15 Bullet Friday – The Best Security News of the Week – 2019.04.05
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. How Microsoft found a Huawei driver that opened systems to attack (Ars Technica, Mar 29 2019) Monitoring systems were looking for attacks using technique popularized by the NSA. 2. A Month After 2 Million Customer Cards Sold Online, Buca di Beppo Parent […]
15 Bullet Friday – The Best Security News of the Week – 2019.03.29
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Facebook Mistakenly Stored ‘Hundreds of Millions’ of User Passwords as Plaintext (Motherboard, Mar 21 2019) The social network confirmed a massive mistake that exposed millions of passwords. But, the company said, no passwords were exposed to people outside of Facebook. 2. Hackers […]
15 Bullet Friday – The Best Security News of the Week – 2019.03.22
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Chrome will soon block drive-by-download malvertising (Naked Security – Sophos, Mar 13 2019) A new Chrome feature hopes to choke off one of the most malicious forms of malware infection: drive-by advertising downloads. 2. Criminals Use One Line of Code to Steal […]
15 Bullet Friday – The Best Security News of the Week – 2019.03.15
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Triton is the world’s most murderous malware, and it’s spreading (MIT Technology Review, Mar 06 2019) The rogue code can disable safety systems designed to prevent catastrophic industrial accidents. It was discovered in the Middle East, but the hackers behind it are […]
15 Bullet Friday – The Best Security News of the Week – 2019.03.08
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Crypto Mining Service Coinhive to Call it Quits (Krebs on Security, Feb 27 2019) “Roughly one year ago, KrebsOnSecurity published a lengthy investigation into the individuals behind Coinhive[.]com, a cryptocurrency mining service that has been heavily abused to force hacked Web sites […]
15 Bullet Friday – The Best Security News of the Week – 2019.03.01
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Google: Software is never going to be able to fix Spectre-type bugs (Ars Technica, Feb 23 2019) Researchers also devise a Spectre-like attack with no known mitigation. 2. To Mitigate Advanced Threats, Put People Ahead of Tech (Dark Reading, Feb 22 2019) […]
15 Bullet Friday – The Best Security News of the Week – 2019.02.22
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. A Deep Dive on the Recent Widespread DNS Hijacking Attacks (Krebs on Security, Feb 18 2019) “The U.S. government — along with a number of leading security companies — recently warned about a series of highly complex and widespread attacks that allowed […]
15 Bullet Friday – The Best Security News of the Week – 2019.02.15
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Ransomware Sees Further Decline, Banking Trojan Use Steps Up (Infosecurity Magazine, Feb 07 2019) Ransomware message volumes dropped significantly from Q2 to Q4 “suggesting that ransomware campaigns did not generate sufficient returns for threat actors to continue distributing them at scale.” 2. […]
15 Bullet Friday – The Best Security News of the Week – 2019.02.08
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Major Zcash Vulnerability Fixed (Schneier on Security, Feb 05 2019) Zcash just fixed a vulnerability that would have allowed “infinite counterfeit” Zcash. Like all the other blockchain vulnerabilities and updates, this demonstrates the ridiculousness of the notion that code can replace people, […]
15 Bullet Friday – The Best Security News of the Week – 2019.02.01
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. DHS Issues Emergency Directive on DNS Security (Dark Reading, Jan 23 2019) All government domain owners are instructed to take immediate steps to strengthen the security of their DNS servers following a successful hacking campaign. 2. After Eight Years, Metasploit Gets Its […]