Shipbuilder, defense contractor Austal reveals data breach

Hackers demanded payment for the return of stolen information.

Black Hat Arsenal Asia 2019 CFT Open

The Black Hat Arsenal team will be back in Singapore with the very same goal: give hackers & security researchers the opportunity to demo their newest and latest code. The Arsenal tool demo area...

[[ This is a content summary only. Visit my website for full links, other content, and more! ]]

Halloween City - Enterprise Security Weekly #113

This week, Matt Alderman is in studio to interview Ian McShane, VP of Product Marketing at Endgame! In the Enterprise News this week, LogRhythm advances NextGen SIEM security platform with SOAR, Ping Identity launches a Quickstart private sandbox, McAfee takes a big step in the cloud, Endgame improves Endpoint Security with Total Attack Lookback, and we have some acquisition updates from IBM, Red Hat, Neustar, and more!

To learn more about Endgame, go to: https://www.endgame.com

Full Show Notes: https://wiki.securityweekly.com/ES_Episode113

 

FIFA admits hack and braces for new leaks

March 2018 phishing incident pegged as possible origin of latest hack and subsequent data theft.

US senator working on bill that would jail CEOs for user privacy violations

Company execs could face up to 20 years in prison if they lie in privacy reports submitted to the FTC.

Researchers find Stuxnet, Mirai, WannaCry lurking in industrial USB drives

The malware strains have all been found in industrial settings due to removal media.

CIA Vault7 leaker to be charged for leaking more classified data while in prison

Joshua Schulte accused of leaking classified data from his case to family members and the press while in a New York detention center.

Bleedingbit zero-day chip flaws may expose majority of enterprises to remote code execution attacks

Updated: The BLE chip zero-day vulnerabilities have the potential to render millions of enterprise security systems powerless.

Radisson Hotel Group suffers data breach, customer info leaked

Radisson Hotel Group loyalty scheme members are affected and may have had their personal information stolen.

Cisco zero-day exploited in the wild to crash and reload devices

No patch available,yet. Vulnerability affects devices running ASA 9.4+ and FTD 6.0+ software.

Google won't let you sign in if you disabled JavaScript in your browser

Google announces for new security features to protect Google accounts.

US-CERT issues guide on how to properly dispose of your electronic devices

It's simple: back up, delete, overwrite, and optionally destroy.

GandCrab ransomware crew loses $1M after Bitdefender releases free decrypter

Bitdefender says over 1,700 victims successfully decrypted GandCrab-locked files within hours of the tool's release.

Inside the mind of a sextortion scam artist

Do they really have access to your browsing habits and data?

Kraken Cryptor ransomware merges with Fallout exploit kit, fees slashed to gain followers

The ransomware-as-a-service is attempting to drum up more business in the Internet's underbelly.

Nigerian airline Arik Air may have leaked customer data

Updated: It was a month before the data, contained in a leaky Amazon S3 bucket, was secured.

Eggplant Volcanoes - Application Security Weekly #37

This week, Keith and Paul interview Johnny Xmas, Director of Field Engineering at Kasada.io! In the Application Security News, Millions of passengers affected by Cathay Pacific Airline Hack, China has been hijacking the internet backbone of Western countries, how proficient are developers at fixing Application Security flaws, MicroTik Router Bug is as bad as it gets, and more!

 

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode37

Visit https://www.securityweekly.com/asw for all the latest episodes!

Visit https://www.activecountermeasures/asw to sign up for a demo or buy our AI Hunter!

 

Visit our website: https://www.securityweekly.com

Follow us on Twitter: https://www.twitter.com/securityweekly

Like us on Facebook: https://www.facebook.com/secweekly

Emotet malware gang is mass-harvesting millions of emails in mysterious campaign

New Emotet module deployed within the last 24 hours has experts worried that Emotet gang is preparing a more dangerous attack.

US charges two Chinese intelligence officers 'and their team of hackers'

Department of Justice charges Chinese nationals for hacks on US and French aviation companies.

Apple's T2 security chip disconnects a MacBook's microphone when users close the lid

Feature only available for MacBook Pro and MacBook Air models released in 2018.

Hack Naked News #195 - October 30, 2018

This week, A one-liner exploit for X, the danger of searching for Chrome in Bing, exposing your Docker API, you can find sensitive data in the cloud, exploit users by embedded videos in Word documents, dead web apps, hacking BGP routes, a new DHCP vulnerability and hacking your brain! Jason Wood from Paladin Security joins us for expert commentary to discuss twelve malicious Python libraries found and removed from PyPI!

 

Full Show Notes: https://wiki.securityweekly.com/HNNEpisode195

Visit https://www.securityweekly.com/hnn for all the latest episodes!

Visit https://www.activecountermeasures/hnn to sign up for a demo or buy our AI Hunter!!

 

Follow us on Twitter: https://www.twitter.com/securityweekly

Like us on Facebook: https://www.facebook.com/secweekly

Many CMS plugins are disabling TLS certificate validation... and that's very bad

Hundreds of thousands of CMS plugins and PHP libraries are disabling cURL certificate validation and putting millions of users at risk.

GPlayed Trojan's baby brother is after your bank account

GPlayed has been making the rounds this month and now researchers have uncovered a new member of the family.

This is how hackers can take down our critical energy systems through the Internet

Human Interface Systems lacking any kind of security have the potential to cause serious damage to critical services worldwide.

This is how hackers can wipe your memory and steal your thoughts

It might seem like science fiction, but security woes in brain chips could make such attacks reality sooner than we think.

The Whole Genesis - Business Security Weekly #104

This week, Michael and Paul discuss the tools that have helped them in their business. They talk about the books they've read, the interviews that helped them the most, and the journey from Startup Security Weekly to Business Security Weekly!

 

Full Show Notes: https://wiki.securityweekly.com/BSWEpisode103

Visit https://www.securityweekly.com/bsw for all the latest episodes!

Visit https://www.activecountermeasures/bsw to sign up for a demo or buy our AI Hunter!!

 

→Visit our website: https://www.securityweekly.com

→Follow us on Twitter: https://www.twitter.com/securityweekly

→Like us on Facebook: https://www.facebook.com/secweekly

Google launches reCAPTCHA v3 that detects bad traffic without user interaction

reCAPTCHA v3 assigns incoming site visitors a risk score and lets webmasters takes custom actions based on this score.

US bans exports to Chinese DRAM maker citing national security risk

US official fears supply chain attack on US military systems.

Pakistani bank denies losing $6 million in country's 'biggest cyber attack'

Anonymous source says the attack consisted of a flood of suspicious PoS transactions made at Target stores in Brazil and US.

DHS: Election officials inundated, confused by free cyber-security offerings

Official would have liked free offerings to have been coordinated through DHS.

Satori botnet author in jail again after breaking pretrial release conditions

Still unclear what Nexus Zeta has done, but he's now incarcerated in the SeaTac detention center.

Twelve malicious Python libraries found and removed from PyPI

One package contained a clipboard hijacker that replaced victims' Bitcoin addresses in an attempt to hijack funds from users.

There's Always Scotch - Paul's Security Weekly #580

This week, we welcome Veronica Schmitt, Senior Digital Forensic Scientist for DFIRLABS! Veronica explains what SRUM is in Windows 10, and how SRUM can be a valuable tool in Digital Forensics! In the Technical Segment, we welcome Yossi Sassi, the Co-Founder and Cybersecurity Researcher at CyberArtSecurity.com and Advisory Board member at Javelin Networks! Yossi joins us to discuss using Windows Powershell, discussing DCSync, DCShadow, creative Event Log manipulation & thoughts about persistence! In the Security News, Fear of AI attacks, the FDA releases cybersecurity guidance, watch hackers steal a Tesla, serious D-Link router security flaw may never be patched, and California addresses default passwords! All that and more, on this episode of Paul's Security Weekly!

 

Full Show Notes: https://wiki.securityweekly.com/Episode580

Visit https://www.securityweekly.com/psw for all the latest episodes!

To learn more about Javelin Networks, Go To: www.javelin-networks.com

 

Visit https://www.activecountermeasures/psw to sign up for a demo or buy our AI Hunter!!

Follow us on Twitter: https://www.twitter.com/securityweekly

ike us on Facebook: https://www.facebook.com/secweekly 

Windows Defender becomes first antivirus to run inside a sandbox

Windows Defender with sandbox support rolled out to Windows insiders, but some Windows 10 users can enable it right now.

Facebook removes more Iran-linked accounts, this time targeting the US & UK

Facebook said it detected this second Iran-linked campaign a week ago.

Majority of county election websites in 20 key swing states use non-.gov domains

Many county election websites also found to be lacking HTTPS support.

China has been 'hijacking the vital internet backbone of western countries'

Chinese government turned to local ISP for intelligence gathering after it signed the Obama-Xi cyber pact in late 2015, researchers say.

New security flaw impacts most Linux and BSD distros

Issue is only a privilege escalation flaw but it impacts a large number of systems.

You're Mind Will Explode - Enterprise Security Weekly #112

This week, Paul is joined by guest host Tyler Shields to interview Jonathan Sander, Security Field CTO of Snowflake computing! Jonathan explains how he came to work for Snowflake, what Snowflake does in the enterprise security space, and how Snowflake contains their data and protect from breaches as well as keeping the data safe! In the Enterprise Security News, Netscout takes internet scale Threat Protection to the Edge, Splunk addresses several vulnerabilities in Enterprise and Light products, Ping Identity launches a Quickstart Private Sandbox, and we have some acquisition updates from CheckPoint acquiring Dome9, CrowdStrike, Fortinet, Rapid7, and more!

 

Full Show Notes: https://wiki.securityweekly.com/ES_Episode112

Visit https://www.securityweekly.com/esw for all the latest episodes!

Visit https://www.activecountermeasures/esw to sign up for a demo or buy our AI Hunter!

 

→Follow us on Twitter: https://www.twitter.com/securityweekly

→Like us on Facebook: https://www.facebook.com/secweekly

China tells Trump to switch to Huawei after NYT iPhone tapping report

Chinese government denies NYT report that it's spying on President Trump's mobile calls.

British Airways: Cyberattack, data theft bigger than we first thought

185,000 customers in addition to original estimates may have had their data, including credit card information, exposed.

New DDoS botnet goes after Hadoop enterprise servers

Hacker group targets misconfigured Hadoop YARN components to plant DemonBot DDoS malware on resource-rich servers.

North Korea blamed for two cryptocurrency scams, five trading platform hacks

Two new reports support FireEye's characterization that North Korea is "the most destructive cyber threat right now."

Cisco releases fix for privilege escalation bug in Webex Meetings app

No, there are no workarounds -- patch now.

Apple blocks GrayKey police tech in iOS update

Reports suggest the data-slurping tool has been rendered useless -- but no-one knows how.

Facebook must pay UK's ICO £500,000 over Cambridge Analytica scandal

The fine has now been imposed and is final, but it could have been far worse.

Free decryption tool released for multiple GandCrab ransomware versions

New decryption tool can recover files locked by GandCrab versions 1, 4, and 5.

Data leak at consulting firm handling fundraisers for the Democratic party

Exposed data includes information on thousands of fundraisers and even credentials for databases of voter records.

Hacker Guccifer, who exposed Clinton private email server, ready for US prison sentence

Hacker was released on parole from Romanian prison this week and is now eligible for a second US extradition to serve 52 months in a US prison on a 2016 sentence.

Two Phones - Application Security Weekly #36

This week, Paul and April Wright discuss a jQuery Plugin that has been exploited for years is finally getting patched, a flaw in LibSSH leaves thousands of servers at risk, a remote code implantation flaw found in Medtronic Cardiac Programmers, hackers hiding Cryptocurrency malware in Adobe flash updates, how the government is finally rolling out 2 Factor Authentication for Federal Agency Domains, and how Disney is helping women from across their company to become Developers!

 

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode36

Visit https://www.securityweekly.com/asw for all the latest episodes!

Visit https://www.activecountermeasures/asw to sign up for a demo or buy our AI Hunter!

 

Visit our website: https://www.securityweekly.com

Follow us on Twitter: https://www.twitter.com/securityweekly

Like us on Facebook: https://www.facebook.com/secweekly

Hack Naked News #194 - October 23, 2018

This week, Critical Code execution flaws, WordPress working on wiping older versions from existence, Multiple serious flaws in Drupal, TCP/IP flaws leave IoT gear open to mass hijacking, jQuery plugin actively exploited for at least three years, Flaw in libssh leaves thousands of servers at risk of hijacking, and 8 adult websites exposes a bunch of "intimate" user data! Leonard Simon from Springboard joins us for expert commentary on how to get into the field of Information Security!

 

Full Show Notes: https://wiki.securityweekly.com/HNNEpisode194

Visit https://www.securityweekly.com/hnn for all the latest episodes!

Visit https://www.activecountermeasures/hnn to sign up for a demo or buy our AI Hunter!!

 

Follow us on Twitter: https://www.twitter.com/securityweekly

Like us on Facebook: https://www.facebook.com/secweekly

Microsoft sees 25 percent rise in US law enforcement requests

Law enforcement requests numbers stayed the same at the global level, but saw a spike in the US.

Meet the malware which turns your smartphone into a mobile proxy

The proxies can be used to circumvent internal network security controls.

Most enterprise vulnerabilities remain unpatched a month after discovery

More bugs are being squashed by the enterprise, but the time it takes to do so leaves organizations at risk.

Mozilla will match all donations to the Tor Project

Mozilla gives back to the Tor Project after it embedded multiple Tor Browser features into Firefox.

This botnet snares your smart devices to perform DDoS attacks with a little help from Mirai

Chalubo is a new botnet which is being used in attacks against servers and IoT devices.

Pocket iNet ISP exposed 73GB of data including secret keys, plain text passwords

Updated: The Washington-based ISP's bucket exposed everything from passwords to internal corporate data.

Yahoo agrees to pay $50 million to settle data breach lawsuit

The company will also provide free credit monitoring services to roughly 200 million people impacted by the cyberattacks.

Microsoft Windows zero-day disclosed on Twitter, again

Zero-day impacts Windows 10, Server 2016, and Server 2019 only.

Do Your Job - Business Security Weekly #103

This week, Michael and Paul interview Mike McKee, CEO of ObserveIT, and he joins us to talk about the importance of focussing on people, and you do that to experience growth! In the Article Discussion, Michael and Paul talk about the root cause of workplace drama, how to make the most of meetings between IT and your business partners, how to stop procrastinating on your goals by using the “Seinfeld Strategy", and more on this episode of Business Security Weekly!

Full Show Notes: https://wiki.securityweekly.com/BSWEpisode103

 

Visit https://www.securityweekly.com/bsw for all the latest episodes!

 

Visit https://www.activecountermeasures/bsw to sign up for a demo or buy our AI Hunter!!

 

→Visit our website: https://www.securityweekly.com

→Follow us on Twitter: https://www.twitter.com/securityweekly

→Like us on Facebook: https://www.facebook.com/secweekly