IT Security Weekend Catch Up – July 29, 2018

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Security keys neutralized employee phishing
  2. ‘Scraper’ bots and the secret Internet arms race
  3. Hackers threaten to disrupt Moscow Domodedovo Airport navigation system
  4. Russian hackers’ new target: a vulnerable democratic senator
  5. This former British spy exposed the Russian hackers
  6. On the trail of the 12 indicted Russian intelligence officers
  7. What the latest Mueller indictment reveals about WikiLeaks’ ties to Russia
  8. How Silicon Valley became a den of spies
  9. Singapore health system hit by serious breach of personal data
  10. LifeLock bug exposed millions of customer email addresses
  11. A deep dive into one of Russia’s largest hacking forums
  12. Hackers breached Virginia bank twice in eight months
  13. How a group of imprisoned hackers introduced JPay to the world
  14. Head of hacked Bitcoin exchange pleads guilty to US charges
  15. The MalwareTech case resets to zero

For the more technical

  1. Vulnerability in Hangouts Chat a.k.a. how Electron makes open redirect great again
  2. Passing-the-Hash to NTLM authenticated web applications
  3. Using innocent roles to hide admin users
  4. A security issue in Intel’s Active Management Technology (AMT)
  5. Bluetooth security: Flaw could allow nearby attacker to grab your private data
  6. A story about three Bluetooth vulnerabilities in Android
  7. Kernel level privilege escalation in Oracle Solaris
  8. A study of car sharing apps
  9. Multiple vulnerabilities in Sony IPELA E series camera
  10. Swann’s home security camera recordings could be hijacked + technical description
  11. Buffer overflow vulnerabilities in AVEVA HMI solutions
  12. Dangerous vulnerability fixed in Moxa NPort serial network interface devices
  13. Multiple vulnerabilities in Samsung SmartThings hub
  14. NetSpectre: Read arbitrary memory over network (PDF)
  15. Spectre returns – speculation attacks using the Return Stack Buffer (PDF)
  16. Cisco removes undocumented root password from bandwidth monitoring software
  17. Cisco Webex Teams remote code execution vulnerability
  18. DHS warns of impending cyber-attacks on ERP systems
  19. Open ADB ports being exploited to spread possible Satori variant in Android devices
  20. Malware author builds 18,000-strong botnet in a day
  21. Attack inception: Compromised supply chain within a supply chain poses new risks
  22. Microsoft Office vulnerabilities used to distribute FelixRoot backdoor
  23. OilRig Targets Technology Service Provider and Government Agency with QuadAgent
  24. New version of the Kronos banking trojan discovered
  25. Mitigating Emotet, the most common banking trojan
  26. Calisto trojan for macOS
  27. Red Alert 2.0: Android trojan targets security-seekers
  28. Advanced mobile malware campaign in India uses malicious MDM
  29. Leafminer: new espionage campaigns targeting Middle Eastern regions
  30. A mining multitool
  31. LockCrypt ransomware decryption tool
  32. How a robotics vendor exposed confidential data for major manufacturing companies
  33. Security keys have been good to Google, so now it’s promoting one of its own + more information
  34. Yes, Google’s security key is hackable
  35. How to use Automatic Strong Passwords and Password Auditing in iOS 12
  36. Extracting data from an EMV (Chip-And-Pin) Card with NFC technology
  37. Secure Kali Pi 2018
  38. Analysis of the top 32 million passwords
  39. Cell phone monitoring. Who is watching the watchers?
  40. DDoS attacks in Q2 2018

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *