IT Security Weekend Catch Up – May 19, 2019

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Equifax’s data breach costs hit $1.4 billion
  2. Feds target $100M ‘GozNym’ cybercrime network
  3. Close to 735K fraudulently obtained IP addresses have been uncovered and revoked + more information
  4. Tor exit node operator dodges bullet in piracy lawsuit
  5. The curious case of Spamhaus, a port scanning scandal, and an apparent U-turn + more information
  6. In India election, a $14 software tool helps overcome WhatsApp controls
  7. Secret tracking device found in Navy email to Navy Times amid leak investigation
  8. Firms that promised high-tech ransomware solutions almost always just pay the hackers
  9. Israel’s Eurovision webcast hacked with animated blast images
  10. Account hijacking forum OGusers hacked
  11. Stack Overflow says hackers breached production systems
  12. Report reveals TeamViewer was breached by Chinese hackers in 2016
  13. The origin of script kiddie – hacker etymology

For the more technical

  1. Microsoft May 2019 Patch Tuesday + more information
  2. Microsoft fixes critical Remote Desktop flaw, blocks worm malware + Microsoft security advisory
  3. DHCP security in Windows 10: analyzing critical vulnerability CVE-2019-0726
  4. Intel flaw lets hackers siphon secrets from millions of PCs
  5. 0-day “in the wild”
  6. Remote code execution vulnerabilities in Adobe Acrobat Reader
  7. A Cisco router bug has massive global implications + more information
  8. Unauthenticated remote code execution in Cisco Prime Infrastructure
  9. Remote code execution vulnerability in Siemens SIMATIC WinCC and SIMATIC PCS 7
  10. Siemens SIMATIC WinCC and SIMATIC PCS 7 remote code execution using specially crafted project files
  11. Hackers used WhatsApp 0-day flaw to secretly install spyware on phones + more information
  12. Adventures in WhatsApp DB — extracting messages from backups
  13. Twitter ID exposure via error-based side-channel attack
  14. Find hidden friends and communities for any Facebook user
  15. Security issue with Bluetooth Low Energy (BLE) Titan Security Keys
  16. How to brick all Samsung phones
  17. The radio navigation planes use to land safely is insecure and can be hacked
  18. From collisions to chosen-prefix collisions application to full SHA-1 (PDF)
  19. Typosquatting in wpadblocking.com / wpadblock.com case
  20. Sinkholing BadWPAD infrastructure – wpad.pl / wpadblocking.com case
  21. Fxmsp chat logs reveal the hacked antivirus vendors, AVs respond
  22. Plead malware distributed via MitM attacks at router level, misusing ASUS WebStorage
  23. Groups behind “Banload” banking malware implement new techniques
  24. ScarCruft continues to evolve, introduces Bluetooth harvester
  25. John the Ripper 1.9.0-jumbo-1 available for download
  26. Announcing the all new Attack Surface Analyzer 2.0
  27. Amazon rolls out Alexa Guard, to help protect your home while you’re out
  28. How effective is basic account hygiene at preventing hijacking

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *