1. PREVIOUS GNEWS
All images scavenged without permission

2. Patch Tuesday Mar – 18 Patches – 9 Critical – 134 CVEs
MS Cumulative Security Update for Internet Explorer, Remote Code
MS Cumulative Security Update for Microsoft Edge, Remote Code
MS Windows Hyper-V, Remote Code
MS Microsoft Windows PDF Library, Remote Code
MS Microsoft Windows SMB Server, Remote Code
MS Microsoft Uniscribe, Remote Code
MS Microsoft Windows, Remote Code
MS Microsoft Graphics Component, Remote Code
MS Microsoft Office, Remote Code
MS Microsoft Exchange Server, Remote Code
MS Windows IIS, Remote Code
MS Windows Kernel, Privilege Escalation
MS Windows Kernel-Mode Drivers, Privilege Escalation
MS Active Directory Federation Services, Info Disclosure
MS Windows DVD Maker, Info Disclosure
MS Windows DirectShow, Info Disclosure
MS Microsoft XML Core Services, Info Disclosure
MS Adobe Flash Player, Remote Code
Sources:
MS cancels Feb Patches

3. Patch Tuesday Apr – x Patches – x Critical – 11 CVEs
Remote Code – Windows 10, Server 2016
Remote Code – IE, Edge
Remote Code – .NET Framework
Remote Code – Office
Info Disclosure – Silverlight
Info Disclosure – Visual Studio for Mac
Sources:
MS cancels Feb Patches

4. Holes / Patches Oracle Adobe Android VMWare Apple Due 18 Apr 2017
APSB17-07 Flash Player ( 7 CVE)
APSB17-08 Shockwave Player ( 1 CVE)
APSB17-09 Campaign ( 1 CVE)
APSB17-10 Flash Player ( 7 CVE)
APSB17-11 Acrobat and Reader ( 47 CVE)
APSB17-12 Photoshop CC ( 2 CVE)
APSB17-13 Creative Cloud Desktop ( 2 CVE)
Android
( 23 CVE)
( 77 CVE)
VMWare
VMSA ( 3 CVE)
workstation
VMSA ( 1 CVE)
Apache struts
VMSA ( 1 CVE)
Workstation/fusion memory access
VMSA ( 4 CVE)
Esxi, workstation, fusion
Apple
iTunes 12.6 ( 22 CVE)
Pages, Numbers, Keynote ( 1 CVE)
Safari 10.1 ( 44 CVE)
Security Update ( 129 CVE)
iOS 10.3/ ( 89/1 CVE)
WatchOS 3.2 ( 36 CVE)
tvOS 10.2 ( 61 CVE)
MacOS Server 5.3 ( 3 CVE)
iCloud for Windows 6.2 ( 5 CVE)
Music for Android 2.0 ( 1 CVE)
Sources:
## Oracle Patches
##Adobe Patches
##Apple patches
##Cisco patches
## VMWare
## Android

5. Holes / Patches LastPass Vulns Cisco ios telnet Another UAC bypass
iis 0-day
EMET is not dead yet
Sources:
LastPass
Cisco ios telnet
apple patches
ANother UAC bypass
iis 0-day
EMET is not dead yet

6. Hacking WinMac malware extorting apple, pay hackers or wipe iphones?
Switch hack
bigger better faster usbkill
hijacking with local admin
Ubiquiti Networks
domain fronting via tor
Twitter Counter bug
dimnie targets github users
Hacking
Sources:
WinMac malware
extorting apple, pay hackers or wipe iphones?
Switch hack
bigger better faster usbkill
hijacking with local admin
Ubiquiti Networks
domain fronting via tor
Twitter Counter bug
dimnie targets github users

7. Corp hangouts wihtout sms? Intell Security (mcafee) vault7 scanner
payment processors playing role of censor
godaddy buys sucuri
IBM launches commercial blockchain
Intel Optane SSD / Micron to compete
PCI assessor certification
instagram goes mfa
Lowes augmented reality
apple gpu
Sources:
hangouts wihtout sms?
Intell Security (mcafee) vault7 scanner
payment processors playing role of censor
godaddy buys sucuri
IBM launches commercial blockchain
Intel Optane SSD
Micron to compete
PCI assessor certification
instagram goes mfa
Lowes augmented reality
apple gpu
Corp

8. Corp Galaxy S8 face for payments Magneto still having issues
Home Depot settles for 25million
We-Vibe settles for 3.7 million
wishbone popped
Gamestop popped
Sources:
Galaxy S8 face for payments
Magneto still having issues
Home Depot settles for 25million
We-Vibe settles for 3.7 million
wishbone popped
Gamestop popped
Corp

9. Govt Damn millennials Air Force drive exposed to net GDPR
No device larger than a cell phone
Senate votes in favor of content providers
Verizon for the win
Porn goes end to end encrypted
EFF guidance
Twitter not cooperating with border searches
Dallas Emergency system
Sources:
Damn millennials
Air Force drive exposed to net
GDPR
No device larger than a cell phone
senate votes in favor of content providers
Verizon for the win
Porn goes end to edn encrypted
EFF guidance
Twitter not cooperating
Dallas Emergrency system
Govt

10. Papers Rand 0-day report poor demarc adoption Changes in TLS 1.3
poor demarc adoption
Changes in TLS 1.3
Part 1
Part 2
Papers
Sources:
Rand 0-day report
poor demarc adoption
TLS 1.3
Part 1
Part 2

11. WTF bad dad = 1G fine MS to tie OS to chip Got SME?
Kaby/Ryzen + 7/8x = null
Got SME?
S.536 = disclosure and justification of security experience
DRM as web standard
Apple app rejects Metadata 12x
lick it – O-Cast
record and share cunning moves
dildo cam hacked
WTF
Sources:
bad dad
MS to tie OS to chip???
Board must have sec experience
DRM as web standard
Apple app rejections
lick it
dildo cam

12. Tools Raytheon competition CCDC Sources: http://www.darknet.org.uk/
Raytheon competition

13. Past Cons CanSecWest 15-17 Mar Hou.Sec.Con 7.0 23 Mar
BSides OK Mar
SANS PenTest Austin 27 Mar-01 Apr
Women in Cybersecurity 31 Mar-01 Apr
InfoSec Southwest Apr
Past Cons
Sources:
cansecwest pwn2own

14. Circle City Con Indy 9-11 Jun
BSides Nashville 22 Apr
BSides Austin 4-5 May
Thotcon Chicago 4-5 May
HackMiami May
NolaCon May
Circle City Con Indy 9-11 Jun
ANYCon Albany Jun
BlackHat Jul
BSidesLV Jul
DefCon Jul
Future Cons
Sources:

15. Where DHA @Dallas_Hackers TX2600 @dallas2600 The Lab.MS @TheLab_ms
( 1st Wednesday / Family Karaoke, Dallas )
TX2600 @dallas2600
( 1st Fri / Wild Turkey 35&WalnutHill, Dallas )
The Lab.MS @TheLab_ms
( 2nd Saturday + random events / TheLab.ms, Plano )
ISSA Fort Worth @ISSAFortWorth
( 2nd Tuesday / location varies )
Fort Worth Crypto Party
( 2nd Tuesday ? / The Maker Spot, N. Richland Hills )
Hack Ft Worth @Hack_FtW
( 3rd-ish Tuesday / Buffalo West, Fort Worth)
OWASP Dallas @OWASPDallas
( 3rd Tuesday / location varies )
Crypto Party DFW @CryptoPartyDFW
( 3rd Thursday / TheLab.ms, Plano )
North Texas Cyber Security Group @ntxcsg
( Last Thursday, Jakes, Frisco )
Dallas MakerSpace @dallasmakers
( Random events / Carrollton )
Lock Pick DFW @LockPickDFW
( Last Monday/ Sherlocks Arlington )
Sources:
Where

16. Sources: All images scavenged without permission