Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!
For the less technical
- The Silk Road’s alleged right-hand man will finally face a US court
- Underground code of honor
- US Piles New Charges on Marcus Hutchins (aka MalwareTech)
- Ex-senate aide charged in leak case where Times reporter’s records were seized
- Spain’s La Liga app uses fans’ phones to detect illegal soccer broadcasts
- International business e-mail compromise takedown + more information
- GCHQ cybersecurity experts investigate Dixons Carphone data breach
- Startup working on contentious Pentagon AI project was hacked
- China hacked a Navy contractor and secured a trove of highly sensitive data on submarine warfare
- Notorious Kindle Unlimited abuser has been booted from the bookstore
- A look at some of the riskiest Top-Level Domains
For the more technical
- Cisco removes backdoor account, fourth in the last four months
- Some Signal disappearing messages are not disappearing
- Backdoored images removed from Docker Hub + more information
- Key extraction side channel in multiple crypto libraries
- SigSpoof: Spoofing signatures in GnuPG, Enigmail, GPGTools and python-gnupg
- Write-up of the new Git RCE vulnerability
- Lazy FP state restore
- Here’s the status of Meltdown and Spectre mitigations in Windows
- Microsoft Patch Tuesday – June 2018
- Exploit kits: Spring 2018 review
- Apple fixed firmware vulnerability in macOS High Sierra
- Bugs allowed hackers to make malware look like Apple software + more information
- How to obtain iMessages from iCloud
- iCloud and iMessage security concerns
- iOS 11.4.1 second beta extends USB Restricted Mode with manual activation
- Cops are confident iPhone hackers have found a workaround to Apple’s new security feature
- Finding deserialisation issues has never been easier
- Cortana hack lets you change passwords on locked PCs
- From Microtik with love
- Siemens patches vulnerabilities in SCALANCE, other devices
- Tesla app is insecure by design
- DJI Spark hijacking
- Hacking, tracking, stealing and sinking ships
- Totally pwning the Tapplock smart lock + more information
- A look at fake FIFA World Cup-themed lotteries and giveaways
- IQY files used to evade AV, download malware via Excel
- LinuxForums.org hack exposes 276,000 user accounts
- Trik spam botnet leaks 43 million email addresses
- Hackers stole over $20 million from misconfigured Ethereum clients
- Extracting the private key from a TREZOR
- The rise of the cryptocurrency miners
- New CryptoMiner hijacks your Bitcoin transaction
- MysteryBot – a new Android banking trojan ready for Android 7 and 8
- Betabot still alive with multi-stage packing
- A revised Emotet downloader
- Non-Russian Matryoshka: Russian service centers under attack
- LuckyMouse hits national data center to organize country-level waterholing campaign
- Uncover unseen malware samples with no distribute scanners
- Stick with security: YubiKey, SSH, GnuPG, macOS
- The seven properties of highly secure devices
Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.
1 thought on “IT Security Weekend Catch Up – June 16, 2018”