Unfortunately, lots of security news suggests lots of cyber crime. If you want to stay protected, you need to keep up to date; but who has time? Hopefully our weekly InfoSec video can help.
Last Friday’s episode covered an IRS data leak, a mysterious text message that crashed iPhones, some scary new crowd-sourced ransomware, and more. Watch the YouTube video below for all the details, and check out the References for other stories.
(Episode Runtime: 11:53)
Direct YouTube Link: https://www.youtube.com/watch?v=85fEsnnTf7E
Show Note: I’ll be traveling for the next two weeks to attend various security conference. I’ll try to keep up with semi-daily videos, but will not post as regularly, or at the normal times.
EPISODE REFERENCES:
- Monday: Missed due to US holiday
- Tuesday: Hackers Hit the IRS – Daily Security Byte EP.88
- Wednesday: iOS Crash Text – Daily Security Byte EP.89
- Original (now removed) Reddit post on the mysterious iOS crash flaw – Reddit
- Additional Reddit post on the iOS text issue – Reddit
- Tweet of iOS crash message – Twitter
- Media article on the iOS text hack – Wired
- iOS text bug likely affects OS X too – Forbes
- OS X exploit of Core Text flaw – Github
- Old article about 2013 Arabic text iOS flaw – Ars Technica
- Thursday: Crowd-sourced Ransomware – Daily Security Byte EP.90
- Free ransomware found on the Deep Web – Motherboard
- Security awareness blog post on Tox ransomware – Security Zap
- Analysis of Tox ransomware – McAfee
- Deep web Tox website (visit at your own risk with Tor) – Onion link
- Friday: North Korean Cyber Killers? – Daily Security Byte EP.91
EXTRAS:
- Great research on a new exploit kit that targets SOHO routers – MDNC
- Gaana, an Indian music service, suffers a SQL injection breach – The Next Web
- Hola, a free VPN tool, puts users at risk by using them as exit nodes – Motherboard
- Security researchers post on Hola risk – Adios-Hola
- FBI seized MegaUpload domains host malicious ads – BBC
- Saumil Shah shows off his stegosploit image-based attack – Motherboard
- Superfish is going out of changing business – Phys.org
- Grabit malware goes after small businesses – Securelist
- Press article on Grabit – The Register
- Malware still spreading on Facebook – Trend Micro
- Millennials are most vulnerable to cyber crime – Business Insider
- Starbuck going hard against white hat researcher – TechDirt
- Sleeper ransomware “wakes up” infecting thousands – Digital Trends
- Synology patches storage device vulnerability – Network World
- Exploit export rules in the US are a bad idea – Forbes
- Latest on the Roberts plane hacking saga – Reuters
- Spam used to infect PoS systems – Computer World
- Beware of Minecraft related scareware apps on Google Play – The Inquirer
- Long form journalism piece on plane hacking – Wired
- New hack allows researchers to track subway riders – The Next Web
- Moose worm infects Linux-based routers – Ars Technica
— Corey Nachreiner, CISSP (@SecAdept)
Leave a Reply