#GhostSec Weekly Security Alerts — Vulnerabilities A Plenty in Adobe Products, Android, Microsoft Office, Windows 10, Linux Kernel & More
This week’s US-CERT Cyber Security high vulnerability alerts include Adobe Air, Adobe Flash Player, Adobe Brackets, other Adobe products, Google Android, Huawei products, Linux Kernel, Microsoft Office, Windows 10 and Firefox . For version information and the full list of high, medium and low vulnerability risks, click here.
ISIS Has Threatened More Attacks on the West During Ramadan, EURO 2016 & The 4th of July — Report Suspicious Behavior on the Internet: https://ghostsec.info/report-terrorism.html
Krebs on Security — How to Spot Ingenico Self-Checkout Skimmers
A KrebsOnSecurity story last month about credit card skimmers found in self-checkout lanes at some Walmart locations got picked up by quite a few publications. Since then I’ve heard from several readers who work at retailers that use hundreds of thousands of these Ingenico credit card terminals across their stores, and all wanted to know the same thing: How could they tell if their self-checkout lanes were compromised? This post provides a few pointers…
Security News
Facebook logic flaw allowed an expert to delete any video
Facebook has fixed a serious security vulnerability in the Facebook’s platform that could have been exploited by hackers to delete any video uploaded in comments on someone’s Facebook post.
The security flaw was discovered by the Indian security researcher Pranav Hivarekar, who demonstrated that was able to delete any video by exploiting a security issue that exists in the recently introduced video comment feature. The feature allows Facebook users to upload Videos to reply to posts by people and pages, as well as within groups and events…
Hacker Interviews — Rahul Sasi (@fb1h2s)
Today I propose you an interview with Rahul Sasi, the Founder of Machine learning based cloud security company CloudSek.
Rahul Sasi (@fb1h2s) is the Founder of Machine learning based cloud security company CloudSek. He was an Admin member for Garage4hackers.com. He is ePrior to founding CloudSek he was a Sr Engineer at Citrix where he held the responsibility of making Citrix products hack proof. He started his career as a Security Researcher at iSight [currently FireEye]. People who know Sasi describe him as an eclectic and very talented hacker, his skills are impressive such his ability to transfer the knowledge. I decided to meet him for an interview…
Dozens of Malicious Apps on Play Store can Root & Hack 90% of Android Devices
It’s not at all surprising that the Google Play Store is surrounded by a large number of malicious apps that has the ability to gain users’ attention into falling victim for one, but this time, it is even worse than most people realize. Researchers at Trend Micro have detected a family of malicious apps, dubbed ‘Godless,’ that has the capability of secretly rooting almost 90 percent of all…
3 ways to better secure your Facebook account
Is your Facebook as safe as it could be? Try these 3 ways to protect yourself…
Many people do not consider antivirus tools to be a threat. Antivirus software is frequently considered a trusted application; it may cause the reduction of information system efficiency, but provides protection against different types of attacks. As a result, antivirus can be the sole protection tool for the end-user while a set of antivirus software becomes the principal security method for enterprises…
NASCAR Race Team Learns Ransomware Lesson The Hard Way
Pays ransom to save $2 million worth of information, warns others of the dangers…
Large Botnet Comes Back To Life — With More Malware
The Necurs botnet associated with Dridex and Locky is back after three-week haitus…
Selfrando Technique Mitigates Attacks Unmasking Tor Users
A team of academics and researchers has developed a technique called selfrando that it says can defend against attacks that unmask users of the Tor Network…
Voter Database Leak Exposes 154 Million Sensitive Records
A voter database found by a white hat hacker included gun ownership, preferences on gay marriage and linked to individual social media accounts…
PunkeyPOS might have already stolen millions of payment card numbers
Experts are continuing to monitor the PunKeyPos malware in the wild, the threat might have already stolen millions of payment card numbers. Experts are continuing to monitor the PunKeyPos malware in the wild, the threat might have already stolen millions…
Fansmitter — exfiltrating data from Air-Gapped devices via fan noises
Fansmitter is a new acoustic data exfiltration method devised by a group of researchers from Ben-Gurion University of the Negev. We all know that air-gapped networks aren’t totally secure, in the past, many research groups have devised methods to steal…
— — —
DEF CON 24 is August 4–7 at Paris & Bally’s in Las Vegas!
$240 USD for all four days! Cash only at the door, there is no pre-registration.
Click here for more information on DEF CON 24
&
Black Hat | USA is coming up:
July 30 — August 4, 2016 | Mandalay Bay | Las Vegas, NV
Trainings: July 30 — August 2
- Registration is Now Open | more info
- 2016 Trainings Are Live | more info
