WTH Security News March 16, 2020

Your weekly top 5 technical and security issues you should pay attention to: Wormable SMBv3 security risk in Windows. Out-of-cycle patch released by Microsoft. Super critical to patch. Necurs Botnet gets taken down along with over 6 MILLION malicious domains! 40 Million victims to-date. Popular VPN And Ad-Blocking Apps Are Secretly Harvesting User Data. Surprise…

Details

WTH Security News March 2, 2020

Your weekly top 5 technical and security issues you should pay attention to: Firefox now defaults to DNS-over-HTTPS (DoH) in the US for new installs. Huge implications including user-unintentional security *bypass* for any security layers in companies that rely on DNS-based filtering. Sophos privatized (now completed) by Thoma Bravo. $3.8Billion acquisition. Apple uses its industry…

Details

WTH Security News February 3, 2020

Your weekly top 5 technical and security issues Nerds should pay attention to: Researcher Finds Over 60 Vulnerabilities in Physical Security Systems. Most of our favourite vendors are on that list. Sharepoint 2007 exploited in the wild, CVE-2019-0604 (Microsoft link). Hackers love .XYZ domains. Microsoft Leaves 250M Customer Service Records Open to the Web.Tomato Routers under attack. I wouldn’t be…

Details

WTH Security News January 27, 2020

Your weekly top 5 “What the heck?” technical and security issues Nerds should pay attention to: BlueKeep use keeps growing in cryptocurrency mining and reverse shells. Windows 7 users vulnerable in IE and may never be fixed for out-of-support licenses. Endpoint Security (TrendMicro) zero-day was used to hack Mitsubishi. Microsoft Edge (Chromium-based) is out (even for macOS) and may…

Details