PREVIOUS GNEWS All images scavenged without permission

Patch Tuesday Sep 2017 – 79 vulnerabilities with 256 unique downloads Windows 10 and Windows Server 2016 (including Microsoft Edge) / Remote Code Windows 8.1 and Windows Server 2012 R2 / Remote Code Windows Server 2012 / Remote Code Windows RT 8.1 / Remote Code Windows 7 and Windows Server 2008 R2 / Remote Code Windows Server 2008 / Remote Code Microsoft Office-related software / Remote Code Internet Explorer / Remote Code Microsoft SharePoint Server, SharePoint Enterprise Server, and SharePoint Foundation / Remote Code Skype for Business, Microsoft Lync, and Microsoft Live Meeting / Remote Code Microsoft Exchange Server / Info Disclosure .NET Framework / Remote Code Adobe Flash Player / Remote Code .Net bug Kernel bug Sources: https://portal.msrc.microsoft.com/en-us/security-guidance https://technet.microsoft.com/en-us/security/advisories MS Kernel bug https://threatpost.com/microsoft-programming-error-is-behind-dangerous-kernel-bug-researchers-claim/127858/ MS no edge patch https://threatpost.com/microsoft-wont-fix-security-bypass-vulnerability-in-edge/127865/ .net zero day patched https://threatpost.com/microsoft-patches-office-zero-day-vulnerability/127946/ Last Update Mar 2017 https://technet.microsoft.com/en-us/security/bulletins No longer working http://technet.microsoft.com/en-us/security/bulletin/ms17-may

Holes / Patches Oracle Adobe Android Aerohive Siri / Alexa VMWare Due 17 Oct 2017 Adobe APSB17-25 RoboHelp ( 2 CVE) APSB17-28 Flash Player ( 2 CVE) APSB17-30 ColdFusion ( 4 CVE) Android 2017-09-01 ( ? CVE) 2017-09-05 ( ? CVE) Aerohive Hive Manager, Privilege Escalation Siri / Alexa Dolphin attack VMWare VMSA-2017-0014 ( 1 CVE) NSX-V Edge OSPF DoS Apple iTunes 12.7 ( ? CVE) Enclave Firmware Decryption Juniper Routers / Switches Libgd, heap overflow via compressed gd2 data. AT&T U-verse (Arris Modems) Multiple Vulns, SSH creds ARM Chip Sets Multiple Vulns, BootStomp Nvidia (Nexus 9), Sources: ## Oracle Patches http://www.oracle.com/technetwork/topics/security/alerts-086861.html ##Adobe Patches https://helpx.adobe.com/security.html https://helpx.adobe.com/security/products/robohelp/apsb17-25.html https://helpx.adobe.com/security/products/flash-player/apsb17-28.html https://helpx.adobe.com/security/products/coldfusion/apsb17-30.html ##Apple patches http://support.apple.com/kb/HT1222 Apple enclave decrypt? https://threatpost.com/hacker-publishes-ios-secure-enclave-firmware-decryption-key/127524/ ##Cisco patches http://tools.cisco.com/security/center/home.x http://tools.cisco.com/security/center/viewAllSearch.x?currentPage=&sortType=d&recordsPerPage=100&searchkey=&filter=43&pageSize=100&pageNo=1 ## VMWare http://www.vmware.com/security/advisories/ https://www.vmware.com/security/advisories/VMSA-2017-0014.html ## Android https://source.android.com/security/bulletin/index.html https://source.android.com/security/bulletin/2017-06-01 Juniper https://threatpost.com/juniper-issues-security-alert-tied-to-routers-and-switches/127373/ Arris modems, U-vers https://threatpost.com/bugs-in-arris-modems-distributed-by-att-vulnerable-to-trivial-attacks/127753/ bad bootloaders / bootstomp https://threatpost.com/multiple-vulnerabilities-found-in-nvidia-qualcomm-huawei-bootloaders/127833/ Aerohive escalation and cod execution https://github.com/theguly/CVE-2017-14105 siri / alxa / dolphin https://www.fastcodesign.com/90139019/a-simple-design-flaw-makes-it-astoundingly-easy-to-hack-siri-and-alexa

Hacking Weaponized DNA 4K apps that record audio and log row hammer for NAND Secret chips in repair parts Ropemaker, Email manipulation vis CSS 4d quantum encryption tested S3 buckets host malware PoC Code for iOS vuln (patched in May) IME killswitch wireX takedown Traffic shaping to "secure" iot data Hacking Sources: Weaponized DNA https://www.wsj.com/articles/malware-stored-in-synthetic-dna-can-take-over-a-pc-researchers-find-1502337660 4K bad apps https://news.hitb.org/content/researchers-report-4000-apps-secretly-record-audio-and-steal-logs row hammeer for nand https://threatpost.com/rowhammer-attacks-come-to-mlc-nand-flash-memory/127504/ "secret" chips https://arstechnica.com/information-technology/2017/08/a-repair-shop-could-completely-hack-your-phone-and-you-wouldnt-know-it/ ropemaker http://threatpost.com/ropemaker-exploit-allows-for-changing-of-email-post-delivery/127600/ https://www.mimecast.com/globalassets/documents/whitepapers/wp_the_ropemaker_email_exploit.pdf 4d quantum encryption tested http://newatlas.com/4d-quantum-encryption-city-test/51056/ S3 buckets host malware https://threatpost.com/cryptocurrency-mining-malware-hosted-in-amazon-s3-bucket/127643/ PoC Code for iOS vuln https://www.bleepingcomputer.com/news/security/researcher-releases-fully-working-exploit-code-for-ios-kernel-vulnerability/ IME killswitch http://securityaffairs.co/wordpress/62470/hacking/intel-management-engine-kill-switch.html wireX takedown https://www.healthcareinfosecurity.com/collaborative-effort-defangs-wirex-android-botnet-a-10234 Traffic shaping to "secure" iot data https://threatpost.com/researchers-figure-out-how-to-blind-isps-from-smart-home-device-traffic/127715/

Corp PayPal acquires Swift Walmart Scan&Go Verizon location data cloudflare daily stormer Docker for Main Frames LG, Late WannaCry infection Philips DoseWise hardcoded Creds Miami Heat launches mobile only tickets Uber settles FB pays out 100K to sec researcher DJI bug bounty (drones) Sources: PayPal acquires Swift https://www.paypal.com/stories/us/paypal-to-acquire-swift-financial Walmart Scan&Go http://www.chainstoreage.com/article/walmart-deploying-tech-lets-store-shoppers-check-out--their-own http://www.nbcdfw.com/news/local/Walmart-Testing-Shopping-Scan--Go-In-North-Texas-439911813.html Verizon location data https://www.wired.com/story/verizon-privacy-location-data-fourth-amendment cloudflare daily stormer https://www.wired.com/story/cloudflare-daily-stormer Docker for Main Frames http://windowsitpro.com/virtualization/docker-can-now-containerize-legacy-apps-running-mainframes LG, Late WannaCry infection https://www.computing.co.uk/ctg/news/3015875/lg-hit-by-wannacry-ransomware-after-it-staff-fail-to-apply-security-patches Philips DoseWise hardcoded Creds https://www.healthcareinfosecurity.com/philips-to-fix-vulnerabilities-in-web-based-health-app-a-10206 https://hotforsecurity.bitdefender.com/blog/philips-tells-healthcare-clients-to-use-best-practices-until-it-patches-critical-vulnerabilities-in-dosewise-portal-app-18780.html Miami Heat launches mobile only tickets http://www.espn.com/nba/story/_/id/20306283/miami-heat-become-first-nba-team-mobile-only-entry Uber settles https://www.huntonprivacyblog.com/2017/08/21/uber-settles-ftc-data-privacy-security-allegations/ FB pays out 100K to sec researcher https://threatpost.com/facebook-awards-100k-to-researchers-for-credential-spearphishing-detection-method/127559/ DJI bug bounty (drones) https://threatpost.com/dji-launches-drone-bug-bounty-program/127696/ Corp

Corp PayPal launches CC bitcoin.com stops european support Sun is dead Mil Contractor S3 bucket TWC S3 Zombie Cookie, Sue Verizon equifax breach Google to distrust "old" Symantec certs Sources: PayPal launches CC https://techcrunch.com/2017/08/30/paypal-launches-its-first-cash-back-credit-card-to-boost-paypal-usage-in-stores/ bitcoin.com stops european support https://news.bitcoin.com/bitcoin-debit-cards-non-european-residents-visas-new-rules/ Sun is dead https://meshedinsights.com/2017/09/03/oracle-finally-killed-sun/ Mil Contractor s3 https://threatpost.com/military-contractors-vendor-leaks-resumes-in-misconfigured-aws-s3/127803/ TWC s3 https://threatpost.com/four-million-time-warner-cable-records-left-on-misconfigured-aws-s3/127807/ Sue Verizon https://arstechnica.com/tech-policy/2017/09/verizon-customers-can-sue-ad-company-over-zombie-cookies-judges-rule/ equifax breach https://threatpost.com/equifax-says-breach-affects-143-million-americans/127880/ https://blog.savagesec.com/equifax-breached-no-eyebrows-raised-4ac57bf3bb9c https://www.wired.com/story/how-to-protect-yourself-from-that-massive-equifax-breach https://securingthehuman.sans.org/blog/2017/09/08/awareness-officers-what-to-communicate-about-the-equifax-hack/ predictable pins https://www.eff.org/deeplinks/2017/09/stop-sesta-amendments-federal-criminal-sex-trafficking-law-sweep-too-broadly WTH Trend? http://blog.trendmicro.com/equifax-breach-example-good-communications/ https://krebsonsecurity.com/2017/09/equifax-breach-response-turns-dumpster-fire/ Google to distrust "old" Symantec certs https://security.googleblog.com/2017/09/chromes-plan-to-distrust-symantec.html# Corp

Govt Vancouver dispensary DB leak TX Dr medicad fraud Linkedin doesn't like scraping CIA torture settlement Delaware Data Breach Law revised PA bill to invoice activists if arrested DC judge allows search of activist website MalwareTechBlog case exempted from "Speedy Trail Act" Shotspotter goes to the whitehouse / dumped by SATX Russia data privacy law revised First FDA security recall Govt site hosting malware SESTA Sources: Vancouver dispensary DB leak http://vancouversun.com/news/local-news/dan-fumano-vancouver-pot-dispensary-patient-data-breach-highlights-regulatory-haze TX Dr medicad fraud http://www.healthcareinfosecurity.com/texas-physician-gets-35-year-sentence-in-huge-fraud-scheme-a-10189 Linkedin doesn't like scraping https://news.hitb.org/content/court-rejects-linkedin-claim-unauthorized-scraping-hacking CIA torture settlement https://theintercept.com/2017/08/17/cia-torture-settlement-aclu-mitchell-jessen/ Deleware Data Breach Law revised https://www.huntonprivacyblog.com/2017/08/21/delaware-amends-data-breach-notification-law/ PA bill to invoice activists if arrested https://theintercept.com/2017/08/23/new-bill-would-force-arrested-protesters-to-pay-police-overtime-other-fees/ DC judge allows search of activist website https://theintercept.com/2017/08/24/court-trump-protester-data-inauguration-disruptj20/ MalwareTechBlog case exempted from "Speedy Trail Act" https://www.healthcareinfosecurity.com/blogs/case-against-marcus-malwaretech-hutchins-gets-complex-p-2537 Shotspotter goes to the whitehouse dumped by SATX https://arstechnica.com/tech-policy/2017/08/secret-service-conducts-live-test-of-shotspotter-system-at-white-house/ Russia data privacy law revised https://www.huntonprivacyblog.com/2017/08/29/new-data-processing-notice-requirements-take-effect-russia/ First FDA security recall https://www.healthcareinfosecurity.com/fda-first-cyber-recall-for-implantable-device-a-10238 Govt site hosting malware https://threatpost.com/us-government-site-removes-link-to-cerber-ransomware-downloader/127767/ SESTA https://www.eff.org/deeplinks/2017/09/stop-sesta-amendments-federal-criminal-sex-trafficking-law-sweep-too-broadly Govt

Papers Nice SOC summary powershell for vulnerability verification https://www.linkedin.com/pulse/soc-architecture-how-build-run-security-operations-center-harris powershell for vulnerability verification https://www.sans.org/reading-room/whitepapers/leadership/complement-vulnerability-management-program-powershell-37900 NSS Labs Evasion testing https://www.nsslabs.com/index.cfm/blog/analyst-insights/ngfwv7-http-evasion-test-cases-revealed EFF tips for students https://www.eff.org/deeplinks/2017/08/student-privacy-tips-students NIAC Critical Infrastructure Report https://www.dhs.gov/sites/default/files/publications/niac-cyber-study-draft-report-08-15-17-508.pdf https://securityintelligence.com/news/niac-cybersecurity-report-regarding-critical-infrastructure-issued/ FDA Guidance https://www.federalregister.gov/documents/2017/09/06/2017-18815/design-considerations-and-premarket-submission-recommendations-for-interoperable-medical-devices Papers Sources: Nice SOC summary https://www.linkedin.com/pulse/soc-architecture-how-build-run-security-operations-center-harris powershell for verification https://www.sans.org/reading-room/whitepapers/leadership/complement-vulnerability-management-program-powershell-37900 NSS Labs Evasion testing https://www.nsslabs.com/index.cfm/blog/analyst-insights/ngfwv7-http-evasion-test-cases-revealed/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+NssLabs+%28NSS+Labs%29 EFF tips for students https://www.eff.org/deeplinks/2017/08/student-privacy-tips-students NIAC Critical Infrastructure Report https://www.dhs.gov/sites/default/files/publications/niac-cyber-study-draft-report-08-15-17-508.pdf https://securityintelligence.com/news/niac-cybersecurity-report-regarding-critical-infrastructure-issued/ FDA Guidance https://www.federalregister.gov/documents/2017/09/06/2017-18815/design-considerations-and-premarket-submission-recommendations-for-interoperable-medical-devices

WTF Thia activist jailed for posting to FB Crotch Charms “SIM swap” -- why is this a thing in the media BK BitCoin FCC redefine broadband Killer sex robots PI Earrings WTF Sources: Thia jailed for posting to FB https://www.eff.org/deeplinks/2017/08/thai-activist-jailed-crime-sharing-article-facebook Charms http://www.teenvogue.com/story/bikini-bottom-crotch-charms SIM swap -- why is this a thing in the media https://techcrunch.com/2017/08/23/i-was-hacked/?ncid=rss BK BitCoin http://www.bbc.com/news/technology-41082388 FCC redefine broadband https://www.wired.com/story/redefining-broadband-could-slow-rollout-in-rural-areas sex robots https://www.grahamcluley.com/hacked-sex-robots-british-tabloids/ Earrings https://www.technologyreview.com/the-download/608843/earrings-made-of-top-secret-electronics-are-actually-part-of-the-uber-waymo/

Tools babadook powershell backdoor UACMe UAC evasion (as root) Apple password cracker SEMU Malware analysis tool FireEye Flare-On Challange reverse engineering competition FIR - IR ticketing GitMiner Tools Sources: http://www.darknet.org.uk/ http://www.toolswatch.org/ babadook https://github.com/jseidl/Babadook UACMe https://www.darknet.org.uk/2017/08/uacme-defeat-windows-user-account-control-uac/ The tool requires an Admin account with the Windows UAC set to default settings. Apple password cracker https://nakedsecurity.sophos.com/2017/08/21/the-500-gizmo-that-cracks-iphone-passcodes-and-how-to-stop-it SEMU https://theconversation.com/inside-the-fight-against-malware-attacks-81433 https://dl.acm.org/citation.cfm?doid=2689702.2689703 FireEye RE Challange https://www.fireeye.com/blog/threat-research/2017/08/fourth-annual-flare-on-challenge.html FIR - IR ticketing https://www.darknet.org.uk/2017/08/fir-fast-incident-response-cyber-security-incident-management-platform GitMiner https://www.darknet.org.uk/2017/08/gitminer-advanced-tool-mining-github

Future Cons DerbyCon, Louisville 20-24 Sep Rock Stars of Cybersecurity Technologies, Denver 26 Sep CactusCon, Phoenix 29-30 Sep Root 66, OKC 5 oct Hacker Halted, Atlanta 5-10 Oct Secure World Dallas 18-19 Oct LASCON 2017, Austin 24-27 Oct BSidesDFW, Plano 4 Nov NTXISSACSC5, Plano 10 Nov Future Cons Sources: https://www.concise-courses.com/security/conferences-of-2017/ http://www.securitybsides.com/w/page/12194156/FrontPage

Where DHA @Dallas_Hackers TX2600 @dallas2600 The Lab.MS @TheLab_ms ( 1st Wednesday / Family Karaoke, Dallas ) TX2600 @dallas2600 ( 1st Fri / Wild Turkey 35&WalnutHill, Dallas ) The Lab.MS @TheLab_ms ( 2nd Saturday + random events / TheLab.ms, Plano ) ISSA Fort Worth @ISSAFortWorth ( 2nd Tuesday / location varies ) Hack Ft Worth @Hack_FtW ( 3rd-ish Tuesday / Buffalo West, Fort Worth) OWASP Dallas @OWASPDallas ( 3rd Tuesday / location varies ) Crypto Party DFW @CryptoPartyDFW ( 3rd Thursday / TheLab.ms, Plano ) North Texas Cyber Security Group @ntxcsg ( Last Thursday, Jakes, Frisco ) Dallas MakerSpace @dallasmakers ( Random events / Carrollton ) Sources: https://www.google.com/calendar/embed?src=c4ervam9s3ep79dtdjd1k9kgbk%40group.calendar.google.com&ctz=America/Chicago Where

Sources: All images scavenged without permission