Epic disasters: ZombieLoad, WhatsApp, Google 2FA Keys, Microsoft RDP – Intego Mac Podcast, Episode 83
Posted on
by
Kirk McElhearn
The Intego Mac Podcast episode 83 is now available! It has been a busy week, chock full of news about security vulnerabilities.
ZombieLoad is a speculative execution exploit that affects all recent Intel processors, and Apple has issued a fix for it (well, for certain Mac models, anyway).
Meanwhile, a serious WhatsApp vulnerability made the evening news because it was so dangerous.
Also, Google had an issue with Bluetooth in its two-factor authentication keys, and Microsoft’s Remote Desktop Protocol had a failure so colossal that Microsoft had to issue patches all the way back to Windows XP.
- WhatsApp exploit let attackers install government-grade spyware on phones
- Facebook’s brief explanation of the WhatsApp vulnerability
- You probably weren’t a target of the WhatsApp surveillance hack
- Buffer overflow (Wikipedia)
- Remote code execution, or arbitrary code execution (Wikipedia)
- Secure Real-time Transport Protocol (Wikipedia)
- Microsoft Issues Urgent Fix For Windows In First XP Patch Since WannaCry
- Titan-ic disaster: Bluetooth blunder sinks Google’s 2FA keys, free replacements offered
- Apple security updates
- Episode 13: Is My Computer’s CPU Secure? (discussion of Meltdown and Spectre)
- Additional mitigations for speculative execution vulnerabilities in Intel CPUs
- How to enable full mitigation for Microarchitectural Data Sampling (MDS) vulnerabilities
- SGX enclaves
- CPUSetter
If you like what you hear, be sure to rate and review the Intego Mac Podcast in Apple Podcasts!
Have a question? Ask us!
Want your question aired in our next episode of the Intego Mac Podcast? Listeners can contact Intego via email at [email protected] and ask us any question that your burning heart desires, or to provide feedback and ideas for upcoming podcast episodes.
