IT Security Weekend Catch Up – June 16, 2018

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. The Silk Road’s alleged right-hand man will finally face a US court
  2. Underground code of honor
  3. US Piles New Charges on Marcus Hutchins (aka MalwareTech)
  4. Ex-senate aide charged in leak case where Times reporter’s records were seized
  5. Spain’s La Liga app uses fans’ phones to detect illegal soccer broadcasts
  6. International business e-mail compromise takedown + more information
  7. GCHQ cybersecurity experts investigate Dixons Carphone data breach
  8. Startup working on contentious Pentagon AI project was hacked
  9. China hacked a Navy contractor and secured a trove of highly sensitive data on submarine warfare
  10. Notorious Kindle Unlimited abuser has been booted from the bookstore
  11. A look at some of the riskiest Top-Level Domains

For the more technical

  1. Cisco removes backdoor account, fourth in the last four months
  2. Some Signal disappearing messages are not disappearing
  3. Backdoored images removed from Docker Hub + more information
  4. Key extraction side channel in multiple crypto libraries
  5. SigSpoof: Spoofing signatures in GnuPG, Enigmail, GPGTools and python-gnupg
  6. Write-up of the new Git RCE vulnerability
  7. Lazy FP state restore
  8. Here’s the status of Meltdown and Spectre mitigations in Windows
  9. Microsoft Patch Tuesday – June 2018
  10. Exploit kits: Spring 2018 review
  11. Apple fixed firmware vulnerability in macOS High Sierra
  12. Bugs allowed hackers to make malware look like Apple software + more information
  13. How to obtain iMessages from iCloud
  14. iCloud and iMessage security concerns
  15. iOS 11.4.1 second beta extends USB Restricted Mode with manual activation
  16. Cops are confident iPhone hackers have found a workaround to Apple’s new security feature
  17. Finding deserialisation issues has never been easier
  18. Cortana hack lets you change passwords on locked PCs
  19. From Microtik with love
  20. Siemens patches vulnerabilities in SCALANCE, other devices
  21. Tesla app is insecure by design
  22. DJI Spark hijacking
  23. Hacking, tracking, stealing and sinking ships
  24. Totally pwning the Tapplock smart lock + more information
  25. A look at fake FIFA World Cup-themed lotteries and giveaways
  26. IQY files used to evade AV, download malware via Excel
  27. LinuxForums.org hack exposes 276,000 user accounts
  28. Trik spam botnet leaks 43 million email addresses
  29. Hackers stole over $20 million from misconfigured Ethereum clients
  30. Extracting the private key from a TREZOR
  31. The rise of the cryptocurrency miners
  32. New CryptoMiner hijacks your Bitcoin transaction
  33. MysteryBot – a new Android banking trojan ready for Android 7 and 8
  34. Betabot still alive with multi-stage packing
  35. A revised Emotet downloader
  36. Non-Russian Matryoshka: Russian service centers under attack
  37. LuckyMouse hits national data center to organize country-level waterholing campaign
  38. Uncover unseen malware samples with no distribute scanners
  39. Stick with security: YubiKey, SSH, GnuPG, macOS
  40. The seven properties of highly secure devices

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *