BF-SIRT Newsletter 2016-22

The top stories from this week consist of stories such as how preloaded OEM software update tools is riddled with security flaws, and that TeamViewers users are experiencing unauthorized remote control.
You can also read a story about an alleged 0-day Windows exploit for sale at $90,000, and that DDOS prices are plunging.

Top 5 Security links
KeePass Password Safe update check vulnerable to MITM, wont fix
Google pays $65k to shutter 23 Chrome bugs
427 million MySpace passwords leaked
65 million Tumblr passwords leaked
Mobile malware uses API and legitimate, open source projects to bypass Android security

Top 5 Business Intelligence links
93% of all phishing emails are now ransomware
50 bank heist hackers arrested in Russia
Data thieves are increasingly resorting to intimidation and extortion
Ransomware campaign managers make $90k annually
Corporates can learn from criminals and spies – OPSEC