• Home
  • SEHL
  • SE Interviews
  • CoreDump
  • Talks
  • Blog
  • About
  • Presentations
Security Endeavors

Week 52 of 2018

1/1/2019

0 Comments

 

Click to listen to Security Endeavors Headlines (SEHL): Hello World!

I got my start in media recording 'news' for my school on Public Access. When looking for a project to contribute to, it identifying a space that doesn't seem to get good coverage seems a decent place to start. Information Security news gets tons of airplay, but haven't really found a podcast that offers a decent weekly roundup. Here's my take on one. That doesn't mean there aren't any out there. Maybe I've simply missed it/them. This should improve as the weeks go by. The goal is one episode a week, around 10 minutes or less in length. There's tons of information out there and I stumbled across Malgregator.com, who has kindly agreed to allow me to use the weekly round up they compile each week. Please take a moment to thank them. Theirs is the information I'll be pointing back to each week and will be the source for the show notes.

Episode 1 = InfoSec Headline for the last week of 2018. 

InfoSec Week 52, 2018The Chinese battery expert is charged with stealing trade secrets from US employer, as he prepared to return home. Forensics found deleted research materials not related to his contract on a USB voluntarily provided to a supervisor.
https://beta.scmp.com/news/world/united-states-canada/article/2179192/chinese-battery-expert-hongjin-tan-charged-stealing
The New York Times published an article about the insecurity of the mobile networks' Signaling System 7 (SS7) and the unwillingness to address mobile network vulnerabilities in general.
https://www.nytimes.com/2018/12/26/opinion/cellphones-security-spying.html
Iraq government took down unlicensed towers used for illegal internet bandwidth smuggling operation in the disputed province of Kirkuk.
http://www.kurdistan24.net/en/news/09d4b5aa-6638-42fe-bbb1-b2ef48b4401b
Indias' Ministry of Home Affairs has issued a notification authorizing 10 agencies to tap, intercept and decrypt all personal data on computers and networks.
https://twitter.com/i/web/status/1075954903279943681
Yet another article from NY Times, this time on how Facebook uses 7500 moderators around the world to keep content "normal".
https://www.nytimes.com/2018/12/27/world/facebook-moderators.html
Hackers are infecting Linux servers with JungleSec ransomware using IPMI remote console, manually running encryption program, then asking for ransom.
https://www.bleepingcomputer.com/news/security/junglesec-ransomware-infects-victims-through-ipmi-remote-consoles/
The beta version of the WireGuard next gen VPN for iOS was released into the App Store.
https://lists.zx2c4.com/pipermail/wireguard/2018-December/003694.html
Someone from the France uploaded a new sample of Shamoon wiper malware to VirusTotal. The sample is signed with Baidu digital certificate expired back in 2016.
https://securityaffairs.co/wordpress/79248/malware/shamoon-3-france.html
The Wired magazine published a list of articles they have published on a security topic in 2018. Some of them are really good.
https://www.wired.com/gallery/the-most-read-security-stories-of-2018/
Amazon sends 1700 Alexa voice recordings to a random person.
https://threatpost.com/amazon-1700-alexa-voice-recordings/140201/
Posted on https://www.malgregator.com/category/weekly-news.html on 28 December 2018
​
0 Comments



Leave a Reply.

    SciaticNerd

    Working with Identity Management and Access technologies since 2002. Clear communication is the goal. Volunteer. Coordinator.

    Reddit Community Link 

    Archives

    February 2019
    January 2019

    Categories

    All

    RSS Feed