F61B 4059 1ED5 3B39 86FA F164 ECEF 6072 135F B7B7
-
Who’ll benefit from the Regis University cyberattack? The Denver school’s cybersecurity students. [Elizabeth Hernandez, The Denver Post]
-
Ransomware shuts down classes, childcare centers in Flagstaff, Arizona [Colin Wood, Scoop News Group]
- see also: Back to school: With latest attack, ransomware cancels classes in Flagstaff
-
More than 99% of cyberattacks rely on human interaction [Help Net Security]
-
Cyber-security incident at US power grid entity linked to unpatched firewalls [Catalin Cimpanu, Zero Day]
-
MANRS Observatory: Monitoring the State of Internet Routing Security [Andrei Robachevsky, Internet Society]
- find it here: observatory.manrs.org/
-
BMC Vulnerabilities Expose Supermicro Servers to Remote USB-Attacks [Mohit Kumar, Teh Hacker News]
-
Exim TLS Flaw Opens Email Servers to Remote ‘Root’ Code Execution Attacks [Mohit Kumar, Teh Hacker News]
-
Security hole opens a billion Android users to advanced SMS phishing attacks [Help Net Security]
-
Simjacker: a brand new mobile vulnerability exploited by surveillance companies for espionage operation [Andrea Fortuna]
-
Twitter disables SMS-to-tweet feature after its CEO got hacked last week [Catalin Cimpanu, Zero Day]
-
Why 5G requires new approaches to cybersecurity [Tom Wheeler and David Simpson, The Brookings Institution]
-
The Higher Ed Model for Cybersecurity Compliance [Colleen Johnson, EDUCAUSE Review]
-
New HTTP/2 Flaws Expose Unpatched Web Servers to DoS Attacks [Ionut Ilascu, Bleeping Computer]
-
Hackers mount attacks on Webmin servers, Pulse Secure, and Fortinet VPNs [Catalin Cimpanu, Zero Day]
-
Bluetooth vulnerability can be exploited in Key Negotiation of Bluetooth (KNOB) attacks [Jovi Umawing, Malwarebytes Labs]
- see also: knobattack.com/
-
The Difference Between Red, Blue, and Purple Teams [Daniel Miessler]
-
FNB backs down on password decision after backlash [Duncan Mcleod, NewsCentral Media]
-
Is this Crown Sterling press release from another planet? [Josh Bernoff]
-
Employees connect nuclear plant to the internet so they can mine cryptocurrency [Catalin Cimpanu, Zero Day]
-
Cyberattack forces Houston County schools to postpone opening day [Doug Olenick, Haymarket Media]
-
Fraudster Brought Back from Kenya to Face Jail Time for Stealing Almost $750,000 from UCSD through a Spear Phishing Campaign [Alexandra F. Foster, US DOJ]
-
A Campus Culture of Cybersecurity [Julianne Basinger, The Chronicle of Higher Education]
-
Windows Defender Gets Perfect Scores in Antivirus Test [Nathaniel Mott, Tom’s Hardware]
-
Apple halts practice of contractors listening in to users on Siri [Alex Hern, The Guardian]
- see also: Google: More information about our processes to safeguard speech data
-
I Always Feel Like Somebody’s
Watching Listening to Me (click on link to 29 July article) [Jacob Baines, Tenable TechBlog]
-
Reverse RDP Attack Also Enables Guest-to-Host Escape in Microsoft Hyper-V [Mohit Kumar, The Hacker News]
-
Boffins hacked Siemens Simatic S7, most secure controllers in the industry [Pierluigi Paganini, SecurityAffairs]
-
Extended Validation Certificates are (Really, Really) Dead [Troy Hunt]
-
Clever Vanity License Plate Backfires On Man, Winds Up With Tons Of Tickets [Dave Basner, iHeartRadio]
-
Louisiana declares emergency over cyberattacks targeting schools [Benjamin Freed, Scoop News Group]
- see also: Louisiana governor declares state emergency after local ransomware outbreak
- and: Syracuse cyber attack: Experts say schools easy prey for ransomware
-
Ed Dept: Hackers created thousands of fake student profiles [Natalie Schwartz, Industry Dive]
- see also: Ellucian Banner System Vulnerability Update
- and note: “Attackers are utilizing bots to submit fraudulent admissions applications and obtain institution email addresses through admission application portals. Ellucian recommends adding reCAPTCHA capabilities to the admission process to reduce the likelihood of experiencing fraudulent applications for admissions, even if institutions are not currently experiencing this issue.”
-
Student data systems compromised in Hawaii, Tennessee [Ryan Johnston, Scoop News Group]
-
Most City Power IT systems, networks restored following cyber attack [Alex Mitchley, 24.com]
- see also: Ransomware incident leaves some Johannesburg residents without electricity
-
Steps to Safeguard Against Ransomware Attacks [The Cybersecurity and Infrastructure Security Agency (CISA)]
-
A BEAST and a POODLE celebrating SWEET32 [Bojan Zdrnja]
- Overview: “In last couple of years we have witnessed many SSL/TLS vulnerabilities with various acronyms: POODLE, BEAST, BREACH, CRIME, DROWN, FREAK and SWEET32 – to name some. Almost every time, a snazzy logo and a lot of panic around the vulnerability made us believe that this is the end of secure communication on the Internet. However, we are yet to see any real hacks that actually exploited one of the above mentioned vulnerabilities. This presentation will explain how these vulnerabilities work and will comment on their viability for web, mobile and fat client applications. We will try to identify the SSL/TLS vulnerabilities who cried wolf, so we can concentrate on those that pose a serious threat (if such exist, that is).”
- See also: Verifying SSL/TLS configuration
-
Password Managers [Higher Education Information Security Council (HEISC)]
-
Teenage hackers are offered a second chance under European experiment [Jeff Stone, Scoop News Group]
-
The Encryption Debate Is Over – Dead At The Hands Of Facebook [Kalev Leetaru, Forbes Media LLC]
-
How Cyber Weapons Are Changing the Landscape of Modern Warfare [Sue Halpern, The New Yorker]
- see also: U.S. Cyber Command simulated a seaport cyberattack to test digital readiness
-
Monroe College hacked, $2 million in Bitcoin demanded as ransom [Rocco Parascandola (interesting name!) and Thomas Tracy, New York Daily News ]
- see also: Monroe College Hit With Ransomware, $2 Million Demanded – with interesting note that “The United States Conference of Mayors to make a non-binding agreement to not pay ransomware demands going forward”
-
Microsoft Office 365: Banned in German schools over privacy fears [Cathrin Schaer, Zero Day]
- see also: Increasing transparency and customer control over data
- see also: Microsoft Office brings you new privacy controls
-
British Airways faces record £183m fine for data breach [BBC News]
-
HTTP Security Headers – A Complete Guide [Carlie Belmer, Null Sweep]
-
GnuPG 2.2.17 released to mitigate attacks on keyservers [Werner Koch, GnuPG]
- with ref from last week: SKS Keyserver Network Under Attack
-
Samba Project tells us “What’s New” – SMBv1 Disabled by Default [Rob VandenBrink, SANS Internet Storm Center]
-
How to securely erase the data off your iPhone or iPad, Android device, Windows PC, hard drives, SSDs, and flash drives [Adrian Kingsley-Hughes, Zero Day]
-
Adventures building a Self Driving RC Car [Rahul]
- I know, not directly security-related but it’s cool (and we’re allowed to end our list with something a bit off-topic ;))
-
Security Operations Center (SOC) Case Study [Higher Education Information Security Council (HEISC)]
-
Evidence obtained unlawfully from Facebook – Does it infringe the right to privacy? [Brian Kahn Inc Attorneys, Go Legal]
-
Awesome Web Security [@qazbnm456] – Curated list of Web Security materials and resources
-
The Clouds Are Out to Get Me! [John Strand, SANS Pen Test HackFest Summit 2018]
-
Mitigating the Risk of Software Vulnerabilities by Adopting a Secure Software Development Framework [NIST CSRC]
-
How spammers use Google services [Maria Vergelis, Kaspersky Daily]
-
Cryptocurrency startup hacks itself before hacker gets a chance to steal users funds [Catalin Cimpanu, Zero Day]
- Primary advisory: Update Regarding Vulnerability Recently Discovered In Komodo’s Agama Wallet
-
Google open sources Private Join and Compute, a tool for sharing confidential data sets [Natalie Gagliordi, Zero Day]
-
Lessons learned from the Microsoft SOC Part 2b: Career paths and readiness [Mark Simos, Kristina Laidler and John Dellinger; Microsoft Security]
-
Microsoft warns about email spam campaign abusing Office vulnerability [Catalin Cimpanu, Zero Day]
-
TCP SACK PANIC – Kernel vulnerabilities – CVE-2019-11477, CVE-2019-11478 & CVE-2019-11479 [Red Hat]
- CVE-2019-11477
-
The catch-22 that broke the Internet [Brian Barrett, Wired]