IT Security Weekend Catch Up – September 22, 2019

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. After 6 years in exile, Edward Snowden explains himself
  2. United States files civil lawsuit against Edward Snowden
  3. The mysterious death of the hacker who turned in Chelsea Manning
  4. This company built a private surveillance network. We tracked someone with it
  5. Documents reveal how Russia taps phone companies for surveillance
  6. Scotiabank slammed for ‘muppet-grade security’ after internal source code and credentials spill onto open internet
  7. Banks, arbitrary password restrictions and why they don’t matter
  8. Busted: $10 million tech support scam that preyed on the elderly
  9. Before he spammed you, this sly prince stalked your mailbox
  10. FedEx execs: We had no idea cyberattack would be so bad. Investors: Is that why you sold $40m+ of your own shares?
  11. Giant Entercom radio network deals with ransomware-like incident

For the more technical

  1. 2019 CWE Top 25 Most Dangerous Software Errors
  2. LastPass bug leaks credentials from previous site
  3. How two dead accounts allowed REMOTE CRASH of any Instagram android user
  4. Thousands of Google Calendars possibly leaking private information online
  5. Two widely used ad blocker extensions for Chrome caught in ad fraud scheme + more information
  6. WhatsApp ‘Delete for everyone’ doesn’t delete media files sent to iPhone users
  7. Researcher drops phpMyAdmin zero-day affecting all versions
  8. Critical vulnerability in Harbor enables privilege escalation from zero to admin (CVE-2019-16097)
  9. Multiple Advantech WebAccess vulnerabilities
  10. Security vulnerabilities in network accessible services
  11. HP printers try to send data back to HP about your devices and what you print
  12. Information exposure from consumer IoT devices (PDF)
  13. Is this your webcam? You’re being watched
  14. Threat landscape for smart buildings
  15. Ecuadorian breach reveals sensitive personal data
  16. Confidential patient data freely accessible on the internet (PDF)
  17. New DDoS vector observed in the Wild: WSD attacks hitting 35/Gbps
  18. Magecart skimming attack targets mobile users of hotel chain booking websites
  19. Gootkit malware crew left their database exposed online without a password
  20. Emotet trojan evolves since being reawakend, here is what we know + more information
  21. Mac malware that spoofs trading app steals user information, uploads it to website
  22. The legend of Adwind: A commodity RAT saga in eight parts
  23. InnfiRAT: A new RAT aiming for your cryptocurrency and more
  24. The massive propagation of the Smominru botnet
  25. TFlower ransomware – the latest attack targeting businesses
  26. Encrypted sextortion PDFs
  27. How Google adopted BeyondCorp – tiered access
  28. The Air Force will let hackers try to hijack an orbiting satellite

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *