15 Bullet Friday – The Best Security News of the Week – 2018.09.07
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. CIA Network Exposed Through Insecure Communications System (Schneier on Security, Aug 29 2018) People died because of that mistake. The moral — which is to go back to pre-computer systems in these high-risk sophisticated-adversary circumstances — is the right one, I think. […]
15 Bullet Friday – The Best Security News of the Week – 2018.08.31
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. PoC exploit for critical Apache Struts flaw found online (Help Net Security, Aug 27 2018) The Apache Software Foundation revealed last week the existence of a critical Apache Struts flaw (CVE-2018-11776) similar to the one exploited in the Equifax breach and urged […]
15 Bullet Friday – The Best Security News of the Week – 2018.08.24
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Hacker Unlocks ‘God Mode’ and Shares the ‘Key’ (Dark Reading, Aug 13 2018) A researcher proves that it’s possible to break the most fundamental security on some CPUs. 2. In-flight satellite comms vulnerable to remote attack, researcher finds (Naked Security – Sophos, […]
15 Bullet Friday – The Best Security News of the Week – 2018.08.17
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Invisible Mouse Clicks Let Hackers Burrow Deep into MacOS (Wired, Aug 12 2018) A former NSA hacker finds a new way malware can take control of a Mac’s mouse for a powerful intrusion technique. 2. Macs in Enterprise Can Be Hacked on […]
15 Bullet Friday – The Best Security News of the Week – 2018.08.10
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Black Hat Talk Reveals How Embedded Systems Expose Airlines to Risk (eWEEK, Aug 08 2018) Security firm IOActive is set to disclose multiple vulnerabilities in the embedded systems used for satellite communications and in-flight WiFi, revealing the larger challenge of supply chain […]
15 Bullet Friday – The Best Security News of the Week – 2018.08.03
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. How Cloudflare Uses Lava Lamps to Guard Against Hackers (Wired, Jul 29 2018) Inside Cloudflare’s San Francisco office, 100 units of Edward Craven Walker’s groovy hardware help guard the internet. 2. State Govts. Warned of Malware-Laden CD Sent Via Snail Mail from […]
15 Bullet Friday – The Best Security News of the Week – 2018.07.27
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Google: Security Keys Neutralized Employee Phishing (Krebs on Security, Jul 23 2018) “Google has not had any of its 85,000+ employees successfully phished on their work-related accounts since early 2017, when it began requiring all employees to use physical Security Keys in […]
15 Bullet Friday – The Best Security News of the Week – 2018.07.20
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. House Democrats list states with weakest election security in new report (Washington Post, Jul 16 2018) House Democrats are trying to ramp up pressure to send more election security funding to states by spotlighting the ones they say are most vulnerable going […]
15 Bullet Friday – The Best Security News of the Week – 2018.07.13
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. PROPagate Code Injection Seen in the Wild (Schneier on Security, Jul 09 2018) This can be used to inject code and drop files while also hiding the fact it has happened, making it a useful, stealthy attack. 2. New macOS Malware Targets […]
15 Bullet Friday – The Best Security News of the Week – 2018.07.06
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Typeform Reports Data Breach That Impacts Users of Survey Platform (eWEEK, Jul 02 2018) The breach at Typeform is the second breach in June that once again exposed third-party vendor supply chain risks. 2. The Next Big Cyber-Attack Vector: APIs (SecurityWeek, Jun […]