Uber and LastPass Breaches + Self-Protection

The Cyber Queens Podcast

Content provided by Maril Vernon, Erika Eakins, and Amber Devilbiss, Maril Vernon, Erika Eakins, and Amber Devilbiss. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Maril Vernon, Erika Eakins, and Amber Devilbiss, Maril Vernon, Erika Eakins, and Amber Devilbiss or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.

1+ y ago 46:33

MP3•Episode home

**DISCLAIMER: All of our opinions are our own. They do not represent, nor are they affiliated with the interests and beliefs of the companies we work for. **
In this episode, we discuss the obvious….BREACHES, BREACHES, EVERYWHERE!!! Maril & Erika discuss two recent breaches at large organizations: Uber & LastPass. Maril breaks down how they happened from an offensive perspective & as always Erika her common sense of how to avoid being a victim of a breach. We also offer guidance on how to be proactive vs. reactive to the day-to-day users. After listening to the live episode, we realized that the industry has a boatload of acronyms as usual! Don’t worry we are keeping a tally of them for you and plan to release a Cyber Acronym Cheat Sheet for you! I hope you enjoy this episode as much as we did and remember to share with a friend/family member/lover/whatever.

Key Topics:

Breaches, Breaches, Everywhere!
Current Breaches In Large Companies
Ramifications & Responses We Are Seeing
How Breaches Happen From An Offensive Perspective
How The Average User Can Be Proactive vs. Reactive From Breaches
Advice For Users & Companies If/When You Are Breached
Password Policies & Multi-Factor Authentication (MFA)
Executive Order 14028
High-Profile Breaches of 2022
Potential Ramifications For Users & Their Data As A Result Of The Hack For An Organization & The Basic User?
What To Do If Your Account Is Hacked/Compromised As A Basic User
Smishing…..What Tha?????

Sources:

ChatGPT
Article: “Google Fi suffers data breach following T-Mobile hack”
Twitch Layoffs
Uber Breach
LastPass Breach
Who Is Lapsus$?
Maril’s LinkedIn Post Around Two Marines Defeating AI
1Password
Bitwarden
EO On Improving The Nation’s Cybersecurity: https://tinyurl.com/3j82p4kn & https://tinyurl.com/4srnxy2u
Aquia Inc’s Webinar Discussing EO 14028 with Chris Hughes (Aquia CISO): https://tinyurl.com/3dx2rzbk
Microsoft Digital Defense Report 2022 (MDDR 2022): https://tinyurl.com/5n872652
The Basic Security Controls From CIS: https://tinyurl.com/2j9fpeh4
MITRE Matrix
COMPTIA Sec+

Get in Touch:

Maril Vernon LinkedIn
Stacey Champagne LinkedIn
Queens Twitter - @TheCyberQueens
Queens LinkedIn

Calls to Action:

Subscribe to our newsletter for exclusive insight and new episodes!
If you love us- share us!

Chapters

1. Introductions (00:00:00)

2. Breaches, Breaches Everywhere (00:00:45)

3. Risk Appetitie (00:02:20)

4. Uber & LastPass Breaches (00:04:00)

5. Email Spoofing & How to Verify Senders (00:06:38)

6. How Hackers 'Pretect' Phishing Emails (00:07:30)

7. Uber Breach- How It Happened (00:08:12)

8. Password Policies & Multi-Factor Authentication (MFA) - How Important Are These? (00:10:50)

9. Maril's Trick for 'Salting' Password Vaults (00:11:30)

10. Proactive vs Reactive Breach Stances (00:16:00)

11. CORRECTION On The Deadline To Become Compliant With The EO That Erika Mentioned, It’s Not January 14, 2023. The Deadlines Are June 11, 2023 & September 14, 2023 (00:17:26)

12. We Ask ChatGPT How It Would Secure an Org (00:22:00)

13. High Profile Breaches of 2022 (00:26:11)

14. Breach Ramifications for Orgs & End Users (00:26:50)

15. What To Do If You're Breached (00:33:56)

16. Final Thoughts (00:42:42)

25 episodes

#Tech #Maril Vernon, Erika Eakins, and Nathalie Baker #Erika Eakins #Maril Vernon #Nathalie Baker