IT Security Weekend Catch Up – November 20, 2020

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Firefox 83 introduces HTTPS-Only Mode
  2. Fearing drama, Mozilla opens public consultation before worldwide Firefox DoH rollout
  3. Popular pirate sites ‘disappear’ from DuckDuckGo’s top search results
  4. Los Angeles police just banned the use of commercial facial recognition
  5. Ransomware attack forces web hosting provider Managed.com to take servers offline
  6. Retail giant Cencosud hit by Egregor ransomware attack, stores impacted
  7. Capcom ransomware breach may have hit 350,000
  8. Crypto exchange Liquid confirms security incident
  9. Convicted SIM swapper gets 3 years in jail

For the more technical

  1. Firefox: How a website could steal all your cookies
  2. The introduction of the Jupyter InfoStealer/Backdoor
  3. Chrome gets patched again – but 83% of users aren’t running the latest version
  4. IBM works with Cisco to exorcise ghosts from Webex meetings
  5. Responsible exposure and what it means for the industry
  6. Securing the fight against COVID-19 through open source
  7. Don’t put it on the Internet: Tesla Backup Gateway edition
  8. VoltPillager – CPU undervolting with low-cost tools
  9. A watch, a virtual machine, and broken abstractions
  10. Sonify – transmitting data via ultrasound morse code
  11. Etherify – bringing the ether back to ethernet
  12. OK Google, build me a phishing campaign
  13. AWS access keys leak in GitHub repository and some improvements in Amazon reaction
  14. Information leakage in AWS resource-based policy APIs
  15. Automating cyber attacks: hype and reality (PDF)
  16. Advanced threat predictions for 2021
  17. The Grelos skimmer: A new variant
  18. Facebook credit card scam exposed via huge data leak
  19. Ransomware-as-a-service: The pandemic within a pandemic
  20. QBot partners with Egregor ransomware in bot-fueled attacks
  21. Schneider Electric warns customers of Drovorub Linux malware (PDF)
  22. Massive, China-state-funded hack hits companies around the world
  23. Lazarus supply‑chain attack in South Korea
  24. Dissecting a Chinese APT targeting South Eastern Asian government institutions (PDF)

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *