Download presentation
Presentation is loading. Please wait.
1
PREVIOUS GNEWS All images scavenged without permission
2
Patch Tuesday Feb – 1 Patches – 1 Critical – 13 CVEs
MS Adobe Flash Player, Remote Code Mar – ? Patches – ? Critical – ? CVEs Sources: MS cancels Feb Patches
3
Holes / Patches Oracle Adobe Apple
Due in April Adobe APSB17-04 Flash Player( 13 CVE) APSB17-05 Digital Editions ( 9 CVE) APSB17-06 Campaign ( 2 CVE) Apple Logic Proc X ( 1 CVE) GarageBande ( 1 CVE) MS GDI Library (multi-vuln, gdi32.dll) Nexpose Console (hardcoded java passphrase) VMWare VMSA ( 1 CVE) Horizon DaaS, data validation Android ( 23 CVE) ( 35 CVE) ( 34 CVE) ( 71 CVE) Bind (DNS64 & RPZ) Cisco NetFlow (SCTP packet validation) F5 “TicketBleed” Cloudflare “CloudBleed” Sources: ## Oracle Patches ##Adobe Patches ##Apple patches ##Cisco patches ## VMWare Android MS GDI Library Nexpose console Vuln Bind Cisco netflow F5 ticketbleed CloudFlare issue "cloudbleed"
4
Hacking Macs now with macro malware Malicious iframes in Google Play
Dharma keys exposed IoT bug bounty SHA1 collision Hacking Sources: Macs now with macro malware Malicious iframes in Gplay Dharma keys exposed IoT bug bounty SHA1 collision
5
Corp Linux 4.10 Uber CA Cyber Threat Alliance
Bitcoin sets another all time high $1,172.09 sophos buys invincea (anti-malware) mozilla buys Pocket (to make open source) Walmart buys moosejaw (outdoor outfitters) palo buys lightcyber (behavioral) square buys orderahead (online call-ahead) okta acquires stormpath (identity api) ca acquires veracode (app sec) Sources: Linux 4.10 Uber CA Cyber Threat Alliance Bitcoin sets another all time high $1,172.09 sophos buys invincea mozilla buys Pocket (to make open source) Walmart buys moosejaw (outdoor outfitters) palo buys lightcyber square buys OrderAhead okta acquires Stormpath Ca acquires veracode Corp
6
Corp arbys popped coachella popped cloudpets, Bad Teddy
boeing employee breach aptos popped Sources: arbys popped Coachella popped Bad Teddy boeing employee breach aptos popped Corp
7
Govt FCC zero rating investigation halted
FCC suspends ISPs data security rules AZ/TN to enact CRA against privacy protection? H.R 387 Privacy Act passed, now to the senate OR to push for warrants for border searches FBI guide on “spot the terrorist” DHS drops new NCIRP (response plan) MS transparency case (gags violates 1st amendment) MD to make ransomeware illegal Let's legislate NIST metrics? hack back? DOJ dismisses PlayPen case Sources: FCC zero rating investigation shelved ISPs and privacy CRA against privacy protection???? H.R 387 Privacy Act Warrent for border searches FBI questions DHS drops new NCIRP MS transparency case MD to make ransomeware illegal Let's legislate NIST metrics ? hack back? DOJ dismisses PlayPen case Govt
8
Sources: Random
9
Papers PCI council MFA guidance Expose all the things
Expose all the things OSX for forensics TOR Browser artifacts in win10 Papers Sources: PCI council MFA guidance Expose all the things OSX for forensics TOR Browser artifacts in win10
10
Dominos Wedding Registry
Phone as ATM WTF Sources: Dominos Weeding Registry Phone as ATM
11
Tools IMF Netflix Stethoscope Best of 2016 E2EMail ReBreakCaptcha
ctf Netflix Stethoscope user device information Best of 2016 top 10 list E2 chrome extension for pgp ReBreakCaptcha Captcha bypass HackerOne CE bug bounty platform Vault 7 leaked cia tool Tools Sources: IMF (ctf) Netflix Stethoscope Best of 2016 E2 ReBreakCaptcha HackerOne CE Vault 7
12
Future Cons CanSecWest 15-17 Mar Hou.Sec.Con 7.0 23 Mar
BSides OK Mar SANS PenTest Austin 27 Mar-01 Apr Women in Cybersecurity 31 Mar-01 Apr InfoSec Southwest Apr BSides Nashville 22 Apr BSides Austin 4-5 May Circle City Con Indy 9-11 Jun Future Cons Sources:
13
ISSA Fort Worth @ISSAFortWorth
DHA @Dallas_Hackers ( 1st Wednesday / Family Karaoke, Dallas ) TX2600 @dallas2600 ( 1st Fri / Wild Turkey 35&WalnutHill, Dallas ) The Lab.MS @TheLab_ms ( 2nd Saturday + random events / TheLab.ms, Plano ) ISSA Fort Worth @ISSAFortWorth ( 2nd Tuesday / location varies ) Fort Worth Crypto Party ( 2nd Tuesday ? / The Maker Spot, N. Richland Hills ) Hack Ft Worth @Hack_FtW ( 3rd-ish Tuesday / Buffalo West, Fort Worth) OWASP Dallas @OWASPDallas ( 3rd Tuesday / location varies ) Crypto Party DFW @CryptoPartyDFW ( 3rd Thursday / TheLab.ms, Plano ) North Texas Cyber Security Group @ntxcsg ( Last Thursday, Jakes, Frisco ) Dallas MakerSpace @dallasmakers ( Random events / Carrollton ) Lock Pick DFW @LockPickDFW ( Last Monday/ Sherlocks Arlington ) Sources:
14
Sources: All images scavenged without permission
Similar presentations
