The CoinSec Podcast-logo

The CoinSec Podcast

United States

More Information

Location:

United States

Language:

English


Episodes

Episode 28: Back from Black Hat & DEF CON, Microsoft's New Blockchain Service, Tineola Red Team Tool, Hacker Bail Set in Cryptocurrency, and More

8/18/2018
More
On this week's episode Mike and Steve are back from Black Hat and DEF CON. We talk about Microsoft's new blockchain as a service tool. A new Blockchain red team tool was dropped at DEF CON called Tineola. A Hacker's bail was set to be paid in cryptocurrency. And AT&T was sued for not protecting someone from a SIM swapping attack. All that and more on episode number 28 of the CoinSec podcast. Honk Kong by Taseh is licensed under a Attribution-NonCommercial-ShareAlike License. Based on a...

Duration:00:57:09

Episode 27: SIM Swapping Attacks, Hijacked Twitter Accounts, 2FA Phishing, and a Massive CoinHive Campaign

8/3/2018
More
This week we discussed SIM swapping attacks. Spammers resorting to hijacking verified Twitter accounts, phishing for two-factor tokens, and a massive new CoinHive campaign. Honk Kong by Taseh is licensed under a Attribution-NonCommercial-ShareAlike License. Based on a work at https://taseh.bandcamp.com/ Business Box by Audeka is licensed under a Attribution-Noncommercial-Share Alike 3.0 United States License.

Duration:00:56:24

Episode 26: Cryptojacking and Advanced Attackers, How to Spot a Bad Coin, and a Digibyte Primer

7/20/2018
More
Cryptojacking appears to be fading at the moment but at the same time more advanced malware is being discovered daily. We talk about how to spot a "bad coin" in terms of mining, security, etc. Lastly, Steve gives us a Digibyte primer. Honk Kong by Taseh is licensed under a Attribution-NonCommercial-ShareAlike License. Based on a work at https://taseh.bandcamp.com/ Business Box by Audeka is licensed under a Attribution-Noncommercial-Share Alike 3.0 United States License.

Duration:01:02:38

Episode 25: Miner Security, Bancor Hacked, False Top-Up Ethereum Vulnerability, and Opera Cryptocurrency Wallet

7/13/2018
More
Should you disable your anti-virus just to run your mining software? We talk about that as well as other security issues that come up for cryptocurrency miners. Also, the exchange Bancor was hacked for $23.5 million. The Opera mobile browser is adding a cryptocurrency wallet and a new vulnerability was discovered in Ethereum. Honk Kong by Taseh is licensed under a Attribution-NonCommercial-ShareAlike License. Based on a work at https://taseh.bandcamp.com/ Business Box by Audeka is...

Duration:01:01:19

Episode 24: GPU Talk, Syscoin Hack, $100 Million Crypto Wallet Bug Bounty, and Electroneum Supporting ASICs

7/6/2018
More
On this week's episode Mike built a mining rig so we chatted quite a bit about GPU's and the market. Syscoin had an issue that caused Binance to reset API keys for its users. HOYOS has offered a $100 million dollar bug bounty for anyone that can hack it's custom wallet. Electroneum is forking to allow ASICs to mine again. Honk Kong by Taseh is licensed under a Attribution-NonCommercial-ShareAlike License. Based on a work at https://taseh.bandcamp.com/ Business Box by Audeka is licensed...

Duration:00:49:19

Episode 23: Silk Road, Mastercard Blockchain Patent, Bitfi Wallet, FPGA Cards Making A Comeback, and Stop Cryptojacking

6/29/2018
More
We chat about Ross Ulbricht getting denied a petition of his life sentence. Mastercard wins patent for anonymous blockchain transactions. The allegedly "unhackable" Bitfi wallet. FPGA's are making a comeback and more! Honk Kong by Taseh is licensed under a Attribution-NonCommercial-ShareAlike License. Based on a work at https://taseh.bandcamp.com/ Business Box by Audeka is licensed under a Attribution-Noncommercial-Share Alike 3.0 United States License.

Duration:00:48:16

Episode 22: Passphrase Cracking, ZCash ASICs, BitThumb Hack, Blockchain C2, and Firebase DBs Hacked

6/22/2018
More
On this episode the hosts discuss cracking passphrases with hashcat. Also, Zcash is battling ASICs. A proof of concept for a command and control channel over Ethereum is discussed. BitThumb got hacked. Lastly we discuss some recent arrests that were made in the cryptocurrency world. http://coinsecpodcast.com/episode-22-show-notes/ Honk Kong by Taseh is licensed under a Attribution-NonCommercial-ShareAlike License. Based on a work at https://taseh.bandcamp.com/ Business Box by Audeka is...

Duration:01:08:20

Episode 21: Blockchain-based Voting, EOS Bug Bounty Payouts, Raven Coins Jacked from YiiMP Pools, and North Korea Targeting Exchange Users

6/8/2018
More
West Virginia becomes the first U.S. state to allow internet voting by blockchain in primary elections. Does security matter now??? An EOS Bug Bounty paid out $90k to one researcher. YiiMP pools being jacked of Raven coins, and more! Show notes: http://coinsecpodcast.com/episode-21-show-notes/ Honk Kong by Taseh is licensed under a Attribution-NonCommercial-ShareAlike License. Based on a work at https://taseh.bandcamp.com/ Business Box by Audeka is licensed under a...

Duration:00:52:26

Episode 20: EOS Remote Code Execution Vuln, Cost of a 51% Attack, Banks Blackmailed for XRP, and Electroneum Issues

6/1/2018
More
In episode 20 of the CoinSec podcast we discuss the epic remote code execution vulnerability found in EOS. How much would it cost to perform a 51% attack against a given cryptocurrency? Two banks were blackmailed for XRP. Electroneum is having block issues. Show Notes: http://coinsecpodcast.com/episode-20-show-notes/ Honk Kong by Taseh is licensed under a Attribution-NonCommercial-ShareAlike License. Based on a work at https://taseh.bandcamp.com/ Business Box by Audeka is licensed...

Duration:01:03:16

Episode 19: Hack Miami Interviews, Bitcoin Gold Double Spend Attack, Verge Hacked, & Sentinel Protocol ICO

5/25/2018
More
On this week's episode we discuss the Bitcoin Gold double spend attack. Verge, Taylor, and Cypherium Chain all got hacked. Coincheck is removing privacy coins, and we have interviews from Hack Miami. Also, we talked about the Sentinel Protocol ICO. Show Notes: http://coinsecpodcast.com/episode-19-show-notes/ Honk Kong by Taseh is licensed under a Attribution-NonCommercial-ShareAlike License. Based on a work at https://taseh.bandcamp.com/ Business Box by Audeka is licensed under a...

Duration:01:03:26

Episode 18: Bad Ideas

5/18/2018
More
This week we didn't have much of an agenda but we chatted a lot about some of the potential innovations attackers could make in terms of malware and had some other really really bad ideas. Show notes: https://coinsecpodcast.com/episode-18-show-notes Honk Kong by Taseh is licensed under a Attribution-NonCommercial-ShareAlike License. Based on a work at https://taseh.bandcamp.com/ Business Box by Audeka is licensed under a Attribution-Noncommercial-Share Alike 3.0 United States License.

Duration:01:01:10

Episode 17: The Gang Builds A Cryptocurrency Mining Rig

5/14/2018
More
In this episode the hosts of the show talk about what it takes to build a cryptocurrency mining rig. We fill a cart and purchase all the pieces necessary by the end of the episode. To see the details of the rig we built be sure to check out the show notes here: https://coinsecpodcast.com/episode-17-show-notes Honk Kong by Taseh is licensed under a Attribution-NonCommercial-ShareAlike License. Based on a work at https://taseh.bandcamp.com/ Business Box by Audeka is licensed under a...

Duration:01:31:31

Episode 16: Cryptocurrency CTFs and MonteCrypto

5/4/2018
More
We welcome the creators of the cryptocurrency CTF held at BSides NoVA John and Will (bspar_) to the show. Capture the Flag contests are a huge part of the InfoSec ecosystem. We discuss their CTF along with how they can create more interest in a specific topic like cryptocurrency. The hosts also discuss their experience with the cryptocurrency challenge MonteCrypto. http://coinsecpodcast.com/episode-16-show-notes/ Honk Kong by Taseh is licensed under a Attribution-NonCommercial-ShareAlike...

Duration:01:07:54

Episode 15: Special Guest Troy Mursch AKA "Bad Packets", BatchOverflow, Route53 BGP Hijack, and a New Vulnerability in Equihash Mining Pools

4/27/2018
More
Special guest Troy Mursch AKA "@bad_packets" is a researcher who specializes in cryptojacking, botnets, and more. We discuss his experience with the latest trends in cryptojacking. Also, a new vulnerability was discovered in some Equihash mining pools. A new smart contract vulnerability called BatchOverflow was discovered. We also discuss the Route53 BGP hijack that happened this week. Show Notes here: http://coinsecpodcast.com/episode-15-show-notes/ Honk Kong by Taseh is licensed under...

Duration:01:02:06

Episode 14: Special Guests Maurelian and Bernhard from ConsenSys

4/20/2018
More
In episode 14 we are joined by Maurelian and Bernhard from ConsenSys. They brought their knowledge around smart contract security to the show. Bernhard recently published a paper titled "Smashing Ethereum Smart Contracts for Fun and Real Profit" that introduces a security analysis tool for Ethereum smart contracts called "Mythril". Discussion around auditing smart contracts and how to get started in smart contract security was also had. Show Notes:...

Duration:01:00:58

Episode 13: Top 10 Smart Contract Vulns (DASP), Flaw in Zerocoin, ACINQ Losing Their Code Signing Key, & $3.3 Million in Bitcoin Stolen from CoinSecure

4/14/2018
More
A cryptographic flaw was found in Zerocoin. Hosts discuss the top 10 smart contract vulnerabilities as detailed in the Decentralized Application Security Project (DASP). ACINQ lost their code signing key forcing them to push a new Android app. $3.3 million worth of Bitcoin was allegedly stolen from the CoinSecure exchange. Honk Kong by Taseh is licensed under a Attribution-NonCommercial-ShareAlike License. Based on a work at https://taseh.bandcamp.com/ Business Box by Audeka is licensed...

Duration:01:08:38

Episode 12: Special Guest Sneakerhax, Wallet Software Security, Android App Mining Malware, and Verge Hacked

4/6/2018
More
In episode #12 we welcome special guest Sneakerhax to the CoinSec Podcast! We discuss some of the security issues around cryptocurrency wallet software. Malicious coin-miners have been found embedded into semi-legitimate Android applications. Lastly, we discuss Verge cryptocurrency being hacked. Honk Kong by Taseh is licensed under a Attribution-NonCommercial-ShareAlike License. Based on a work at https://taseh.bandcamp.com/ Business Box by Audeka is licensed under a...

Duration:01:02:27

Episode 11: Cryptocurrency Hidden in Artwork, Atlanta Ransomware, Drupalgeddon 2.0, and Fileless Crypto-Malware

3/30/2018
More
This week on the CoinSec Podcast Brian Krebs investigates who and what Coinhive is. The city of Atlanta is fighting a ransomware attack. Drupalgeddon 2.0 is happening as a new RCE has surfaced. Fileless crypto-mining malware has surfaced. All that and more on CoinSec Ep. 11. Honk Kong by Taseh is licensed under a Attribution-NonCommercial-ShareAlike License. Based on a work at https://taseh.bandcamp.com/ Business Box by Audeka is licensed under a Attribution-Noncommercial-Share Alike...

Duration:00:58:00

Episode 10: Ledger & Trezor Vulns, Illegal Content on the Blockchain, Epic Coinbase Bug Bounty, $20 Million in Eth stolen, and More

3/23/2018
More
A fifteen-year-old found some pretty epic vulnerabilities in both of the leading hardware wallets Ledger Nano S and Trezor One. Research was released detailing how there is potentially illegal content being posted on the Bitcoin blockchain. A $10,000 bug bounty was payed out by Coinbase to a researcher who found a vulnerability that would have allowed an attacker to steal millions in Ether. Over the past two years attackers have been stealing over $20 million in Ether from publicly facing...

Duration:01:14:19

Episode 9: IOTA Signature Issues, Monero ASICs, Echidna Fuzzer, CryptoSecure ICO, and CryptoHex Steel Rod Seed Backup

3/16/2018
More
This week Beau and Ralph discuss a new vulnerability patched in IOTA related to signature issues. Monero is forking due to ASIC mining systems hitting the market for the CryptoNight algorithm. Trail of Bits released a new smart contract fuzzer called Echidna. A Kickstarter for a steel rod called CryptoHex to store BIP39 seeds is running. Additional topics covered this week were the CryptoSecure ICO, Google banning cryptocurrency ads, and more!

Duration:01:02:14