In episode 323, the hosts discuss two prominent topics. The first segment discusses a significant vulnerability discovered in hotel locks, branded as ‘Unsaflok,’ affecting 3 million doors across 131 countries. The vulnerability allows attackers to create master keys from a regular key, granted access to all doors in a hotel. The co-hosts also discuss the vulnerability’s relation to legacy systems and the implications for hotel security. The second segment shifts focus to Glassdoor, revealing that the popular company review site can no longer guarantee anonymity due to changes following its acquisition of Fishbowl, raising concerns about privacy and the potential misuse of personal data. Additionally, the hosts cover the importance of maintaining security in physical and information security systems and the challenges businesses face when upgrading these systems.
** Links mentioned on the show *
Unsaflok flaw can let hackers unlock millions of hotel doors
https://www.bleepingcomputer.com/news/security/unsaflok-flaw-can-let-hackers-unlock-millions-of-hotel-doors/
Glassdoor Wants to Know Your Real Name
https://www.wired.com/story/glassdoor-wants-to-know-your-real-name/
** Watch this episode on YouTube **
https://youtu.be/cPiCt9V0onM
** Become a Shared Security Supporter **
Get exclusive access to ad-free episodes, bonus episodes, listen to new episodes before they are released, get access to our private Discord server, receive a monthly shout-out on the show, and get a discount code for 15% off merch at the Shared Security store. Support the show for as little as $3! Become a supporter today! https://patreon.com/SharedSecurity
** Thank you to our sponsors! **
SLNT
Visit slnt.com to check out SLNT’s amazing line of Faraday bags and other products built to protect your privacy. As a listener of this podcast you receive 10% off your order at checkout using discount code “sharedsecurity”.
Click Armor
To find out how “gamification” of security awareness training can reduce cyber risks related to phishing and social engineering, and to get a free trial of Click Armor’s gamified awareness training platform, visit: https://clickarmor.ca/sharedsecurity
** Subscribe and follow the podcast **
Subscribe on YouTube: https://www.youtube.com/c/SharedSecurityPodcast
Join us on Reddit: https://www.reddit.com/r/SharedSecurityShow/
Watch and Subscribe on Odysee (YouTube alternative)
https://odysee.com/@SharedSecurity:c
Follow us on Mastodon: https://infosec.exchange/@sharedsecurity
Follow us on X: https://twitter.com/sharedsec
Visit our website: https://sharedsecurity.net
Subscribe on your favorite podcast app: https://sharedsecurity.net/subscribe
Sign-up for our email newsletter to receive updates about the podcast, contest announcements, and special offers from our sponsors: https://shared-security.beehiiv.com/subscribe
Leave us a rating and review: https://ratethispodcast.com/sharedsecurity
Contact us: https://sharedsecurity.net/contact
The post New Hotel Lock Vulnerabilities, Glassdoor Anonymity Issues appeared first on Shared Security Podcast.
The Current and Future State of Email Security with Andy Yen, CEO of Proton
Common Sense Advice for Hacker Summer Camp, AI Chatbot Attacks, What’s a Flipper Zero?
Your Digital Immortality is Coming, Apple and Google Are Data Gatekeepers, Satellite Security Risks Revealed
Microsoft Lost Its Keys, Voice Cloning Scams, The Biden-Harris Cybersecurity Labeling Program
First Ban on Selling Location Data, Prohibiting Password Managers, Real-Time Crime Center Concerns
Meta’s Threads and Your Privacy, Airline Reservation Scams, IDOR Srikes Back
MOVEit Cyberattack, The Problem with Password Rotations, Military Alert on Free Smartwatches
Security Podcasting, Hacking Stories, and The State of Firmware Security with Paul Asadoorian
The FTC’s Complaint Against Ring, Detecting Malware Infected Apps, America’s Most Cybersecure Companies
How to Break Into a Cybersecurity Career – Phillip Wylie
Netflix Cracks Down on Password Sharing, AI Legal Research Gone Wrong, Fake Identities and Surveillance Firms
Meta’s $1.3 Billion Fine, AI Hoax Hysteria, Montana’s TikTok Ban
Google Now Supports Passkeys, Risky New Top Level Domains, Twitter’s Encryption Dilemma
Private Tweets Exposed, Unauthorized Tracking Collaboration, AI Risks and Regulation
Juice Jacking Debunked, Photographer vs. AI Dataset, Google Authenticator Risks
Building a Healthy Security Culture: Insights from Kai Roer
Arkansas Social Media Consent Law, Android Malware Invasion, New Method of Keyless Car Theft
Genesis Market Crackdown, Life360 App Misuse, Tesla Customer Privacy Concerns
Clearview AI Facial Recognition Fallout, Hacked and Helpless, Is AI Armageddon Upon Us?
The TikTok CEO Testimony, ChatGPT’s Privacy Risks, Inaudible Ultrasound Attacks
Create your
podcast in
minutes
It is Free
WSJ Tech News Briefing
Rebel Tech
CyberWire Daily
The WAN Show
Cyber Security Headlines