.png)
Ben A. • July 28, 2017 4:07 PM
WikiLeaks drops another cache of ‘Vault7’ stolen tools
Emissary Panda amongst others.
Trust Issues: Exploiting TrustZone TEEs
@Thoth, @Clive Robinson
The End of Triple DES
"The US National Institute of Standards and Technology (NIST) has just announced withdrawal of approval for triple DES (also known as 3DES, TDEA and sometimes DES EDE) in common protocols such as TLS and IPSec."
Cyber arm of UK spy agency left without PGP for four months
"UK spy agency GCHQ’s cyber security arm, CESG, was left without PGP encryption for more than four months, according to a government report."
On Kaspersky
The author dislikes the fact that the "U.S. government used Kaspersky Lab’s products—including on DOD systems."
KL AV for Free. Secure the Whole World Will Be.
Kaspersky Free is due to be released. Coincidence? You can't blame the company for wanting market penteration.
Exclusive: Congress asks U.S. agencies for Kaspersky Lab cyber documents
"A U.S. congressional panel this week asked 22 government agencies to share documents on Moscow-based cyber firm Kaspersky Lab, saying its products could be used to carry out "nefarious activities against the United States," according to letters seen by Reuters."
Going dark: encryption and law enforcement
Reminder: Spies, cops don't need to crack WhatsApp. They'll just hack your smartphone
WhatsApp: The Bad Guys’ Secret Weapon
De-Anonymization, Smart Homes, and Erlang: Tor is Coming to SHA2017
Sounds bad: Researchers demonstrate “sonic gun” threat against smart devices
"A sonic "gun" could in theory be used to knock drones out of the sky, cause robots to fail, disorient virtual or augmented reality software, and even knock people off their "hoverboard" scooters. It could also potentially be used to attack self-driving cars or confuse air bag sensors in automobiles."
macOS Fruitfly Backdoor Analysis Renders New Spying Capabilities
"A mysterious piece of malware that gives attackers surreptitious control over webcams, keyboards, and other sensitive resources has been infecting Macs for at least five years."
Novel attack tricks servers to cache expose personal data
"The so-called web caching attack targets sites that use content delivery network (CDN) services such as Akamai and Cloudflare."
Revoke-Obfuscation: PowerShell Obfuscation Detection Using Science
FLARE VM: The Windows Malware Analysis Distribution You’ve Always Needed!
HawkEye Credential Theft Malware Distributed in Recent Phishing Campaign
EVERY app offered by alternative Android app market redirected to malware
Wallet-snatch hack: ApplePay 'vulnerable to attack', claim researchers
Hackers can turn web-connected car washes into horrible death traps
The opsec blunders that landed a Russian politician's fraudster son in the clink for 27 years
Upcoming USB 3.2 Specification Will Double Data Rates Using Existing Cables
from Schneier on Security http://ift.tt/2v58vBu
0 comments:
Post a Comment