In this episode of Security Nation, Jen and Tod chat with Rob Graham of Errata Security about his experience attending pillow magnate Mike Lindell's Cyber Symposium, where he claimed packet captures would reveal incontrovertible evidence of widespread fraud in the 2020 US presidential election. (Spoiler alert: Nothing resembling that description actually occurred at Lindell's event.) An expert on packet captures, Graham recounts the Kafkaesque forensic logic behind the Cyber Symposium data — some of which was presented in a file type only known to a single living person — as well as the value of having real experts attend highly dubious events like this one.
Stick around for the Rapid Rundown, where Tod and Jen discuss Microsoft's plan to turn off Basic Auth in Exchange Online next year and the Autodiscover bug that may have prompted the change.
Rob Graham is a well-known cybersecurity expert. He created the BlackICE personal firewall, the first IPS, sidejacking, and masscan. He frequently speaks at conferences and blogs.
- Rob's live Tweet thread
- Rob's archive of the provided RTFs (hex decoded)
- Rob's BLX Container Extractor
- All about Dennis Montgomery. Warning: this is a Wiki rabbit hole.
- A Torrent of several gives of data from the Cyber-Symposium is available at:
Rapid Rundown links
- The original Bleeping Computer story on Microsoft shutting off Basic Auth
- The related story about Amit's Autodiscover bug finding that may have prompted the above
- A somewhat early reference to some WPAD bugs
- The earliest reference Tod could find about WPAD exploits... which happened to be written by the very same Tod back in 2009.
Like the show? Want to keep Jen and Tod in the podcasting business? Feel free to rate and review with your favorite podcast purveyor, like Apple Podcasts.