Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!
For the less technical
- RAT author accused of helping criminals
- Italian mafia operations in the Netherlands
- Interview with a Belarusian hacker
- [PDF] Yearly report from Finnish intelligence (cyber included)
For the more technical
- Black Hat Asia slides
- Analysis of an interesting piece of malware, without attribution
- Targeted attack on GitHub developers
- Disttrack distribution in Shamoon 2 attacks
- Bypassing Control Flow Guard
- Fired sysadmin shut down company systems
- New analysis of attacks against Clinton campaign
- Long DDoS by Mirai variant
- Issues with Symantec SSL certificate issuing process
- Very detailed analysis of CVE-2017-5638 (Struts2)
- Analysis of Struts2 attacks
- Banking malware source code leaked by author himself
- Crowdstrike retracted some statements on cyberattacks on Ukrainian army
- Local privilege escalation in Ubuntu
- Cerber evades machine learning
- Mobile Safari scareware campaign
- Attackers tools and techniques
- Exploit for CVE-2017-7269 (IIS 6) + 0patch
- Exploit analysis for CVE-2017-0005 (Windows)
- Dishwasher vulnerability
- Hacking OnePlus
- New Dorkbot analysis
- [PDF] iOS 10 security guide
- Analysis of CVE-2017-0022 (Windows)
- Botnet attacking gift cards
- [PDF] Privacy analysis of Tor Hidden Services
- APT29 domain fronting with Tor
- Certificate validation vulnerability in iOS and macOS
- Escaping a Python sandbox with a memory corruption bug
- Word document attacking both Windows and OS X
- Analysis of Turla group tool
- RCE on box.com
- APT29 samples
- Sundown EK analysis
Did you enjoy this list? You can retweet it and subscribe to one of our feeds on Twitter, Facebook or RSS.
One thought on “IT Security Weekend Catch Up – April 1, 2017”