{"id":4495,"date":"2015-01-23T12:20:47","date_gmt":"2015-01-23T17:20:47","guid":{"rendered":"http:\/\/me-en.kaspersky.com\/blog\/?p=4495"},"modified":"2020-08-28T11:51:46","modified_gmt":"2020-08-28T07:51:46","slug":"talk-security-google-versus-microsoft","status":"publish","type":"post","link":"https:\/\/me-en.kaspersky.com\/blog\/talk-security-google-versus-microsoft\/4495\/","title":{"rendered":"Talk Security: Google and Microsoft Face Off on Disclosure"},"content":{"rendered":"<p>In this first of the year edition of the Talk Security podcast, Threatpost reporters Brian Donohue and Chris Brook discuss an emerging tiff over bug disclosure between tech giants Microsoft and Google, a $10 homemade USB charger that logs stroked from wireless keyboards, the Lizard Squad hacker collective and more.<\/p>\n<p><iframe loading=\"lazy\" src=\"\/\/html5-player.libsyn.com\/embed\/episode\/id\/3309145\/height\/270\/width\/270\/theme\/standard\/direction\/no\/autoplay\/no\/autonext\/no\/thumbnail\/yes\/preload\/no\/no_addthis\/no\/\" frameborder=\"0\" scrolling=\"no\" marginwidth=\"0\" marginheight=\"0\" width=\"270px\" height=\"270px\"><\/iframe><\/p>\n<div class=\"podcast-subscribe\"><a data-omniture-download-button-type=\"TrialBuilds\" data-omniture-product-name=\"podcast-itunes\" class=\"itunes\" href=\"https:\/\/itunes.apple.com\/us\/podcast\/talk-security\/id909407206\" target=\"_blank\" rel=\"noopener nofollow\"><img decoding=\"async\" src=\"https:\/\/me-en.kaspersky.com\/blog\/wp-content\/plugins\/kaspersky-embeds\/img\/button-subscribe-apple.png\"><\/a><a data-omniture-download-button-type=\"TrialBuilds\" data-omniture-product-name=\"podcast-spotify\" class=\"spotify\" href=\"https:\/\/open.spotify.com\/show\/1VGCKlOoQ9C24dJiCHGTK5\" target=\"_blank\" rel=\"noopener nofollow\"><img decoding=\"async\" src=\"https:\/\/me-en.kaspersky.com\/blog\/wp-content\/plugins\/kaspersky-embeds\/img\/button-subscribe-spotify.png\"><\/a><a data-omniture-download-button-type=\"TrialBuilds\" data-omniture-product-name=\"podcast-rss\" class=\"rss\" href=\"http:\/\/talksecurity.kaspersky-podcasts.libsynpro.com\/rss\" target=\"_blank\" rel=\"noopener nofollow\"><img decoding=\"async\" src=\"https:\/\/me-en.kaspersky.com\/blog\/wp-content\/plugins\/kaspersky-embeds\/img\/button-subscribe-rss.png\"><\/a><\/div>\n<p><em>LINKS FROM BRIAN AND CHRIS\u2019S READING LIST<\/em><\/p>\n<p><a href=\"https:\/\/www.kaspersky.com\/blog\/blackhat-movie-review\/\" target=\"_blank\" rel=\"noopener nofollow\">Blackhat the movie got the hacking right<\/a>, but beyond its relative technical correctness, the movie probably isn\u2019t worth watching.<\/p>\n<blockquote class=\"twitter-tweet\" data-width=\"500\" data-dnt=\"true\">\n<p lang=\"en\" dir=\"ltr\">My review of <a href=\"https:\/\/twitter.com\/hashtag\/Blackhat?src=hash&amp;ref_src=twsrc%5Etfw\" target=\"_blank\" rel=\"noopener nofollow\">#Blackhat<\/a>: at two hours and 13 minutes, it was about 43 minutes longer than any cyber-thriller should be <a href=\"http:\/\/t.co\/eAqVpptyMv\" target=\"_blank\" rel=\"noopener nofollow\">http:\/\/t.co\/eAqVpptyMv<\/a><\/p>\n<p>\u2014 Brian Donohue (@TheBrianDonohue) <a href=\"https:\/\/twitter.com\/TheBrianDonohue\/status\/557294667520561153?ref_src=twsrc%5Etfw\" target=\"_blank\" rel=\"noopener nofollow\">January 19, 2015<\/a><\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p><a href=\"https:\/\/threatpost.com\/microsoft-censures-google-for-publishing-windows-vulnerability\/110347\" target=\"_blank\" rel=\"noopener nofollow\">Microsoft penned a strongly worded letter to Google<\/a> earlier this month over the search giant\u2019s decision to publish an elevation of privilege security vulnerability just days before it was set to be fixed in the January edition of patch Tuesday. <a href=\"https:\/\/threatpost.com\/round%D02-google-deadline-closes-on-pair-of-microsoft-vulnerabilities\/110474\" target=\"_blank\" rel=\"noopener nofollow\">Google responded by publishing another bug in a Microsoft product<\/a> just days later.<\/p>\n<p>The Consumer Electronics Show proved that the Internet of Things is coming and it\u2019s going to be a data-consuming juggernaut. However, outside <a href=\"https:\/\/threatpost.com\/ftc-urges-iot-privacy-security-by-design-at-consumer-electronics-show\/110265\" target=\"_blank\" rel=\"noopener nofollow\">a brief keynote address from the head of the Federal Trade Commission<\/a>, <a href=\"https:\/\/www.kaspersky.com\/blog\/ces%D02015-report\/\" target=\"_blank\" rel=\"noopener nofollow\">there wasn\u2019t much discussion of security or privacy<\/a>.<\/p>\n<p>The hack of the year so far comes from Samy Kamkar, who built a $10 USB charger that, when plugged in, works as a keylogger, <a href=\"https:\/\/threatpost.com\/how-a%D010-usb-charger-can-record-your-keystrokes-over-the-air\/110367\" target=\"_blank\" rel=\"noopener nofollow\">stealing and decrypting keystrokes from wireless Microsoft keyboards<\/a>.\u00a0<\/p><blockquote class=\"twitter-pullquote\"><p>#TalkSecurity: @theBrianDonohue and @Brokenfuses discuss #Microsoft v. #Google, a $10 USB #keylogger and more<\/p><a href=\"https:\/\/twitter.com\/share?url=https%3A%2F%2Fkas.pr%2Fa2CR&amp;text=%23TalkSecurity%3A+%40theBrianDonohue+and+%40Brokenfuses+discuss+%23Microsoft+v.+%23Google%2C+a+%2410+USB+%23keylogger+and+more\" class=\"btn btn-twhite\" data-lang=\"en\" data-count=\"0\" target=\"_blank\" rel=\"noopener nofollow\">Tweet<\/a><\/blockquote>\n<p>In other news, <a href=\"https:\/\/threatpost.com\/lizard-squads-ddos-for-hire-service-built-on-hacked-home-routers\/110341\" target=\"_blank\" rel=\"noopener nofollow\">Lizard Squad is toting its DDoS for hire service<\/a> while one of its alleged members was arrested in England, and <a id=\"_GPLITA_2\" style=\"border: none !important; display: inline-block !important; text-indent: 0px !important; float: none !important; font-weight: bold !important; height: auto !important; margin: 0px !important; min-height: 0px !important; min-width: 0px !important; padding: 0px !important; text-transform: uppercase !important; text-decoration: underline !important; vertical-align: baseline !important; width: auto !important; background: transparent !important;\" title=\"Click to Continue &gt; by MacSaleApp\u201d href=\u201d#\u201d&gt;Android&lt;img decoding=\" async src=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/37\/2015\/01\/05111826\/arrow-10x10.png\" alt=\"\"><\/a> announces it will no longer provide patches for WebView, which will leave some 900 million <a id=\"_GPLITA_2\" style=\"border: none !important; display: inline-block !important; text-indent: 0px !important; float: none !important; font-weight: bold !important; height: auto !important; margin: 0px !important; min-height: 0px !important; min-width: 0px !important; padding: 0px !important; text-transform: uppercase !important; text-decoration: underline !important; vertical-align: baseline !important; width: auto !important; background: transparent !important;\" title=\"Click to Continue &gt; by MacSaleApp\u201d href=\u201d#\u201d&gt;Android&lt;img decoding=\" async src=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/37\/2015\/01\/05111826\/arrow-10x10-1.png\" alt=\"\"><\/a> devices vulnerable to attack.<\/p>\n<p><em>*Music for this podcast is by Wild Shores and is licensed under creative commons<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Security reporters Brian Donohue and Chris Brook discuss security and privacy headlines from the first few weeks of the new year.<\/p>\n","protected":false},"author":42,"featured_media":4502,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[5,1485],"tags":[105,22,897,38,444,97],"class_list":{"0":"post-4495","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-news","8":"category-special-projects","9":"tag-android","10":"tag-google","11":"tag-lizard-squad","12":"tag-microsoft","13":"tag-podcast","14":"tag-security-2"},"hreflang":[{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/talk-security-google-versus-microsoft\/4495\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/talk-security-google-versus-microsoft\/4552\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/talk-security-google-versus-microsoft\/5046\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/talk-security-google-versus-microsoft\/7244\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/talk-security-google-versus-microsoft\/7244\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/talk-security-google-versus-microsoft\/7244\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/me-en.kaspersky.com\/blog\/tag\/android\/","name":"Android"},"_links":{"self":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/4495","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/users\/42"}],"replies":[{"embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/comments?post=4495"}],"version-history":[{"count":4,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/4495\/revisions"}],"predecessor-version":[{"id":17203,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/4495\/revisions\/17203"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/media\/4502"}],"wp:attachment":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/media?parent=4495"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/categories?post=4495"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/tags?post=4495"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}