BF-SIRT Newsletter 2017-38

This weeks top stories is that popular software CCleaner made part of a supply chain attack targeting tech giants, and about a massive Viacom breach through Amazon Web Services. There is an Apache bug that leaks contents of server memory, … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-38

BF-SIRT Newsletter 2017-37

This weeks top stories is that Equifax traced the source of its massive hack to a preventable software flaw, and that billions of mobile, desktop and IoT devices are potentially exposed to a Bluetooth based attack. Security researcher Troy Hunt … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-37

BF-SIRT Newsletter 2017-36

This weeks top stories is how a breach at Equifax may impact 143 million Americans. BroadSoft, a huge communication software and service provider just leaked more than 600GB of sensitive files online, through a publicly accessible AWS S3 bucket. Cybercriminals … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-36

BF-SIRT Newsletter 2017-35

This weeks top stories is 465,000 patients need software updates for their hackable pacemakers. Researchers from Akamai, Cloudflare, Flashpoint, Google, Oracle Dyn, RiskIQ, Team Cymru, and other organizations cooperated to combat a botnet comprised primarily of Android devices and designed … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-35

BF-SIRT Newsletter 2017-34

This weeks top stories is how a hacker Thursday afternoon published what he says is the decryption key for Apple iOS’ Secure Enclave Processor (SEP) firmware, but that doesn’t necessarily mean it’s open season on iPhones and iPads worldwide. Researchers … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-34

BF-SIRT Newsletter 2017-33

This weeks top stories is that Maersk Shipping reports $300m loss stemming from NotPetya attack, which hopefully will help decision makers understand that infosec is not pure cost. To follow up that some attackers seem to be searching for softer … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-33

BF-SIRT Newsletter 2017-32

The top stories from this week is that Carbon Black’s Cb Response is accused by DirectDefense to leak sensitive data, CB claim it’s a feature, and how Salesforce fires red team staffers who gave Defcon talk. You can also read … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-32

BF-SIRT Newsletter 2017-31

The top stories from this week is the new SMB flaw, SMBLoris, and that Troy Hunt Releases Password List. A security flaws has been found in 2G modems Used by BMW, Ford, Infiniti, and Nissan Cars, and Netflix Releases DoS … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-31

BF-SIRT Newsletter 2017-30

The top stories from this week is that Adobe Announces End of Flash for 2020 and Microsoft announces Windows Bounty Program. You can also read about JA3, TLS Client fingerprinting for malware detection or how Symantecs sloppy key verification leads … Continue reading

Posted in Uncategorized | Comments Off on BF-SIRT Newsletter 2017-30

BF-SIRT Newsletter 2017-29

The top stories from this week is the Remote Code Execution In Source Games, and how Free Certs Come With a Cost. You can also read about how WSJ Parent Company Dow Jones Exposed Customer Data due to improperly configured … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-29