Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!
For the less technical
- Equifax’s data breach costs hit $1.4 billion
- Feds target $100M ‘GozNym’ cybercrime network
- Close to 735K fraudulently obtained IP addresses have been uncovered and revoked + more information
- Tor exit node operator dodges bullet in piracy lawsuit
- The curious case of Spamhaus, a port scanning scandal, and an apparent U-turn + more information
- In India election, a $14 software tool helps overcome WhatsApp controls
- Secret tracking device found in Navy email to Navy Times amid leak investigation
- Firms that promised high-tech ransomware solutions almost always just pay the hackers
- Israel’s Eurovision webcast hacked with animated blast images
- Account hijacking forum OGusers hacked
- Stack Overflow says hackers breached production systems
- Report reveals TeamViewer was breached by Chinese hackers in 2016
- The origin of script kiddie – hacker etymology
For the more technical
- Microsoft May 2019 Patch Tuesday + more information
- Microsoft fixes critical Remote Desktop flaw, blocks worm malware + Microsoft security advisory
- DHCP security in Windows 10: analyzing critical vulnerability CVE-2019-0726
- Intel flaw lets hackers siphon secrets from millions of PCs
- 0-day “in the wild”
- Remote code execution vulnerabilities in Adobe Acrobat Reader
- A Cisco router bug has massive global implications + more information
- Unauthenticated remote code execution in Cisco Prime Infrastructure
- Remote code execution vulnerability in Siemens SIMATIC WinCC and SIMATIC PCS 7
- Siemens SIMATIC WinCC and SIMATIC PCS 7 remote code execution using specially crafted project files
- Hackers used WhatsApp 0-day flaw to secretly install spyware on phones + more information
- Adventures in WhatsApp DB — extracting messages from backups
- Twitter ID exposure via error-based side-channel attack
- Find hidden friends and communities for any Facebook user
- Security issue with Bluetooth Low Energy (BLE) Titan Security Keys
- How to brick all Samsung phones
- The radio navigation planes use to land safely is insecure and can be hacked
- From collisions to chosen-prefix collisions application to full SHA-1 (PDF)
- Typosquatting in wpadblocking.com / wpadblock.com case
- Sinkholing BadWPAD infrastructure – wpad.pl / wpadblocking.com case
- Fxmsp chat logs reveal the hacked antivirus vendors, AVs respond
- Plead malware distributed via MitM attacks at router level, misusing ASUS WebStorage
- Groups behind “Banload” banking malware implement new techniques
- ScarCruft continues to evolve, introduces Bluetooth harvester
- John the Ripper 1.9.0-jumbo-1 available for download
- Announcing the all new Attack Surface Analyzer 2.0
- Amazon rolls out Alexa Guard, to help protect your home while you’re out
- How effective is basic account hygiene at preventing hijacking
Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.
1 thought on “IT Security Weekend Catch Up – May 19, 2019”