• Articles
    • Editorial Articles
    • Research Articles
    • WatchGuard Articles
  • The 443 Podcast
  • Threat Landscape
  • About
    • About Us
    • Contact Us
    • Contribute to Secplicity

Secplicity - Security Simplified

Powered by WatchGuard Technologies

Operation Windigo – WSWiR Episode 99

March 21, 2014 By Corey Nachreiner

MH370 Scams, Google Play DDoSed, and Operation Windigo

Each week I summarize the biggest information security news in a short video, so you don’t have to go searching for it yourself. If you’re interested in the latest infosec updates, be sure to watch each Friday. 

Today’s late episode covers a few cyber security stories around the disappeared MH370 flight, news about a penetration tester downing Google Play, and a report about a cyber attack campaign that hijacked 25,000 Linux servers. Watch the video for the full scoops, and check the Reference section below for more info.

Have a great weekend.

(Episode Runtime: 8:41)

Direct YouTube Link: http://www.youtube.com/watch?v=YJ3Ei1WDyIY

Episode References:

  • Hyperbolic story about MH370 disappearance being a cyber hijack – Softpedia
  • MH370 related Facebook scams – Time
  • Researchers pen-test crashes Google Play… twice – CNN Money
  • ESET’s Operation Windigo report [PDF] – We Live Security

Extras:

  • Must watch Snowden interview at TED – YouTube
  • Exploit for Apple SSL MitM flaw – Corte.si
  • Cryptolocker now self-spreading – Trend Micro
  • Lights Out campaign targets energy sector – InfoSec Magazine
  • Chrome update fixes Pwn2Own bugs – Computer World
  • Firefox update fixes Pwn2Own bugs – Computer World
  • Coldfusion attack campaign – Arc Technica
  • RC Drone used for wifi hacks – CNN Money
  • SEA alleges that Microsoft charges NSA for data dumps – Computer World
  • EA servers hijacked for phishing attack – Threat Post
  • iOS Tor app full of adware and spyware – SC Magazine
  • Zorenium botnet has iOS module – Sensecy

— Corey Nachreiner, CISSP (@SecAdept)

Share This:

Related

Filed Under: Security Bytes Tagged With: APT, DNS poisoning, Hacking, Infosec news, Internet Explorer, Microsoft, p2p, Pharming, rootkit, Router, Russia, Sally Beauty, Smuckers, Software vulnerabilities, SOHO Pharming, SQLi, Team Cmryu, TP-Link, Updates and patches, Uroburos, Zero day exploit, Zyxel

Comments

  1. Hal says

    March 21, 2014 at 6:17 pm

    The video is private!!! Any way to see your report?

    Thanks

    Hal

    Reply
  2. Alexander Kushnarev says

    March 30, 2014 at 7:50 am

    It looks like here are 3 kinds of persons/groups, closely related to the term “hacker(s)” in it’s nowadays meaning (we are not talking about script-kiddies and newbie). They are can be classified by the “want to be a famous” factor:
    – Cyber-criminals. Making money and trying to work “in a deep darkness”. If they want to be a famous, then inside a limited groups of “like-minded person” (allies). Almost never want to show who they are in real life (public identification of a person).
    – Hackers or crackers. Making hacks/cracks and trying to stay, at least, “in shadow”. The more professional they are – the more they want not to show who they are in real life.
    – Hacker-artists. They can really do a “big public” hack or a crack, and they know exactly WHAT they are doing (but without(!) any fear of punishment, and I’m curious why?), and want to be classified as, let’s say, members of “hacker’s path of glory”, “worldwide famous IT-rebels” 🙂

    I don’t like to judge somebody, as experts should stay impartial, so let’s everybody tries to “put” mr. Ibrahim Balic under this classification independently from my own opinion 🙂

    Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

The 443 Podcast

A weekly podcast featuring the leading white-hat hackers and security researchers. Listen Now
the 443 podcast

Threat Landscape

Filter and view Firebox Feed data by type of attack, region, country, and date range. View Now
threat landscape

Top Posts

  • Cybersecurity News: Malvertising, Ransomware, and Alleged IRS Breach
  • Law Enforcement Infiltrate and Seize Hive Ransomware Operation
  • The RCE Vulnerability That Wasn’t
  • Cybersecurity News: ACLU Unveils Mass Surveillance Program, (More) Malvertising, and Breaches

Email Newsletter

Sign up to get the latest security news and threat analysis delivered straight to your inbox

By signing up you agree to our Privacy Policy.


The views and opinions expressed on this website are those of the authors and do not necessarily reflect the policy or position of WatchGuard Technologies.

Stay in Touch

Recent Posts

  • CISA Warns of Weaponized RMM Software
  • Cybersecurity News: ACLU Unveils Mass Surveillance Program, (More) Malvertising, and Breaches
  • Law Enforcement Infiltrate and Seize Hive Ransomware Operation
  • Report Roundup
  • Cybersecurity News: Malvertising, Ransomware, and Alleged IRS Breach
View All

Search

Archives

Copyright © 2023 WatchGuard Technologies · Cookie Policy · Privacy Policy · Terms of Use