WatchGuard Security Center

Patches, APT Gangs, and Sony Wikileaks- WSWiR Episode 148

April 17, 2015 by Corey Nachreiner 0 Comments

Want to know what went on this week in the InfoSec world? Well then, check out my weekly security news recap video. This week I cover a ton of software security patches, news of China’s DDoS and man-in-the-middle tool, and the latest drama in the Sony breach saga. Press play to learn more, and enjoy your weekend.

(Episode Runtime: 13:25)

Direct YouTube Link: https://www.youtube.com/watch?v=uBeOUz40tws

EPISODE REFERENCES:

Monday: China’s Great Cannon – Daily Security Byte EP.65
- Citizen Lab researchers uncover China’s Great Cannon – CitizenLab
- Ars Technica on the Great Cannon – Ars Technica
- Motherboard covers China’s Great Cannon – MotherBoard
Tuesday: Patches, Patches Everywhere- Daily Security Byte EP.66
- Consolidated alert covering Microsoft’s April Patch Day – WatchGuard Blog
- Adobe’s Patch Day
  - Flash security bulletin – Adobe
  - ColdFusion security bulletin – Adobe
  - Flex security bulletin – Adobe
- Oracle’s Critical Patch Update (CPU) for April – Oracle
- Google fixes dozens of Chrome vulnerabilities – ThreatPost
Wednesday: APT Spy vs. Spy – Daily Security Byte EP.67
- Kaspersky’s report on Naikon vs Hellsing – Securelist
- Article on the rival APT gangs – Ars Technica
Thursday: Wikileaks Spread Sony Dirt – Daily Security Byte EP.68
- Wikileaks creates searchable database of stolen Sony files – The Seattle Times
- Sony condemns Wikileaks for leak – Reuters
- Sony breach investigators interviewed on 60 minutes – TechTarget
Friday: Match.com InfoSec Fail – Daily Security Byte EP.69
- Reporter demonstrates clear text login for Match.com – Ars Technica
- Twitter users tips Ars reporter to the issue – Twitter
- Not sure how long the issue has gone on – Twitter
- Netflix to default to HTTPS – Ars Technica

EXTRAS:

Security researcher yanked from a plane by FBI after making a hacking joke – Network World
- CNN’s article on the incident – CNN
Oracle Quarterly Patch Day; 98 flaws fixed – Oracle
Decade long Chinese cyber espionage campaign (APT 30( [PDF] – FireEye
Cylance finds an new SMB weakness – Reuters
Schneier really things IoT security is a disaster – Network World
Web app attacks, PoS malware, and cyber espionage lead the threat landscape – Computer World
Five out of six companies targeted by cyber attacks – Computer Weekly
Voting machines are hackable again (no surprise) – The Guardian
The latest airplanes are hackable story – Reuters
90% of security events are user based – Computer World
Punkey: New PoS malware – Betanews
0day exploits sold on the Dark Web (old news) – Wired
Google not paying back a customer for cyber fraud – The Register
Google moving ads to HTTPS too – TechCrunch
Evasive new banking malware – PC Advisor
Sounds like CSI:Cyber is still bad – Gizmodo
Kaspersky can decrypt CoinVault ransomware – Extremetech
MineCraft DoS vulnerability – Ubergizmo
DEA buying suspect off-the-shelf malware – Gizmodo
Simda botnet takedown! – Ars Technica
White House pushing for crypto backdoor – TechDirt
Small Banks targeted by cyber attackers – Third Certainty
Verizon says mobile threats are overblown – Engadget

— Corey Nachreiner, CISSP (@SecAdept)

Editorial Articles, Week in Review

TV5Monde Pwned, White House Hack, and Snowden – WSWiR Episode 147

April 10, 2015 by Corey Nachreiner 0 Comments

Information security threats and attacks are evolving faster than IT generalists can keep up with. If you’re falling behind in your InfoSec news, and need a quick summary, this weekly video can help.

Topics from today’s episode include, more details on an old White House breach, cyber attackers blacking out a French broadcaster, and a funny yet enlightening Snowden interview. Press play to get informed.

(Episode Runtime: 10:38)

Direct YouTube Link: https://www.youtube.com/watch?v=tLbtqmNIGsQ

EPISODE REFERENCES:

Monday: John Oliver Interviews Snowden – Daily Security Byte EP.60
- John Oliver interviews Edward Snowden on Last Week Tonight – YouTube
- The Intercept comments on this John Oliver episode – The Intercept
- A humorous site based on new context in Olivers interview (adult) – See Link
- The Verge article referring to the site above – The Verge
Tuesday: Fake Government Sites – Daily Security Byte EP.61
- FBI’s PSA advisory on fake government site scam – IC3.gov
- FBI warns of fake government sites stealing your PII – Threat Post
Wednesday: White House Breach Unveiled – Daily Security Byte EP.62
- CNN on how Russian hackers infiltrated the White House – CNN
- White House attack allegedly did results in theft of sensitive data – CNET
- USA today on White House Breach – USA Today
- Article covering how the breach happened – Help Net Security
- Original story on last years White House Breach – The Washington Post
Thursday: April Apple Patches – Daily Security Byte EP.63
- Apple’s April Patch Day Summary
  - April OS X updates – Apple
  - April iOS (8.3) update – Apple
  - April Safari updates – Apple
  - April Apple TV updates – Apple
  - April Xcode updates – Apple
- Latest OS X update fixes over 80 vulnerabilities – ThreatPost
- iOS update fixes Phantom flaw – ThreatPost
- Researcher shares details about OS X root privilege flaw – TrueSecDev
Friday: Hackers Pwn TV – Daily Security Byte EP.64
- Alleged ISIS hackers attack TV5Monde – The Guardian
- TV5Monde taken off the air due to cyber attack – ZDNet
- French network blames ISIS for cyber attack – Ars Technica
- TV5Monde expose passwords on a TV broadcast – Ars Technica

EXTRAS:

How much Infosec truth is in TV? – Engadget
How stolen data travels through the underground – Help Net Security
Vulnerability in Dell software gets it marked as malware – Ars Technica
Bad cyber security legislation could affect InfoSec research – Dark Reading
Great article on “sinkholing” and its risks – Dark Reading
Criminals use fake Steam pages to deliver malware – Kotaku
A Firefox security feature exposed a new vulnerability – Help Net Security
Many web servers still vulnerable to Heartbleed – Business Insider
Latest VMware update fixes old Java flaws – Security Week
CAPTCHAs get more complex – Phys.org
SMiShers and vishers targeting BECU customers – BECU.org
A survey suggests attacks are getting more destructive – NBC News
New IoT devices don’t focus on security (prediction confirmed) – Network World
Persistent XSS flaw in WP Super Cache plugin affects over 1M – Ars Technica
Security researchers are the immune system of the digital age – Scientific America
Article on the FBI’s malware – Gizmodo
FBI warns that ISIL is exploiting WordPress flaws – IT Pro
An article arguing that CSI: Cyber helps recruit new security pros – Cyber Defense Review
Police chief explains why he paid cyber ransom – Ars Technica
Watering hole attacks target specific users (Drive-bu-login) – High Tech Bridge
Google ads succumbs to some malvertisers – Network World
Story on a Russian Hacktivist group against Putin – The Guardian
No NSA Congressional oversight because they lack clearance – The Intercept
AlienSpy delivers Citadel (just another downloader) – Threat Post
Android scareware leverages fear of malicious installers – Help Net Security
Websense’s 2015 threat report is sobering – Websense
US government says yes to HTTPS only – EFF
Beebone malware morphed 19x a day – BBC
Details on Beebone botnet takedown – Help Net Security
Apple actually talks about removing Adware from Macs – Apple
No surprise; people still don’t read EULAs – F-Secure
InfoSec Europe’s annual threat survey results – InfoSec Europe
AT&T to pay $25M fine after employee steals 300K SSNs – The Next Web
More frequent flier accounts hacked (Lufthansa) – Reuters
DARPA unveils tech to search for crime on the “Dark Web” – Forbes

— Corey Nachreiner, CISSP (@SecAdept)

Editorial Articles, Week in Review

April Apple Patches – Daily Security Byte EP.63

April 9, 2015 by Corey Nachreiner 0 Comments

Apple released a bunch of security fixes for their most popular products yesterday. Learn about them quickly in this video, and then go patch your Macs.