• Articles
    • Editorial Articles
    • Research Articles
    • WatchGuard Articles
  • The 443 Podcast
  • Threat Landscape
  • About
    • About Us
    • Contact Us
    • Contribute to Secplicity

Secplicity - Security Simplified

Powered by WatchGuard Technologies

WatchGuard Security Week in Review: Episode 38 – miniFlame

October 19, 2012 By Corey Nachreiner

Oracle Updates, miniFlame, and Steam Hack

There was once a time when I had to subscribe to many obscure mailing lists, lurk on underground forums and channels, and visit a ton of buried pages at vendor sites to learn about the latest vulnerabilities, exploits, and breaches. That’s no longer the case.

Today, mainstream media reports on more information and network security news every week than most IT administrators can keep up with. Thus, this weekly security news round-up video. We consolidate and concentrate all the most important security stories into one digestible video each week—throwing in some practical security tips along the way.

This week’s episode includes security updates from Oracle and Apple, a new advanced nation-state threat called miniFlame, and a few fun security stories involving popular gaming platforms and zombie apocalypses. Watch the video below for quick highlights, and check out the Reference section for more details.

Thanks for watching, and keep frosty out there.

(Episode Runtime: 11:11)

Direct YouTube Link: http://www.youtube.com/watch?v=hCYaXy5oUnY

Episode References:

  • Software Updates:
    • Oracle CPU patch, and related Apple OS X update – WGSC
    • Oracle October CPU advisory – Oracle
    • Oracle October Java update – Oracle
    • Apple OS X Java update – Apple
  • Whitehouse finds no proof of backdoor in Huawei devices – Reuters
  • Kaspersky’s finds new APT threat called miniFlame – Securelist blog
  • Deep miniFlame analysis – Securelist blog
  • UK will not extradite NASA hacker (Gary Mckinnon) – Wired
  • ReVuln finds zero day flaws in Steam – ReVuln
  • The Walking Dead video streams hide malware – Softpedia
  • Extra Stories
    • Kaspersky to release a secure OS for ICS systems – The Register
    • Github DDoS Attack – ZDNet
    • Hackers can kill with pacemaker vulnerabilites – The Week
    • More DDoS attacks against banks – ZDNet
    • iOS 6 tracking you again (but you can disable) – Ars Technica
    • Cross platform attack infects mobiles and PCs – HNS

— Corey Nachreiner, CISSP (@SecAdept)

Share This:

Related

Filed Under: Security Bytes Tagged With: Apple, Cyber Espionage, Gary Mckinnon, Hacking, Huawei, Malware, NASA Hacker, Oracle, Software vulnerabilities, Steam, The Walking Dead, Updates and patches, Value, Zero day exploit, ZTE

Comments

  1. Dawn LaMothe says

    October 24, 2012 at 9:38 am

    Can you direct me to articles pertaining to the number or percentage of home computers being hacked in the last two years? A friend of mine is telling me that it is not often enough to warrant the cost of an XTM 26-W for home.

    Regards,
    Dawn LaMothe
    IT Manager
    Christian Life School 262-694-3900 x288

    Reply
  2. Dawn LaMothe says

    October 24, 2012 at 9:38 am

    Can you direct me to articles pertaining to the number or percentage of home computers being hacked in the last two years? A friend of mine is telling me that it is not often enough to warrant the cost of an XTM 26-W for home.

    Regards,
    Dawn LaMothe
    IT Manager
    Christian Life School 262-694-3900 x288

    Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

The 443 Podcast

A weekly podcast featuring the leading white-hat hackers and security researchers. Listen Now
the 443 podcast

Threat Landscape

Filter and view Firebox Feed data by type of attack, region, country, and date range. View Now
threat landscape

Top Posts

  • Cybersecurity News: Free Cybersecurity Training, TrickBot Group Exposed, Major GoDaddy Breach, and Russia to Legalize cybercrime?!
  • US National Cybersecurity Strategy
  • 3CX Supply Chain Attack
  • Here Come The Regulations

Email Newsletter

Sign up to get the latest security news and threat analysis delivered straight to your inbox

By signing up you agree to our Privacy Policy.


The views and opinions expressed on this website are those of the authors and do not necessarily reflect the policy or position of WatchGuard Technologies.

Stay in Touch

Recent Posts

  • 3CX Supply Chain Attack
  • The NSA’s Guidance on Securing Authentication
  • Cybersecurity News: LastPass Incident Revealed, White House Issues Cybersecurity Strategy, FBI Purchases Leaked USHOR PII Data, and a Slew of Other Breaches
  • An Update on Section 230
  • Here Come The Regulations
View All

Search

Archives

Copyright © 2023 WatchGuard Technologies · Cookie Policy · Privacy Policy · Terms of Use