Popular password manager LastPass announced that some of their source code was stolen, but that no customer passwords were compromised in a recent data breach disclosure, an Israeli researcher has discovered a new method to exfiltrate data from air-gapped systems using the LED indicators on network cards, and details about the Twitter whistleblower Peiter “Mudge” Zatko and his claims about how Twitter had poor security practices, misled federal regulators about safety, and failed to properly estimate the number of bots on Twitter.

** Links mentioned on the show **

LastPass Says No Passwords Stolen in Data Breach
https://www.cnet.com/tech/services-and-software/lastpass-says-no-passwords-stolen-in-data-breach/
https://blog.lastpass.com/2022/08/notice-of-recent-security-incident/

ETHERLED: Air-gapped systems leak data via network card LEDs
https://www.bleepingcomputer.com/news/security/etherled-air-gapped-systems-leak-data-via-network-card-leds/

Twitter’s former security chief says company lied about bots and safety
https://www.theverge.com/2022/8/23/23317857/twitter-whistleblower-zatko-security-spam-safety
https://en.wikipedia.org/wiki/L0pht
https://en.wikipedia.org/wiki/Peiter_Zatko

** Watch this episode on YouTube **

** Thank you to our sponsors! **

SLNT

Visit slnt.com to check out SLNT’s amazing line of Faraday bags and other products built to protect your privacy. As a listener of this podcast you receive 10% off your order at checkout using discount code “...

Read Full Story: https://securityboulevard.com/2022/09/lastpass-data-breach-etherled-air-gappe...