BF-SIRT Newsletter 2016-39

The top stories from this week consist of stories such as how the World’s largest 1 Tbps DDoS Attack was launched from 152,000 hacked Smart Devices, and that Facebook releases Osquery Security Tool for Windows. You can also read a story about how Avast and AVG become one, and that Marissa Mayer declined to reset Yahoo users’ passwords 2 years ago.

Top 5 Security links
World’s largest 1 Tbps DDoS Attack launched from 152,000 hacked Smart Devices
Facebook releases Osquery Security Tool for Windows
Zerodium Offers $1.5 Million Bounty For iOS Zero-Day Exploits
Multiple Backdoors found in D-Link DWR-932 B LTE Router
Critical DoS Flaw found in OpenSSL — How It Works

Top 5 Business Intelligence links
Avast and AVG become one
Marissa Mayer declined to reset Yahoo users’ passwords 2 years ago
Apple Tracks Who You’re Chatting Using iMessage — and Shares that Data with Police
Mozilla wants woeful WoSign certs off the list
Hacker-Proof Code Confirmed

BF-SIRT Newsletter 2016-38

The top stories from this week consist of stories such as how half a billion Yahoo! email accounts were taken by potential state hackers, and that cisco finds new Zero-Day Exploit linked to NSA Hackers. You can also read a story about how FBI Director James Comey wants you to cover your webcam, and that hackers took Remote Control of Tesla’s Brakes and Door locks from 12 Miles Away.

Top 5 Security links
Half a billion Yahoo! email accounts raided by potential state hackers
Cisco finds new Zero-Day Exploit linked to NSA Hackers
Leaked NSA Hacking Tools Were ‘Mistakenly’ Left By An Agent On A Remote Server
Krebs on Security hit with record sized DDoS
BBQSQL – Blind SQL Injection Framework

Top 5 Business Intelligence links
FBI Director James Comey wants you to cover your webcam
Hackers take Remote Control of Tesla’s Brakes and Door locks from 12 Miles Away
Beware — Someone is dropping Malware-infected USB Sticks into People’s Letterbox
Top 10 ways to secure your mobile phone
Siri opens “smart” lock to let neighbor walk into a locked house

BF-SIRT Newsletter 2016-37

The top stories from this week consist of stories such as Google is moving towards a more secure web, and Here’s how broken today’s web will feel in Chrome’s secure-by-default future. You can also read a story about Someone Is Learning How to Take Down the Internet, and Cybersecurity In The Obama Era.

Top 5 Security links
Bad news: MySQL can dish out root access to cunning miscreants
Hacking the iPhone PIN retry counter
Microsoft Patches Zero Day Flaw Used In Two Massive Malvertising Campaigns
Researcher reports XSS hole in Google France
New Windows Patch Policy At Odds With Acceptable Risk

Top 5 Business Intelligence links
Identity Theft: How To Protect Yourself Or Resolve It
Insider Incidents Cost Companies $4.3 Million Per Year On Average
Panama Papers: Denmark to pay $1.3M-plus for leaked data to probe tax evasion
Ransomware Getting More Targeted, Expensive
Volkswagen launches new cybersecurity firm to tackle car security

BF-SIRT Newsletter 2016-36

The top stories from this week consist of stories such as how the Hacker Who Hacked Official Linux Kernel Website was Arrested in Florida
, and how Last.Fm Hack Leaks 43 Million Account Passwords. You can also read a story about how FBI Director wants ‘adult conversation’ about backdooring encryption, and that 40% of Facebook users click on phishy links.

Top 5 Security links
Hacker Who Hacked Official Linux Kernel Website Arrested in Florida
Last.Fm Hack Leaks 43 Million Account Passwords
98.1 million CLEARTEXT passwords pasted as Rambler.ru rumbled
FBI Arrests Two Hackers Who Hacked US Spy Chief, FBI and CIA Director
Here’s How to Hack Windows/Mac OS X Login Password (When Locked)

Top 5 Business Intelligence links
FBI Director wants ‘adult conversation’ about backdooring encryption
40% of Facebook users click on phishy links. Do you?
Dutch Police Seize Two VPN Servers, But Without Explaining… Why?
Now you can buy a USB stick that destroys anything in its path
“Flash Hijacks” Add New Twist to Muggings

BF-SIRT Newsletter 2016-35

The top stories from this week consist of stories such as The NSA Is Hoarding Vulnerabilities, and Hacker who stole 2.9 million credit card numbers is Russian lawmaker’s son. You can also read a story about How one man could have owned GitHub, and that The Dropbox hack is real.

Top 5 Security links
3 tips for better security and privacy on Snapchat
Adobe Patches Critical Vulnerability in ColdFusion
HPE yawns, stretches, and patches January OpenSSH bug in virtual access products
Mozilla Launches Website Security Testing Tool
OneLogin SecureNotes Breach Exposed Data in Cleartext