Docker, Government Attacks, and Best Practices

Watch the DAY[0] podcast live on Twitch every Monday afternoon at 12:00pm PST (3:00pm EST) -- https://www.twitch.tv/dayzerosec

[00:00:30] - Physical Adversarial Textures that Fool Visual Object Tracking

[00:04:30] - DPatch: An Adversarial Patch Attack on Object Detectors

[00:11:45] - Side-Channel Attack to Extract ECDSA Private Keys from Qualcom Hardware-Based Keystore

[00:19:40] - For PayPal security team,“get user balances and transaction details" is not a vulnerability

[00:26:05] - "CI Knew There Would Be Bugs Here" - Exploring Continuous Integration

[00:40:10] - Hacker Finds They Can Kill Car Engines After Breaking Into GPS Tracking Device

[00:50:25] - Security baseline (DRAFT) for Windows 10 v1903

[00:58:25] - Security Analysis of Near-Field Communication (NFC) Payments

[01:12:10] - Docker Hub Hacked – 190k accounts, GitHub tokens revoked, Builds disabled

[01:18:50] - eGobbler - malvertising campaign exploits zero-day Chrome bug

[01:32:15] - New backdoor inspired by leaked NSA malware

[01:39:60] - Mueller report: Russia hacked state databases and voting machines

[01:54:10] - New Technique Uses Power Anomalies to ID Malware in Embedded Systems