A daily look at the relevant information security news from overnight.

Episode 151 - 12 September 2019

Fraudsters leak - https://threatpost.com/major-groupon-ticketmaster-fraud-scheme-exposed-by-insecure-database/148246/

Ryuk stealer - https://www.bleepingcomputer.com/news/security/ryuk-related-malware-steals-confidential-military-financial-files/

Chrome crypto update - https://www.zdnet.com/article/google-discloses-vulnerability-in-chrome-os-built-in-security-key-feature/

Cobalt Dickens strikes again - https://www.bleepingcomputer.com/news/security/iranian-hackers-hit-over-60-universities-to-get-library-access/

Apps see the light - https://www.zdnet.com/article/most-android-flashlight-apps-request-an-absurd-number-of-permissions/

A daily look at the relevant information security news from overnight.

Episode 150 - 11 September 2019

Microsoft Teams vuln - https://www.bleepingcomputer.com/news/security/microsoft-teams-can-be-used-to-execute-arbitrary-payloads/

D-Link and Comba flaws - https://threatpost.com/vulnerabilities-in-d-link-comba-routers-can-leak-credentials/148150/

Microsoft patches 80 - https://www.zdnet.com/article/microsoft-patches-two-zero-days-in-massive-september-2019-patch-tuesday/

Adobe patches Flash - https://threatpost.com/adobe-critical-flash-player-code-execution-flaws/148169/

Captcha hides phish - https://www.bleepingcomputer.com/news/security/microsoft-phishing-page-uses-captcha-to-bypass-automated-detection/

A daily look at the relevant information security news from overnight.

Episode 149 - 10 September 2019

Critical IoT vulns - https://www.zdnet.com/article/critical-vulnerabilities-impact-over-a-million-iot-radio-devices/

Stealth Raven evolves - https://threatpost.com/stealth-falcon-middle-east-windows-bits/148136/

Trove of exploit kits - https://www.bleepingcomputer.com/news/security/exploit-kits-target-windows-users-with-ransomware-and-trojans/

DDoS hits big sites - https://threatpost.com/wikipedia-world-of-warcraft-ddos-attacks/148121/

Telegram unsend fix - https://techcrunch.com/2019/09/09/telegram-bug-delete-unsent-photos/

A daily look at the relevant information security news from overnight.

Episode 148 - 09 September 2019

BlueKeep weaponized - https://www.zdnet.com/article/metasploit-team-releases-bluekeep-exploit/

GootKit evades - https://www.bleepingcomputer.com/news/security/gootkit-malware-bypasses-windows-defender-by-setting-path-exclusions/

Lilocked intensifies - https://www.zdnet.com/article/thousands-of-servers-infected-with-new-lilocked-lilu-ransomware/

Exim patched - https://www.theregister.co.uk/2019/09/06/exim_vulnerability_patch/

Huge BEC takes Toyota - https://www.bleepingcomputer.com/news/security/over-37-million-lost-by-toyota-boshoku-subsidiary-in-bec-scam/

A daily look at the relevant information security news from overnight.

Episode 147 - 06 September 2019

DK-Lok exposed - https://www.zdnet.com/article/dklok-data-breach-leaked-global-enterprise-client-internal-emails/

Danfoss crit vuln - https://www.helpnetsecurity.com/2019/09/05/danfoss-scada-vulnerabilities/

GPS defaults to 123456 - https://www.zdnet.com/article/600000-gps-trackers-left-exposed-online-with-a-default-password-of-123456/

Monster data exposed - https://techcrunch.com/2019/09/05/monster-exposed-user-data-years/

WordPress fixes - https://www.bleepingcomputer.com/news/security/wordpress-523-released-with-security-and-bug-fixes/

A daily look at the relevant information security news from overnight.

Episode 146 - 05 September 2019

Android zero day - https://threatpost.com/android-zero-day-bug-opens-door-to-privilege-escalation-attack-researchers-warn/148014/

Deepfake scam - https://www.zdnet.com/article/forget-email-scammers-use-ceo-voice-deepfakes-to-con-workers-into-wiring-cash/

Joker trojan - https://www.bleepingcomputer.com/news/security/stealthy-android-trojan-spy-signs-you-up-for-premium-subscriptions/

Samba root access - https://www.bleepingcomputer.com/news/security/year-old-samba-bug-allows-access-to-forbidden-root-share-paths/

Facebook data leak - https://techcrunch.com/2019/09/04/facebook-phone-numbers-exposed/

A daily look at the relevant information security news from overnight.

Episode 145 - 04 September 2019

BMC ports exposed - https://www.zdnet.com/article/over-47000-supermicro-servers-are-exposing-bmc-ports-on-the-internet/

Multilingual toolkit - https://www.bleepingcomputer.com/news/security/new-toolkit-pushes-malware-via-fake-program-update-alerts-in-30-languages/

Chip and PIN cloned - https://www.zdnet.com/article/german-bank-loses-eur1-5-million-in-mysterious-cashout-of-emv-cards/

Bit by BleachBit - https://www.bleepingcomputer.com/news/security/fake-bleachbit-website-built-to-distribute-azorult-info-stealer/

Yves Rocher exposure - https://threatpost.com/data-leak-impacts-millions/147908/

A daily look at the relevant information security news from overnight.

Episode 144 - 03 September 2019

Foxit PDF breached - https://www.zdnet.com/article/company-behind-foxit-pdf-reader-announces-security-breach/

Astaroth by Cloudflare - https://www.bleepingcomputer.com/news/security/astaroth-trojan-uses-cloudflare-workers-to-bypass-av-software/

Brazil selling off data - https://www.zdnet.com/article/brazilian-citizen-data-under-threat-with-sale-of-national-tech-firms/

WordPress hackers create admins - https://www.zdnet.com/article/wordpress-sites-under-attack-as-hacker-group-tries-to-create-rogue-admin-accounts/

Sodinokibi via WordPress - https://www.bleepingcomputer.com/news/security/sodinokibi-ransomware-spreads-via-fake-forums-on-hacked-sites/

A daily look at the relevant information security news from overnight.

Episode 143 - 30 August 2019

Dental ransom - https://www.zdnet.com/article/ransomware-hits-hundreds-of-dentist-offices-in-the-us/

BRATA spreading - https://www.bleepingcomputer.com/news/security/brata-android-rat-used-to-infect-and-spy-on-brazilian-users/

Cisco critical patch - https://www.zdnet.com/article/patch-now-cisco-ios-xe-routers-exposed-to-rare-1010-severity-security-flaw/

TGI Fridays oops - https://threatpost.com/tgi-fridays-data-exposure/147849/

iPhone hack - https://techcrunch.com/2019/08/29/google-iphone-secretly-hacked/

A daily look at the relevant information security news from overnight.

Episode 142 - 29 August 2019

Magecart hits big - https://threatpost.com/magecart-ecommerce-card-skimming-bonanza/147765/

Revenge and Orcus RATs - https://www.bleepingcomputer.com/news/security/attackers-target-govt-and-financial-orgs-with-orcus-revenge-rats/

TrickBot SIM swap - https://www.zdnet.com/article/trickbot-todays-top-trojan-adds-feature-to-aid-sim-swapping-attacks/

xHelper dropper hits Android - https://www.bleepingcomputer.com/news/security/android-trojan-infects-tens-of-thousands-of-devices-in-4-months/

Set-top IoT attack - https://www.theregister.co.uk/2019/08/28/android_set_boxes_ares_malware/