IT Security Weekend Catch Up – July 17, 2020

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Secret Trump order gives CIA more powers to launch cyberattacks
  2. Phone of top Catalan politician ‘targeted by government-grade spyware’
  3. Russian hacker found guilty for Dropbox, LinkedIn, and Formspring breaches
  4. A hacker is selling details of 142 million MGM hotel guests on the dark web
  5. New Zealand property management company leaks 30,000 users’ passports, driver’s licenses and other personal data
  6. Hackers convinced Twitter employee to help them hijack accounts
  7. Chasing crypto criminals
  8. CryptBB demystifying the illusion of the private forum
  9. Inside America’s secretive $2 billion research hub
  10. Atlas of Surveillance

For the more technical

  1. SIGRed – resolving your way into domain admin: Exploiting a 17 year-old bug in Windows DNS servers
  2. The day I trolled the entire Internet: An accidental research project on CVE-2020-1350
  3. Fixing the Zoom ‘Vanity Clause’ – Check Point and Zoom collaborate to fix Vanity URL issue
  4. crates.io security advisory
  5. Onapsis and SAP collaborate to protect SAP customers from RECON vulnerability
  6. Tencent reveals major quick-charge vulnerability affecting hundreds of millions of devices
  7. Critical Android flaw lets attackers hijack your phone
  8. GoldenHelper malware embedded in official Golden Tax Software
  9. Home Router Security Report 2020 (PDF)
  10. The fake Cisco
  11. Kasa camera vulnerability discovery: Responsible disclosures feel like groundhog day, again
  12. BlackRock – the Trojan that wanted to get them all
  13. Welcome Chat as a secure messaging app? Nothing could be further from the truth
  14. Breached data indexer ‘Data Viper’ hacked
  15. No-log VPNs exposed users’ logs and personal details for all to see
  16. How REvil used the underground ecosystem to form an extortion cartel
  17. APT29 targets COVID-19 vaccine development (PDF)
  18. Iranian spies accidentally leaked videos of themselves hacking
  19. The Tetrade: Brazilian banking malware goes global
  20. TrickBot group launches test module alerting on fraud activity
  21. Emotet spam trojan surges back to life after 5 months of silence
  22. Jackpotting with black box in Europe (PDF)
  23. How to use FIDO2 USB authenticators with SSH
  24. Ubuntu will no longer track which packages users install
  25. Mozilla launches VPN service to help protect your privacy
  26. Image “cloaking” for personal privacy

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *