BF-SIRT Newsletter 2015-04

Welcome to another edition of the newsletter! This week we cover things such as Cisco’s annual report which goes through how
spammers sneak small botnets under the wire and that companies are not patching security vulnerabilities. We also cover how NSA hacked North Korea with custom malware long before Sony breach and that a story on what helped Sony’s hackers break in.

Oracle also released critical updates for their application suites, and Adobe updated their Flash player to fix a critical vulnerability.

Top 5 Security links
How Was Your Credit Card Stolen?
Root Password Found in Ceragon Microwave Bridges
2014 in infosec: Spammers sneak small botnets under the wire, Java is dull
NSA hacked North Korea with custom malware long before Sony breach
Details on Regin Malware Modules Disclosed

Top 5 Business Intelligence links
Here’s What Helped Sony’s Hackers Break In: Zero-Day Vulnerability
Report: Companies Still Not Patching Security Vulnerabilities
U.S. and U.K. to team up in cyber defense exercises
Holes in Progressive Dongle Could Lead to Car Hacks
SoShabby GoDaddy flings patch at domain hijack hole