BF-SIRT Newsletter 2016-23

The top stories from this week consist of stories such as how the decline in Cyber Attacks against banks is bad for everyone else, and that 100 million credentials from ‘Russia’s Facebook’ go on sale.You can also read a story about the hacking of the Mitsubishi Outlander PHEV hybrid, and that ransomware dominates the threat landscape.
Following up last week’s stories, there is a new report on security vulnerabilities in the PC initialization/update process, and TeamViewer confirms number of abused user accounts is “significant”, but continues to maintain that the compromises are the result of external password breaches.

Top 5 Security links
Facebook Patches Vulnerability in Messenger App
Firefox 47 fixes 13 vulnerabilities, boosts YouTube playback, HTML5 support
Millions Of Systems Worldwide Found Exposed On The Public Internet
RIP ROP: Intel’s cunning plot to kill stack-hopping exploits at CPU level
Windows BITS ‘Notification’ Feature Used to Deliver Malware

Top 5 Business Intelligence links
China pledges tighter privacy as it centralizes personal health data
In 2016, Is There a Safe Way to Transmit Confidential Data and Documents?
Ransomware adopting self-replication
SWIFT threatens to give insecure banks a slap if they don’t shape up
Top 5 Items for Sale on the Dark Web, and What Businesses Can Learn From Them