BF-SIRT Newsletter 2016-47

The top stories from this week consist of stories such as Facebook ‘quietly developing censorship tool’ for China, and US Navy warns 134,000 sailors of data breach after HPE laptop is compromised. You can also read a story about Evolution of the SSL and TLS protocols, and It’s time: Patch Network Time Protocol before it loses track of time.

Top 5 Security links
The limitations of Android N Encryption
It’s the final countdown for SHA-1 SSL certificates
Great. Now Even Your Headphones Can Spy on You
Israeli Firm Can Steal Phone Data in Seconds
Evaluating Risks to Identity and Access When Moving to the Cloud

Defining digitalization: digital development, not digital transformation

Digital transformation is a term widely used and disputed in the media, at events and on forums. It is a strategic imperative – “we finally have to…” – that in reality is still progressing at a slow rate and unguided, is being approached half-heartedly or is “still asleep”. That is the unanimous opinion. The reason for this non-development is often a foggy or simply non-existent understanding of the necessities and opportunities involved. What is digital transformation? And what is it not? Why is just talking about it not enough? Here is clarification and a definition.

BF-SIRT Newsletter 2016-45

The top stories from this week consist of stories about things like Blacknurse and how a DDoS Attack Takes Down Central Heating System Amidst Winter In Finland. You can also read a story about how Bangladesh Bank Recovers $15 Million from a Philippines Casino, and that China Passes Cybersecurity Law to Tighten its Control over the Internet.

Top 5 Security links
Blacknurse
DDoS Attack Takes Down Central Heating System Amidst Winter In Finland
Over 300,000 Android Devices Hacked Using Chrome Browser Vulnerability
Wi-Fi can be turned into IMSI Catcher to Track Cell Phone Users Everywhere
Hundreds Of Operations Canceled After Malware Hacks Hospitals Systems

Top 5 Business Intelligence links
SWIFT Hack: Bangladesh Bank Recovers $15 Million from a Philippines Casino
Facebook Buys Leaked Passwords From Black Market, But Do You Know Why?
China Passes Cybersecurity Law to Tighten its Control over the Internet
Web Of Trust’ Browser Add-On Caught Selling Users’ Data — Uninstall It Now
Did the Mirai Botnet Really Take Liberia Offline?

BF-SIRT Newsletter 2016-44

The top stories from this week consist of stories such as Google warning about an actively exploited 0-day vulnerability in Windows. You can also read a story about
Critical Flaws in MySQL Give Hackers Root Access to Server, and Google joins Mozilla and Apple in banning WoSign and StartCom as CAs.

Top 5 Security links

Someone is using Miray botnet to shut down internet for Liberia
Hackers hustle to hassle un-patched Joomla! sites
Remotely Exploitable Bugs in Memcached Identified and Patched
Firefox kills the Battery Status ‘super cookie’
Tokens of terror spark ‘major security update’ at GitLab

Top 5 Business Intelligence links
Is password security at just $1/month too expensive for most?
Why trust is becoming increasingly difficult to achieve in today’s digital era
New DMCA Exemptions Give White Hats License To Hack Cars, Medical Devices
Teen UK hacker pleads guilty after earning $385k from DDoS tool
The 4 Biggest Mistakes Businesses Make Trying To Secure Endpoints