PREVIOUS GNEWS All images scavenged without permission

Patch Tuesday Jun 2017 – 96 vulnerabilities with 331 unique dowloads Internet Explorer / Microsoft Edge Microsoft Windows Microsoft Office and Microsoft Office Services and Web Apps Silverlight Skype for Business and Lync Adobe Flash Player Windows 10 and Windows Server 2016 (including Microsoft Edge) / Remote Code Windows 8.1 and Windows Server 2012 R2 / Remote Code Windows Server 2012 / Remote Code Windows RT 8.1 / Remote Code Windows 7 and Windows Server 2008 R2 / Remote Code Windows Server 2008 / Remote Code Microsoft Office, Office Services, Office Web Apps, and other Office-related software / Remote Code Microsoft Silverlight / Remote Code Microsoft Lync and Skype for Business / Remote Code Adobe Flash Player / Remote Code Sources: https://portal.msrc.microsoft.com/en-us/security-guidance https://technet.microsoft.com/en-us/security/advisories MS malware protection engine https://technet.microsoft.com/library/security/4022344 https://bugs.chromium.org/p/project-zero/issues/detail?id=1252&desc=5 MS kills SHA-1 in ie edge https://threatpost.com/microsoft-makes-it-official-cuts-off-sha-1-support-in-ie-edge/125579/ Last Update Mar 2017 https://technet.microsoft.com/en-us/security/bulletins No longer working http://technet.microsoft.com/en-us/security/bulletin/ms17-may

Holes / Patches Oracle Adobe Android VMWare Apple Due 18 Jul 2017 APSB17-17 Flash Player ( 9 CVE) APSB17-18 Shockwave Player ( 1 CVE) APSB17-19 Captivate ( 1 CVE) APSB17-20 Digital Editions( 9 CVE) Android 2017-05-01 ( 20 CVE) 2017-05-05 ( 98 CVE) VMWare VMSA-2017-0009 ( 2 CVE) workstation VMSA-2017-0010 ( 2 CVE) vSphere Data Protection VMSA-2017-0011 ( 1 CVE) Horizon View Client Apple iOS 10.3.2 ( 55 CVE) Security Update 2017-002 ( 44 CVE) watchOS 3.2.2 ( 21 CVE) iTunes 12.6.1 for Windows ( 1 CVE) Safari 10.1.1 ( 27 CVE) iCloud for Windows 6.2.1 ( 1 CVE) tvOS 10.2.1 ( 33 CVE) Sources: ## Oracle Patches http://www.oracle.com/technetwork/topics/security/alerts-086861.html ##Adobe Patches https://helpx.adobe.com/security.html https://helpx.adobe.com/security/products/flash-player/apsb17-17.html https://helpx.adobe.com/security/products/shockwave/apsb17-18.html https://helpx.adobe.com/security/products/captivate/apsb17-19.html https://helpx.adobe.com/security/products/Digital-Editions/apsb17-20.html ##Apple patches http://support.apple.com/kb/HT1222 ##Cisco patches http://tools.cisco.com/security/center/home.x http://tools.cisco.com/security/center/viewAllSearch.x?currentPage=&sortType=d&recordsPerPage=100&searchkey=&filter=43&pageSize=100&pageNo=1 ## VMWare http://www.vmware.com/security/advisories/ https://www.vmware.com/security/advisories/VMSA-2017-0009.html https://www.vmware.com/security/advisories/VMSA-2017-0010.html https://www.vmware.com/security/advisories/VMSA-2017-0011.html ## Android https://source.android.com/security/bulletin/index.html https://source.android.com/security/bulletin/2017-05-01

Holes / Patches HP audio driver with KeyLogger MS bulletin site Sudo 1.86p7 – 1.8.20 w/ SELinux Samba prior to 4.4.x cisco anyconnect prior to 4.4.02034 (windows) 30 fixes in chrome 59 Sources: HP audioo https://threatpost.com/keylogger-found-in-audio-drivers-on-some-hp-machines/125600/ MS bulletin site https://threatpost.com/microsofts-new-security-update-guides-get-mixed-reviews/125607/ sudo https://threatpost.com/patches-available-for-linux-sudo-vulnerability/125985/ samba https://blog.qualys.com/securitylabs/2017/05/26/samba-vulnerability-cve-2017-7494 cisco anyconnect https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170607-anyconnect 11 MS advanced notice 30 chrome fixes https://threatpost.com/google-fixes-30-vulnerabilities-five-high-severity-in-chrome-59/126091/

Hacking WCry / WanaCry evil subtitles indexing azure Jeep thefts Raberry Pis vuln to lunix bug More leaks, cia frameworks shadow brokers going monthly? keybase extension rig EK shutdown ATM now getting abused Hacking Sources: WCry / WanaCry https://www.endgame.com/blog/wcrywanacry-ransomware-technical-analysis MS Patch https://threatpost.com/microsoft-releases-xp-patch-for-wannacry-ransomware/125671/ evil subtitles http://www.newsweek.com/hackers-computer-virus-film-subtitles-check-point-vlc-615323 kodi http://www.express.co.uk/life-style/science-technology/809091/Kodi-Box-Download-Hack-Streaming indexing azure https://twitter.com/mikko/status/869476511497289728 Jeep thefts https://www.washingtonpost.com/news/the-switch/wp/2017/06/01/how-hacked-computer-code-allegedly-helped-biker-gang-steal-150-jeeps/ pis vuln to lunix bug http://www.techrepublic.com/article/raspberry-pi-owners-update-your-pi-to-protect-against-this-linux-trojan/?utm_source=dlvr.it&utm_medium=twitter#ftag=RSS56d97e7 More leaks, cia frameworks https://threatpost.com/wikileaks-reveals-two-cia-malware-frameworks/125701/ shadow brokers going monthly? https://threatpost.com/shadowbrokers-planning-monthly-exploit-data-dump-service/125710/ keybase extension https://threatpost.com/keybase-extension-brings-end-to-end-encrypted-chat-to-twitter-reddit-github/125921/ rig EK shutdown https://threatpost.com/40000-subdomains-tied-to-rig-exploit-kit-shut-down/126072/ ATM now getting abused https://threatpost.com/platinum-apt-first-to-abuse-intel-chip-management-feature/126166/

Corp Chase payment outage. Need for Cobol InterContinental hack bigger than originally reported. da font popped chipotle popped (FW stores affected) kmart popped one login popped hotels.com suspicous activity twitter dropping donottrack? square to replace DC taxi meters OpenVPN audits Sources: Chase payment outage. https://www.americanbanker.com/news/chase-outage-knocks-out-payments-services-for-customers-nationwide Need for Cobol https://thenewstack.io/cobol-everywhere-will-maintain/ InterContinental hack bigger than originally reported. http://thehackernews.com/2017/04/hotel-data-breach.html fedex popped (ransomware) http://www.bbc.com/news/technology-39901382 12t9YDPgwueZ9NyMgw519p7AA8isjr6Mw https://isc.sans.edu/index_cached.html da font popped https://hotforsecurity.bitdefender.com/blog/dafont-com-hacked-entire-database-leaked-online-18066.html chipotle popped FW stores affected https://www.usatoday.com/story/tech/talkingtech/2017/05/26/chipotle-says-malware-hack-stole-customer-payment-info/102213788/ kmart popped https://krebsonsecurity.com/2017/05/credit-card-breach-at-kmart-stores-again/ one login popped https://krebsonsecurity.com/2017/06/onelogin-breach-exposed-ability-to-decrypt-data/ hotels.com suspicous activity http://www.securityorb.com/hack/suspicious-activities-hotels-com-user-accounts/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+Securityorbcom+%28SecurityOrb.com%29 twitter dropping donottrack? https://www.eff.org/deeplinks/2017/05/new-twitter-policy-abandons-longstanding-privacy-pledge https://www.eff.org/deeplinks/2017/05/how-opt-out-twitters-new-privacy-settings square to replace DC taxi meters https://www.bloomberg.com/news/articles/2017-05-17/square-will-replace-meters-in-washington-taxis OpenVPN audits https://threatpost.com/openvpn-audits-yield-mixed-bag/125694/ Corp

Govt Cashless Sweden Cyber Security Executive Order Govt Pay averages 7K less Protecting our Ability To Counter Hacking (PATCH) Act FL Dept of Agreculture and Consumer Services popped - CHL data patent suit must be local NV bans blockchain tax Modernizing Government Technology Act, passes House Apple NSL OCR IR Checklist Sources: Cashless sweden https://www.bloomberg.com/news/articles/2017-05-14/in-cashless-sweden-even-god-now-takes-collection-via-an-app executive order https://www.whitehouse.gov/the-press-office/2017/05/11/presidential-executive-order-strengthening-cybersecurity-federal Govt Pay http://www.esecurityplanet.com/network-security/federal-agencies-pay-cyber-security-personnel-7000-less-than-the-private-sector.html patch act https://www.theregister.co.uk/2017/05/18/senate_introduces_patch_act_to_force_intel_agencies_to_fix_found_exploits/ FL Dept of Agreculture and Consumer Services popped - CHL data http://www.ibtimes.co.uk/massive-data-breach-exposes-over-16000-concealed-weapons-permit-holders-florida-1622952 patent suit must be local https://www.eff.org/deeplinks/2017/05/supreme-court-ends-texas-grip-patent-cases NV bans blockchain tax http://www.coindesk.com/nevada-first-us-state-ban-blockchain-taxes/ govt tech act http://www.healthcareinfosecurity.com/modernizing-government-technology-act-passes-house-a-9928 https://threatpost.com/patch-act-calls-for-vep-review-board/125783/ Apple NSL https://threatpost.com/apple-receives-first-national-security-letter-reports-spike-in-requests-for-data/125856/ OCR checklist http://www.healthcareinfosecurity.com/ocr-issues-cyberattack-response-checklist-a-9982 Govt

Understanding Pacemaker Systems Cybersecurity http://blog.whitescope.io/2017/05/understanding-pacemaker-systems.html Papers Sources: pacemakers http://blog.whitescope.io/2017/05/understanding-pacemaker-systems.html

google auto photo sharing? shrooms are safest take off eh! WTF Sources: google auto phot sharing? https://nakedsecurity.sophos.com/2017/05/19/google-wants-to-share-your-photos-with-your-nearest-and-not-dearest/?utm_source=dlvr.it&utm_medium=twitter shrooms are safest https://www.theguardian.com/society/2017/may/23/study-hallucinogenic-mushrooms-safest-recreational-drug-lsd take off eh! http://www.avclub.com/article/mckenzie-brothers-are-reuniting-eh-256206 https://www.thestar.com/entertainment/2017/06/01/take-off-eh-bob-and-doug-mckenzie-lead-bill-at-star-studded-comedy-fundraiser-in-toronto.html http://www.thatericalper.com/2017/06/01/take-off-eh-featuring-dave-thomas-rick-moranis-bob-and-doug-mckenzie-reunion/

Tools KeychainCracker SITCH maltrail Labryneth nix auditor stingray detector maltrail Traffic analysis Labryneth ctf nix auditor forensics roll-up 22 tools Tools Sources: mac keychain cracker https://twitter.com/macmade/status/867474452254253056 https://github.com/macmade/KeychainCracker sitch / fake phone https://www.buzzfeed.com/loganwilliams/listening-for-those-who-listen http://sitch.io/ maltrail https://github.com/stamparm/maltrail Labryneth https://researchcenter.paloaltonetworks.com/2017/06/unit42-labyrenth-ctf-2017-launch-day-challenge-starts-now/ nix auditor http://www.toolswatch.org/2017/06/nix-auditor-v1-1-0-local-audit-tool/ forensics roll-up http://resources.infosecinstitute.com/computer-forensics-tools http://www.darknet.org.uk/ http://www.toolswatch.org/

Circle City Con Indy 9-11 Jun HackMiami 19-21 May NolaCon 19-21 May Circle City Con Indy 9-11 Jun Past Cons Sources: https://www.concise-courses.com/security/conferences-of-2017/ http://www.securitybsides.com/w/page/12194156/FrontPage cansecwest pwn2own https://news.hitb.org/content/adobe-reader-edge-safari-and-ubuntu-fall-during-first-day-https://threatpost.com/vmware-patches-pwn2own-vm-escape-vulnerabilities/124629/ https://threatpost.com/vm-escape-earns-hackers-105k-at-pwn2own/124397/

Future Cons ANYCon Albany 16-18 Jun BlackHat 22-27 Jul BSidesLV 25-26 Jul DefCon 27-30 Jul Future Cons Sources: https://www.concise-courses.com/security/conferences-of-2017/ http://www.securitybsides.com/w/page/12194156/FrontPage

Where DHA @Dallas_Hackers TX2600 @dallas2600 The Lab.MS @TheLab_ms ( 1st Wednesday / Family Karaoke, Dallas ) TX2600 @dallas2600 ( 1st Fri / Wild Turkey 35&WalnutHill, Dallas ) The Lab.MS @TheLab_ms ( 2nd Saturday + random events / TheLab.ms, Plano ) ISSA Fort Worth @ISSAFortWorth ( 2nd Tuesday / location varies ) Fort Worth Crypto Party ( 2nd Tuesday ? / The Maker Spot, N. Richland Hills ) Hack Ft Worth @Hack_FtW ( 3rd-ish Tuesday / Buffalo West, Fort Worth) OWASP Dallas @OWASPDallas ( 3rd Tuesday / location varies ) Crypto Party DFW @CryptoPartyDFW ( 3rd Thursday / TheLab.ms, Plano ) North Texas Cyber Security Group @ntxcsg ( Last Thursday, Jakes, Frisco ) Dallas MakerSpace @dallasmakers ( Random events / Carrollton ) Lock Pick DFW @LockPickDFW ( Last Monday/ Sherlocks Arlington ) Sources: https://www.google.com/calendar/embed?src=c4ervam9s3ep79dtdjd1k9kgbk%40group.calendar.google.com&ctz=America/Chicago Where

Sources: All images scavenged without permission