All images scavenged without permission

Patch Tuesday Oct – ? vulnerabilities with 183 unique downloads Internet Explorer Microsoft Edge Microsoft Windows Microsoft Office and Microsoft Office Services and Web Apps Skype for Business and Lync Chakra Core Creators update due Oct 17th Sources: https://portal.msrc.microsoft.com/en-us/security-guidance https://technet.microsoft.com/en-us/security/advisories No longer working http://technet.microsoft.com/en-us/security/bulletin/ms17-may Creators http://money.cnn.com/2017/09/01/technology/gadgets/windows-fall-creators-update/index.html

Holes / Patches Adobe x VMWare Apple APSB17-25 RoboHelp ( 2 CVE) APSB17-28 Flash Player ( 2 CVE) APSB17-30 ColdFusion ( 4 CVE) x VMWare VMSA-2017-0015.2 ( 3 CVE) ESXi, Vcenter, Fusion, Workstation Apple iOS 11 / 11.0.1 / 11.0.2 Safari 11 watchOS 4 / 4.0.1 tvOS 11 Xcodes 9 macOS 10.13 / Suplemental iCloud for Win 7.0 macOS server 5.4 Sources: ## Oracle Patches http://www.oracle.com/technetwork/topics/security/alerts-086861.html ##Adobe Patches https://helpx.adobe.com/security.html https://helpx.adobe.com/security/products/robohelp/apsb17-25.html https://helpx.adobe.com/security/products/flash-player/apsb17-28.html https://helpx.adobe.com/security/products/coldfusion/apsb17-30.html ##Apple patches http://support.apple.com/kb/HT1222 apple broadpwn https://threatpost.com/apple-patches-broadpwn-bug-in-ios-10-3-3/126955/ ##Cisco patches http://tools.cisco.com/security/center/home.x http://tools.cisco.com/security/center/viewAllSearch.x?currentPage=&sortType=d&recordsPerPage=100&searchkey=&filter=43&pageSize=100&pageNo=1 ## VMWare http://www.vmware.com/security/advisories/ https://www.vmware.com/security/advisories/VMSA-2017-0015.html ## Android https://source.android.com/security/bulletin/index.html https://source.android.com/security/bulletin/2017-07-01

Holes / Patches CCleaner vmware guest execution Mac Keychain dump Broadcom wifi bug, ios11/iphone7 Linux elf handling Windows defender bypass Mac EFI updates? netgear foo netscaler auth bypass Sources: CCleaner https://www.helpnetsecurity.com/2017/09/18/hackers-backdoored-ccleaner/ vmware guest execution https://threatpost.com/vmware-patches-bug-that-allows-guest-to-execute-code-on-host/127990/ Mac Keychain dump https://threatpost.com/macos-high-sierra-available-and-vulnerable-to-keychain-attack/128149/ Oracle https://threatpost.com/oracle-patches-apache-struts-reminds-users-to-update-equifax-bug/128151/ Broadcom wifi bug, ios11/iphone7 https://threatpost.com/remote-wi-fi-attack-backdoors-iphone-7/128163/ Linux elf handling https://www.theregister.co.uk/2017/09/28/linux_kernel_vuln/ Linux ELF fix CVE-2017-1000253 http://www.zdnet.com/article/serious-linux-kernel-security-bug-fixed/ Windows defender bypass https://threatpost.com/windows-defender-bypass-tricks-os-into-running-malicious-code/128179/ Mac EFI updates? https://threatpost.com/macs-not-receiving-efi-firmware-security-updates-as-expected/128191/ netgear foo https://threatpost.com/netgear-fixes-50-vulnerabilities-in-routers-switches-nas-devices/128230/ netscaler auth bypass https://support.citrix.com/article/CTX227928

Hacking Southpark games IoT office bug bounty extended Struts confirmed in equifax breach apache optionsbleed IR and camera covert channel mobile trading apps bad ATM hacks on the increase Home automation still sucks Wink and Insteon clear text creds Gun printing no macros here Hacking Sources: Southpark games IoT http://www.businessinsider.com/south-park-premiere-set-off-a-lot-of-alexa-and-google-home-devices-2017-9 office bug bounty extended https://blogs.technet.microsoft.com/msrc/2017/09/15/extending-the-microsoft-office-bounty-program/ Struts confirmed in equifax breach https://threatpost.com/equifax-confirms-march-struts-vulnerability-behind-breach/127975/ apache optionsbleed https://nakedsecurity.sophos.com/2017/09/19/apache-optionsbleed-vulnerability-what-you-need-to-know/ IR and camera covert channel https://threatpost.com/malware-steals-data-from-air-gapped-network-via-security-cameras/128038/ mobile trading apps bad its like we forgot how to code https://threatpost.com/mobile-stock-trading-app-providers-unresponsive-to-glaring-vulnerabilities/128144/ ATM hacks on the increase https://www.healthcareinfosecurity.com/atm-hackers-double-down-on-remote-malware-attacks-a-10338 Home automation still sucks Wink and Insteon clear text creds https://securityledger.com/2017/09/home-automation-systems-vulnerable-to-hacking/ Gun printing https://www.wired.com/story/ghost-gun-machine-makes-untraceable-handguns no macros here https://sensepost.com/blog/2017/macro-less-code-exec-in-msword/

Corp HP patches ink again Uber to fix location sharing ubers iphone Azure SGX support Childrens colorado popped Verizon S# bucket SVR Tracking S3 ooopps sonic breach wholefoods popped adobe drops pgp key Equifax sued for cost recovery walgreens approved for rite-aid purchase Sources: HP patches ink again https://gizmodo.com/one-year-after-bricking-third-party-ink-with-update-hp-1809073739 Uber to fix location sharing https://www.eff.org/deeplinks/2017/09/win-privacy-uber-restores-user-control-over-location-sharing ubers iphone http://www.businessinsider.com/uber-iphone-app-secret-access-sensitive-apple-features-2017-10 Azure SGX support https://www.eff.org/deeplinks/2017/09/azure-confidential-computing-heralds-next-generation-encryption-cloud Childrens colorado popped http://www.denverpost.com/2017/09/08/childrens-hospital-colorado-data-hack/ Verizon S# bucket https://threatpost.com/verizon-wireless-internal-credentials-infrastructure-details-exposed-in-amazon-s3-bucket/128108/ SVR Tracking S3 ooopps http://thehackernews.com/2017/09/hacker-track-car.html sonic breach https://krebsonsecurity.com/2017/09/breach-at-sonic-drive-in-may-have-impacted-millions-of-credit-debit-cards/ wholefoods popped http://www.foxbusiness.com/markets/2017/09/28/whole-foods-says-taprooms-restaurants-hacked.html adobe drops pgp key https://publicintelligence.net/ocia-electric-vehicle-charging-stations/ Equifax sued for cost recovery https://www.healthcareinfosecurity.com/credit-union-sues-equifax-over-breach-related-fraud-costs-a-10329 walgreens approved for rite-aid purchase https://risnews.com/walgreens-purchase-nearly-2000-rite-aid-locations-finally-approved Corp

Corp MS gives groove to spotify Cloudflare removed cap and additional charges privacy rights clearing house project Yahoo open sources Vespa aetna, getting rid of passwords Twitter doubles max character length IKEA buys TaskRabbit Google to force HSTS on TLDs Apple code on github Windows phone dead Sources: MS gives groove to spotify https://news.hitb.org/content/microsoft-getting-out-music-biz-moving-groove-subs-spotify Cloudflare removed cap and additional charges https://www.wired.com/story/cloudflare-unmetered-mitigation-ddos-attacks/ privacy rights clearing house project https://www.privacyrights.org/blog/privacy-rights-clearinghouse-and-ucan-launch-pre-recorded-telemarketing-calls-project Yahoo open sources Vespa https://www.wired.com/story/verizon-reveals-the-faded-secrets-of-yahoo-search aetna, getting rid of passwords https://www.healthcareinfosecurity.com/interviews/aetnas-new-approach-to-authentication-i-3713 Twitter doubles max character length http://www.nme.com/news/twitter-expands-character-limit-280-2145049 IKEA buys TaskRabbit https://risnews.com/ikea-acquires-taskrabbit Google to force HSTS on TLDs https://threatpost.com/google-to-enforce-hsts-on-tlds-it-operates/128204/ Apple code on github https://www.neowin.net/news/macos-and-ios-kernel-source-code-is-now-available-on-github Windows phone dead https://arstechnica.com/gadgets/2017/10/windows-phone-is-now-officially-dead-a-sad-tale-of-what-might-have-been/ Corp

Govt .cat / Spain split? patent troll smackdown cell surveillance SEC breach Activist, Credentials, possible jail SEC Cyber Unit Shocker mass monitoring is bad leaked anti-leak training corporations file suite in Dallas DOJ and Encryption (round 2) Sources: .cat / spain split? https://www.eff.org/deeplinks/2017/09/cat-domain-casualty-catalonian-independence-crackdown patent troll smackdown https://www.eff.org/deeplinks/2017/09/appeals-court-limits-ability-patent-trolls-file-suit-far-flung-districts cell survielence https://www.eff.org/deeplinks/2017/09/appeals-court-rules-against-warrantless-cell-site-simulator-surveillance SEC breach https://www.healthcareinfosecurity.com/hackers-may-have-traded-on-stolen-sec-data-a-10327 Activist, Credentials, possible jail https://theintercept.com/2017/09/23/police-schedule-7-uk-rabbani-gchq-passwords/ SEC Cyber Unit https://www.huntonprivacyblog.com/2017/09/27/sec-creates-cyber-unit-to-target-cyber-related-threats/ Shocker mass monitoring is bad https://www.wired.com/story/dhs-social-media-immigrants-green-card leaked anti-leak trainign https://www.wired.com/story/leaked-anti-leak-training-email-department-of-energy corporations file suite in dallas https://theintercept.com/2017/10/06/consumer-protection-arbitration-rule-lawsuit-equifax-wells-fargo/ https://www.consumerfinancemonitor.com/wp-content/uploads/sites/14/2017/09/Complaint-for-Declaratory-and-Injunctive-Relief-Chamber-of-Commerce-v-CF....pdf DOJ and Encryption (round 2) https://arstechnica.com/tech-policy/2017/10/trumps-doj-tries-to-rebrand-weakened-encryption-as-responsible-encryption/ Govt

Papers AI applied to password guessing EV charging stations https://arxiv.org/pdf/1709.00440.pdf EV charging stations https://publicintelligence.net/ocia-electric-vehicle-charging-stations/ smart bulb hacking writeup http://resources.infosecinstitute.com/iot-hacking-hacking-smart-bulb-part-2/ Papers Sources: AI applied to password guessing https://arxiv.org/pdf/1709.00440.pdf EV charging stations https://publicintelligence.net/ocia-electric-vehicle-charging-stations/ smart bulb hacking writeup http://resources.infosecinstitute.com/iot-hacking-hacking-smart-bulb-part-2/

Russian review of ArcSight Bro renaming Russian review of ArcSight Dyson electric car Ghostface bitcoin WTF Sources: https://twitter.com/CyclingHubTV/status/907640663726022656/video/1 Bro renaming https://docs.google.com/forms/d/e/1FAIpQLScJYwEhVswO_MGxBZ0Zgv5G7jL0XYwLEhNWSfakue0yTxoPGA/viewform Russian review of ArcSight https://securitynews.io/2017/10/hpe-arcsight-source-code/ Dyson electric car https://www.wired.com/story/in-building-an-electric-car-dyson-goes-its-own-way/ Ghostface bitcoin https://twitter.com/PigsAndPlans/status/915696702400507904

Tools AWSBucketDump skimmer scanner forensics spypi S3 scanner skimmer scanner forensics Opensource Roundup spypi Risk Management Tools Yuki Chan automated pentest Tools Sources: AWSBucketDump https://www.darknet.org.uk/2017/09/awsbucketdump-aws-s3-security-scanning-tool/ skimmer scanner https://twitter.com/Foone/status/910217984098017281 https://learn.sparkfun.com/tutorials/gas-pump-skimmers forensics http://resources.infosecinstitute.com/category/computerforensics/introduction/free-open-source-tools/ spypi http://spypi.ch/# Random Ris Management Tools https://securityintelligence.com/basic-security-tools-you-cannot-afford-to-miss-in-your-risk-management-program/ Yuki Chan - automated pentest https://www.darknet.org.uk/2017/10/yuki-chan-automated-penetration-testing-tool/

Future Cons BSidesDFW – 4 Nov NTXISSACSC5 – 10-11 Nov Sources: https://www.concise-courses.com/security/conferences-of-2017/ http://www.securitybsides.com/w/page/12194156/FrontPage

Where DHA @Dallas_Hackers TX2600 @dallas2600 The Lab.MS @TheLab_ms ( 1st Wednesday / Family Karaoke, Dallas ) TX2600 @dallas2600 ( 1st Fri / Wild Turkey 35&WalnutHill, Dallas ) The Lab.MS @TheLab_ms ( 2nd Saturday + random events / TheLab.ms, Plano ) ISSA Fort Worth @ISSAFortWorth ( 2nd Tuesday / location varies ) ?? Fort Worth Crypto Party ?? ( 2nd Tuesday ? / The Maker Spot, N. Richland Hills ) Hack Ft Worth @Hack_FtW ( 3rd-ish Tuesday / Buffalo West, Fort Worth) OWASP Dallas @OWASPDallas ( 3rd Tuesday / location varies ) Crypto Party DFW @CryptoPartyDFW ( 3rd Thursday / TheLab.ms, Plano ) North Texas Cyber Security Group @ntxcsg ( Last Thursday, Jakes, Frisco ) Dallas MakerSpace @dallasmakers ( Random events / Carrollton ) Sources: https://www.google.com/calendar/embed?src=c4ervam9s3ep79dtdjd1k9kgbk%40group.calendar.google.com&ctz=America/Chicago Where

Sources: All images scavenged without permission