VM Malware, Mac Attack Toolkits, and iPhone SMS Spoofing
I’ve posted today’s weekly security news summary video a bit late, due to some work travel that got in the way of production, but better late than never right? If you’re interested in the biggest information security stories from the week, you’re at the right place.
This week’s episode covers a SMS spoofing vulnerability that primarily affects iPhones, a Mac attack toolkit criminals are selling on the cyber-underground, and some paradigm shifting malware that specifically targets and infects VMware virtual machines. For details on these stories and more, check out the video below.
Since I had to create this week’s episode quickly, I left out a few extra security stories from the week. If you want to learn about these missing additions, or just want more details about the stories in the video, check out the Reference section at the end of this post.
Have a good weekend, and stay frosty.
(Episode Runtime: 8:02)
Direct YouTube Link: http://www.youtube.com/watch?v=brkjMbpE_Ec
Episode References:
- Apple iPhones suffer SMS spoofing vulnerability – PCWorld
- Other smartphones not affected – SlashGear
- Adobe hasn’t patched 16 Reader vulnerabilities – Slashdot
- Adobe releases a second Flash update within a week– WatchGuard Security Center
- NetWeird Mac Malware sold on criminal forums – Intego Blog
- Crisis malware specifically targets VMware images – Symantec
- WatchGuard blog post on Crisis VMware image infection – WatchGuard Security Center
- Extra Stories
- Intel researchers looking into car hacks – Slashdot
- University of Texas researcher create “Frankenstein” virus – Gizmodo
- Chinese Android malware infects hundred of thousands of victims – eWeek
- Siemens/RuggedCom gear suffers SSL cert vulnerability – Network World
- Shamoon malware may be related to Hacktivist attack against Saudi Aramco – Computer World
— Corey Nachreiner, CISSP (@SecAdept)
Leave a Reply