Dear etechnews today,
Your weekly security newsletter from theregister.co.uk
for the week ending 20th October 2014
*** Security News ***
Oz privacy comish says breaches could double this year
Åustralian outfits have already 'fessed up to sixty breaches since
March 2014
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cKp
FIRST standards to clean up messy CERTs
Sharing is caring, but not for Blighty
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cKj
Facebook slurps 'paste sites' for STOLEN passwords, sprinkles on hash
and salt
Zuck's ad empire DOESN'T see details in plain text. Phew!
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cJZ
Apple releases MEGA security patch round for OS X, Server and iTunes
Brings POODLE to heel
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cJE
US government fines Intel's Wind River over crypto exports
New emphasis on encryption as a weapon?
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cJB
UK's a very popular target for EMEA cyberspies – report
Germany and Saudi Arabia fill out FireEye cyberpwn podium
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cJf
Facebook doubles ad-hacking bounty
Small security snafus snuffed, try the tiny and technical
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cJ9
Australian spookhaus busted for warrantless tap of own phones
Stop laughing: it also messed up civilian telecoms intercepts and is
about to get more powers
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cJ2
Careless Whisper? Anonymous messaging app accused of stalking users,
blabbing to Feds
Startup denies outing peeps posting witty gags
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cJ0
FBI boss: We don't want a backdoor, we want the front door to phones
Claims it's what the Founding Fathers would have wanted – catching
killers and pedos
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cHW
Bad news, fandroids: He who controls the IPC tool, controls the DROID
Researchers discover Binder blinder
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cHR
Hacker-hunters finger 'Keyser Soze' of Russian underground card sales
Report claims user named 'Rescator' is mastermind
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cHx
Drupal SQL injection nasty leaves sites 'wide open' to attack
Usual drill - install the patch tout de suite
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cHv
Securobods RAGE over $600k Kickstarter Tor box components
Devs insist: It's NOT just an off-the-shelf circuit board
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cHp
FinFisher spyware used to snoop on Bahraini activists, police told
Gamma International on the end of UK criminal complaint
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cHj
Man bites dog: HTTPS-menacing POODLE is 'hard to exploit' – unless
you're on public Wi-Fi
Avoid sketchy pub wireless, warn infosec bods
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cHh
Adobe CSO offers Oracle security lesson: Go click-to-play
Pots and kettles in heated argument at Oz security confab
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cHc
Vulnerable utilities, telcos, top of new Aussie natsec centre's to-do
list
Headcount to tip 150 tomorrow, double by year's end
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cH3
Admins! Never mind POODLE, there're NEW OpenSSL bugs to splat
Four new patches for open-source crypto libraries
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cGX
Twitter, Cloudflare kill SSL 3.0 ... and here's how YOU CAN TOO
Flawed HTTPS protocol axed amid attack fears
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cGW
FireEye, Microsoft, Cisco team up to take down RAT-flinging crew
Tired of living in the, er, Shadow of Moudoor
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cGL
Roll your own Bitcoin client? Prepare to be raided
Attackers exploit borked random numbers
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cGF
Forget passwords, let's use SELFIES, says Obama's cyber tsar
Michael Daniel wants to kill passwords dead
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cGe
Done with Microsoft and Adobe patches? Good, here's Oracle's load
Java, Database, Fusion Middleware among recipients in latest update
deluge
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cG9
Kill off SSL 3.0 NOW: HTTPS savaged by vicious POODLE
Pull it out ASAP, it is SWISS CHEESE
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cG4
It's 2014 and you can still own a Windows box using a Word file or font
And Adobe's software is still riddled with holes. Get the updates – now
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cFZ
South Korea faces $1bn bill after hackers raid national ID database
Father of Asian internet warns all is lost
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cFX
Knives out for new EU rules forcing govts to reveal hacker attacks
What's that? Something you don't want to share with class?
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cFU
Snapchat 'hack' pics mostly clothed user snaps, odd bits of legacy pr0n
– report
Probably doesn't have underage nudes, says analyst
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cFF
NASTY SSL 3.0 vuln to be revealed soon – sources (Update: It's POODLE)
So nasty no one's even whispering until patch is out
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cFk
Russian hackers exploit 'Sandworm' bug 'to spy on NATO, EU PCs'
Fix imminent from Microsoft for Vista, Server 2008, other stuff
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cFh
NSA Sentry Eagle placed spies in private companies
Latest docs show firms in Germany, South Korea, China targeted
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cFf
'Dropbox passwords' for sale are all EXPIRED: Bitcoin buyers beware
Pastebin: Still not exactly the Oracle of Truth
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cFd
VMware's tool to harden virtual networks: a spreadsheet
NSX security guide lands in intriguing format
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cFb
Greedy datagrabs, crap security will KILL the Internet of Thingies
IoT still lacks definition, for one
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cF6
Cops and spies should blame THEMSELVES for smartphone crypto 'problem'
- Hyppönen
Spooks are 'imperfect' warns top securo-bod
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cEX
Android's Cyanogenmod open to MitM attacks
Code re-use spells zero day for millions of modders
http://go.reg.cx/ml/9e7f3/546d2eff/c37e2b33/2cEE
*** Whitepaper ***
Internet Security Threat Report 2014
An overview and analysis of the year in global threat activity: identify, analyze, and provide commentary on emerging trends in the dynamic threat landscape.
http://whitepapers.theregister.co.uk/d/da1/9e7f3/7ce/a5149567?td=week_sec_e
------------------------------------------------------------------------
This email was sent to garn14.tech@blogger.com
To change your email or your email subscriptions
http://account.theregister.co.uk/login/
To unsubscribe from all The Register newsletters
http://account.theregister.co.uk/unsubscribe/649203/acc978a1
The Register and its contents are Copyright © 2014 Situation Publishing.
All rights reserved.
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.