WatchGuard Security Week in Review: Episode 28

MS-CHAPv2 Hacked, Dropbox Breached, and Routers Rooted

Last week’s video highlighted the presentations I saw at  Blackhat and DEF CON this year. However, that was just a tiny glimpse into all the interesting security talks given at these popular conferences. This week, I share a few more conference highlights, including talks about problems with the authentication protocol used for PPTP VPNs, and some vulnerabilities in routers from a Chinese manufacturer.

I also cover the regular security news from the week, including an advisory about some unpatched Exchange vulnerabilities, news of a Dropbox breach, and a story about how one French company seems to be trolling Anonymous. While some of the stories are just fun and interesting, others have significant implications on your network security. If you use PPTP VPNs or WPA2 Enterprise wireless authentication, be sure to watch the video below, and learn how to avoid future attacks.

If you want to read more details about any of these stories, check out the Reference section below. Thanks for watching.

(Episode Runtime: 9:04)

Direct YouTube Link: http://www.youtube.com/watch?v=Ayf-DmOwO28

Episode References:

— Corey Nachreiner, CISSP (@SecAdept)

About Corey Nachreiner

Corey Nachreiner has been with WatchGuard since 1999 and has since written more than a thousand concise security alerts and easily-understood educational articles for WatchGuard users. His security training videos have generated hundreds of letters of praise from thankful customers and accumulated more than 100,000 views on YouTube and Google Video. A Certified Information Systems Security Professional (CISSP), Corey speaks internationally and is often quoted by other online sources, including C|NET, eWeek, and Slashdot. Corey enjoys "modding" any technical gizmo he can get his hands on, and considers himself a hacker in the old sense of the word.

Trackbacks/Pingbacks

  1. Expect a Microsoft and Adobe Patch Bonanza Next Tuesday | WatchGuard Security Center - August 9, 2012

    […] during last week’s WatchGuard Security Week in Review episode I mentioned an unpatched vulnerability in Microsoft Exchange, related to its use of Oracle’s […]

  2. Exchange Update Corrects Oracle Outside In Vulnerabilities | WatchGuard Security Center - August 14, 2012

    […] released a security advisory warning their customers about it (we highlighted this advisory in WatchGuard Security Week in Review a few weeks ago). Though Microsoft’s advisory provided a workaround for the issue, it […]

  3. Four Updates Repair Office and Server Software Vulnerabilities | WatchGuard Security Center - October 9, 2012

    […] Search Server improves the searchability of your SharePoint infrastructure. In previous alerts and videos, we warned you that Microsoft Exchange leveraged Oracle’s Outside In technology to parse […]

  4. Four Updates Repair Office and Server Software Vulnerabilities « microreksa - October 9, 2012

    […] Search Server improves the searchability of your SharePoint infrastructure. In previous alerts and videos, we warned you that Microsoft Exchange leveraged Oracle’s Outside In technology to parse […]

  5. Exchange Update Corrects Oracle Outside In Vulnerabilities - Arlington, Fort Worth, Dallas | Marjen Technology Group - October 5, 2015

    […] released a security advisory warning their customers about it (we highlighted this advisory in WatchGuard Security Week in Review a few weeks ago). Though Microsoft’s advisory provided a workaround for the issue, it didn’t […]

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: