InfoSec Feed

Do you like the changes made to this feed? Let me know by using the contact me page. Thanks!

This feed is in UTC time. If you do not see the feed please enable JavaScript.

  • Weekly Update 164
    on November 10, 2019 at 7:20 am

    Presently sponsored by: IVPN. Mass surveillance is a reality. A VPN can't solve this issue, but it's a great first step. Use one that puts principle before profit.It's a late, early in the day, hazy, bush-firey Aussie weekly update with a whole bunch of various bits and pieces of interest from throughout the week. The references below will give you a sense of how much I've jammed into this week so I won't repeat it all here

  • Monitoring the growing sophistication of PKPLUG — Research Saturday
    on November 9, 2019 at 6:00 am

    Researchers from Palo Alto Networks' Unit 42 have been tracking a Chinese cyber espionage group they've named PKPLUG. The group mainly targets victims in the Southeast Asia region. Ryan Olson is VP of threat intelligence at Palo Alto Networks, and he joins us to share their findings. The original research is here: https://unit42.paloaltonetworks.com/pkplug_chinese_cyber_espionage_group_attacking_asia/ The CyberWire's Research Saturday is presented by Juniper Networks. Thanks to our sponsor Enveil, closing the last gap in data security.

  • Friday Squid Blogging: 80-Foot Steel Kraken Deliberately Sunk
    on November 8, 2019 at 10:20 pm

    The headline gives the story: "An 80-Foot Steel Kraken Will Create an Artificial Coral Reef Near the British Virgin Islands." As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Read my blog posting guidelines here....

  • Platinum APT Shines Up New Titanium Backdoor
    on November 8, 2019 at 9:35 pm

    The trojan was observed as the final payload in a sophisticated and complex malware installation code set.

  • Warnings about Emotet and BlueKeep. Crooks test their stolen cards before the holiday shopping season. Amazon fixes Ring. Chinese security gear allegedly sold as made-in-USA.
    on November 8, 2019 at 9:09 pm

    Warnings and advice about Emotet and BlueKeep, both being actively used or exploited in the wild. Two new carding bots are in circulation against e-commerce sites. Expect more of this as criminals test stolen credentials in advance of the holiday shopping season. Amazon fixes a security flaw in its Ring doorbell. A Long Island company is charged with selling bad Chinese security systems as good made-in-USA articles. Michael Sechrist from BAH on preventing supply chain attacks. Guest is Andy Greenberg, senior writer at Wired an author of the book Sandworm — A new era of cyberwar and the hunt for the Kremlin’s most dangerous hackers. For links to all of today's stories check our our CyberWire daily news brief: https://thecyberwire.com/issues/issues2019/November/CyberWire_2019_11_08.html  Support our show

  • Understanding the Ripple Effect: Large Enterprise Data Breaches Threaten Everyone
    on November 8, 2019 at 7:44 pm

    Fallout from giants at the top is one of the largest drivers of cyber-impacts on everyday people and companies.

  • 4 Ways to Soothe a Stressed-Out Incident Response Team
    on November 8, 2019 at 7:00 pm

    IR teams are under tremendous pressure, often working long hours and putting their needs aside amid a security crisis. Their care is just as important as policy and procedure.

  • Bugcrowd Pays Out Over $500K in Bounties in One Week
    on November 8, 2019 at 7:00 pm
  • Art Imitates Life: Lessons from the Final Season of Mr. Robot
    on November 8, 2019 at 6:31 pm

    Unlike Elliot, real-world adversaries don’t have lofty ideals nor do they suffer crises of conscience.

  • Hospital Cyberattacks Linked to Increase in Heart Attack Mortality
    on November 8, 2019 at 5:30 pm

    Breach remediation processes adversely impact timeliness in patient care and outcomes, a new study finds.

  • Pwn2Own Tokyo Roundup: Amazon Echo, Routers, Smart TVs Fall to Hackers
    on November 8, 2019 at 4:09 pm

    The latest edition of the bi-annual hacking contest saw creative exploits in new device categories.

  • Pwn2Own Tokyo Roundup: Amazon Echo, Routers and Smart TVs Fall to Hackers
    on November 8, 2019 at 4:09 pm

    The latest edition of the bi-annual hacking contest saw creative exploits in new device categories.

  • Ring Flaw Underscores Impact of IoT Vulnerabilities
    on November 8, 2019 at 4:00 pm

    A vulnerability in Amazon's Ring doorbell cameras would have allowed a local attacker to gain access to a target's entire wireless network.

  • This 11-course Microsoft & Oracle SQL certification prep bundle is only $39 today
    on November 8, 2019 at 3:05 pm

    If you’re interested in a career in data administration, you’re in luck! Nowadays, companies handle larger data sets than ever before, so the need for data experts is higher than ever. Whether you’re new to the field or you want to brush up on your database management skills, this $39 bundle is for you. The Complete Microsoft & Oracle SQL Certification Bundle features 11 courses on how to become a skilled database administrator. One of the most popular relational database management systems is Microsoft SQL Server, and you’ll learn the basics behind this tool such as modifying data and combining data sets in Microsoft 70-461: Querying SQL Server 2012. Alternatively, you can specialize in Oracle, another popular RDBMS, by completing Oracle 12c OCP 1Z0-061: SQL Fundamentals. Once you’ve completed either of these, you can pursue advanced SQL certifications to design data warehouses, design business intelligence solutions, and more. To read this article in full, please click here

  • 9 Principles to Simplify Security
    on November 8, 2019 at 3:00 pm

    This isn't a one-size-fits-all situation. Simplify as much as you can, as the saying goes, but no more than that.

  • Original Google Pixel to Get the Last Update this December
    on November 8, 2019 at 2:50 pm

    The first generation of Google Pixel devices has finally reached the end of life, and one last security patch will arrive in December. Starting with 2020, any new vulnerability found with these phones (or the OS they run) won’t be fixed or even acknowledged by Google. Google Pixel was released in the fall of 2016

  • 6 Small-Business Password Managers
    on November 8, 2019 at 2:00 pm

    The right password manager can help bring enterprise-class security to small businesses. Here are a half-dozen candidates to strengthen your access management.

  • News Wrap: Voice Assistant Laser Hack, Twitter Insider Threats, Data Breach Fine Fails
    on November 8, 2019 at 1:00 pm

    From voice assistant hacks to insider threats, Threatpost editors break down this week's biggest news.

  • Amazon Fixes Ring Video Doorbell Flaw That Leaked Wi-Fi Credentials
    on November 8, 2019 at 12:11 pm

    Attackers could access Wi-Fi credentials due to a problem in initial configuration of the smart doorbell device.

  • xHelper Malware for Android
    on November 8, 2019 at 12:10 pm

    xHelper is not interesting because of its infection mechanism; the user has to side-load an app onto his phone. It's not interesting because of its payload; it seems to do nothing more than show unwanted ads. it's interesting because of its persistence: Furthermore, even if users spot the xHelper service in the Android operating system's Apps section, removing it doesn't...

  • IT services pro hacked former client’s email
    on November 8, 2019 at 11:51 am

    An IT project manager has pleaded guilty to accessing the email account of a former client's CEO, said reports this week.

  • Leak of 4,000 Facebook documents heaps more trouble on internet giant
    on November 8, 2019 at 11:44 am

    This week’s bold rebrand of Facebook to FACEBOOK can’t hide the growing sense that nobody is happy with the company right now.

  • Another Facebook hoax: Robbers still throwing eggs at car windows?
    on November 8, 2019 at 11:25 am

    Bandits? Egg hurling?! Up to 92.5% visibility obscured??!! Don't share this turkey, but do let us know if you decide to test your wipers!

  • How EDR stops hackers in their tracks
    on November 8, 2019 at 11:00 am

    EDR definition Endpoint detection and response (EDR) is a category of security tools that monitor end-user hardware devices across a network for a range of suspicious activities and behavior, reacting automatically to block perceived threats and saving forensics data for further investigation.An EDR platform combines deep visibility into everything that's happening on an endpoint device — processes, changes to DLLs and registry settings, file and network activity — with data aggregation and analytics capabilities that allow threats to be recognized and countered by either automated processes or human intervention. Endpoint here generally means any end-user device, from a laptop to a smartphone, and can encompass IoT gadgets as well.To read this article in full, please click here

  • The implications of Insider Threat
    on November 8, 2019 at 10:39 am

    Dealing with Insider Threat can be a difficult, but essential task. The consequence of identity access management is incredibly important when considering the 2020 Insider Threat Report, produced by Gurucul. The post The implications of Insider Threat appeared first on IT Security Guru.

  • Phishers’ Favorite Brand Upset by PayPal
    on November 8, 2019 at 9:58 am

    Several factors edged the world’s most popular payment service into the top spot. PayPal was the most frequently spoofed brand in the third quarter of 2019, unseating Microsoft, phishers’ usual favorite, which held the top spot for more than a year, Vade Secure reports. Source: Dark Reading The post Phishers’ Favorite Brand Upset by PayPal appeared first on IT Security Guru.

  • The Hartmann Group proves security starts with One Identity
    on November 8, 2019 at 9:58 am

    The Hartmann Group, a multi-billion Euro company and one of the leading providers of medical devices and hygiene products in Europe is using One Identity, a proven leader in identity-centered security, to manage over 8,000 digital identities across the globe for multiple applications, including SAP. The post The Hartmann Group proves security starts with One Identity appeared first on IT Security Guru.

  • Twitter & Trend Micro become Victim to Malicious Insiders
    on November 8, 2019 at 9:58 am

    The companies are the latest on a long and growing list of organizations that have fallen victim to users with legitimate access to enterprise systems and data. Two separate incidents reported this week have once again highlighted how insiders with legitimate access to systems and data can be far more dangerous to enterprise security than The post Twitter & Trend Micro become Victim to Malicious Insiders appeared first on IT Security Guru.

  • Disk Cleanup Folder Removed from Microsoft
    on November 8, 2019 at 9:57 am

    Microsoft has decided to roll back its decision to add the Downloads folder to the Windows 10 Disk Cleanup program after receiving negative feedback from users. The Windows 10 Disk Cleanup program allows users to quickly free up hard drive space by removing unneeded files found in a variety of system locations. These locations include temporary The post Disk Cleanup Folder Removed from Microsoft appeared first on IT Security Guru.

  • Active Emotet and BlueKeep Threats warning by Australian Govt
    on November 8, 2019 at 9:56 am

    The Australian Signals Directorate’s Australian Cyber Security Centre (ACSC) together with state and territory partners warns businesses and people of Emotet and BlueKeep threats being active in the wild. The ACSC urges vigilance as attackers exploiting the Windows BlueKeep vulnerability have started attacking unpatched systems to infect them with coin miners. Source: Bleeping Computer The post Active Emotet and BlueKeep Threats warning by Australian Govt appeared first on IT Security Guru.

  • 30,000 affected by Maine’s InterMed suffers data breach
    on November 8, 2019 at 9:55 am

    The Portland, Maine healthcare provider InterMed is informing about 30,000 patients that some of their PHI has been involved in a data breach. The facility learned on September 6, 2019 that an employee’s email account had been hacked a few days prior, which led to several other accounts also being breached between September 7-10. An The post 30,000 affected by Maine’s InterMed suffers data breach appeared first on IT Security Guru.

  • Two Former Twitter Employees Caught Spying On Users For Saudi Arabia
    on November 8, 2019 at 7:33 am

    Two former employees of Twitter have been charged with spying on thousands of Twitter user accounts on behalf of the Saudi Arabian government, likely with the purpose of unmasking the identity of dissidents. According to an indictment filed on November 5 and unsealed just yesterday, one of the charged Twitter employees, American citizen Ahmad Abouammo, left the company in May 2015 and the

  • ISC StormCast for Friday, November 8th 2019
    on November 8, 2019 at 3:00 am

    Adobe Mobile SDK Update Fixes TLS Defaults https://wwws.nightwatchcybersecurity.com/2019/11/06/insecure-defaults-in-adobes-mobile-sdks/QNAP Updates QSnatch Advisory https://www.qnap.com/en/security-advisory/nas-201911-01Double Loaded ZIP Files Delivery Malware https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/double-loaded-zip-file-delivers-nanocore/Ring Video Doorbell Leaks Wifi Password https://labs.bitdefender.com/2019/11/ring-video-doorbell-pro-under-the-scope/

  • Twitter & Trend Micro Fall Victim to Malicious Insiders
    on November 7, 2019 at 11:15 pm

    The companies are the latest on a long and growing list of organizations that have fallen victim to users with legitimate access to enterprise systems and data.

  • TA542 Brings Back Emotet with Late September Spike
    on November 7, 2019 at 10:50 pm

    Overall volumes of banking Trojans and RATs increased during the third quarter, when Emotet was suspiciously absent until mid-September.

  • How Can I Help My Team Manage Security Alerts?
    on November 7, 2019 at 10:30 pm

    Smart prioritization, great staff, and supportive tools are a good start.

  • How Machine Learning is Changing the Face of Financial Services
    on November 7, 2019 at 10:04 pm

    Artificial intelligence (AI) has become integrated into our everyday lives. It powers what we see in our social media newsfeeds, activates facial recognition (to unlock our smartphones), and even suggests music for us to listen to. Machine learning, a subset of AI, is progressively integrating into our everyday and changing how we live and make decisions.  Machine Learning The post How Machine Learning is Changing the Face of Financial Services appeared first on Blog.

  • US off-off-year elections go off OK, but don’t get cocky, kids. US charges three in Saudi spy case. Adware dropping apps removed from Google Play. Patch Confluence.
    on November 7, 2019 at 8:46 pm

    The US off-off-year elections seem to have gone off largely free of interference, but officials caution that major foreign influence campaigns can be expected in 2020. Three former Twitter employees are charged with spying for Saudi Arabia. The website defacement campaign in Georgia remains unattributed. Google boots seven adware droppers from the Play Store. Phishers are using web analytics for better hauls. And nation-states are targeting unpatched Confluence. Johannes Ullrich from the SANS Technology Institute on encrypted SNI in TLS 1.3 and how that can be used for domain fronting. Guest is Kevin O’Brien from GreatHorn on managing email threats. For links to all of today's stories check our our CyberWire daily news brief: https://thecyberwire.com/issues/issues2019/November/CyberWire_2019_11_07.html  Support our show

  • Study: Ransomware, Data Breaches at Hospitals tied to Uptick in Fatal Heart Attacks
    on November 7, 2019 at 7:48 pm

    Hospitals that have been hit by a data breach or ransomware attack can expect to see an increase in the death rate among heart patients in the following months or years because of cybersecurity remediation efforts, a new study posits. Health industry experts say the findings should prompt a larger review of how security -- or the lack thereof -- may be impacting patient outcomes.

  • Ex-Twitter Employees Spied on Saudi Dissidents: DoJ
    on November 7, 2019 at 7:41 pm

    The DoJ charges former Twitter employees for allegedly accessing thousands of accounts on behalf of Saudi Arabia.

  • IDG Contributor Network: Combatting extreme weather and power outages, a growing need for AI
    on November 7, 2019 at 7:17 pm

    On Monday, October 28, the news in San Francisco was that Tuesday’s winds would trigger another round of power shutdowns. More than 1 million PGE customers in northern California have been affected by planned power outages, a proactive measure taken to protect against igniting or exacerbating on-going wildfires. All over the state, residents and businesses have been impacted by fires and the power shutdowns over the past few weeks. Although I live in Boston, this part of the United States is perhaps my favorite, and hearing about the destruction and impact of the fires from my friends who live there, has deeply saddened me.To read this article in full, please click here

  • To Prove Cybersecurity's Worth, Create a Cyber Balance Sheet
    on November 7, 2019 at 7:00 pm

    How tying and measuring security investments to business impacts can elevate executives' understanding and commitment to cyber-risk reduction.

  • Security Recruiter Directory
    on November 7, 2019 at 6:34 pm

    Looking for a qualified candidate or new job? CSO's security recruiter directory is your one-stop shop.The recruiters listed below can help you find your next Chief Security Officer (CSO), Chief Information Security Officer (CISO), or VP of Security and fill hard-to-hire positions in risk management, security operations, security engineering, compliance, application security, penetration testers, and computer forensics, among many others.If you're a security recruiting firm, we want your information! Our goal is to provide the most complete recruiter resource available, but to do that we need your assistance. Please send the name, contact info and a few sentences about your company and its specialties to Michael Nadeau.To read this article in full, please click here

  • Capital One Shifts Its CISO to New Role
    on November 7, 2019 at 6:20 pm

    The bank is searching for a new chief information security officer months after its major data breach.

  • Amazon Kindle, Embedded Devices Open to Code-Execution
    on November 7, 2019 at 5:31 pm

    Flaws in Das U-Boot affect third-party hardware that uses the universal bootloader as an underlying component.

  • PayPal Upsets Microsoft as Phishers' Favorite Brand
    on November 7, 2019 at 5:00 pm

    Several factors edged the world's most popular payment service into the top spot.

  • Find New Talent, Don't Fight Over CISSPs: Insights from (ISC)2 COO
    on November 7, 2019 at 4:55 pm

    The skills gap will only be closed by attracting and retaining new talent. So don't limit your talent search to CISSPs, says the COO of the organization that issues the CISSP certification.

  • Detecting Account Takeover Botnets
    on November 7, 2019 at 4:33 pm

    A botnet is a network of compromised computers – known as bots – usually controlled by a command and control computer, that work together in coordination for a malicious purpose. In this blog post, we’ll discuss how to detect botnets used for attack takeover (ATO), an attack used to obtain the valid credentials of an The post Detecting Account Takeover Botnets appeared first on Blog.

  • Using Rust in Windows
    on November 7, 2019 at 4:11 pm

    This Saturday 9th of November, there will be a keynote from Microsoft engineers Ryan Levick and Sebastian Fernandez at RustFest Barcelona. They will be talking about why Microsoft is exploring Rust adoption, some of the challenges we’ve faced in this process, and the future of Rust adoption in Microsoft. If you want to talk with … Using Rust in Windows Read More » The post Using Rust in Windows appeared first on Microsoft Security Response Center.

  • Gamers Hit with Nvidia GPU Driver, GeForce Flaws
    on November 7, 2019 at 3:32 pm

    Vulnerabilities in several PC gaming products offered by Nvidia can lead to escalation of privilege, denial of service and other malicious attacks.

Feed sources:

  • https://www.schneier.com/blog/atom.xml
  • https://nakedsecurity.sophos.com/feed/
  • https://krebsonsecurity.com/feed/
  • http://feeds.feedburner.com/GoogleOnlineSecurityBlog
  • https://www.darknet.org.uk/feed/
  • https://www.darkreading.com/rss_simple.asp
  • https://www.imperva.com/blog/feed/
  • https://www.csoonline.com/index.rss
  • http://feeds.feedburner.com/TheHackersNews
  • https://taosecurity.blogspot.com/feeds/posts/default
  • https://technet.microsoft.com/en-us/security/rss/advisory
  • https://podcasts.files.bbci.co.uk/b01n7094.rss
  • https://labsblog.f-secure.com/feed/
  • https://dfirblog.wordpress.com/feed/
  • https://www.us-cert.gov/ncas/alerts.xml
  • https://threatpost.com/feed/
  • https://www.fireeye.com/blog/threat-research/_jcr_content.feed
  • https://feeds.feedburner.com/CiscoBlogThePlatform
  • http://feeds.feedburner.com/GrahamCluleysBlog
  • http://feeds.feedburner.com/TroyHunt
  • http://blogs.securiteam.com/index.php/feed
  • https://www.secureworks.com/rss?feed=blog
  • https://hotforsecurity.bitdefender.com/feed
  • http://www.itsecurityguru.org/feed/
  • https://blogs.technet.microsoft.com/msrc/feed/
  • https://blogs.technet.microsoft.com/mmpc/feed/

Have more RSS feeds to add to the list? Contact me. Thanks!