Joshua Long
Co-Host of Intego Mac Podcast
Joshua Long (@theJoshMeister), Intego's Chief Security Analyst, is a renowned security researcher and writer, and an award-winning public speaker. Josh has a master's degree in IT concentrating in Internet Security and has taken doctorate-level coursework in Information Security. Apple has publicly acknowledged Josh for discovering an Apple ID authentication vulnerability. Josh has conducted cybersecurity research for more than 25 years, which is often featured by major news outlets worldwide. Look for more of Josh's articles at security.thejoshmeister.com and follow him on X/Twitter, LinkedIn, and Mastodon.
Joshua Long has hosted 391 Episodes.
-
Episode 295: WWDC: New Macs, macOS Sonoma, iOS and iPadOS 17, and Vision Pro
June 8th, 2023 | 29 mins 52 secs
We look at what Apple presented at this year's Worldwide Developers Conference. We discuss the key features in macOS Sonoma, iOS 17, and iPadOS 17, and we talk a bit about Apple's new Vision Pro AR/VR headset. We also discuss some recent Chrome vulnerabilities.
-
Episode 294: WWDC Preview, RomCom, PyPI, Hot Pixels, and More
June 1st, 2023 | 27 mins 48 secs
Apple's Worldwide Developer Conferences launches on Monday, and we discuss what to expect. We also talk about RomCom malware, PyPI 2FA, Hot Pixels (which may not be so hot) and other malware and vulnerabilities.
-
Episode 293: When Does Your iPhone Become Unsafe to Use?
May 25th, 2023 | 27 mins 33 secs
A new hacking tool, BrutePrint, can unlock lots of smartphones, but not iPhones. Router infections can be hard to remove, and we wonder why Apple got out of the wi-fi business. And we take a close look at whether it's safe to use an iPhone, if it can no longer run the latest version of iOS.
-
Episode 292: New Top-Level Domains, .Zip and .Mov; Geacon Malware; and Google to Delete Dormant Accounts
May 18th, 2023 | 29 mins 7 secs
New top-level domains use common file extensions, and this could lead to confusion, and dangerous downloads. Apple announces a new personal voice modeling feature. And Google warns dormant users: log in, or get shut out.
-
Episode 291: Snake Malware, Lockdown Mode, and Apple App Subscriptions
May 11th, 2023 | 27 mins 45 secs
The FBI has shut down servers for Snake malware, which we wrote about back in 2017. Apple's lockdown mode has been found to prevent some serious malware attacks. And Apple is testing the water with app subscriptions for two of its pro apps on the iPad.
-
Episode 290: Apple's First Rapid Security Response, New Mac Malware, and Insecure Google Authenticator Sync
May 4th, 2023 | 30 mins 29 secs
Apple has issued the first of a new type of updates to its operating systems: Rapid Security Response. We discuss several new types of Mac malware, and we look at how Google's cloud sync for its Authenticator app is insecure.
-
Episode 289: AI Is Everywhere, and How to Set Up an Old Mac as a Server
April 27th, 2023 | 29 mins 52 secs
AI is coming to an app near you. We discuss how these features will affect work, and the potential security implications of AI tools snarfing up files in businesses. We also discuss how to set up an old - or new - Mac as a home server. It's a useful tool if you have multiple Macs.
-
Episode 288: Sideloading on iOS, Lockbit Ransomware on Mac, and Zero-Day Chrome Vulnerabilities
April 20th, 2023 | 30 mins 12 secs
Lockbit ransomware is starting to target Macs, two zero-day Chrome vulnerabilities require urgent updates, and sideloading - installing apps not from Apple's App Store - is coming to iOS soon; at least in the EU.
-
Episode 287: Juice Jacking, Best Buy Phishing, and Garage Doors Redux
April 13th, 2023 | 27 mins 56 secs
The FBI warns people not to use public charging stations; we warned about this five years ago. An interesting phishing attack leverages QuickBooks accounting software to send fake invoices to people. And what does a company do if its smart garage doors are hacked? Disable them.
-
Episode 286: Supply Chain Attacks, Garage Doors, and Exploding USB Drives
April 6th, 2023 | 26 mins 58 secs
We look at new malware that uses a supply chain attack; we explain what this is, and why it is not uncommon. We discuss how hackers can open a certain company's garage doors from anywhere, and how a journalist got injured by a malicious USB drive that exploded.
-
Episode 285: New Mac Malware, and Stolen Session Cookies
March 30th, 2023 | 29 mins 24 secs
New Mac malware can exfiltrate various types of data from your Mac, and a Chrome extension can steal Facebook session cookies. We discuss how stolen session cookies can give attackers easy access to your accounts, and potential ways to thwart this.
-
Episode 284: AI Malware, Copilot, & Passkeys
March 23rd, 2023 | 30 mins 19 secs
Can malware use AI to modify itself after it's been installed on a computer? Can AI help you in daily productivity tasks? And will passkeys replace passwords?
-
Episode 283: Phishing Hackers Defeat 2FA via Man-in-the-Middle Attacks
March 16th, 2023 | 27 mins 9 secs
Apple has finally stopped selling the Apple Watch Series 3, which can no longer get security updates. The FBI shuts down 11-year old malware. And a $300 hacking tool enables phishers to defeat two-factor authentication using automated man-in-the-middle attacks.
-
Episode 282: ScamBots and ScAmazon
March 9th, 2023 | 29 mins 38 secs
ChatGPT is helping scammers create phishing emails that don't sound phony, and Amazon sells plenty of items that are scams. Scammers are using AI-generated voices to scam elderly people, and the EU wants messaging apps - including Apple's iMessage - to be interoperable.
-
Episode 281: Pirated Mac Apps Contain Malware, and iMessage Support on Windows (Sort of)
March 2nd, 2023 | 31 mins 27 secs
Mac malware is again found in pirated applications, LastPass was hacked via an employee's home computer running Plex, and hackers may be able to get into a bank account with an AI-generated voice. Microsoft makes a step toward supporting iMessage on Windows, and we look at a new Nokia phone that is easily repairable.
-
Episode 280: Twitter and Two-Factor Authentication
February 23rd, 2023 | 28 mins 50 secs
With SMS-based two-factor authentication no longer free on Twitter, we discuss the more secure and free way of protecting your account using an authenticator app. We also look at new details about Apple's latest security updates, Windows on M-series Macs, and a WhatsApp warning about reused phone numbers.