Absolutely Massive - Enterprise Security Weekly #121

This week, we welcome Tony Cole, Chief Technology Officer at Attivo Networks for an interview! Tony joins us to discuss the cyber deception in the enterprises today, and gives a brief history of deception and its applicability to cybersecurity! In the Enterprise News, Neustar bolsters fraud detection capabilities with Trustid, almost half of containers in production have vulnerabilities, BlackBerry offers its security technology to IoT device makers, and Radware to acquire ShieldSquare for expansion of its cloud security portfolio!

 

Full Show Notes: https://wiki.securityweekly.com/ES_Episode121

Visit https://www.securityweekly.com/esw for all the latest episodes!

 

Follow us on Twitter: https://www.twitter.com/securityweekly

Like us on Facebook: https://www.facebook.com/secweekly

The Iceberg Problem - Application Security Weekly #45

This week, Keith and Paul interview Ken Johnson, Application Security Engineer at GitHub! Ken joins us to discuss approaching AppSec the right way, "running a scanner without context", getting the right context/importance of context, and how to figure what's real and what's legit! In the Application Security News, Wormable stored XSS on WordPress.org, a security lapse revealed private complaints from Silicon Valley employees, hackers hijack thousands of Chromecasts to warn of latest security bug, a linting tool for checking accessibility, speed, and security, host websites on GitHub, and more!

 

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode45

Visit https://www.securityweekly.com/asw for all the latest episodes!

 

Visit our website: https://www.securityweekly.com

Follow us on Twitter: https://www.twitter.com/securityweekly

Like us on Facebook: https://www.facebook.com/secweekly

Hack Naked News #202 - January 8, 2019

This week, Ethereum hit by Double Spend attack, NSA to release reverse engineering tool for free, a Skype glitch allowed Android Authentication Bypass, Zerodium offers $2 Million for remote iOS jailbreaks, and tens of thousands of hot tubs are exposed to hacking! Our CEO Matt Alderman joins us for expert commentary on how Container Security lags amidst DevOps enthusiasm, and more!

 

Full Show Notes: https://wiki.securityweekly.com/HNNEpisode202

Visit https://www.securityweekly.com/hnn for all the latest episodes!

 

Follow us on Twitter: https://www.twitter.com/securityweekly

Like us on Facebook: https://www.facebook.com/secweekly

Akamai acquires Janrain to strengthen identity access controls, bot protection

Akamai says the deal will make the firm’s solutions more “identity aware.”

Gatwick drone disruption deemed ‘deliberate,’ new powers given to police

Opinion: £100 penalty notices might not be enough to deter those who find causing airport chaos amusing.

Lift It & Shift It - Business Security Weekly #112

This week, Matt and Paul interview Tim Callahan, Global Chief Security Officer of Aflac, to discuss communicating threat intelligence to executives and the board! In the Leadership Articles, Matt and Paul discuss how to moderate a panel discussion, the secret to leading organizational change is empathy, DevOps explained, 5 cloud computing predictions for 2019, and the top 3 things CIOs lose sleep over!

 

Full Show Notes: https://wiki.securityweekly.com/BSWEpisode112

Visit https://www.securityweekly.com/bsw for all the latest episodes!

 

Visit our website: https://www.securityweekly.com

Follow us on Twitter: https://www.twitter.com/securityweekly

Like us on Facebook: https://www.facebook.com/secweekly

Coinbase suspends Ethereum Classic (ETC) trading after double-spend attacks

Attackers carried out 11 double-spend attacks and stole nearly 88,500 ETC (~$460,000).

New hardware-agnostic side-channel attack works against Windows and Linux

Side-channel attack almost certainly works against macOS, but researchers haven't tested it.

Real-time location data for over 11,000 Indian buses left exposed online

Researcher finds real-time GPS and bus route information from 27 Indian transportation agencies left exposed online via an ElasticSearch server.

NSA to release a free reverse engineering tool

GHIDRA is written in Java and works on Windows, Mac, and Linux.

Facial recognition doesn't work as intended on 42 of 110 tested smartphones

Devices from Asus, BlackBerry, Huawei, Lenovo, LG, Nokia, Samsung, Sony, and Xiaomi failed a basic "photo test."

Only the Gin Knows - Paul's Security Weekly #588

This week, we welcome back Dameon Welch-Abernathy, or “Phoneboy”, a Cyber Security Evangelist at Check Point Software Technologies for an interview! Dameon joins us to discuss how to help people in the security community, a topic near and dear to our hearts! In the Technical Segment, the Security Weekly crew accompanied by Dameon holds a discussion on Breaches, Privacy, Compliance, and more! In the Security News, the worst hacks of 2018, hijacking smart TV's to promote PewDiePie, hackers attempt to sell stolen 9/11 documents, and turning your house into a DOOM level with a Roomba! All that and more, on this episode of Paul's Security Weekly!

 

Full Show Notes: https://wiki.securityweekly.com/Episode588

Visit https://www.securityweekly.com/psw for all the latest episodes!

 

Follow us on Twitter: https://www.twitter.com/securityweekly

Like us on Facebook: https://www.facebook.com/secweekly

City of LA sues Weather Channel app for sharing location data with advertisers

IBM-owned app maker accused of sharing user location data with affiliates of its parent company and other advertisers, but also hiding the practice in a 10,000-word-long privacy policy.

Most home routers don't take advantage of Linux's improved security features

Router firmware rarely includes ASLR, DEP, or RELRO protections, study finds.

Marriott says less than 383 million guests impacted by breach, not 500 million

Marriott issues new hack numbers, downgrading original 500 million estimate.

A deluge of privilege escalation vulnerabilities has been patched in CleanMyMac X

The root CleanMyMac X system was left exposed due to the security flaws.

Hackers dump data of hundreds of German politicians on Twitter

Data for some German artists and YouTube celebrities also included.

Adobe squashes critical bugs in Acrobat, Reader

The critical security flaws can lead to privilege escalation and code execution.

Security researcher cracks Google's Widevine DRM (L3 only)

Widevine hack is clever, but it won't spur any waves of Netflix piracy any time soon.

New ReiKey app can detect macOS keyloggers

A free macOS keylogger detector for those who fear they're being spied on.

Dublin’s Luas tram system threatened with private data leak

Hackers defaced the Luas website and demanded a ransom in Bitcoin.

'Town of Salem' game suffers data breach exposing 7.6 million user details

Game maker has yet to alert users outside a short forum post.

Revamped cryptominer strikes Asia through EternalBlue exploit

A new version of the NRSMiner cryptominer is making the rounds by exploiting PCs which are still not patched against the Windows vulnerability.

Google Chrome flaw patched three years after initial report

Issue: Chrome for Android was revealing firmware build info that could have been used for exploit targeting.

Data of 2.4 million Blur password manager users left exposed online

Company says data breach didn't expose any actual passwords stored inside users' Blur accounts.

Hacker hijacks thousands of Chromecasts and smart TVs to play PewDiePie ad

Hacker is targeting smart TVs, Chromecasts, and Google Home devices. Sonos support also coming, hacker said.

Ransomware suspected in cyberattack that crippled major US newspapers

Source inside Tribune Publishing says printing outage caused by Ryuk ransomware infection.

EU to fund bug bounty programs for 14 open source projects starting January 2019

Some of the approved projects include KeePass, 7-zip, VLC Media Player, Drupal, and FileZilla.

Hackers steal personal info of 1,000 North Korean defectors

Hackers stole names, addresses, and dates of birth of 997 North Korean defectors.

CenturyLink outage takes down several 911 emergency services across the US

Downtime caused by network issue affecting 15 of CenturyLink's data centers.

2018's most high-profile cryptocurrency catastrophes and cyberattacks

We explore the worst high-profile cyberattacks, data breaches, vulnerabilities, and cases of fraud to strike the cryptocurrency space over 2018.

Users report losing Bitcoin in clever hack of Electrum wallets

Hacker has stolen over $750,000 worth of Bitcoin over the past seven days.

Hacker steals 10 years worth of data from San Diego school district

Officials said the hacker made off with the personal information of over 500,000 student and staff.

Over 19,000 Orange modems are leaking WiFi credentials

Headaches for Orange customers in France and Spain for the holidays.

Chrome OS to block USB access while the screen is locked

Google takes steps to protect Chromebooks from some types of physical access attacks.

Know Where You're Putting Your Tool - Paul's Security Weekly #587

This week, we welcome Vaughn Adams, Enterprise Sales Engineer at LogRhythm! Vaughn will be talking about using freely available tools and logs you are already collecting to detect attacker behavior! In our second segment, we have a Round Table discussion entitled "What the Heck Are Security Basics?", to talk about what should organizations be doing to meet the basic security requirements, and much more! In our final segment, we air a pre-recorded interview with Mandy Logan on "Hacking the Brainstem", her trip through recovery, and how she came to love Information Security!

 

Full Show Notes: https://wiki.securityweekly.com/Episode587

Visit https://www.securityweekly.com/psw for all the latest episodes!

To get involved with LogRhythm, go to: www.securityweekly.com/logrhythm

Support Mandy by going to her GoFundMe Page: https://www.gofundme.com/hacking-recovery-brainstem-stroke

 

Visit https://www.activecountermeasures/psw to sign up for a demo or buy our AI Hunter!

Follow us on Twitter: https://www.twitter.com/securityweekly

Like us on Facebook: https://www.facebook.com/secweekly

Researcher publishes proof-of-concept code for creating Facebook worm

One group has already been abusing this issue to post spam on users' Facebook walls.

India authorizes 10 agencies to intercept, monitor, and decrypt citizens' data

Order sparks outrage in India with citizens, privacy advocates, and political opponents accusing the government of trying to establish a "surveillance state."

Chinese websites have been under attack for a week via a new PHP framework bug

PoC for ThinkPHP security flaw sparks furious scans for vulnerable sites, most of which are based in China.

My Comfort Blanket - Enterprise Security Weekly #120

This week, Paul, John Strand, and Matt Alderman talk the Enterprise News, which includes TPG in early talks to sell McAfee to Thoma Bravo, Bitdefender offers new managed threat monitoring service, Symantec and Fortinet partner to deliver robust and comprehensive Cloud Security Service, and Untangle partners with Malwarebytes to bring Layered Security to SMBs! In our final segment of the year, Paul brings you his personal Top Ten List for 2018 including his favorite acquisitions, breaches, vulnerabilities, interviews, attack tools, news articles, and more!

 

Full Show Notes: https://wiki.securityweekly.com/ES_Episode120

Visit https://www.securityweekly.com/esw for all the latest episodes!

Visit https://www.activecountermeasures/esw to sign up for a demo or buy our AI Hunter!

 

Follow us on Twitter: https://www.twitter.com/securityweekly

Like us on Facebook: https://www.facebook.com/secweekly

Five other countries formally accuse China of APT10 hacking spree

Australia, Canada, Japan, New Zealand, and the UK also point the finger at the Beijing government. Germany expected as well.

Caribou Coffee chain announces card breach impacting 239 stores

Almost 40 percent of the company's coffee stores impacted by breach of its POS system.

Law enforcement shut down DDoS booters ahead of annual Christmas DDoS attacks

Law enforcement launch preemptive strike to shut down some of the DDoS services that may be abused to attack gaming services over the Christmas holiday.

US charges two Chinese nationals for hacking cloud providers, NASA, the US Navy

The two Chinese nationals were members of the infamous APT10 cyber-espionage group, DOJ said.

Nokia denies leaking internal credentials in server snafu

Security researcher finds treasure trove of passwords and API keys on an internet-accessible etcd database.

Researcher publishes PoC for new Windows zero-day

This is the third Windows zero-day the researcher dumps online in the last five months.

Hacker spoofing bypasses 2FA security in Gmail, targets secure email services

Updated: Google, Yahoo, and ProtonMail accounts are being targeted in a new wave of phishing attacks.

Microsoft releases security update for new IE zero-day

Microsoft releases out-of-band security update for Internet Explorer zero-day discovered by Google threat analysts.

Chinese hackers tap into EU diplomatic communications network

The critical COREU network in the bloc has been reportedly compromised by a state-sponsored Chinese hacking group, leading to the theft of internal cables.

Shamoon data-wiping malware believed to be the work of Iranian hackers

Researchers say the Iranian hacker group APT33 is responsible for recent attacks in the Middle East and Europe.

New attack intercepts keystrokes via graphics libraries

Attack can guess text input from both hardware and on-screen keyboards alike.

This business email scam spreads Trojans through Google Cloud storage

Financial firms and services are being actively targeted in the UK and US.

Hackers have earned $1.7 million so far from trading data stolen from US gov payment portals

User payment data was stolen from local Click2Gov government systems in US cities.

Facebook defends giving tech giants access to extensive user data

In a story which unfortunately just keeps giving, Facebook has yet again awarded us with a privacy scandal worthy of note.

Watch researchers remotely brick a server by corrupting its BMC and UEFI firmware

Attack is only a proof-of-concept, but one that can be as damaging as ransomware or disk-wiping malware.

In Flames - Application Security Weekly #44

This week, Keith and Paul interview Harry Sverdlove, CTO and Founder of Edgewise! Harry joins us to discuss what Edgewise does in the AppSec world, segmentation, cloud migration, trying different architectures, and more! In the Application Security News, Facebook bug exposed private photos of 6.8 million users, thousands of Jenkins servers will let anonymous users become admins, Signal app can't include a backdoor for the Australian government, WordPress plugs bug that led to Google indexing some user passwords, and more!

 

Full Show Notes: https://wiki.securityweekly.com/ASW_Episode44

To get involved with Edgewise, go to: https://www.edgewise.net/securityweekly

 

Visit https://www.securityweekly.com/asw for all the latest episodes!

Visit https://www.activecountermeasures/asw to sign up for a demo or buy our AI Hunter!

Visit our website: https://www.securityweekly.com

 

Follow us on Twitter: https://www.twitter.com/securityweekly

Like us on Facebook: https://www.facebook.com/secweekly

Follow us on Twitter: https://www.twitter.com/securityweekly

NASA discloses data breach

Hack took place in October 2018. Agency still doesn't know the number of impacted employees.

Hack Naked News #201 - December 18, 2018

This week, when meme's attack, how Google's taking steps to secure Kubernetes, suggestions for last minute Holiday IT gifts, Twitter fixes bug that exposed data, and how WordPress was targeted with clever SEO Injection Malware! Ed Sattar from Quickstart joins us for expert commentary on how to optimize your cyber security investment to maximize ROI, and more!

 

Full Show Notes: https://wiki.securityweekly.com/HNNEpisode201

Visit https://www.securityweekly.com/hnn for all the latest episodes!

Visit https://www.activecountermeasures/hnn to sign up for a demo or buy our AI Hunter!

 

Follow us on Twitter: https://www.twitter.com/securityweekly

Like us on Facebook: https://www.facebook.com/secweekly

DOD doesn't keep track of duplicate or obsolete software

July 2018 memorandum says DOD has yet to report over 30 percent of its software inventory.

Researchers slam Hola VPN over absent encryption, user IP leaks

Updated: Trend Micro users will now receive a warning over the use of Hola as "unwanted" and risky software.