Websites still using HTTP are marked as "not secure" by Chrome, 85,000 Google employees haven't been phished for a year, and if you're buying drugs via PayPal’s Venmo app you should say goodbye to privacy.
Remember: Subscribe on Apple Podcasts, or your favourite podcast app, to catch all of the episodes as they go live. Thanks for listening!
Warning: This podcast may contain nuts, adult themes, and rude language.
Theme tune: "Vinyl Memories" by Mikael Manvelyan.
Assorted sound effects: AudioBlocks.
- Vote for Smashing Security in the podcast awards!
- Smashing Security 039: Woah - are we talking to a cyborg?
- Google: Security Keys Neutralized Employee Phishing
- Less than 10% of Gmail users have enabled two-factor authentication
- Google's Advanced Protection Program
- What is Google’s Advanced Protection Program? - YouTube
- Two-factor authentication versus two-step verification
- One small step for a browser, one giant leap for web security!
- Chrome browser flags Daily Mail and other sites as 'not secure'
- How to change Chrome's settings to be more in-your-face when you visit an unencrypted HTTP site
- Public by Default - Venmo Stories of 2017
- Why I Blasted Your “Drug” Deals on Twitter
- PayPal's Venmo App Exposes Most Transactions via Its API
- Reporting Trump's First Year: The Fourth Estate - BBC
- Why No HTTPS? The World's Largest Websites Not Redirecting Insecure Requests to HTTPS
- Scott Helme tweets about NewsNow's support for both HTTP and HTTPS
- Smashing Security merchandise (t-shirts, mugs, stickers and stuff)