Jan/Feb News

advertisement
GNEWS
PREVIOUS
Patch
•
•
•
•
•
•
•
•
•
•
•
Tuesday
Feb - 9 Patches – 3 Critical - 55 CVEs
MS15-009 - Update for Internet Explorer
MS15-010 - Windows Kernel-Mode Driver, Remote Code
MS15-011 - Group Policy, Remote Code
MS15-012 - Microsoft Office, Remote Code
MS15-013 - Microsoft Office, Security Bypass
MS15-014 - Group Policy, Security Bypass
MS15-015 - Microsoft Windows, Privilege Escalation
MS15-016 - Microsoft Graphics Component, Info Disclosure
MS15-017 - Virtual Machine Manager, Privilege Escalation
Other updates, MSRT, Defender Definitions, Junk Mail Filter
Holes / Patches
• Oracle
• Cisco
–
–
–
–
–
–
–
–
159 CVEs
8 Virtual Box
9 MySQL
19 Java
• Adobe
–
–
–
–
–
APSA15-02 – Flash Player (1)
APSA15-02 – Flash Player (1)
APSB15-03 – Flash Player (1)
APSB15-03 – Flash Player (2)
APSB15-04 – Flash Player (18)
• Apple,
–
–
–
–
–
Apple TV 7.0.3
iOS 8.1.3
Safari 8.0.3, 7.1.3, 6.2.3
OSX 10.10.2
Security Update 2015-001
IOS Kernel Timer
Unified IP Phone 9900 multi-vuln
WebEx Meetings Server multi-vuln
AnyConnect xss
• VMWare
– VMSA-2015-001 – vSphere cert
validation (1)
– VMSA-2015-002 – ESXi, WorkStation,
Player, Fusion (8, openssl)
• VLC Player
– XP Only, DEP violation / write access
• Verizon MyFIOS app
– Email account exposure
•
GE SCADA switches have hard coded SSL key
•
GmbH Harts multiple vulns
•
•
Schneider more patches
Schneider hardcoded passwds
•
Daktronics hardcoded passwds
•
Siemens Simatic PLC, patches
•
Gas Station Hacking
•
malware goes airborne
•
KL-Remote
•
AirPort Parking
•
Progressive SnapShot
•
McAfee ATD sandbox bypass
•
look ma, i rooted the microwave
•
router bricks
•
godaddy
Hacking
•
istegsiri
•
lizardsquad dos stressor bugs
•
Mozilla meta referrer
•
tesla keyless start
•
Apple 0-days
•
fix for thunderbolt?
•
android wifi direct
•
GNU C Library
•
blackphone bug
•
adobe 0-day
•
outlook app launched and shot
•
BMW remote unlock
•
ie xss 0-day
•
Pirelli home routers vulnerable
•
angler exploit kit
Hacking
•
•
•
Verizon / Turn UIDH (perma cookie)
EFF Helpful App List
Cookie program to be disbanded
•
Google project zero drops two more bugs for MS
•
Blue Cross TN uses data without consent
•
Park N Fly (used at DFW)
•
plex streaming on PS3/4
•
ThreatStream Optic and Maltego plugin
•
BitCoin comes to POS
•
Bitcoin now on wall street
•
windows 10 claims to be last upgrade ever
•
Ships
•
MasterCard, accepted everywhere, and now in cuba
•
WingStop GP hcaked
•
Facebook censorship
CORP
•
MS backs cyanogen??
•
cause what can go wrong with wireless?
•
reddit transparency report
•
Bye Bye RadioShack, thanks for all the signals
•
Anthem 80 million breach
•
GPG gets cash infusion
•
Cheezburger transparency report
•
turbo tax freezes state filing
Corp
•
CFAA amendment
•
Rise Up https://help.riseup.net/en/about-us
•
Google and PWC to host .mil HIE
•
ENISA EU Threat Report
•
How does payment assistance really work?
•
brits label journalists as threats
•
barret brown - 63 months
•
cops don't like trackers
•
death of opt-in GPS??
•
ToR 80% pedo
•
rebirth of bad SAVE Act
•
more on patriot expiration
•
Canarywatch.org
•
FCC Title ii
•
DARPA Memex
Govt
Crypto Currrency block chain
http://radar.oreilly.com/2015/01/understanding-the-blockchain.html
more blockchain talk
http://radar.oreilly.com/2015/01/the-3ps-of-the-blockchain-platforms-programs-and-protocols.html
http://coincenter.org/2015/01/reporting-back-blockchain-workshops-mit-harvard/
Automated Defense - Using Threat Intelligence to Augment
State of The Union Transcript
http://www.securityorb.com/transcript-president-barack-obamas-state-union-speech
Regin analysis
http://securelist.com/blog/research/68438/an-analysis-of-regins-hopscotch-and-legspin/
NSA best practices
https://www.nsa.gov/ia/_files/factsheets/Defending_Against_Destructive_Malware.pdf
NIST Crypto Guide
http://www.healthcareinfosecurity.com/nist-revises-crypto-standards-guide-a-7831
http://csrc.nist.gov/publications/drafts/nistir-7977/nistir_7977_second_draft.pdf
NIST Mobile Applications
http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-163.pdf
Papers
https://www.sans.org/reading-room/whitepapers/threats/automated-defense-threat-intelligenceaugment-35692
Scada history?
https://www.sans.org/reading-room/whitepapers/physical/abbreviated-history-automation-industrialcontrols-system-cybersecurity-35697
Cisco 2015 security report
http://www.cisco.com/web/offers/pdfs/cisco-asr-2015.pdf
MS info sharing guidlines
Papers
http://blogs.microsoft.com/cybertrust/2015/01/27/putting-information-sharing-into-context/
RSA Report
http://www.emc.com/collateral/fraud-report/h13929-rsa-fraud-report-jan-2015.pdf?M=125EAA470C46-43EA-8607-9FACA6B1C627
Detecting coin miners
https://www.sans.org/reading-room/whitepapers/threats/detecting-crypto-currency-mining-corporateenvironments-35722
•
•
The Integration of Information Security to FDA and GAMP 5 Validation
Processes
https://www.sans.org/reading-room/whitepapers/policyissues/integration-information-security-fdagamp-5-validation-processes-35732
•
•
Ed Markey Senate report
http://www.markey.senate.gov/imo/media/doc/2015-02-06_MarkeyReportTracking_Hacking_CarSecurity%202.pdf
WTF!?
CASL
"It is now illegal to install programs, such as malware, on someone's
computer without consent."
http://www.fightspam.gc.ca/eic/site/030.nsf/eng/home
Flink (hadoop like analysis engine)
https://flink.apache.org/
PHP 5.6.5
http://php.net/
R shinydashboard
Tools
http://rstudio.github.io/shinydashboard/
Hound (source code search)
https://github.com/etsy/Hound
GParted
http://gparted.sourceforge.net/
Army Dshell (forensics)
https://github.com/USArmyResearchLab/Dshell
capstone 3.0.1 (disassembly)
http://capstone-engine.org/Version-3.0.1.html
NST 20-6535 / Kali 1.1.0
• Guide
http://securityintelligence.com/guide-to-2015-conferences-and-eventsfor-security-professionals
•
•
•
•
•
Hack In Paris 2015 CFP
• Shmoo
cottonmouth-1 vs turnipschool (usb cable)
• IE Heap protection bypass
• Shmoo vidieos
https://archive.org/details/shmoocon-2015-videos-playlist
• HITB
• white-paper-using-intel-txt-attack-bioses
white-paper-extreme-privilege-escalation-windows-8uefi-systems
•
•
B-Sides Austin 12 – 13 Mar
•
CanSecWest
10 – 12 Apr
InfoSec Southwest
•
B-Sides Nashville
11 Apr
•
B-Sides San Antonio
? May
•
•
18 - 20 Mar
ThotCon 0x6
14 – 15 May
PenTest Austin (SANS)
•
DefCon 23
18 – 23 May
6 – 9 Aug
DHA
( 1st Wednesday / Tavern on Main, richardson )
TX2600
( 1st Fri / Wild Turkey 35&WalnutHill, dallas )
(1st Fri / 1418 Coffeehouse, plano)
The Lab.MS
( 2nd Monday / varies, plano )
Crypto Party
( 3rd Thursday / Improving Enterprises, addison )
NAISG
( 4th Thursday / CrossPointe Theatre, carrollton )
LockPick DFW
( Last Monday / looking for new spot, dallas )
Local
Dallas MakerSpace
Random / carrollton
All images scavenged without permission
All images scavenged without permission
Download
Related flashcards

The New York Times

31 cards

Russian news websites

15 cards

Defunct newspapers

28 cards

Create Flashcards