Ep 3: DigiNotar, You are the Weakest Link, Good Bye!

en-usOctober 01, 2017

Podcast Summary

The Role of Certificate Authorities in Web Security: Mozilla and its team verify trustworthy certificate authorities to secure websites, and transparency in decision-making is crucial for the public to trust CAs. Trust is earned through consistent and secure practices, not just ticking a box.
Certificate Authorities (CAs) are companies that issue certificates to secure websites and identify domains. Web browsers like Firefox contain a list of trusted CAs and root certificates that it uses to verify websites. Mozilla and its team of experts decide which CAs are trustworthy and should be added to the browser's root store. Their audit process checks if the CA is acting in accordance with relevant guidelines to ensure the security of the clients. The transparency in decision making is essential, and the public must have access to the process and be able to give their opinion. Trust is not a result of a checkbox; it's an organic thing that is earned through consistent and secure practices.
The Importance and Vulnerabilities of Certificate Authorities Security: Certificate Authorities play a significant role in ensuring secure online transactions, but a successful hack can compromise the trust of all organizations on the trusted list; thus CAs need to have top-notch security measures, and humans are bound to make errors.
Certificate authorities play a crucial role in ensuring the security of online transactions, but the weakest link problem poses a significant threat to the entire system. One successful hack of a CA can compromise the trust of all other organizations on the trusted list. Therefore, CAs need to have top-notch security that is impenetrable. Comodo and DigiNotar are examples of CAs that have faced security breaches in the past. While Comodo handled the issue well by detecting and fixing the problem quickly, DigiNotar invested heavily in its own security measures to protect its reputation. However, even with strict physical and digital security measures in place, mistakes can still happen, and humans are bound to make errors.
The DigiNotar Security Breach of 2011: Lessons Learned: Regular software updates and physical security protocols are essential in preventing cyber attacks, as exemplified by the DigiNotar breach's devastating consequences.
The DigiNotar security breach of 2011 allowed a hacker to issue rogue certificates and conduct a man-in-the-middle attack, redirecting people to fake Google sites and stealing their login credentials. One vulnerability exploited was a physical key card being left permanently inserted in a secure server for automatic certificate revocation list generation. The attack affected over 531 rogue certificates and over 300,000 Iranian visitors to the rogue server. The method of redirecting traffic to the fake sites is believed to have been done through DNS poisoning at local servers, rather than a high-level DNS server compromise or an Iranian ISP's complicity. The incident highlights the importance of regularly updating software vulnerabilities and physical security protocols to prevent cyber attacks.
The Fall of DigiNotar: Lessons Learned from a Catastrophic Security Breach: No matter how small or seemingly insignificant, security measures such as antivirus software and central logging can prevent a major security breach. Governments and businesses should take proactive steps to protect themselves and their customers.
The DigiNotar breach was a massive man-in-the-middle attack targeting Iranian civilians. The attack went unnoticed for months until Google detected a mis-issued certificate. DigiNotar's security was compromised due to catastrophic failures like no antivirus and no central logging. The Dutch government took control of DigiNotar after the public compromise. DigiNotar was the primary CA for numerous government sites and applications that caused a lot of systems to break after the browsers removed them from the trusted root store. DigiNotar tried to figure out who was responsible for the attack with the help of Fox-IT but to no avail. The hacker boasted about his skills and loyalty to his leader in a message found on the hacked server.
DigiNotar Hack and its Impact on Security Measures: The DigiNotar hack led to stricter audits for certificate authorities and introduced public key pinning, but also highlighted the need for constant security upgrades. Firefox's rapid certificate revocation system and Gervase Markham's legacy remind us that vigilance is key to staying safe online.
The DigiNotar hack was targeted towards Iranian citizens to find dissidence and those who were unhappy with the Iranian president. It is speculated that the Iranian government was behind the attack or someone trying to help them. This led to stricter audits for certificate authorities to pass and the use of public key pinning, which has some shortcomings. Firefox has introduced the OneCRL system to revoke certificates within 24 hours globally. A hack changes the way we do security worldwide and hackers can be seen as the immune system of the internet, making us stronger afterwards. Gervase Markham, a significant contributor to securing Firefox, passed away after battling cancer, but left a legacy of keeping us safe.

Recent Episodes from Darknet Diaries

In this episode, Geoff White (https://x.com/geoffwhite247) tells us what happened to Axie Infinity and Tornado cash. It’s a digital heist of epic proportions that changes everything.

This story comes from part of Geoff’s book “Rinsed” which goes into the world of money laundering. Get yours here https://amzn.to/3VJs7pb.

Darknet Diaries

en-usJuly 02, 2024

146: ANOM

In this episode, Joseph Cox (https://x.com/josephfcox) tells us the story of anom. A secure phone made by criminals, for criminals.

This story comes from part of Joseph’s book “Dark Wire” which you should definitely read. Get yours here https://www.hachettebookgroup.com/titles/joseph-cox/dark-wire/9781541702691.

Darknet Diaries

en-usJune 04, 2024

145: Shannen

Shannen Rossmiller wanted to fight terrorism. So she went online and did. Read more about her from her book “The Unexpected Patriot: How an Ordinary American Mother Is Bringing Terrorists to Justice”. An affiliate link to the book on Amazon is here: https://amzn.to/3yaf5sI. Thanks to Spycast for allowing usage of the audio interview with Shannen. Sponsors Support for this show comes from Varonis. Do you wonder what your company’s ransomware blast radius is? Varonis does a free cyber resilience assessment that tells you how many important files a compromised user could steal, whether anything would beep if they did, and a whole lot more. They actually do all the work – show you where your data is too open, if anyone is using it, and what you can lock down before attackers get inside. They also can detect behavior that looks like ransomware and stop it automatically. To learn more visit www.varonis.com/darknet. Support for this show comes from Axonius. The Axonius solution correlates asset data from your existing IT and security solutions to provide an always up-to-date inventory of all devices, users, cloud instances, and SaaS apps, so you can easily identify coverage gaps and automate response actions. Axonius gives IT and security teams the confidence to control complexity by mitigating threats, navigating risk, decreasing incidents, and informing business-level strategy — all while eliminating manual, repetitive tasks. Visit axonius.com/darknet to learn more and try it free. Support for this show comes from ThreatLocker®. ThreatLocker® is a Zero Trust Endpoint Protection Platform that strengthens your infrastructure from the ground up. With ThreatLocker® Allowlisting and Ringfencing™, you gain a more secure approach to blocking exploits of known and unknown vulnerabilities. ThreatLocker® provides Zero Trust control at the kernel level that enables you to allow everything you need and block everything else, including ransomware! Learn more at www.threatlocker.com. Learn more about your ad choices. Visit podcastchoices.com/adchoices

Darknet Diaries

en-usMay 07, 2024

undercover operations

144: Rachel

Rachel Tobac is a social engineer. In this episode we hear how she got started doing this and a few stories of how she hacked people and places using her voice and charm. Learn more about Rachel by following her on Twitter https://twitter.com/RachelTobac or by visiting https://www.socialproofsecurity.com/ Daniel Miessler also chimes in to talk about AI. Find out more about him at https://danielmiessler.com/. Sponsors Support for this show comes from Varonis. Do you wonder what your company’s ransomware blast radius is? Varonis does a free cyber resilience assessment that tells you how many important files a compromised user could steal, whether anything would beep if they did, and a whole lot more. They actually do all the work – show you where your data is too open, if anyone is using it, and what you can lock down before attackers get inside. They also can detect behavior that looks like ransomware and stop it automatically. To learn more visit www.varonis.com/darknet. Support for this show comes from Axonius. The Axonius solution correlates asset data from your existing IT and security solutions to provide an always up-to-date inventory of all devices, users, cloud instances, and SaaS apps, so you can easily identify coverage gaps and automate response actions. Axonius gives IT and security teams the confidence to control complexity by mitigating threats, navigating risk, decreasing incidents, and informing business-level strategy — all while eliminating manual, repetitive tasks. Visit axonius.com/darknet to learn more and try it free. Support for this show comes from ThreatLocker®. ThreatLocker® is a Zero Trust Endpoint Protection Platform that strengthens your infrastructure from the ground up. With ThreatLocker® Allowlisting and Ringfencing™, you gain a more secure approach to blocking exploits of known and unknown vulnerabilities. ThreatLocker® provides Zero Trust control at the kernel level that enables you to allow everything you need and block everything else, including ransomware! Learn more at www.threatlocker.com. Learn more about your ad choices. Visit podcastchoices.com/adchoices

en-usApril 02, 2024

143: Jim Hates Scams

Jim Browning has dedicated himself to combatting scammers, taking a proactive stance by infiltrating their computer systems. Through his efforts, he not only disrupts these fraudulent operations but also shares his findings publicly on YouTube, shedding light on the intricacies of scam networks. His work uncovers a myriad of intriguing insights into the digital underworld, which he articulately discusses, offering viewers a behind-the-scenes look at his methods for fighting back against scammers. Jim’s YouTube channel: https://www.youtube.com/c/JimBrowning Sponsors Support for this episode comes from NetSuite. NetSuite gives you visibility and control of your financials, planning, budgeting, and of course - inventory - so you can manage risk, get reliable forecasts, and improve margins. NetSuite helps you identify rising costs, automate your manual business processes, and see where to save money. KNOW your numbers. KNOW your business. And get to KNOW how NetSuite can be the source of truth for your entire company. Visit www.netsuite.com/darknet to learn more. This episode is sponsored by Intruder. Growing attack surfaces, dynamic cloud environments, and the constant stream of new vulnerabilities stressing you out? Intruder is here to help you cut through the chaos of vulnerability management with ease. Join the thousands of companies who are using Intruder to find and fix what matters most. Sign up to Intruder today and get 20% off your first 3 months. Visit intruder.io/darknet. This show is sponsored by Shopify. Shopify is the best place to go to start or grow your online retail business. And running a growing business means getting the insights you need wherever you are. With Shopify’s single dashboard, you can manage orders, shipping, and payments from anywhere. Sign up for a one-dollar-per-month trial period at https://shopify.com/darknet. Learn more about your ad choices. Visit podcastchoices.com/adchoices

en-usMarch 05, 2024

142: Axact

Axact sells fake diplomas and degrees. What could go wrong with this business plan? Sponsors Support for this episode comes from NetSuite. NetSuite gives you visibility and control of your financials, planning, budgeting, and of course - inventory - so you can manage risk, get reliable forecasts, and improve margins. NetSuite helps you identify rising costs, automate your manual business processes, and see where to save money. KNOW your numbers. KNOW your business. And get to KNOW how NetSuite can be the source of truth for your entire company. Visit www.netsuite.com/darknet to learn more. Support for this show comes from ThreatLocker®. ThreatLocker® is a Zero Trust Endpoint Protection Platform that strengthens your infrastructure from the ground up. With ThreatLocker® Allowlisting and Ringfencing™, you gain a more secure approach to blocking exploits of known and unknown vulnerabilities. ThreatLocker® provides Zero Trust control at the kernel level that enables you to allow everything you need and block everything else, including ransomware! Learn more at www.threatlocker.com. This show is sponsored by Shopify. Shopify is the best place to go to start or grow your online retail business. And running a growing business means getting the insights you need wherever you are. With Shopify’s single dashboard, you can manage orders, shipping, and payments from anywhere. Sign up for a one-dollar-per-month trial period at https://shopify.com/darknet. Learn more about your ad choices. Visit podcastchoices.com/adchoices

Darknet Diaries

en-usFebruary 06, 2024

information questioning

deceptive situations

ethical practices

141: The Pig Butcher

The #1 crime which results in the biggest financial loss is BEC fraud. The #2 crime is pig butchering. Ronnie Tokazowski https://twitter.com/iHeartMalware walks us through this wild world. Sponsors Support for this episode comes from NetSuite. NetSuite gives you visibility and control of your financials, planning, budgeting, and of course - inventory - so you can manage risk, get reliable forecasts, and improve margins. NetSuite helps you identify rising costs, automate your manual business processes, and see where to save money. KNOW your numbers. KNOW your business. And get to KNOW how NetSuite can be the source of truth for your entire company. Visit www.netsuite.com/darknet to learn more. Support for this show comes from Drata. Drata streamlines your SOC 2, ISO 27001, PCI DSS, HIPAA, GDPR & many other compliance frameworks, and provides 24-hour continuous control monitoring so you focus on scaling securely. Listeners of Darknet Diaries can get 10% off Drata and waived implementation fees at drata.com/darknetdiaries. This show is sponsored by Shopify. Shopify is the best place to go to start or grow your online retail business. And running a growing business means getting the insights you need wherever you are. With Shopify’s single dashboard, you can manage orders, shipping, and payments from anywhere. Sign up for a one-dollar-per-month trial period at https://shopify.com/darknet. Learn more about your ad choices. Visit podcastchoices.com/adchoices

Darknet Diaries

en-usJanuary 02, 2024

online identity verification

online relationships

social stigmas

financial scams

emotional manipulation

crypto investments

bec attacks

cybersecurity awareness

fraud prevention

secure transactions

140: Revenge Bytes

Madison's nude photos were posted online. Her twin sister Christine came to help. This begins a bizarre and uneasy story. Learn more about your ad choices. Visit podcastchoices.com/adchoices

Darknet Diaries

en-usDecember 05, 2023

139: D3f4ult

This is the story of D3f4ult (twitter.com/_d3f4ult) from CWA. He was a hacktivist, upset with the state of the way things were, and wanted to make some changes. Changes were made. Sponsors Support for this show comes from Axonius. The Axonius solution correlates asset data from your existing IT and security solutions to provide an always up-to-date inventory of all devices, users, cloud instances, and SaaS apps, so you can easily identify coverage gaps and automate response actions. Axonius gives IT and security teams the confidence to control complexity by mitigating threats, navigating risk, decreasing incidents, and informing business-level strategy — all while eliminating manual, repetitive tasks. Visit axonius.com/darknet to learn more and try it free. Support for this show comes from Thinkst Canary. Their canaries attract malicious actors in your network and then send you an alert if someone tries to access them. Great early warning system for knowing when someone is snooping around where they shouldn’t be. Check them out at https://canary.tools. Support for this show comes from Quorum Cyber. Their mantra is: “We help good people win.” If you’re looking for a partner to help you reduce risk and defend against the threats that are targeting your business — and especially if you are interested in Microsoft Security — reach out to Quorum Cyber at www.quorumcyber.com/darknet-diaries. Sources https://www.vice.com/en/article/z3ekk5/kane-gamble-cracka-back-online-after-a-two-year-internet-ban https://www.wired.com/2015/10/hacker-who-broke-into-cia-director-john-brennan-email-tells-how-he-did-it/ https://www.hackread.com/fbi-server-hacked-miami-police-data-leaked/ https://archive.ph/Si79V#selection-66795.5-66795.6 https://wikileaks.org/cia-emails/John-Brennan-Draft-SF86/page-7.html Learn more about your ad choices. Visit podcastchoices.com/adchoices

Darknet Diaries

en-usNovember 07, 2023

138: The Mimics of Punjab

This episode is about scammers in the Punjab region. Tarun (twitter.com/taruns21) comes on the show to tell us a story of what happened to him. Naomi Brockwell (twitter.com/naomibrockwell) makes an appearance to speak about digital privacy. To learn more about protecting your digital privacy, watch Naomi’s YouTube channel https://www.youtube.com/@NaomiBrockwellTV. And check out the books Extreme Privacy (https://amzn.to/3L3ffp9) and Beginner’s Introduction to Privacy (https://amzn.to/3EjuSoY). Sponsors Support for this show comes from Axonius. The Axonius solution correlates asset data from your existing IT and security solutions to provide an always up-to-date inventory of all devices, users, cloud instances, and SaaS apps, so you can easily identify coverage gaps and automate response actions. Axonius gives IT and security teams the confidence to control complexity by mitigating threats, navigating risk, decreasing incidents, and informing business-level strategy — all while eliminating manual, repetitive tasks. Visit axonius.com/darknet to learn more and try it free. Support for this show comes from SpyCloud. It’s good practice to see what data is getting passed around out there regarding you, your employees, your customers, and your business. The dark web is a place where this data is traded and shared. SpyCloud will help you find what out there about you and give you a report so you can be aware. Then they’ll continuously monitor the dark web for any new exposures you should be aware of. To learn more visit spycloud.com/darknetdiaries. Support for this show comes from ThreatLocker. ThreatLocker has built-in endpoint security solutions that strengthen your infrastructure from the ground up with a zero trust posture. ThreatLocker’s Allowlisting gives you a more secure approach to blocking exploits of known and unknown vulnerabilities. ThreatLocker provides zero trust control at the kernel level. Learn more at www.threatlocker.com. Learn more about your ad choices. Visit podcastchoices.com/adchoices

Darknet Diaries

en-usOctober 03, 2023

limited law enforcement resources

Related Episodes

FPV RAW podcast - David Nevarez

Website and to donate to the Podcast. It's just $1 =)
https://www.sweepwings.com

Instagram
https://www.instagram.com/sweepwingsrc/

https://www.instagram.com/fpvraw/

Facebook

https://www.facebook.com/fpvraw/

https://www.facebook.com/SweepwingsRC

Youtube
https://www.youtube.com/channel/UCNbMgLsoigN6DCw8O-wmSng

en-usMarch 04, 2018

Escaping the 2D monitor – VR arcades: a Chips with Everything podcast

Jordan Erica Webber has her reservations when it comes to virtual reality in gaming. This week she battles with motion sickness and visits a VR arcade in London to see if her mind can be changed. Is there a future for these types of arcades?

Chips with Everything

en-gbMarch 23, 2018

technology

virtual reality

london

Encore: Will Bots Drive Business Transformation?

The buzz: The worst business decision you can make is no decision (John Peace). The move to an Intelligent Enterprise is not just about technology decisions. It's about moving from emotion-based to data-driven decision-making for core business processes. Now, for the first time, data science and big data technologies have converged to make this possible. Where does this leave the business and management consultants who have been providing the qualitative insights that drove emotion-based decision making? The experts speak. David Lynch, BearingPoint: “Knowledge that does not change behaviour is useless. But knowledge that changes behaviour quickly loses its relevance” (Yuval Noah Harari). Jan Philipp Thomsen, Celonis: “A fool sees not the same tree as a wise man sees” (William Blake). Keith Grayson, SAP: “If you say I’m great, thank you very much. But I know what I am. I could be better, man, you know” (Keith Richards). Join us for Will Bots Drive Business Transformation?

Internet of Things with Game Changers, Presented by SAP

en-usJune 05, 2019

Episode 130: What Happens to Twitter Now?

Katherine Druckman and Doc Searls speculate about Twitter's future and discuss the evolution of audience engagement. Site/Blog/Newsletter (https://www.reality2cast.com) FaceBook (https://www.facebook.com/reality2cast) Twitter (https://twitter.com/reality2cast) Mastodon (https://linuxrocks.online/@reality2cast)

enOctober 22, 2022

Sabbath and the Art of Rest

Do we know how to truly rest? Who would we be if we did?

I’ve been wrestling with these questions since I read Abraham Joshua Heschel’s stunning book “The Sabbath” in college. The ancient Jewish ritual of the Sabbath reserves a full day per week for rest. As it’s commonly practiced, that means about 25 hours every week of no work, very little technology and plenty of in-person gathering.

But the Sabbath is a much more radical approach to rest than a simple respite from work and technology. Implicit in the practice of the Sabbath is a stinging critique of the speed at which we live our lives, the ways we choose to spend our time and how we think about the idea of rest itself. That, at least, is a central argument of Judith Shulevitz’s wonderful book, “The Sabbath World: Glimpses of a Different Order of Time.”

Shulevitz is a longtime culture critic and currently a contributing writer for The Atlantic. Her book isn’t just about the Sabbath itself, it’s about the world the Sabbath tries to create: one with an entirely different conception of time, morality, rest and community. It’s the kind of world that is wholly different from our own, and one whose wisdom is urgently needed.

So, to kick off the new year, I invited Shulevitz on the show to explore what the Sabbath is, the value system embedded within it and what lessons it holds for our lives. I left the conversation feeling awed by how such an ancient practice can feel simultaneously so radical and yet so incredibly urgent.

Mentioned:

The Sabbath by Abraham Joshua Heschel

I and Thou by Martin Buber

Book Recommendations:

Adam Bede by George Eliot

The Seven Day Circle by Eviatar Zerubavel

On the Clock by Emily Guendelsberger

Thoughts? Email us at ezrakleinshow@nytimes.com. Guest suggestions? Fill out this form.

You can find transcripts (posted midday) and more episodes of “The Ezra Klein Show” at nytimes.com/ezra-klein-podcast, and you can find Ezra on Twitter @ezraklein. Book recommendations from all our guests are listed at https://www.nytimes.com/article/ezra-klein-show-book-recs.

“The Ezra Klein Show” is produced by Emefa Agawu, Annie Galvin, Jeff Geld, Rogé Karma and Kristin Lin. Fact-checking by Michelle Harris, Mary Marge Locker and Kate Sinclair. Original music by Isaac Jones. Mixing by Jeff Geld. Audience strategy by Shannon Busta. The executive producer of New York Times Opinion audio is Annie-Rose Strasser. Special thanks to Pat McCusker.

enJanuary 03, 2023