security.didici.cc

ISC StormCast for Wednesday, June 23rd, 2021

21 hours ago

Phishing asking recipients not to report abusehttps://isc.sans.edu
/forums/diary/Phishing+as
king+recipients+not+to+re
port+abuse/27556/ PyPi Cryptomining Malwarehttps://blog.sonat
ype.com/sonatype-catches-
new-pypi-cryptomining-mal
ware-via-automated-detect
ion ...

SN 824: Avaddon Ransonomics - Chrome 0-Day, Big Spinrite Update, iOS Wi-Fi Bug, Economics of Ransomware

23 hours ago

Picture of the Week. Another day, another Chrome 0-day. Ransomware perpetrators are increasingly purchasing access. A weird bug in iOS Wi-Fi. An Early Preview of Windows 11. The Security Now! Podcast has found a new purpose... SpinRite. Avad
don Ransonomic ...

Ransomware: What REALLY happens if you pay the crooks?

1 day ago

Free talk! Join us online for as much fun as you can ethically have while talking about ransomware. (And learn some useful stuff too!)

ISC StormCast for Tuesday, June 22nd, 2021

1 day ago

Attack and Defend: Distributed Web Applications (free Webcast)https://www.sans.
org/webcasts/attack-defen
d-modern-distributed-appl
ications-119610 Darkside Impersonatorshttps://www.
helpnetsecurity.com/2021/
06/21/impersonating-darks
ide/ Tesla RAT COVID-19 Va ...

ISC StormCast for Monday, June 21st, 2021

2 days ago

Network Forensics on Azure VMs (Part #2)https://isc.sans.edu/f
orums/diary/Network+Foren
sics+on+Azure+VMs+Part+2/
27538/ Google Open Redirect Being Abusedhttps://isc.sans.ed
u/forums/diary/Open+redir
ects+and+why+Phishers+lov
e+them/27542/ Easy Access to the N ...

Can *YOU* blow a PC speaker using only a Linux kernel driver?

5 days ago

Can you help? There's a hidden meaning here, and it's time to find it!

ISC StormCast for Friday, June 18th, 2021

5 days ago

Network Forensics on Azure VMshttps://isc.sans.edu/f
orums/diary/Network+Foren
sics+on+Azure+VMs+Part+1/
27536/ Fake Ledger Hardware Walletshttps://www.ledger
.com/phishing-campaigns-s
tatus#phishing-campaignsh
ttps://www.reddit.com/r/l
edgerwallet/comments/o154 ...

ISC StormCast for Thursday, June 17th, 2021

6 days ago

June 2021 Forensic Quizhttps://isc.sans.edu/
forums/diary/June+2021+Fo
rensic+Contest/27532/ Thr
oughTek IP Camera SDK Vulnerabilityhttps://www.
nozominetworks.com/blog/n
ew-iot-security-risk-thro
ughtek-p2p-supply-chain-v
ulnerability/ Peleoton Insecure Boot Vu ...

How to hack a bicycle – Peloton Bike+ rooting bug patched

6 days ago

It's a bike, Jim, but not as we know it.

Ep. 148 - Security Awareness Series - Three Degrees of Separation from Neil Fallon with Rockie Brockway

1 week ago

In this episode, Chris Hadnagy and Ryan MacDougall are joined by Rockie Brockway.  
Rockie is currently the Practice Lead for the Office of the CSO for TrustedSec. With over 28 years' experience in information security and business risk, Rockie s ...

Clop ransomware suspects busted in Ukraine, money and motors seized

1 week ago

Victims in South Korea and the USA, suspects busted in Ukraine.

ISC StormCast for Wednesday, June 16th, 2021

1 week ago

Multi Perimeter Device Exploit Mirai Version Hunting For Sonicwall, DLink, Cisco and morehttps://isc.sans.edu/
forums/diary/Multi+Perime
ter+Device+Exploit+Mirai+
Version+Hunting+For+Sonic
wall+DLink+Cisco+and+more
/27528/ Google Open Sourcing Homomorphic Encr ...

SN 823: TLS Confusion Attacks - TikTok Privacy, iOS 14.5 Tracking Permission, Industry-Wide Patch Tuesday

1 week ago

Picture of the week. Being #1 is a mixed blessing. Industry wide patch Tuesday. TikTok Quietly Updated Its Privacy Policy to Collect Users' Biometric Data. iOS 14.5 requires apps to obtain explicit tracking permission. The ANOM sting operation. "Windows 1 ...

The Backup Paradigm Shift: Moving Toward Attack Response Systems

1 week ago

Black Hawk Down I’m guessing a lot of us in the IT and Security space have experienced the gut wrenching feeling of not receiving that ICMP ping reply you were expecting from a production system, be it a firewall, switch, or server. Was there a recen ...

“Face of Anonymous” suspect deported from Mexico to face US hacking charges

1 week ago

After nearly a decade as a US expat dubbed "The Face of Anoynmous", he's back in the US facing cybercrime charges from almost a decade ago.

ISC StormCast for Tuesday, June 15th, 2021

1 week ago

Apple iOS 12.5.4 Security Updatehttps://support.app
le.com/en-us/HT212548 NIS
T.gov DNS Issueshttps://puck.nether
.net/pipermail/outages/20
21-June/013670.html Akkad
ian Provisioning Manager Multiple Vulnerabilitieshttps://ww
w.rapid7.com/blog/post/20
21/06/08/a ...

Ep. 147 - Human Element Series - Becoming Ben Franklin with Joe Navarro

1 week ago

In this episode, Chris Hadnagy and Maxie Reynolds are joined by one of our greatest friends and mentors, Joe Navarro.  After serving as an FBI agent for 25 years, Joe has become a nonverbal and behavioral expert. Since retiring, he has authored 14 book ...

ISC StormCast for Monday, June 14th, 2021

1 week ago

EoL SonicWall SRA 4600 VPN Gateways Exploited in Current Attackshttps://isc.sans.e
du/forums/diary/Sonicwall
+SRA+4600+Targeted+By+an+
Old+Vulnerability/27518/
Older Fortinet Vulnerability Still Exploitedhttps://isc.sans
.edu/forums/diary/Fortine
t+Targeted+fo ...

ALPACA – the wacky TLS security vulnerability with a funky name

1 week ago

Don't panic - this isn't another Heartbleed. But it's a fascinating reminder of why doing things the easy way isn't always the best way.

ISC StormCast for Friday, June 11th, 2021

1 week ago

Are Cookie Banners a Waste of Time or a Complete Waste of Time?https://isc.sans.edu
/forums/diary/Are+Cookie+
Banners+a+Waste+of+Time+o
r+a+Complete+Waste+of+Tim
e/27436/ Citrix Application Delivery Controller Vulnerabilityhttps://supp
ort.citrix.com/article/C ...

ISC StormCast for Thursday, June 10th, 2021

1 week ago

Architecture, Compilers and Black Magichttps://isc.sans.edu
/forums/diary/Architectur
e+compilers+and+black+mag
ic+or+what+else+affects+t
he+ability+of+AVs+to+dete
ct+malicious+files/27510/
ALPACA TLS Attackhttps://alpaca-atta
ck.com/ALPACA.pdf Google Chrome Up ...

Risky Biz Soap Box: Banks to embrace Yubikeys for customers

2 weeks ago

As regular listeners know, the soap box podcasts we publish here at Risky.Biz are wholly sponsored. That means everyone you hear in one of these podcasts, paid to be here. And this edition of Soap Box has become an annual thing – it’s our once-yearly ...

How could the FBI recover BTC from Colonial’s ransomware payment?

2 weeks ago

But Bitcoins are anonymous! However could they get refunded?

ISC StormCast for Wednesday, June 9th, 2021

2 weeks ago

Microsoft Patch Tuesdayhttps://isc.sans.e
du/forums/diary/Microsoft
+June+2021+Patch+Tuesday/
27506/ PuzzleMaker Attacks With Chrome Zero-Day Exploit Chainhttps://securelist.c
om/puzzlemaker-chrome-zer
o-day-exploit-chain/10277
1/ Intel Patcheshttps://www.intel ...

SN 822: Extrinsic Password Managers - Great CyberSecurity Awakening of 2021, NAT vs IPv6, Tavis Ormandy

2 weeks ago

Picture of the week. The Great CyberSecurity Awakening of 2021. Firefox will soon auto-update on Windows even when it's not running. Edge takes its own approach to HTTPS switching. Three new ransomware victims. We believe we know how Colonial Pipeline was ...

Risky Business #627 -- USG claws back Colonial pipeline ransom money

2 weeks ago

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including: US Government claws back Colonial ransom bitcoin. We don’t think the FBI acted alone. Meet an0m, the cute little app for planning crimes that drinks mi ...

ISC StormCast for Tuesday, June 8th, 2021

2 weeks ago

Amazon Sidewalkhttps://isc.sans.
edu/forums/diary/Amazon+S
idewalk+Cutting+Through+t
he+Hype/27502/ Windows Container Malwarehttps://unit42.pal
oaltonetworks.com/silosca
pe/ Darkside Ransom Confiscatedhttps://www.do
cumentcloud.org/documents
/20799023-affidavit- ...

Latvian woman charged with writing malware for the Trickbot Group

2 weeks ago

Looking for contract programming work? You might be surprised at what's on offer out there.

ISC StormCast for Monday, June 7th, 2021

2 weeks ago

Strange Goings on With Port 37https://isc.sans.edu/fo
rums/diary/Strange+goings
+on+with+port+37/27496/ Q
NAP Video Station RCE Vulnerabilityhttps://www.
qnap.com/de-de/security-a
dvisory/qsa-21-21 Updated GitHub Policyhttps://github.blog
/2021-06-04-updates-to ...

How to hack into 5500 accounts… just using “credential stuffing”

2 weeks ago

Passwords - don't just pay them lip service.

ISC StormCast for Friday, June 4th, 2021

2 weeks ago

Script to Test CIS Zoom Benchmark https://github.com/turbot
/steampipe-mod-zoom-compl
iance F5 BIG-IP Edge Client for Windows Vulnerability https://support.f5.com/cs
p/article/K20346072 Fancy Product Designer Wordpress Plugin Vulnerabilityhttps://www.
welives ...

Real or Fake? When Your Fraud Notice Looks Like a Phish

2 weeks ago

So I Received a Phishing Email… I recently received an email indicating my credit card number had potentially been stolen and used for fraud. At this point, I am used to both having my credit card number stolen and receiving messages telling me it’ ...

ISC StormCast for Thursday, June 3rd, 2021

2 weeks ago

Realtek RTL8170C Vulnerabilitieshttps://ww
w.vdoo.com/blog/realtek-w
ifi-vulnerabilities-zero-
day Huawei LTE USB Stick E3372 Vulnerablityhttps://www.t
heregister.com/2021/06/02
/huawei_lte_usb_stick_vul
nerability/ NortonLifeLoc
k Cryptohttps://investor.no
rtonl ...

ISC StormCast for Wednesday, June 2nd, 2021

3 weeks ago

Guildma is now using Finger and Signed Binary Proxy Execution to Evade Defenseshttps://isc.sans.
edu/forums/diary/Guildma+
is+now+using+Finger+and+S
igned+Binary+Proxy+Execut
ion+to+evade+defenses/274
82/ Bypassing Protected Folders Protectionshttps://dl.acm
.o ...

SN 821: Epsilon Red - Chrome 91, Emsisoft's Ransomware Decryption Tool, Revisiting Amazon Sidewalk

3 weeks ago

Photo of the Week. Chrome advances to 91. Emsisoft has created their own ransomware decryption tool. Stepping off the Sidewalk. Just another phishing attack. The Great Encryption Struggle. Hail Mary. Epsilon Red. We invite you to read our show notes at ht ...

Risky Business #626 -- Russian ransomware beef simmers

3 weeks ago

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including: Ransomware attack threatens Australian and US beef supply Talos dubs Russian ransomware crews “privateers” NYTimes writes another bad story More ...

“Have I Been Pwned” breach site partners with… the FBI!

3 weeks ago

If your password gets stolen as part of a data breach, you'll probably be told. But what if your password gets pwned some other way?

ISC StormCast for Tuesday, June 1st, 2021

3 weeks ago

Malicious PowerShell Hosted on script.google.comhttps://
isc.sans.edu/forums/diary
/Malicious+PowerShell+Hos
ted+on+scriptgooglecom/27
468/ Sonicwall Advisoryhttps://www.sonic
wall.com/support/product-
notification/security-adv
isory-on-prem-sonicwall-n
etwork-se ...

ISC StormCast for Friday, May 28th, 2021

3 weeks ago

AV evasion with 64-bit Executableshttps://isc.sa
ns.edu/forums/diary/All+y
our+Base+arenearly+equal+
when+it+comes+to+AV+evasi
on+but+64bit+executables+
are+not/27466/ Unpatches WebKit Vulnerablity in iOS/macOShttps://blog.the
ori.io/research/webkit-ty
pe-confus ...

“Unpatchable” vuln in Apple’s new Mac chip – what you need to know

3 weeks ago

It's all over the news! The bug you can't fix! Fortunately, you don't need to. We explain why.

ISC StormCast for Thursday, May 27th, 2021

3 weeks ago

A Survey of Bluetooth Vulnerabilitieshttps://is
c.sans.edu/forums/diary/A
+Survey+of+Bluetooth+Vuln
erabilities+Trends/27460/
Google Chrome Updatehttps://chromerelea
ses.googleblog.com/2021/0
5/stable-channel-update-f
or-desktop_25.html Attack
s on PDF Certifica ...

S3 Ep34: Apple bugs, scammers busted, and how crooks bypass 2FA [Podcast]

4 weeks ago

Latest episode - listen now. (And please leave us a review if you like what you hear!)

ISC StormCast for Wednesday, May 26th, 2021

4 weeks ago

Uncovering Shenenigans in an IP Address Block via Hurricane Electic's BGP Toolkithttps://isc.sans.e
du/forums/diary/Uncoverin
g+Shenanigans+in+an+IP+Ad
dress+Block+via+Hurricane
+Electrics+BGP+Toolkit/27
456/ VMware Advisoryhttps://www.vmwar
e.com/security/advi ...

SN 820: The Dark Escrow - Firefox Fission, Doom CAPTCHA, Conti and CNA Financial Ransomware

4 weeks ago

Picture of the Week. Firefox finally achieves sustained "Fission". Cont
i ransomware. CNA Financial pays up big. When they say IoT do they mean us? "Mean Time to Inventory" The "Doom" CAPTCHA. The "Helios" screensaver. Closing the Loop. The Dark Escrow. We ...

Risky Business #625 -- Iranians wipe some machines, Israelis kaboom some

4 weeks ago

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including: The latest news on the health system ransomware crisis in Ireland TSA to force pipeline operators to disclose attacks they probably aren’t detecting an ...

A Career in IT: Where Do I Start?

4 weeks ago

It is, by far, the most frequent question I get asked: How do I get started in IT/InfoSec? So many seem interested in the field of computers, system administration, networking, or information security but have no idea where to start, which can be a frustr ...

Apple patches dangerous security holes, one in active use – update now!

4 weeks ago

It's three weeks since last time. Now it's this time, so patch now!

ISC StormCast for Tuesday, May 25th, 2021

4 weeks ago

Apple Patches 0-Dayshttps://www.jamf.co
m/blog/zero-day-tcc-bypas
s-discovered-in-xcsset-ma
lware/https://support.app
le.com/en-us/HT201222 Blu
etooth Vulnerabilitieshttps://kb
.cert.org/vuls/id/799380h
ttps://francozappa.github
.io/about-bias/publicatio
n/antonio ...

Eight suspects busted in raid on “home delivery” scamming operation

4 weeks ago

Some victims of home delivery scams end up with their entire bank accounts drained. Don't get caught out!

Naked Security Live – Jacked and hacked: how safe are tracking tags?

1 month ago

New episode - watch now! (And please tell your friends about our channel.)

ISC StormCast for Monday, May 24th, 2021

1 month ago

Serverless Phishing Campaignhttps://isc.sans.
edu/forums/diary/Serverle
ss+Phishing+Campaign/2744
6/ Locking Kernel32.dll As Anti-Debugging Techniquehttps://isc.sans
.edu/forums/diary/Locking
+Kernel32dll+As+AntiDebug
ging+Technique/27444/ Win
RM Vulnerable to h ...

Risky Biz Feature Podcast: The politics of cybersecurity

1 month ago

In this podcast we’ll be hearing from an Australian politician, Tim Watts. He’s a member of our federal parliament and serves as our shadow minister for communications and cybersecurity. For our overseas listeners, the “shadow” part of his title i ...

ISC StormCast for Friday, May 21st, 2021

1 month ago

New YouTube Video Series: Everything you ever watned to know about DNS and morehttps://isc.sans.edu/
forums/diary/New+YouTube+
Video+Series+Everything+y
ou+ever+wanted+to+know+ab
out+DNS+and+more/27440/ A
nd Ransomware Just Got a Bit Meanerhttps://isc.sans.ed
u ...

S3 Ep33: Eufy camera leak, Afterburner crisis, and AirTags (again) [Podcast]

1 month ago

Latest episode - listen now (and tell your friends)!

ISC StormCast for Thursday, May 20th, 2021

1 month ago

May 2021 Forensic Contest: Answers and Analysishttps://isc.sans.
edu/forums/diary/May+2021
+Forensic+Contest+Answers
+and+Analysis/27430/ CIS Controls V8https://www.cisecurity.
org/controls/v8/ Dell iDRAC 9 Security Updatehttps://www.dell.co
m/support/kbdoc/en ...

Regulator fines COVID-19 tracker for turning contact data into sales leads

1 month ago

Would you like marketing material with your track-and-trace?

ISC StormCast for Wednesday, May 19th, 2021

1 month ago

From RunDLL32 to JavaScript then PowerShellhttps://isc.san
s.edu/forums/diary/From+R
unDLL32+to+JavaScript+the
n+PowerShell/27428/ New Pulse Secure VPN Advisoryhttps://kb.pulses
ecure.net/articles/Pulse_
Security_Advisories/SA448
00/ Android Stalkerware Vulnera ...

SN 819: The WiFi Frag Attacks - DarkSide Follow-Up, DarkTracer, Patch Tuesday, The Frontiers Saga

1 month ago

Picture of the week. DarkSide Follow-Up. Follow The Money. Toshiba Attacked by DarkSide. Ransomware topics off-limits here. "DarkTracer: DarkWeb Criminal Intelligence" Please Leak our Stolen Data! Patch Tuesday Review. A review of the first book of "The F ...

Risky Business #624 -- Ransomware farce continues

1 month ago

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including: The aftermath of the Colonial ransomware attack Biden signs cybersecurity EO DarkSide crew hounded off the Internet. For now. Ransomware campaigns co ...

ISC StormCast for Tuesday, May 18th, 2021

1 month ago

Ransomware Defenseshttps://isc.sans.
edu/forums/diary/Ransomwa
re+Defenses/27420/ AXA Stops Ransomware Paymentshttps://www.insur
ancejournal.com/news/inte
rnational/2021/05/09/6132
55.htm http.sys Proof of Concepthttps://github.com
/0vercl0k/CVE-2021-31166
Goog ...

“Those aren’t my kids!” – Eufy camera owners report video mixups

1 month ago

Hey, that's not my kitchen! Those aren't my kids! And that dreadful wallpaper's certainly not mine!

Ep. 146 - Demand Transparency with a blue shirt with Jason Frank

1 month ago

In this episode, Chris Hadnagy and Ryan MacDougall are joined by Jason Frank.  Jason has an extensive background in helping both government and Fortune 100 organizations, and has served a course instructor for the Black Hat security conference. Jason ...

ISC StormCast for Monday, May 17th, 2021

1 month ago

"Open" Access to Industrial Systems Interfaces is Also Far From Zerohttps://isc.sans.edu/
forums/diary/Open+Access+
to+Industrial+Systems+Int
erface+is+Also+Far+From+Z
ero/27418/ Malicious Rust Macro for VSCodehttps://github.com/
lucky/bad_actor_poc Exim PoC R ...

Crypto-Gram May 15, 2021

1 month ago

In this issue: When AIs Start Hacking Security Vulnerabilities in Cellebrite Ransomware Is Getting Ugly from the May 15, 2021 Crypto-Gram Newsletter by Bruce Schneier read by Dan Henage

Apple AirTag hacked again – free internet with no mobile data plan!

1 month ago

More phun with Apple AirTags! Free internet, no data plan required... but it's s-l-o-o-o-w.

ISC StormCast for Friday, May 14th, 2021

1 month ago

Cross Browser Tracking with Schemefloodhttps://finger
printjs.com/blog/external
-protocol-flooding/ Cisco AnyConnect Secure Mobility Client Patchhttps://tools.cisco.
com/security/center/conte
nt/CiscoSecurityAdvisory/
cisco-sa-anyconnect-ipc-K
fQO9QhK MSBuild A ...

Gamers beware! Crooks take advantage of MSI download outage…

1 month ago

Vendor's site offline? Can't wait for your download? Tempted to go trawling through the underweb to find an "unofficial" version?

ISC StormCast for Thursday, May 13th, 2021

1 month ago

Number of industrial control systems on the internet is lower then in 2020...but still far from zerohttps://isc.sans.edu/
forums/diary/Number+of+in
dustrial+control+systems+
on+the+internet+is+lower+
then+in+2020but+still+far
+from+zero/27412/ Webcast
: Ransomi ...

Tempted by cryptocoins? Fake trading apps get personal…

1 month ago

All that glisters is not gold/Often have you heard that told/Gilded tombs do worms enfold

ISC StormCast for Wednesday, May 12th, 2021

1 month ago

Microsoft Patch Tuesdayhttps://isc.sans.e
du/forums/diary/Microsoft
+May+2021+Patch+Tuesday/2
7408 WiFi Fragmentation Attackshttps://www.fragat
tacks.com

SN 818: News From the Darkside - Exim Email Server, Tor's Exit Nodes, TsuNAME, Project Hail Mary

1 month ago

Picture of the week. TsuNAME - "DNS Configuration Flaw Lets Attackers Take Down DNS Servers" Huh Google? Tor's Exit Nodes. 21 Nails in Exim's coffin. Project Hail Mary: A Novel. Closing the loop. SpinRite update. News from the Darkside. We invite you to r ...

Risky Business #623 -- Ransomware threatens US energy security

1 month ago

On this week’s show Patrick Gray, Adam Boileau and Chris Krebs discuss the week’s security news, including: An analysis of the Colonial pipeline ransomware attack More ransomware news UK and US expose APT29’s preferred exploits (again) Intrus ...

Simple Data Exfiltration Through XSS

1 month ago

During a recent engagement, I found a cross-site scripting (XSS) vulnerability in a legal document management application and created a quick and dirty document exfiltration payload. Unfortunately, this discovery and coding happened on the final day of th ...

Apple AirTag jailbroken already – hacked in rickroll attack

1 month ago

Ooooh, look! A shiny button-like object!

ISC StormCast for Tuesday, May 11th, 2021

1 month ago

Validating IP Addresses: Why Encoding Mattershttps://isc.sans.e
du/forums/diary/Correctly
+Validating+IP+Addresses+
Why+encoding+matters+for+
input+validation/27404/ J
ail Breaking AirTagshttps://twitter.co
m/ghidraninja/status/1391
148503196438529 Malicious Tor ...

Never say never! Warren Buffett caught up in integer overflow error…

1 month ago

640Kbytes of RAM should be enough for anyone...

Ep. 145 - Baking a Human Behavior Cake with Jack Schafer

1 month ago

In this episode, Chris Hadnagy and Maxie Reynolds are joined by industry professional Jack Schafer, PhD.  Dr. Schafer is a psychologist, professor, intelligence consultant, and former FBI Special Agent. Dr. Schafer spent fifteen years conducting co ...

ISC StormCast for Monday, May 10th, 2021

1 month ago

Who is Probing the Internet for Research Purposeshttps://isc.sans.
edu/forums/diary/Who+is+P
robing+the+Internet+for+R
esearch+Purposes/27400/ C
ycle Hunter and tsuNAME DDoS Attackhttps://github.com/
SIDN/CycleHunterhttps://t
suname.io/tech_report.pdf
Foxit Rea ...

Risky Biz Snake Oilers: Google pitches BeyondCorp for Enterprise

1 month ago

As regular listeners would know, Snake OIlers is a wholly sponsored podcast series we do here at Risky Biz HQ where vendors give us money so they can come on and pitch their products to you, our dear, dear listeners. And we have three vendors along today ...

ISC StormCast for Friday, May 7th, 2021

1 month ago

Scans for Exposed Azure Storage Containershttps://isc.san
s.edu/forums/diary/Expose
d+Azure+Storage+Container
s/27396/ Qualcomm MSM Vulnerabilityhttps://rese
arch.checkpoint.com/2021/
security-probe-of-qualcom
m-msm/ Google to Automatically enroll users in 2SFh ...

S3 Ep31: Apple zero-days, Flubot scammers and PHP supply chain bug [Podcast]

1 month ago

Latest episode - listen now! (And please share with your friends.)

Firefox for Android gets critical update to block cookie-stealing hole

1 month ago

This browser update is for everyone, but it's for Android users particularly.

ISC StormCast for Thursday, May 6th, 2021

1 month ago

May 2021 Forensic Contesthttps://isc.sans.e
du/forums/diary/May+2021+
Forensic+Contest/27386/ W
indows Defender Bug Fills Windows 10 Boot Drive with thousands of fileshttps://www.bleeping
computer.com/news/microso
ft/windows-defender-bug-f
ills-windows-10-boot- ...

Dell fixes exploitable holes its own firmware update driver – patch now!

1 month ago

These bugs date back to 2009, and they could give crooks who are already in your network access to sysadmin superpowers.

ISC StormCast for Wednesday, May 5th, 2021

1 month ago

Android Updatehttps://source.andr
oid.com/security/bulletin
/2021-05-01?hl=en Dell Privilege Escalation Vulnerabilityhttps://www.
dell.com/support/kbdoc/en
-us/000186019/dsa-2021-08
8-dell-client-platform-se
curity-update-for-dell-dr
iver-insufficient-access-
con ...

SN 817: The Ransomware Task Force - Scripps Health, REvil Hacks Quanta Computer, Emotet Botnet, QNAP

1 month ago

Picture of the Week. REvil hacks Apple supplier Quanta Computer. World-famous Scripps Health taken down. The Big Emotet Botnet Takedown. Emotet's 4,324,770 eMail addresses. Have I Been Pwned domain-wide notifications. QNAP. Grav
ity NNTP Newsreader updated ...

Risky Business #622 -- GitHub weighs exploit ban

1 month ago

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including: GitHub weighs banning exploits Ransomware galore Belgian government crippled in DDoS attack Intrusion Truth Twitter account suspended More Pulsesec ...

Apple products hit by fourfecta of zero-day exploits – patch now!

1 month ago

Don't delay. Get these updates today.

ISC StormCast for Tuesday, May 4th, 2021

1 month ago

Apple Patches 2 0-Day Flaws in WebKit affecting iOS/MacOS/WatchOShttps://
support.apple.com/en-us/H
T201222 PoC Exploit for CVE-2021-28482 (Microsoft Exchange)https://gist.git
hub.com/testanull/9ebbd68
30f7a501e35e67f2fcaa57bda
https://testbnull.medium.
com/mic ...

Naked Security Live – Beware ‘Flubot’: the home delivery scam with a difference

1 month ago

Here's the latest Naked Security talk - watch now!

ISC StormCast for Monday, May 3rd, 2021

1 month ago

Qiling: A true instrumentable binary emulation frameworkhttps://isc.sans
.edu/forums/diary/Qiling+
A+true+instrumentable+bin
ary+emulation+framework/2
7372/ Python "ipaddress" improper input validationhttps://sick.co
des/sick-2021-014/ EXIF Tool Vulnerabilitie ...

PHP community sidesteps its third supply chain attack in three years

1 month ago

Third time lucky! (The first two times were lucky, too, luckily.)

ISC StormCast for Friday, April 30th, 2021

1 month ago

From Python to .Nethttps://isc.sans.edu/
forums/diary/From+Python+
to+Net/27366/ PHP Composer Vulnerabilityhttps://blog
.sonarsource.com/php-supp
ly-chain-attack-on-compos
er Microsoft Identifies Several Integer Overflow Vulnerablitieshttps://us-
cert.cisa.gov/ ...

PCI Specialist Art “Coop” Cooper Joins TrustedSec Team

1 month ago

When I founded TrustedSec in 2012, I knew exactly the type of person that I wanted to work alongside: talented, passionate about their corner of the security industry, and genuinely interested in helping anyone with the desire to learn more. After near ...

S3 Ep30: AirDrop worries, Linux pests and ransomware truths [Podcast]

1 month ago

Listen now - latest episode - lots of fun but with a serious (and educational!) side.