IT Security Weekend Catch Up – April 7, 2018

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

We were gone for a few weeks, but since many of you have asked for a comeback, here it is. We’ll try to keep it alive!

For the less technical

  1. Delta confirms customers’ information may have been compromised
  2. Half of European flights delayed due to system failure
  3. Smugglers in China are going high-tech
  4. A pickpocket of almost supernatural ability
  5. One of the largest lottery scams in history
  6. Malaysian central bank says foiled attempted cyber-heist
  7. Facebook retracted Zuckerberg’s messages from recipients’ inboxes
  8. The man who spent $100K to remove a lie from Google
  9. Three execs get prison time for pirating Oracle firmware patches
  10. Leaked emails show Russia uses paid thugs to sow dissent and chaos
  11. Russia asked ISPs to block 13.5 million Amazon IP addresses
  12. Software bug behind biggest telephony outage in US history
  13. Cyberattack pings data systems of at least four gas networks
  14. Why did the world’s largest streaming site suddenly shut down

For the more technical

  1. Apple’s password problems
  2. Grindr shares personal information with third-parties
  3. Panera Bread doesn’t take security seriously + more information
  4. India’s largest auto transportation company vulnerable to attack
  5. Compromising ShareFile on-premise via 7 chained vulnerabilities
  6. Security bugs in EEG software open hospitals to attack + technical description
  7. New vulnerabilities in Allen Bradley MicroLogix 1400 PLCs
  8. DoS vulnerability in Siemens SIMATIC products
  9. A vulnerability in Moxa AWK-3131A industrial wireless access point
  10. Critical infrastructure at risk: advanced actors target Smart Install client
  11. Google bug bounty for security exploit that influences search results
  12. Race to RCE
  13. Attacking an FTP client
  14. Microsoft out-of-band security update patches Malware Protection Engine flawtechnical description
  15. Hacker uses exploit to generate Verge cryptocurrency out of thin air
  16. Secret Service warns of chip card scheme
  17. Card data stolen from 5 million Saks Fifth Avenue and Lord & Taylor customers
  18. Fin7 – the billion-dollar hacking group behind a string of big breaches
  19. M-Trends 2018 Report
  20. Hacked Website Trend Report
  21. Security Patching is Hard – Survey Results 2017
  22. Pwn0rama – a premium exploit acquisition program
  23. Details of the Mozilla Pwn2Own exploit
  24. IcedID banking trojan teams up with Rovnix for distribution
  25. More than 78,000,000 rubles of Sberbank’s clients are under threat + technical description
  26. Analysing TrickBot doesn’t have to be tricky
  27. LockCrypt ransomware: weakness in code can lead to recovery
  28. njRAT pushes Lime ransomware and Bitcoin wallet stealer
  29. Fake AV investigation unearths KevDroid, new Android malware
  30. Hunting down Dofoil with Windows Defender ATP
  31. A close look at malicious documents – part I & II
  32. SandiFlux – another Fast Flux infrastructure used in malware distribution emerges
  33. Reaper group’s updated mobile arsenal
  34. Lazarus KillDisks Central American casino
  35. Mirai-variant IoT botnet used to target financial sector
  36. Backdooring popular Windows plugins
  37. Cracking Cisco’s Sourcefire licensing system
  38. Beyond XSS: Edge Side Include Injection
  39. Invisibly inserting usernames into text with Zero-Width Characters
  40. Dot-cm typosquatting sites visited 12 million times so far in 2018
  41. Demystifying advanced logical acquisition
  42. Google services blocked on uncertified devices
  43. Tor Project shuts down development of Tor Messenger
  44. Cloudflare launches privacy-first consumer DNS serviceadditional information
  45. PhishProtect Chrome extension
  46. VirusTotal Droidy – a new Android sandbox

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

One thought on “IT Security Weekend Catch Up – April 7, 2018”

Leave a Reply

Your email address will not be published. Required fields are marked *