All images scavenged without permission
All images scavenged without permission PREVIOUS GNEWS
Patch Tuesday Jun – 9 Patches – 5 Critical – 27 CVEs MS16-095 - Cumulative Security Update for Internet Explorer, Remote Code MS16-096 - Cumulative Security Update for Microsoft Edge, Remote Code MS16-097 - Microsoft Graphics Component, Remote Code MS16-098 - Windows Kernel-Mode Drivers, Privilege Escalation MS16-099 - Microsoft Office, Remote Code MS16-100 - Secure Boot, Security Bypass MS16-101 - Windows Authentication Methods, Privilege Escalation MS16-102 - Windows PDF Library, Remote Code MS16-103 – ActiveSyncProvider, Info Disclosure Sources: http://technet.microsoft.com/en-us/security/bulletin/ms16-aug
Holes / Patches Oracle Adobe Apple VMWare LastPass 0-Day Ubuntu Forum 276 fixes (new all time high) Adobe APSB16-27 Experience Manager ( 4 CVE) Apple El Capitan 10.11.6 and Security update 2016-004 ( 62 CVE) iOS 9.3.3 ( 43 CVE) watchOS 2.2.2 ( 26 CVE) tvOS 9.2.2 ( 37 CVE) Safari 9.1.2 ( 12 CVE) iTunes 12.4.2 for Win ( 15 CVE) iCloud for Win ( 15 CVE) iOS 9.3.4 ( 1 CVE) VMWare VMSA-2016-0010 ( 2 CVE) DLL hijack in Windows VM Tools HTTP Header Injection in vCenter and ESXi LastPass 0-Day Thanks Tavis, 1Password on-deck Ubuntu Forum Password dump Bypass UAC with disckcleanup “New” Win10 settings Free MS ebooks Sources: ## Oracle Patches http://www.oracle.com/technetwork/topics/security/alerts-086861.html https://threatpost.com/oracle-patches-record-276-vulnerabilities-with-july-critical-patch-update/119373/ ##Adobe Patches https://helpx.adobe.com/security.html https://helpx.adobe.com/security/products/experience-manager/apsb16-27.html ##Apple patches http://support.apple.com/kb/HT1222 ##Cisco patches http://tools.cisco.com/security/center/home.x http://tools.cisco.com/security/center/viewAllSearch.x?currentPage=&sortType=d&recordsPerPage=100&searchkey=&filter=43&pageSize=100&pageNo=1 ## VMWare http://www.vmware.com/security/advisories/ https://www.vmware.com/security/advisories/VMSA-2016-0010.html lastpass 0-day https://nakedsecurity.sophos.com/2016/07/27/lastpass-password-manager-zero-day-bug-hits-the-news/ http://www.testimpulse.com/index.php/sec/item/465-lastpass-suffers-zero-day-accounts-vulnerable ubuntu forum password dump https://threatpost.com/two-million-passwords-breached-in-ubuntu-hack/119335/ Bypass UAC with disckcleanup https://enigma0x3.net/2016/07/22/bypassing-uac-on-windows-10-using-disk-cleanup/ new win10 settings http://www.darkreading.com/vulnerabilities---threats/locking-down-windows-10-6-new-features/d/d-id/1326301?_mc=RSS_DR_EDT MS ebooks https://gallery.technet.microsoft.com/scriptcenter/Free-eBooks-186de318
Hacking reg key for office based persistence flaw in asn1 protocol for mobile NEW GSMA SMS auth method (based on phone number?!) detecting hidden services New ransomware decryption protal more wireless input device sniffing hacking OSRAM paypal love google drive love malware and stego spynote leaked Unholy PAC https exploit HEIST https semi side channel (blackhat) Disable chip flag on mag stripe (blackhat) Canbus on 18wheelers (Usnix) Hacking Sources: reg key for office based persistence http://researchcenter.paloaltonetworks.com/2016/07/unit42-technical-walkthrough-office-test-persistence-method-used-in-recent-sofacy-attacks/ flaw in asn1 protocol for mobile http://arstechnica.com/security/2016/07/software-flaw-puts-mobile-phones-and-networks-at-risk-of-complete-takeover/ NEW GSMA SMS auth method (based on phone number?!) http://timesofindia.indiatimes.com/city/delhi/GSMA-unveils-solution-for-online-authentication-via-mobile-nos/articleshow/53288452.cms detecting hidden services https://threatpost.com/upcoming-tor-design-battles-hidden-services-snooping/119462/ New ransomware decryption protal https://www.nomoreransom.org more wireless input device sniffing https://threatpost.com/keysniffer-vulnerability-opens-wireless-keyboards-to-snooping/119461/ hacking OSRAM http://www.darkreading.com/cloud/security-holes-exposed-in-smart-lighting-system/d/d-id/1326385 paypal love https://www.proofpoint.com/us/threat-insight/post/threat-actors-using-legitimate-paypal-accounts-to-distribute-chthonic-banking-trojan google drive love http://researchcenter.paloaltonetworks.com/2016/07/unit-42-attack-delivers-9002-trojan-through-google-drive malware and stego https://www.proofpoint.com/us/threat-insight/post/massive-adgholas-malvertising-campaigns-use-steganography-and-file-whitelisting-to-hide-in-plain-sight spynote leaked http://researchcenter.paloaltonetworks.com/2016/07/unit42-spynote-android-trojan-builder-leaked unholy pac https exploit http://news.hitb.org/content/new-attack-cripples-https-crypto-works-macs-windows-and-linux https semi side channel http://arstechnica.com/security/2016/08/new-attack-steals-ssns-e-mail-addresses-and-more-from-https-pages/ Disable chip flag on mag stripe http://www.pymnts.com/news/retail/2016/new-emv-security-flaw-found/ Canbus on 18wheelers http://news.hitb.org/content/hackers-hijack-big-rig-truck’s-accelerator-and-brakes
Corp bit9 buys confer unilever buys dollar shave club Verizon buys Yahoo oracle buys NetSuite wallmart courts jetblue cici's pizza breach shapeways hacked well fargo mobile wallet oculus backlog cleared google drops oculus competitor MS overseas data access Sources: bit9 buys confer http://www.securityweek.com/carbon-black-acquires-next-gen-av-firm-confer unilever buys dollar shave club http://risnews.edgl.com/retail-news/Dollar-Shave-Club-Brings-in-the-Dollars106200 Verizon buys Yahoo http://www.reuters.com/article/us-yahoo-m-a-verizon-idUSKCN1040U9 oracle buys NetSuite http://risnews.edgl.com/retail-news/Oracle-to-Buy-NetSuite-for-$9-3B106246 wallmart courts jetblue http://risnews.edgl.com/news/Walmart-Reportedly-in-Talks-to-Buy-Jet-com106311 cici's pizza breach http://krebsonsecurity.com/2016/07/cicis-pizza-card-breach-at-130-locations/ shapeways hacked http://news.hitb.org/content/3d-printing-website-shapeways-gets-hacked well fargo mobile wallet http://www.bizjournals.com/charlotte/news/2016/07/19/wells-fargo-officially-launches-mobile-wallet-for.html oculus backlog cleared http://news.hitb.org/content/oculus-finally-clears-backlog-rift-pre-orders-four-months-later google drops oculus competitor http://news.hitb.org/content/google-scraps-plans-standalone-vr-headset-take-oculus-rift-report MS overseas data access https://theintercept.com/2016/07/14/microsoft-wins-major-privacy-victory-for-data-held-overseas/ Corp
Corp automotive best practices doc google to opensource omnitone yahoo forced to explain deletion Google HSTS Palo MindMeld threat intel sharing vm kaspersky bug bounty Apple bug bounty Sources: automotive best practices doc http://www.darkreading.com/vulnerabilities---threats/auto-industry-isac-releases-best-practices-for-connected-vehicle-cybersecurity/d/d-id/1326347 google to opensource omnitone http://news.hitb.org/content/google-open-sources-omnitone-library-decoding-spatial-audio-web yahoo forced to explain deletion https://threatpost.com/yahoo-ordered-to-explain-data-gathering-procedures-in-deleted-email-case/119499/ Google HSTS https://threatpost.com/google-domain-enables-hsts-protection/119597/ Palo MindMeld threat intel sharing vm https://github.com/PaloAltoNetworks/minemeld kaspersky bug bounty https://threatpost.com/kaspersky-lab-launches-bug-bounty-program/119586/ Apple bug bounty https://threatpost.com/apple-launches-bug-bounty-with-maximum-200000-reward/119683/ Corp
Govt password sharing NOT cfaa worthy pelosi backs tpp opposition more tsa master keys (hope) NIST says no to sms 2FA obama response directive Sources: password sharing NOT cfaa worthy https://www.eff.org/deeplinks/2016/07/ninth-circuit-panel-backs-away-dangerous-password-sharing-decision-creates-even pelosi backs tpp opposition https://www.eff.org/deeplinks/2016/07/success-leader-pelosi-stands-users-oppose-tpp more tsa master keys (hope) http://news.hitb.org/content/hackers-create-safe-skies-tsa-master-key-scratch-release-designs NIST says no to sms 2FA http://news.hitb.org/content/nist-prepares-ban-sms-based-two-factor-authentication obama response directive http://www.darkreading.com/attacks-breaches/obama-issues-federal-government-policy-for-cyberattack-response/d/d-id/1326398 Govt
x Papers Sources:
WTF Dell Quad Screen 43” Monitor China to lift ban on QR for payments Sources: dell monitor http://www.pcworld.com/article/3074246/displays/dells-4-screen-multimonitor-setup-looks-like-one-enormous-43-inch-display.html China to adopt qr code payments http://www.qrcodepress.com/qr-code-payments-get-one-step-closer-china/8532404/
Tools Palo Alto CTF http://www.labyrenth.com/ mudge to rate all software BitCluster (hope) https://www.bit-cluster.com/ Car Hacking Tools (hope) CANtact can-utils ChipWhisper CANiverse (new) can definitions (think googledorks kinda) ICsim - github/zombiecraig github/linklayer github/opengarages Tools Sources: Palo ALto CTF http://researchcenter.paloaltonetworks.com/2016/07/unit42-announcing-the-labyrenth-capture-the-flag-ctf-challenge/ http://researchcenter.paloaltonetworks.com/2016/08/labyrenth-capture-the-flag-ctf-first-set-of-winners-announced/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+PaloAltoNetworks+%28Palo+Alto+Networks+Research+Center%29 mudge to rate all softwares http://www.reuters.com/article/us-usa-cyber-ratings-idUSKCN10D2EO BitCluster (hope David Décary-Hétu, Mathieu Lavoie) Car Hacking Tools (hope Craig Smith, Eric Evenchick) 2nd can bus allows car start on bit replay CANtact can-utils ChipWhisper CANiverse (new) can definitions (think googledorks kinda) ICsim - github/zombiecraig github/linklayer github/opengarages
Future Cons SANS Dallas – 8 – 13 Aug OWASP CFP Open – DC 11-14 Oct IANS Chicago Information Security Forum –13-14 Sep CornCon – Davenport Iowa 17 Sep SaintCon – Provo Utah 11-14 Oct Root 66 / InnoTech OKC - 1 Nov BSidesDFW 2016 – 5 Nov Future Cons Sources: https://www.concise-courses.com/security/conferences-of-2016/ http://www.securitybsides.com/w/page/12194156/FrontPage
North Texas Cyber Security Group DHA ( 1st Wednesday / Family Karaoke, dallas ) TX2600 ( 1st Fri / Wild Turkey 35&WalnutHill, dallas ) The Lab.MS ( 2nd Monday + random events / TheLab.ms, plano ) OWASP Dallas ( 3rd Tuesday / location varies ) Crypto Party ( 3rd Thursday / Improving Enterprises, addison ) North Texas Cyber Security Group ( 4th Thursday, Jakes, Frisco ) Dallas MakerSpace ( Random events / carrollton ) Hack FtW ( 3rd Thursday / ?? West 7th ?? ) Sources: https://calendar.google.com/calendar/embed?src=OW1vaTQxMjl1OXBhOWk3NTc4ZmVrN2dtMWtAZ3JvdXAuY2FsZW5kYXIuZ29vZ2xlLmNvbQ
Sources: All images scavenged without permission