IT Security Weekend Catch Up – September 19, 2020

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. When you browse Instagram and find former Australian Prime Minister Tony Abbott’s passport number
  2. Facebook accused of watching Instagram users through cameras
  3. Private data gone public: Razer leaks 100,000+ gamers’ personal info
  4. Chinese database details 2.4 million influential people, their kids, addresses, and how to press their buttons
  5. German hospital hacked, patient taken to another city dies
  6. Leading U.S. laser developer IPG Photonics hit with ransomware
  7. Iranian hackers indicted for stealing data from aerospace and satellite tracking companies
  8. Russian nationals indicted for conspiracy to defraud multiple cryptocurrency exchanges and their customers
  9. Apple helps FBI access the iCloud of protester who ‘firebombed at least two police cars’
  10. Report: 97% of cybersecurity companies have leaked data on the Dark Web
  11. How to blur your house on Google Street View (and why you should)

For the more technical

  1. How YubiKeys are made: Security at scale
  2. About the security content of iOS 14.0 and iPadOS 14.0
  3. Backdoors and other vulnerabilities in HiSilicon based hardware video encoders
  4. Zerologon: Unauthenticated domain controller compromise by subverting Netlogon cryptography (PDF)
  5. Chrome sandbox escape vulnerability earns researchers $20,000
  6. Speculative probing: Hacking blind in the Spectre era (PDF)
  7. BLESA: Spoofing attacks against reconnections in Bluetooth Low Energy (PDF)
  8. Oversecured detects dangerous vulnerabilities in the TikTok Android app
  9. Change the username for any Facebook page
  10. CVE-2018-17145: Bitcoin inventory out-of-memory denial-of-service attack (PDF)
  11. The state of industrial cybersecurity 2020 (PDF)
  12. Evolution of attacks in the wild on container infrastructure (PDF)
  13. Cardbleed: a massive Magento1 hack
  14. Malvertising campaigns come back in full swing
  15. Popular marketing tool exposes dating site users in massive data leak
  16. An overview of targeted attacks and APTs on Linux
  17. h2c smuggling: Request smuggling via HTTP/2 cleartext (h2c)
  18. Partners in crime: North Koreans and elite Russian-speaking cybercriminals
  19. Chinese Ministry of State Security-affiliated cyber threat actor activity
  20. Cerberus banking Trojan source code released for free to cyberattackers
  21. Mitigating malware and ransomware attacks
  22. 360lock smart lock review

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *