Previous Gnews All images scavenged without permission

Patch Tuesday May – 69 CVE / 67 KB Articles with 1276 unique downloads Reports of 16 Critical / 56 fixes Internet Explorer Microsoft Edge Microsoft Windows Microsoft Office and Microsoft Office Services and Web Apps ChakraCore Adobe Flash Player .NET Framework Microsoft Exchange Server Windows Host Compute Service Shim DoubleKill IE 0-day?? Force Win10 April Update Win10 GPO Trickery Sources: https://portal.msrc.microsoft.com/en-us/security-guidance https://technet.microsoft.com/en-us/security/advisories No longer working http://technet.microsoft.com/en-us/security/bulletin/ms17-may Doublekill ie 0-day https://nakedsecurity.sophos.com/2018/04/25/mysterious-double-kill-ie-zero-day-allegedly-in-the-wild/ win 10 april update https://venturebeat.com/2018/04/30/how-to-force-windows-10-to-download-the-april-2018-update/ Windows 10 GPO tricks https://decentsecurity.com/customizing-windows-10-user-experience/

Holes / Patches VMWare Oracle Apple Adobe Cisco VMSA-2018-0009 ( 2 CVE ) vRealize Automation VMSA-2018-0010 ( 1 CVE ) Horizon DaaS Apple iOS 11.3.1 ( 4 CVE) Security Update 2018-001 macOS High Sierra ( 3 CVE ) Safari 11.1 ( 2 CVE) Security Update 2018-001 Swift 4.1.1 ( 1 CVE) Trustjacking via iOS WiFi-Sync (RSA) Cisco Webex ( 7 CVE ) Remote execution via flash and others SAML ( 1 CVE ) AnnyConnect, ASA, Firepower Threat Detect Oracle 254 fixes Meltdown/Spectre (3 CVE ) Java (14 CVE ) MySQL (33 CVE ) Sun (14 CVE ) Adobe APSB18-08 Flash Player ( 6 CVE ) APSB18-10 Experience Mgr ( 3 CVE ) APSB18-11 InDesign ( 2 CVE ) APSB18-12 Creative Cloud Desktop Application ( 3 CVE ) APSB18-13 Digital Editions ( 2 CVE ) APSB18-14 Clod Fusion ( 5 CVE ) APSB18-15 PhoneGap Plugin ( 1 CVE ) APSB18-16 Flash Player ( 1 CVE ) APSB 18-18 Connect ( 1 CVE ) Sources: ## Oracle Patches http://www.oracle.com/technetwork/topics/security/alerts-086861.html ##Adobe Patches https://helpx.adobe.com/security.html https://helpx.adobe.com/security/products/flash-player/apsb18-08.html https://helpx.adobe.com/security/products/experience-manager/apsb18-10.html https://helpx.adobe.com/security/products/indesign/apsb18-11.html https://helpx.adobe.com/security/products/creative-cloud/apsb18-12.html https://helpx.adobe.com/security/products/Digital-Editions/apsb18-13.html https://helpx.adobe.com/security/products/coldfusion/apsb18-14.html https://helpx.adobe.com/security/products/phonegap/apsb18-15.html https://helpx.adobe.com/security/products/flash-player/apsb18-16.html https://helpx.adobe.com/security/products/connect/apsb18-18.html ##Apple patches http://support.apple.com/kb/HT1222 ios sync glitch https://threatpost.com/ios-sync-glitch-lets-attackers-control-devices/131281/ ios 11.3.1 https://arstechnica.com/gadgets/2018/04/apple-releases-ios-11-3-1-alongside-security-updates-for-macos-10-13-4/ ##Cisco patches http://tools.cisco.com/security/center/home.x https://tools.cisco.com/security/center/publicationListing.x?product=Cisco&sort=-day_sir&limit=100#~Vulnerabilities webex in meeting attack via flash https://www.theregister.co.uk/2018/04/19/cisco_patch_webex/ Cisco SAML https://news.hitb.org/content/single-single-sign-snafu-threatens-three-cisco-products ## VMWare http://www.vmware.com/security/advisories/ https://www.vmware.com/security/advisories/VMSA-2017-0021.html https://www.vmware.com/security/advisories/VMSA-2018-0001.html https://www.vmware.com/security/advisories/VMSA-2018-0002.html https://www.vmware.com/security/advisories/VMSA-2018-0003.html https://www.vmware.com/security/advisories/VMSA-2018-0004.html ## Android https://source.android.com/security/bulletin/index.html

Hacking total meltdown exploit abbott pace makers outlook ole rtf oh my BSOD USB (requires autoplay) coinsecure loses 3 mil crypto mining now on closed browsers airgapped cyrpto theft big fish, little thermometer Minecraft infection "upatchable" switch hack WD nas leaks files hotel master key evil maid detection (macbook) Apple home wifi VW car hacking lojack backdoor??? Hacking Sources: total meltdown exploit https://www.theregister.co.uk/AMP/2018/04/26/total_meltdown_win7_server_2008_exploit/ https://gist.github.com/xpn/bdb99cee8895bab4b1a0671696570d94 abbott pace makers https://threatpost.com/abbott-addresses-life-threatening-flaw-in-a-half-million-pacemakers/131709/ outlook ole rtf oh my https://www.hackread.com/microsoft-outlook-bug-expose-windows-credentials/ BSOD USB (requires autoplay) https://threatpost.com/usb-sticks-can-trigger-bsod-even-on-a-locked-device/131545/ coinsecure loses 3 mil https://www.hackread.com/someone-stole-3-million-in-bitcoin-from-coinsecure-bitcoin-exchange/ crypto mining now on closed browsers https://www.hackread.com/malware-mine-cryptocurrency-without-open-browser-session/ airgapped cyrpto theft https://arstechnica.com/information-technology/2018/04/new-hacks-siphon-private-cryptocurrency-keys-from-airgapped-wallets/ big fish, little themometer https://www.hackread.com/hackers-casinos-fish-tank-smart-thermometer-hack/ Minecraft infection https://www.hackread.com/50000-minecraft-users-infected-with-hard-drive-wiping-malware/ "upatchable" switch hack https://arstechnica.com/gaming/2018/04/the-unpatchable-exploit-that-makes-every-current-nintendo-switch-hackable/ WD nas leaks files http://threatpost.com/western-digital-my-cloud-ex2-nas-device-leaks-files/131447/ hotel master key https://www.hackread.com/master-key-hack-exploits-flaw-unlock-hotel-rooms/ evil maid detection (macbook) https://www.hackread.com/ex-nsa-staffer-app-notify-evil-maid-attack-macbook/ Apple home wifi https://news.hitb.org/content/apple-struggling-stop-skeleton-key-hack-home-wi-fi VW car hacking https://www.hackread.com/critical-security-flaws-in-popular-car-models/ lojack backdoor??? https://www.hackread.com/anti-theft-software-lojack-hijacked-russian-fancy-bear/

Corp nike buys zodiac inc (analytics) and invertex ltd (imaging) square buys weebly (365 mil) Tmobile buys Sprint (26.5 bil) Global Telco Security Alliance (singapore, japan, span, uae) Cybersecurity Tech Accord (MS and 33 other corp) Bad Mongo exposes cryptocurrency users redbull popped Github exposes passwords twitter dumps creds to internal log SaMD Cambridge redux Cambridge shuts down NSA reports non-use of 0-days Blu settles FB history option developer COCs Sources: nike buys zodiac inc (analytics) and invertex ltd (imaging) https://risnews.com/nike-doubles-down-personalization-its-second-acquisition-month square buys weebly (365 mil) https://www.cnet.com/news/square-to-buy-website-building-company-weebly-for-365m/#ftag=CAD590a51e Tmobile buys Sprint (26.5 bil) https://www.bloomberg.com/news/articles/2018-04-29/sprint-t-mobile-in-26-5-billion-deal-to-take-on-at-t-verizon Global Telco Security Alliance (singapore, japan, span, uae) https://www.healthcareinfosecurity.com/4-telcos-form-cybersecurity-alliance-what-will-impact-be-a-10822 Cybersecurity Tech Accord https://blogs.microsoft.com/on-the-issues/2018/04/17/34-companies-stand-up-for-cybersecurity-with-a-tech-accord/ https://cybertechaccord.org/ Bad Mongo exposes cryptocurrency users https://gizmodo.com/data-breach-exposes-thousands-who-bought-into-a-cryptoc-1825541714 redbull popped https://thehackpost.com/red-bull-hacked.html Github exposes passwords https://www.securityweek.com/github-exposed-passwords-some-users twitter dumps creds to internal log https://threatpost.com/twitter-urges-users-to-change-passwords-due-to-glitch/131693/ SaMD https://www.healthcareinfosecurity.com/fda-unveils-plan-for-software-as-medical-device-review-a-10925 Cambridge redux https://threatpost.com/twitter-sold-data-to-cambridge-analytica-linked-company/131525/ Cambridge shuts down https://www.healthcareinfosecurity.com/besieged-cambridge-analytica-shuts-down-a-10958 https://arstechnica.com/tech-policy/2018/05/cambridge-analytica-shuts-down-after-facebook-user-data-scandal/ NSA reports non-use of 0-days https://www.healthcareinfosecurity.com/blogs/nsa-silence-zero-days-p-2623 Blu settles https://securityledger.com/2018/05/blu-settles-with-ftc-over-unauthorized-transmission-of-personal-customer-data-to-china FB history option https://threatpost.com/facebook-introduces-clear-history-option-amid-data-scandal/131623/ developer COCs http://www.businessinsider.com/programmers-debate-requirements-to-behave-respectfully-ccoc-2018-5 amazon / signal https://threatpost.com/free-speech-advocates-blast-amazon-over-threats-against-signal/131640/ Corp

Govt internetting is not a crime PCI cloud guidelines PCI change looms accessing public data PCI cloud guidelines PCI change looms webstresser.org takedown NIST Updates Critical Infrastructure framework (supplychain) Apple talks to CA autonomous cars GA now looking at hackback bill ThaiCERT seizes hidden cobra server China standard on Personal Info Security More ICE manuals leaked Sources: interneting is not a crime https://www.eff.org/deeplinks/2018/04/dc-court-accessing-public-information-not-computer-crime PCI cloud guidelines https://www.pcisecuritystandards.org/pdfs/Cloud_SIG_Release.pdf PCI change looms https://www.healthcareinfosecurity.com/payments-industry-ready-for-new-encryption-protocols-a-10955 webstresser.org takedown https://www.hackread.com/ddos-for-hire-service-shut-down-domain-seized/ NIST Updates Critical Infrstructure framework (supplychain) https://threatpost.com/nist-updates-cybersecurity-framework-to-tackle-supply-chain-threats-vulnerability-disclosure-and-more/131534/ Apple talks to CA autonomous cars http://appleinsider.com/articles/18/05/01/apple-meets-with-california-dmv-officials-to-discuss-autonomous-vehicles GA now looking at hackback bill https://threatpost.com/hacktivists-tech-giants-protest-georgias-hack-back-bill/131628/ ThaiCERT seizes hidden cobra server https://threatpost.com/thaicert-seizes-hidden-cobra-server-linked-to-ghostsecret-sony-attacks/131498/ China standard on Personal Info Security https://www.huntonprivacyblog.com/2018/05/08/national-standard-personal-information-security-goes-effect-china/ More ICE manuals leaked https://theintercept.com/2018/04/18/ice-hsi-special-agent-training-manuals/ Govt

HITB - how andriod hides updates cyber bully oem patching? HITB - how andriod hides updates gondala control ToS hell WTF Sources: cyber bully http://www.securityorb.com/child-safety-2/10-year-old-cyberbully/ oem patching? https://threatpost.com/dont-trust-android-oem-patching-claims-researcher/131183/ HITB - how andriod hides updates https://news.hitb.org/content/how-android-phones-hide-missed-security-updates-you gondala control https://twitter.com/svblxyz/status/986968644310716417 https://www.hackread.com/hackers-find-vulnerabilities-in-austrian-ski-lift-control-unit/ ToS hell https://www.eff.org/deeplinks/2018/05/why-am-i-getting-all-these-terms-service-update-emails

Past Cons InfoSec Southwest BSides OK RSA - MS Security Graph API RSA - hacking med devices RSA Attendee DB exposed Past Cons Sources: RSA - MS Security Graph API https://www.microsoft.com/en-us/security/intelligence-security-api RSA - hacking med devices https://threatpost.com/researcher-billy-rios-talks-medical-device-security-at-rsa-conference-2018/131276/ https://www.healthcareinfosecurity.com/fda-proposes-action-to-enhance-medical-device-cybersecurity-a-10838 RSA Attendee DB exposed https://twitter.com/svblxyz/status/987771213866065921 https://news.hitb.org/content/rsa-conference-has-leaky-app-again

Future Cons HackMiami 18-20 May 2018 miami $125+ CircleCity 1-3 Jun 2018  indy  $150 ShowMeCon 7-8 Jun St.Charles MO 614Con 14-15 Jun Colombus OH BSidesSATX 16 Jun 2018  san antonio  $??? Shakacon 11-12 Jul Honolulu HOPE 20-22 Jul NYC BlackHat 4-9 Aug Vegas BSidesLV 7-8 Aug Vegas DefCon 9-12 Aug Vegas Future Cons Sources: https://infosec-conferences.com/events-in-2018/ http://www.securitybsides.com/w/page/12194156/FrontPage

Where DHA @Dallas_Hackers TX2600 @dallas2600 The Lab.MS @TheLab_ms ( 1st Wednesday / Family Karaoke, Dallas ) TX2600 @dallas2600 ( 1st Fri / Wild Turkey 35&WalnutHill, Dallas ) The Lab.MS @TheLab_ms ( 2nd Saturday + random events / TheLab.ms, Plano ) ISSA Fort Worth @ISSAFortWorth ( 2nd Tuesday / location varies ) Hack Ft Worth @Hack_FtW ( 3rd-ish Tuesday / Buffalo West, Fort Worth) OWASP Dallas @OWASPDallas ( 3rd Tuesday / location varies ) Crypto Party DFW @CryptoPartyDFW ( 3rd Thursday / TheLab.ms, Plano ) North Texas Cyber Security Group @ntxcsg ( Last Thursday, Jakes, Frisco ) Dallas MakerSpace @dallasmakers ( Random events / Carrollton ) Sources: https://www.google.com/calendar/embed?src=c4ervam9s3ep79dtdjd1k9kgbk%40group.calendar.google.com&ctz=America/Chicago Where

Sources: All images scavenged without permission