News for week 32/17
- Will the real security community please stand up
- reflection on Black Hat 2017
threatpost.com/will-the-real-security-community-please-stand-up/127156/ - Chrome Extensions Hacked
- “Plugins are software. The developers were compromised with a phishing attack and as a result many users were impacted. Security professionals need to consider the security posture of their vendors and continue to reassess the security as part of their threat modeling.” – Jake Williams (Editor)
www.sans.org/newsletters/newsbites/xix/61#305 - US-CERT TA17-181A: Petya Ransomware – revised 28 July
- added additional analysis on NotPetya
- useful recommendations and best practices
www.us-cert.gov/ncas/alerts/TA17-181A - Links in phishing-like emails lead to tech support scam
- “Tech support scams continue to evolve, with scammers exploring more ways to reach potential victims…”
blogs.technet.microsoft.com/mmpc/2017/08/07/links-in-phishing-like-emails-lead-to-tech-support-scam/
Have a great women’s day; till next time…