Tag Archives: newsletter

BF-SIRT Newsletter 2017-42

This weeks top stories is that a serious flaw in the WPA2 protocol lets attackers intercept network traffic (KRACK), and a factorization flaw in TPM chips makes attacks on RSA private keys feasible (ROCA). You can also read about how … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-42

BF-SIRT Newsletter 2017-41

This weeks top stories is that Kaspersky reportedly modified its AV to help Russia Government spy, and in the latest string of AWS S3 bucket embarrassments Accenture left four servers of sensitive data completely unprotected. You can also read about … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-41

BF-SIRT Newsletter 2017-40

This weeks top stories is that Yahoo says all 3 billion accounts was hit by the 2013 hack and Google Security researchers have discovered seven serious vulnerabilities in Dnsmasq. Security researchers have developed a variant of the Rowhammer attack that … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-40

BF-SIRT Newsletter 2017-38

This weeks top stories is that popular software CCleaner made part of a supply chain attack targeting tech giants, and about a massive Viacom breach through Amazon Web Services. There is an Apache bug that leaks contents of server memory, … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-38

BF-SIRT Newsletter 2017-37

This weeks top stories is that Equifax traced the source of its massive hack to a preventable software flaw, and that billions of mobile, desktop and IoT devices are potentially exposed to a Bluetooth based attack. Security researcher Troy Hunt … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-37

BF-SIRT Newsletter 2017-36

This weeks top stories is how a breach at Equifax may impact 143 million Americans. BroadSoft, a huge communication software and service provider just leaked more than 600GB of sensitive files online, through a publicly accessible AWS S3 bucket. Cybercriminals … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-36

BF-SIRT Newsletter 2017-35

This weeks top stories is 465,000 patients need software updates for their hackable pacemakers. Researchers from Akamai, Cloudflare, Flashpoint, Google, Oracle Dyn, RiskIQ, Team Cymru, and other organizations cooperated to combat a botnet comprised primarily of Android devices and designed … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-35

BF-SIRT Newsletter 2017-34

This weeks top stories is how a hacker Thursday afternoon published what he says is the decryption key for Apple iOS’ Secure Enclave Processor (SEP) firmware, but that doesn’t necessarily mean it’s open season on iPhones and iPads worldwide. Researchers … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-34

BF-SIRT Newsletter 2017-33

This weeks top stories is that Maersk Shipping reports $300m loss stemming from NotPetya attack, which hopefully will help decision makers understand that infosec is not pure cost. To follow up that some attackers seem to be searching for softer … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-33

BF-SIRT Newsletter 2017-32

The top stories from this week is that Carbon Black’s Cb Response is accused by DirectDefense to leak sensitive data, CB claim it’s a feature, and how Salesforce fires red team staffers who gave Defcon talk. You can also read … Continue reading

Posted in Basefarm SIRT, IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2017-32