
August 7th, 2015
Adobe is making changes to Flash to mitigate 0day exploits, with help from Google. Chrysler recalls 1.4M vehicles due to a software flaw, we go inside the “Business Club” cyber crime gang.
Plus a great batch of …
Episode 225: SourceForge's Downfall | TechSNAP 225
July 31st, 2015
SourceForge sees downtime, and we examine their infrastructure, a new pervasive hackgroup has been exposed and their track record is fascinating.
Plus a Hacking Team Round up, a wide variety of audience questions, our …
Episode 224: Butterflies & Backronyms | TechSNAP 224
July 23rd, 2015
The Backronym vulnerability hits MySQL right in the SSL protection, we’ll share the details. The hacker Group that hit Apple & Microsoft …
Episode 223: A Bias to Insecurity | TechSNAP 223
July 16th, 2015
The Hacking Team fallout continues with more zero day patches you need to install, a new attack against RC4 might finally kill it & how to save yourself from a DDoS attack.
Plus a great batch of your questions, our …
Episode 222: ZFS does not prevent Stupidity | TechSNAP 222
July 10th, 2015
From hacking to hacked, hacking team gets owned & what gets leaked is the best part, we’ll share the details.
Plus, a new OpenSSL vulnerability …
Episode 221: Ripping me a new Protocol | TechSNAP 221
July 3rd, 2015
Amazon has a new TLS implementation & the details look great, we’ll share them with you. The technology that powers the NSA’s XKEYSCORE you could …
Episode 220: Homeland Insecurity | TechSNAP 220
June 26th, 2015
Google’s datacenter secrets are finally being revealed & we’ll share the best bits. Why The US Government is in no position to teach anyone about Cyber Security, how you can still get hacked offline, A batch of …
Episode 219: OPM Data too Valuable to Sell | TechSNAP 219
June 19th, 2015
Kaspersky labs has been hacked, we’ll tell you why it looks like a nation state was the attacker, why OPM data is too valuable sell & the real situation with LastPass.
Plus some great questions, our answers & a …
Episode 218: Hacking Henchmen for Hire | TechSNAP 218
June 11th, 2015
This week, how hard lessons learned in 1982 could be apply to 2015’s security breaches, hacking for hire goes big & a savage sentient car that …
Episode 217: An Encryptioner's Conscience | TechSNAP 217
June 5th, 2015
The sad state of SMTP encryption, a new huge round of flaws has been found in consumer routers & the reviews of Intel’s new Broadwell desktop processors are in!
Plus some great questions, a huge round-up & …
Episode 216: Spy vs MSpy | TechSNAP 216
May 28th, 2015
Spyware creator mSpy hacked, find out why this breach is particularly egregious, what’s wrong with pcap & why RSA’s death has been greatly …
Episode 215: EXTenuating Circumstances | TechSNAP 215
May 21st, 2015
Researches have uncovered a weakness in almost all Internet encryption. We’ll explain what LogJam is, how to protect yourself & what the cause is.
Linux gets bit by a filesystem corruption bug, passport id thieves, …
Episode 214: Venomous Floppy Legacy | TechSNAP 214
May 15th, 2015
We explain the Venom vulnerability, what the impact is & the steps major providers are taking to protect themselves.
Plus strategies to …
Episode 213: Blame as a Service | TechSNAP 213
May 8th, 2015
Why a stolen healthcare record is harder to track than you might think, Security pros name their must have tools & blame as a service, the new …
Episode 212: Dormant Docker Disasters | TechSNAP 212
April 30th, 2015
The man who broke the music business, the major downsides to the container culture & yes, they really are trying to sell you Security Snake Oil.
Episode 211: The French Disconnection | TechSNAP 211
April 24th, 2015
What’s really the key to detecting a breach before its become much too late? We’ll share some key insights, plus a technical breakdown of China’s …
Episode 210: SMBTrapped in Microsoft | TechSNAP 210
April 17th, 2015
Researches find an 18 year old bug in Windows thats rather nasty, we’ve got the details. A new perspective on the bug bounty arms race & the …
Episode 209: Day-0 of an InfoSec Career | TechSNAP 209
April 10th, 2015
Is it possible to make a truly private phone call anymore? The answer might surprise you. Cisco and Level 3 battle a huge SSH botnet & how to …
Episode 208: Any Cert Will Do | TechSNAP 208
April 3rd, 2015
Why boring technology might be the better choice, Google revokes & China chokes, why you want to create an account at irs.gov before crooks do it …
Episode 207: Lunch Lady Lockdown | TechSNAP 207
March 27th, 2015
Reverse Engineering Incentives to Improve Security. New Jersey school district computers held for ransom & the flash bug that lives on from 2011 …
Episode 206: Two Factor Falsification | TechSNAP 206
March 20th, 2015
Microsoft takes 4 years to fix a nasty bug, how to bypass 2 factor authentication in the popular ‘Authy’ app.
Hijacking a domain with photoshop, …
Episode 205: An Uber Mess | TechSNAP 205
March 12th, 2015
Using encryption is a good thing, but its just the start, we’ll explain. Plus how one developer totally owned the Uber app.
Then it’s a great batch of your questions & our answers!
Episode 204: Ghost of Crypto Past | TechSNAP 204
March 6th, 2015
We’ll break down the technical baggage that led to the new FREAK SSL flaw & the security ramifications of top executives using personal email accounts…
Episode 203: TurboHax | TechSNAP 203
February 27th, 2015
Lenovo & Google are victims of DNS hijacking, we’ll share the details, Everyone wants you to secure your data, just not from them & how Turbotax profits from Cyber tax fraud!
Plus a great batch of your …
Episode 202: SuperFishy Mistake | TechSNAP 202
February 20th, 2015
Lenovo PCs ship with man-in-the-middle adware that breaks HTTPS connections, we’ll break down how this is possible, the danger that still exists …
Episode 201: Group Problemcy | TechSNAP 201
February 13th, 2015
A 20 year old design flaw in Windows has just been patched & it requires some major re-working of the software. Attackers compromise Forbes.com …
Episode 200: Your TechSNAP Story | TechSNAP 200
February 6th, 2015
A new major security breach at a large health insurance firm could expose 10s of millions, a phone phishing scam anyone could fall for & we …
Episode 199: Internet of Problems | TechSNAP 199
January 30th, 2015
The internet of dangerous things is arriving but what about taking care of the devices we already have? We’ll discuss!
Plus details on critical …
Episode 198: Dude Where's My Card? | TechSNAP 198
January 23rd, 2015
Adobe has a bad week, with exploits in the wild & no patch. We’ll share the details. Had your credit card stolen? We’ll tell you how.
Plus the …
Episode 197: Patch and Notify | TechSNAP 197
January 16th, 2015
Been putting off that patch? This week we’ll cover how an out of date Joomla install led to a massive breach, Microsoft and Google spar over patch disclosures & picking the right security question...
Plus a great …
Episode 196: Sony’s Hard Lessons | TechSNAP 196
January 9th, 2015
We reflect on the lessons learned from the Sony Hack & discuss some of the tools used to own their network.
Plus a overview of what makes up a …
Episode 195: Cloudy With a Chance of SSL | TechSNAP 195
January 1st, 2015
We go inside the epic takedown of SpamHaus, then we break down why CloudFlare’s Flexible SSL is the opposite of security.
Followed by a great batch …
Episode 194: Best Of TechSNAP 2014 | TechSNAP 194
December 25th, 2014
We look back at this year in TechSNAP. Allan shares his war stories, TrueCrypt shuts down, Heartbleed happens & more!
Episode 193: Don’t Fire IT | TechSNAP 193
December 19th, 2014
More and more data breaches are leading to blackmail but the stats don’t tell the whole story. We’ll explain.
Plus the latest in the Sony hack, and …
Episode 192: Signed by Sony | TechSNAP 192
December 12th, 2014
If we could rebuild the Internet from scratch, what would we change? It’s more than just a thought experiment. We’ll share the details about real …
Episode 191: Celebrity Bugs | TechSNAP 191
December 5th, 2014
2014 has been the year of the celebrity bugs, we take a look at the new trend of giving security vulnerabilities names & logos & ask who it …