IT Security Weekend Catch Up – October 17, 2021

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Governor wants to prosecute journalist who clicked ‘view source’ on government site
  2. Acer hacked – Private data of millions of clients sold on hacker forum
  3. ‘Urgent Pizza’: The untold story of the largest hack in Twitch’s history
  4. The cost of hiring a hacker on the dark web: report
  5. ProtonMail is launching ProtonChat, ProtonDrive, ProtonWallet and more
  6. We need to talk about how Apple is normalising surveillance

For the more technical

  1. Microsoft October 2021 Patch Tuesday
  2. Microsoft to disable Excel 4.0 macros, one of the most abused Office features
  3. Microsoft Office Excel 2019/365 ConditionalFormatting code execution vulnerability
  4. Sysmon For Linux install and build instructions
  5. Business as usual for Azure customers despite 2.4 Tbps DDoS attack
  6. How the Microsoft MFA system almost brought me to a complete nervous breakdown in under 24 hours
  7. Bindiff and POC for the IOMFB vulnerability, iOS 15.0.2
  8. Transient execution of non-canonical accesses (PDF)
  9. AMD prefetch attacks through power and time (PDF)
  10. IoT hacking and rickrolling my high school district
  11. Azure, GitHub, GitLab, BitBucket mass-revoke SSH keys following bug report
  12. End-to-end encrypted backups on WhatsApp
  13. Android mobile OS snooping by Samsung, Xiaomi, Huawei and Realme handsets (PDF)
  14. Defining Cobalt Strike components so you can BEA-CONfident in your analysis
  15. MysterySnail attacks with Windows zero-day
  16. VirusTotal: Ransomware in a global context (PDF)
  17. CryptoRom fake iOS cryptocurrency apps hit US, European victims for at least $1.4 million
  18. The ad blocker that injects ads
  19. Ongoing cyber threats to U.S. water and wastewater systems
  20. Necro Python botnet goes after vulnerable VisualTools DVR
  21. The king is dead, long live MyKings!
  22. FontOnLake malware strikes Linux systems in targeted attacks
  23. Actors target Huawei Cloud using upgraded Linux malware
  24. Iran-linked DEV-0343 targeting defense, GIS, and maritime sectors
  25. SnapMC skips ransomware, steals data

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *