PREVIOUS GNEWS

Mar – 13 Patches – 6 Critical – 30 CVEs MS Cumulative Security Update for IE MS Cumulative Security Update for Microsoft Edge MS Microsoft Graphics Component MS Microsoft XML Core Services MS NET Framework MS Microsoft Office MS Windows OLE MS Windows Hyper-V MS Secondary Logon MS SAM and LSAD Remote Protocols MS CSRSS MS HTTP.sys MS Adobe Flash Player Patch Tuesday

Oracle –Due April 19th Adobe –APSA16-01 Flash Player ( 1 CVE) –APSB16-10 Flash Player ( 24 CVE) –APSB16-11 Creative Cloud ( 1 CVE) –APSB16-12 RoboHelp ( 1 CVE) Apple –iOS 9.3 / ( 38 CVE) –watchOS 2.2 ( 34 CVE) –tvOS 9.3 ( 23 CVE) –Xcode 7.3 ( 3 CVE) –OSX Security Update ( 59 CVE) –Safari 9.1 ( 11 CVE) –OSX Server 5.1 ( 4 CVE) –iBooks Author ( 1 CVE) VMWare –VMSA ( 2 CVE) –XSS in vRealize Automation x Holes / Patches

Adobe 0-day –CVE –CVE Bad Java Patch –Sandbox bypass OpenSSH –Info Disclosure Symantec Endpoint Protection (SEP) –SEPM, XSS and SQL Injection –SysPlant.sys driver, code execution Apple iMessage –Crypto weakness (patched in 9.3) Apple System Integrity Protection (SIP) bypass Badlock warning is bad –Preannounce vs responsible disclosure vs full disclosure –Ms Holes / Patches

ios worm FB account take over Finger printing based on mouse usage prime patterns DDR4 suseptible to rowhammer surveilence as art usb thief - portable app sidecar ransomware going fileless Security Cams Pre-Infected with malware Windows 10 “Blue Screen” now with QR Codes Hacking

EFA Launched eero - wifi mesh router landesk to buy appsense google doubles chromebook bounty uber bug bounties amex 3rd party breach 1800 flowers hacked verizon breached CBS Sports App leaks personal data Wordpress.com HTTPS for all! Corp

3rd party access method Whatsapp is next? CVE backlog Darpa improv lavabit = snowden fbi delay / drop case with apple “One Time” request moves to NY breakdown of intell sharing restrictions HR.2666 Threat to Net Neutrality? Burr Feinstein anti-crypto bill FBI modifies data redaction rules Govt

mimikatz intro imperva cryptowall report imperva web app report Cisco Talos RansomWare Report Papers

hackers misspell foundation

Tools pafish v malware analysis lynis v unix security audit tool nmap 7.11 IIS Crypto - manage ciphers on windows iis AutoNessus - (python nessus api) automate scanner tasks

CanSecWest – Vancouver Mar B-Sides Austin Mar-Apr InfoSec Southwest – Austin 8-10 Apr B-Sides OK – 09 Apr Past Cons

B-Sides Nashville – 16 Apr ThotCon 0x7 – Chicago 5-6 May B-Sides - San Antonio21 May Circle City Con – Indianapolis Jun SANS DFIR Summit – Austin Jun SANS San Antonio – Jul Hope 11 – NYC Jul BlackHat – Vegas 30 Jul – 4 Aug BSidesLV – Vegas 2-3 Aug DefCon 24 – Vegas 4 – 7 Aug SANS Dallas – 8 – 13 Aug OWASP CFP Open – DC Oct Future Cons

DHA ( 1 st Wednesday / Family Karaoke, dallas ) TX2600 ( 1 st Fri / Wild Turkey 35&WalnutHill, dallas ) The Lab.MS ( 2 nd Monday + random events / TheLab.ms, plano ) OWASP Dallas ( 3 rd Tuesday / location varies ) Crypto Party ( 3 rd Thursday / Improving Enterprises, addison ) National Information Security and Assurance Group ( 4 th Thursday, Jakes, Frisco ) Dallas MakerSpace ( Random events / carrollton )

All images scavenged without permission